diff --git a/.binny.yaml b/.binny.yaml
index 6db4b93dea0..5ef4e8779bd 100644
--- a/.binny.yaml
+++ b/.binny.yaml
@@ -26,7 +26,7 @@ tools:
   # used for linting
   - name: golangci-lint
     version:
-      want: v2.5.0
+      want: v2.6.1
     method: github-release
     with:
       repo: golangci/golangci-lint
@@ -82,7 +82,7 @@ tools:
   # used for running all local and CI tasks
   - name: task
     version:
-      want: v3.45.4
+      want: v3.45.5
     method: github-release
     with:
       repo: go-task/task
@@ -90,7 +90,7 @@ tools:
   # used for triggering a release
   - name: gh
     version:
-      want: v2.82.1
+      want: v2.83.1
     method: github-release
     with:
       repo: cli/cli
diff --git a/cmd/grype/cli/commands/internal/dbsearch/affected_packages.go b/cmd/grype/cli/commands/internal/dbsearch/affected_packages.go
index c277022fa30..faa1f8cac5b 100644
--- a/cmd/grype/cli/commands/internal/dbsearch/affected_packages.go
+++ b/cmd/grype/cli/commands/internal/dbsearch/affected_packages.go
@@ -34,6 +34,7 @@ type AffectedPackageInfo struct {
 	CPE *CPE `json:"cpe,omitempty"`
 
 	// Namespace is a holdover value from the v5 DB schema that combines provider and search methods into a single value
+	//
 	// Deprecated: this field will be removed in a later version of the search schema
 	Namespace string `json:"namespace"`
 
diff --git a/grype/matcher/java/matcher_integration_test.go b/grype/matcher/java/matcher_integration_test.go
index 444faae16c3..0994303ac46 100644
--- a/grype/matcher/java/matcher_integration_test.go
+++ b/grype/matcher/java/matcher_integration_test.go
@@ -1,5 +1,4 @@
 //go:build api_limits
-// +build api_limits
 
 package java
 
diff --git a/grype/presenter/models/document.go b/grype/presenter/models/document.go
index da84bdba29b..429e3a8c12e 100644
--- a/grype/presenter/models/document.go
+++ b/grype/presenter/models/document.go
@@ -21,6 +21,8 @@ type Document struct {
 }
 
 // NewDocument creates and populates a new Document struct, representing the populated JSON document.
+//
+//nolint:staticcheck // MetadataProvider is deprecated but still used internally
 func NewDocument(id clio.Identification, packages []pkg.Package, context pkg.Context, matches match.Matches, ignoredMatches []match.IgnoredMatch, metadataProvider vulnerability.MetadataProvider, appConfig any, dbInfo any, strategy SortStrategy, outputTimestamp bool) (Document, error) {
 	var timestamp []byte
 
diff --git a/grype/presenter/models/match.go b/grype/presenter/models/match.go
index 2f35adeed13..106d71d19db 100644
--- a/grype/presenter/models/match.go
+++ b/grype/presenter/models/match.go
@@ -33,10 +33,11 @@ type FixDetails struct {
 	SuggestedVersion string `json:"suggestedVersion"`
 }
 
+//nolint:staticcheck // MetadataProvider is deprecated but still used internally
 func newMatch(m match.Match, p pkg.Package, metadataProvider vulnerability.MetadataProvider) (*Match, error) {
 	relatedVulnerabilities := make([]VulnerabilityMetadata, 0)
 	for _, r := range m.Vulnerability.RelatedVulnerabilities {
-		relatedMetadata, err := metadataProvider.VulnerabilityMetadata(r)
+		relatedMetadata, err := metadataProvider.VulnerabilityMetadata(r) //nolint:staticcheck // deprecated API still used internally
 		if err != nil {
 			return nil, fmt.Errorf("unable to fetch related vuln=%q metadata: %+v", r, err)
 		}
@@ -50,7 +51,7 @@ func newMatch(m match.Match, p pkg.Package, metadataProvider vulnerability.Metad
 	metadata := m.Vulnerability.Metadata
 	if metadata == nil {
 		var err error
-		metadata, err = metadataProvider.VulnerabilityMetadata(m.Vulnerability.Reference)
+		metadata, err = metadataProvider.VulnerabilityMetadata(m.Vulnerability.Reference) //nolint:staticcheck // deprecated API still used internally
 		if err != nil {
 			return nil, fmt.Errorf("unable to fetch related vuln=%q metadata: %+v", m.Vulnerability.Reference, err)
 		}
diff --git a/grype/presenter/models/metadata_mock.go b/grype/presenter/models/metadata_mock.go
index 4a2f16dc5e6..e9bf8d40b82 100644
--- a/grype/presenter/models/metadata_mock.go
+++ b/grype/presenter/models/metadata_mock.go
@@ -4,6 +4,7 @@ import (
 	"github.com/anchore/grype/grype/vulnerability"
 )
 
+//nolint:staticcheck // MetadataProvider is deprecated but still used internally for testing
 var _ vulnerability.MetadataProvider = (*MetadataMock)(nil)
 
 // MetadataMock provides the behavior required for a vulnerability.Provider for the purpose of testing.
diff --git a/grype/presenter/presenter.go b/grype/presenter/presenter.go
index 72f7a80899c..edf0aa4a2a7 100644
--- a/grype/presenter/presenter.go
+++ b/grype/presenter/presenter.go
@@ -8,6 +8,7 @@ import (
 )
 
 // GetPresenter retrieves a Presenter that matches a CLI option.
+//
 // Deprecated: this will be removed in v1.0
 func GetPresenter(f string, templatePath string, showSuppressed bool, pb models.PresenterConfig) presenter.Presenter {
 	return format.GetPresenter(format.Parse(f), format.PresentationConfig{
diff --git a/grype/version/deprecated.go b/grype/version/deprecated.go
index 0aa1579d67c..6f894da119a 100644
--- a/grype/version/deprecated.go
+++ b/grype/version/deprecated.go
@@ -1,6 +1,7 @@
 package version
 
 // NewVersion creates a new Version instance with the provided raw version string and format.
+//
 // Deprecated: NewVersion is deprecated, use New instead.
 func NewVersion(raw string, format Format) *Version {
 	return New(raw, format)
diff --git a/grype/vulnerability/provider.go b/grype/vulnerability/provider.go
index d395bcecd13..88c4a53c657 100644
--- a/grype/vulnerability/provider.go
+++ b/grype/vulnerability/provider.go
@@ -15,9 +15,11 @@ type Criteria interface {
 }
 
 // MetadataProvider implementations provide ways to look up vulnerability metadata
+//
 // Deprecated: vulnerability.Vulnerability objects now have metadata included
 type MetadataProvider interface {
 	// VulnerabilityMetadata returns the metadata associated with a vulnerability
+	//
 	// Deprecated: vulnerability.Vulnerability objects now have metadata included
 	VulnerabilityMetadata(ref Reference) (*Metadata, error)
 }
diff --git a/grype/vulnerability_matcher.go b/grype/vulnerability_matcher.go
index 14a45bced66..c6dcb579b13 100644
--- a/grype/vulnerability_matcher.go
+++ b/grype/vulnerability_matcher.go
@@ -280,7 +280,7 @@ func (m *VulnerabilityMatcher) normalizeByCVE(match match.Match) match.Match {
 
 	ref := effectiveCVERecordRefs[0]
 
-	upstreamMetadata, err := m.VulnerabilityProvider.VulnerabilityMetadata(ref)
+	upstreamMetadata, err := m.VulnerabilityProvider.VulnerabilityMetadata(ref) //nolint:staticcheck // deprecated API still used internally
 	if err != nil {
 		log.WithFields("id", ref.ID, "namespace", ref.Namespace, "error", err).Warn("unable to fetch effective CVE metadata")
 		return match
@@ -398,12 +398,13 @@ func isCVE(id string) bool {
 	return strings.HasPrefix(strings.ToLower(id), "cve-")
 }
 
+//nolint:staticcheck // MetadataProvider is deprecated but still used internally
 func hasSeverityAtOrAbove(store vulnerability.MetadataProvider, severity vulnerability.Severity, matches match.Matches) bool {
 	if severity == vulnerability.UnknownSeverity {
 		return false
 	}
 	for m := range matches.Enumerate() {
-		metadata, err := store.VulnerabilityMetadata(m.Vulnerability.Reference)
+		metadata, err := store.VulnerabilityMetadata(m.Vulnerability.Reference) //nolint:staticcheck // deprecated API still used internally
 		if err != nil {
 			continue
 		}
@@ -435,9 +436,10 @@ func logListSummary(vl *monitorWriter) {
 	}
 }
 
+//nolint:staticcheck // MetadataProvider is deprecated but still used internally
 func updateVulnerabilityList(mon *monitorWriter, matches []match.Match, ignores []match.IgnoredMatch, dropped []match.IgnoredMatch, metadataProvider vulnerability.MetadataProvider) {
 	for _, m := range matches {
-		metadata, err := metadataProvider.VulnerabilityMetadata(m.Vulnerability.Reference)
+		metadata, err := metadataProvider.VulnerabilityMetadata(m.Vulnerability.Reference) //nolint:staticcheck // deprecated API still used internally
 		if err != nil || metadata == nil {
 			mon.BySeverity[vulnerability.UnknownSeverity].Increment()
 			continue
diff --git a/internal/schemaver/schema_ver.go b/internal/schemaver/schema_ver.go
index 16957e0ef60..a341ad4b2fb 100644
--- a/internal/schemaver/schema_ver.go
+++ b/internal/schemaver/schema_ver.go
@@ -28,21 +28,19 @@ func Parse(s string) (SchemaVer, error) {
 		return SchemaVer{}, fmt.Errorf("invalid schema version format: %s", s)
 	}
 	// check that all parts are integers
-	var values [3]int
-	for i, part := range parts {
-		if i == 0 {
-			part = strings.TrimPrefix(part, "v")
-		}
-		v, err := strconv.Atoi(part)
-		if err != nil || v < 0 {
-			return SchemaVer{}, fmt.Errorf("invalid schema version format: %s", s)
-		}
-		values[i] = v
+	model, err := strconv.Atoi(strings.TrimPrefix(parts[0], "v"))
+	if err != nil || model < 1 {
+		return SchemaVer{}, fmt.Errorf("invalid schema version format: %s", s)
+	}
+	revision, err := strconv.Atoi(parts[1])
+	if err != nil || revision < 0 {
+		return SchemaVer{}, fmt.Errorf("invalid schema version format: %s", s)
 	}
-	if values[0] < 1 {
-		return SchemaVer{}, fmt.Errorf("model value must be greater than 0: %s", s)
+	addition, err := strconv.Atoi(parts[2])
+	if err != nil || addition < 0 {
+		return SchemaVer{}, fmt.Errorf("invalid schema version format: %s", s)
 	}
-	return New(values[0], values[1], values[2]), nil
+	return New(model, revision, addition), nil
 }
 
 func (s SchemaVer) Valid() bool {
diff --git a/schema/grype/db-search/json/schema-1.1.3.json b/schema/grype/db-search/json/schema-1.1.3.json
index 8f500346f80..bda8d95b788 100644
--- a/schema/grype/db-search/json/schema-1.1.3.json
+++ b/schema/grype/db-search/json/schema-1.1.3.json
@@ -12,7 +12,7 @@
           "description": "is the detailed information about the affected package"
         },
         "namespace": {
-          "description": "is a holdover value from the v5 DB schema that combines provider and search methods into a single value\nDeprecated: this field will be removed in a later version of the search schema"
+          "description": "is a holdover value from the v5 DB schema that combines provider and search methods into a single value\n\nDeprecated: this field will be removed in a later version of the search schema"
         },
         "os": {
           "description": "identifies the operating system release that the affected package is released for"
diff --git a/schema/grype/db-search/json/schema-latest.json b/schema/grype/db-search/json/schema-latest.json
index 8f500346f80..bda8d95b788 100644
--- a/schema/grype/db-search/json/schema-latest.json
+++ b/schema/grype/db-search/json/schema-latest.json
@@ -12,7 +12,7 @@
           "description": "is the detailed information about the affected package"
         },
         "namespace": {
-          "description": "is a holdover value from the v5 DB schema that combines provider and search methods into a single value\nDeprecated: this field will be removed in a later version of the search schema"
+          "description": "is a holdover value from the v5 DB schema that combines provider and search methods into a single value\n\nDeprecated: this field will be removed in a later version of the search schema"
         },
         "os": {
           "description": "identifies the operating system release that the affected package is released for"