• Organize README features, enhance testing, and update docs by @asim in https://github.com/micro/go-micro/pull/2955
• Enhance documentation, optimize images, and add health check feature by @asim in https://github.com/micro/go-micro/pull/2958
• Optimize image formats and fix lease re-registration issue by @asim in https://github.com/micro/go-micro/pull/2959
• feat(health): add RegistryCheck for registry connectivity health checks by @Copilot in https://github.com/micro/go-micro/pull/2957

Full Changelog: https://github.com/micro/go-micro/compare/v5.27.0...v5.28.0

Starting with this release, pdfcpu improves CLI usability with broader stdin/stdout pipeline support and stricter overwrite handling.

Check out the refreshed documentation at https://pdfcpu.io

Many commands now support - for stdin/stdout, making pdfcpu easier to use in shell pipelines. Explicit output files and non-empty output directories are no longer overwritten implicitly. Use the new global --force flag when overwriting is intentional.

Example:

pdfcpu optimize - out.pdf < in.pdf

or:

cat in.pdf | pdfcpu optimize - - > out.pdf

or a pipeline:

aws s3 cp s3://acme-contracts/master.pdf - \
      | pdfcpu optimize - - \
      | aws s3 cp - s3://acme-contracts/optimized/master.pdf

This release adds and refines several user-facing CLI features:

• Broader stdin/stdout support using -
• Global --force flag for explicit overwrite handling
• annotations list --json
• form list --json
• certificates list --json
• merge --bookmark-mode wrap|preserve
• Improved version command behavior
• Clarified help text around signature validation scope and trust boundaries

The new overwrite behavior is intentionally stricter. Existing scripts that relied on implicit overwrites may need to add --force.

The merge command now supports bookmark handling modes:

pdfcpu merge --bookmark-mode wrap out.pdf in1.pdf in2.pdf

Supported modes:

• wrap
• preserve

The default is wrap.

This release also improves bookmark tree preservation and handling of bookmark destination collisions.

JSON output is now available for selected listing commands:

pdfcpu annotations list --json in.pdf
pdfcpu form list --json in.pdf
pdfcpu certificates list --json

form list --json also supports multi-file form export JSON.

Standard builds now start with an empty trusted certificate directory.

Embedded EUTL certificate bundles are only included when building with:

-tags pdfcpu_eutl

certificates reset now resets the certificate directory to the build defaults.

This keeps standard builds smaller and avoids implying a bundled trust store unless it was explicitly selected at build time.

An experimental Windows 7 x64 build is available in the release assets:

pdfcpu_0.13.0_Windows_x86_64_win7_experimental.zip

This build uses a patched Go toolchain and is not part of the regular supported release matrix. Feedback from Windows 7 SP1 x64 users is welcome (at #870), especially the output of:

cmd
ver
pdfcpu.exe version
pdfcpu.exe validate test.pdf

This release adds configurable parser and resource limits for:

• stream bytes
• decoded bytes
• image pixels and bytes
• object counts
• xref entries
• recursion depth

The corresponding limits are also part of the configuration. Users of older version will be prompted by the CLI to reset their configuration.

Additional cycle and depth checks were added for page trees, form fields, name trees, and object graph traversal.

Stream parsing and filter decoding have also been hardened against oversized, malformed, and overflowing inputs.

Very large or malformed PDFs that were previously attempted may now be rejected earlier.

This release includes targeted fixes and compatibility improvements for:

• annotation geometry during resize, including Rect and QuadPoints
• merge bookmark handling
• form filling with user fonts
• removing document properties and associated catalog XMP metadata
• relaxed validation for selected malformed JavaScript action and structure-tree object-reference cases
• booklet page count and content-buffer handling
• FlateDecode predictor and EOF handling
• output path handling in extraction, fonts, forms, split/cut, and attachment-related workflows
• watermarks, stamps, validation, fonts, properties, and related command behavior

Dependencies were updated, including go-runewidth, x/crypto, x/image, and x/text.

Now usage, help text and docs describe the current signature validation scope and trust boundaries more clearly.

This release does not claim complete legal, eIDAS, LTV, or long-term trust validation.

Behind the scenes, this release includes command plumbing refactoring in pkg/cli, updated tests around command dispatch, and an experimental Windows 7 build workflow.

Everybody for testing, reporting issues, and feeding back real-world PDFs. Your bug reports and edge cases continue to make pdfcpu more robust and useful. Shoutouts to @harish for spending time on submitting a PR.

• 2226694 bump version, fix #1410, #1411
• a212fad refactor cli cmd plumbing
• 982b418 clarify signature trust boundaries
• d27afe2 fix version cmd
• 80b99fe add certificate JSON listing and reset defaults
• a3225ab refactor parameter handling
• 4f4129e add experimental Win7 build
• 84a68af decrease binary size via default build w/o bundled certificates, provide build tag pdfcpu_eutl for bundling EUTL trust-list certs
• ecb6888 fix #1291
• 3491406 fix identify version
• e102024 fix #1316
• d886d17 fix #1375
• d27963b fix #1317
• 174230a fix #1359
• 8719193 fix merge bookmark destination collisions
• 991e0ec fix: #1364
• b11ad47 fix: #1394
• 3a73dfa refactor: cli command plumbing
• 6ac18f9 fix arg validation
• 895371a fix #1396
• 59ca0db fix #1402
• 14e191d fix handling of os.Exit
• cbbb3b5 add missing GoDoc comments
• 8983029 add cycle-detection
• b4c1f98 add recursion-depth checking
• 54d7f0a add limits to configuration
• 21f8b3b sanitize file paths
• e8abb82 harden filter decoders and stream parsing against overflow
• 0ea56f8 update scripts
• 05e8897 add stdin/stdout support, add --force

• Optimize Key.Strings by reducing memory re-allocations and simplifying control flow by @gitKashish in https://github.com/go-ini/ini/pull/385

• @gitKashish made their first contribution in https://github.com/go-ini/ini/pull/385

Full Changelog: https://github.com/go-ini/ini/compare/v1.67.2...v1.67.3

• Add built-in plan and delegate tools for agents with examples by @asim in https://github.com/micro/go-micro/pull/2949
• Add plan and delegate capabilities with examples and documentation by @asim in https://github.com/micro/go-micro/pull/2950
• Claude/loving meitner 3 etoi by @asim in https://github.com/micro/go-micro/pull/2951
• Enhance agent workflows with guardrails and documentation updates by @asim in https://github.com/micro/go-micro/pull/2952
• Enhance onboarding experience and clarify workflows vs agents by @asim in https://github.com/micro/go-micro/pull/2953
• Refactor README features and add end-to-end flow testing by @asim in https://github.com/micro/go-micro/pull/2954

Full Changelog: https://github.com/micro/go-micro/compare/v5.26.0...v5.27.0

• Upgrade Guide: https://resty.dev/docs/upgrading-to-v3/

• fix: request-level retry delay strategy and execution order of retry hooks and conditions #1033 by @jeevatkm in https://github.com/go-resty/resty/pull/1096
• fix: improve error handling in the multipart request failure #1030 by @jeevatkm in https://github.com/go-resty/resty/pull/1101
• fix: hedging cover rate limit by @ahmet2mir in https://github.com/go-resty/resty/pull/1103
• fix: Deepcopy header in createRawRequest by @Kodecable in https://github.com/go-resty/resty/pull/1105
• fix: case sensitive issue in decompresser, encoder, and decoder #1111 by @jeevatkm in https://github.com/go-resty/resty/pull/1113
• fix: hedging double wrap by @jeevatkm in https://github.com/go-resty/resty/pull/1118
• fix: gzip reader pool usage panic with corrupt data response body and similar approach for deflate reader by @jeevatkm in
• fix: sse request body issue on retry by @jeevatkm in https://github.com/go-resty/resty/pull/1126
• security: strip sensitive headers on cross-domain redirects by default by @Den-Sec in https://github.com/go-resty/resty/pull/1136
• fix: return error for non-seekable readers on request retry by @mcanevet in https://github.com/go-resty/resty/pull/1133
• fix: new circuit breaker method return type by @jeevatkm in https://github.com/go-resty/resty/pull/1139
• fix: sending digest auth sending invalid userhash field by @issuj in https://github.com/go-resty/resty/pull/1140
• fix: unwrap restyError to an error slice by @pior in https://github.com/go-resty/resty/pull/1155
• fix: content-disposition values are sanitized and absolute path, parent-directory travesal segments are rejected by @jeevatkm in https://github.com/go-resty/resty/pull/1157
• fix: separate URL from -F/-d in buildCurlCmd output by @c-tonneslan in https://github.com/go-resty/resty/pull/1165

