This release adds 1 notable feature for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
+10 more
Summary
AI summaryFixed segfault on Apple M5 chips and added an option to enable field‑name support.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
Added option to use field name support. Added option to use field name support. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low |
— |
| Dependency | Medium |
Bumped Apple-Actions/import-codesign-certs from 6.0.0 to 6.1.0. Bumped Apple-Actions/import-codesign-certs from 6.0.0 to 6.1.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped aquasecurity/trivy-action from 0.34.1 to 0.35.0. Bumped aquasecurity/trivy-action from 0.34.1 to 0.35.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped github.com/fatih/color from 1.18.0 to 1.19.0. Bumped github.com/fatih/color from 1.18.0 to 1.19.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped github.com/open-policy-agent/opa from 1.13.2 to 1.14.0. Bumped github.com/open-policy-agent/opa from 1.13.2 to 1.14.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped github.com/pelletier/go-toml/v2 from 2.2.4 to 2.3.0. Bumped github.com/pelletier/go-toml/v2 from 2.2.4 to 2.3.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped github.com/rodaine/table from 1.3.0 to 1.3.1. Bumped github.com/rodaine/table from 1.3.0 to 1.3.1. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped github.com/rs/zerolog from 1.34.0 to 1.35.1. Bumped github.com/rs/zerolog from 1.34.0 to 1.35.1. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped github.com/weppos/publicsuffix-go from 0.50.2 to 0.50.3. Bumped github.com/weppos/publicsuffix-go from 0.50.2 to 0.50.3. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0. Bumped go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped golang.org/x/mod from 0.33.0 to 0.34.0. Bumped golang.org/x/mod from 0.33.0 to 0.34.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped golang.org/x/net from 0.50.0 to 0.51.0. Bumped golang.org/x/net from 0.50.0 to 0.51.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Dependency | Medium |
Bumped golang.org/x/oauth2 from 0.35.0 to 0.36.0. Bumped golang.org/x/oauth2 from 0.35.0 to 0.36.0. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Bugfix | Medium |
Fixed segfault on M5 chips. Fixed segfault on M5 chips. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low |
— |
Full changelog
Changelog
- def42dc6 chore(deps): bump Apple-Actions/import-codesign-certs from 6.0.0 to 6.1.0 (#1924)
- f18ddeff chore(deps): bump aquasecurity/trivy-action from 0.34.1 to 0.35.0 (#1913)
- 1736e7ae chore(deps): bump github.com/fatih/color from 1.18.0 to 1.19.0 (#1925)
- f2ade55b chore(deps): bump github.com/open-policy-agent/opa from 1.13.2 to 1.14.0 (#1907)
- 8ba818dd chore(deps): bump github.com/open-policy-agent/opa from 1.14.0 to 1.14.1 (#1921)
- b3df5401 chore(deps): bump github.com/open-policy-agent/opa from 1.14.1 to 1.15.2 (#1941)
- 5f3108ed chore(deps): bump github.com/open-policy-agent/opa from 1.15.2 to 1.16.1 (#1956)
- 235f37f0 chore(deps): bump github.com/pelletier/go-toml/v2 from 2.2.4 to 2.3.0 (#1930)
- 1f34f4ea chore(deps): bump github.com/pelletier/go-toml/v2 from 2.3.0 to 2.3.1 (#1957)
- 05eadac4 chore(deps): bump github.com/rodaine/table from 1.3.0 to 1.3.1 (#1920)
- 1c2c0579 chore(deps): bump github.com/rs/zerolog from 1.34.0 to 1.35.1 (#1951)
- 2c38759a chore(deps): bump github.com/weppos/publicsuffix-go from 0.50.2 to 0.50.3 (#1916)
- 660ce07d chore(deps): bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 (#1906)
- 4c0b39a6 chore(deps): bump golang.org/x/mod from 0.33.0 to 0.34.0 (#1918)
- 7e130c79 chore(deps): bump golang.org/x/mod from 0.34.0 to 0.35.0 (#1940)
- 9debe4e9 chore(deps): bump golang.org/x/mod from 0.35.0 to 0.36.0 (#1959)
- 28103db4 chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (#1909)
- 84524fbc chore(deps): bump golang.org/x/net from 0.51.0 to 0.52.0 (#1919)
- 8e0e58fa chore(deps): bump golang.org/x/net from 0.52.0 to 0.53.0 (#1939)
- 041637f8 chore(deps): bump golang.org/x/net from 0.53.0 to 0.54.0 (#1960)
- b72a2827 chore(deps): bump golang.org/x/oauth2 from 0.35.0 to 0.36.0 (#1915)
- 9ea516f8 chore(deps): bump picomatch from 2.3.1 to 2.3.2 in /docs (#1927)
- dff54d28 chore(deps): updated various js and build deps (#1955)
- ce675c65 chore(deps-dev): bump flatted from 3.2.7 to 3.4.2 in /docs (#1923)
- de831a1a chore(deps-dev): bump handlebars from 4.7.7 to 4.7.9 in /docs (#1928)
- c39c92f0 chore(deps-dev): bump liquidjs from 10.8.4 to 10.25.0 in /docs (#1917)
- d834b457 chore(deps-dev): bump minimatch from 3.1.2 to 3.1.5 in /docs (#1911)
- f46503fc chore(deps-dev): bump tar from 7.5.9 to 7.5.10 in /docs (#1912)
- 255b3d72 feat: add option to use field name support (#1961)
- f20f78b9 fix: segfault on M5 chips (#1952)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Related context
Related tools
Beta — feedback welcome: [email protected]