Thanks to visit codestin.com
Credit goes to github.com

Skip to content

chore: bump github.com/open-policy-agent/opa from 1.6.0 to 1.14.0#22480

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/github.com/open-policy-agent/opa-1.14.0
Open

chore: bump github.com/open-policy-agent/opa from 1.6.0 to 1.14.0#22480
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/github.com/open-policy-agent/opa-1.14.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 2, 2026

Bumps github.com/open-policy-agent/opa from 1.6.0 to 1.14.0.

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v1.14.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

  • Improved rule indexing of variable assignments and x in {...} expressions
  • Support for --h2c with unix domain socket for opa run
  • A new glossary tooltip for technical terms in the docs
  • Fixes published in the v1.13.1 and v1.13.2 releases

Improved rule indexing of variable assignments and x in {...} expressions (#1841)

With this change, the rule indexer will index expressions like:

allow if input.role in {"admin", "user"}

On lookup, the rule body will only be returned if input.role is either one of "admin" or "user".

The reverse case is also indexed:

allow if "admin" in input.roles

in which the searched collection is unknown.

Authored by @​srenatus reported by @​nischalsheth

Runtime, SDK, Tooling

Compiler, Topdown and Rego

... (truncated)

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

1.14.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

  • Improved rule indexing of variable assignments and x in {...} expressions
  • Support for --h2c with unix domain socket for opa run
  • A new glossary tooltip for technical terms in the docs
  • Fixes published in the v1.13.1 and v1.13.2 releases

Improved rule indexing of variable assignments and x in {...} expressions (#1841)

With this change, the rule indexer will index expressions like:

allow if input.role in {"admin", "user"}

On lookup, the rule body will only be returned if input.role is either one of "admin" or "user".

The reverse case is also indexed:

allow if "admin" in input.roles

in which the searched collection is unknown.

Authored by @​srenatus reported by @​nischalsheth

Runtime, SDK, Tooling

Compiler, Topdown and Rego

... (truncated)

Commits
  • acf81e8 Release v1.14.0 (#8379)
  • b4b04a6 ci: Fix check-changes job skipping over YAML changes. (#8377)
  • 3c5b7c6 docs: Document metrics for http.send, regex, and glob builtins (#8103)
  • 29918f9 rego: disable rule indexing for benchmark
  • 9d124cb ast: Ensure term values implement string lengther (#8374)
  • 32b97ae ast: make rule index track var assignments and x in {...} (#8341)
  • 7cfd092 docs: update interface{} -> any in golang snippets (#8373)
  • 98f7752 Return correct location of unsafe var in object (#8371)
  • 299bbd4 compile: Add StringLength to lazy object (#8370)
  • dc7995e workflows/benchmark: persist credentials, we need them for pushing
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore: bump github.com/open-policy-agent/opa from 1.6.0 to 1.14.0
fa345b5 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 1.6.0 to 1.14.0.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](open-policy-agent/opa@v1.6.0...v1.14.0)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-version: 1.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Mar 2, 2026
@dependabot dependabot bot mentioned this pull request Mar 2, 2026
Closed
@github-actions github-actions bot enabled auto-merge (squash) March 2, 2026 12:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants