chore(deps): bump the dependencies group across 1 directory with 2 updates

[dependabot]

Bumps the dependencies group with 2 updates in the / directory: github.com/mattn/go-isatty and github.com/openfga/openfga.

Updates github.com/mattn/go-isatty from 0.0.21 to 0.0.22

Commits

• 9a68506 Fix isCygwinPipeName to accept Windows 7 trailing suffix (#90)
• See full diff in compare view

Updates github.com/openfga/openfga from 1.14.1 to 1.15.0

Release notes

Sourced from github.com/openfga/openfga's releases.

v1.15.0

What's Changed

• chore: fix reporter links in changelog by @​Vic-Dev in openfga/openfga#3069
• feat: reuse PostgreSQL container across tests by @​rafanaskin in openfga/openfga#3018
• fix: v2Check honours check-query-cache-enabled flag by @​saad-h1 in openfga/openfga#3070
• Add tracing to v2 Check planner strategy selection by @​Vic-Dev in openfga/openfga#3077
• CI speed up by @​poovamraj in openfga/openfga#3062
• chore: add store ID and datastore query/item count to shadowV2Check log by @​saad-h1 in openfga/openfga#3073
• update toolchain go to 1.26.2 to address stdlib CVEs by @​justincoh in openfga/openfga#3084
• list objects pipeline edge pruning by @​senojj in openfga/openfga#3075
• feat: add jitter to internal cache TTLs to prevent thundering herd effects by @​officialasishkumar in openfga/openfga#3033
• feat: try to use UDS internally between HTTP server and gRPC server by @​senojj in openfga/openfga#2937
• chore(deps): bump grpc-ecosystem/grpc-health-probe from v0.4.47 to v0.4.48 in the dependencies group across 1 directory by @​dependabot[bot] in openfga/openfga#3065
• chore(deps): bump github.com/jackc/pgx/v5 from 5.9.1 to 5.9.2 by @​dependabot[bot] in openfga/openfga#3085
• chore(deps): bump the dependencies group across 1 directory with 7 updates by @​dependabot[bot] in openfga/openfga#3081
• fix: v2Check correctly uses query cache even when cache controller is disabled by @​saad-h1 in openfga/openfga#3086
• chore(deps): bump the dependencies group across 1 directory with 4 updates by @​dependabot[bot] in openfga/openfga#3087
• release: update changelog for release v1.15.0 by @​justincoh in openfga/openfga#3090

New Contributors

• @​officialasishkumar made their first contribution in openfga/openfga#3033

Full Changelog: openfga/openfga@v1.14.2...v1.15.0

v1.14.2

Fixed

• Use delimiter in contextual tuple key in experimental weighted_graph_check, and add validation in v2Check. Thanks to @​0xmrma for reporting this bug. #3064

Full Changelog: openfga/openfga@v1.14.1...v1.14.2

Changelog

Sourced from github.com/openfga/openfga's changelog.

[1.15.0] - 2026-04-27

Changed

• Implemented edge pruning in the list objects pipeline algorithm. This introduces a measurable improvement to request latency for larger, more complex authorization models. #3075

Fixed

• Fixed experimental weighted_graph_check query cache being skipped when the cache controller returns a zero invalidation time (e.g., on cold start or when disabled), despite the cache controller documenting that zero time should allow cache use. #3086

Security

• Update toolchain Go version to 1.26.2 to address the Go standard library vulnerabilities documented in the Go 1.26.2 release notes. #3084

[1.14.2] - 2026-04-14

Fixed

• Use delimiter in contextual tuple key in experimental weighted_graph_check, and add validation in v2Check. Thanks to @​0xmrma for reporting this bug. #3064

Commits

• 83b2b46 release: update changelog for release v1.15.0 (#3090)
• b309031 chore(deps): bump the dependencies group across 1 directory with 4 updates (#...
• 75f503d fix: v2Check correctly uses query cache even when cache controller is disable...
• b55baa3 chore(deps): bump the dependencies group across 1 directory with 7 updates (#...
• c21aa43 chore(deps): bump github.com/jackc/pgx/v5 from 5.9.1 to 5.9.2 (#3085)
• 3fad454 chore(deps): bump grpc-ecosystem/grpc-health-probe from v0.4.47 to v0.4.48 in...
• e58019a feat: try to use UDS internally between HTTP server and gRPC server (#2937)
• 22a3f51 feat: add jitter to internal cache TTLs to prevent thundering herd effects (#...
• 6519ff5 list objects pipeline edge pruning (#3075)
• 96f0bf9 update toolchain go to 1.26.2 to address stdlib CVEs (#3084)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	github.com/​openfga/​openfga@​v1.14.1 ⏵ v1.15.0
	github.com/​mattn/​go-isatty@​v0.0.21 ⏵ v0.0.22

View full report