starred/shiori
1
0
Fork 0
mirror of https://github.com/go-shiori/shiori.git synced 2026-04-25 06:25:54 +03:00
Code Issues 103 Projects Releases 10 Packages Wiki Activity

[PR #1090] [CLOSED] chore(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 in the go_modules group #982

New issue
Closed
opened 2026-02-25 23:36:06 +03:00 by kerem · 0 comments
kerem commented 2026-02-25 23:36:06 +03:00
Owner
Copy link

📋 Pull Request Information

Original PR: https://github.com/go-shiori/shiori/pull/1090
Author: @dependabot[bot]
Created: 3/31/2025
Status: Closed

Base: masterHead: dependabot/go_modules/go_modules-036d30de33

📝 Commits (1)

  • ec1885b chore(deps): bump github.com/golang-jwt/jwt/v5 in the go_modules group

📊 Changes

2 files changed (+4 additions, -3 deletions)

View changed files

📝 go.mod (+2 -1)
📝 go.sum (+2 -2)

📄 Description

Bumps the go_modules group with 1 update: github.com/golang-jwt/jwt/v5.

Updates github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.2.2

What's Changed

New Contributors

Full Changelog: https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/go-shiori/shiori/pull/1090 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 3/31/2025 **Status:** ❌ Closed **Base:** `master` ← **Head:** `dependabot/go_modules/go_modules-036d30de33` --- ### 📝 Commits (1) - [`ec1885b`](https://github.com/go-shiori/shiori/commit/ec1885b43348e70f6eada66bc9e54d4b9f37bbce) chore(deps): bump github.com/golang-jwt/jwt/v5 in the go_modules group ### 📊 Changes **2 files changed** (+4 additions, -3 deletions) <details> <summary>View changed files</summary> 📝 `go.mod` (+2 -1) 📝 `go.sum` (+2 -2) </details> ### 📄 Description Bumps the go_modules group with 1 update: [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt). Updates `github.com/golang-jwt/jwt/v5` from 5.2.1 to 5.2.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golang-jwt/jwt/releases">github.com/golang-jwt/jwt/v5's releases</a>.</em></p> <blockquote> <h2>v5.2.2</h2> <h2>What's Changed</h2> <ul> <li>Fixed <a href="https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp">https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp</a> by <a href="https://github.com/mfridman"><code>@​mfridman</code></a></li> <li>Fixed some typos by <a href="https://github.com/Ashikpaul"><code>@​Ashikpaul</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/382">golang-jwt/jwt#382</a></li> <li>build: add go1.22 to ci workflows by <a href="https://github.com/mfridman"><code>@​mfridman</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/383">golang-jwt/jwt#383</a></li> <li>Bump golangci/golangci-lint-action from 4 to 5 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/387">golang-jwt/jwt#387</a></li> <li>Bump golangci/golangci-lint-action from 5 to 6 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/389">golang-jwt/jwt#389</a></li> <li>chore: bump ci tests to include go1.23 by <a href="https://github.com/mfridman"><code>@​mfridman</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/405">golang-jwt/jwt#405</a></li> <li>Fix jwt -show by <a href="https://github.com/AlexanderYastrebov"><code>@​AlexanderYastrebov</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/406">golang-jwt/jwt#406</a></li> <li>docs: typo by <a href="https://github.com/kvii"><code>@​kvii</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/407">golang-jwt/jwt#407</a></li> <li>Update SECURITY.md by <a href="https://github.com/oxisto"><code>@​oxisto</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/416">golang-jwt/jwt#416</a></li> <li>Update <code>jwt.Parse</code> example to use <code>jwt.WithValidMethods</code> by <a href="https://github.com/mattt"><code>@​mattt</code></a> in <a href="https://redirect.github.com/golang-jwt/jwt/pull/425">golang-jwt/jwt#425</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Ashikpaul"><code>@​Ashikpaul</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/382">golang-jwt/jwt#382</a></li> <li><a href="https://github.com/kvii"><code>@​kvii</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/407">golang-jwt/jwt#407</a></li> <li><a href="https://github.com/mattt"><code>@​mattt</code></a> made their first contribution in <a href="https://redirect.github.com/golang-jwt/jwt/pull/425">golang-jwt/jwt#425</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2">https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"><code>0951d18</code></a> Merge commit from fork</li> <li><a href="https://github.com/golang-jwt/jwt/commit/c035977d9e11c351f4c05dfeae193923cbab49ee"><code>c035977</code></a> Update Parse example to use WithValidMethods (<a href="https://redirect.github.com/golang-jwt/jwt/issues/425">#425</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/bc8bdca5cced1caa9787e4a1c313a3538544c877"><code>bc8bdca</code></a> Update SECURITY.md (<a href="https://redirect.github.com/golang-jwt/jwt/issues/416">#416</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/5ec246c074b71790eec1f2e05b54daf6ec29ec5f"><code>5ec246c</code></a> docs: typo (<a href="https://redirect.github.com/golang-jwt/jwt/issues/407">#407</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/0123f1ad66cbc45013dbfba6eff0cd81472bfc12"><code>0123f1a</code></a> Fix jwt -show (<a href="https://redirect.github.com/golang-jwt/jwt/issues/406">#406</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/f961c72abd3b91442a9ab3d3e356bf547636e89b"><code>f961c72</code></a> chore: bump ci tests to include go1.23 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/405">#405</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/62e504c2810b67f6b97313424411cfffb25e41b0"><code>62e504c</code></a> Bump golangci/golangci-lint-action from 5 to 6 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/389">#389</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/1a56dcf532089fc2bb723a3cb4076a4e45cb1c1a"><code>1a56dcf</code></a> Bump golangci/golangci-lint-action from 4 to 5 (<a href="https://redirect.github.com/golang-jwt/jwt/issues/387">#387</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/c8043eab61f0ec5bdd924c1c30caf164a9bb2c66"><code>c8043ea</code></a> build: add go1.22 to ci workflows (<a href="https://redirect.github.com/golang-jwt/jwt/issues/383">#383</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/7c3f6dc56316e5e222a9df9612ec04243189a989"><code>7c3f6dc</code></a> Update README.md (<a href="https://redirect.github.com/golang-jwt/jwt/issues/382">#382</a>)</li> <li>See full diff in <a href="https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/golang-jwt/jwt/v5&package-manager=go_modules&previous-version=5.2.1&new-version=5.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/go-shiori/shiori/network/alerts). </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
kerem 2026-02-25 23:36:06 +03:00
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dependabot/go_modules/all-ad9dc7761f
dependabot/github_actions/all-7ab03d418b
dependabot/go_modules/golang.org/x/crypto-0.45.0
dependabot/go_modules/github.com/docker/docker-28.3.3incompatible
feat/bookmarks-api-v1
dependabot/npm_and_yarn/webapp/npm_and_yarn-7372c7abf2
deps/update202509
feat/pdf-archiver
feat/apiv1/tags
release/v1.7
fix/thumbnail-cache
gh-pages
fix/openbsd-test-speed
release/v1.6.1
release/v1.6.0
fmartingr/windows-tests
afero-removal
ci/windows-macos
feat/cookie-auth
webroot-support-new-server
fix/secret-key-makefile
frontend-jwt-auth
fmartingr/issue663
fix/remove-tag-package-name
fmartingr/issue455
fix/delete-pr-tags
feat/cross-api-authentication
feat/api-v1-to-master
release/v1.5.5
feat/api-next
release/v1.5.5-rc.2
deps/go-1.20
fix/bookmark-update
draft/gorm
v1.8.0
v1.8.0-rc.1
v1.7.4
v1.7.3
v1.7.2
v1.7.2-rc.1
v1.7.1
v1.7.0
v1.7.0-rc.3
v1.7.0-rc.2
v1.7.0-rc.1
v1.6.3
v1.6.2
v1.6.1
v1.6.0
v1.6.0-rc.7
v1.6.0-rc.6
v1.6.0-rc.5
v1.6.0-rc.4
v1.6.0-rc.3
v1.6.0-rc.2
v1.6.0-rc.1
v1.5.5
v1.5.5-rc.2
v1.5.5-rc.1
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.0
v0.9
Labels
Clear labels   
component:backend

   
component:builds

   
component:builds

   
component:extension

   
component:frontend

   
component:readability

   
database

   
database:mysql

   
database:postgres

   
database:sqlite

   
feature:ebooks

   
github_actions

   
good first issue

   
hacktoberfest

   
note:duplicate?

   
note:fixed?

   
note:out-of-scope?

   
os:windows

   
priority:high

   
priority:low

   
pull-request

Mirrored from GitHub Pull Request

  
resolution:as-intended

   
resolution:cant-reproduce

   
resolution:duplicate

   
resolution:fixed

   
resolution:wontfix

   
tag:TBD

   
tag:big-task

   
tag:help-wanted

   
tag:huge-data

   
tag:meta

   
tag:more-info

   
tag:next

   
tag:no-stale

   
tag:requires-migrations

   
tag:research

   
tag:security 🛡️

   
tag:stale

   
tag:waiting-for-assignee

   
type:bug

   
type:documentation

   
type:enhancement

   
type:meta

   
type:ux

   
user:cli

   
user:web
No labels
component:backend
component:builds
component:builds
component:extension
component:frontend
component:readability
database
database:mysql
database:postgres
database:sqlite
feature:ebooks
github_actions
good first issue
hacktoberfest
note:duplicate?
note:fixed?
note:out-of-scope?
os:windows
priority:high
priority:low
pull-request
resolution:as-intended
resolution:cant-reproduce
resolution:duplicate
resolution:fixed
resolution:wontfix
tag:TBD
tag:big-task
tag:help-wanted
tag:huge-data
tag:meta
tag:more-info
tag:next
tag:no-stale
tag:requires-migrations
tag:research
tag:security 🛡️
tag:stale
tag:waiting-for-assignee
type:bug
type:documentation
type:enhancement
type:meta
type:ux
user:cli
user:web
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/shiori#982
No description provided.