Sourced from github.com/aws/smithy-go's changelog.

Release (2026-04-02)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.24.3
  • Bug Fix: Add additional sigv4 configuration.
• github.com/aws/smithy-go/aws-http-auth: v1.1.3
  • Bug Fix: Add additional sigv4 configuration.

Release (2026-02-27)

General Highlights

• Dependency Update: Bump minimum go version to 1.24.

Release (2026-02-20)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.24.1
  • Feature: Add new middleware functions to get event stream output from middleware

Release (2025-12-01)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.24.0
  • Feature: Improve allocation footprint of the middleware stack. This should convey a ~10% reduction in allocations per SDK request.

Release (2025-11-03)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.23.2
  • Bug Fix: Adjust the initial sizes of each middleware phase to avoid some unnecessary reallocation.
  • Bug Fix: Avoid unnecessary allocation overhead from the metrics system when not in use.

Release (2025-10-15)

General Highlights

• Dependency Update: Bump minimum go version to 1.23.
• Dependency Update: Updated to the latest SDK module versions

... (truncated)

• 3dbea70 Release 2026-04-02
• f08a600 changelog
• dff9455 include getAttr as a static condition when evaluating need for fallback (#643)
• a43da41 fix binding member name (#642)
• b64db94 replace usages of SmithyGoTypes (#637)
• 3e78a2b add AGENTS.md (#638)
• c53a167 generate protocol tests (#634)
• 5bb6ea9 v4/signer: add codecommit git signing options (#628)
• a46ced7 migrate protocol test codegen to smithy-go (#630)
• a27260f Release 2026-02-27
• See full diff in compare view

• 570a610 Add ChecksumAlgorithm to list response (#2211)
• 9ab4afb Update signature of UpdateObjectEncryption (#2215)
• 30849ad fix: honor StartAfter when listing object versions (#2212)
• 2eacfe9 add SignV4WithServiceType function (#2214)
• dedfa39 tags: add MarshalJSON/UnmarshalJSON to Tags
• 4976cb3 get content encoding when available (#2208)
• d75e965 add S3 Outposts support: Implement request signing and endpoint validation fo...
• d00bd2f Fix: handling non-DualStack regions gracefully (#2205)
• See full diff in compare view

Sourced from github.com/onsi/gomega's releases.

v1.39.1

1.39.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

Sourced from github.com/onsi/gomega's changelog.

1.39.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

• 1a25a36 v1.39.1
• 406faee bump all deps
• See full diff in compare view

Sourced from github.com/rudderlabs/rudder-go-kit's releases.

v0.74.2

0.74.2 (2026-04-07)

Miscellaneous

• add dependabot cooldown (#1088) (1023c1d)
• apply security best practices from step security (#1090) (d83a813)
• deps: bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#1073) (b427ab4)
• deps: bump actions/setup-go from 6.3.0 to 6.4.0 (#1085) (19dd689)
• deps: bump aws-actions/amazon-ecr-login from 2.0.1 to 2.1.1 (#1081) (43a456e)
• deps: bump codecov/codecov-action from 5.5.2 to 6.0.0 (#1084) (ccba43c)
• deps: bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#1087) (f47ff7b)
• deps: bump google.golang.org/api from 0.271.0 to 0.272.0 in the frequent group (#1089) (550fc2b)
• deps: bump step-security/harden-runner from 2.15.1 to 2.16.0 (#1071) (007394b)
• deps: bump the all group across 1 directory with 21 updates (#1082) (693fade)
• deps: bump the frequent group across 1 directory with 2 updates (#1065) (e4d96bc)
• deps: bump the opentelemetry group with 9 updates (#1057) (17fe903)
• jsonparser to treat special characters in JSON keys literally (#1083) (3078e47)

Sourced from github.com/rudderlabs/rudder-go-kit's changelog.

0.74.2 (2026-04-07)

Miscellaneous

• add dependabot cooldown (#1088) (1023c1d)
• apply security best practices from step security (#1090) (d83a813)
• deps: bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#1073) (b427ab4)
• deps: bump actions/setup-go from 6.3.0 to 6.4.0 (#1085) (19dd689)
• deps: bump aws-actions/amazon-ecr-login from 2.0.1 to 2.1.1 (#1081) (43a456e)
• deps: bump codecov/codecov-action from 5.5.2 to 6.0.0 (#1084) (ccba43c)
• deps: bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#1087) (f47ff7b)
• deps: bump google.golang.org/api from 0.271.0 to 0.272.0 in the frequent group (#1089) (550fc2b)
• deps: bump step-security/harden-runner from 2.15.1 to 2.16.0 (#1071) (007394b)
• deps: bump the all group across 1 directory with 21 updates (#1082) (693fade)
• deps: bump the frequent group across 1 directory with 2 updates (#1065) (e4d96bc)
• deps: bump the opentelemetry group with 9 updates (#1057) (17fe903)
• jsonparser to treat special characters in JSON keys literally (#1083) (3078e47)

• eed2921 chore(ci): release 0.74.2 (#1086)
• 3078e47 chore: jsonparser to treat special characters in JSON keys literally (#1083)
• 550fc2b chore(deps): bump google.golang.org/api from 0.271.0 to 0.272.0 in the freque...
• d83a813 chore: apply security best practices from step security (#1090)
• f47ff7b chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#1087)
• 1023c1d chore: add dependabot cooldown (#1088)
• 17fe903 chore(deps): bump the opentelemetry group with 9 updates (#1057)
• e4d96bc chore(deps): bump the frequent group across 1 directory with 2 updates (#1065)
• b427ab4 chore(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#1073)
• 693fade chore(deps): bump the all group across 1 directory with 21 updates (#1082)
• Additional commits viewable in compare view

Sourced from github.com/rudderlabs/rudder-transformer/go's releases.

v1.129.1

Release v1.129.1

🐛 Bug Fixes

• linkedin audince id as string or number (#5118)

🔧 Other Changes

• chore(release): v1.129.1

Full Changelog: rudderlabs/rudder-transformer@v1.129.0...v1.129.1

v1.129.0

Release v1.129.0

🚀 Features

• send payload in request body to support larger audiences (#5103) (fb-custom-audience)
• onboard posthog to the batching framework (#5095)
• linkedin typescript migration (#4944)

🐛 Bug Fixes

• validate IP address in geolocation handler to prevent path traversal (#5066)
• server fails to unmarshal response when headers contain non-string values (#5091) (http)
• remediate GHA script injection (#5088) (vuln)
• add actual response to error log for debugging (#5082) (facebook_lead_ads_native)
• validate hashing consistency for hashing types (#5077)
• block access to localhost addresses from UT code (#5065)

🔧 Other Changes

• chore(release): v1.129.0
• chore(deps): bump @​rudderstack/integrations-lib to 0.2.67 (#5101)
• chore: review comments
• refactor: onboard batching framework (#5093)
• chore: remove compiled schema from AJV instance after compile (#5096)
• chore(fb_custom_audience): upgrade Facebook API endpoint from v23 to v24 (#5094)
• chore: onboard skill for documentation (#5089)
• chore: add doc for salesforce destination (#5079)
• chore(deps): bump actions/setup-node from 6.2.0 to 6.3.0 (#5027)
• chore: onboard batch framework lld (#5071)
• chore: use actions/checkout for cross-repo checkouts in deploy workflows (#5078)
• chore: update codeowners for UT (#5073)

Full Changelog: rudderlabs/rudder-transformer@v1.128.3...v1.129.0

Sourced from github.com/rudderlabs/rudder-transformer/go's changelog.

1.129.1 (2026-04-08)

Bug Fixes

• linkedin audince id as string or number (#5118) (fd3253f)

1.129.0 (2026-04-07)

Features

• fb-custom-audience: send payload in request body to support larger audiences (#5103) (1dc0505)
• linkedin typescript migration (#4944) (b25fe82)
• onboard posthog to the batching framework (#5095) (f908d8d)

Bug Fixes

• block access to localhost addresses from UT code (#5065) (810bd31)
• facebook_lead_ads_native: add actual response to error log for debugging (#5082) (5dc6cf5)
• http: server fails to unmarshal response when headers contain non-string values (#5091) (53352da)
• validate hashing consistency for hashing types (#5077) (7c7076b)
• validate IP address in geolocation handler to prevent path traversal (#5066) (bc74d2d)
• vuln: remediate GHA script injection (#5088) (c916c22)

• 968fbbc chore(release): pull hotfix-release/v1.129.1 into main (#5119)
• f6ec0bf chore(release): v1.129.1
• fd3253f fix: linkedin audince id as string or number (#5118)
• 45a1524 chore(release): pull release/v1.129.0 into main (#5116)
• 3736a21 chore(release): v1.129.0
• d0f1fcb chore(release): pull main into develop post release v1.128.3 (#5115)
• bc74d2d fix: validate IP address in geolocation handler to prevent path traversal (#5...
• 9859179 chore(deps): bump @​rudderstack/integrations-lib to 0.2.67 (#5101)
• a8b22cb chore: review comments
• b6d85d5 Merge branch 'develop' into clone-main-2
• Additional commits viewable in compare view

Sourced from github.com/rudderlabs/sqlconnect-go's releases.

v1.25.2

1.25.2 (2026-04-03)

Bug Fixes

• redshift: handle timetz values without timezone offset from Data API (#466) (8680bb8)
• remove catalog validation from ListColumns method for databricks (#464) (38b5161)

Miscellaneous

• deps: bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#458) (595a2f8)
• deps: bump actions/download-artifact from 5.0.0 to 8.0.1 (#457) (897e669)
• deps: bump actions/setup-go from 6.2.0 to 6.3.0 (#452) (e0fe47f)
• deps: bump actions/upload-artifact from 4.6.2 to 7.0.0 (#448) (8c39d00)
• deps: bump cloud.google.com/go/bigquery from 1.73.1 to 1.74.0 (#451) (8eb0b1b)
• deps: bump github.com/aws/aws-sdk-go-v2/config from 1.32.7 to 1.32.12 (#460) (efb0425)
• deps: bump github.com/databricks/databricks-sql-go from 1.9.0 to 1.10.0 (#443) (e25c0c9)
• deps: bump golang.org/x/crypto from 0.48.0 to 0.49.0 (#459) (e782b9c)
• deps: bump step-security/harden-runner from 2.14.2 to 2.16.0 (#456) (7a6d6bf)
• deps: bump the go_modules group across 1 directory with 4 updates (#467) (8797b7c)

Sourced from github.com/rudderlabs/sqlconnect-go's changelog.

1.25.2 (2026-04-03)

Bug Fixes

• redshift: handle timetz values without timezone offset from Data API (#466) (8680bb8)
• remove catalog validation from ListColumns method for databricks (#464) (38b5161)

Miscellaneous

• deps: bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#458) (595a2f8)
• deps: bump actions/download-artifact from 5.0.0 to 8.0.1 (#457) (897e669)
• deps: bump actions/setup-go from 6.2.0 to 6.3.0 (#452) (e0fe47f)
• deps: bump actions/upload-artifact from 4.6.2 to 7.0.0 (#448) (8c39d00)
• deps: bump cloud.google.com/go/bigquery from 1.73.1 to 1.74.0 (#451) (8eb0b1b)
• deps: bump github.com/aws/aws-sdk-go-v2/config from 1.32.7 to 1.32.12 (#460) (efb0425)
• deps: bump github.com/databricks/databricks-sql-go from 1.9.0 to 1.10.0 (#443) (e25c0c9)
• deps: bump golang.org/x/crypto from 0.48.0 to 0.49.0 (#459) (e782b9c)
• deps: bump step-security/harden-runner from 2.14.2 to 2.16.0 (#456) (7a6d6bf)
• deps: bump the go_modules group across 1 directory with 4 updates (#467) (8797b7c)

• 0503d68 chore: release 1.25.2 (#465)
• 8797b7c chore(deps): bump the go_modules group across 1 directory with 4 updates (#467)
• e782b9c chore(deps): bump golang.org/x/crypto from 0.48.0 to 0.49.0 (#459)
• efb0425 chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.7 to 1.32.12 ...
• e25c0c9 chore(deps): bump github.com/databricks/databricks-sql-go from 1.9.0 to 1.10....
• 8eb0b1b chore(deps): bump cloud.google.com/go/bigquery from 1.73.1 to 1.74.0 (#451)
• 595a2f8 chore(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#458)
• 897e669 chore(deps): bump actions/download-artifact from 5.0.0 to 8.0.1 (#457)
• 7a6d6bf chore(deps): bump step-security/harden-runner from 2.14.2 to 2.16.0 (#456)
• e0fe47f chore(deps): bump actions/setup-go from 6.2.0 to 6.3.0 (#452)
• Additional commits viewable in compare view

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions