Bump the golang group with 3 updates #352

dependabot · 2025-09-14T18:01:19Z

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the golang group with 3 updates: github.com/spf13/viper, github.com/stretchr/testify and golang.org/x/net.

Updates github.com/spf13/viper from 1.20.0 to 1.21.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.21.0

What's Changed

Enhancements 🚀

Add support for flags pflag.BoolSlice, pflag.UintSlice and pflag.Float64Slice by @nmvalera in spf13/viper#2015

feat: use maintained yaml library by @sagikazarmark in spf13/viper#2040

Bug Fixes 🐛

fix(config): get config type from v.configType or config file ext by @GuillaumeBAECHLER in spf13/viper#2003

fix: config type check when loading any config by @sagikazarmark in spf13/viper#2007

Dependency Updates ⬆️

Update dependencies by @sagikazarmark in spf13/viper#1993

build(deps): bump github.com/spf13/cast from 1.7.1 to 1.8.0 by @dependabot[bot] in spf13/viper#2017

build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.3 to 2.2.4 by @dependabot[bot] in spf13/viper#2013

build(deps): bump github.com/sagikazarmark/locafero from 0.8.0 to 0.9.0 by @dependabot[bot] in spf13/viper#2008

build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in /remote by @dependabot[bot] in spf13/viper#2016

build(deps): bump github.com/spf13/cast from 1.8.0 to 1.9.2 by @dependabot[bot] in spf13/viper#2020

build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @dependabot[bot] in spf13/viper#2028

build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 by @dependabot[bot] in spf13/viper#2035

build(deps): bump github.com/spf13/pflag from 1.0.6 to 1.0.7 by @dependabot[bot] in spf13/viper#2036

build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0 by @dependabot[bot] in spf13/viper#2012

build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @dependabot[bot] in spf13/viper#2052

build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in /remote by @dependabot[bot] in spf13/viper#2048

build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10 by @dependabot[bot] in spf13/viper#2056

chore: update dependencies by @sagikazarmark in spf13/viper#2057

Other Changes

Update update guide with mapstructure package replacement. by @aldas in spf13/viper#2004

refactor: use the built-in max/min to simplify the code by @yingshanghuangqiao in spf13/viper#2029

New Contributors

@GuillaumeBAECHLER made their first contribution in spf13/viper#2003

@aldas made their first contribution in spf13/viper#2004

@nmvalera made their first contribution in spf13/viper#2015

@yingshanghuangqiao made their first contribution in spf13/viper#2029

@ccoVeille made their first contribution in spf13/viper#2046

@spacez320 made their first contribution in spf13/viper#2050

Full Changelog: spf13/viper@v1.20.0...v1.21.0

v1.20.1

What's Changed

Bug Fixes 🐛

Backport config type fixes to 1.20.x by @sagikazarmark in spf13/viper#2005

Full Changelog: spf13/viper@v1.20.0...v1.20.1

Commits

394040c ci: build on go 1.25
812f548 chore: update dependencies
d5271ef ci: update stale workflow
dff303b feat: add a stale issue scheduled action
1287976 build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10
38932cd build(deps): bump github.com/go-viper/mapstructure/v2 in /remote
6d014be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
b74c7ee build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0
acd05e1 fix: linting issues
ae5a8e2 ci: upgrade golangci-lint
Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.11.0 to 1.11.1

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.11.1

This release fixes #1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.

What's Changed

Backport #1786 to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by @brackendawson in stretchr/testify#1788

Full Changelog: stretchr/testify@v1.11.0...v1.11.1

Commits

2a57335 Merge pull request #1788 from brackendawson/1785-backport-1.11
af8c912 Backport #1786 to release/1.11
See full diff in compare view

Updates golang.org/x/net from 0.43.0 to 0.44.0

Commits

3b23d57 http2: fix race condition when disabling goroutine debugging for one test
8741050 http2: simplify TestServer_Push_RejectAfterGoAway
96e405c http2: modernize TestTransportRoundtripCloseOnWriteError
6dc6880 http2: simplify ClientConn Close and Shutdown tests
4e2915b http2: modernize TestTransportAllocationsAfterResponseBodyClose
30b0e78 http2: modernize TestRoundTripDoesntConsumeRequestBodyEarly
b9acd77 http2: speed up TestTransportFlowControl
5153f4d go.mod: update golang.org/x dependencies
9338bdd http2: speed up TestTransportHandlerBodyClose
6b20036 http2: add synchronous handler support to serverTester
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the golang group with 3 updates: [github.com/spf13/viper](https://github.com/spf13/viper), [github.com/stretchr/testify](https://github.com/stretchr/testify) and [golang.org/x/net](https://github.com/golang/net). Updates `github.com/spf13/viper` from 1.20.0 to 1.21.0 - [Release notes](https://github.com/spf13/viper/releases) - [Commits](spf13/viper@v1.20.0...v1.21.0) Updates `github.com/stretchr/testify` from 1.11.0 to 1.11.1 - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.11.0...v1.11.1) Updates `golang.org/x/net` from 0.43.0 to 0.44.0 - [Commits](golang/net@v0.43.0...v0.44.0) --- updated-dependencies: - dependency-name: github.com/spf13/viper dependency-version: 1.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang - dependency-name: github.com/stretchr/testify dependency-version: 1.11.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: golang - dependency-name: golang.org/x/net dependency-version: 0.44.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Sep 14, 2025

dependabot bot requested review from atye, ChristianAtDell, bandak2, Deepak-Ghivari, EvgenyUglov, falfaroc, francis-nijay, karthikk92, panigs7, rajendraindukuri, santhoshatdell, shaynafinocchiaro and anathoodell as code owners September 14, 2025 18:01

dependabot bot force-pushed the dependabot/go_modules/golang-920df23198 branch from 536dda2 to d321e92 Compare September 16, 2025 16:06

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the golang group with 3 updates #352

Bump the golang group with 3 updates #352

Uh oh!

dependabot bot commented on behalf of github Sep 14, 2025 •

edited

Loading

Uh oh!

Uh oh!

Bump the golang group with 3 updates #352

Are you sure you want to change the base?

Bump the golang group with 3 updates #352

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 14, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v1.21.0

What's Changed

Enhancements 🚀

Bug Fixes 🐛

Dependency Updates ⬆️

Other Changes

New Contributors

v1.20.1

What's Changed

Bug Fixes 🐛

v1.11.1

What's Changed

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Sep 14, 2025 •

edited

Loading