Skip to content

fix(deps): bump github.com/opentdf/platform/lib/ocrypto from 0.10.0 to 0.11.0 in /tests-bdd#3527

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/tests-bdd/github.com/opentdf/platform/lib/ocrypto-0.11.0
Open

fix(deps): bump github.com/opentdf/platform/lib/ocrypto from 0.10.0 to 0.11.0 in /tests-bdd#3527
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/tests-bdd/github.com/opentdf/platform/lib/ocrypto-0.11.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 26, 2026

Bumps github.com/opentdf/platform/lib/ocrypto from 0.10.0 to 0.11.0.

Release notes

Sourced from github.com/opentdf/platform/lib/ocrypto's releases.

protocol/go: v0.11.0

0.11.0 (2025-09-18)

Features

  • authz: obligations protos within auth service (#2745) (41ee5a8)
  • policy: Return obligations from GetAttributeValue calls (#2742) (aa9b393)

service: v0.11.0

0.11.0 (2025-10-22)

Features

  • authz: add obligation fulfillment logic to obligation PDP (#2740) (2f8d30d)
  • authz: audit logs should properly handle obligations (#2824) (874ec7b)
  • authz: defer to request auth as decision/entitlements entity (#2789) (feb34d8)
  • authz: obligations protos within auth service (#2745) (41ee5a8)
  • authz: protovalidate tests for new authz obligations fields (#2747) (73e6319)
  • authz: service logic to use request auth as entity identifier in PDP decisions/entitlements (#2790) (6784e88)
  • authz: wire up obligations enforcement in auth service (#2756) (11b3ea9)
  • core: propagate token clientID on configured claim via interceptor into shared context metadata (#2760) (0f77246)
  • kas: Add required obligations to kao metadata.: (#2806) (16fb26c)
  • policy: add FQNs to obligation defs + vals (#2749) (fa2585c)
  • policy: Add obligation support to KAS (#2786) (bb1bca0)
  • policy: List obligation triggers rpc (#2823) (206abe3)
  • policy: namespace root certificates (#2771) (beaff21)
  • policy: Proto - root certificates by namespace (#2800) (0edb359)
  • policy: Protos List obligation triggers (#2803) (b32df81)
  • policy: Return built obligations fqns with triggers. (#2830) (e843018)
  • policy: Return obligations from GetAttributeValue calls (#2742) (aa9b393)

Bug Fixes

  • core: CORS (#2787) (a030ac6)
  • core: deprecate policy WithValue selector not utilized by RPC (#2794) (c573595)
  • core: deprecated stale protos and add better upgrade comments (#2793) (f2678cc)
  • core: Don't require known manager names (#2792) (8a56a96)
  • core: Fix mode negation and core mode (#2779) (de9807d)
  • core: resolve environment loading issues (#2827) (9af3184)
  • deps: bump github.com/opentdf/platform/lib/ocrypto from 0.6.0 to 0.7.0 in /service (#2812) (a6d180d)
  • deps: bump github.com/opentdf/platform/protocol/go from 0.12.0 to 0.13.0 in /service (#2814) (5e9c695)
  • deps: bump github.com/opentdf/platform/sdk from 0.7.0 to 0.9.0 in /service (#2798) (d6bc9a8)
  • deps: bump github.com/opentdf/platform/sdk from 0.9.0 to 0.10.0 in /service (#2831) (412dfd1)
  • ECC key loading (deprecated) (#2757) (49990eb)
  • policy: Change to nil (#2746) (a449434)

sdk: v0.11.0

... (truncated)

Commits
  • d527a09 chore(main): release sdk 0.11.0 (#2854)
  • 6fc9b46 fix(deps): bump github.com/opentdf/platform/lib/ocrypto from 0.7.0 to 0.8.0 i...
  • ef4b5b5 feat(sdk): JWK-based signature verification for assertions (#2985)
  • 4f6825e fix(policy): wrap SQL optional param type casts in null checks (#2977)
  • fedb5e9 fix(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 in /exampl...
  • be970db fix(deps): bump github.com/opentdf/platform/lib/ocrypto from 0.7.0 to 0.8.0 i...
  • 744e3aa fix(deps): bump github.com/opentdf/platform/lib/ocrypto from 0.7.0 to 0.8.0 i...
  • 457f380 chore(ci): SRE-5917 Use new gcp auth method (#2970)
  • fce65f8 fix(deps): bump the external group across 1 directory with 5 updates (#2917)
  • 6dc3bca fix(deps): bump the external group across 1 directory with 5 updates (#2950)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
fix(deps): bump github.com/opentdf/platform/lib/ocrypto in /tests-bdd
ca82f7f 
Bumps [github.com/opentdf/platform/lib/ocrypto](https://github.com/opentdf/platform) from 0.10.0 to 0.11.0.
- [Release notes](https://github.com/opentdf/platform/releases)
- [Commits](sdk/v0.10.0...sdk/v0.11.0)

---
updated-dependencies:
- dependency-name: github.com/opentdf/platform/lib/ocrypto
  dependency-version: 0.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels May 26, 2026
@dependabot dependabot Bot requested a review from a team as a code owner May 26, 2026 23:30
@dependabot dependabot Bot added the go Pull requests that update Go code label May 26, 2026
@dependabot dependabot Bot requested a review from a team as a code owner May 26, 2026 23:30
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 26, 2026

Benchmark results, click to expand

Benchmark authorization.GetDecisions Results:

Metric Value
Approved Decision Requests 1000
Denied Decision Requests 0
Total Time 239.213864ms

Benchmark authorization.v2.GetMultiResourceDecision Results:

Metric Value
Approved Decision Requests 1000
Denied Decision Requests 0
Total Time 163.464232ms

Benchmark Statistics

Name № Requests Avg Duration Min Duration Max Duration

Bulk Benchmark Results

Metric Value
Total Decrypts 100
Successful Decrypts 100
Failed Decrypts 0
Total Time 440.500237ms
Throughput 227.01 requests/second

TDF3 Benchmark Results:

Metric Value
Total Requests 5000
Successful Requests 5000
Failed Requests 0
Concurrent Requests 50
Total Time 43.369828667s
Average Latency 431.775655ms
Throughput 115.29 requests/second

@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 26, 2026

⚠️ Govulncheck found vulnerabilities ⚠️

The following modules have known vulnerabilities:

  • examples
  • otdfctl
  • sdk
  • service
  • lib/fixtures
  • tests-bdd

See the workflow run for details.

@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 26, 2026

X-Test Results

✅ go@main-pull-3527
✅ go@main-v0.9.0
✅ java@main-pull-3527
✅ java@main-v0.9.0
✅ js@main-v0.9.0
✅ js@main-pull-3527
cukes-report
opentdfplatformCKC4RN.dockerbuild
govulncheck-failure-3
govulncheck-failure-0
govulncheck-failure-8
govulncheck-failure-1
govulncheck-failure-2
govulncheck-failure-5

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code size/xs

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants