chore(deps): bump the minor-patch group across 1 directory with 6 updates by dependabot[bot] · Pull Request #18 · steveiliop56/tipimate

dependabot · 2026-02-02T02:14:02Z

Bumps the minor-patch group with 6 updates in the / directory:

Package	From	To
github.com/go-playground/validator/v10	`10.27.0`	`10.30.1`
github.com/golang-jwt/jwt/v5	`5.3.0`	`5.3.1`
github.com/google/go-querystring	`1.1.0`	`1.2.0`
github.com/spf13/cobra	`1.9.1`	`1.10.2`
github.com/spf13/viper	`1.20.1`	`1.21.0`
gorm.io/gorm	`1.30.1`	`1.31.1`

Updates github.com/go-playground/validator/v10 from 10.27.0 to 10.30.1

Release notes

Sourced from github.com/go-playground/validator/v10's releases.

Release 10.30.1

What's Changed

Feat: uds_exists validator by @barash-asenov in go-playground/validator#1482

fix: Revert min limit of e164 regex by @zemzale in go-playground/validator#1516

Fix 1513 update ISO 3166-2 codes by @xyz27900 in go-playground/validator#1514

New Contributors

@barash-asenov made their first contribution in go-playground/validator#1482

@xyz27900 made their first contribution in go-playground/validator#1514

Full Changelog: go-playground/validator@v10.30.0...v10.30.1

Release 10.30.0

What's Changed

Bump golang.org/x/crypto from 0.45.0 to 0.46.0 by @dependabot[bot] in go-playground/validator#1504

Bump github.com/gabriel-vasile/mimetype from 1.4.11 to 1.4.12 by @dependabot[bot] in go-playground/validator#1505

docs: document omitzero by @minoritea in go-playground/validator#1509

fix: add missing translations for alpha validators by @shindonghwi in go-playground/validator#1510

fix: resolve panic when using aliases with OR operator by @shindonghwi in go-playground/validator#1507

fix: resolve panic when using cross-field validators with ValidateMap by @shindonghwi in go-playground/validator#1508

New Contributors

@minoritea made their first contribution in go-playground/validator#1509

@shindonghwi made their first contribution in go-playground/validator#1510

Full Changelog: go-playground/validator@v10.29.0...v10.30.0

v10.29.0

What's Changed

fix: minor spelling fix in docs by @Perfect5th in go-playground/validator#1472

Bump golang.org/x/text from 0.29.0 to 0.30.0 by @dependabot[bot] in go-playground/validator#1473

Bump golang.org/x/crypto from 0.42.0 to 0.43.0 by @dependabot[bot] in go-playground/validator#1474

Fix integer overflows in test when run on 32bit systems by @gibmat in go-playground/validator#1479

fix: exclude modernize linter by @nodivbyzero in go-playground/validator#1487

Bump golangci/golangci-lint-action from 8 to 9 by @dependabot[bot] in go-playground/validator#1490

Bump github.com/gabriel-vasile/mimetype from 1.4.10 to 1.4.11 by @dependabot[bot] in go-playground/validator#1485

Support for ISO 9362:2022 BIC (SWIFT) codes by @fira42073 in go-playground/validator#1478

Bump golang.org/x/crypto from 0.43.0 to 0.44.0 by @dependabot[bot] in go-playground/validator#1492

Fix: validation now rejects phone codes starting with +0 by @nodivbyzero in go-playground/validator#1476

Bump golang.org/x/crypto from 0.44.0 to 0.45.0 by @dependabot[bot] in go-playground/validator#1495

Bump actions/checkout from 5 to 6 by @dependabot[bot] in go-playground/validator#1497

fix/1500:Update Sierra Leone currency code from SLL to SLE by @princekm096 in go-playground/validator#1501

Fix/1481 skip invalid type validations by @KaranLathiya in go-playground/validator#1498

Fix 1502 update ccy codes by @princekm096 in go-playground/validator#1503

Added alphanumspace string validator by @haribabuk113 in go-playground/validator#1484

excluded_unless bug fix by @chargraves85 in go-playground/validator#1307

New Contributors

@Perfect5th made their first contribution in go-playground/validator#1472

@gibmat made their first contribution in go-playground/validator#1479

... (truncated)

Commits

5010f83 Fix 1513 update ISO 3166-2 codes (#1514)
e8627a1 fix: Revert min limit of e164 regex (#1516)
65b1bcc Feat: uds_exists validator (#1482)
e9b900c fix: resolve panic when using cross-field validators with ValidateMap (#1508)
7aba81c fix: resolve panic when using aliases with OR operator (#1507)
4d600be fix: add missing translations for alpha validators (#1510)
b0e4ba2 docs: document omitzero (#1509)
79fba72 Bump github.com/gabriel-vasile/mimetype from 1.4.11 to 1.4.12 (#1505)
c3c9084 Bump golang.org/x/crypto from 0.45.0 to 0.46.0 (#1504)
afce000 excluded_unless bug fix (#1307)
Additional commits viewable in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.3.1

What's Changed

🔐 Features

Add spellcheck Github action to catch common spelling mistakes by @equalsgibson in golang-jwt/jwt#458

Add WithNotBeforeRequired parser option and add test coverage by @equalsgibson in golang-jwt/jwt#456

Update godoc example func to properly refer to NewWithClaims() by @equalsgibson in golang-jwt/jwt#459

Update github workflows by @mfridman in golang-jwt/jwt#462

Additional test for CustomClaims that validates unmarshalling behaviour by @equalsgibson in golang-jwt/jwt#457

Fix early file close in jwt cli by @mfridman in golang-jwt/jwt#472

Add TPM signature reference by @salrashid123 in golang-jwt/jwt#473

Remove misleading ParserOptions documentation in golang-jwt/jwt#484

Save signature to Token struct after successful signing by @EgorSheff in golang-jwt/jwt#417

Set token.Signature in ParseUnverified by @slickwilli in golang-jwt/jwt#414

👒 Dependencies

Bump crate-ci/typos from 1.34.0 to 1.35.3 by @dependabot[bot] in golang-jwt/jwt#461

Bump crate-ci/typos from 1.35.4 to 1.36.2 by @dependabot[bot] in golang-jwt/jwt#470

Bump github/codeql-action from 3 to 4 by @dependabot[bot] in golang-jwt/jwt#478

Bump crate-ci/typos from 1.36.2 to 1.39.0 by @dependabot[bot] in golang-jwt/jwt#480

Bump golangci/golangci-lint-action from 8 to 9 by @dependabot[bot] in golang-jwt/jwt#481

Bump actions/setup-go from 5 to 6 by @dependabot[bot] in golang-jwt/jwt#469

Bump crate-ci/typos from 1.39.0 to 1.40.0 by @dependabot[bot] in golang-jwt/jwt#488

Bump actions/checkout from 5 to 6 by @dependabot[bot] in golang-jwt/jwt#487

Bump crate-ci/typos from 1.40.0 to 1.41.0 by @dependabot[bot] in golang-jwt/jwt#490

Bump crate-ci/typos from 1.41.0 to 1.42.1 by @dependabot[bot] in golang-jwt/jwt#492

New Contributors

@equalsgibson made their first contribution in golang-jwt/jwt#458

@salrashid123 made their first contribution in golang-jwt/jwt#473

@EgorSheff made their first contribution in golang-jwt/jwt#417

@slickwilli made their first contribution in golang-jwt/jwt#414

Full Changelog: golang-jwt/jwt@v5.3.0...v5.3.1

Commits

7ceae61 Add release.yml for changelog configuration
dce8e4d Set token.Signature in ParseUnverified (#414)
8889e20 Save signature to Token struct after successful signing (#417)
d237f82 ci: update github-actions schedule interval to monthly
d8dce95 Bump crate-ci/typos from 1.41.0 to 1.42.1 (#492)
e931803 Bump crate-ci/typos from 1.40.0 to 1.41.0 (#490)
e6a0afa Bump actions/checkout from 5 to 6 (#487)
9f85c9e Bump crate-ci/typos from 1.39.0 to 1.40.0 (#488)
60a8669 Bump actions/setup-go from 5 to 6 (#469)
76f5828 Remove misleading ParserOptions documentation (#484)
Additional commits viewable in compare view

Updates github.com/google/go-querystring from 1.1.0 to 1.2.0

Release notes

Sourced from github.com/google/go-querystring's releases.

v1.2.0

A lot of version bumps, though mostly actually of GitHub Actions that have nothing to do with the package itself.

Two minor code optimizations:

code opt: prioritize handling boundary conditions by @hcraM41 in google/go-querystring#149

code opt: replace bytes.Buffer with strings.Builder by @hcraM41 in google/go-querystring#151

Full Changelog: google/go-querystring@v1.1.0...v1.2.0

Commits

59c17d9 Bump golangci/golangci-lint-action from 7.0.0 to 9.0.0
b8825f6 go.mod,.github: Go 1.13 is the minimum version
243d79a update github action workflow versions
b64aef0 code opt: replace bytes.Buffer with strings.Builder
ffb7deb code opt: prioritize handling boundary conditions
085cc78 Bump golangci/golangci-lint-action from 5.0.0 to 6.0.1
d887f37 Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0
d6a1024 go.mod,.github: update dependencies
7af347e Bump codecov/codecov-action from 3.1.4 to 3.1.5
3455b53 Bump codecov/codecov-action from 3.1.3 to 3.1.4
Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.9.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

Fix linter and allow CI to pass by @marckhouzam in spf13/cobra#2327

fix: actions/setup-go v6 by @jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

Add documentation for repeated flags functionality by @rvergis in spf13/cobra#2316

🍂 Refactors

refactor: replace several vars with consts by @htoyoda18 in spf13/cobra#2328

refactor: change minUsagePadding from var to const by @ssam18 in spf13/cobra#2325

🤗 New Contributors

@rvergis made their first contribution in spf13/cobra#2316

@htoyoda18 made their first contribution in spf13/cobra#2328

@ssam18 made their first contribution in spf13/cobra#2325

@dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

v1.10.1

🐛 Fix

chore: upgrade pflags v1.0.9 by @jpmcb in spf13/cobra#2305

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

Bump pflag to 1.0.8 by @tomasaschan in spf13/cobra#2303

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`

or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

... (truncated)

Commits

88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
346d408 fix: actions/setup-go v6 (#2337)
fc81d20 refactor: change minUsagePadding from var to const (#2325)
117698a refactor: replace several vars with consts (#2328)
e2dd29d Add documentation for repeated flags functionality (#2316)
0629892 Fix linter (#2327)
7da941c chore: Bump pflag to v1.0.9 (#2305)
51d6751 Bump pflag to 1.0.8 (#2303)
3f3b818 Update README.md with new logo
dcaf42e Add Periscope to the list of projects using Cobra (#2299)
Additional commits viewable in compare view

Updates github.com/spf13/viper from 1.20.1 to 1.21.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.21.0

What's Changed

Enhancements 🚀

Add support for flags pflag.BoolSlice, pflag.UintSlice and pflag.Float64Slice by @nmvalera in spf13/viper#2015

feat: use maintained yaml library by @sagikazarmark in spf13/viper#2040

Bug Fixes 🐛

fix(config): get config type from v.configType or config file ext by @GuillaumeBAECHLER in spf13/viper#2003

fix: config type check when loading any config by @sagikazarmark in spf13/viper#2007

Dependency Updates ⬆️

Update dependencies by @sagikazarmark in spf13/viper#1993

build(deps): bump github.com/spf13/cast from 1.7.1 to 1.8.0 by @dependabot[bot] in spf13/viper#2017

build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.3 to 2.2.4 by @dependabot[bot] in spf13/viper#2013

build(deps): bump github.com/sagikazarmark/locafero from 0.8.0 to 0.9.0 by @dependabot[bot] in spf13/viper#2008

build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in /remote by @dependabot[bot] in spf13/viper#2016

build(deps): bump github.com/spf13/cast from 1.8.0 to 1.9.2 by @dependabot[bot] in spf13/viper#2020

build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @dependabot[bot] in spf13/viper#2028

build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 by @dependabot[bot] in spf13/viper#2035

build(deps): bump github.com/spf13/pflag from 1.0.6 to 1.0.7 by @dependabot[bot] in spf13/viper#2036

build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0 by @dependabot[bot] in spf13/viper#2012

build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @dependabot[bot] in spf13/viper#2052

build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in /remote by @dependabot[bot] in spf13/viper#2048

build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10 by @dependabot[bot] in spf13/viper#2056

chore: update dependencies by @sagikazarmark in spf13/viper#2057

Other Changes

Update update guide with mapstructure package replacement. by @aldas in spf13/viper#2004

refactor: use the built-in max/min to simplify the code by @yingshanghuangqiao in spf13/viper#2029

New Contributors

@GuillaumeBAECHLER made their first contribution in spf13/viper#2003

@aldas made their first contribution in spf13/viper#2004

@nmvalera made their first contribution in spf13/viper#2015

@yingshanghuangqiao made their first contribution in spf13/viper#2029

@ccoVeille made their first contribution in spf13/viper#2046

@spacez320 made their first contribution in spf13/viper#2050

Full Changelog: spf13/viper@v1.20.0...v1.21.0

Commits

394040c ci: build on go 1.25
812f548 chore: update dependencies
d5271ef ci: update stale workflow
dff303b feat: add a stale issue scheduled action
1287976 build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10
38932cd build(deps): bump github.com/go-viper/mapstructure/v2 in /remote
6d014be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
b74c7ee build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0
acd05e1 fix: linting issues
ae5a8e2 ci: upgrade golangci-lint
Additional commits viewable in compare view

Updates gorm.io/gorm from 1.30.1 to 1.31.1

Release notes

Sourced from gorm.io/gorm's releases.

Release v1.31.1

Changes

Add Namer-based column lookup to Schema.LookUpField @cmmoran (#7619)

fix: Allow escaped double quotes in struct tag parser @kankankanp (#7631)

Fix slog logger caller frame detection to output correct source file @ifooth (#7610)

chore(docs): edited the badge test @Olexandr88 (#7635)

Fix AutoMigrate default value comparison for string fields (issue #7590) @nowindexman (#7591)

fix(UnixSecondSerializer.Value): Avoid panic when handling unsigned integer values @dushaoshuai (#7608)

chore: fix some comments @wyrapeseed (#7615)

Rename IsValidDBNameChar to IsInvalidDBNameChar @mengxunQAQ (#7582)

Release v1.31.0

Changes

Add association operation support to generics Set API and enable conditional bulk association updates @jinzhu (#7581)

Release v1.30.5

Changes

No changes

Release v1.30.4

Changes

Add Set-based Create and Update support to Generics API @jinzhu (#7578)

fix: build failure on Go versions below 1.21 @iTanken (#7572)

fix slogLogger to support ParameterizedQueries Config @EricWvi (#7574)

Release v1.30.3

Changes

No changes

Release v1.30.2

Changes

avoid copying structures with embedded mutexs @drakkan (#7571)

Add DefaultContextTimeout option @jinzhu (#7567)

Update the docker compose file @moseszane168 (#7524)

fix: returning all columns with "on conflict do update" @phongphan (#7534)

feat(slog-integration) @rezamokaram (#7537)

fix data race in some case go-gorm/gorm@725aa5b

performance improvement

Commits

eabca1f Allow Select/Omit for Generics Create, close #7638, #7633
a57abbe Add Namer-based column lookup to Schema.LookUpField (#7619)
5eaf05a fix: Allow escaped double quotes in struct tag parser (#7631)
2c3d109 Fix slog logger caller frame detection to output correct source file (#7610)
4808ff5 Update README.md (#7635)
141388f Fix AutoMigrate default value comparison for string fields (issue #7590) (#7591)
d9372f5 fix(UnixSecondSerializer.Value): Avoid panic when handling unsigned integer v...
d8cdb39 chore: fix some comment (#7615)
b881483 Rename IsValidDBNameChar to IsInvalidDBNameChar (#7582)
b289563 Remove unnecessary OpCreateValue mode
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…ates Bumps the minor-patch group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) | `10.27.0` | `10.30.1` | | [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.3.0` | `5.3.1` | | [github.com/google/go-querystring](https://github.com/google/go-querystring) | `1.1.0` | `1.2.0` | | [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.9.1` | `1.10.2` | | [github.com/spf13/viper](https://github.com/spf13/viper) | `1.20.1` | `1.21.0` | | [gorm.io/gorm](https://github.com/go-gorm/gorm) | `1.30.1` | `1.31.1` | Updates `github.com/go-playground/validator/v10` from 10.27.0 to 10.30.1 - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](go-playground/validator@v10.27.0...v10.30.1) Updates `github.com/golang-jwt/jwt/v5` from 5.3.0 to 5.3.1 - [Release notes](https://github.com/golang-jwt/jwt/releases) - [Commits](golang-jwt/jwt@v5.3.0...v5.3.1) Updates `github.com/google/go-querystring` from 1.1.0 to 1.2.0 - [Release notes](https://github.com/google/go-querystring/releases) - [Commits](google/go-querystring@v1.1.0...v1.2.0) Updates `github.com/spf13/cobra` from 1.9.1 to 1.10.2 - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](spf13/cobra@v1.9.1...v1.10.2) Updates `github.com/spf13/viper` from 1.20.1 to 1.21.0 - [Release notes](https://github.com/spf13/viper/releases) - [Commits](spf13/viper@v1.20.1...v1.21.0) Updates `gorm.io/gorm` from 1.30.1 to 1.31.1 - [Release notes](https://github.com/go-gorm/gorm/releases) - [Commits](go-gorm/gorm@v1.30.1...v1.31.1) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-version: 10.30.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: github.com/golang-jwt/jwt/v5 dependency-version: 5.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-patch - dependency-name: github.com/google/go-querystring dependency-version: 1.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: github.com/spf13/cobra dependency-version: 1.10.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: github.com/spf13/viper dependency-version: 1.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: gorm.io/gorm dependency-version: 1.31.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Feb 2, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the minor-patch group across 1 directory with 6 updates#18

chore(deps): bump the minor-patch group across 1 directory with 6 updates#18
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/minor-patch-dd191fc6b2

dependabot Bot commented on behalf of github Feb 2, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

dependabot Bot commented on behalf of github Feb 2, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release 10.30.1

What's Changed

New Contributors

Release 10.30.0

What's Changed

New Contributors

v10.29.0

What's Changed

New Contributors

v5.3.1

What's Changed

🔐 Features

👒 Dependencies

New Contributors

v1.2.0

v1.10.2

🔧 Dependencies

📈 CI/CD

🔥✍🏼 Docs

🍂 Refactors

🤗 New Contributors

v1.10.1

🐛 Fix

v1.10.0

What's Changed

🚨 Attention!

v1.21.0

What's Changed

Enhancements 🚀

Bug Fixes 🐛

Dependency Updates ⬆️

Other Changes

New Contributors

Release v1.31.1

Changes

Release v1.31.0

Changes

Release v1.30.5

Changes

Release v1.30.4

Changes

Release v1.30.3

Changes

Release v1.30.2

Changes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Feb 2, 2026 •

edited

Loading