Permalink
Comparing changes
Choose two branches to see what’s changed or to start a new pull request.
If you need to, you can also or
learn more about diff comparisons.
Open a pull request
Create a new pull request by comparing changes across two branches. If you need to, you can also .
Learn more about diff comparisons here.
...
- 3 commits
- 2 files changed
- 1 contributor
Commits on Apr 27, 2026
-
Bump github.com/letsencrypt/boulder from 0.20260413.0 to 0.20260420.0 (…
…#169) Bumps [github.com/letsencrypt/boulder](https://github.com/letsencrypt/boulder) from 0.20260413.0 to 0.20260420.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/letsencrypt/boulder/releases">github.com/letsencrypt/boulder's releases</a>.</em></p> <blockquote> <h2>v0.20260420.0</h2> <h2>What's Changed</h2> <ul> <li>bump pkimetal to v1.41.0 and ignore new ctlint warning by <a href="https://github.com/mcpherrinm"><code>@mcpherrinm</code></a> in <a href="https://redirect.github.com/letsencrypt/boulder/pull/8713">letsencrypt/boulder#8713</a></li> <li>observer: use new URL for AllCertificates by <a href="https://github.com/jsha"><code>@jsha</code></a> in <a href="https://redirect.github.com/letsencrypt/boulder/pull/8718">letsencrypt/boulder#8718</a></li> <li>observer: use CCADB AllCertificates V5 URL by <a href="https://github.com/jsha"><code>@jsha</code></a> in <a href="https://redirect.github.com/letsencrypt/boulder/pull/8719">letsencrypt/boulder#8719</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/letsencrypt/boulder/compare/v0.20260413.0...v0.20260420.0">https://github.com/letsencrypt/boulder/compare/v0.20260413.0...v0.20260420.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/letsencrypt/boulder/commit/05635e877fe2f94c109bab178632f5d1582e21f8"><code>05635e8</code></a> observer: use CCADB AllCertificates V5 URL (<a href="https://redirect.github.com/letsencrypt/boulder/issues/8719">#8719</a>)</li> <li><a href="https://github.com/letsencrypt/boulder/commit/e987484a9fd4931bf4c25c3c0c82f7dd3f11e13e"><code>e987484</code></a> observer: use new URL for AllCertificates (<a href="https://redirect.github.com/letsencrypt/boulder/issues/8718">#8718</a>)</li> <li><a href="https://github.com/letsencrypt/boulder/commit/c430d1a4a6035682cdf55caa4c08d8d900cec651"><code>c430d1a</code></a> bump pkimetal to v1.41.0 and ignore new ctlint warning (<a href="https://redirect.github.com/letsencrypt/boulder/issues/8713">#8713</a>)</li> <li>See full diff in <a href="https://github.com/letsencrypt/boulder/compare/v0.20260413.0...v0.20260420.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
Bump github.com/libdns/route53 from 1.6.0 to 1.6.2 (#170)
Bumps [github.com/libdns/route53](https://github.com/libdns/route53) from 1.6.0 to 1.6.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/libdns/route53/releases">github.com/libdns/route53's releases</a>.</em></p> <blockquote> <h2>v1.6.2</h2> <h3>Fixed</h3> <ul> <li>Concurrent <code>AppendRecords</code> calls targeting the same <code>(name, type)</code> no longer lose values. The provider now serializes the read-merge-UPSERT cycle per <code>(zone, name, type)</code>. Previously, two goroutines (e.g. ACME challenges for <code>example.com</code> and <code>*.example.com</code> sharing <code>_acme-challenge.example.com</code> TXT) could both observe pre-write state and the later UPSERT would clobber the earlier — causing dropped tokens and validation failures.</li> <li><code>SetRecords</code> with multiple input records sharing the same <code>(name, type)</code> now keeps all values. The previous per-record loop UPSERTed each independently, leaving only the last value.</li> <li>Pre-existing filter bug in the <code>AppendRecords</code> / <code>DeleteRecords</code> merge path: <code>getRecords</code> returns relative names but the filter compared against <code>libdns.AbsoluteName(...)</code>, so existing values were never matched. The merge silently treated the set as empty, which (combined with UPSERT replacing the entire RecordSet) could overwrite data. Fixed.</li> </ul> <h3>Added</h3> <ul> <li>Regression tests in <code>libdnstest/</code>: <code>TestAppendRecords_Concurrent</code> (10 goroutines into one shared name) and <code>TestSetRecords_MultiValue</code>.</li> </ul> <h3>Internal</h3> <ul> <li><code>Provider.init</code> now uses <code>sync.Once</code> for AWS client construction (was a non-atomic <code>nil</code> check).</li> <li>Removed dead code: <code>createRecord</code>, <code>changeRecord</code>, <code>updateRecord</code> (orphaned by <a href="https://redirect.github.com/libdns/route53/issues/294">#294</a> and the <code>SetRecords</code> rewrite).</li> <li><code>quote.go</code>: address <code>gosec</code> G115 and <code>staticcheck</code> QF1012 warnings.</li> </ul> <h3>Note on multi-process deployments</h3> <p>The lock is in-process. Multiple processes writing to the same RecordSet still need external coordination — <code>certmagic</code>'s per-identifier storage lock does not cover this case because racing identifiers (e.g. <code>foo.example.com</code> vs <code>*.foo.example.com</code>) share a common parent RecordSet.</p> <h2>v1.6.1</h2> <h3>Fixed</h3> <ul> <li><code>AppendRecords</code> no longer fails when the target ResourceRecordSet already exists. Single-record appends now merge with existing values via UPSERT, matching the multi-record path. Resolves stale ACME challenge TXT failures (<a href="https://redirect.github.com/libdns/route53/issues/294">#294</a>, thanks <a href="https://github.com/andrewseddon"><code>@andrewseddon</code></a>).</li> </ul> <h3>Added</h3> <ul> <li><code>Provider.Logger *slog.Logger</code> for structured logging. Defaults to a discard handler. Wrappers (e.g. caddy-dns/route53) can adapt their own logger via <code>slog.Handler</code> — for zap, see <code>go.uber.org/zap/exp/zapslog</code>. Events are Debug-level except ambiguous zone resolution (Warn).</li> </ul> <h3>Internal</h3> <ul> <li>Bumped <code>actions/checkout</code> to v6 (<a href="https://redirect.github.com/libdns/route53/issues/293">#293</a>) and <code>golangci/golangci-lint-action</code> to v9 (<a href="https://redirect.github.com/libdns/route53/issues/292">#292</a>).</li> <li>Fixed <code>libdnstest</code> module to require <code>github.com/libdns/libdns@v1.2.0-alpha.1</code> (the version that ships the <code>libdnstest</code> subpackage).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/libdns/route53/commit/840c6120709b2f9da6d74dc5d562e2625334aecc"><code>840c612</code></a> Fix quote.go lint warnings</li> <li><a href="https://github.com/libdns/route53/commit/14cb77fe35d592279a2459b944a8dd650cd02463"><code>14cb77f</code></a> Serialize per-tuple record-set RMW; fix multi-value SetRecords</li> <li><a href="https://github.com/libdns/route53/commit/a2820bea6ee07956a86f4498bc149efcbc7ec000"><code>a2820be</code></a> Add structured logging via slog</li> <li><a href="https://github.com/libdns/route53/commit/7ebfd9f1fa0a7bdb16b1f418cfdd7f06b36bbcff"><code>7ebfd9f</code></a> Fix libdnstest module: bump libdns, drop stale replace</li> <li><a href="https://github.com/libdns/route53/commit/7399dbebe56d2fd707940dd842058fd1203b2af0"><code>7399dbe</code></a> Merge pull request <a href="https://redirect.github.com/libdns/route53/issues/293">#293</a> from libdns/dependabot/github_actions/actions/checkout-6</li> <li><a href="https://github.com/libdns/route53/commit/d14a81ad7e5102a069baf23c7d041021468b6f64"><code>d14a81a</code></a> Merge pull request <a href="https://redirect.github.com/libdns/route53/issues/292">#292</a> from libdns/dependabot/github_actions/golangci/golang...</li> <li><a href="https://github.com/libdns/route53/commit/351c9e695134bf4579d0064f2b8f659c00a34ee7"><code>351c9e6</code></a> Merge pull request <a href="https://redirect.github.com/libdns/route53/issues/294">#294</a> from andrewseddon/fix-append-records-upsert</li> <li><a href="https://github.com/libdns/route53/commit/2687fa662e0ac184ac451ddc5085edc781eb446d"><code>2687fa6</code></a> fix: use UPSERT instead of CREATE in AppendRecords for single records</li> <li><a href="https://github.com/libdns/route53/commit/35a512a5adbbfc3ed326e9e0f86590af7b97d802"><code>35a512a</code></a> chore(deps): bump actions/checkout from 5 to 6</li> <li><a href="https://github.com/libdns/route53/commit/38b146f5d07164c2d17458584761419e714a2441"><code>38b146f</code></a> chore(deps): bump golangci/golangci-lint-action from 8 to 9</li> <li>See full diff in <a href="https://github.com/libdns/route53/compare/v1.6.0...v1.6.2">compare view</a></li> </ul> </details> <br /> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
Bump github.com/caddyserver/certmagic from 0.25.1 to 0.25.3 (#171)
Bumps [github.com/caddyserver/certmagic](https://github.com/caddyserver/certmagic) from 0.25.1 to 0.25.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/caddyserver/certmagic/commit/c7496f1a6a93025c528b03cde701bf06394440fd"><code>c7496f1</code></a> More validation of delegated OCSP responders (<a href="https://redirect.github.com/caddyserver/certmagic/issues/378">#378</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/cdc4eb24e7ec1d14fe3a8f71f6069212dae9c265"><code>cdc4eb2</code></a> fix: Normalization IPv6 addresses for ACME challenge (<a href="https://redirect.github.com/caddyserver/certmagic/issues/376">#376</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/2cf7e0858b0d34834263033536515f91a40ddbec"><code>2cf7e08</code></a> Revert "Fix HTTP-01 challenge for IPv6 literal addresses (<a href="https://redirect.github.com/caddyserver/certmagic/issues/377">#377</a>)"</li> <li><a href="https://github.com/caddyserver/certmagic/commit/3e3363fcc7cd7a02a4104478ebf832d56df65182"><code>3e3363f</code></a> readme: add dark-mode banner for GitHub UI (<a href="https://redirect.github.com/caddyserver/certmagic/issues/379">#379</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/3229642925944adf6cd82422153f127303c325e5"><code>3229642</code></a> go.mod: Upgrade indirect dependencies</li> <li><a href="https://github.com/caddyserver/certmagic/commit/60d9d8b415d6e3f2fa7aec9b440c7dc2473126d4"><code>60d9d8b</code></a> Fix HTTP-01 challenge for IPv6 literal addresses (<a href="https://redirect.github.com/caddyserver/certmagic/issues/377">#377</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/e03792e204502548bb056f9c86ec72dda63d57f3"><code>e03792e</code></a> Modernize TLSConfig() (close <a href="https://redirect.github.com/caddyserver/certmagic/issues/375">#375</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/fa1257f02bda2d7de97a5f004114b0062b0a6fbd"><code>fa1257f</code></a> Unblock ManageAsync() by putting manageOne() in a goroutine (<a href="https://redirect.github.com/caddyserver/certmagic/issues/374">#374</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/b9e85a9e914f184eb5ae0f45e2fa2df188ff692e"><code>b9e85a9</code></a> Don't log nil errors when stapling OCSP (fix <a href="https://redirect.github.com/caddyserver/certmagic/issues/362">#362</a>)</li> <li><a href="https://github.com/caddyserver/certmagic/commit/a7a8ce3b2c2161378323b340b7f9d44f4dd2f86c"><code>a7a8ce3</code></a> logging: Disable stack traces, fix logger name (<a href="https://redirect.github.com/caddyserver/certmagic/issues/372">#372</a>)</li> <li>Additional commits viewable in <a href="https://github.com/caddyserver/certmagic/compare/v0.25.1...v0.25.3">compare view</a></li> </ul> </details> <br /> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Loading
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff v0.4.1...main