Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by dependabot[bot] · Pull Request #1608 · smallstep/cli

dependabot · 2026-04-03T03:43:09Z

Bumps github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4.

Release notes

Sourced from github.com/go-jose/go-jose/v4's releases.

v4.1.4

What's Changed

Fixes Panic in JWE decryption. See GHSA-78h2-9frx-2jm8

Full Changelog: go-jose/go-jose@v4.1.3...v4.1.4

Commits

0e59876 Merge commit from fork
ddffdbc Bump actions/checkout from 5 to 6 (#213)
See full diff in compare view

hslatman · 2026-04-07T12:09:20Z

@dependabot rebase

Bumps [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) from 4.1.3 to 4.1.4. - [Release notes](https://github.com/go-jose/go-jose/releases) - [Commits](go-jose/go-jose@v4.1.3...v4.1.4) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v4 dependency-version: 4.1.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 3, 2026

github-actions bot added the needs triage Waiting for discussion / prioritization by team label Apr 3, 2026

step-ci enabled auto-merge April 3, 2026 03:43

hslatman added this to the v0.30.3 milestone Apr 7, 2026

dependabot bot force-pushed the dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4 branch from 3b92701 to 55bed2a Compare April 7, 2026 12:10

hslatman approved these changes Apr 7, 2026

View reviewed changes

step-ci merged commit 563699f into master Apr 7, 2026
17 of 18 checks passed

step-ci deleted the dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4 branch April 7, 2026 12:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4#1608

Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4#1608
step-ci merged 1 commit intomasterfrom
dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4

dependabot bot commented on behalf of github Apr 3, 2026 •

edited

Loading

Uh oh!

hslatman commented Apr 7, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

dependabot bot commented on behalf of github Apr 3, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v4.1.4

What's Changed

Uh oh!

hslatman commented Apr 7, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Apr 3, 2026 •

edited

Loading