bumped go deps

2026-03-28 00:13:56 +02:00
parent 45d353ffdb
commit d87fa3bd80
4 changed files with 13 additions and 10 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,9 @@

 - Fixed OAuth2 client secret reset when marshalizing a cached collection model.

+- Bumped all Go deps.
+    _This should silent recent spam reports and security scanners regarding [CVE-2026-33809](https://www.cve.org/CVERecord?id=CVE-2026-33809) `golang.org/x/image` bug (it is not an issue in PocketBase because we don't support TIFF thumbs)._
+

 ## v0.36.7