Bump the dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the dependencies group with 5 updates in the / directory:

Package	From	To
github.com/decred/dcrd/dcrec/secp256k1/v4	4.0.1	4.4.1
github.com/ethereum/go-ethereum	1.17.0	1.17.3
github.com/mr-tron/base58	1.2.0	1.3.0
github.com/pk910/dynamic-ssz	1.2.1	1.3.1
github.com/pressly/goose/v3	3.27.0	3.27.1

Updates github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.0.1 to 4.4.1

Commits

• 76c0dc4 secp256k1: Deprecate elliptic.Curve impl methods.
• 9cfcb7e secp256k1: Reduce compat shim inputs mod prime.
• 0186937 secp256k1: Add compat shim unreduced input tests.
• 3612094 secp256k1: Add more compat shim curve member tests.
• fa3f704 docs: Update README.md to required Go 1.25/1.26.
• f3224a6 build: Test against Go 1.26.
• cc82c10 build: Update golangci-lint to v2.9.0.
• 7c01e57 build: Update to latest action versions.
• 9516143 mixing: Increment PRNG seed nonce for each test
• 8aa2ac0 docker: Update image to golang:1.26.0-alpine3.23.
• Additional commits viewable in compare view

Updates github.com/ethereum/go-ethereum from 1.17.0 to 1.17.3

Release notes

Sourced from github.com/ethereum/go-ethereum's releases.

Enzymatic Injector (v1.17.3)

This is a maintenance release with continued progress on the Amsterdam fork implementation. It also introduces ETH/70, which is now live on the network.

ethereum/execution-apis#762reexec has been removed from the tracing config:

• memory: words are 0x-prefixed and padded to 32 bytes
• storage: keys and values are 0x-prefixed
• error: omitted when empty (previously serialized as "")

Geth

• Add retry mechanism for checkpoint init in blsync (#33966)
• Add subcommand for offline binary tree conversion (#33740)
• Add code exporter for db export (#34696)

Core

• Amsterdam fork updates:
  • Prerequisites of EIP-7928: Block-Level Access Lists (#34064, #34644, #34726, #34776, #34799, #33737)
  • Prerequisites of EIP-8037: State Creation Gas Cost Increase (#34691, #34712, #34841)
  • EIP-7976: Increase Calldata Floor Cost (#34748)
  • EIP-7981: Increase Access List Cost (#34755)
  • EIP-7610: Reject contract creation when storage is non-empty (#34718)
  • Update state tests (#34671)
• Implement stack arena (#33960)
• Implement EIP-7975: eth/70 partial block receipt lists (#33153)
• Prerequisites of snap/2 protocol (#34083, #34649, #34654, #34874)
• Implement history index pruner for path-mode archive nodes (#33999)
• Add Prague chain segment pruning point for Hoodi (#34714)
• Allow reorging head to parent within 32 blocks under ePBS (#34767)
• Stop serving chain segment requests when data is unavailable (#34787)
• Drop peers sending invalid bodies or receipts (#34745, #34870)
• Add kzg4844 cell-related functions (#34766)
• State database refactoring (#33102, #34700, #34763, #34724)
• Binary trie improvements (#34055, #34110, #34670, #34676, #34680, #34690, #34754, #34758, #34777, #34794)
• Merge EIP-4762 access events for all system calls (#34637)
• Reject duplicate layers in the path database (#34642)
• Omit empty slotNumber and fix block value collection in pre-Amsterdam engine API payloads (#34704)
• Include the operand in EIP-8024 error messages (#34635)
• Fix vmodule downgrades and propagate verbosity changes to derived loggers (#33111)
• Fix incorrect fsync ordering for index file truncation (#34728)
• Fix file descriptor leak in freezer error paths (#34735)
• Fix size calculation in path database (#34828)
• Fix gapped queue size cap in blobpool (#34831)
• Improve txpool pending concurrency by using read-only locking (#32924)
• Replace deprecated TypeMux with Feed (#32585)
• Continue blob retrieval when individual cell proof extraction fails (#34891)
• Use uint256 in core Message for faster gas calculations (#34934)

... (truncated)