• feat: Add support for SetXXXAny methods for headers, query parameters, and path parameters. by @pscheid92 in https://github.com/go-resty/resty/pull/1098
• feat(hedging): support hedging in order to reduce latency when quering endpoints by @ahmet2mir in https://github.com/go-resty/resty/pull/1081
• feat(enhancement)!: lb next method with context usage by @jeevatkm in https://github.com/go-resty/resty/pull/1117
• feat(ehancement): make fair context deadline for all hedged requests by @jeevatkm in https://github.com/go-resty/resty/pull/1119 https://github.com/go-resty/resty/pull/1120
• feat(enhancement): add resetter interface, call reset appropriately, improve code, and test by @jeevatkm in https://github.com/go-resty/resty/pull/1124
• feat(enhancement): optimize code flow, improve and test cases by @jeevatkm in https://github.com/go-resty/resty/pull/1129
• feat(enhancement)!: remove HTTP status code check and add new exported retry condition for status codes #1080 by @jeevatkm
• feat(enhancement): add redirect header strip sensitive policy #1128 by @jeevatkm in https://github.com/go-resty/resty/pull/1134
• feat: Add SetLabel() to be discoverable to metrics by @xxtanisxx in https://github.com/go-resty/resty/pull/1123
• feat(enhancement): add interface(s) into circuit breaker implementation to make it extensible by @jeevatkm in https://github.com/go-resty/resty/pull/1138
• feat: use go's ootb function and package by @jeevatkm in https://github.com/go-resty/resty/pull/1145
• feat(enhancement): make hedging implementation to use an interface by @jeevatkm in https://github.com/go-resty/resty/pull/1147
• feat: add built-in rate limiter implementations by @jeevatkm in https://github.com/go-resty/resty/pull/1151
• feat: support SetTransport for SSE by @invzhi in https://github.com/go-resty/resty/pull/1150
• feat: support SetContext for SSE by @invzhi in https://github.com/go-resty/resty/pull/1154
• feat(enhancement)!: Return ErrReaderNotSeekable instead of sending empty bodies on retry by @pior in https://github.com/go-resty/resty/pull/1156
• feat(enhancement)!: do not strip the port from the request URL host for redirect host comparison by @jeevatkm in https://github.com/go-resty/resty/pull/1159
• feat(enhancement): honor explicit zeros in min and max retry wait time by @leno23 in https://github.com/go-resty/resty/pull/1162

• test: improve test cases by @jeevatkm in https://github.com/go-resty/resty/pull/1099
• test: fix flaky test TestClient_SetRootCertificateWatcher by @pior in https://github.com/go-resty/resty/pull/1158

• refactor: make client hook functions arg as variadic by @jeevatkm in https://github.com/go-resty/resty/pull/1093
• refactor: optimize decode json flow by @jeevatkm in https://github.com/go-resty/resty/pull/1094
• refactor: naming from retry strategy to retry delay strategy by @jeevatkm in https://github.com/go-resty/resty/pull/1095
• refactor(enhancement): streamline error function names and fields #1062 by @jeevatkm in https://github.com/go-resty/resty/pull/1097
• refactor: streamline naming conventions to enable and ensure consistent and easy discovery by @jeevatkm in https://github.com/go-resty/resty/pull/1106
• refactor: hedging implementation by @jeevatkm in https://github.com/go-resty/resty/pull/1114 in https://github.com/go-resty/resty/pull/1130
• docs: godoc update and improvements by @jeevatkm in https://github.com/go-resty/resty/pull/1131
• chore: version bump to 3.0.0-rc.1 by @jeevatkm in https://github.com/go-resty/resty/pull/1170

• @pscheid92 made their first contribution in https://github.com/go-resty/resty/pull/1098
• @ahmet2mir made their first contribution in https://github.com/go-resty/resty/pull/1081
• @Kodecable made their first contribution in https://github.com/go-resty/resty/pull/1105
• @xxtanisxx made their first contribution in https://github.com/go-resty/resty/pull/1123
• @Den-Sec made their first contribution in https://github.com/go-resty/resty/pull/1136
• @mcanevet made their first contribution in https://github.com/go-resty/resty/pull/1133
• @issuj made their first contribution in https://github.com/go-resty/resty/pull/1140
• @c-tonneslan made their first contribution in https://github.com/go-resty/resty/pull/1165
• @leno23 made their first contribution in https://github.com/go-resty/resty/pull/1162

Full Changelog: https://github.com/go-resty/resty/compare/v3.0.0-beta.6...v3.0.0-rc.1

• Add AI-powered service generation with prompt-based code generation by @asim in https://github.com/micro/go-micro/pull/2927
• syntax highlighting by @asim in https://github.com/micro/go-micro/pull/2928
• Unify README and website to present consistent messaging by @asim in https://github.com/micro/go-micro/pull/2929
• Unify README and website documentation for Go Micro framework by @asim in https://github.com/micro/go-micro/pull/2930
• Enhance README with binary install option and update hero image by @asim in https://github.com/micro/go-micro/pull/2931
• Update README and landing page with new AI-native hero image by @asim in https://github.com/micro/go-micro/pull/2932
• docs: restructure README — AI story completes before manual code by @asim in https://github.com/micro/go-micro/pull/2933
• Restructure README for AI experience and framework clarity by @asim in https://github.com/micro/go-micro/pull/2934
• chore: update Discord invite link everywhere by @asim in https://github.com/micro/go-micro/pull/2935
• Update Discord invite link and enhance landing hero description by @asim in https://github.com/micro/go-micro/pull/2936
• docs: update landing hero — describe it, run it, talk to it by @asim in https://github.com/micro/go-micro/pull/2937
• Revamp landing hero and introduce agent-based microservices model by @asim in https://github.com/micro/go-micro/pull/2938
• Introduce Agent abstraction and integrate with chat router by @asim in https://github.com/micro/go-micro/pull/2939
• docs: update blog posts 15 and 16 to reflect RPC-based agents by @asim in https://github.com/micro/go-micro/pull/2941
• Update documentation and blogs for RPC-based agent architecture by @asim in https://github.com/micro/go-micro/pull/2942
• Update documentation for RPC-based agents and remove code references by @asim in https://github.com/micro/go-micro/pull/2943
• Update landing page content and fix CLI import path by @asim in https://github.com/micro/go-micro/pull/2944
• Update landing page documentation and fix flow CLI import by @asim in https://github.com/micro/go-micro/pull/2945
• Reposition hero section and optimize hero image for landing page by @asim in https://github.com/micro/go-micro/pull/2946
• Optimize hero image size for faster loading by @asim in https://github.com/micro/go-micro/pull/2947
• Enhance micro run with interactive console and image compression by @asim in https://github.com/micro/go-micro/pull/2948

Full Changelog: https://github.com/micro/go-micro/compare/v5.25.0...v5.26.0

• feat(consumer): add support for SyncGroupRequest/Response v5 (KIP-559) by @dnwe in https://github.com/IBM/sarama/pull/3591
• feat(txn): add protocol support for TxnOffsetCommit v3 by @dnwe in https://github.com/IBM/sarama/pull/3592
• feat(txn): support consumer group metadata in TxnOffsetCommit v3 by @dnwe in https://github.com/IBM/sarama/pull/3593
• feat(admin): add protocol support for DeleteRecords v2 (KIP-482) by @dnwe in https://github.com/IBM/sarama/pull/3594
• feat(protocol): add support for DescribeConfigs v3 and v4 by @dnwe in https://github.com/IBM/sarama/pull/3596
• feat(admin): add DescribeConfigs for multiple resources by @dnwe in https://github.com/IBM/sarama/pull/3600
• feat(consumer): option to cap decompressed batch size by @dnwe in https://github.com/IBM/sarama/pull/3604

• fix(admin): retry ACL and SCRAM ops on stale controller by @dnwe in https://github.com/IBM/sarama/pull/3598

• fix(deps): update module github.com/pierrec/lz4/v4 to v4.1.27 by @renovate[bot] in https://github.com/IBM/sarama/pull/3597

Full Changelog: https://github.com/IBM/sarama/compare/v1.50.1...v1.50.2

• docs: add "Build Your Own AI Agent CLI" teardown blog post by @asim in https://github.com/micro/go-micro/pull/2921
• Expose framework primitives via API gateway and MCP with auth control by @asim in https://github.com/micro/go-micro/pull/2925
• Enhance AI service generation with prompt-based architecture and logic by @asim in https://github.com/micro/go-micro/pull/2926

Full Changelog: https://github.com/micro/go-micro/compare/v5.24.0...v5.25.0

• Fix WebKit UI freeze on Linux when idle (e.g. with the inspector open) by no longer forcing SA_ONSTACK on SIGUSR1, which broke JavaScriptCore's GC thread synchronisation (#5527)

🤖 This is an automated nightly release generated from the latest changes on master.

Installation:

go install github.com/wailsapp/wails/v3/cmd/wails3@v3.0.0-alpha.98

⚠️ Alpha Warning: This is pre-release software and may contain bugs or incomplete features.

lego is an independent, free, and open-source project, if you value it, consider supporting it! ❤️

Everybody thinks that the others will donate, but in the end, nobody does.

So if you think that lego is worth it, please consider donating.

For key updates, see the changelog.

• 5370e993bb55ce64ec89485c3283f6bb95ed39b4 namecheap: fix record key sub domain