From f9f7e9ff07a6f03d7c977f0829d93b9a7e59c996 Mon Sep 17 00:00:00 2001
From: "felix-renovate[bot]"
 <143542247+felix-renovate[bot]@users.noreply.github.com>
Date: Sat, 8 Nov 2025 13:04:32 +0000
Subject: [PATCH] fix(deps): update all non-major dependencies

---
 .github/workflows/zizmor.yaml | 2 +-
 Dockerfile                    | 2 +-
 go.mod                        | 4 ++--
 go.sum                        | 2 ++
 4 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/zizmor.yaml b/.github/workflows/zizmor.yaml
index efd7b70..9e9a5ab 100644
--- a/.github/workflows/zizmor.yaml
+++ b/.github/workflows/zizmor.yaml
@@ -30,7 +30,7 @@ jobs:
           GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@e296a935590eb16afc0c0108289f68c87e2a89a5 # v4
+        uses: github/codeql-action/upload-sarif@0499de31b99561a6d14a36a5f662c2a54f91beee # v4
         with:
           sarif_file: results.sarif
           category: zizmor
\ No newline at end of file
diff --git a/Dockerfile b/Dockerfile
index e3c541c..1d023b5 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,5 +1,5 @@
 # syntax=docker/dockerfile:1.19@sha256:b6afd42430b15f2d2a4c5a02b919e98a525b785b1aaff16747d2f623364e39b6
-FROM pscale.dev/wolfi-prod/git:2.51.0
+FROM pscale.dev/wolfi-prod/git:2.51.2
 
 COPY ghcommit /ghcommit
 
diff --git a/go.mod b/go.mod
index 0125aa2..40c4128 100644
--- a/go.mod
+++ b/go.mod
@@ -2,12 +2,12 @@ module github.com/planetscale/ghcommit
 
 go 1.24.0
 
-toolchain go1.25.1
+toolchain go1.25.4
 
 require (
 	github.com/jessevdk/go-flags v1.6.1
 	github.com/shurcooL/githubv4 v0.0.0-20240727222349-48295856cce7
-	golang.org/x/oauth2 v0.31.0
+	golang.org/x/oauth2 v0.33.0
 )
 
 require (
diff --git a/go.sum b/go.sum
index c827432..85ebf97 100644
--- a/go.sum
+++ b/go.sum
@@ -14,5 +14,7 @@ golang.org/x/oauth2 v0.30.0 h1:dnDm7JmhM45NNpd8FDDeLhK6FwqbOf4MLCM9zb1BOHI=
 golang.org/x/oauth2 v0.30.0/go.mod h1:B++QgG3ZKulg6sRPGD/mqlHQs5rB3Ml9erfeDY7xKlU=
 golang.org/x/oauth2 v0.31.0 h1:8Fq0yVZLh4j4YA47vHKFTa9Ew5XIrCP8LC6UeNZnLxo=
 golang.org/x/oauth2 v0.31.0/go.mod h1:lzm5WQJQwKZ3nwavOZ3IS5Aulzxi68dUSgRHujetwEA=
+golang.org/x/oauth2 v0.33.0 h1:4Q+qn+E5z8gPRJfmRy7C2gGG3T4jIprK6aSYgTXGRpo=
+golang.org/x/oauth2 v0.33.0/go.mod h1:lzm5WQJQwKZ3nwavOZ3IS5Aulzxi68dUSgRHujetwEA=
 golang.org/x/sys v0.31.0 h1:ioabZlmFYtWhL+TRYpcnNlLwhyxaM9kWTDEmfnprqik=
 golang.org/x/sys v0.31.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=