Skip to content

chore(deps): bump github.com/onsi/gomega from 1.40.0 to 1.42.1#259

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/onsi/gomega-1.42.1
Open

chore(deps): bump github.com/onsi/gomega from 1.40.0 to 1.42.1#259
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/onsi/gomega-1.42.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/onsi/gomega from 1.40.0 to 1.42.1.

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.42.1

1.42.1

Bump Dependencies

v1.42.0

1.42.0

Add a set of Claude skill as a marketplace plugin

v1.41.0

No release notes provided.

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.42.1

Bump Dependencies

1.42.0

Add a set of Claude skill as a marketplace plugin

1.41.0

Features

Add BeASlice and BeAnArray matchers

Fixes

Object formatting now detects pointer cycles to avoid runaway formatting output.

Commits


View with Codesmith Autofix with Codesmith
Need help on this PR? Tag /codesmith with what you need. Autofix is disabled.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jun 29, 2026
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.40.0 to 1.42.1.
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.40.0...v1.42.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
  dependency-version: 1.42.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/onsi/gomega-1.42.1 branch from 49c6c5b to 63618cb Compare July 10, 2026 14:53
@opencodezebra

opencodezebra Bot commented Jul 10, 2026

Copy link
Copy Markdown

LGTM ✅ — Clean Dependabot bump of github.com/onsi/gomega from 1.40.0 to 1.42.1 with coherent transitive updates.
Reviewed at 63618cb (round 1)

What This PR Does

Bumps the github.com/onsi/gomega test dependency from 1.40.0 to 1.42.1, pulling in upstream v1.41.0 (new matchers, pointer cycle fix) and v1.42.0/v1.42.1 (dependency bumps). Changes are limited to go.mod and go.sum.

How It Works

  • Direct version bump in go.mod from 1.40.0 → 1.42.1.
  • Transitive golang.org/x/* packages (crypto, mod, sync, net, sys, term, text, tools) updated to consistent minor versions.
  • No source code changes; purely dependency metadata.

Findings

ID Severity Finding Location
F1 🟢 gomega version bumped correctly; go.sum has matching h1 hash, no stale v1.40.0 entry remains go.mod:16
F2 🟢 All golang.org/x/* transitive bumps are consistent minor version increments with matching go.sum entries go.mod:22,39-40,63-67
F3 🟢 Upstream v1.42.1 tag confirmed on onsi/gomega (published 2026-06-23), release notes align with observed changes upstream
Finding Details

🟢 F1: Version coherence

gomega updated to v1.42.1 in go.mod with a matching h1 hash in go.sum. The old v1.40.0 entry has been fully removed from go.sum, indicating a clean replacement.

🟢 F2: Transitive dependency coherence

All golang.org/x/* transitive dependencies received consistent minor version increments. No version conflicts or stale entries detected.

🟢 F3: Upstream legitimacy

The v1.42.1 tag exists on the onsi/gomega repository, published 2026-06-23. Release notes ("Bump Dependencies") align with the transitive updates observed in this PR.

What's Good (🟢)
  • Minimal change surface: only go.mod and go.sum touched.
  • No source code modifications means zero runtime regression risk from this PR itself.
  • Version coherence is clean across direct and transitive dependencies.
  • Upstream releases are legitimate and recent.
Baseline Check
  • Main already has: gomega v1.40.0 as a test dependency.
  • Net-new value: picks up BeASlice/BeAnArray matchers, pointer cycle formatting fix, and dependency freshness.
  • No prior review rounds on this PR.
Review Metadata
  • Reviewers: rev1 (approve)
  • Consensus: approve
  • Absent reviewers: none

🔴×0 🟡×0 🟢×3 · 💬 Comment @opencodezebra <question> for a follow-up · 🔁 Push new commits or comment @opencodezebra review <fix notes> to re-run the council

@opencodezebra opencodezebra Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Review Council: approved - see the review comment.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants