Skip to content

deps(go): bump the go-dependencies group across 1 directory with 8 updates#276

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/go-dependencies-b366283c70
Open

deps(go): bump the go-dependencies group across 1 directory with 8 updates#276
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/go-dependencies-b366283c70

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 9, 2026
edited
Loading

Bumps the go-dependencies group with 7 updates in the / directory:

Package From To
github.com/mark3labs/mcp-go 0.44.0 0.47.1
github.com/mattn/go-isatty 0.0.20 0.0.21
github.com/slack-go/slack 0.17.3 0.21.1
github.com/takara2314/slack-go-util 0.3.0 0.4.0
golang.ngrok.com/ngrok/v2 2.1.1 2.1.2
golang.org/x/net 0.50.0 0.52.0
golang.org/x/time 0.14.0 0.15.0

Updates github.com/mark3labs/mcp-go from 0.44.0 to 0.47.1

Release notes

Sourced from github.com/mark3labs/mcp-go's releases.

Release v0.47.1

What's Changed

New Contributors

Full Changelog: mark3labs/mcp-go@v0.47.0...v0.47.1

Release v0.47.0

What's Changed

New Contributors

Full Changelog: mark3labs/mcp-go@v0.46.0...v0.47.0

Release v0.46.0

What's Changed

... (truncated)

Commits
  • 2e8a408 fix(transport): exit ContinuousListening goroutine on context cancellation (#...
  • 9a96404 Bound stdio child shutdown in Close() (#784)
  • 1038f4c docs(client): add example to NewSSEMCPClient to avoid variable shadowing (#773)
  • bb69576 refactor: use atomic.Int32 instead of int32 with atomic functions
  • 29a711c fix: cancel context before closing body to prevent HTTP/2 hang (#769)
  • e37b2f0 fix: extract and set _meta field in ParseContent (#777)
  • 231ba4d fix(client): make readSSE context-aware to prevent goroutine leaks and HTTP/2...
  • 001fda8 feat: add Use() method for attaching tool middleware at runtime (#767)
  • f89f21b enhancement: client side 'task' functions for 'get', 'list', 'cancel' and 're...
  • dfd8c16 fix(transport): preserve OAuth discovery paths (#775)
  • Additional commits viewable in compare view

Updates github.com/mattn/go-isatty from 0.0.20 to 0.0.21

Commits
  • 4237fb1 Update Go test matrix to current versions (1.24-1.26)
  • 433c12b Update GitHub Actions to latest versions
  • 1cf5589 Add wasip1 and wasip2 to build constraints in isatty_others.go
  • 1237245 Update dependencies: go 1.15 -> 1.21, golang.org/x/sys v0.6.0 -> v0.28.0
  • ac9c88d Fix typo in comment: undocomented -> undocumented
  • 8b7124e Add availability check for NtQueryObject in init
  • 08d0313 Fix isCygwinPipeName to reject names with extra trailing tokens
  • See full diff in compare view

Updates github.com/slack-go/slack from 0.17.3 to 0.21.1

Release notes

Sourced from github.com/slack-go/slack's releases.

v0.21.1

Added

  • MessageEvent channel type helpers — New ChannelTypeChannel, ChannelTypeGroup, ChannelTypeIM, and ChannelTypeMPIM constants plus IsChannel(), IsGroup(), IsIM(), and IsMpIM() convenience methods on MessageEvent. No more comparing raw strings to figure out where a message came from:
if ev.IsIM() {
    // handle direct message
}

Fixed

  • MessageEvent doc typo — ChannelType documentation listed "mim" instead of the correct "mpim".
  • Duplicate attachment/block serialization — MsgOptionAttachments and MsgOptionBlocks were serializing payloads twice (once for the response-URL JSON path, once for the form POST path). Serialization now happens once inside formSender.BuildRequestContext. (#1547)

[!NOTE] UnsafeApplyMsgOptions no longer includes attachments/blocks keys in the returned values, since marshalling is deferred to send time. This function is documented as unsupported.

v0.21.0

[!WARNING] This release contains multiple breaking changes. Please review the sections below before upgrading.

Breaking changes

Removed APIs

  • IM struct removed — Use Conversation instead. IsUserDeleted has been moved there.
  • Info.GetBotByID, GetUserByID, GetChannelByID, GetGroupByID, GetIMByID removed — These were deprecated and returned nil unconditionally. Remove any calls to them.

Signature changes

  • ListReactions now uses cursor-based pagination — Returns ([]ReactedItem, string, error) instead of ([]ReactedItem, *Paging, error). ListReactionsParameters replaces Count/Page with Cursor/Limit.

    // Before
items, paging, err := api.ListReactions(params)
// After
items, nextCursor, err := api.ListReactions(params)

  • ListStars/GetStarred now use cursor-based pagination — Same pattern: returns string (next cursor) instead of *Paging. StarsParameters replaces Count/Page with Cursor/Limit.

  • GetAccessLogs now uses cursor-based pagination — Same pattern: returns string (next cursor) instead of *Paging. AccessLogParameters replaces Count/Page with Cursor/Limit.

... (truncated)

Changelog

Sourced from github.com/slack-go/slack's changelog.

[0.21.1] - 2026-04-08

Added

  • slackevents.ChannelType* constants and MessageEvent helpers — Added ChannelTypeChannel, ChannelTypeGroup, ChannelTypeIM, ChannelTypeMPIM constants and IsChannel(), IsGroup(), IsIM(), IsMpIM() methods on MessageEvent so callers no longer need to compare raw strings.

Fixed

  • Duplicate attachment/block serialization in MsgOptionAttachments / MsgOptionBlocks — Attachments and blocks were serialized twice: once into typed struct fields (for the JSON response-URL path) and again into url.Values (for the form POST path). Serialization for the form path now happens inside formSender.BuildRequestContext, so each sender owns its own marshalling. This fixes the long-standing FIXME and eliminates redundant json.Marshal calls in the option functions. (#1547)

    [!NOTE] UnsafeApplyMsgOptions returns config.values directly. After this change, attachments and blocks keys are no longer present in those values since marshalling is deferred to send time. This function is documented as unsupported.

[0.21.0] - 2026-04-05

Deprecated

  • slackevents.ParseActionEvent — Cannot parse block_actions payloads (returns unmarshalling error). Use slack.InteractionCallback with json.Unmarshal instead, or slack.InteractionCallbackParse for HTTP requests. InteractionCallback handles all interaction types. (#596)
  • slackevents.MessageAction, MessageActionEntity, MessageActionResponse — Associated types that only support legacy interactive_message payloads.

Removed

  • IM struct — Removed the IM struct (and unused internal types imChannel, imResponseFull). The IsUserDeleted field has been moved to Conversation, where it is populated for IM-type conversations. Code using IM should switch to Conversation.

    [!NOTE] In practice no user should be affected — IM was never returned by any public API method in this library, so there was no way to obtain one outside of manual construction.

  • Info.GetBotByID, GetUserByID, GetChannelByID, GetGroupByID, GetIMByID — These methods were deprecated and returned nil unconditionally. They have been removed.

    [!WARNING] Breaking change. If you are calling any of these methods, remove those calls — they were already no-ops.

... (truncated)

Commits
  • 6d77e45 chore: v0.21.1
  • b1e976f chore(slackevents): clarify eventsMap priority and remove stale TODOs
  • 923f351 feat(slackevents): add ChannelType constants and helpers
  • 17153aa chore: remove stale TODO
  • fa3e143 chore: assert the test file and comment
  • 7ec6a51 chore: assert the test file as well
  • 5e0d5c3 chore: remove misleading XXX prefix to an excellent comment
  • 3500739 chore: better Icons godoc
  • 9f9002a chore: remove useless TODO
  • ecb7c68 chore: remove useless TODO
  • Additional commits viewable in compare view

Updates github.com/takara2314/slack-go-util from 0.3.0 to 0.4.0

Release notes

Sourced from github.com/takara2314/slack-go-util's releases.

v0.4.0

I'm excited to announce v0.4.0! This release brings a major new feature — nested list support — along with CI infrastructure, Go 1.25 support, and dependency updates.

✨ New Features

Nested list support in Markdown to Slack Block Kit conversion

Previously, nested Markdown lists were silently dropped because the parser only handled flat list items. This release adds full nested list support!

The Problem:

  • Nested lists (indented sub-items) were silently stripped during conversion
  • Only top-level list items were rendered in Slack

The Solution:

  • Added recursive processing of nested lists via collectListItems() and collectListItemsFlat()
  • Groups list items by indent level and style using groupItemsByIndent()
  • Creates separate RichTextList elements with proper Indent values
  • Supports mixed ordered/unordered nested lists

Example:

- Parent item
  - Child item 1
  - Child item 2
- Another parent

Now correctly generates Block Kit rich_text blocks with indent=0 for parent items and indent=1 for children! ✨

Thanks to @​sjawhar for this contribution! 🙏

🔧 Infrastructure & CI

GitHub Actions test workflow

  • Added .github/workflows/test.yaml for automated testing on push to main and pull requests
  • Tests run against Go 1.25 and 1.26 using a matrix strategy
  • Includes race condition detection (-race flag)
  • Added Makefile for local test execution (make test)

Go 1.25 and 1.26 support

  • Updated minimum Go version to 1.25 in go.mod
  • CI matrix covers Go 1.25 and 1.26

📦 Dependency Updates

Package Before After

... (truncated)

Commits
  • 9cbf618 feat: update README and add example for Markdown to Slack conversion (#8)
  • d66a673 feat: setting up to support Go 1.25 (#7)
  • 24415e2 feat: setting default go version to 1.25 (#6)
  • d68e1dc Refactor adding comments for doc and english only (#5)
  • d0e6a95 feat: implement test ci (#4)
  • 72eb5f2 feat: add support for nested lists in markdown to blocks conversion (#3)
  • See full diff in compare view

Updates golang.ngrok.com/ngrok/v2 from 2.1.1 to 2.1.2

Release notes

Sourced from golang.ngrok.com/ngrok/v2's releases.

v2.1.2

What's Changed

New Contributors

Full Changelog: ngrok/ngrok-go@v2.1.1...v.2.1.2

Commits
  • 89f78c8 Merge pull request #237 from ngrok/bmps/session-id
  • 914f216 feat: expose the agent session ID
  • f7805c5 Merge pull request #236 from ngrok/bmps/go-fix
  • f14dfdd chore: run go fix
  • 845f770 add support for endpoint name (#234)
  • 8702ab9 Rework integration_tests.MakeHTTPRequest function (#232)
  • 2296322 Extract and unify test certificate creation (#233)
  • 04b0af1 Rework integration_tests.SetupListener function (#230)
  • f3ca474 Automatically disconnect agent during integration test cleanup (#228)
  • f1eb6f9 Introduce internal/testcontext package (#227)
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.50.0 to 0.52.0

Commits
  • 316e20c go.mod: update golang.org/x dependencies
  • 9767a42 internal/http3: add support for plugging into net/http
  • 4a81284 http2: update docs to disrecommend this package
  • dec6603 dns/dnsmessage: reject too large of names early during unpack
  • 8afa12f http2: deprecate write schedulers
  • 38019a2 http2: add missing copyright header to export_test.go
  • 039b87f internal/http3: return error when Write is used after status 304 is set
  • 6267c6c internal/http3: add HTTP 103 Early Hints support to ClientConn
  • 591bdf3 internal/http3: add HTTP 103 Early Hints support to Server
  • 1faa6d8 internal/http3: avoid potential race when aborting RoundTrip
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits
  • ec11c4a errgroup: fix a typo in the documentation
  • 1a58307 all: modernize interface{} -> any
  • 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/time from 0.14.0 to 0.15.0

Commits
  • 812b343 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
deps(go): bump the go-dependencies group across 1 directory with 8 up…
f5e26d7 
…dates

Bumps the go-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go) | `0.44.0` | `0.47.1` |
| [github.com/mattn/go-isatty](https://github.com/mattn/go-isatty) | `0.0.20` | `0.0.21` |
| [github.com/slack-go/slack](https://github.com/slack-go/slack) | `0.17.3` | `0.21.1` |
| [github.com/takara2314/slack-go-util](https://github.com/takara2314/slack-go-util) | `0.3.0` | `0.4.0` |
| [golang.ngrok.com/ngrok/v2](https://github.com/ngrok/ngrok-go) | `2.1.1` | `2.1.2` |
| [golang.org/x/net](https://github.com/golang/net) | `0.50.0` | `0.52.0` |
| [golang.org/x/time](https://github.com/golang/time) | `0.14.0` | `0.15.0` |



Updates `github.com/mark3labs/mcp-go` from 0.44.0 to 0.47.1
- [Release notes](https://github.com/mark3labs/mcp-go/releases)
- [Commits](mark3labs/mcp-go@v0.44.0...v0.47.1)

Updates `github.com/mattn/go-isatty` from 0.0.20 to 0.0.21
- [Commits](mattn/go-isatty@v0.0.20...v0.0.21)

Updates `github.com/slack-go/slack` from 0.17.3 to 0.21.1
- [Release notes](https://github.com/slack-go/slack/releases)
- [Changelog](https://github.com/slack-go/slack/blob/master/CHANGELOG.md)
- [Commits](slack-go/slack@v0.17.3...v0.21.1)

Updates `github.com/takara2314/slack-go-util` from 0.3.0 to 0.4.0
- [Release notes](https://github.com/takara2314/slack-go-util/releases)
- [Commits](takara2314/slack-go-util@v0.3.0...v0.4.0)

Updates `golang.ngrok.com/ngrok/v2` from 2.1.1 to 2.1.2
- [Release notes](https://github.com/ngrok/ngrok-go/releases)
- [Changelog](https://github.com/ngrok/ngrok-go/blob/main/CHANGELOG.md)
- [Commits](ngrok/ngrok-go@v2.1.1...v2.1.2)

Updates `golang.org/x/net` from 0.50.0 to 0.52.0
- [Commits](golang/net@v0.50.0...v0.52.0)

Updates `golang.org/x/sync` from 0.19.0 to 0.20.0
- [Commits](golang/sync@v0.19.0...v0.20.0)

Updates `golang.org/x/time` from 0.14.0 to 0.15.0
- [Commits](golang/time@v0.14.0...v0.15.0)

---
updated-dependencies:
- dependency-name: github.com/mark3labs/mcp-go
  dependency-version: 0.47.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/mattn/go-isatty
  dependency-version: 0.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/slack-go/slack
  dependency-version: 0.21.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/takara2314/slack-go-util
  dependency-version: 0.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.ngrok.com/ngrok/v2
  dependency-version: 2.1.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: golang.org/x/net
  dependency-version: 0.52.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sync
  dependency-version: 0.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/time
  dependency-version: 0.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Apr 9, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants