Skip to content

fix(deps): update module github.com/aws/amazon-s3-encryption-client-go/v3 to v4#305

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x
Open

fix(deps): update module github.com/aws/amazon-s3-encryption-client-go/v3 to v4#305
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x

Conversation

@renovate

@renovate renovate Bot commented Jun 17, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
github.com/aws/amazon-s3-encryption-client-go/v3 v3.2.0v4.0.0 age confidence

Release Notes

aws/amazon-s3-encryption-client-go (github.com/aws/amazon-s3-encryption-client-go/v3)

v4.0.0: -- 2025-12-16

Compare Source

Features
  • Updates to the S3 Encryption Client

See migration guide from 3.x to 4.x: link

⚠ BREAKING CHANGES
  • The S3 Encryption Client now uses key committing algorithm suites by default.
  • Removed S3EncryptionClientV3 in favor of the upgraded S3EncryptionClientV4
  • Updated expectations for custom implementations of the CryptographicMaterialsManager interface.
    • Custom implementations of the interface's GetEncryptionMaterials method MUST set the AlgorithmSuite field on the returned EncryptionMaterials.
      • The provided DefaultCryptographicMaterialsManager's GetEncryptionMaterials method and the provided NewEncryptionMaterials method set this field from the AlgorithmSuite provided in the req EncryptionMaterialsRequest.
      • If the custom implementation wraps the provided DefaultCryptographicMaterialsManager.GetEncryptionMaterials method or calls the provided NewEncryptionMaterials method, it's likely that no code updates are required. The provided logic has been updated with this change.
    • Custom implementations of the interface's DecryptMaterials method MUST set the KeyCommitment field on the returned CryptographicMaterials.
      • The provided DefaultCryptographicMaterialsManager's DecryptMaterials method and the provided DecryptMaterials method set this field from the KeyCommitment provided in the req DecryptMaterialsRequest.
      • If the custom implementation wraps the provided DefaultCryptographicMaterialsManager.DecryptMaterials method or calls the provided NewDecryptionMaterials method, it's likely that no code updates are required. The provided logic has been updated with this change.
  • Updated expectations for custom implementations of the Keyring interface.
    • Custom implementations of the interface's OnDecrypt method MUST set the KeyCommitment field on the returned CryptographicMaterials.
      • The provided KmsKeyring's OnDecrypt method and the provided commonDecrypt method set this field from the KeyCommitment provided in the materials DecryptionMaterials.
      • If the custom implementation wraps the provided KmsKeyring.OnDecrypt method or calls the provided commonDecrypt method, it's likely that no code updates are required. The provided logic has been updated with this change.
Fixes
  • Fixed an issue where nonces of invalid lengths could cause a panic during decryption.

Configuration

📅 Schedule: (in timezone America/Los_Angeles)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • "every weekend"

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot requested a review from nathanhruby as a code owner June 17, 2026 03:10
@renovate renovate Bot force-pushed the renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x branch 8 times, most recently from 9b9ca53 to f065219 Compare June 19, 2026 22:16
@nathanhruby

Copy link
Copy Markdown
Contributor

Needs more help with migration

@renovate renovate Bot force-pushed the renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x branch 2 times, most recently from b945a00 to f994528 Compare June 19, 2026 22:25

@nathanhruby nathanhruby left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hold

@renovate renovate Bot force-pushed the renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x branch 10 times, most recently from afe13ba to 32f92ba Compare June 27, 2026 06:03
@renovate renovate Bot force-pushed the renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x branch 3 times, most recently from 5b3bb64 to 07e7583 Compare June 30, 2026 07:37
@renovate renovate Bot force-pushed the renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x branch 2 times, most recently from 741727a to a3106d6 Compare July 2, 2026 15:58
@renovate renovate Bot force-pushed the renovate/github.com-aws-amazon-s3-encryption-client-go-v3-4.x branch from a3106d6 to 5ad6c9f Compare July 3, 2026 20:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant