Bump the go_modules group across 2 directories with 2 updates #1393

dependabot · 2025-11-24T19:02:23Z

Bumps the go_modules group with 2 updates in the / directory: github.com/cometbft/cometbft and github.com/consensys/gnark-crypto.
Bumps the go_modules group with 1 update in the /integration-tests directory: github.com/cometbft/cometbft.

Updates github.com/cometbft/cometbft from 0.38.17 to 0.38.19

Release notes

Sourced from github.com/cometbft/cometbft's releases.

v0.38.19

This is a security patch release to the CometBFT v0.38.x family that fixes GHSA-hrhf-2vcr-ghch

What's Changed

chore: fix test docker image by @aljo242 in cometbft/cometbft#5299

chore: refactor changelogs by @aljo242 in cometbft/cometbft#5303

chore: update and fix mockery tooling on v0.38 by @aljo242 in cometbft/cometbft#5301

chore: fix the linter by @aljo242 in cometbft/cometbft#5304

fix(store): Properly prune extended commits (backport #5276) by @mergify[bot] in cometbft/cometbft#5313

chore: clean up the repo by @aljo242 in cometbft/cometbft#5315

fix: remove exposed dockertest port to unblock postgres test by @almk-dev in cometbft/cometbft#5325

fix(consensus/reactor): reject oversized proposals (backport #5324) by @mergify[bot] in cometbft/cometbft#5407

GHSA-hrhf-2vcr-ghch

Full Changelog: cometbft/cometbft@v0.38.18...v0.38.19

v0.38.18

What's Changed

fix: remove redundant error check for PubKeyToProto by @islishude in cometbft/cometbft#4917

ci: remove govulncheck (backport #4946) by @mergify[bot] in cometbft/cometbft#4961

build(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by @dependabot[bot] in cometbft/cometbft#4936

fix(ci): Fix docker builds (backport #4949) by @mergify[bot] in cometbft/cometbft#4963

build(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by @dependabot[bot] in cometbft/cometbft#4972

build(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by @dependabot[bot] in cometbft/cometbft#5008

build(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by @dependabot[bot] in cometbft/cometbft#5009

build(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by @dependabot[bot] in cometbft/cometbft#4990

build(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by @dependabot[bot] in cometbft/cometbft#4992

build(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by @dependabot[bot] in cometbft/cometbft#4998

build(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by @dependabot[bot] in cometbft/cometbft#4997

build(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by @dependabot[bot] in cometbft/cometbft#4994

build(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by @dependabot[bot] in cometbft/cometbft#4995

chore: fix typo in workflow_dispatch (backport #5164) by @mergify[bot] in cometbft/cometbft#5166

ci(testapp-docker): release two images, not one (backport #5014) by @mergify[bot] in cometbft/cometbft#5168

chore: add supported version to e2e image tag (backport #5169) by @mergify[bot] in cometbft/cometbft#5171

chore: remove tag from individual builds (backport #5173) by @mergify[bot] in cometbft/cometbft#5174

refactor: e2e-node docker build (backport #5176) by @mergify[bot] in cometbft/cometbft#5178

refactor: cometbft image build (backport #5179) by @mergify[bot] in cometbft/cometbft#5181

fix: add git to docker ignore (backport #5214) by @mergify[bot] in cometbft/cometbft#5216

fix: do multistage builds for e2e-node (backport #5220) by @mergify[bot] in cometbft/cometbft#5222

fix: add libs to e2e tests v0.38.x by @zrbecker in cometbft/cometbft#5234

chore: reindex to event sink from cli (backport #5209) by @mergify[bot] in cometbft/cometbft#5240

feat: precommit metrics by @technicallyty in cometbft/cometbft#5251

chore: prep release for v0.38.18 by @technicallyty in cometbft/cometbft#5253

Full Changelog: cometbft/cometbft@v0.38.17...v0.38.18

Changelog

Sourced from github.com/cometbft/cometbft's changelog.

v0.38.19

October 14, 2025

This release fixes two security issues, including (ASA-2025-003). Users are encouraged to upgrade as soon as possible.

Additionally included is a bug fix to properly prune extended commits (with vote extensions).

BUG-FIXES

[consensus] Reject oversized proposals (#5324)

[store] Prune extended commits properly (5275)

[bits] Validate BitArray mismatched Bits and Elems length (ASA-2025-003)

v0.38.18

July 3, 2025

Adds precommit metrics and reindex CLI command.

IMPROVEMENTS

Adds metrics that emit precommit data; precommit quorum delay from proposal, and precommit vote count and stake weight within timeout commit period. (#5251)

Commits

be5677c Merge commit from fork
2cd5d91 fix(consensus/reactor): reject oversized proposals (backport #5324) (#5407)
bb538f0 fix: remove exposed dockertest port to unblock postgres test (#5325)
61b60f6 chore: clean up the repo (#5315)
9806733 fix(store): Properly prune extended commits (backport #5276) (#5313)
c789138 chore: fix the linter (#5304)
840e709 chore: update and fix mockery tooling on v0.38 (#5301)
020c7cf chore: refactor changelogs (#5303)
91348c6 chore: fix test docker image (#5299)
5344a6e chore: prep release for v0.38.18 (#5253)
Additional commits viewable in compare view

Updates github.com/consensys/gnark-crypto from 0.14.0 to 0.18.1

Release notes

Sourced from github.com/consensys/gnark-crypto's releases.

v0.18.1

Full Changelog: Consensys/gnark-crypto@v0.18.0...v0.18.1

v0.18.0

What's Changed

perf: disable cobra bit reverse for small fields by @gbotrel in Consensys/gnark-crypto#662

perf: adds avx512 poseidon2 for small fields by @gbotrel in Consensys/gnark-crypto#665

GKR Gate Registry by @Tabaie in Consensys/gnark-crypto#652

chore: remove unused benchmark script by @ivokub in Consensys/gnark-crypto#675

Remove GKR from gnark-crypto by @Tabaie in Consensys/gnark-crypto#670

feat: make <31 bit field generated using uint32 by @gbotrel in Consensys/gnark-crypto#676

refactor: hash to curve by @ivokub in Consensys/gnark-crypto#674

fix: Eisenstein Half-GCD convergence by @feltroidprime in Consensys/gnark-crypto#680

feat/hashregistry by @Tabaie in Consensys/gnark-crypto#687

Feat/fftext by @YaoJGalteland in Consensys/gnark-crypto#684

Feat/vortex options by @ThomasPiellard in Consensys/gnark-crypto#689

[secp256k1]: replace outdated link to article by @gap-editor in Consensys/gnark-crypto#690

feat: remove dependency on internal package in ecc.go by @gbotrel in Consensys/gnark-crypto#693

New Contributors

@feltroidprime made their first contribution in Consensys/gnark-crypto#680

@YaoJGalteland made their first contribution in Consensys/gnark-crypto#684

@gap-editor made their first contribution in Consensys/gnark-crypto#690

Full Changelog: Consensys/gnark-crypto@v0.17.0...v0.18.0

v0.17.0

What's Changed

fix: missing Poseidon2 round keys by @Tabaie in Consensys/gnark-crypto#621

feat: Poseidon2 Hash Instantiation for BLS12-377 by @Tabaie in Consensys/gnark-crypto#623

feat: add Grumpkin elliptic curve (2-cycle with BN254) by @yelhousni in Consensys/gnark-crypto#625

Perf: Poseidon2 GKR circuit by @Tabaie in Consensys/gnark-crypto#628

feat: add sis avx512 and fft avx512 for koalabear by @gbotrel in Consensys/gnark-crypto#622

InterpolateOnRange refactor by @Tabaie in Consensys/gnark-crypto#634

chore: add auto close PR workflow by @gbotrel in Consensys/gnark-crypto#638

perf: subgroup membership by @yelhousni in Consensys/gnark-crypto#635

feat: poseidon2 for koala-bear, baby-bear and goldilocks by @yelhousni in Consensys/gnark-crypto#629

chore: generify poseidon2 parameters for other curves/fr by @yelhousni in Consensys/gnark-crypto#636

feat: baby-bear and koala-bear extensions of degree 4 by @yelhousni in Consensys/gnark-crypto#643

fix: ensure fast path is taken only with fixed bound and degree by @gbotrel in Consensys/gnark-crypto#651

Poseidon2 compression for small fields by @Tabaie in Consensys/gnark-crypto#644

fix: poseidon2 templates by @yelhousni in Consensys/gnark-crypto#648

test: improve NAF decomposition test coverage by @DeVikingMark in Consensys/gnark-crypto#617

refactor: generate code for poseidon2_test by @yelhousni in Consensys/gnark-crypto#660

test(bn254, bls12-381): test points intentionally not on sugroups G1/2 by @yelhousni in Consensys/gnark-crypto#658

refactor: generify small fields extensions by @yelhousni in Consensys/gnark-crypto#647

New Contributors

@DeVikingMark made their first contribution in Consensys/gnark-crypto#617

... (truncated)

Changelog

Sourced from github.com/consensys/gnark-crypto's changelog.

[v0.18.1] - 2025-10-28

Docs

add CHANGELOG for 0.18.1

Perf

limit memory allocation during Vector deserialization (#759)

[v0.18.0] - 2025-06-09

Build

deps: bump golang.org/x/crypto from 0.33.0 to 0.35.0 (#677)

Chore

remove unused benchmark script (#675)

Docs

replace outdated link to article (#690)

Experiment

vortex on koalabear (#645)

Feat

remove dependency on internal package in ecc.go (#693)

make <31 bit field generated using uint32 (#676)

Fix

remove unimplemented path from fft ext

Eisenstein Half-GCD convergence (#680)

Perf

adds avx512 poseidon2 for small fields (#665)

remove useless copies in e4 mul by elem (#667)

disable cobra bit reverse for small fields (#662)

Refactor

hash to curve (#674)

[v0.17.0] - 2025-03-11

Chore

remove useless github workflow

generify poseidon2 parameters for other curves/fr (#636)

add auto close PR workflow (#638)

Feat

baby-bear and koala-bear extensions of degree 4 (#643)

poseidon2 for koala-bear, baby-bear and goldilocks (#629)

add sis avx512 and fft avx512 for koalabear (#622)

... (truncated)

Commits

fb04e95 docs: add CHANGELOG for 0.18.1
0a4d04a perf: limit memory allocation during Vector deserialization (#759)
f8ab23a fix: remove unimplemented path from fft ext
2b70394 feat: remove dependency on internal package in ecc.go (#693)
ca72a0f docs: replace outdated link to article (#690)
21614bd Feat/vortex options (#689)
0517915 Feat/fftext (#684)
404f8e5 feat/hashregistry (#687)
5660088 fix: Eisenstein Half-GCD convergence (#680)
1873045 build(deps): bump golang.org/x/crypto from 0.33.0 to 0.35.0 (#677)
Additional commits viewable in compare view

Updates github.com/cometbft/cometbft from 0.38.17 to 0.38.19

Release notes

Sourced from github.com/cometbft/cometbft's releases.

v0.38.19

This is a security patch release to the CometBFT v0.38.x family that fixes GHSA-hrhf-2vcr-ghch

What's Changed

chore: fix test docker image by @aljo242 in cometbft/cometbft#5299

chore: refactor changelogs by @aljo242 in cometbft/cometbft#5303

chore: update and fix mockery tooling on v0.38 by @aljo242 in cometbft/cometbft#5301

chore: fix the linter by @aljo242 in cometbft/cometbft#5304

fix(store): Properly prune extended commits (backport #5276) by @mergify[bot] in cometbft/cometbft#5313

chore: clean up the repo by @aljo242 in cometbft/cometbft#5315

fix: remove exposed dockertest port to unblock postgres test by @almk-dev in cometbft/cometbft#5325

fix(consensus/reactor): reject oversized proposals (backport #5324) by @mergify[bot] in cometbft/cometbft#5407

GHSA-hrhf-2vcr-ghch

Full Changelog: cometbft/cometbft@v0.38.18...v0.38.19

v0.38.18

What's Changed

fix: remove redundant error check for PubKeyToProto by @islishude in cometbft/cometbft#4917

ci: remove govulncheck (backport #4946) by @mergify[bot] in cometbft/cometbft#4961

build(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by @dependabot[bot] in cometbft/cometbft#4936

fix(ci): Fix docker builds (backport #4949) by @mergify[bot] in cometbft/cometbft#4963

build(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by @dependabot[bot] in cometbft/cometbft#4972

build(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by @dependabot[bot] in cometbft/cometbft#5008

build(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by @dependabot[bot] in cometbft/cometbft#5009

build(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by @dependabot[bot] in cometbft/cometbft#4990

build(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by @dependabot[bot] in cometbft/cometbft#4992

build(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by @dependabot[bot] in cometbft/cometbft#4998

build(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by @dependabot[bot] in cometbft/cometbft#4997

build(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by @dependabot[bot] in cometbft/cometbft#4994

build(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by @dependabot[bot] in cometbft/cometbft#4995

chore: fix typo in workflow_dispatch (backport #5164) by @mergify[bot] in cometbft/cometbft#5166

ci(testapp-docker): release two images, not one (backport #5014) by @mergify[bot] in cometbft/cometbft#5168

chore: add supported version to e2e image tag (backport #5169) by @mergify[bot] in cometbft/cometbft#5171

chore: remove tag from individual builds (backport #5173) by @mergify[bot] in cometbft/cometbft#5174

refactor: e2e-node docker build (backport #5176) by @mergify[bot] in cometbft/cometbft#5178

refactor: cometbft image build (backport #5179) by @mergify[bot] in cometbft/cometbft#5181

fix: add git to docker ignore (backport #5214) by @mergify[bot] in cometbft/cometbft#5216

fix: do multistage builds for e2e-node (backport #5220) by @mergify[bot] in cometbft/cometbft#5222

fix: add libs to e2e tests v0.38.x by @zrbecker in cometbft/cometbft#5234

chore: reindex to event sink from cli (backport #5209) by @mergify[bot] in cometbft/cometbft#5240

feat: precommit metrics by @technicallyty in cometbft/cometbft#5251

chore: prep release for v0.38.18 by @technicallyty in cometbft/cometbft#5253

Full Changelog: cometbft/cometbft@v0.38.17...v0.38.18

Changelog

Sourced from github.com/cometbft/cometbft's changelog.

v0.38.19

October 14, 2025

This release fixes two security issues, including (ASA-2025-003). Users are encouraged to upgrade as soon as possible.

Additionally included is a bug fix to properly prune extended commits (with vote extensions).

BUG-FIXES

[consensus] Reject oversized proposals (#5324)

[store] Prune extended commits properly (5275)

[bits] Validate BitArray mismatched Bits and Elems length (ASA-2025-003)

v0.38.18

July 3, 2025

Adds precommit metrics and reindex CLI command.

IMPROVEMENTS

Adds metrics that emit precommit data; precommit quorum delay from proposal, and precommit vote count and stake weight within timeout commit period. (#5251)

Commits

be5677c Merge commit from fork
2cd5d91 fix(consensus/reactor): reject oversized proposals (backport #5324) (#5407)
bb538f0 fix: remove exposed dockertest port to unblock postgres test (#5325)
61b60f6 chore: clean up the repo (#5315)
9806733 fix(store): Properly prune extended commits (backport #5276) (#5313)
c789138 chore: fix the linter (#5304)
840e709 chore: update and fix mockery tooling on v0.38 (#5301)
020c7cf chore: refactor changelogs (#5303)
91348c6 chore: fix test docker image (#5299)
5344a6e chore: prep release for v0.38.18 (#5253)
Additional commits viewable in compare view

Updates github.com/consensys/gnark-crypto from 0.14.0 to 0.18.1

Release notes

Sourced from github.com/consensys/gnark-crypto's releases.

v0.18.1

Full Changelog: Consensys/gnark-crypto@v0.18.0...v0.18.1

v0.18.0

What's Changed

perf: disable cobra bit reverse for small fields by @gbotrel in Consensys/gnark-crypto#662

perf: adds avx512 poseidon2 for small fields by @gbotrel in Consensys/gnark-crypto#665

GKR Gate Registry by @Tabaie in Consensys/gnark-crypto#652

chore: remove unused benchmark script by @ivokub in Consensys/gnark-crypto#675

Remove GKR from gnark-crypto by @Tabaie in Consensys/gnark-crypto#670

feat: make <31 bit field generated using uint32 by @gbotrel in Consensys/gnark-crypto#676

refactor: hash to curve by @ivokub in Consensys/gnark-crypto#674

fix: Eisenstein Half-GCD convergence by @feltroidprime in Consensys/gnark-crypto#680

feat/hashregistry by @Tabaie in Consensys/gnark-crypto#687

Feat/fftext by @YaoJGalteland in Consensys/gnark-crypto#684

Feat/vortex options by @ThomasPiellard in Consensys/gnark-crypto#689

[secp256k1]: replace outdated link to article by @gap-editor in Consensys/gnark-crypto#690

feat: remove dependency on internal package in ecc.go by @gbotrel in Consensys/gnark-crypto#693

New Contributors

@feltroidprime made their first contribution in Consensys/gnark-crypto#680

@YaoJGalteland made their first contribution in Consensys/gnark-crypto#684

@gap-editor made their first contribution in Consensys/gnark-crypto#690

Full Changelog: Consensys/gnark-crypto@v0.17.0...v0.18.0

v0.17.0

What's Changed

fix: missing Poseidon2 round keys by @Tabaie in Consensys/gnark-crypto#621

feat: Poseidon2 Hash Instantiation for BLS12-377 by @Tabaie in Consensys/gnark-crypto#623

feat: add Grumpkin elliptic curve (2-cycle with BN254) by @yelhousni in Consensys/gnark-crypto#625

Perf: Poseidon2 GKR circuit by @Tabaie in Consensys/gnark-crypto#628

feat: add sis avx512 and fft avx512 for koalabear by @gbotrel in Consensys/gnark-crypto#622

InterpolateOnRange refactor by @Tabaie in Consensys/gnark-crypto#634

chore: add auto close PR workflow by @gbotrel in Consensys/gnark-crypto#638

perf: subgroup membership by @yelhousni in Consensys/gnark-crypto#635

feat: poseidon2 for koala-bear, baby-bear and goldilocks by @yelhousni in Consensys/gnark-crypto#629

chore: generify poseidon2 parameters for other curves/fr by @yelhousni in Consensys/gnark-crypto#636

feat: baby-bear and koala-bear extensions of degree 4 by @yelhousni in Consensys/gnark-crypto#643

fix: ensure fast path is taken only with fixed bound and degree by @gbotrel in Consensys/gnark-crypto#651

Poseidon2 compression for small fields by @Tabaie in Consensys/gnark-crypto#644

fix: poseidon2 templates by @yelhousni in Consensys/gnark-crypto#648

test: improve NAF decomposition test coverage by @DeVikingMark in Consensys/gnark-crypto#617

refactor: generate code for poseidon2_test by @yelhousni in Consensys/gnark-crypto#660

test(bn254, bls12-381): test points intentionally not on sugroups G1/2 by @yelhousni in Consensys/gnark-crypto#658

refactor: generify small fields extensions by @yelhousni in Consensys/gnark-crypto#647

New Contributors

@DeVikingMark made their first contribution in Consensys/gnark-crypto#617

... (truncated)

Changelog

Sourced from github.com/consensys/gnark-crypto's changelog.

[v0.18.1] - 2025-10-28

Docs

add CHANGELOG for 0.18.1

Perf

limit memory allocation during Vector deserialization (#759)

[v0.18.0] - 2025-06-09

Build

deps: bump golang.org/x/crypto from 0.33.0 to 0.35.0 (#677)

Chore

remove unused benchmark script (#675)

Docs

replace outdated link to article (#690)

Experiment

vortex on koalabear (#645)

Feat

remove dependency on internal package in ecc.go (#693)

make <31 bit field generated using uint32 (#676)

Fix

remove unimplemented path from fft ext

Eisenstein Half-GCD convergence (#680)

Perf

adds avx512 poseidon2 for small fields (#665)

remove useless copies in e4 mul by elem (#667)

disable cobra bit reverse for small fields (#662)

Refactor

hash to curve (#674)

[v0.17.0] - 2025-03-11

Chore

remove useless github workflow

generify poseidon2 parameters for other curves/fr (#636)

add auto close PR workflow (#638)

Feat

baby-bear and koala-bear extensions of degree 4 (#643)

poseidon2 for koala-bear, baby-bear and goldilocks (#629)

add sis avx512 and fft avx512 for koalabear (#622)

... (truncated)

Commits

fb04e95 docs: add CHANGELOG for 0.18.1
0a4d04a perf: limit memory allocation during Vector deserialization (#759)
f8ab23a fix: remove unimplemented path from fft ext
2b70394 feat: remove dependency on internal package in ecc.go (#693)
ca72a0f docs: replace outdated link to article (#690)
21614bd Feat/vortex options (#689)
0517915 Feat/fftext (#684)
404f8e5 feat/hashregistry (#687)
5660088 fix: Eisenstein Half-GCD convergence (#680)
1873045 build(deps): bump golang.org/x/crypto from 0.33.0 to 0.35.0 (#677)
Additional commits viewable in compare view

Updates github.com/cometbft/cometbft from 0.38.17 to 0.38.19

Release notes

Sourced from github.com/cometbft/cometbft's releases.

v0.38.19

This is a security patch release to the CometBFT v0.38.x family that fixes GHSA-hrhf-2vcr-ghch

What's Changed

chore: fix test docker image by @aljo242 in cometbft/cometbft#5299

chore: refactor changelogs by @aljo242 in cometbft/cometbft#5303

chore: update and fix mockery tooling on v0.38 by @aljo242 in cometbft/cometbft#5301

chore: fix the linter by @aljo242 in cometbft/cometbft#5304

fix(store): Properly prune extended commits (backport #5276) by @mergify[bot] in cometbft/cometbft#5313

chore: clean up the repo by @aljo242 in cometbft/cometbft#5315

fix: remove exposed dockertest port to unblock postgres test by @almk-dev in cometbft/cometbft#5325

fix(consensus/reactor): reject oversized proposals (backport #5324) by @mergify[bot] in cometbft/cometbft#5407

GHSA-hrhf-2vcr-ghch

Full Changelog: cometbft/cometbft@v0.38.18...v0.38.19

v0.38.18

What's Changed

fix: remove redundant error check for PubKeyToProto by @islishude in cometbft/cometbft#4917

ci: remove govulncheck (backport #4946) by @mergify[bot] in cometbft/cometbft#4961

build(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by @dependabot[bot] in cometbft/cometbft#4936

fix(ci): Fix docker builds (backport #4949) by @mergify[bot] in cometbft/cometbft#4963

build(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by @dependabot[bot] in cometbft/cometbft#4972

build(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by @dependabot[bot] in cometbft/cometbft#5008

build(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by @dependabot[bot] in cometbft/cometbft#5009

build(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by @dependabot[bot] in cometbft/cometbft#4990

build(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by @dependabot[bot] in cometbft/cometbft#4992

build(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by @dependabot[bot] in cometbft/cometbft#4998

build(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by @dependabot[bot] in cometbft/cometbft#4997

build(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by @dependabot[bot] in cometbft/cometbft#4994

build(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by @dependabot[bot] in cometbft/cometbft#4995

chore: fix typo in workflow_dispatch (backport #5164) by @mergify[bot] in cometbft/cometbft#5166

ci(testapp-docker): release two images, not one (backport #5014) by @mergify[bot] in cometbft/cometbft#5168

chore: add supported version to e2e image tag (backport #5169) by @mergify[bot] in cometbft/cometbft#5171

chore: remove tag from individual builds (backport #5173) by @mergify[bot] in cometbft/cometbft#5174

refactor: e2e-node docker build (backport #5176) by @mergify[bot] in cometbft/cometbft#5178

refactor: cometbft image build (backport #5179) by @mergify[bot] in cometbft/cometbft#5181

fix: add git to docker ignore (backport #5214) by @mergify[bot] in cometbft/cometbft#5216

fix: do multistage builds for e2e-node (backport #5220) by @mergify[bot] in cometbft/cometbft#5222

fix: add libs to e2e tests v0.38.x by @zrbecker in <...
Description has been truncated

Bumps the go_modules group with 2 updates in the / directory: [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) and [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto). Bumps the go_modules group with 1 update in the /integration-tests directory: [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft). Updates `github.com/cometbft/cometbft` from 0.38.17 to 0.38.19 - [Release notes](https://github.com/cometbft/cometbft/releases) - [Changelog](https://github.com/cometbft/cometbft/blob/v0.38.19/CHANGELOG.md) - [Commits](cometbft/cometbft@v0.38.17...v0.38.19) Updates `github.com/consensys/gnark-crypto` from 0.14.0 to 0.18.1 - [Release notes](https://github.com/consensys/gnark-crypto/releases) - [Changelog](https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md) - [Commits](Consensys/gnark-crypto@v0.14.0...v0.18.1) Updates `github.com/cometbft/cometbft` from 0.38.17 to 0.38.19 - [Release notes](https://github.com/cometbft/cometbft/releases) - [Changelog](https://github.com/cometbft/cometbft/blob/v0.38.19/CHANGELOG.md) - [Commits](cometbft/cometbft@v0.38.17...v0.38.19) Updates `github.com/consensys/gnark-crypto` from 0.14.0 to 0.18.1 - [Release notes](https://github.com/consensys/gnark-crypto/releases) - [Changelog](https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md) - [Commits](Consensys/gnark-crypto@v0.14.0...v0.18.1) Updates `github.com/cometbft/cometbft` from 0.38.17 to 0.38.19 - [Release notes](https://github.com/cometbft/cometbft/releases) - [Changelog](https://github.com/cometbft/cometbft/blob/v0.38.19/CHANGELOG.md) - [Commits](cometbft/cometbft@v0.38.17...v0.38.19) Updates `github.com/cometbft/cometbft` from 0.38.17 to 0.38.19 - [Release notes](https://github.com/cometbft/cometbft/releases) - [Changelog](https://github.com/cometbft/cometbft/blob/v0.38.19/CHANGELOG.md) - [Commits](cometbft/cometbft@v0.38.17...v0.38.19) --- updated-dependencies: - dependency-name: github.com/cometbft/cometbft dependency-version: 0.38.19 dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/consensys/gnark-crypto dependency-version: 0.18.1 dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/cometbft/cometbft dependency-version: 0.38.19 dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/consensys/gnark-crypto dependency-version: 0.18.1 dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/cometbft/cometbft dependency-version: 0.38.19 dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/cometbft/cometbft dependency-version: 0.38.19 dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <[email protected]>

cl-sonarqube-production · 2025-11-24T19:03:44Z

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarQube

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 24, 2025

dependabot bot requested review from a team as code owners November 24, 2025 19:02

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 24, 2025

dependabot bot had a problem deploying to integration November 24, 2025 19:02 Failure

dependabot bot temporarily deployed to integration November 24, 2025 19:02 Inactive

dependabot bot had a problem deploying to integration November 24, 2025 19:02 Failure

dependabot bot temporarily deployed to integration November 24, 2025 19:02 Inactive

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the go_modules group across 2 directories with 2 updates #1393

Bump the go_modules group across 2 directories with 2 updates #1393

Uh oh!

dependabot bot commented on behalf of github Nov 24, 2025

Uh oh!

cl-sonarqube-production bot commented Nov 24, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Bump the go_modules group across 2 directories with 2 updates #1393

Are you sure you want to change the base?

Bump the go_modules group across 2 directories with 2 updates #1393

Uh oh!

Conversation

dependabot bot commented on behalf of github Nov 24, 2025

v0.38.19

What's Changed

v0.38.18

What's Changed

v0.38.19

BUG-FIXES

v0.38.18

IMPROVEMENTS

v0.18.1

v0.18.0

What's Changed

New Contributors

v0.17.0

What's Changed

New Contributors

[v0.18.1] - 2025-10-28

Docs

Perf

[v0.18.0] - 2025-06-09

Build

Chore

Docs

Experiment

Feat

Fix

Perf

Refactor

[v0.17.0] - 2025-03-11

Chore

Feat

v0.38.19

What's Changed

v0.38.18

What's Changed

v0.38.19

BUG-FIXES

v0.38.18

IMPROVEMENTS

v0.18.1

v0.18.0

What's Changed

New Contributors

v0.17.0

What's Changed

New Contributors

[v0.18.1] - 2025-10-28

Docs

Perf

[v0.18.0] - 2025-06-09

Build

Chore

Docs

Experiment

Feat

Fix

Perf

Refactor

[v0.17.0] - 2025-03-11

Chore

Feat

v0.38.19

What's Changed

v0.38.18

What's Changed

Uh oh!

cl-sonarqube-production bot commented Nov 24, 2025

Quality Gate passed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development