Commits

• 117e067 version: release go-ethereum v1.17.3 stable (#34937)
• e1047b9 core: use uint256 in core.Message (#34934)
• 2f11dcc cmd/geth: respect --dev=false (#34920)
• 934a009 triedb/pathdb: fix layer 5 key range in storage iterator traversal test (#34883)
• 18becee appveyor.yml: remove appveyor configuration (#34720)
• f63c265 internal/download: close dst on io.Copy error (#34910)
• 7facf9c core/txpool: use cmp.Compare instead of subtraction (#34918)
• bcb68d2 p2p: handle return false from TCPEndpoint (#34916)
• 8581125 crypto: add hash length check in nocgo VerifySignature (#33839)
• 2ba9be9 build: upgrade -dlgo version to Go 1.25.10 (#34911)
• Additional commits viewable in compare view

Updates github.com/mr-tron/base58 from 1.2.0 to 1.3.0

Release notes

Sourced from github.com/mr-tron/base58's releases.

x10 speedup

What's Changed

• More tests and nits by @​ribasushi in mr-tron/base58#17
• Big refactoring with speed up to x10.

Previous version:

cpu: Apple M4
BenchmarkTrivialBase58Encoding
BenchmarkTrivialBase58Encoding-10       	  704328	      1554 ns/op
BenchmarkFastBase58Encoding
BenchmarkFastBase58Encoding-10          	 1000000	      1065 ns/op
BenchmarkTrivialBase58Decoding
BenchmarkTrivialBase58Decoding-10       	 1541754	       767.0 ns/op
BenchmarkFastBase58Decoding
BenchmarkFastBase58Decoding-10          	 4358894	       278.3 ns/op
BenchmarkTrivialBase58Encoding32
BenchmarkTrivialBase58Encoding32-10     	  729949	      1627 ns/op
BenchmarkFastBase58Encoding32
BenchmarkFastBase58Encoding32-10        	 1000000	      1118 ns/op
BenchmarkTrivialBase58Encoding36
BenchmarkTrivialBase58Encoding36-10     	  608595	      1813 ns/op
BenchmarkFastBase58Encoding36
BenchmarkFastBase58Encoding36-10        	  893626	      1275 ns/op
BenchmarkTrivialBase58Encoding64
BenchmarkTrivialBase58Encoding64-10     	  284566	      4028 ns/op
BenchmarkFastBase58Encoding64
BenchmarkFastBase58Encoding64-10        	  279295	      3955 ns/op
BenchmarkTrivialBase58Encoding256
BenchmarkTrivialBase58Encoding256-10    	   33140	     35533 ns/op
BenchmarkFastBase58Encoding256
BenchmarkFastBase58Encoding256-10       	   17833	     67081 ns/op
BenchmarkTrivialBase58Decoding32
BenchmarkTrivialBase58Decoding32-10     	 1512828	       875.7 ns/op
BenchmarkFastBase58Decoding32
BenchmarkFastBase58Decoding32-10        	 4247128	       341.9 ns/op
BenchmarkTrivialBase58Decoding36
BenchmarkTrivialBase58Decoding36-10     	 1319317	       880.9 ns/op
BenchmarkFastBase58Decoding36
BenchmarkFastBase58Decoding36-10        	 3449229	       366.6 ns/op
BenchmarkTrivialBase58Decoding64
BenchmarkTrivialBase58Decoding64-10     	  663181	      1636 ns/op
BenchmarkFastBase58Decoding64
BenchmarkFastBase58Decoding64-10        	 1327443	       903.0 ns/op
BenchmarkTrivialBase58Decoding256
BenchmarkTrivialBase58Decoding256-10    	  153183	      7469 ns/op
BenchmarkFastBase58Decoding256
BenchmarkFastBase58Decoding256-10       	   93289	     12428 ns/op

... (truncated)

Commits

• 14609f6 big refactorig. speedup x10. better tests. add more benchmarks.
• 957145f mark deprecated functions
• 7feefc8 Merge pull request #17 from ribasushi/more_tests_and_nits
• 925b607 Slightly better README rendering
• d3aa3a3 Better handling of custom alphabets + tests
• 82a293c Seed the math/rand PRNG on every test run
• dfe7821 Works without changes on go1.11: lower dep
• d2877cb Add myself to authors
• See full diff in compare view

Updates github.com/pk910/dynamic-ssz from 1.2.1 to 1.3.1

Release notes

Sourced from github.com/pk910/dynamic-ssz's releases.

v1.3.1

Added

• Add support for custom struct types as type-wrapper with ssz-type:"wrapper", removing the need for a descriptor struct and GetDescriptorType method
• Add YAML config file support to dynssz-gen with --config flag for easier code generation management

Changed

• Optimize treeproof multiproof verification with a faster path for indices on the same tree level, reducing allocations and improving performance

Full changelog

• 82b743b Merge pull request #162 from pk910/pk910/benchmark-improvements
• 01d70e5 Merge pull request #169 from pk910/pk910/codegen-config
• ac65f83 Merge pull request #158 from pk910/pk910/wrapper-structs
• bee339c Merge pull request #168 from pk910/dependabot/github_actions/all-actions-8942b47272
• 4f7b42e Merge pull request #160 from Sahil-4555/perf/treeproof-multiproof-fast-path
• c137828 Merge pull request #161 from pk910/pk910/exclude-vscode-configs

v1.3.0

Added

• SSZ Views — custom view types that decouple the SSZ schema from the Go struct layout, allowing different field orders and custom type mappings. Views are supported in both reflection and codegen paths, including views from external packages.
• Incremental hasher — new hashing strategy for lists that processes elements in chunks rather than buffering all leaves in memory, significantly reducing memory consumption for large lists. Requires code regeneration to take effect; existing generated code continues to work with the previous hashing approach.
• SszError wrapper — structured error type with consistent error messages across reflection and codegen code paths
• Error path tracking in generated code — errors include the field path for easier debugging
• Custom type annotations via sszutils.Annotate — programmatic SSZ tag overrides for types that cannot use struct tags
• Backward compatibility tests — CI validates that code generated by older releases still compiles and works correctly
• Internal write buffer for marshal-to-stream, reducing syscall overhead
• Function header documentation in generated code
• Code scanning (CodeQL) and OpenSSF best practices

Changed

• Reflection performance improvements — fast path for static container marshal/unmarshal, bulk allocations to avoid descriptor copies, hoisted pointer checks, early skip of compat checks for primitive types
• Codegen performance improvements — reduced string builder and import overhead, batched offset insertion in marshaler, HashUint64Slice for uint64 arrays, reduced Collapse() calls to every 256th item
• Treeproof optimizations — refactored package, optimized tree construction with empty-node caching, faster proof verification, multiproof fast path for full-tree proofs, fixed mixed-depth multiproof indices
• Normalized error messages across codegen and reflection code paths
• Consistent list length limit checks in all marshal and unmarshal code paths
• Downgraded minimum Go version for the base library to 1.22
• Updated go-hashtree bindings and go-bitfield dependency
• Always generate streaming code with dynamic expressions enabled
• Always generate code for pointer types (lists & arrays)
• Improved test coverage across codegen, treeproof, hasher, and reflection

Fixed

• String pointer unmarshaling
• Bitlist limit checks
• ExpandSlice reset and lazy typecache index setup
• Integer overflow conversions flagged by CodeQL (32-bit compatibility)
• Bitlist allocation in hash tree root calculation

... (truncated)

Changelog

Sourced from github.com/pk910/dynamic-ssz's changelog.

[v1.3.1] 2026-04-22

Added

• Add support for custom struct types as type-wrapper with ssz-type:"wrapper", removing the need for a descriptor struct and GetDescriptorType method
• Add YAML config file support to dynssz-gen with --config flag for easier code generation management

Changed

• Optimize treeproof multiproof verification with a faster path for indices on the same tree level, reducing allocations and improving performance

---

[v1.3.0] 2026-03-31

Added

• SSZ Views — custom view types that decouple the SSZ schema from the Go struct layout, allowing different field orders and custom type mappings. Views are supported in both reflection and codegen paths, including views from external packages.
• Incremental hasher — new hashing strategy for lists that processes elements in chunks rather than buffering all leaves in memory, significantly reducing memory consumption for large lists. Requires code regeneration to take effect; existing generated code continues to work with the previous hashing approach.
• SszError wrapper — structured error type with consistent error messages across reflection and codegen code paths
• Error path tracking in generated code — errors include the field path for easier debugging
• Custom type annotations via sszutils.Annotate — programmatic SSZ tag overrides for types that cannot use struct tags
• Backward compatibility tests — CI validates that code generated by older releases still compiles and works correctly
• Internal write buffer for marshal-to-stream, reducing syscall overhead
• Function header documentation in generated code
• Code scanning (CodeQL) and OpenSSF best practices

Changed

• Reflection performance improvements — fast path for static container marshal/unmarshal, bulk allocations to avoid descriptor copies, hoisted pointer checks, early skip of compat checks for primitive types
• Codegen performance improvements — reduced string builder and import overhead, batched offset insertion in marshaler, HashUint64Slice for uint64 arrays, reduced Collapse() calls to every 256th item
• Treeproof optimizations — refactored package, optimized tree construction with empty-node caching, faster proof verification, multiproof fast path for full-tree proofs, fixed mixed-depth multiproof indices
• Normalized error messages across codegen and reflection code paths
• Consistent list length limit checks in all marshal and unmarshal code paths
• Downgraded minimum Go version for the base library to 1.22
• Updated go-hashtree bindings and go-bitfield dependency
• Always generate streaming code with dynamic expressions enabled
• Always generate code for pointer types (lists & arrays)
• Improved test coverage across codegen, treeproof, hasher, and reflection

Fixed

• String pointer unmarshaling
• Bitlist limit checks
• ExpandSlice reset and lazy typecache index setup
• Integer overflow conversions flagged by CodeQL (32-bit compatibility)
• Bitlist allocation in hash tree root calculation
• Conflicting annotation resolution (struct annotations take precedence over custom type annotations)
• Streaming codegen when dynamic expressions are disabled

---

[v1.2.2] 2026-03-12

Added

... (truncated)

Commits

• 7280d89 release 1.3.1
• 82b743b Merge pull request #162 from pk910/pk910/benchmark-improvements
• 15a1a23 fix(ci): prevent benchmark noise from failed base codegen
• b40510a fix(ci): drop benchmark-comment section when no significant rows
• 104f9f8 fix perftests go.mod
• 59d6c55 Merge PR #165 into pk910/benchmark-improvements
• ab1f9eb Merge branch 'master' into pk910/benchmark-improvements
• 01d70e5 Merge pull request #169 from pk910/pk910/codegen-config
• 4bc4cf0 exclude testpkg from coverage report
• 104dba4 fix package resulution with config path
• Additional commits viewable in compare view

Updates github.com/pressly/goose/v3 from 3.27.0 to 3.27.1

Release notes

Sourced from github.com/pressly/goose/v3's releases.

v3.27.1

What's Changed

• Dependency updates

Full Changelog: pressly/goose@v3.27.0...v3.27.1

Changelog

Sourced from github.com/pressly/goose/v3's changelog.

[v3.27.1] - 2026-04-24

Changed

• Bump minimum Go version to 1.25.7
• Various dependency upgrades

Commits

• e3235f7 release: v3.27.1
• 883e2f7 build(deps): bump Go and dependency versions (#1067)
• 2e2fe5c build(deps): bump the gomod group with 3 updates (#1048)
• 21176ca build(deps): bump modernc.org/sqlite from 1.46.1 to 1.47.0 in the gomod group...
• e7bd535 build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 (#1042)
• f9c7cb4 build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /internal/t...
• b6220db build(deps): bump the gomod group across 1 directory with 3 updates (#1041)
• 65e320f docs: fix README escaping marker in ENVSUB example (#1037)
• 18f6ef7 build(deps): bump goreleaser/goreleaser-action from 6 to 7 (#1036)
• de28e04 docs: update v3.27.0 release notes with Go 1.25 minimum and dep upgrades
• See full diff in compare view

Updates golang.org/x/crypto from 0.48.0 to 0.50.0

Commits

• 03ca0dc go.mod: update golang.org/x dependencies
• 8400f4a ssh: respect signer's algorithm preference in pickSignatureAlgorithm
• 81c6cb3 ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength
• 982eaa6 go.mod: update golang.org/x dependencies
• 159944f ssh,acme: clean up tautological/impossible nil conditions
• a408498 acme: only require prompt if server has terms of service
• cab0f71 all: upgrade go directive to at least 1.25.0 [generated]
• 2f26647 x509roots/fallback: update bundle
• See full diff in compare view

Updates golang.org/x/net from 0.50.0 to 0.53.0

Commits

• a8d1fc1 go.mod: update golang.org/x dependencies
• 056ac74 quic: avoid depending on golang.org/x/sys/unix
• c85f611 http3: add http3 package for testing in std
• 805fc81 http2: add transport API tests
• e63b894 http2: support testing via net/http.Transport.RoundTrip
• 9ee1e48 http2/hpack: prevent HeaderField from escaping during encoding
• 1e71bd8 http2: prevent hanging Transport due to bad SETTINGS frame
• 7bca150 internal/http3: respect net/http Server Shutdown context when shutting down
• 44c41be internal/http3: prevent server from holding mutex when sleeping during shutdown
• 228a67a internal/http3: add CloseIdleConnections support in transport
• Additional commits viewable in compare view