Update docker.io/library/golang Docker tag to v1.26.4 (main) by renovate[bot] · Pull Request #3366 · conforma/cli · GitHub
Skip to content

Update docker.io/library/golang Docker tag to v1.26.4 (main)#3366

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/main-docker.io-library-golang-1.26.x
Open

Update docker.io/library/golang Docker tag to v1.26.4 (main)#3366
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/main-docker.io-library-golang-1.26.x

Conversation

@renovate

@renovate renovate Bot commented Jun 27, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
docker.io/library/golang stage patch 1.26.31.26.4

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM (* 0-3 * * *)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@fullsend-ai-review

fullsend-ai-review Bot commented Jun 27, 2026

Copy link
Copy Markdown

🤖 Finished Review · ✅ Success · Started 1:17 AM UTC · Completed 1:23 AM UTC
Commit: 47d3320 · View workflow run →

@fullsend-ai-review

fullsend-ai-review Bot commented Jun 27, 2026

Copy link
Copy Markdown

Review

Findings

High

  • [protected-path] Dockerfile:19 — Dockerfile is a protected infrastructure file requiring human approval. This PR modifies it but has no linked issue providing explicit authorization for the change. While the PR is authored by renovate[bot] and renovate.json is configured for this repository (indicating this is an expected automated dependency update of golang from 1.26.3 to 1.26.4), protected-path changes always require human review and approval regardless of automation source.
    Remediation: A human maintainer must review and approve this Dockerfile change.
Previous run

Review

Findings

High

  • [protected-path] Dockerfile:19 — This PR modifies Dockerfile, which is a protected governance/infrastructure file requiring human approval. The PR has no linked issue providing authorization for this change. While the change is a mechanical Renovate patch version bump (golang 1.26.3 → 1.26.4), protected-path changes require explicit justification via a linked issue regardless of scope.
    Remediation: Ensure a human reviewer with appropriate permissions approves this protected-path change. For future automated dependency updates to protected files, consider linking a standing issue or policy that authorizes routine patch bumps.
Previous run (2)

Review

Findings

High

  • [protected-path] Dockerfile:19 — This PR modifies Dockerfile, which is a protected path requiring human approval. The PR has no linked issue providing authorization for this change. While the Renovate bot description explains the version bump (golang 1.26.3 → 1.26.4) and the change itself is a routine patch update with no correctness or security concerns, protected-path changes without a linked issue require explicit human approval for traceability.
    Remediation: A maintainer should explicitly approve this protected-path change, or link an authorizing issue to the PR.

Labels: PR modifies the Dockerfile for a Docker base image version bump.

fullsend-ai-review[bot]

This comment was marked as outdated.

@fullsend-ai-review fullsend-ai-review Bot added the docker Pull requests that update Docker code label Jun 27, 2026
@renovate renovate Bot force-pushed the renovate/main-docker.io-library-golang-1.26.x branch from b6a3e87 to 10c8488 Compare July 1, 2026 14:36
@fullsend-ai-review

fullsend-ai-review Bot commented Jul 1, 2026

Copy link
Copy Markdown

🤖 Finished Review · ✅ Success · Started 2:39 PM UTC · Completed 2:45 PM UTC
Commit: 47d3320 · View workflow run →

fullsend-ai-review[bot]

This comment was marked as outdated.

@renovate renovate Bot force-pushed the renovate/main-docker.io-library-golang-1.26.x branch from 10c8488 to f6f0f7d Compare July 1, 2026 19:50
@fullsend-ai-review

fullsend-ai-review Bot commented Jul 1, 2026

Copy link
Copy Markdown

🤖 Finished Review · ✅ Success · Started 7:53 PM UTC · Completed 7:59 PM UTC
Commit: 47d3320 · View workflow run →

@fullsend-ai-review fullsend-ai-review Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See the review comment for full details.

Comment thread Dockerfile

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[high] protected-path

Dockerfile is a protected infrastructure file requiring human approval. This PR modifies it but has no linked issue providing explicit authorization for the change. While the PR is authored by renovate[bot] and renovate.json is configured for this repository (indicating this is an expected automated dependency update of golang from 1.26.3 to 1.26.4), protected-path changes always require human review and approval regardless of automation source.

Suggested fix: A human maintainer must review and approve this Dockerfile change.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

docker Pull requests that update Docker code main renovate size: XS

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants