Skip to content

Bump github.com/aptos-labs/aptos-go-sdk from 1.12.1-0.20260318141106-21b6ef4ed363 to 1.12.1#399

Open
dependabot[bot] wants to merge 2 commits intodevelopfrom
dependabot/go_modules/github.com/aptos-labs/aptos-go-sdk-1.12.1
Open

Bump github.com/aptos-labs/aptos-go-sdk from 1.12.1-0.20260318141106-21b6ef4ed363 to 1.12.1#399
dependabot[bot] wants to merge 2 commits intodevelopfrom
dependabot/go_modules/github.com/aptos-labs/aptos-go-sdk-1.12.1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 24, 2026

Bumps github.com/aptos-labs/aptos-go-sdk from 1.12.1-0.20260318141106-21b6ef4ed363 to 1.12.1.

Release notes

Sourced from github.com/aptos-labs/aptos-go-sdk's releases.

v1.12.1

What's Changed

New Contributors

Full Changelog: aptos-labs/aptos-go-sdk@v1.12.0...v1.12.1

Changelog

Sourced from github.com/aptos-labs/aptos-go-sdk's changelog.

v1.12.1 (3/18/2026)

  • [Fix] properly closing client responses on errors
  • [Fix] Increase default max gas amount by 10x from 100,000 to 1,000,000 (0.01 APT)
  • [Fix] Always use default transport, and reuse it

v1.12.0 (2/25/2026)

  • [Refactor] Simplify type conversion logic by removing CompatibilityMode option handling in ConvertToVectorU8
  • [Fix] Change string to vector conversion behavior - strings are now consistently treated as UTF-8 bytes instead of hex strings
  • [Fix] Add nil bytes validation to prevent converting nil bytes to vector
  • [Fix] Improve compatibility mode serialization for nested option and string types
  • [Fix] Fix logic issue in batch submit transactions
  • [Fix] Ensure addresses are zero'd out before being parsed
  • [Test] Enhance type conversion tests for option and vector types with nested structures
  • [Security] Upgrade crypto library and graphql client libraries
  • [Security][Breaking] Private key String() methods now return redacted output to prevent accidental logging; use ToAIP80() or ToHex() when explicit key access is needed
  • [Security] Add Clear() methods to Ed25519PrivateKey and Secp256k1PrivateKey for zeroing key material from memory
  • [Security] Add explicit TLS 1.2 minimum version configuration to HTTP client
  • [Security] Add mutex protection for thread-safe header access in NodeClient
  • [Security] Limit HTTP error response body reads to prevent memory exhaustion from malicious servers
  • [Fix] Fix MultiEd25519PublicKey.Verify() to properly use bitmap for signature verification; add BitmapIndices() helper method
  • [Fix] Replace println with slog.Warn for AIP-80 compliance warnings in private key parsing
  • [Fix] Update GetCoinBalances to use current_fungible_asset_balances indexer query instead of removed current_coin_balances

v1.11.0 (9/26/2025)

  • Refactor address internal packages to be more clear
  • [Feature] Add AccountAddress.StringShort() for short string representation.
  • Upgrade dependencies

v1.10.0 (6/20/2025)

  • [Feature] Add orderless transaction support

v1.9.0 (6/8/2025)

  • [Breaking] Change how plain text arguments are parsed from inputs. All inputs now have to be []any and will work nested properly.
  • [Feature] Add CompatibilityMode to ConvertArg so that it can be used to convert arguments similar to the original TS SDK.

v1.8.0 (6/3/2025)

  • [Feature] Added EventsByCreationNumber API to fetch events by creation number for a given account

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump github.com/aptos-labs/aptos-go-sdk
a957da0 
Bumps [github.com/aptos-labs/aptos-go-sdk](https://github.com/aptos-labs/aptos-go-sdk) from 1.12.1-0.20260318141106-21b6ef4ed363 to 1.12.1.
- [Release notes](https://github.com/aptos-labs/aptos-go-sdk/releases)
- [Changelog](https://github.com/aptos-labs/aptos-go-sdk/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aptos-labs/aptos-go-sdk/commits/v1.12.1)

---
updated-dependencies:
- dependency-name: github.com/aptos-labs/aptos-go-sdk
  dependency-version: 1.12.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies-go Go Dependency Updates label Mar 24, 2026
@dependabot dependabot bot requested a review from a team as a code owner March 24, 2026 03:24
@dependabot dependabot bot added the dependencies-go Go Dependency Updates label Mar 24, 2026
@app-token-issuer-integrations
[dependabot skip] Tidy all Go modules
872b1cd 
This commit was created from the local commit with hash 8ac08b757d42265d55800b12f0283b82d19d0d9c.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies-go Go Dependency Updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants