Sourced from github.com/Microsoft/hcsshim's releases.

v0.14.1

What's Changed

fb5aa2e94 - Maksim An (2026-04-07): upgrade dependencies to fix CI 9a434d6e1 - Dawei Wei (2026-03-06): shim: skip SandboxPlatform validation when platform is not explicitly set (#2620) 98d74bb52 - Cory Snider (2026-02-10): WCOW: restore support for client-mounted roots (#2595)

Full Changelog: microsoft/hcsshim@v0.14.0...v0.14.1

• fb5aa2e upgrade dependencies to fix CI
• 9a434d6 shim: skip SandboxPlatform validation when platform is not explicitly set (#2...
• 98d74bb WCOW: restore support for client-mounted roots (#2595)
• See full diff in compare view

Sourced from github.com/buger/jsonparser's releases.

v1.2.0

What's Changed

• Fix 2 bugs, remove 7 dead code blocks, add formal verification using ReqProof by @​buger in buger/jsonparser#281
• Add support for tinygo by @​buger in buger/jsonparser#269

Full Changelog: buger/jsonparser@v1.1.2...v1.2.0

• c172c16 Merge pull request #269 from buger/tinygo
• 680cd2e Merge pull request #281 from buger/reqproof-assurance-hardening
• 9dce61c Migrate review storage from reviews/ folder to per-requirement timestamps
• c03b9ef feat: add property-based obligation classes with 24 new SYS-REQs
• 9c46110 chore: fix spec lint warnings — remove stale parent field, set review metadata
• 8bbb8a8 Close coverage gaps: SYS-REQ-007/008/010 fuzz harness coverage to 100%
• 552e93b Install Z3 via apt before audit
• 98133b4 Remove manual Z3 pre-download, now handled by proof-action
• 1b70ead Debug Z3 pre-download: remove output suppression
• aac1fbc Pre-download Z3 solver before audit
• Additional commits viewable in compare view

• fd1aa6c Run gofmt: add missing //go:build directives and trailing newlines
• e73986e Treat bare ')' as syntax error regardless of ParseBacktick
• 9a78803 Merge pull request #60 from scumfrog/security-fix-cve
• b074fa0 fix: preserve parser compatibility for unmatched ')' handling
• 735b5e8 Implement tests for shellwords parser functionality
• e2951fc Fix dollarQuote state management in shellwords.go
• 551a1d0 Update CI: Go 1.25/1.26 and latest GitHub Actions
• f3bbb6f Merge pull request #53 from ndeloof/master
• f6737fe parse \t as TAB, not escaped t
• See full diff in compare view

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.29.0

2.29.0

GinkgoHelperGo makes it easier to write test helpers that need to run in goroutines. Specifically, it makes managing the failure state and capturing failure panics correctly straightforward.

ginkgo outline now includes entries defined in DescribeTableSubtree

v2.28.3

2.28.3

Maintenance

Bump all dependencies

v2.28.2

2.28.2

• Add ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]
• Implement shell completion [94151c8]
• Add asan CLI option mirroring msan implementation [4d21dbb]
• Bump uri from 1.0.3 to 1.0.4 in /docs (#1630) [c102161]
• fix aspect ratio [9619647]
• update logos [5779304]

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.29.0

GinkgoHelperGo makes it easier to write test helpers that need to run in goroutines. Specifically, it makes managing the failure state and capturing failure panics correctly straightforward.

ginkgo outline now includes entries defined in DescribeTableSubtree

2.28.3

Maintenance

Bump all dependencies

2.28.2

• Add ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]
• Implement shell completion [94151c8]
• Add asan CLI option mirroring msan implementation [4d21dbb]
• Bump uri from 1.0.3 to 1.0.4 in /docs (#1630) [c102161]
• fix aspect ratio [9619647]
• update logos [5779304]

• 04b5bcb v2.29.0
• 124232a docs: GinkgoHelperGo
• ad9cee8 feat: GinkgoHelperGo, with integration tests
• 9e56a0a chore: refactor devcontainer for better maintenance
• 3d235a9 chore: ignore internal/tmp_*/ integration suite temporary dirs
• 782666a feat: devcontainer configuration with local pkgsite and GH pages
• 009dd04 Support DescribeTableSubtree in ginkgo outline
• 5de9c15 v2.28.3
• 7e2fa19 bump dependencies
• 1a81912 v2.28.2
• Additional commits viewable in compare view

Sourced from github.com/onsi/gomega's releases.

v1.40.0

1.40.0

We're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega. It is a limitation of the go mod toolchain that test subdependencies of your project's direct dependencies get pulled in as indirect dependencies. In the case of Gomega, this ends up pulling in all of Ginkgo into your go.mod even if you are only using Gomega (Gomega uses Ginkgo for its own tests).

Going forward, releases will strip out all tests, tidy up the go.mod and then push this stripped down version to a new master-lite branch. These stripped-down versions will receive the vx.y.z git tag and will be picked up by the go toolchain.

Please open an issue if this new release process causes unexpected changes for your projects.

Sourced from github.com/onsi/gomega's changelog.

1.40.0

We're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega. It is a limitation of the go mod toolchain that test subdependencies of your project's direct dependencies get pulled in as indirect dependencies. In the case of Gomega, this ends up pulling in all of Ginkgo into your go.mod even if you are only using Gomega (Gomega uses Ginkgo for its own tests).

Going forward, releases will strip out all tests, tidy up the go.mod and then push this stripped down version to a new master-lite branch. These stripped-down versions will receive the vx.y.z git tag and will be picked up by the go toolchain.

Please open an issue if this new release process causes unexpected changes for your projects.

• 87ee9d3 v1.40.0
• ea66027 v1.40.0 (full)
• e3fd789 update docs to reflect new versioning strategy
• 7d4ee30 first push to master-lite
• e4a82d1 Bump github/codeql-action from 3 to 4 (#875)
• af62723 Bump rexml from 3.4.0 to 3.4.2 in /docs (#870)
• e164221 Bump github.com/onsi/ginkgo/v2 from 2.28.0 to 2.28.1 (#895)
• 334a282 Bump faraday from 2.12.2 to 2.14.1 in /docs (#896)
• See full diff in compare view

Sourced from github.com/opencontainers/selinux's releases.

v1.15.0

This release adds a new function, SetProcessKind, which is to be used instead of KVMProcessLabel[s] and InitProcessLabel[s] in case the user only wants to change the type of the existing label, not generate a new one. It also fixes an CI issue and optimizes label.InitLabels for a few common cases.

What's Changed

• ci: set timeout for vm jobs by @​kolyshkin in opencontainers/selinux#270
• label.InitLabels: optimize by @​kolyshkin in opencontainers/selinux#269
• Add SetProcessKind by @​kolyshkin in opencontainers/selinux#271

Full Changelog: opencontainers/selinux@v1.14.1...v1.15.0

v1.14.1

This release mostly fixes label.InitLabels regression introduced in v1.14.0.

What's Changed

• README: rm travis, add gha badge by @​kolyshkin in opencontainers/selinux#268
• Fix label.InitLabels regression in v1.14.0; amend ReserveLabelV2 doc by @​kolyshkin in opencontainers/selinux#267

Full Changelog: opencontainers/selinux@v1.14.0...v1.14.1

v1.14.0

This release fixes a regression in ExecLabel, bumps the minimal Go version to 1.22, and deprecates several functions in favor of improved API.

Fixed

• ExecLabel was using an incorrect path (regression in v1.13.0). (opencontainers/selinux#253)

Deprecated

• CategoryRange is deprecated; use SetCategoryRange instead. (opencontainers/selinux#262)
• KVMContainerLabels is deprecated; use KVMContainerLabel instead. (opencontainers/selinux#262)
• InitContainerLabels is deprecated; use InitContainerLabel instead. (opencontainers/selinux#262)
• ReserveLabel is deprecated; use ReserveLabelV2 instead. (opencontainers/selinux#262)
• ROFileLabel is deprecated; if you use it, open a new issue. (opencontainers/selinux#262)
• ContainerLabels is deprecated, if you use it, open a new issue. (opencontainers/selinux#262)

Added

• SEUserByName. (opencontainers/selinux#232, opencontainers/selinux#251)
• CheckLabel. (opencontainers/selinux#250)
• SetCategoryRange, KVMContainerLabel, InitContainerLabel, ReserveLabelV2. (opencontainers/selinux#262)

Changed

• Switch to Go 1.22 as the minimally supported version (opencontainers/selinux#256)
• Update GetDefaultContextWithLevel to fall back to failsafe context (opencontainers/selinux#232)
• Use math/rand/v2 rather than crypto/rand for MCS label generation (opencontainers/selinux#257)

Miscellaneous

• MAINTAINERS: add Aleksa as a maintainer. (opencontainers/selinux#243)
• Assorted CI bumps and related fixes. (opencontainers/selinux#255)
• Remove intToMcs. (opencontainers/selinux#259)
• Use Cut more. (opencontainers/selinux#254)
• Simplify getSelinuxMountPoint. (opencontainers/selinux#258)
• Simplify/remove some code. (opencontainers/selinux#261)

... (truncated)

• 84683a6 Merge pull request #271 from kolyshkin/change-type
• 8889f6e Add SetProcessKind
• fb9b5b2 Merge pull request #269 from kolyshkin/init-labels-opt
• 74873e2 label.InitLabels: optimize
• c8bf19e Merge pull request #270 from kolyshkin/timeout
• a55d914 ci: set timeout for vm jobs
• 89b039b Merge pull request #267 from kolyshkin/damage-control
• 8c517ef Merge pull request #268 from kolyshkin/readme
• e184f46 selinux.ReserveLabelV2: note on ignoring ErrMCSAlreadyExists
• fa15885 label.InitLabels: dont't return ErrMCSAlreadyExists
• Additional commits viewable in compare view

• f33a730 windows: support nil security descriptor on GetNamedSecurityInfo
• 493d172 cpu: add runtime import in cpu_darwin_arm64_other.go
• 2c2be75 windows: use syscall.SyscallN in Proc.Call
• a76ec62 cpu: roll back "use IsProcessorFeaturePresent to calculate ARM64 on windows"
• See full diff in compare view