Skip to content

build(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0#87

Merged
github-actions[bot] merged 1 commit into
masterfrom
dependabot/go_modules/golang.org/x/crypto-0.53.0
Jun 15, 2026
Merged

build(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0#87
github-actions[bot] merged 1 commit into
masterfrom
dependabot/go_modules/golang.org/x/crypto-0.53.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps golang.org/x/crypto from 0.52.0 to 0.53.0.

Commits
  • 45460e0 go.mod: update golang.org/x dependencies
  • d37c95e pkcs12: limit PBKDF iteration count to prevent CPU exhaustion
  • e2ffffe ssh: reject incomplete gssapi-with-mic configurations
  • 60e158a ssh/test: isolate CLI tests from user SSH config and agent
  • 1b77d23 ssh/knownhosts: reject lines with multiple or unknown markers
  • 3872a2b ssh/knownhosts: verify declared key type matches decoded key
  • 9f72ecc ssh/knownhosts: treat only ASCII space and tab as whitespace
  • 8f405a4 ssh: validate ECDSA curve matches expected algorithm
  • bb41b3d ssh: improve DH GEX group selection using PreferredBits
  • e04e721 ssh/agent: validate ed25519 private key length in Add
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 15, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 15, 2026 04:35
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 15, 2026
@github-actions github-actions Bot enabled auto-merge June 15, 2026 04:35
@dependabot
build(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0
1835609 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.52.0 to 0.53.0.
- [Commits](golang/crypto@v0.52.0...v0.53.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch from e2db788 to 1835609 Compare June 15, 2026 10:45
@github-actions github-actions Bot merged commit 6f36943 into master Jun 15, 2026
8 checks passed
@github-actions github-actions Bot deleted the dependabot/go_modules/golang.org/x/crypto-0.53.0 branch June 15, 2026 10:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hslatman hslatman hslatman approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@hslatman