dependabot/dependabot-core v0.327.0

on GitHub

What's Changed

• Attach dependencies to the DependencyFile in go_modules's FileParser by @phillmv in #12837
• Fix bun metadata issues by @fcheung in #12834
• Fix version resolution discrepancies in npm vulnerability remediation by @jasonpaulos in #12821
• Bump the all-actions group across 1 directory with 5 updates by @dependabot[bot] in #12838
• filter out non-version tags in Helm update checker by @abn in #12612
• Automate maintenance of uv versions by @yeikel in #12813
• Bump github/codeql-action from 3.29.9 to 3.29.10 in the all-actions group by @dependabot[bot] in #12866
• Bump golang.org/x/mod from 0.26.0 to 0.27.0 in /go_modules/helpers by @dependabot[bot] in #12808
• Fetch exclude-paths from job definition by @AbhishekBhaskar in #12852
• bump to Go 1.25 by @jakecoffman in #12844
• prevent mislabeling Go issues by @jakecoffman in #12876
• Add dotnet-sdk, vcpkg, and rust-toolchain to issue labeler by @JamieMagee in #12886
• Fixed issue related to calculate cooldown period by providing semver major version as highest priority. by @randhircs in #12869
• Update vcpkg label color by @JamieMagee in #12884
• NPM error found on release PR is fixed here by @thavaahariharangit in #12907
• Adding registry env variable to corepack command. by @thavaahariharangit in #12865
• v0.327.0 by @dependabot-core-action-automation[bot] in #12900

New Contributors

• @fcheung made their first contribution in #12834
• @abn made their first contribution in #12612

Full Changelog: v0.326.1...v0.327.0