chore(deps): bump github.com/valyala/fasthttp from 1.52.0 to 1.60.0 #643

dependabot · 2025-04-14T19:44:19Z

Bumps github.com/valyala/fasthttp from 1.52.0 to 1.60.0.

Release notes

Sourced from github.com/valyala/fasthttp's releases.

v1.60.0

What's Changed

perf: split delAllArgs into delAllArgs and delAllArgsStable by @ksw2000 in valyala/fasthttp#1945

fix: accept invalid headers with a space by @ksw2000 in valyala/fasthttp#1953

Drop support for Go 1.21, add support for 1.24 by @erikdubbelboer in valyala/fasthttp#1959

chore(deps): bump github.com/klauspost/compress from 1.17.11 to 1.18.0 by @dependabot in valyala/fasthttp#1958

add related project for opentelemetry-go-auto-instrumentation by @123liuziming in valyala/fasthttp#1962

Fix normalizeHeaderValue by @erikdubbelboer in valyala/fasthttp#1963

chore(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 by @dependabot in valyala/fasthttp#1968

chore(deps): bump securego/gosec from 2.22.1 to 2.22.2 by @dependabot in valyala/fasthttp#1972

chore(deps): bump golang.org/x/net from 0.36.0 to 0.37.0 by @dependabot in valyala/fasthttp#1971

Update golangci-lint to v2 by @erikdubbelboer in valyala/fasthttp#1980

chore(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 by @dependabot in valyala/fasthttp#1983

Remove idleConns mutex for every request by @erikdubbelboer in valyala/fasthttp#1986

New Contributors

@123liuziming made their first contribution in valyala/fasthttp#1962

Full Changelog: valyala/fasthttp@v1.59.0...v1.60.0

v1.59.0

What's Changed

fix: Method-preserving doRequestFollowRedirects by @prepaser in valyala/fasthttp#1920

fix: "identity" has been deprecated #1909 by @ksw2000 in valyala/fasthttp#1919

Fix parsing of bad urls with # by @erikdubbelboer in valyala/fasthttp#1915

docs: improve README formatting and section headers by @alexandear in valyala/fasthttp#1925

perf: use buf in Args instead of bytebufferpool by @ksw2000 in valyala/fasthttp#1931

client: Client {} supports custom Transport by @zhangyongding in valyala/fasthttp#1935

Migrate valyala/tcplisten to this repo #1926 by @ksw2000 in valyala/fasthttp#1929

client: Modify some interfaces to be exportable by @zhangyongding in valyala/fasthttp#1936

Try to fix tests with dial timeouts by @erikdubbelboer in valyala/fasthttp#1940

client: add interfaces for reading clientConn by @zhangyongding in valyala/fasthttp#1941

Refactor trailer Field for Improved Memory Efficiency and Performance by @ksw2000 in valyala/fasthttp#1928

fix: compression priority by @inetol in valyala/fasthttp#1950

add dummy support for js,wasm by @pjebs in valyala/fasthttp#1955

chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.31.0 by @dependabot in valyala/fasthttp#1918

chore(deps): bump golang.org/x/net from 0.31.0 to 0.32.0 by @dependabot in valyala/fasthttp#1910

chore(deps): bump golang.org/x/net from 0.32.0 to 0.33.0 by @dependabot in valyala/fasthttp#1927

chore(deps): bump golang.org/x/sys from 0.28.0 to 0.29.0 by @dependabot in valyala/fasthttp#1932

chore(deps): bump golang.org/x/crypto from 0.31.0 to 0.32.0 by @dependabot in valyala/fasthttp#1934

chore(deps): bump securego/gosec from 2.21.4 to 2.22.0 by @dependabot in valyala/fasthttp#1937

chore(deps): bump golang.org/x/net from 0.33.0 to 0.34.0 by @dependabot in valyala/fasthttp#1933

chore(deps): bump golang.org/x/sys from 0.29.0 to 0.30.0 by @dependabot in valyala/fasthttp#1947

chore(deps): bump golang.org/x/crypto from 0.32.0 to 0.33.0 by @dependabot in valyala/fasthttp#1951

chore(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 by @dependabot in valyala/fasthttp#1952

chore(deps): bump securego/gosec from 2.22.0 to 2.22.1 by @dependabot in valyala/fasthttp#1956

New Contributors

@prepaser made their first contribution in valyala/fasthttp#1920

@inetol made their first contribution in valyala/fasthttp#1950

... (truncated)

Commits

752b0e7 Remove idleConns mutex for every request (#1986)
bf3f552 chore(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 (#1983)
4891fc5 Update golangci-lint to v2 (#1980)
30b09be Fix untyped int constant 4294967295
4269e2d chore(deps): bump golang.org/x/net from 0.36.0 to 0.37.0 (#1971)
1353ca5 chore(deps): bump securego/gosec from 2.22.1 to 2.22.2 (#1972)
6c07c2f chore(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 (#1968)
69dc7b1 Update the supported version to the same as Go itself (#1967)
b8969ed Fix normalizeHeaderValue (#1963)
31e34c5 add related project for opentelemetry-go-auto-instrumentation (#1962)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/valyala/fasthttp](https://github.com/valyala/fasthttp) from 1.52.0 to 1.60.0. - [Release notes](https://github.com/valyala/fasthttp/releases) - [Commits](valyala/fasthttp@v1.52.0...v1.60.0) --- updated-dependencies: - dependency-name: github.com/valyala/fasthttp dependency-version: 1.60.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2025-04-14T19:44:38Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub ↗.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	github.com/valyala/fasthttp@v1.52.0 ⏵ v1.60.0	⁺¹

View full report ↗

CLAassistant · 2025-04-14T19:48:40Z

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 14, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump github.com/valyala/fasthttp from 1.52.0 to 1.60.0 #643

chore(deps): bump github.com/valyala/fasthttp from 1.52.0 to 1.60.0 #643

dependabot bot commented on behalf of github Apr 14, 2025

socket-security bot commented Apr 14, 2025

CLAassistant commented Apr 14, 2025

chore(deps): bump github.com/valyala/fasthttp from 1.52.0 to 1.60.0 #643

Are you sure you want to change the base?

chore(deps): bump github.com/valyala/fasthttp from 1.52.0 to 1.60.0 #643

Conversation

dependabot bot commented on behalf of github Apr 14, 2025

v1.60.0

What's Changed

New Contributors

v1.59.0

What's Changed

New Contributors

socket-security bot commented Apr 14, 2025

CLAassistant commented Apr 14, 2025