Skip to content

Bump github.com/cloudflare/circl from 1.6.3 to 1.6.4#3257

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/go_modules/github.com/cloudflare/circl-1.6.4
Closed

Bump github.com/cloudflare/circl from 1.6.3 to 1.6.4#3257
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/go_modules/github.com/cloudflare/circl-1.6.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/cloudflare/circl from 1.6.3 to 1.6.4.

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.6.4

What's Changed

New Contributors

Full Changelog: cloudflare/circl@v1.6.3...v1.6.4

Commits
  • 901199c Release CIRCL v1.6.4
  • 5e37b40 abe/cpabe/tkn20: reject circuits with invalid topologies.
  • 4ea7e90 abe/cpabe/tkn20: handle malformed ciphertext header.
  • ae0b5c4 abe/cpabe/tkn20: enforce wire count matches policy.
  • 9547f48 abe/cpabe/tkn20: handle short ciphertexts as errors.
  • bfa7605 abe/cpabe/tkn20: reject ciphertexts with trailing data.
  • bdde3c7 abe/cpabe/tkn20: bound recursion depth when parsing policies.
  • 03204f3 ecc/bls12381: check input length for infinity encoding in SetBytes. (#618)
  • e9bd81b Add AGENTS.md and REVIEW.md for AI agent and human reviewer guidance
  • 02ab708 oprf: reject identity element as public key.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl) from 1.6.3 to 1.6.4.
- [Release notes](https://github.com/cloudflare/circl/releases)
- [Commits](cloudflare/circl@v1.6.3...v1.6.4)

---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
  dependency-version: 1.6.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 23, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor Author

Looks like github.com/cloudflare/circl is up-to-date now, so this is no longer needed.

@dependabot dependabot Bot closed this Jul 10, 2026
@dependabot dependabot Bot deleted the dependabot/go_modules/github.com/cloudflare/circl-1.6.4 branch July 10, 2026 07:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants