Skip to content

build(deps): Bump github.com/moby/spdystream from 0.5.0 to 0.5.1#1313

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/github.com/moby/spdystream-0.5.1
Open

build(deps): Bump github.com/moby/spdystream from 0.5.0 to 0.5.1#1313
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/github.com/moby/spdystream-0.5.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 16, 2026

Bumps github.com/moby/spdystream from 0.5.0 to 0.5.1.

Release notes

Sourced from github.com/moby/spdystream's releases.

v0.5.1

What's Changed

Full Changelog: moby/spdystream@v0.5.0...v0.5.1

Commits
  • c59e5d7 Merge pull request #109 from thaJeztah/use_ioutil
  • 2fd0155 use ioutil.Discard for go1.13 compatibility
  • ef6121f Merge commit from fork
  • 241cec9 compare with signed Int for 32-bit Arm
  • 21c3864 Add options to customize limits
  • acf9b45 spdy: update godoc for MaxDataLength
  • eb63605 spdy: limit header-size and header-count
  • 2f21da4 spdy: fix header block byte accounting
  • 5976b66 spdy: enforce 24-bit frame length limits
  • cf0ec5d Guard against oversized SPDY frames
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): Bump github.com/moby/spdystream from 0.5.0 to 0.5.1
c0992ca 
Bumps [github.com/moby/spdystream](https://github.com/moby/spdystream) from 0.5.0 to 0.5.1.
- [Release notes](https://github.com/moby/spdystream/releases)
- [Commits](moby/spdystream@v0.5.0...v0.5.1)

---
updated-dependencies:
- dependency-name: github.com/moby/spdystream
  dependency-version: 0.5.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added this to the v1.7.0 milestone Apr 16, 2026
@dependabot dependabot Bot requested a review from cybwan as a code owner April 16, 2026 20:51
@dependabot dependabot Bot added area/control-plane Task/Issue related to control plane change/dependencies Pull requests that update a dependency file labels Apr 16, 2026
@dependabot dependabot Bot requested a review from naqvis as a code owner April 16, 2026 20:51
@dependabot dependabot Bot added kind/enhancement New feature or request priority/P2 P2 priority labels Apr 16, 2026
@dependabot dependabot Bot requested a review from caishu97 as a code owner April 16, 2026 20:51
@dependabot dependabot Bot added the size/XS 1 day label Apr 16, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 16, 2026

Assignees

The following users could not be added as assignees: reaver-flomesh. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from i0r3k as a code owner April 16, 2026 20:51
@mergify
Copy link
Copy Markdown
Contributor

mergify Bot commented Apr 16, 2026

Merge Protections

Your pull request matches the following merge protections and will not be merged until they are valid.

🟢 Enforce conventional commit

Wonderful, this rule succeeded.

Make sure that we follow https://www.conventionalcommits.org/en/v1.0.0/

  • title ~= ^(\[wip\]|\[backport\]|\[cherry-pick\])?( )?(fix|feat|docs|style|refactor|perf|test|build|ci|chore|revert)(?:\(.+\))?:

🟢 Enforce verified commits

Wonderful, this rule succeeded.

Make sure that we have verified commits

  • #commits-unverified = 0

🟢 Enforce linear history

Wonderful, this rule succeeded.

Make sure that we have a linear history, no merge commits are allowed

  • linear-history

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cybwan cybwan Awaiting requested review from cybwan cybwan is a code owner

@naqvis naqvis Awaiting requested review from naqvis naqvis is a code owner

@caishu97 caishu97 Awaiting requested review from caishu97 caishu97 is a code owner

@i0r3k i0r3k Awaiting requested review from i0r3k i0r3k is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

area/control-plane Task/Issue related to control plane change/dependencies Pull requests that update a dependency file kind/enhancement New feature or request priority/P2 P2 priority size/XS 1 day

Projects

None yet

Milestone

v1.7.0

Development

Successfully merging this pull request may close these issues.

0 participants