Bump the all-deps group across 1 directory with 6 updates

[dependabot]

Bumps the all-deps group with 4 updates in the / directory: github.com/Kairum-Labs/should, github.com/nats-io/nats-server/v2, github.com/pion/stun/v3 and go.etcd.io/bbolt.

Updates github.com/Kairum-Labs/should from 0.2.2 to 0.2.3

Release notes

Sourced from github.com/Kairum-Labs/should's releases.

v0.2.3

What's Changed

• fix: correct spelling and format in README and assertion messages by @​Andrei-hub11 in Kairum-Labs/should#58
• ci: add commit message validation workflow and hook script by @​Andrei-hub11 in Kairum-Labs/should#60
• ci: upgrade GitHub Actions to Node.js 24 compatible versions by @​Andrei-hub11 in Kairum-Labs/should#64
• refactor: enhance EndWith/StartWith with truncation and case checks by @​Andrei-hub11 and @​ccoVeille in Kairum-Labs/should#63
• fix: align public wrappers with assert package by @​Andrei-hub11 and @​ccoVeille in Kairum-Labs/should#66
• feat: prepare for v0.2.3 by @​Andrei-hub11 in Kairum-Labs/should#69

Full Changelog: Kairum-Labs/should@v0.2.2...v0.2.3

Changelog

Sourced from github.com/Kairum-Labs/should's changelog.

[0.2.3] - 2026-06-21

Bug Fixes

• Correct spelling and formatting in README examples and assertion messages
• Align public wrappers with assert package
• Correct EndWith suffix matching and displayed suffix excerpts
• Unify truncation markers in string assertion error messages

Refactor

• Improve StartWith and EndWith truncation and case-check handling

Miscellaneous Tasks

• Add commit message validation workflow, hook script, and Bats coverage
• Upgrade GitHub Actions to Node.js 24 compatible versions

Documentation

• Normalize Go doc links

Testing

• Add wrapper parity tests for the public assertion API

[0.2.0] - 2025-09-13

Features

• Add BeSorted assertion
• Add BeSameTime assertion for time comparisons
• Add BeError, BeErrorIs and BeErrorAs assertions for error
• Add formatted message support for assertions
• Add NotBeError assertion to verify no error occurs
• Add BeWithin assertion for float comparisons

Refactor

• Consolidate assertion options into options.go
• Rename ContainFunc to AnyMatch
• Streamline BeEqual assertion for primitive types
• Remove actual value from BeOfType error output
• Update time msgs and type check in equality

Documentation

• Update README with Go Reference badge and remove unused SliceOrArray constraint from types
• Enhance CONTRIBUTING.md with golangci-lint guidelines and usage instructions
• Update README and refactor assertion types

... (truncated)

Commits

• 2fb3bf7 feat: prepare for v0.2.3
• 24a8b17 fix: align public wrappers with assert package
• bf64067 refactor: enhance EndWith/StartWith with truncation and case checks
• b00cbc7 ci: upgrade GitHub Actions to Node.js 24 compatible versions
• 650a91a ci: add commit message validation workflow and hook script
• f8dee25 fix: correct spelling and format in README and assertion messages
• See full diff in compare view

Updates github.com/nats-io/nats-server/v2 from 2.14.0 to 2.14.2

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.14.2

Changelog

Refer to the 2.14 Upgrade Guide for backwards compatibility notes with 2.12.x. Please note that the 2.13.x version was skipped.

Go Version

• 1.26.3

Dependencies

• golang.org/x/crypto v0.52.0
• golang.org/x/sys v0.45.0
• github.com/nats-io/jwt/v2 v2.8.2
• github.com/nats-io/nkeys v0.4.16

Improved

General

• The client ID is now available through the embedded ClientAuthentication API (#8217)

Fixed

General

• A race condition when handling subscription interest over routes has been fixed (#8235)
• Potential protocol-level corruption from rewriting $JS.ACK subjects has been fixed (#8242)
• Potential protocol-level corruption from buffer misuse in compressed WebSocket clients has been fixed (#8244)
• The /accstatz monitoring endpoint no longer omits accounts with only leaf connections (#8252)

JetStream

• Fixed a case where Raft peers were not correctly tracked after an inactivity stall during catchup (#8226)
• Quorum needed is now calculated correctly when bootstrapping the metalayer when gateway URLs resolve to multiple IP addresses (#8238)
• The filestore no longer performs a block skip check on streams with extremely high subject counts, as it could result in runaway CPU usage (#8227)
• Fixed a case where the filestore would not release a lock after handling a write error (#8232)
• Purge operations on both file and memory stores are now more consistent with each other (#8241)
• Fixed a case where the consumer lock would not release a lock after handling a start sequence error (#8230)
• Counter streams and message schedules now have configuration constraints applied to prevent incorrect usage patterns (#8240)
• Improved stream and consumer scale down behaviour consistency (#8253)
• Fixed an issue where the per-subject state last block was not stored correctly with a max messages per subject limit of 1 (#8254)
• Fixed a drift that could occur in the peer sets after a peer remove of an online node (#8258)

Complete Changes

nats-io/nats-server@v2.14.1...v2.14.2

Release v2.14.2-RC.1

Changelog

... (truncated)

Commits

• 1d06592 Release v2.14.2
• 4e1aefa Cherry-picks for v2.14.2 (#8256)
• ac092ff Update dependencies
• 01e589d [FIXED] Peer set desync/re-add after stream peer-remove
• 3d122e8 De-flake TestJetStreamConsumerPrioritized
• 3836d96 [FIXED] Initial MaxMsgsPerSubject update not enforced
• 92cf2e3 [FIXED] Filestore only stores last block when MaxMsgsPerSubject 1
• 3288b4f (2.14) [IMPROVED] Remove redundant error check in filestore
• 6ea46d5 [FIXED] Stream and consumer scale down consistency
• 5edd91c [FIXED] AccountStatz omits accounts with only leaf connections
• Additional commits viewable in compare view

Updates github.com/nats-io/nkeys from 0.4.15 to 0.4.16

Release notes

Sourced from github.com/nats-io/nkeys's releases.

v0.4.16

What's Changed

• Validate public key length before ed25519 verify by @​aricart in nats-io/nkeys#86
• bumped version by @​aricart in nats-io/nkeys#87

Full Changelog: nats-io/nkeys@v0.4.15...v0.4.16

Commits

• c1eebf3 Merge pull request #87 from nats-io/bump
• 9e2706c bumped version
• d071bc9 Merge pull request #86 from nats-io/daniele/check-public-key-len
• b2262fd chore: bump go to 1.25 for staticcheck latest
• 77a71f8 Validate decoded seed length in DecodeSeed
• 57bc753 Validate public key length before ed25519 verify
• See full diff in compare view

Updates github.com/pion/stun/v3 from 3.1.2 to 3.1.6

Release notes

Sourced from github.com/pion/stun/v3's releases.

v3.1.6

Changelog

• e1234ac068ba5e0bb4e110c8fe1a548e0724f15f Fix UnknownAttributes encoding to match RFC 5389 (#280)

v3.1.5

Changelog

• 02391b37388c7be80b4dafaec9b3e708d58d2aed Upgrade dtls to fix compatibility with firefox

v3.1.4

Changelog

• 6a869cb3ce12869699dbf007fa48e1ce6760eca5 Update module github.com/pion/dtls/v3 to v3.1.3
• 8f24ef3b428599b877f0c013fe2cc93670e5bc04 Update module github.com/pion/transport/v4 to v4.0.2

v3.1.3

Changelog

• fa9f074a33a8059c76c960b1fbee39f308002423 Fix panic on short XOR-MAPPED-ADDRESS value
• 01aa5b8eefd0c0934c6aebd2bd6b6fa7d3c7d715 Throw an error when parsing message type 0x000
• c41a7f3240229f74db15968e1657c05b1ecb1037 Add opt-in strict mode and custom logger
• bc40ca270a5fe67eabce506c1f4e154f804dbc36 Ignore attributes after message-integrity
• 293095f9198ea72918620fb1e0177a9aaeb211db Update CI configs to v0.12.2

Commits

• e1234ac Fix UnknownAttributes encoding to match RFC 5389 (#280)
• 02391b3 Upgrade dtls to fix compatibility with firefox
• 6a869cb Update module github.com/pion/dtls/v3 to v3.1.3
• 8f24ef3 Update module github.com/pion/transport/v4 to v4.0.2
• fa9f074 Fix panic on short XOR-MAPPED-ADDRESS value
• 01aa5b8 Throw an error when parsing message type 0x000
• c41a7f3 Add opt-in strict mode and custom logger
• bc40ca2 Ignore attributes after message-integrity
• 293095f Update CI configs to v0.12.2
• See full diff in compare view

Updates go.etcd.io/bbolt from 1.4.3 to 1.5.0

Release notes

Sourced from go.etcd.io/bbolt's releases.

v0.5.0

See the CHANGELOG/v1.5.0 for more details.

Commits

• e7a8b2d Merge pull request #1217 from pjsharath28/update-go-release-1.5
• a916f11 bump go 1.25.11
• 43ec888 Merge pull request #1212 from Elbehery/20260527_remove_maxSize_guard
• d43321f chore(test): remove redundant MaxSize guard in TestDB_MaxSizeExceededDoesNotGrow
• c13504d Merge pull request #1211 from ahrtr/20260526_maxsize_changelog
• 0a8fbd9 Merge pull request #1210 from Elbehery/20260526_support_data_size_limit
• 63896b7 Update changelog for the feature of supporting setting file size limit
• a85b887 Reimplement the feature of support setting data file size limit
• 443486e test: add and update tests for MaxSize and MMap behavior
• a1f42c4 Merge pull request #1208 from etcd-io/dependabot/github_actions/golangci/gola...
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.51.0 to 0.52.0

Commits

• a1c0d99 go.mod: update golang.org/x dependencies
• 3c7c869 ssh: fix deadlock on unexpected channel responses
• 533fb3f ssh: fix source-address critical option bypass
• abbc44d ssh: fix incorrect operator order
• e052873 ssh: fix infinite loop on large channel writes due to integer overflow
• b61cf85 ssh: enforce user presence verification for security keys
• 9c2cd33 ssh: enforce strict limits on DSA key parameters
• 8907318 ssh: reject RSA keys with excessively large moduli
• ffd87b4 ssh: fix panic when authority callbacks are nil
• 4e7a738 ssh: fix deadlock on unexpected global responses
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions