fix(deps): Update module golang.org/x/oauth2 to v0.27.0 [SECURITY] by renovate[bot] · Pull Request #301 · terraform-google-modules/terraform-google-scheduled-function

renovate · 2025-07-18T17:35:27Z

This PR contains the following updates:

Package	Change	Age	Confidence
golang.org/x/oauth2	`v0.26.0` → `v0.27.0`

GitHub Vulnerability Alerts

CVE-2025-22868

An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate · 2025-07-18T17:35:29Z

ℹ Artifact update notice

File name: modules/project_cleanup/function_source/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

The go directive was updated for compatibility reasons

Details:

Package	Change
`go`	`1.22.7` -> `1.23.0`
`go (toolchain)`	`1.23.6` -> `1.24.11`

dpebot · 2025-07-18T17:35:41Z

/gcbrun

dpebot · 2025-08-10T14:43:38Z

/gcbrun

dpebot · 2025-08-22T17:24:56Z

/gcbrun

dpebot · 2025-08-22T18:06:56Z

/gcbrun

dpebot · 2025-09-11T01:44:16Z

/gcbrun

dpebot · 2025-09-11T04:33:56Z

/gcbrun

dpebot · 2025-09-11T10:51:35Z

/gcbrun

dpebot · 2025-09-11T13:33:29Z

/gcbrun

dpebot · 2025-09-11T20:59:24Z

/gcbrun

dpebot · 2025-09-11T21:21:20Z

/gcbrun

dpebot · 2025-09-11T22:03:31Z

/gcbrun

dpebot · 2025-09-11T22:22:29Z

/gcbrun

dpebot · 2025-09-12T04:32:21Z

/gcbrun

dpebot · 2025-09-15T17:01:48Z

/gcbrun

dpebot · 2025-11-12T22:14:16Z

/gcbrun

dpebot · 2025-11-12T23:26:23Z

/gcbrun

dpebot · 2025-11-13T05:09:58Z

/gcbrun

dpebot · 2025-11-13T23:19:10Z

/gcbrun

dpebot · 2025-12-06T00:43:55Z

/gcbrun

dpebot · 2025-12-09T19:34:03Z

/gcbrun

renovate · 2025-12-11T19:47:44Z

ℹ️ Artifact update notice

File name: modules/project_cleanup/function_source/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

The go directive was updated for compatibility reasons

Details:

Package	Change
`go`	`1.22.7` -> `1.23.0`
`go (toolchain)`	`1.23.6` -> `1.24.13`

dpebot · 2025-12-11T19:47:53Z

/gcbrun

dpebot · 2025-12-24T08:56:46Z

/gcbrun

dpebot · 2025-12-24T08:56:48Z

/gcbrun

dpebot · 2026-02-02T15:08:26Z

/gcbrun

dpebot · 2026-02-12T10:06:49Z

/gcbrun

dpebot · 2026-02-24T09:16:07Z

/gcbrun

renovate bot requested a review from a team as a code owner July 18, 2025 17:35

renovate bot added the type:security label Jul 18, 2025

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 8662fdd to 0cd0cd1 Compare August 10, 2025 14:43

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 0cd0cd1 to 05ef404 Compare August 22, 2025 17:24

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 05ef404 to c08287c Compare August 22, 2025 17:37

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from c08287c to 2f071d8 Compare September 11, 2025 01:44

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 2f071d8 to 6bcce78 Compare September 11, 2025 04:33

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 6bcce78 to 08fca92 Compare September 11, 2025 10:51

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 08fca92 to fc9829e Compare September 11, 2025 13:33

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from fc9829e to e756272 Compare September 11, 2025 20:59

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from e756272 to b9049f9 Compare September 11, 2025 21:21

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from b9049f9 to 5fbec53 Compare September 11, 2025 22:03

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 5fbec53 to a14c31f Compare September 11, 2025 22:22

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from a14c31f to cf44b33 Compare September 12, 2025 04:32

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from cf44b33 to 71974f8 Compare September 15, 2025 17:01

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 434eff6 to c7d2a3b Compare November 12, 2025 23:26

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from c7d2a3b to 9545926 Compare November 13, 2025 05:09

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 9545926 to 3bed77a Compare November 13, 2025 23:18

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 3bed77a to 7f02bd3 Compare December 6, 2025 00:43

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 7f02bd3 to 993ca83 Compare December 9, 2025 19:33

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 993ca83 to 448cd9b Compare December 11, 2025 19:47

renovate bot changed the title ~~fix(deps): Update module golang.org/x/oauth2 to v0.27.0 [SECURITY]~~ fix(deps): Update module golang.org/x/oauth2 to v0.27.0 [SECURITY] - autoclosed Dec 24, 2025

renovate bot closed this Dec 24, 2025

renovate bot deleted the renovate/go-golang.org-x-oauth2-vulnerability branch December 24, 2025 05:59

renovate bot changed the title ~~fix(deps): Update module golang.org/x/oauth2 to v0.27.0 [SECURITY] - autoclosed~~ fix(deps): Update module golang.org/x/oauth2 to v0.27.0 [SECURITY] Dec 24, 2025

renovate bot reopened this Dec 24, 2025

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch 2 times, most recently from 448cd9b to 338a12b Compare December 24, 2025 08:56

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 338a12b to c6a1b51 Compare February 2, 2026 15:08

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from c6a1b51 to 245ad9d Compare February 12, 2026 10:06

fix(deps): Update module golang.org/x/oauth2 to v0.27.0 [SECURITY]

7879ff5

renovate bot force-pushed the renovate/go-golang.org-x-oauth2-vulnerability branch from 245ad9d to 7879ff5 Compare February 24, 2026 09:15

Conversation

renovate bot commented Jul 18, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

GitHub Vulnerability Alerts

CVE-2025-22868

Configuration

Uh oh!

renovate bot commented Jul 18, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

ℹ Artifact update notice

File name: modules/project_cleanup/function_source/go.mod

Uh oh!

dpebot commented Jul 18, 2025

Uh oh!

dpebot commented Aug 10, 2025

Uh oh!

dpebot commented Aug 22, 2025

Uh oh!

dpebot commented Aug 22, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 11, 2025

Uh oh!

dpebot commented Sep 12, 2025

Uh oh!

dpebot commented Sep 15, 2025

Uh oh!

dpebot commented Nov 12, 2025

Uh oh!

dpebot commented Nov 12, 2025

Uh oh!

dpebot commented Nov 13, 2025

Uh oh!

dpebot commented Nov 13, 2025

Uh oh!

dpebot commented Dec 6, 2025

Uh oh!

dpebot commented Dec 9, 2025

Uh oh!

renovate bot commented Dec 11, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

ℹ️ Artifact update notice

File name: modules/project_cleanup/function_source/go.mod

Uh oh!

dpebot commented Dec 11, 2025

Uh oh!

dpebot commented Dec 24, 2025

Uh oh!

dpebot commented Dec 24, 2025

Uh oh!

dpebot commented Feb 2, 2026

Uh oh!

dpebot commented Feb 12, 2026

Uh oh!

dpebot commented Feb 24, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate bot commented Jul 18, 2025 •

edited

Loading

renovate bot commented Jul 18, 2025 •

edited

Loading

renovate bot commented Dec 11, 2025 •

edited

Loading