Skip to content

Bump the golang group across 1 directory with 4 updates#14

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/golang-e06e724ee1
Open

Bump the golang group across 1 directory with 4 updates#14
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/golang-e06e724ee1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the golang group with 4 updates in the / directory: github.com/mattn/go-sqlite3, github.com/minio/minio-go/v7, go.mongodb.org/mongo-driver/v2 and golang.org/x/image.

Updates github.com/mattn/go-sqlite3 from 1.14.46 to 1.14.47

Commits

Updates github.com/minio/minio-go/v7 from 7.2.0 to 7.2.1

Commits

Updates go.mongodb.org/mongo-driver/v2 from 2.6.2 to 2.7.0

Release notes

Sourced from go.mongodb.org/mongo-driver/v2's releases.

MongoDB Go Driver 2.7.0

The MongoDB Go Driver Team is pleased to release version 2.7.0 of the official MongoDB Go Driver.

Release Highlights

This release adds support for sending afterClusterTime on writes in causally consistent sessions, improving alignment between read and write behavior in session-based workflows. It also continues cleanup of session-related and internal-only APIs by deprecating the experimental session API, helping clarify which surfaces are intended for long-term public use. Alongside that, the release includes a handful of targeted quality improvements across BSON validation, change streams, and error reporting to make the driver more predictable and easier to debug.

What's Changed

✨ New Features

🐛 Fixed

📝 Other Changes

New Contributors

Full Changelog: mongodb/mongo-go-driver@v2.6.2...v2.7.0

For a full list of tickets included in this release, please see the list of fixed issues.

... (truncated)

Commits
  • 7d61ab3 BUMP v2.7.0
  • d9593db GODRIVER-3559 Skip Docker Runner Tests (#2432)
  • 6d0f68d Merge release/2.6 into master (#2437)
  • 0ff564f Merge branch 'release/2.6'
  • 5b90659 Merge branch 'master' into merge-release/2.6-into-master-1781722303033
  • 283aa8b GODRIVER-3113 Skip flaky test in commit.json. (#2435)
  • 1803b12 GODRIVER-3965 fix: misleading error message type info in rewrap function (#2430)
  • 6128169 Bump github.com/bitfield/script from 0.24.1 to 0.24.3 (#2433)
  • 574429f Merge pull request #2422 from matthewdale/docs-driver-capitalization
  • ebc2aba Bump mongodb-labs/drivers-github-tools from bf6b13e3657ed8871cd4758432d4a10e8...
  • Additional commits viewable in compare view

Updates golang.org/x/image from 0.41.0 to 0.43.0

Commits
  • b5baf41 tiff: avoid overflow when reading IFD entries
  • e7513b5 tiff: limit the amount of data read in IFD entries
  • cb9f1a6 tiff: limit uncompressed data reads
  • 304d4cc tiff: reject tiles too much larger than the image
  • 7c04344 tiff: add buffer slice overflow checks for 32-bit systems
  • c5511df webp: require that VP8/VP8L dimensions match canvas dimensions
  • 38fd220 bmp: don't panic on too-large image, reject 0xN
  • f95dd26 font/sfnt: avoid panics from out-of-bounds access in invalid GPOS table
  • 1e486eb tiff: don't panic when decoding too-large image on 32-bit platforms
  • 3fd0b07 go.mod: update golang.org/x dependencies
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the golang group with 4 updates in the / directory: [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3), [github.com/minio/minio-go/v7](https://github.com/minio/minio-go), [go.mongodb.org/mongo-driver/v2](https://github.com/mongodb/mongo-go-driver) and [golang.org/x/image](https://github.com/golang/image).


Updates `github.com/mattn/go-sqlite3` from 1.14.46 to 1.14.47
- [Release notes](https://github.com/mattn/go-sqlite3/releases)
- [Commits](mattn/go-sqlite3@v1.14.46...v1.14.47)

Updates `github.com/minio/minio-go/v7` from 7.2.0 to 7.2.1
- [Release notes](https://github.com/minio/minio-go/releases)
- [Commits](minio/minio-go@v7.2.0...v7.2.1)

Updates `go.mongodb.org/mongo-driver/v2` from 2.6.2 to 2.7.0
- [Release notes](https://github.com/mongodb/mongo-go-driver/releases)
- [Commits](mongodb/mongo-go-driver@v2.6.2...v2.7.0)

Updates `golang.org/x/image` from 0.41.0 to 0.43.0
- [Commits](golang/image@v0.41.0...v0.43.0)

---
updated-dependencies:
- dependency-name: github.com/mattn/go-sqlite3
  dependency-version: 1.14.47
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: github.com/minio/minio-go/v7
  dependency-version: 7.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: go.mongodb.org/mongo-driver/v2
  dependency-version: 2.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: golang.org/x/image
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants