chore(deps): bump the go group across 1 directory with 14 updates

[dependabot]

Bumps the go group with 10 updates in the / directory:

Package	From	To
github.com/fatih/color	1.18.0	1.19.0
github.com/go-git/go-billy/v5	5.6.2	5.9.0
github.com/go-git/go-git/v5	5.16.2	5.19.0
github.com/hashicorp/go-getter	1.8.1	1.8.6
github.com/hashicorp/go-plugin	1.7.0	1.8.0
github.com/mattn/go-isatty	0.0.20	0.0.22
github.com/olekukonko/tablewriter	1.1.0	1.1.4
github.com/rs/zerolog	1.34.0	1.35.1
github.com/spf13/cobra	1.10.1	1.10.2
github.com/zclconf/go-cty	1.17.0	1.18.1

Updates github.com/fatih/color from 1.18.0 to 1.19.0

Release notes

Sourced from github.com/fatih/color's releases.

v1.19.0

What's Changed

• Bump golang.org/x/sys from 0.25.0 to 0.28.0 by @​dependabot[bot] in fatih/color#246
• Fix for issue #230 set/unsetwriter symmetric wrt color support detection by @​ataypamart in fatih/color#243
• chore: go mod cleanup by @​sashamelentyev in fatih/color#244
• Bump golang.org/x/sys from 0.28.0 to 0.30.0 by @​dependabot[bot] in fatih/color#249
• Bump github.com/mattn/go-colorable from 0.1.13 to 0.1.14 by @​dependabot[bot] in fatih/color#248
• Update CI and go deps by @​fatih in fatih/color#254
• Bump golang.org/x/sys from 0.31.0 to 0.37.0 by @​dependabot[bot] in fatih/color#268
• fix: include escape codes in byte counts from Fprint, Fprintf by @​qualidafial in fatih/color#282
• Bump golang.org/x/sys from 0.37.0 to 0.40.0 by @​dependabot[bot] in fatih/color#277
• fix: add nil check for os.Stdout to prevent panic on Windows services by @​majiayu000 in fatih/color#275
• Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0 by @​dependabot[bot] in fatih/color#259
• Bump actions/checkout from 4 to 6 by @​dependabot[bot] in fatih/color#273
• Optimize Color.Equals performance (O(n²) → O(n)) by @​UnSubble in fatih/color#269
• Bump actions/setup-go from 5 to 6 by @​dependabot[bot] in fatih/color#266

New Contributors

• @​ataypamart made their first contribution in fatih/color#243
• @​sashamelentyev made their first contribution in fatih/color#244
• @​qualidafial made their first contribution in fatih/color#282
• @​majiayu000 made their first contribution in fatih/color#275
• @​UnSubble made their first contribution in fatih/color#269

Full Changelog: fatih/color@v1.18.0...v1.19.0

Commits

• ca25f6e Merge pull request #266 from fatih/dependabot/github_actions/actions/setup-go-6
• 1205984 Bump actions/setup-go from 5 to 6
• 5715c20 Merge pull request #269 from UnSubble/main
• 2f6e200 Merge branch 'main' into main
• f72ec94 Merge pull request #273 from fatih/dependabot/github_actions/actions/checkout-6
• 848e633 Merge branch 'main' into main
• 4c2cd34 Add tests
• 7f812f0 Bump actions/checkout from 4 to 6
• b7fc9f9 Merge pull request #259 from fatih/dependabot/github_actions/dominikh/staticc...
• 239a88f Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0
• Additional commits viewable in compare view

Updates github.com/go-git/go-billy/v5 from 5.6.2 to 5.9.0

Release notes

Sourced from github.com/go-git/go-billy/v5's releases.

v5.9.0

What's Changed

• Use path.Clean instead of filepath.Clean in iofs.Open by @​puerco in go-git/go-billy#197
• Deprecate ChrootOS in favour of BoundOS by @​pjbgf in go-git/go-billy#201
• General Improvements by @​pjbgf in go-git/go-billy#203
• osfs: ChrootOS eval baseDir on creation by @​pjbgf in go-git/go-billy#205
• Run go-git tests as part of integration tests by @​pjbgf in go-git/go-billy#206

Full Changelog: go-git/go-billy@v5.8.0...v5.9.0

v5.8.0

What's Changed

• build: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-billy#183
• v5: Ensure Chmod behaviour across BoundOS and ChrootOS by @​pjbgf in go-git/go-billy#187

