chore(deps): update dependency golangci/golangci-lint to v2.11.4 by renovate[bot] · Pull Request #69 · boneskull/gh-stack

renovate · 2026-04-08T03:08:54Z

This PR contains the following updates:

Package	Type	Update	Change
golangci/golangci-lint	uses-with	minor	`v2.8.0` → `v2.11.4`

Release Notes

golangci/golangci-lint (golangci/golangci-lint)

`v2.11.4`

Compare Source

Released on 2026-03-22

Linters bug fixes
- govet-modernize: from 0.42.0 to 0.43.0
- noctx: from 0.5.0 to 0.5.1
- sqlclosecheck: from 0.5.1 to 0.6.0

`v2.11.3`

Compare Source

Released on 2026-03-10

Linters bug fixes
- gosec: from v2.24.7 to 619ce21

`v2.11.2`

Compare Source

Released on 2026-03-07

Fixes
- fmt: fix error when using the fmt command with explicit paths.

`v2.11.1`

Compare Source

Released on 2026-03-06

Due to an error related to AUR, some artifacts of the v2.11.0 release have not been published.

This release contains the same things as v2.11.0.

`v2.11.0`

Compare Source

Released on 2026-03-06

Linters new features or changes
- errcheck: from 1.9.0 to 1.10.0 (exclude crypto/rand.Read by default)
- gosec: from 2.23.0 to 2.24.6 (new rules: G113, G118, G119, G120, G121, G122, G123, G408, G707)
- noctx: from 0.4.0 to 0.5.0 (new detection: httptest.NewRequestWithContext)
- prealloc: from 1.0.2 to 1.1.0
- revive: from 1.14.0 to 1.15.0 (⚠️ Breaking change: package-related checks moved from var-naming to a new rule package-naming)
Linters bug fixes
- gocognit: from 1.2.0 to 1.2.1
- gosec: from 2.24.6 to 2.24.7
- unqueryvet: from 1.5.3 to 1.5.4

`v2.10.1`

Compare Source

Released on 2026-02-17

Fixes
- buildssa panic

`v2.10.0`

Compare Source

Released on 2026-02-17

Linters new features or changes
- ginkgolinter: from 0.22.0 to 0.23.0
- gosec: from 2.22.11 to 2.23.0 (new rules: G117, G602, G701, G702, G703, G704, G705, G706)
- staticcheck: from 0.6.1 to 0.7.0
Linters bug fixes
- godoclint: from 0.11.1 to 0.11.2

`v2.9.0`

Compare Source

Released on 2026-02-10

Enhancements
- 🎉 go1.26 support
Linters new features or changes
- arangolint: from 0.3.1 to 0.4.0 (new rule: detect potential query injections)
- ginkgolinter: from 0.21.2 to 0.22.0 (support for wrappers)
- golines: from 0.14.0 to 0.15.0
- misspell: from 0.7.0 to 0.8.0
- unqueryvet: from 1.4.0 to 1.5.3 (new options: check-n1, check-sql-injection, check-tx-leaks, allow, custom-rules)
- wsl: from 5.3.0 to 5.6.0 (new rule: after-block)
Linters bug fixes
- modernize: from 0.41.0 to 0.42.0
- prealloc: from 1.0.1 to 1.0.2
- protogetter: from 0.3.18 to 0.3.20
Misc.
- Log information about files when configuration verification
- Emit an error when no linters enabled
- Do not collect VCS information when loading code

Configuration

📅 Schedule: (UTC)

Branch creation
- At any time (no schedule defined)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

claude · 2026-04-08T03:09:16Z

Claude finished @renovate[bot]'s task in 57s —— View job

Code Review: golangci-lint v2.8.0 → v2.11.4

Summary

This is a routine Renovate dependency update bumping golangci-lint from v2.8.0 to v2.11.4 in .github/workflows/ci.yml (line 31). The change is minimal and correct.

Change Analysis

File: .github/workflows/ci.yml:31

-          version: v2.8.0
+          version: v2.11.4

The action itself remains pinned to golangci/golangci-lint-action@4afd733a84b1f43292c63897423277bb7f4313a9 # v8 — good security hygiene preserved.

Impact on This Project's `.golangci.yml`

Cross-referencing the release notes against the enabled linters:

Linter	Change	Risk
`errcheck`	1.9.0 → 1.10.0: excludes `crypto/rand.Read` by default	Low — relaxation only
`staticcheck`	0.6.1 → 0.7.0 (via v2.10.0)	Medium — new checks may flag existing code
`misspell`	0.7.0 → 0.8.0 (via v2.9.0)	Low — new corrections
`modernize`	Bug fix 0.41.0 → 0.42.0	Low
`gosec`	Many new rules (G113, G117, G118–G123, G408, G707...)	None — gosec is explicitly disabled in `.golangci.yml`

Breaking change in revive (v2.11.0): Package-related checks moved from var-naming to a new package-naming rule — but revive is not enabled in this project's config, so no impact.

wsl new after-block rule (v2.9.0): wsl is not enabled here, no impact.

Assessment

This update is safe to merge. The only non-trivial change is staticcheck 0.6.1 → 0.7.0, which could surface new lint failures — but if CI passes on this PR, that concern is resolved. With automerge enabled, CI is the right gate here.

No issues found. ✓

claude · 2026-04-08T03:24:49Z

Claude finished @renovate[bot]'s task in 50s —— View job

Code Review: golangci-lint v2.8.0 → v2.11.4

Gather context
Review changed file
Assess release notes for breaking changes
Post review

Summary

Routine Renovate bump of golangci-lint from v2.8.0 to v2.11.4 in .github/workflows/ci.yml:31. Single-line change; the action pin (golangci/golangci-lint-action@4afd733a84b1f43292c63897423277bb7f4313a9 # v8) is unchanged — good security hygiene.

Release Notes vs. Enabled Linters

Linter	Change in range	In `.golangci.yml`?	Risk
`errcheck`	1.9.0 → 1.10.0: excludes `crypto/rand.Read` by default	✓ enabled	Low — relaxation only
`staticcheck`	0.6.1 → 0.7.0 (new checks)	✓ enabled	Medium — CI is the gate
`misspell`	0.7.0 → 0.8.0 (new corrections)	✓ enabled	Low
`modernize`	0.41.0 → 0.42.0 (bug fix)	✓ enabled	Low
`gosec`	Many new rules (G113, G117–G123, G408, G707)	✗ explicitly disabled	None
`revive`	Breaking: `var-naming` → `package-naming` (v2.11.0)	✗ not enabled	None
`wsl`	New `after-block` rule (v2.9.0)	✗ not enabled	None

The only non-trivial risk is staticcheck 0.6.1 → 0.7.0 introducing new checks, but CI passing on this PR resolves that concern. With automerge enabled, CI is the correct gate.

Assessment

No issues found. Safe to merge. ✓

renovate bot added the dependencies label Apr 8, 2026

renovate bot force-pushed the renovate/golangci-golangci-lint-2.x branch from 67cccd7 to 34fbf55 Compare April 8, 2026 03:24

renovate bot force-pushed the renovate/golangci-golangci-lint-2.x branch from 34fbf55 to 1ea1999 Compare April 8, 2026 03:37

chore(deps): update dependency golangci/golangci-lint to v2.11.4

4788c83

renovate bot force-pushed the renovate/golangci-golangci-lint-2.x branch from 1ea1999 to 4788c83 Compare April 8, 2026 13:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): update dependency golangci/golangci-lint to v2.11.4#69

chore(deps): update dependency golangci/golangci-lint to v2.11.4#69
renovate[bot] wants to merge 1 commit intomainfrom
renovate/golangci-golangci-lint-2.x

renovate bot commented Apr 8, 2026 •

edited

Loading

Uh oh!

claude bot commented Apr 8, 2026 •

edited

Loading

Uh oh!

claude bot commented Apr 8, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Uh oh!

Conversation

renovate bot commented Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

Configuration

Uh oh!

claude bot commented Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Code Review: golangci-lint v2.8.0 → v2.11.4

Summary

Change Analysis

Impact on This Project's .golangci.yml

Assessment

Uh oh!

claude bot commented Apr 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Code Review: golangci-lint v2.8.0 → v2.11.4

Summary

Release Notes vs. Enabled Linters

Assessment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

renovate bot commented Apr 8, 2026 •

edited

Loading

claude bot commented Apr 8, 2026 •

edited

Loading

Impact on This Project's `.golangci.yml`

claude bot commented Apr 8, 2026 •

edited

Loading