Bump github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1 (#2816)

dependabot[bot] · web-flow · commit df8bd4fe2223 · 2026-01-30T09:29:27.000-08:00
Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) from 5.3.0 to 5.3.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golang-jwt/jwt/releases">github.com/golang-jwt/jwt/v5's releases</a>.</em></p> <blockquote> <h2>v5.3.1</h2>  <h2>What's Changed</h2> <h3>🔐 Features</h3> <ul> <li>Add spellcheck Github action to catch common spelling mistakes by <a href="https://github.com/equalsgibson"><code>@​equalsgibson</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/458">golang-jwt/jwt#458</a></li> <li>Add <code>WithNotBeforeRequired</code> parser option and add test coverage by <a href="https://github.com/equalsgibson"><code>@​equalsgibson</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/456">golang-jwt/jwt#456</a></li> <li>Update godoc example func to properly refer to <code>NewWithClaims()</code> by <a href="https://github.com/equalsgibson"><code>@​equalsgibson</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/459">golang-jwt/jwt#459</a></li> <li>Update github workflows by <a href="https://github.com/mfridman"><code>@​mfridman</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/462">golang-jwt/jwt#462</a></li> <li>Additional test for CustomClaims that validates unmarshalling behaviour by <a href="https://github.com/equalsgibson"><code>@​equalsgibson</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/457">golang-jwt/jwt#457</a></li> <li>Fix early file close in jwt cli by <a href="https://github.com/mfridman"><code>@​mfridman</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/472">golang-jwt/jwt#472</a></li> <li>Add TPM signature reference by <a href="https://github.com/salrashid123"><code>@​salrashid123</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/473">golang-jwt/jwt#473</a></li> <li>Remove misleading ParserOptions documentation in <a href="https://redirect.github.com/golang-jwt/jwt/pull/484">golang-jwt/jwt#484</a></li> <li>Save signature to Token struct after successful signing by <a href="https://github.com/EgorSheff"><code>@​EgorSheff</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/417">golang-jwt/jwt#417</a></li> <li>Set token.Signature in <code>ParseUnverified</code> by <a href="https://github.com/slickwilli"><code>@​slickwilli</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/414">golang-jwt/jwt#414</a></li> </ul> <h3>👒 Dependencies</h3> <ul> <li>Bump crate-ci/typos from 1.34.0 to 1.35.3 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/461">golang-jwt/jwt#461</a></li> <li>Bump crate-ci/typos from 1.35.4 to 1.36.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/470">golang-jwt/jwt#470</a></li> <li>Bump github/codeql-action from 3 to 4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/478">golang-jwt/jwt#478</a></li> <li>Bump crate-ci/typos from 1.36.2 to 1.39.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/480">golang-jwt/jwt#480</a></li> <li>Bump golangci/golangci-lint-action from 8 to 9 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/481">golang-jwt/jwt#481</a></li> <li>Bump actions/setup-go from 5 to 6 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/469">golang-jwt/jwt#469</a></li> <li>Bump crate-ci/typos from 1.39.0 to 1.40.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/488">golang-jwt/jwt#488</a></li> <li>Bump actions/checkout from 5 to 6 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/487">golang-jwt/jwt#487</a></li> <li>Bump crate-ci/typos from 1.40.0 to 1.41.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/490">golang-jwt/jwt#490</a></li> <li>Bump crate-ci/typos from 1.41.0 to 1.42.1 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golang-jwt/jwt/pull/492">golang-jwt/jwt#492</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/equalsgibson"><code>@​equalsgibson</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/458">golang-jwt/jwt#458</a></li> <li><a href="https://github.com/salrashid123"><code>@​salrashid123</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/473">golang-jwt/jwt#473</a></li> <li><a href="https://github.com/EgorSheff"><code>@​EgorSheff</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/417">golang-jwt/jwt#417</a></li> <li><a href="https://github.com/slickwilli"><code>@​slickwilli</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/414">golang-jwt/jwt#414</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1">https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db"><code>7ceae61</code></a> Add release.yml for changelog configuration</li> <li><a href="https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5"><code>dce8e4d</code></a> Set token.Signature in <code>ParseUnverified</code> (<a href="https://redirect.github.com/golang-jwt/jwt/issues/414">#414</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e"><code>8889e20</code></a> Save signature to Token struct after successful signing (<a href="https://redirect.github.com/golang-jwt/jwt/issues/417">#417</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1"><code>d237f82</code></a> ci: update github-actions schedule interval to monthly</li> <li><a href="https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116"><code>d8dce95</code></a> Bump crate-ci/typos from 1.41.0 to 1.42.1 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/492">#492</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290"><code>e931803</code></a> Bump crate-ci/typos from 1.40.0 to 1.41.0 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/490">#490</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d"><code>e6a0afa</code></a> Bump actions/checkout from 5 to 6 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/487">#487</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e"><code>9f85c9e</code></a> Bump crate-ci/typos from 1.39.0 to 1.40.0 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/488">#488</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd"><code>60a8669</code></a> Bump actions/setup-go from 5 to 6 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/469">#469</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434"><code>76f5828</code></a> Remove misleading ParserOptions documentation (<a href="https://redirect.github.com/golang-jwt/jwt/issues/484">#484</a>)</li> <li>Additional commits viewable in <a href="https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/golang-jwt/jwt/v5&package-manager=go_modules&previous-version=5.3.0&new-version=5.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/go.mod b/go.mod
@@ -8,7 +8,7 @@ require (
 	github.com/creack/pty v1.1.24
 	github.com/emirpasic/gods v1.18.1
 	github.com/fsnotify/fsnotify v1.9.0
-	github.com/golang-jwt/jwt/v5 v5.3.0
+	github.com/golang-jwt/jwt/v5 v5.3.1
 	github.com/golang-migrate/migrate/v4 v4.19.1
 	github.com/google/generative-ai-go v0.20.1
 	github.com/google/uuid v1.6.0
diff --git a/go.sum b/go.sum
@@ -53,8 +53,8 @@ github.com/go-ole/go-ole v1.2.6 h1:/Fpf6oFPoeFik9ty7siob0G6Ke8QvQEuVcuChpwXzpY=
 github.com/go-ole/go-ole v1.2.6/go.mod h1:pprOEPIfldk/42T2oK7lQ4v4JSDwmV0As9GaiUsvbm0=
 github.com/go-sql-driver/mysql v1.8.1 h1:LedoTUt/eveggdHS9qUFC1EFSa8bU2+1pZjSRpvNJ1Y=
 github.com/go-sql-driver/mysql v1.8.1/go.mod h1:wEBSXgmK//2ZFJyE+qWnIsVGmvmEKlqwuVSjsCm7DZg=
-github.com/golang-jwt/jwt/v5 v5.3.0 h1:pv4AsKCKKZuqlgs5sUmn4x8UlGa0kEVt/puTpKx9vvo=
-github.com/golang-jwt/jwt/v5 v5.3.0/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE=
+github.com/golang-jwt/jwt/v5 v5.3.1 h1:kYf81DTWFe7t+1VvL7eS+jKFVWaUnK9cB1qbwn63YCY=
+github.com/golang-jwt/jwt/v5 v5.3.1/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE=
 github.com/golang-migrate/migrate/v4 v4.19.1 h1:OCyb44lFuQfYXYLx1SCxPZQGU7mcaZ7gH9yH4jSFbBA=
 github.com/golang-migrate/migrate/v4 v4.19.1/go.mod h1:CTcgfjxhaUtsLipnLoQRWCrjYXycRz/g5+RWDuYgPrE=
 github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