Full Changelog: go-git/go-billy@v5.7.0...v5.8.0

v5.7.0

What's Changed

• Add support for Chmod on billy.Filesystem by @​bitfehler in go-git/go-billy#171
• build: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-billy#177

Full Changelog: go-git/go-billy@v5.6.2...v5.7.0

Commits

• 237e529 Merge pull request #206 from pjbgf/v5-improvements
• 04edb39 build: Add go-git integration test
• d8efefd osfs: preserve empty ChrootOS base
• 07f2a0b Merge pull request #205 from pjbgf/v5-improvements
• 25207c8 build: Bump Go versions in workflows
• 2fda229 osfs: ChrootOS eval baseDir on creation
• 427b27f Merge pull request #203 from pjbgf/v5-improvements
• 7d5a23e chroot: Reject symlink loops
• 2c2287a util: avoid following symlinks in RemoveAll fallback
• cbd88e9 Fix mount path handling
• Additional commits viewable in compare view

Updates github.com/go-git/go-git/v5 from 5.16.2 to 5.19.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.19.0

What's Changed

• build: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-git#2010
• v5: Bump sha1cd and go-billy by @​pjbgf in go-git/go-git#2060
• v5: Align object encoding with upstream by @​pjbgf in go-git/go-git#2065

Full Changelog: go-git/go-git@v5.18.0...v5.19.0

v5.18.0

What's Changed

• plumbing: transport/http, Add support for followRedirects policy by @​pjbgf in go-git/go-git#2004

Full Changelog: go-git/go-git@v5.17.2...v5.18.0

v5.17.2

What's Changed

• build: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-git#1941
• dotgit: skip writing pack files that already exist on disk by @​pjbgf in go-git/go-git#1944

⚠️ This release fixes a bug (go-git/go-git#1942) that blocked some users from upgrading to v5.17.1. Thanks @​pskrbasu for reporting it. 🙇

Full Changelog: go-git/go-git@v5.17.1...v5.17.2

v5.17.1

What's Changed

• build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-git#1930
• [v5] plumbing: format/index, Improve v4 entry name validation by @​pjbgf in go-git/go-git#1935
• [v5] plumbing: format/idxfile, Fix version and fanout checks by @​pjbgf in go-git/go-git#1937

Full Changelog: go-git/go-git@v5.17.0...v5.17.1

v5.17.0

What's Changed

• build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-git#1839
• git: worktree, optimize infiles function for very large repos by @​k-anshul in go-git/go-git#1853
• git: Add strict checks for supported extensions by @​pjbgf in go-git/go-git#1861
• backport, git: Improve Status() speed with new index.ModTime check by @​cedric-appdirect in go-git/go-git#1862
• storage: filesystem, Avoid overwriting loose obj files by @​pjbgf in go-git/go-git#1864

Full Changelog: go-git/go-git@v5.16.5...v5.17.0

v5.16.5

What's Changed

• build: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by @​go-git-renovate[bot] in go-git/go-git#1744
• build: Bump Go test versions to 1.23-1.25 (v5) by @​pjbgf in go-git/go-git#1746
• [v5] git: worktree, Don't delete local untracked files when resetting worktree by @​Ch00k in go-git/go-git#1800

... (truncated)

Commits

• bc930f4 Merge pull request #2065 from go-git/commit-v5
• d315264 plumbing: object, Reset object before decode
• 6e1d348 plumbing: object, Align Tree handling with upstream
• e134ba3 tests: Skip double checks in Git v2.11
• 1971422 tests: Add git conformance tests for signing verification
• a387aa8 plumbing: object, Add ErrMalformedTag
• f415670 plumbing: object, Decode Tag headers via a state machine
• 5b0cd38 plumbing: object, Reject multi-signature commits at Verify
• fe8ed62 plumbing: object, Align Tag.EncodeWithoutSignature with Commit
• 98e337d plumbing: object, Add support for Tag.SignatureSHA256
• Additional commits viewable in compare view

Updates github.com/hashicorp/go-getter from 1.8.1 to 1.8.6

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.8.6

No release notes provided.

v1.8.5

What's Changed

• [chore] : Bump the go group with 2 updates by @​dependabot[bot] in hashicorp/go-getter#576
• use %w to wrap error by @​Ericwww in hashicorp/go-getter#475
• fix: #538 http file download skipped if headResp.ContentLength is 0 by @​martijnvdp in hashicorp/go-getter#539
• chore: fix error message capitalization in checksum function by @​ssagarverma in hashicorp/go-getter#578
• [chore] : Bump the go group with 8 updates by @​dependabot[bot] in hashicorp/go-getter#577
• Fix git url with ambiguous ref by @​nimasamii in hashicorp/go-getter#382
• fix: resolve compilation errors in get_git_test.go by @​CreatorHead in hashicorp/go-getter#579
• [chore] : Bump the actions group with 2 updates by @​dependabot[bot] in hashicorp/go-getter#582
• [chore] : Bump the go group with 3 updates by @​dependabot[bot] in hashicorp/go-getter#583
• test that arbitrary files cannot be checksummed by @​schmichael in hashicorp/go-getter#250
• [chore] : Bump google.golang.org/api from 0.260.0 to 0.262.0 in the go group by @​dependabot[bot] in hashicorp/go-getter#585
• [chore] : Bump actions/checkout from 6.0.1 to 6.0.2 in the actions group by @​dependabot[bot] in hashicorp/go-getter#586
• [chore] : Bump the go group with 3 updates by @​dependabot[bot] in hashicorp/go-getter#588
• [chore] : Bump actions/cache from 5.0.2 to 5.0.3 in the actions group by @​dependabot[bot] in hashicorp/go-getter#589
• [chore] : Bump aws-actions/configure-aws-credentials from 5.1.1 to 6.0.0 in the actions group by @​dependabot[bot] in hashicorp/go-getter#592
• [chore] : Bump google.golang.org/api from 0.264.0 to 0.265.0 in the go group by @​dependabot[bot] in hashicorp/go-getter#591
• [chore] : Bump the go group with 5 updates by @​dependabot[bot] in hashicorp/go-getter#593
• IND-6310 - CRT Onboarding by @​nasareeny in hashicorp/go-getter#584
• Fix crt build path by @​ssagarverma in hashicorp/go-getter#594
• [chore] : Bump the go group with 3 updates by @​dependabot[bot] in hashicorp/go-getter#596
• fix: remove checkout action from set-product-version job by @​ssagarverma in hashicorp/go-getter#598
• [chore] : Bump the actions group with 4 updates by @​dependabot[bot] in hashicorp/go-getter#595
• fix(deps): upgrade go.opentelemetry.io/otel/sdk to v1.40.0 (GO-2026-4394) by @​ssagarverma in hashicorp/go-getter#599
• Prepare go-getter for v1.8.5 release by @​nasareeny in hashicorp/go-getter#597
• [chore] : Bump the actions group with 2 updates by @​dependabot[bot] in hashicorp/go-getter#600
• sec: bump go and xrepos + redact aws tokens in url by @​dduzgun-security in hashicorp/go-getter#604

NOTES:

Binary Distribution Update: To streamline our release process and align with other HashiCorp tools, all release binaries will now be published exclusively to the official HashiCorp release site. We will no longer attach release assets to GitHub Releases.

New Contributors

• @​Ericwww made their first contribution in hashicorp/go-getter#475
• @​martijnvdp made their first contribution in hashicorp/go-getter#539
• @​nimasamii made their first contribution in hashicorp/go-getter#382
• @​nasareeny made their first contribution in hashicorp/go-getter#584

Full Changelog: hashicorp/go-getter@v1.8.4...v1.8.5

v1.8.4

What's Changed

• [IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by @​ssagarverma in hashicorp/go-getter#568
• [IND-4227] [COMPLIANCE] Update Copyright Headers by @​oss-core-libraries-dashboard[bot] in hashicorp/go-getter#566
• [COMPLIANCE] Update Copyright Headers by @​oss-core-libraries-dashboard[bot] in hashicorp/go-getter#571
• [chore] : Bump the actions group across 1 directory with 3 updates by @​dependabot[bot] in hashicorp/go-getter#567

... (truncated)

Commits

• d23bff4 Merge pull request #608 from hashicorp/dependabot/go_modules/go-security-9c51...
• 2c4aba8 Merge pull request #613 from hashicorp/pull/v1.8.6
• fe61ed9 Merge pull request #611 from hashicorp/SECVULN-41053
• d533656 Merge pull request #606 from hashicorp/pull/CRT
• 388f23d Additional test for local branch and head
• b7ceaa5 harden checkout ref handling and added regression tests
• 769cc14 Release version bump up
• 6086a6a Review Comments Addressed
• e02063c Revert "SECVULN Fix for git checkout argument injection enables arbitrary fil...
• c93084d [chore] : Bump google.golang.org/grpc
• Additional commits viewable in compare view

Updates github.com/hashicorp/go-plugin from 1.7.0 to 1.8.0

Release notes

Sourced from github.com/hashicorp/go-plugin's releases.

v1.8.0

What’s Changed

Compliance & Maintenance

• updated copyright and license headers
• Modernized build tags
• Multiple GitHub Actions and dependency bumps

Fixes & Improvements

• Fixed concurrency issue with pipesWaitGroup
• Prevented pidfd leak in cmdrunner
• Reduced logging configuration noise

Enhancements

• Updated go_package to full path in proto
• Improved gRPC example (plugin selection + encoding fix)
• Added gRPC streaming example

Dependencies Upgrade

• Upgraded protobuf
• Several CI/CD action updates

---

New Contributors

• @​ssagarverma
• @​ncabatoff
• @​jbkingsley
• @​kartheek-hc
• @​xnox
• @​texasich

---

Commits

• 155dcdd cmdrunner: release process handle in _pidAlive to avoid pidfd leak (#378)
• 96d18ee [chore] : Bump actions/upload-artifact in the actions group (#376)
• a0c251c [chore] : Bump actions/setup-go from 6.3.0 to 6.4.0 in the actions group (#375)
• 6a56553 [chore] : Bump the actions group with 2 updates (#373)
• abeb978 Bump protobuf from 4.25.8 to 5.29.6 in /examples/grpc/plugin-python (#372)
• a4c9002 examples: Add gRPC streaming example (#339)
• 0ac49e2 [chore] : Bump actions/checkout from 6.0.1 to 6.0.2 in the actions group (#370)
• d662936 logging: lower priority of configuring messages (#311)
• c57bf64 [chore] : Bump actions/setup-go from 6.1.0 to 6.2.0 in the actions group (#369)
• a33e454 chore: add plugin selection and fix encoding in gRPC example (#368)
• Additional commits viewable in compare view

Updates github.com/mattn/go-isatty from 0.0.20 to 0.0.22

Commits

• 9a68506 Fix isCygwinPipeName to accept Windows 7 trailing suffix (#90)
• 4237fb1 Update Go test matrix to current versions (1.24-1.26)
• 433c12b Update GitHub Actions to latest versions
• 1cf5589 Add wasip1 and wasip2 to build constraints in isatty_others.go
• 1237245 Update dependencies: go 1.15 -> 1.21, golang.org/x/sys v0.6.0 -> v0.28.0
• ac9c88d Fix typo in comment: undocomented -> undocumented
• 8b7124e Add availability check for NtQueryObject in init
• 08d0313 Fix isCygwinPipeName to reject names with extra trailing tokens
• See full diff in compare view

Updates github.com/olekukonko/tablewriter from 1.1.0 to 1.1.4

Commits

• a0dea8a no need to disable twice
• a4fb40a Merge pull request #314 from sducamp/fix/rendition-debug-leak
• 6bc4cb4 fix: prevent debug output leak from renderer during Options() reconfiguration
• 54408fe update ll to v0.1.6
• 5ea5f3c add mote tab test ans update go mod
• 1455dd8 Merge pull request #311 from olekukonko/tabber
• d7b0a55 improve tab and make test more predictable
• 62117a2 add space default #312 for colorized renderer
• 4958831 ll v0.1.5 update enables logging by default hence disable
• 1c68e06 use space for padding as default #312
• Additional commits viewable in compare view

Updates github.com/rs/zerolog from 1.34.0 to 1.35.1

Commits

• 116c806 event: restore Err() logging when ErrorStackMarshaler returns nil (#763)
• 1396655 Bump CI Go matrix minimum from 1.21 to 1.23
• 4b65a2f Bump actions/cache from 4 to 5 (#741)
• b835796 Bump actions/setup-go from 5 to 6 (#742)
• 134caf8 Added sanitization of journald keys (#751)
• e133b6a Added variadic StrsV, ObjectsV, and StringersV (#752)
• 82017d8 Bump github.com/coreos/go-systemd/v22 from 22.6.0 to 22.7.0 (#753)
• 2f5b8a9 fix: UpdateContext skips Nop and zero-value loggers (#754)
• d64c9a7 Add slog.Handler implementation for zerolog (#755)
• a0d61dc fix: return dict to Event pool (#749)
• Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.10.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Updates github.com/zclconf/go-cty from 1.17.0 to 1.18.1

Changelog

Sourced from github.com/zclconf/go-cty's changelog.

1.18.1 (April 16, 2026)

• stdlib: ContainsFunc now allows its second argument to be null, to test whether the given collection contains any null elements.
• stdlib: MergeFunc no longer panics if all of its arguments are null values of the same object type with at least one attribute.

1.18.0 (February 23, 2026)

cty now requires Go 1.25 or later.

• cty.Value.Equals now has a special case where if a null value is compared with a non-null value then only top-level marks from the non-null value will transfer to the boolean result.

  This is a limited introduction of the idea that only the parts of a nested data structure that were actually relevant to the comparison should transfer to the result. The more general form of that idea might follow in a later release, but that would require some more severe refactoring of this method's implementation that would be far riskier and so this is a pragmatic compromise to support just the relatively-common case of comparing with null in callers like HCL where an equality test is the canonical way to test a value for "null-ness".

• cty.IndexStep.Apply now works for traversing through a set.

  Although cty.Value.Index does not allow looking up a set element due to set elements not having indices, we often use cty.Path to describe a specific location in a nested structure and have a convention of handling traversal through a set as a cty.IndexStep whose "key" is the set element's value.

  To make that work a little better with code that uses cty.Path.Apply on such paths, cty.IndexStep now has a special case where if the given value is a set then it checks whether the index step's key is a member of the set and returns that value if so. If unknown values mean that it's not decidable whether there is a matching element then the result is an unknown value of the set's element type, so that traversal can continue and presumably eventually return an unknown value of the appropriate leaf type.

Commits

• dcb5db6 v1.18.1
• 77d87c2 stdlib: no MergeFunc crash with null values of object type
• 6854da9 stdlib: ContainsFunc allows testing for presence of null value
• ddb73de Begin development of v1.18.1
• e0c742b v1.18.0 release
• 21d455d Update LICENSE to reflect the current situation
• a6629d6 cty: IndexStep.Apply now works for traversing through a set
• d586d11 cty: Value.Equals only keeps shallow marks when comparing to null
• 2cc7315 go.mod: Require Go 1.25 or later
• See full diff in compare view

Updates golang.org/x/exp from 0.0.0-20250305212735-054e65f0b394 to 0.0.0-20260410095643-746e56fc9e2f

Commits

• See full diff in compare view

Updates golang.org/x/oauth2 from 0.31.0 to 0.36.0

Commits

• 4d954e6 all: upgrade go directive to at least 1.25.0 [generated]
• 89ff2e1 google: add safer credentials JSON loading options.
• acc3815 endpoints: fix %q verb use with wrong type
• f28b0b5 all: fix some comments
• fd15e0f x/oauth2: populate RetrieveError from DeviceAuth
• 792c877 oauth2: use strings.Builder instead of bytes.Buffer
• See full diff in compare view

Updates golang.org/x/sync from 0.17.0 to 0.20.0

Commits

• ec11c4a errgroup: fix a typo in the documentation
• 1a58307 all: modernize interface{} -> any
• 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
• 2a180e2 errgroup: use consistent read for SetLimit panic
• 1966f53 errgroup: fix some typos in comment
• See full diff in compare view

Updates golang.org/x/mod from 0.28.0 to 0.35.0

Commits

• 03901d3 go.mod: update golang.org/x dependencies
• 1ac721d go.mod: update golang.org/x dependencies
• fb1fac8 all: upgrade go directive to at least 1.25.0 [generated]
• 27761a2 go.mod: update golang.org/x dependencies
• 4c04067 go.mod: update golang.org/x dependencies
• d271cf3 go.mod: update golang.org/x dependencies
• 269c237 sumdb/note: delete chop
• 3f03020 x/mod: apply go fix and go vet
• 7416265 go.mod: update golang.org/x dependencies
• 5517a71 all: fix some comments
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions