Skip to content

deps: bump the chainreactors group across 1 directory with 3 updates#75

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/go_modules/chainreactors-b19c06c712
Open

deps: bump the chainreactors group across 1 directory with 3 updates#75
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/go_modules/chainreactors-b19c06c712

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown

Bumps the chainreactors group with 2 updates in the / directory: github.com/chainreactors/neutron and github.com/chainreactors/proton.

Updates github.com/chainreactors/neutron from 0.0.0-20260608084636-c81691731908 to 0.1.0

Commits

Updates github.com/chainreactors/proton from 0.3.0 to 0.3.2

Release notes

Sourced from github.com/chainreactors/proton's releases.

v0.3.2

found v0.3.2 binaries

v0.3.1

proton 引擎更新

  • fix(scan): 修复多行文件扫描时 opResult 合并丢失 — 后续行的 matches/extracts 不再被静默丢弃
  • fix(template): Template.Execute 切换到 Request.ExecuteWithResults,正确支持文件/目录/glob 路径输入以及模板定义的 extensions/denylist 过滤
  • refactor: Finding/MatchEvent 类型迁移至 utils/parsers,统一跨项目类型定义
  • fix(compat): 修复 Go 1.17 构建兼容性,通过 build tag 隔离 Go 1.18+ 依赖

found 工具更新

  • fix(build): macOS 构建跳过 UPX 压缩(macOS 不支持 UPX)
  • fix(darwin): 修复 macOS mach_task_self() CGO 编译问题(宏包装为 C 函数)
  • docs: README 更新,补充进程扫描、网络捕获、注册表扫描、baseline、zombie 模式、C FFI 等文档
  • ci: goreleaser 构建后自动上传二进制到 proton release
Commits
  • 49089e8 fix(ci): Go 1.17 legacy job build-only, remove all test files
  • 1623143 fix(ci): also remove test files importing Go 1.18+ deps in legacy job
  • 5bafe2b fix(ci): remove compat.go before Go 1.17 build to prevent import scan
  • 9fd1cd5 fix(ci): pin x/sys to v0.21.0 in Go 1.17 legacy job
  • d2336c8 fix(ci): use go mod edit -droprequire + rm go.sum for Go 1.17 compat
  • a0ead4d fix(ci): strip Go 1.18+ deps in legacy job for Go 1.17 compat
  • 104fe7d fix: update templates submodule, bump parsers for Go 1.17 compat
  • f650933 refactor(file): use parsers.ProtonFinding/ProtonMatchEvent types
  • 89c10c8 fix: Template.Execute walks Request path, fix multi-line opResult merge
  • See full diff in compare view

Updates github.com/chainreactors/utils from 0.0.0-20260529172343-6465cb8568b2 to 0.0.0-20260626175554-d3e25e531450

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the chainreactors group with 2 updates in the / directory: [github.com/chainreactors/neutron](https://github.com/chainreactors/neutron) and [github.com/chainreactors/proton](https://github.com/chainreactors/proton).


Updates `github.com/chainreactors/neutron` from 0.0.0-20260608084636-c81691731908 to 0.1.0
- [Commits](https://github.com/chainreactors/neutron/commits/v0.1.0)

Updates `github.com/chainreactors/proton` from 0.3.0 to 0.3.2
- [Release notes](https://github.com/chainreactors/proton/releases)
- [Commits](chainreactors/proton@v0.3.0...v0.3.2)

Updates `github.com/chainreactors/utils` from 0.0.0-20260529172343-6465cb8568b2 to 0.0.0-20260626175554-d3e25e531450
- [Commits](https://github.com/chainreactors/utils/commits)

---
updated-dependencies:
- dependency-name: github.com/chainreactors/neutron
  dependency-version: 0.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: chainreactors
- dependency-name: github.com/chainreactors/proton
  dependency-version: 0.3.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: chainreactors
- dependency-name: github.com/chainreactors/utils
  dependency-version: 0.0.0-20260626175554-d3e25e531450
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: chainreactors
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jul 5, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: dependencies, go. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants