Skip to content

build(deps): bump github.com/openfga/openfga from 1.11.0 to 1.11.1#17038

Merged
tomponline merged 1 commit into
mainfrom
dependabot/go_modules/main/github.com/openfga/openfga-1.11.1
Nov 26, 2025
Merged

build(deps): bump github.com/openfga/openfga from 1.11.0 to 1.11.1#17038
tomponline merged 1 commit into
mainfrom
dependabot/go_modules/main/github.com/openfga/openfga-1.11.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Nov 24, 2025

Bumps github.com/openfga/openfga from 1.11.0 to 1.11.1.

Release notes

Sourced from github.com/openfga/openfga's releases.

v1.11.1

What's Changed

Added

  • Added experimental list objects pipeline algorithm with pipeline_list_objects flag. #2815

Fixed

  • Fixed bug where public wildcard tuples without condition were being considered for a wildcard relation which was only defined with a condition. CVE-2025-64751

New Contributors

Full Changelog: openfga/openfga@v1.11.0...v1.11.1

Changelog

Sourced from github.com/openfga/openfga's changelog.

[1.11.1] - 2025-11-20

Added

  • Added experimental list objects pipeline algorithm with pipeline_list_objects flag. #2815

Fixed

  • Fixed bug where public wildcard tuples without condition were being considered for a wildcard relation which was only defined with a condition. CVE-2025-64751
Commits
  • f375f50 release: update changelog for release v1.11.1 (#2823)
  • 3fcb4b6 chore: update changelog (#2822)
  • ce955b1 feat: add featureflag support for pipeline_list_objects (#2815)
  • cf640c5 chore(deps): bump the dependencies group across 1 directory with 3 updates (#...
  • cb29323 chore(deps): bump the dependencies group across 1 directory with 6 updates (#...
  • 0724f37 chore(deps): bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#2817)
  • 26a9e7d fix: remove deduplication logic in pipeline for input (#2794)
  • 49db78a readusertuple support for condition filtering (#2813)
  • e7b7000 chore: update NewPgxTxnGetRows to allow for more flexible statement builder (...
  • 6073427 chore(deps): bump grpc-ecosystem/grpc-health-probe from v0.4.41 to v0.4.42 in...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 24, 2025
@tomponline tomponline marked this pull request as draft November 24, 2025 16:41
@dependabot @markylaing
build(deps): bump github.com/openfga/openfga from 1.11.0 to 1.11.1
8026ce3 
Bumps [github.com/openfga/openfga](https://github.com/openfga/openfga) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/openfga/openfga/releases)
- [Changelog](https://github.com/openfga/openfga/blob/main/CHANGELOG.md)
- [Commits](openfga/openfga@v1.11.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/openfga/openfga
  dependency-version: 1.11.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Mark Laing <mark.laing@canonical.com>
@markylaing markylaing force-pushed the dependabot/go_modules/main/github.com/openfga/openfga-1.11.1 branch from 0b3b940 to 8026ce3 Compare November 26, 2025 11:06
@markylaing markylaing marked this pull request as ready for review November 26, 2025 11:07
@markylaing
Copy link
Copy Markdown
Contributor

markylaing commented Nov 26, 2025

Should be fixed.

@markylaing markylaing self-assigned this Nov 26, 2025
tomponline
tomponline approved these changes Nov 26, 2025
View reviewed changes
Copy link
Copy Markdown
Member

@tomponline tomponline left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ta

@tomponline tomponline merged commit 3255e7e into main Nov 26, 2025
67 of 70 checks passed
@tomponline tomponline deleted the dependabot/go_modules/main/github.com/openfga/openfga-1.11.1 branch November 26, 2025 12:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tomponline tomponline tomponline approved these changes

@markylaing markylaing Awaiting requested review from markylaing

Assignees

@markylaing markylaing

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@markylaing @tomponline