Skip to content

gomod(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0#2580

Merged
halamix2 merged 1 commit into
mainfrom
dependabot/go_modules/golang.org/x/crypto-0.53.0
Jun 13, 2026
Merged

gomod(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0#2580
halamix2 merged 1 commit into
mainfrom
dependabot/go_modules/golang.org/x/crypto-0.53.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 12, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps golang.org/x/crypto from 0.52.0 to 0.53.0.

Commits
  • 45460e0 go.mod: update golang.org/x dependencies
  • d37c95e pkcs12: limit PBKDF iteration count to prevent CPU exhaustion
  • e2ffffe ssh: reject incomplete gssapi-with-mic configurations
  • 60e158a ssh/test: isolate CLI tests from user SSH config and agent
  • 1b77d23 ssh/knownhosts: reject lines with multiple or unknown markers
  • 3872a2b ssh/knownhosts: verify declared key type matches decoded key
  • 9f72ecc ssh/knownhosts: treat only ASCII space and tab as whitespace
  • 8f405a4 ssh: validate ECDSA curve matches expected algorithm
  • bb41b3d ssh: improve DH GEX group selection using PreferredBits
  • e04e721 ssh/agent: validate ed25519 private key length in Add
  • Additional commits viewable in compare view

@dependabot dependabot Bot added area/dependency Issues or PRs related to dependency changes kind/chore Categorizes issue or PR as related to a chore. labels Jun 12, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 12, 2026 07:33
@halamix2

halamix2 commented Jun 13, 2026

Copy link
Copy Markdown
Member

@dependabot rebase

@halamix2 halamix2 enabled auto-merge (squash) June 13, 2026 22:08
@dependabot
gomod(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0
9b7ce7a 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.52.0 to 0.53.0.
- [Commits](golang/crypto@v0.52.0...v0.53.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch from c1e8ee7 to 9b7ce7a Compare June 13, 2026 22:09
@halamix2 halamix2 merged commit 2ab5613 into main Jun 13, 2026
47 of 48 checks passed
@dependabot dependabot Bot deleted the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch June 13, 2026 23:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@halamix2 halamix2 halamix2 approved these changes

Assignees

No one assigned

Labels

area/dependency Issues or PRs related to dependency changes kind/chore Categorizes issue or PR as related to a chore.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@halamix2