Skip to content

build(deps): bump github.com/quic-go/quic-go from 0.59.0 to 0.59.1#584

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/go_modules/github.com/quic-go/quic-go-0.48.2
Open

build(deps): bump github.com/quic-go/quic-go from 0.59.0 to 0.59.1#584
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/go_modules/github.com/quic-go/quic-go-0.48.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Dec 2, 2024

Copy link
Copy Markdown
Contributor

Bumps github.com/quic-go/quic-go from 0.59.0 to 0.59.1.

Release notes

Sourced from github.com/quic-go/quic-go's releases.

v0.59.1

This patch release backports quic-go/quic-go#5642, which adds validation for HTTP/3 trailers.

Commits

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Dec 2, 2024
@jimmykarily

Copy link
Copy Markdown

Security scanners have started complaining about this: https://osv.dev/vulnerability/GO-2024-3302

We need to fix the tests and get a new release out.

This was referenced Dec 6, 2024
@gammazero

Copy link
Copy Markdown
Contributor

@dependabot recreate

@dependabot dependabot Bot changed the title chore(deps): bump github.com/quic-go/quic-go from 0.46.0 to 0.48.2 build(deps): bump github.com/quic-go/quic-go from 0.59.0 to 0.59.1 Jul 7, 2026
Bumps [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) from 0.59.0 to 0.59.1.
- [Release notes](https://github.com/quic-go/quic-go/releases)
- [Commits](quic-go/quic-go@v0.59.0...v0.59.1)

---
updated-dependencies:
- dependency-name: github.com/quic-go/quic-go
  dependency-version: 0.48.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/quic-go/quic-go-0.48.2 branch from 0425b60 to a4a61a4 Compare July 7, 2026 02:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants