Skip to content

tools(deps): bump github.com/mikefarah/yq/v4 from 4.40.5 to 4.53.3 in /tools#56

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/tools/github.com/mikefarah/yq/v4-4.53.3
Open

tools(deps): bump github.com/mikefarah/yq/v4 from 4.40.5 to 4.53.3 in /tools#56
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/tools/github.com/mikefarah/yq/v4-4.53.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown

Bumps github.com/mikefarah/yq/v4 from 4.40.5 to 4.53.3.

Release notes

Sourced from github.com/mikefarah/yq/v4's releases.

v4.53.3

v4.53.2

  • Releases and tags now signed and immutable!
  • Add system(command; args) operator (disabled by default) (#2640)
  • TOML encoder: prefer readable table sections over inline tables (#2649)
  • Fix TOML encoder to quote keys containing special characters (#2648)
  • Add string slicing support (#2639)
  • Fix findInArray misuse on MappingNodes in equality and contains (#2645) Thanks @​jandubois!
  • Fix panic on negative slice indices that underflow after adjustment (#2646) Thanks @​jandubois!
  • Fix stack overflow from circular alias in traverse (#2647) Thanks @​jandubois!
  • Fix panic and OOM in repeatString for large repeat counts (#2644) Thanks @​jandubois!
  • Bumped dependencies

v4.52.5

v4.52.4

  • Dropping windows/arm - no longer supported in cross-compile
  • Fixing comments in TOML arrays (#2592)
  • Bumped dependencies

v4.52.2

  • Fixed bad instructions file breaking go-install (#2587) Thanks @​theyoprst
  • Fixed TOML table scope after comments (#2588) Thanks @​tomers
  • Multiply uses a readonly context (#2558)
  • Fixed merge globbing wildcards in keys (#2564)
  • Fixing TOML subarray parsing issue (#2581)

v4.52.1 - TOML roundtrip and more!

  • TOML encoder support - you can now roundtrip! #1364
  • Parent now supports negative indices, and added a 'root' command for referencing the top level document
  • Fixed scalar encoding for HCL
  • Add --yaml-compact-seq-indent / -c flag for compact sequence indentation (#2583) Thanks @​jfenal

... (truncated)

Changelog

Sourced from github.com/mikefarah/yq/v4's changelog.

4.53.3:

4.53.2:

  • Fixing release process

4.53.1:

  • Releases and tags now signed and immutable!
  • Add system(command; args) operator (disabled by default) (#2640)
  • TOML encoder: prefer readable table sections over inline tables (#2649)
  • Fix TOML encoder to quote keys containing special characters (#2648)
  • Add string slicing support (#2639)
  • Fix findInArray misuse on MappingNodes in equality and contains (#2645) Thanks @​jandubois!
  • Fix panic on negative slice indices that underflow after adjustment (#2646) Thanks @​jandubois!
  • Fix stack overflow from circular alias in traverse (#2647) Thanks @​jandubois!
  • Fix panic and OOM in repeatString for large repeat counts (#2644) Thanks @​jandubois!
  • Bumped dependencies

4.52.5:

4.52.4:

  • Dropping windows/arm - no longer supported in cross-compile

4.52.3:

  • Fixing comments in TOML arrays (#2592)
  • Bumped dependencies

4.52.2:

  • Fixed bad instructions file breaking go-install (#2587) Thanks @​theyoprst
  • Fixed TOML table scope after comments (#2588) Thanks @​tomers
  • Multiply uses a readonly context (#2558)
  • Fixed merge globbing wildcards in keys (#2564)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/mikefarah/yq/v4](https://github.com/mikefarah/yq) from 4.40.5 to 4.53.3.
- [Release notes](https://github.com/mikefarah/yq/releases)
- [Changelog](https://github.com/mikefarah/yq/blob/master/release_notes.txt)
- [Commits](mikefarah/yq@v4.40.5...v4.53.3)

---
updated-dependencies:
- dependency-name: github.com/mikefarah/yq/v4
  dependency-version: 4.53.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added scope: deps An issue related to dependencies. scope: inventory An issue related to auxiliary code, e.g., CI config, Makefiles, etc. type: improvement A new improvement proposal. labels Jun 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

scope: deps An issue related to dependencies. scope: inventory An issue related to auxiliary code, e.g., CI config, Makefiles, etc. type: improvement A new improvement proposal.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant