Skip to content

chore(deps): Bump golang.org/x/crypto from 0.43.0 to 0.52.0#31

Merged
cjh1 merged 1 commit into
mainfrom
dependabot/go_modules/golang.org/x/crypto-0.52.0
Jul 10, 2026
Merged

chore(deps): Bump golang.org/x/crypto from 0.43.0 to 0.52.0#31
cjh1 merged 1 commit into
mainfrom
dependabot/go_modules/golang.org/x/crypto-0.52.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor

Bumps golang.org/x/crypto from 0.43.0 to 0.52.0.

Commits
  • a1c0d99 go.mod: update golang.org/x dependencies
  • 3c7c869 ssh: fix deadlock on unexpected channel responses
  • 533fb3f ssh: fix source-address critical option bypass
  • abbc44d ssh: fix incorrect operator order
  • e052873 ssh: fix infinite loop on large channel writes due to integer overflow
  • b61cf85 ssh: enforce user presence verification for security keys
  • 9c2cd33 ssh: enforce strict limits on DSA key parameters
  • 8907318 ssh: reject RSA keys with excessively large moduli
  • ffd87b4 ssh: fix panic when authority callbacks are nil
  • 4e7a738 ssh: fix deadlock on unexpected global responses
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 9, 2026
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.43.0 to 0.52.0.
- [Commits](golang/crypto@v0.43.0...v0.52.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.52.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/golang.org/x/crypto-0.52.0 branch from ed2811b to cd220e5 Compare July 10, 2026 17:40
@cjh1 cjh1 merged commit a91734e into main Jul 10, 2026
6 checks passed
@cjh1 cjh1 deleted the dependabot/go_modules/golang.org/x/crypto-0.52.0 branch July 10, 2026 17:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant