fix(deps): bump the go-deps group across 1 directory with 3 updates

[dependabot]

Bumps the go-deps group with 2 updates in the / directory: golang.org/x/crypto and modernc.org/sqlite.

Updates golang.org/x/crypto from 0.49.0 to 0.50.0

Commits

• 03ca0dc go.mod: update golang.org/x dependencies
• 8400f4a ssh: respect signer's algorithm preference in pickSignatureAlgorithm
• 81c6cb3 ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength
• See full diff in compare view

Updates golang.org/x/sys from 0.42.0 to 0.43.0

Commits

• f33a730 windows: support nil security descriptor on GetNamedSecurityInfo
• 493d172 cpu: add runtime import in cpu_darwin_arm64_other.go
• 2c2be75 windows: use syscall.SyscallN in Proc.Call
• a76ec62 cpu: roll back "use IsProcessorFeaturePresent to calculate ARM64 on windows"
• See full diff in compare view

Updates modernc.org/sqlite from 1.48.0 to 1.49.1

Commits

• fe575e4 doc.go: update SQLite version
• 3ccb9ca upgrade to SQLite 3.53.0
• df16977 CHANGELOG.md: add !112
• 172c395 Merge branch 'fix-openv2-handle-leak' into 'master'
• 2719730 fix openV2 handle leak, TLS leak, and misleading error on failed open
• 53c87f6 CHANGELOG.md: add !111
• c324f37 Merge branch 'fix-backup-restore-error-handle' into 'master'
• fc791df read error from correct db handle on backup init failure
• 1620515 CHANGELOG.md: add !109
• 72aaab4 Merge branch 'errstr-for-db' into 'master'
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

🟢 Change Impact Analysis

Metric	Value
Risk Level	LOW 🟢
Files Changed	1
Symbols Changed	1
Directly Affected	0
Transitively Affected	0

Blast Radius: 0 modules, 0 files, 0 unique callers

📝 Changed Symbols (1)

Symbol	File	Type	Confidence
go.mod	go.mod	modified	30%

Recommendations

• ℹ️ coverage: 1 symbols have low mapping confidence. Index may be stale.
  • Action: Run 'ckb index' to refresh the SCIP index

---

_{Generated by CKB}

[github-actions]

CKB Analysis

🎯 1 changed → 0 affected · 🔥 2 hotspots · 📚 197 stale

Risk factors: Touches 2 hotspot(s)

👥 Suggested: @[email protected] (100%), @[email protected] (100%), @[email protected] (50%)

Metric	Value
Impact Analysis	1 symbols → 0 affected	🟢
Doc Coverage	6.598984771573605%	⚠️
Complexity	0 violations	✅
Coupling	0 gaps	✅
Blast Radius	0 modules, 0 files	✅
Index	indexed (0s)	🆕

🎯 Change Impact Analysis · 🟢 LOW · 1 changed → 0 affected

Metric	Value
Symbols Changed	1
Directly Affected	0
Transitively Affected	0
Modules in Blast Radius	0
Files in Blast Radius	0

Symbols changed in this PR:

• go.mod [modified] (30%) — go.mod

Recommendations:

• ℹ️ 1 symbols have low mapping confidence. Index may be stale.
  • Action: Run 'ckb index' to refresh the SCIP index

🔥 Hotspots · 2 volatile files

File	Churn Score
go.mod	7.59
go.sum	9.34

💡 Quick wins · 10 suggestions

• 🟡 Add tests → cmd/ckb/format_test.go
• 🟡 Add tests → internal/audit/analyzer.go
• 🟡 Add tests → internal/webhooks/format_test.go
• 🟡 Add tests → internal/backends/scip/references.go
• 🟡 Add tests → internal/query/symbols_test.go
• 🟢 Assign backup owner → cmd/ckb/format_test.go
• 🟢 Assign backup owner → internal/audit/analyzer.go
• 🟢 Assign backup owner → internal/webhooks/format_test.go

📚 Stale docs · 197 broken references

• docs/CONTRIBUTING.md:108 → errors.New
• docs/CONTRIBUTING.md:108 → errors.SYMBOL_NOT_FOUND
• docs/CONTRIBUTING.md:111 → errors.Wrap
• docs/backlog/index-refresh-improvements.md:36 → watcher.Add
• docs/backlog/index-refresh-improvements.md:36 → filepath.Join
• docs/backlog/index-refresh-improvements.md:97 → time.Second
• docs/featureplans/change-impact-analysis-checklist.md:208 → coverage.out
• docs/featureplans/change-impact-analysis-checklist.md:214 → lcov.info
• docs/featureplans/change-impact-analysis-checklist.md:309 → coverage.out
• docs/featureplans/change-impact-analysis.md:448 → scip.SCIPIndex
• docs/featureplans/change-impact-analysis.md:478 → context.Context
• docs/featureplans/change-impact-analysis.md:669 → coverage.out
• docs/features/a2a/overview.md:41 → index.initialized
• docs/features/a2a/overview.md:42 → index.fresh
• docs/features/a2a/overview.md:43 → index.commitsBehind

---

_{Generated by CKB · Run details}

[github-actions]

CKB Review: ✅ PASS — 98/100

2 files (+68 changes) · 2 modules

Changes 2 files across 2 modules. No blocking issues found.

Check	Status	Detail
hotspots	ℹ️ INFO	2 hotspot file(s) touched
blast-radius	ℹ️ INFO	No symbols with callers in changes
coupling	✅ PASS	No missing co-change files
risk	✅ PASS	Risk score: 0.20 (low)
complexity	✅ PASS	No significant complexity increase
comment-drift	✅ PASS	No comment/code drift detected
format-consistency	✅ PASS	No format consistency issues
bug-patterns	✅ PASS	No bug patterns detected
secrets	✅ PASS	No secrets detected
tests	✅ PASS	0 test(s) cover the changes
health	✅ PASS	No significant health changes
breaking	✅ PASS	No breaking API changes
dead-code	✅ PASS	No dead code in changed files
unwired	✅ PASS	All exported symbols are reachable from entrypoints
test-gaps	✅ PASS	All changed functions have tests
arch-health	⚪ SKIP	Cartographer not compiled in this build
layers	⚪ SKIP	Cartographer not compiled in this build

Change Breakdown

Category	Files	Review Priority
config	2	🟢 Quick check

Code Health

Estimated review: ~18min (trivial)

Reviewers: lisa.welsch1985 (100%) · talantyyr (100%) · lisa (50%)

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml