chore(deps): bump github.com/blinklabs-io/gouroboros from 0.160.0 to 0.160.2

[dependabot]

Bumps github.com/blinklabs-io/gouroboros from 0.160.0 to 0.160.2.

Release notes

Sourced from github.com/blinklabs-io/gouroboros's releases.

v0.160.2

What's Changed

• Release Notes Update: v0.160.1 by @​sg-doc-holiday[bot] in blinklabs-io/gouroboros#1631
• perf(ledger): harden lang view encoding by @​wolf31o2 in blinklabs-io/gouroboros#1633
• fix: protocol-muxer race by @​wolf31o2 in blinklabs-io/gouroboros#1634

Full Changelog: blinklabs-io/gouroboros@v0.160.1...v0.160.2

v0.160.1

What's Changed

• Release Notes Update: v0.160.0 by @​sg-doc-holiday[bot] in blinklabs-io/gouroboros#1620
• fix: appease the linter by @​wolf31o2 in blinklabs-io/gouroboros#1622
• chore(deps): bump actions/download-artifact from 4.3.0 to 8.0.0 by @​dependabot[bot] in blinklabs-io/gouroboros#1629
• feat(vrf): MkInputVrf panics on invalid eta0 length by @​arepala-uml in blinklabs-io/gouroboros#1625
• fix(consensus): PrevHash validation silently skipped on empty input by @​arepala-uml in blinklabs-io/gouroboros#1628
• fix(handshake): sanitize network magic mismatch refusal text by @​wolf31o2 in blinklabs-io/gouroboros#1624
• fix(chainsync): reject non-bytes tag content in unmarshal paths by @​wolf31o2 in blinklabs-io/gouroboros#1621
• test(ledger): Integer overflow in ExUnits summation allows budget bypass by @​arepala-uml in blinklabs-io/gouroboros#1626
• feat(kes): Use constant-time comparison for KES public key by @​arepala-uml in blinklabs-io/gouroboros#1627
• fix(consensus): prev hash byron genesis support by @​wolf31o2 in blinklabs-io/gouroboros#1630

Full Changelog: blinklabs-io/gouroboros@v0.160.0...v0.160.1

Changelog

Sourced from github.com/blinklabs-io/gouroboros's changelog.

v0.160.2 - muxer synchronization and encoding fixes

• Date: 2026-03-13
• Version: 0.160.2

Summary

This release includes muxer protocol instance synchronization, EncodeLangViews validation hardening, and documentation updates.

New Features

• Added synchronized accessors for protocol instances in the muxer and connection paths to support thread-safe protocol selection and lifecycle management.

Bug Fixes

• Fixed EncodeLangViews to reject invalid inputs earlier and behave consistently across edge cases.

Performance

• Improved allocation efficiency in EncodeLangViews by reducing allocation churn during encode and validate operations.

Additional Changes

• Updated RELEASE_NOTES.md to include the v0.160.1 entry with categorized details.

v0.160.1 - validation and security updates

• Date: 2026-03-10
• Version: 0.160.1

Summary

This release includes block and VRF validation updates, ChainSync decoding corrections, and security and CI refinements.

Breaking Changes

• Enforced Byron non-genesis header linkage by requiring PrevHeaderHash where applicable and updating consensus prev-hash validation tests.
• Updated VRF input helpers to return error instead of panicking, and updated callers, tests, and benchmarks to propagate failures.

Bug Fixes

• Fixed an execution-unit overflow edge case and added regression tests for Alonzo, Babbage, and Conway UTxO ExUnits validation.
• Fixed ChainSync unmarshalling to reject CBOR tag payloads that are not []byte, with tests covering invalid types.

Performance

• Improved allocation efficiency by preallocating KeyValuePairs slices based on input sizes in two internal helpers.

Security

... (truncated)

Commits

• ae46cbe fix: protocol-muxer race (#1634)
• d141f3d perf(ledger): harden lang view encoding (#1633)
• 98283f8 Release Notes Update: v0.160.1 (#1631)
• a8121f8 fix(consensus): prev hash byron genesis support (#1630)
• 4ad7aad feat(kes): Replaced bytes.Equal with subtle.ConstantTimeCompare in kes/kes.go...
• 7e6619e test(ledger): Added exunits overflow regression tests across alonzo, conway a...
• 21b9a05 fix(chainsync): reject non-bytes tag content in unmarshal paths (#1621)
• 21c1536 fix(handshake): sanitize network magic mismatch refusal text (#1624)
• b410b00 feat(consensus): Made changes to make sure non-empty PrevHeaderHash for non-g...
• e6af3ed fix(vrf): MkInputVrf panics on invalid eta0 length (#1625)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Summary by cubic

Upgrade github.com/blinklabs-io/gouroboros to v0.160.2 to fix a protocol muxer race, tighten ChainSync/consensus validation, and slightly improve encoding performance. This improves stability and hardens input validation.

• Dependencies
  • Bump github.com/blinklabs-io/gouroboros from v0.160.0 to v0.160.2.

^{Written for commit d8833fc. Summary will update on new commits.}

[cubic-dev-ai]

No issues found across 2 files