chore(deps): bump the dev-dependencies group with 7 updates

[dependabot]

Bumps the dev-dependencies group with 7 updates:

Package	From	To
github.com/DataDog/datadog-go/v5	5.8.2	5.8.3
github.com/aws/aws-sdk-go-v2/service/s3	1.95.1	1.96.0
github.com/gofiber/fiber/v2	2.52.10	2.52.11
github.com/clipperhouse/uax29/v2	2.4.0	2.5.0
github.com/golang-jwt/jwt/v5	5.3.0	5.3.1
github.com/nats-io/nkeys	0.4.12	0.4.15
github.com/aws/aws-sdk-go-v2/feature/s3/manager	1.21.0	1.21.1

Updates github.com/DataDog/datadog-go/v5 from 5.8.2 to 5.8.3

Release notes

Sourced from github.com/DataDog/datadog-go/v5's releases.

v5.8.3

• [IMPROVEMENT] Shard aggregator lock. See [https://github.com/Shard aggregator lock DataDog/datadog-go#351][], thanks [@​opsengine][].
• [IMPROVEMENT] Fix race condition in statsd external_env initialization. See [https://github.com/Fix race condition in statsd external_env initialization DataDog/datadog-go#352][], thanks [@​jprobinson][].

See the CHANGELOG for the details on previous releases.

Changelog

Sourced from github.com/DataDog/datadog-go/v5's changelog.

5.8.3 / 2026-02-02

• [IMPROVEMENT] Shard aggregator lock. See #351[], thanks [@​opsengine][].
• [IMPROVEMENT] Fix race condition in statsd external_env initialization. See #352[], thanks [@​jprobinson][].

Commits

• c072b7e Update changelog and version number (#353)
• b808812 Shard aggregator lock (#351)
• e20587f Fix race condition in externalEnv initialization (#352)
• 411ddaf statsd: remove global cardinality (#346)
• 2132689 Merge pull request #348 from DataDog/carlosroman/AGTMETRICS-340-run-tests-in-...
• 6a9e0e3 Running all tests in Go 1.12
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.95.1 to 1.96.0

Commits

• bdb98c5 Release 2026-01-28
• c878d57 Regenerated Clients
• 4f5d503 Update API model
• b7bf952 Feat release s3 transfer manager v2 (#3293)
• 0baa1dc Release 2026-01-27
• 11eae4b Regenerated Clients
• 297caa5 Update endpoints model
• 43d96e4 Update API model
• de58dc6 Release 2026-01-26
• dba39e6 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/gofiber/fiber/v2 from 2.52.10 to 2.52.11

Release notes

Sourced from github.com/gofiber/fiber/v2's releases.

v2.52.11

What's Changed

🧹 Updates

• Improve mount functionality by @​gaby in gofiber/fiber#3900

🐛 Bug Fixes

• Backport defensive copying fixes from #3828 and #3829 to v2 by @​sixcolors in gofiber/fiber#3888
• Fixes and improvements for limiter middleware by @​gaby in gofiber/fiber#3899

Full Changelog: gofiber/fiber@v2.52.10...v2.52.11

Commits

• 65b0f3d Bump version to 2.52.11
• 1b53334 Modernize error handling in UUID functions (#3941)
• eb874b6 Merge commit from fork
• 4ff945a 🩹 bug: Fix ErrorHandler invocation for mounted sub-apps (#3907)
• 68d80a0 🩹 bug: Fix Fprint to use format instead of fmtArgs (#3924)
• 5346c81 🔧 chore: Upgrade setup-go action from v5 to v6 in workflow files
• 54fa41d Update AGENTS.md with coding practices and commands
• a290d14 🐛 bug: Fixes and improvements for limiter middleware (#3899)
• 3927e17 🧹 chore: Improve mount functionality (#3900)
• 0786b39 🐛 Backport defensive copying fixes from #3828 and #3829 to v2 (#3888)
• See full diff in compare view

Updates github.com/clipperhouse/uax29/v2 from 2.4.0 to 2.5.0

Release notes

Sourced from github.com/clipperhouse/uax29/v2's releases.

v2.5.0

What's Changed

• Unicode 17 by @​aymanbagabas in clipperhouse/uax29#44
• Fast paths for ASCII by @​clipperhouse in clipperhouse/uax29#42

Breaking change

The returned iterator type from FromString() and FromBytes() is now a pointer. This will not present a problem if you are just using it in the typical way, which is assigning to a local variable and iterating.

If you are embedding this iterator into another object, and therefore declaring its type, this change might break your compilation. You’ll need to change to a pointer type. Apologies if so — this seems like a small enough change that a v3 would be a bit much.

New Contributors

• @​aymanbagabas made their first contribution in clipperhouse/uax29#44

Full Changelog: clipperhouse/uax29@v2.4.0...v2.5.0

Commits

• 28fa096 Update doc.go
• 74f9695 Unicode 17 references & links
• 6b7759f Unicode 17 (#44)
• 7f9e9f4 Fast paths for ASCII (#42)
• See full diff in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.3.1

What's Changed

🔐 Features

• Add spellcheck Github action to catch common spelling mistakes by @​equalsgibson in golang-jwt/jwt#458
• Add WithNotBeforeRequired parser option and add test coverage by @​equalsgibson in golang-jwt/jwt#456
• Update godoc example func to properly refer to NewWithClaims() by @​equalsgibson in golang-jwt/jwt#459
• Update github workflows by @​mfridman in golang-jwt/jwt#462
• Additional test for CustomClaims that validates unmarshalling behaviour by @​equalsgibson in golang-jwt/jwt#457
• Fix early file close in jwt cli by @​mfridman in golang-jwt/jwt#472
• Add TPM signature reference by @​salrashid123 in golang-jwt/jwt#473
• Remove misleading ParserOptions documentation in golang-jwt/jwt#484
• Save signature to Token struct after successful signing by @​EgorSheff in golang-jwt/jwt#417
• Set token.Signature in ParseUnverified by @​slickwilli in golang-jwt/jwt#414

👒 Dependencies

• Bump crate-ci/typos from 1.34.0 to 1.35.3 by @​dependabot[bot] in golang-jwt/jwt#461
• Bump crate-ci/typos from 1.35.4 to 1.36.2 by @​dependabot[bot] in golang-jwt/jwt#470
• Bump github/codeql-action from 3 to 4 by @​dependabot[bot] in golang-jwt/jwt#478
• Bump crate-ci/typos from 1.36.2 to 1.39.0 by @​dependabot[bot] in golang-jwt/jwt#480
• Bump golangci/golangci-lint-action from 8 to 9 by @​dependabot[bot] in golang-jwt/jwt#481
• Bump actions/setup-go from 5 to 6 by @​dependabot[bot] in golang-jwt/jwt#469
• Bump crate-ci/typos from 1.39.0 to 1.40.0 by @​dependabot[bot] in golang-jwt/jwt#488
• Bump actions/checkout from 5 to 6 by @​dependabot[bot] in golang-jwt/jwt#487
• Bump crate-ci/typos from 1.40.0 to 1.41.0 by @​dependabot[bot] in golang-jwt/jwt#490
• Bump crate-ci/typos from 1.41.0 to 1.42.1 by @​dependabot[bot] in golang-jwt/jwt#492

New Contributors

• @​equalsgibson made their first contribution in golang-jwt/jwt#458
• @​salrashid123 made their first contribution in golang-jwt/jwt#473
• @​EgorSheff made their first contribution in golang-jwt/jwt#417
• @​slickwilli made their first contribution in golang-jwt/jwt#414

Full Changelog: golang-jwt/jwt@v5.3.0...v5.3.1

Commits

• 7ceae61 Add release.yml for changelog configuration
• dce8e4d Set token.Signature in ParseUnverified (#414)
• 8889e20 Save signature to Token struct after successful signing (#417)
• d237f82 ci: update github-actions schedule interval to monthly
• d8dce95 Bump crate-ci/typos from 1.41.0 to 1.42.1 (#492)
• e931803 Bump crate-ci/typos from 1.40.0 to 1.41.0 (#490)
• e6a0afa Bump actions/checkout from 5 to 6 (#487)
• 9f85c9e Bump crate-ci/typos from 1.39.0 to 1.40.0 (#488)
• 60a8669 Bump actions/setup-go from 5 to 6 (#469)
• 76f5828 Remove misleading ParserOptions documentation (#484)
• Additional commits viewable in compare view

Updates github.com/nats-io/nkeys from 0.4.12 to 0.4.15

Commits

• 0f43077 Merge pull request #83 from nats-io/fix-release-action
• 83b1ce1 chore(workflows): disable Go installation in staticcheck action
• 9e5e0cf chore(workflows): switch to go-version-file for setup-go in workflows
• 06ac8f5 chore(actions): added a toolchain for go1.24.12
• ff35292 Merge pull request #82 from nats-io/fix-release-action
• c59e933 chore(actions): upgrade setup-go to v6 in workflows
• e14f241 chore(deps): update golang.org/x/crypto to v0.47.0 and golang.org/x/sys to v0...
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.21.0 to 1.21.1

Commits

• e155bb7 Release 2023-10-06
• 9d342ba Regenerated Clients
• 1df9914 Update SDK's smithy-go dependency to v1.15.0
• 32ada3a Update API model
• 12ba4ac Release 2023-10-05
• be8a8e0 Regenerated Clients
• dc38adb Update endpoints model
• a52086e Update API model
• 1ed22c1 Release 2023-10-04
• e007bcd Regenerated Clients
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[versity-github]

This won't automatically run in continuous integration without approval. A member of the Versity organization must allow it.

[niksis02]

@benmcclelland I see that the latest version for nkeys is 0.4.12 again in github.
Versions list.

We are going to face the same problem with direct Go proxy trying to fetch the version from github, if we updated the nkeys version