Bump the gomod group with 6 updates

[dependabot]

Bumps the gomod group with 6 updates:

Package	From	To
github.com/charmbracelet/bubbles	0.21.1	1.0.0
github.com/klauspost/compress	1.18.3	1.18.4
github.com/mattn/go-sqlite3	1.14.33	1.14.34
github.com/pressly/goose/v3	3.26.0	3.27.0
github.com/tdewolff/minify/v2	2.24.8	2.24.10
golang.org/x/crypto	0.47.0	0.48.0

Updates github.com/charmbracelet/bubbles from 0.21.1 to 1.0.0

Release notes

Sourced from github.com/charmbracelet/bubbles's releases.

v1.0.0

This is just an honorary release of Bubbles v1. Stay tuned for the next major version 🫧

Changelog

Fixed

• d0166363eb8176b331de98dba1d6e997560f216f: fix: changed 'recieve' to 'receive' for 100% quality of Go Report Card (#881) (@​Atennop1)

---

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

Commits

• 4824eff chore(deps): bump github.com/charmbracelet/x/ansi in the all group (#859)
• d016636 fix: changed 'recieve' to 'receive' for 100% quality of Go Report Card (#881)
• See full diff in compare view

Updates github.com/klauspost/compress from 1.18.3 to 1.18.4

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.18.4

What's Changed

• gzhttp: Add zstandard to server handler wrapper by @​klauspost in klauspost/compress#1121
• zstd: Add ResetWithOptions to encoder/decoder by @​klauspost in klauspost/compress#1122
• gzhttp: preserve qvalue when extra parameters follow in Accept-Encoding by @​analytically in klauspost/compress#1116

New Contributors

• @​analytically made their first contribution in klauspost/compress#1116
• @​ethaizone made their first contribution in klauspost/compress#1124
• @​zwass made their first contribution in klauspost/compress#1125

Full Changelog: klauspost/compress@v1.18.2...v1.18.4

Commits

• c03560f zstd: Add ResetWithOptions to encoder/decoder (#1122)
• 0874ab8 build(deps): bump the github-actions group with 3 updates (#1126)
• 4a36836 doc: Clarify documentation in readme (#1125)
• 4309644 zstd: document concurrency option handling in encoder (#1124)
• c262ec6 Update README.md
• 861ca97 Downstream CVE-2025-61728 (#1123)
• 03de960 gzhttp: Add zstandard to server handler wrapper (#1121)
• bb1ab3b build(deps): bump the github-actions group with 2 updates (#1120)
• 986a51e fix(gzhttp): preserve qvalue when extra parameters follow in Accept-Encoding ...
• fbe3b12 build(deps): bump the github-actions group with 3 updates (#1118)
• Additional commits viewable in compare view

Updates github.com/mattn/go-sqlite3 from 1.14.33 to 1.14.34

Commits

• 2087331 add script to create pull-request
• a510883 Upgrade SQLite to version 3051002
• dce6b34 Add percentile extension
• See full diff in compare view

Updates github.com/pressly/goose/v3 from 3.26.0 to 3.27.0

Release notes

Sourced from github.com/pressly/goose/v3's releases.

v3.27.0

What's Changed

Added

• Preliminary Spanner dialect support (#966)

Changed

• Minimum Go version is now 1.25
• SQL migration templates no longer include StatementBegin and StatementEnd annotations. These are only needed for complex statements containing semicolons (e.g., stored procedures). See docs for details.
• Various dependency upgrades

Other

• Added formatting for YDB table names to include folder (#1007)
• Fix tests for StarRocks 3.5 (#1024)
• CI improvements (#1000, #1005, #1008)

Full Changelog: pressly/goose@v3.26.0...v3.27.0

Changelog

Sourced from github.com/pressly/goose/v3's changelog.

[v3.27.0] - 2026-02-22

Added

• Preliminary Spanner dialect support (#966)

Changed

• Minimum Go version is now 1.25
• SQL migration templates no longer include StatementBegin and StatementEnd annotations. These are only needed for complex statements containing semicolons (e.g., stored procedures). See docs for details.
• Various dependency upgrades

Commits

• 7fb1461 release: v3.27.0
• 0b651ba fix: downgrade go directive to 1.25.0 in internal/testing
• aa8e825 build(deps): bump dependencies in internal/testing
• 83743b6 chore: apply go fix modernizations and bump dependencies (#1034)
• 5de4fb4 feat: add dockermanage package (#1029)
• ac97ee0 build(deps): bump github.com/ydb-platform/ydb-go-sdk/v3 from 3.125.1 to 3.126...
• 8a37350 build(deps): bump the gomod group across 1 directory with 2 updates (#1026)
• bab893c Fix tests for StarRocks 3.5 (#1024)
• 26e537d build(deps): bump the gomod group across 1 directory with 5 updates (#1020)
• 7a98c89 docs: update ordering of CLI param help text
• Additional commits viewable in compare view

Updates github.com/tdewolff/minify/v2 from 2.24.8 to 2.24.10

Release notes

Sourced from github.com/tdewolff/minify/v2's releases.

v2.24.10

• JS: fix precedence in OptionalExpression within Member/CallExpressions; fixes tdewolff/minify#912
• JS: fix variable renaming inside objects within object-property-methods, fixes tdewolff/minify#910

v2.24.9

• cmd: fix --match for Windows, fixes tdewolff/minify#901
• cmd: ignore bad softlinks, remove verbosity level for warning (now 1 is info, 2 is debug); fix bugs for --match/--include/--exclude, see https://redirect.github.com/tdewolff/minify/issues/901
• HTML: don't remove end tags in <template>, fixes tdewolff/minify#907
• CSS: fix nested rulesets, see tdewolff/minify#908

Commits

• 9fb8080 JS: fix variable renaming inside objects within object-property-methods, fixe...
• 25221ff Merge pull request #915 from tdewolff/dependabot/npm_and_yarn/bindings/js/rol...
• eec8a96 Bump rollup from 4.56.0 to 4.59.0 in /bindings/js
• 257e2ab Merge pull request #909 from tdewolff/dependabot/npm_and_yarn/bindings/js/typ...
• fb84324 Merge pull request #913 from tdewolff/dependabot/github_actions/actions/downl...
• 3ed3dd4 Merge pull request #914 from tdewolff/dependabot/github_actions/actions/uploa...
• ac26e09 Merge branch 'master' of github.com:tdewolff/minify
• 699c8d9 JS: fix precedence in OptionalExpression within Member/CallExpressions; fixes...
• 9145d9c Bump actions/upload-artifact from 6 to 7
• 9f13c33 Bump actions/download-artifact from 7 to 8
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.47.0 to 0.48.0

Commits

• e08b067 go.mod: update golang.org/x dependencies
• 7d0074c scrypt: fix panic on parameters <= 0
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions