chore: bump github.com/gohugoio/hugo from 0.147.0 to 0.155.3

[dependabot]

Bumps github.com/gohugoio/hugo from 0.147.0 to 0.155.3.

Release notes

Sourced from github.com/gohugoio/hugo's releases.

v0.155.3

What's Changed

• hugolib: Don't render default site redirect for non-primary isHTML output formats 6ac7d081 @​bep #14482
• server: Fix stuck server global error logging 24eb84f8 @​bep #14469
• build(deps): bump github.com/evanw/esbuild from 0.27.2 to 0.27.3 95a36782 @​dependabot[bot]
• server: Fix panic when the server browser error handler tried to use a config in a state of flux 9045797d @​bep #14470

v0.155.2

Note that the bug fix below is for the two new dimensions introduced in v0.153.0 (version and role), multiple languages worked fine. Also, changes to the first version and role also worked, which had me head-scratching for a while. Oh, well, enjoy.

• Fix template change detection for multi-version sites 0f1c7d12 @​bep #14461
• resources/image: Add some image decode/encode debug logging 6bd2bde9 @​bep #14337 #14460

v0.155.1

What's Changed

• Fix image DecodeConfig regression of WebP images from file cache b5d43cdc @​bep #14453
• resources/images: Fix WebP useSharpYuv being ignored b1e1eede @​jmooring #14449
• tpl/tplimpl: Remove failing Twitter tests f522a728 @​jmooring

v0.155.0

Some notable new things in this release are:

• Improvements to how versions are handled: We now support version (and also for the other dimension) range queries (e.g. >= v1.0.0), and we now cache Go module version queries, which makes mounting multiple versions of the same GitHub repo with different version much more practical and enjoyable, se this site and config for an annotated example.
• We finally have XMP and IPTC image metadata support, in addition to EXIF, see #13146
• Page aliases now works in multidimensional sites (e.g. multiple languages), and it is now much easier to create e.g. Netlify _redirects files that works in such setups.
• There are several performance related WebP improvements in this release.
• Also, image processing in general (e.g. resize operations) should be considerably more effective.

Breaking change

Prior to v0.155.0, alias paths beginning with a slash (/) were treated as server-relative. In v0.155.0 and later, they are now site-relative. This change only affects multilingual single-host projects that used alias paths beginning with a slash (/) to cross language boundaries. See details.

Note

• Make Page.Aliases more useful in multidimensional setups (note) ee91c707 @​bep #14402

Bug fixes

... (truncated)

Commits

• 8a85821 releaser: Bump versions for release of 0.155.3
• 6ac7d08 hugolib: Don't render default site redirect for non-primary isHTML output for...
• 24eb84f server: Fix stuck server global error logging
• 95a3678 build(deps): bump github.com/evanw/esbuild from 0.27.2 to 0.27.3
• 9045797 server: Fix panic when the server browser error handler tried to use a config...
• 73641ae releaser: Prepare repository for 0.156.0-DEV
• d8c0dfc releaser: Bump versions for release of 0.155.2
• 6bd2bde resources/image: Add some image decode/encode debug logging
• 0f1c7d1 Fix template change detection for multi-version sites
• 1035233 releaser: Prepare repository for 0.156.0-DEV
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	golang/​golang.org/​x/​oauth2@​v0.29.0 ⏵ v0.32.0	+1
	golang/​github.com/​aws/​aws-sdk-go-v2@​v1.36.3 ⏵ v1.41.1	+1
	golang/​github.com/​aws/​smithy-go@​v1.22.3 ⏵ v1.24.0	+1
	golang/​golang.org/​x/​crypto@​v0.39.0 ⏵ v0.47.0	+1	+3
	golang/​golang.org/​x/​net@​v0.41.0 ⏵ v0.49.0	+1
	golang/​github.com/​gohugoio/​hugo@​v0.147.0 ⏵ v0.155.3	+1
	golang/​golang.org/​x/​tools@​v0.33.0 ⏵ v0.41.0	+1
	golang/​google.golang.org/​grpc@​v1.73.0 ⏵ v1.76.0	+1
	golang/​google.golang.org/​protobuf@​v1.36.6 ⏵ v1.36.10	+1
	golang/​golang.org/​x/​text@​v0.26.0 ⏵ v0.33.0	+1
	golang/​google.golang.org/​api@​v0.231.0 ⏵ v0.255.0	+1
	golang/​golang.org/​x/​sys@​v0.33.0 ⏵ v0.40.0
	golang/​github.com/​aws/​aws-sdk-go-v2/​config@​v1.29.14 ⏵ v1.31.17
	golang/​golang.org/​x/​mod@​v0.25.0 ⏵ v0.32.0
	golang/​github.com/​spf13/​pflag@​v1.0.6 ⏵ v1.0.9
	golang/​github.com/​go-jose/​go-jose/​v4@​v4.1.0 ⏵ v4.1.2
	golang/​cloud.google.com/​go/​compute/​metadata@​v0.7.0 ⏵ v0.9.0	+1
	golang/​go.opentelemetry.io/​otel/​exporters/​otlp/​otlptrace/​otlptracegrpc@​v1.35.0 ⏵ v1.37.0	+1
	golang/​golang.org/​x/​sync@​v0.15.0 ⏵ v0.19.0
	golang/​golang.org/​x/​term@​v0.32.0 ⏵ v0.39.0	+1
	golang/​github.com/​aws/​aws-sdk-go-v2/​feature/​rds/​auth@​v1.5.1 ⏵ v1.5.13
	golang/​go.opentelemetry.io/​otel/​exporters/​otlp/​otlptrace@​v1.35.0 ⏵ v1.37.0

View full report

[cloudflare-workers-and-pages]

Deploying with    Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status	Name	Latest Commit	Updated (UTC)
❌ Deployment failed View logs	codeserver	c080ea4	Feb 09 2026, 01:24 PM