Skip to content

chore(deps): bump github.com/hashicorp/go-getter from 1.8.3 to 1.8.6#2097

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/github.com/hashicorp/go-getter-1.8.6
Open

chore(deps): bump github.com/hashicorp/go-getter from 1.8.3 to 1.8.6#2097
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/github.com/hashicorp/go-getter-1.8.6

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 10, 2026
edited
Loading

Bumps github.com/hashicorp/go-getter from 1.8.3 to 1.8.6.

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.8.6

No release notes provided.

v1.8.5

What's Changed

NOTES:

Binary Distribution Update: To streamline our release process and align with other HashiCorp tools, all release binaries will now be published exclusively to the official HashiCorp release site. We will no longer attach release assets to GitHub Releases.

New Contributors

Full Changelog: hashicorp/go-getter@v1.8.4...v1.8.5

v1.8.4

What's Changed

... (truncated)

Commits
  • d23bff4 Merge pull request #608 from hashicorp/dependabot/go_modules/go-security-9c51...
  • 2c4aba8 Merge pull request #613 from hashicorp/pull/v1.8.6
  • fe61ed9 Merge pull request #611 from hashicorp/SECVULN-41053
  • d533656 Merge pull request #606 from hashicorp/pull/CRT
  • 388f23d Additional test for local branch and head
  • b7ceaa5 harden checkout ref handling and added regression tests
  • 769cc14 Release version bump up
  • 6086a6a Review Comments Addressed
  • e02063c Revert "SECVULN Fix for git checkout argument injection enables arbitrary fil...
  • c93084d [chore] : Bump google.golang.org/grpc
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 10, 2026
@dependabot dependabot Bot requested a review from gaocegege as a code owner April 10, 2026 18:21
@dependabot dependabot Bot added the go Pull requests that update Go code label Apr 10, 2026
kemingy
kemingy previously approved these changes Apr 25, 2026
View reviewed changes
@kemingy kemingy added this pull request to the merge queue Apr 25, 2026
@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to a conflict with the base branch Apr 25, 2026
@dependabot dependabot Bot dismissed kemingy’s stale review April 25, 2026 02:13

The merge-base changed after approval.

@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/hashicorp/go-getter-1.8.6 branch from f60ddb7 to 82faa7a Compare April 25, 2026 02:13
@dependabot
chore(deps): bump github.com/hashicorp/go-getter from 1.8.3 to 1.8.6
b0c35ca 
Bumps [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) from 1.8.3 to 1.8.6.
- [Release notes](https://github.com/hashicorp/go-getter/releases)
- [Commits](hashicorp/go-getter@v1.8.3...v1.8.6)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-getter
  dependency-version: 1.8.6
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/hashicorp/go-getter-1.8.6 branch from 82faa7a to b0c35ca Compare April 25, 2026 02:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kemingy kemingy kemingy left review comments

@gaocegege gaocegege Awaiting requested review from gaocegege gaocegege is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@kemingy