Skip to content

build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4#4021

Open
dependabot[bot] wants to merge 42 commits intotestingfrom
dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4
Open

build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4#4021
dependabot[bot] wants to merge 42 commits intotestingfrom
dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Apr 10, 2026
edited
Loading

Bumps github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4.

Release notes

Sourced from github.com/go-jose/go-jose/v4's releases.

v4.1.4

What's Changed

Fixes Panic in JWE decryption. See GHSA-78h2-9frx-2jm8

Full Changelog: go-jose/go-jose@v4.1.3...v4.1.4

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Apr 10, 2026
@nekohasekai nekohasekai force-pushed the testing branch 2 times, most recently from 43ff669 to e6427e8 Compare April 10, 2026 08:24
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4 branch from fafe384 to fce764a Compare April 11, 2026 04:13
@nekohasekai nekohasekai force-pushed the testing branch 20 times, most recently from 524fc05 to dd08f80 Compare April 15, 2026 12:02
@nekohasekai
Fix rules lock
6832be6
@nekohasekai
Fix darwin local DNS transport
e1b7c01
@nekohasekai
tools: Tailscale status
eea69ea
@nekohasekai
Un-deprecate ip_accept_any DNS rule item
00d7146
@nekohasekai
documentation: Fixes
51eabf3
@nekohasekai
Add package_name_regex route, DNS and headless rule item
1809c99
@nekohasekai
platform: Wrap command RPC error returns with E.Cause
41fc946
@nekohasekai
Fix lint errors
f6d403e
@nekohasekai
Add cloudflared inbound
d482917
@nekohasekai
documentation: Fix missing update for ip_version and query_type
1232781
@nekohasekai
Fix stun test
3c42d54
@nekohasekai
Fix darwin cgo DNS again
40732ec
@nekohasekai
Fix tailscale error
0ca6269
@nekohasekai
Add optimistic DNS cache
34c7d60
@nekohasekai
oom-killer: Record report before reset network
89fbaee
@nekohasekai
Bump version
94b4a4e
@nekohasekai
Refactor: HTTP clients, unified HTTP2/QUIC options, Apple engines
0f3d72c
@nekohasekai
Standardize hosts path
8df234a
@nekohasekai
Add TLS spoof support
12ed508
@nekohasekai
Fix legacy rule-set download_detour blocked by empty direct check
17c967f
@nekohasekai
Reject pure-IP rule-set references without match_response
368838d 
DNS rules referencing rule-sets that contain only ip_cidr predicates
silently stopped matching when legacy DNS mode was disabled, because the
IP-CIDR branch cannot match against an in-flight DNS query. The existing
validation intentionally let every rule_set through on the premise that
mixed sets still work via their non-IP branches, which is only true when
such a branch exists. Track whether a rule-set carries any non-IP-CIDR
predicate and reject pure-IP references the same way bare ip_cidr fields
are already rejected.
@nekohasekai
Fix use-after-free of pooled value buffers in bbolt Batch writes
5ab31cc
@nekohasekai
Fix cloudflared quic
518aa0e
@dependabot
build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4
2780400 
Dependabot couldn't find the original pull request head commit, fce764a.
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4 branch from fce764a to 2780400 Compare April 16, 2026 08:39
@nekohasekai nekohasekai force-pushed the testing branch 4 times, most recently from dd1e37a to baaedc7 Compare April 18, 2026 05:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nekohasekai