deepmap
fix(client): correctly prepare requests when `omitZero` is set on fields
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
| Diff | Package | Supply Chain Security |
Vulnerability | Quality | Maintenance | License |
|---|
![socket-security[bot] avatar](https://avatars.githubusercontent.com/in/156372?v=4 "Published by a pub.dev verified publisher"){kind=small}
Kusari Analysis Results:
✅ No Flagged Issues Detected
All values appear to be within acceptable risk parameters.
Both dependency and code security analyses completed successfully with zero critical security issues identified. The PR adds well-known testing libraries (testify, go-spew, go-difflib) to test code only, with no security vulnerabilities or exposed secrets detected. While some dependencies show maintenance concerns, these are typical for mature, stable libraries and do not pose security risks. The changes are isolated to internal test code (internal/test/issues/2074/), minimizing production impact. All security checks passed cleanly across both analyses.
Expand to see all dependency changes, security advisories, scorecard checks, etc.
Dependency Changes Introduced
| Status | Package | Change | Version | Latest Version | Advisories | License |
|---|---|---|---|---|---|---|
| ⚠️ Flagged | github.com/pmezard/go-difflib | added | 1.0.0 | v1.0.0 | None | BSD-3-Clause (permissive) |
| ⚠️ Flagged | stdlib | added | 1.24 | Unknown | None | Unknown |
| ⚠️ Flagged | github.com/apapsch/go-jsonmerge/v2 | added | 2.0.0 | v2.0.0 | None | MIT (permissive) |
| ⚠️ Flagged | github.com/davecgh/go-spew | added | 1.1.1 | v1.1.1 | None | ISC (permissive) |
| ⚠️ Flagged | github.com/google/uuid | added | 1.5.0 | v1.6.0 | None | BSD-3-Clause (permissive) |
| ⚠️ Flagged | github.com/oapi-codegen/runtime | added | 1.1.2 | v1.1.2 | None | Apache-2.0 (permissive) |
| ✅ Safe | github.com/stretchr/testify | added | 1.10.0 | v1.11.1 | None | MIT (permissive) |
| ✅ Safe | gopkg.in/yaml.v3 | added | 3.0.1 | v3.0.1 | None | Apache-2.0 (permissive), MIT (permissive) |
Scorecard Checks
github.com/pmezard/go-difflib:
- Maintained: 0/10 ⚠️ Repo is not maintained actively in the last 90 days.
- Code Review: 1/10 ⚠️ Project does not require human code review before all pull requests (aka merge requests) are merged.
stdlib:
No information was found for this package which is very concerning
github.com/apapsch/go-jsonmerge/v2:
- Maintained: 0/10 ⚠️ Repo is not maintained actively in the last 90 days.
- Code Review: 0/10 ⚠️ Project does not require human code review before all pull requests (aka merge requests) are merged.
github.com/davecgh/go-spew:
- Maintained: 0/10 ⚠️ Repo is not maintained actively in the last 90 days.
- Code Review: 6/10
github.com/google/uuid:
- Maintained: 0/10 ⚠️ Repo is not maintained actively in the last 90 days.
- Code Review: 10/10
github.com/oapi-codegen/runtime:
- Maintained: 0/10 ⚠️ Repo is not maintained actively in the last 90 days.
- Code Review: 7/10
Files where issues may be found
Dependency Files:
- internal/test/issues/2074/go.mod
@kusari-inspector rerun - Trigger a re-analysis of this PR @kusari-inspector feedback [your message] - Send feedback to our AI and team See Kusari's documentation for setup and configuration. Commit: bd70810a065b821e9c578bf3a579a9f38a0027e7, performed at: 2025-09-03T10:19:26Z
Found this helpful? Give it a 👍 or 👎 reaction!
![kusari-inspector[bot] avatar](https://avatars.githubusercontent.com/in/1220830?v=4 "Published by a pub.dev verified publisher"){kind=small}
Kusari PR Analysis rerun based on - bd70810a065b821e9c578bf3a579a9f38a0027e7 performed at: 2025-09-03T10:43:51Z - link to updated analysis