chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0 by dependabot[bot] · Pull Request #13641 · cli/cli · GitHub
Skip to content

chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0#13641

Merged
babakks merged 1 commit into
trunkfrom
dependabot/go_modules/golang.org/x/crypto-0.53.0
Jun 15, 2026
Merged

chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0#13641
babakks merged 1 commit into
trunkfrom
dependabot/go_modules/golang.org/x/crypto-0.53.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 12, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps golang.org/x/crypto from 0.52.0 to 0.53.0.

Commits
  • 45460e0 go.mod: update golang.org/x dependencies
  • d37c95e pkcs12: limit PBKDF iteration count to prevent CPU exhaustion
  • e2ffffe ssh: reject incomplete gssapi-with-mic configurations
  • 60e158a ssh/test: isolate CLI tests from user SSH config and agent
  • 1b77d23 ssh/knownhosts: reject lines with multiple or unknown markers
  • 3872a2b ssh/knownhosts: verify declared key type matches decoded key
  • 9f72ecc ssh/knownhosts: treat only ASCII space and tab as whitespace
  • 8f405a4 ssh: validate ECDSA curve matches expected algorithm
  • bb41b3d ssh: improve DH GEX group selection using PreferredBits
  • e04e721 ssh/agent: validate ed25519 private key length in Add
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 12, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 12, 2026 14:03
@dependabot dependabot Bot requested a review from BagToad June 12, 2026 14:03
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 12, 2026
@dependabot dependabot Bot force-pushed the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch 2 times, most recently from 121cb90 to 74c134d Compare June 15, 2026 14:39
@babakks babakks enabled auto-merge June 15, 2026 14:41
@babakks

babakks commented Jun 15, 2026

Copy link
Copy Markdown
Member

@dependabot
chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0
ec0fe28 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.52.0 to 0.53.0.
- [Commits](golang/crypto@v0.52.0...v0.53.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch from 74c134d to ec0fe28 Compare June 15, 2026 14:48
@babakks babakks merged commit f15dce8 into trunk Jun 15, 2026
11 checks passed
@babakks babakks deleted the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch June 15, 2026 14:57
@BrewTestBot BrewTestBot mentioned this pull request Jun 17, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@babakks babakks babakks approved these changes
@BagToad BagToad Awaiting requested review from BagToad BagToad is a code owner automatically assigned from cli/code-reviewers

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code ready-for-review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@babakks @tidy-dev