Skip to content

build(deps): bump github.com/zitadel/oidc/v3 from 3.45.4 to 3.47.5#6587

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/zitadel/oidc/v3-3.47.5
Open

build(deps): bump github.com/zitadel/oidc/v3 from 3.45.4 to 3.47.5#6587
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/zitadel/oidc/v3-3.47.5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 8, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/zitadel/oidc/v3 from 3.45.4 to 3.47.5.

Release notes

Sourced from github.com/zitadel/oidc/v3's releases.

v3.47.5

3.47.5 (2026-04-20)

Bug Fixes

v3.47.4

3.47.4 (2026-04-17)

Bug Fixes

v3.47.3

3.47.3 (2026-04-15)

Bug Fixes

  • propagate signature verification errors correctly (#872) (49664bf)

v3.47.2

3.47.2 (2026-04-10)

Bug Fixes

  • tolerate string amr claims from external providers (#855) (5f70eff)

v3.47.1

3.47.1 (2026-04-09)

Bug Fixes

  • oidc server error to http status mapping (#865) (d118dd7)

v3.47.0

This release adds signing of opaque tokens. By secure default, all existing opaque access tokens emitted by OP implementations, will be invalid. Users will need to re-login. If you want a more gradual upgrade use the op.WithCrypto() option to pass a op.NewCompositeCrypto(). Use aop.NewAESCrypto() in the Decrypter slice with the existing master key.

This change does not affect client / RP / RS libraries.

What's Changed

... (truncated)

Commits
  • fb9fbfe fix(op): allow dynamic loopback ports in post_logout_redirect_uri per RFC 825...
  • 178e018 fix: URL-encode client credentials in Basic Auth per RFC 6749 §2.3.1 (#873)
  • 49664bf fix: propagate signature verification errors correctly (#872)
  • 5f70eff fix: tolerate string amr claims from external providers (#855)
  • 97b71d3 chore(deps): bump golang.org/x/text from 0.35.0 to 0.36.0 (#869)
  • d118dd7 fix: oidc server error to http status mapping (#865)
  • 2534f81 docs: update semantic title requirements (#863)
  • d016375 example: set device cookie httpOnly (#868)
  • b4cf422 Merge commit from fork
  • 0bf0ade chore: package upgrades (#866)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/zitadel/oidc/v3](https://github.com/zitadel/oidc) from 3.45.4 to 3.47.5.
- [Release notes](https://github.com/zitadel/oidc/releases)
- [Commits](zitadel/oidc@v3.45.4...v3.47.5)

---
updated-dependencies:
- dependency-name: github.com/zitadel/oidc/v3
  dependency-version: 3.47.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 8, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 8, 2026 06:12
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 8, 2026
@coveralls

Copy link
Copy Markdown

Coverage Status

Coverage is 60.904%dependabot/go_modules/github.com/zitadel/oidc/v3-3.47.5 into main. No base build found for main.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant