Seth Shelnutt 315e800cb2 fix: upgrade Go toolchain from 1.25.9 to 1.25.10 (#25228) ...

Go 1.25.10 (released 2026-05-07) includes 11 security fixes for CVEs
affecting the go command, pack tool, html/template, net, net/http,
net/http/httputil, net/mail, and syscall packages.

Fixes IronBank v2.32.x Go stdlib CVE exposure by upgrading from Go
1.25.9 to 1.25.10.

Reference: https://groups.google.com/g/golang-dev/c/h6eZjndBMqQ

### Changed files
- `go.mod`: `go 1.25.9` to `go 1.25.10`
- `dogfood/coder/Dockerfile`: `GO_VERSION` and `GO_CHECKSUM`
- `.github/actions/setup-go/action.yaml`: default version

> Generated by Coder Agents

2026-05-13 07:55:14 -04:00

..

actions

fix: upgrade Go toolchain from 1.25.9 to 1.25.10 (#25228)

2026-05-13 07:55:14 -04:00

fly-wsproxies

chore: remove brazil fly.io proxy (#20601)

2025-10-31 02:40:56 +00:00

ISSUE_TEMPLATE

chore: remove needs-triage label from bug template (#22679)

2026-03-06 10:55:20 +00:00

pr-deployments

chore: update deprecated usage of coder_workspace.owner* fields (#13390)

2024-05-30 11:31:51 +01:00

scripts

ci: add retry logic for Go module operations (#21609)

2026-01-29 16:05:49 +01:00

workflows

chore: tag RCs on main, cut release branch only for releases (#24001)

2026-04-07 15:21:22 -04:00

.linkspector.yml

chore: document bedrock setup process for aibridge (#20956)

2025-11-27 10:14:16 +02:00

actionlint.yaml

docs: document smart hook file classification in CONTRIBUTING (#23370)

2026-03-20 17:36:50 +02:00

cherry-pick-bot.yml

chore: use better PR titles for cherry-pick-bot PRs (#16165)

2025-01-16 15:54:03 +00:00

dependabot.yaml

chore: move to using radix-ui over @radix-ui/react-* (#23911)

2026-04-02 18:49:33 +11:00

pull_request_template.md

chore: wrap pr ai guidelines notice in a comment (#19900)

2025-09-22 09:45:43 -06:00

zizmor.yml

chore: pin dogfood to release branch during release freeze (#20028)

2025-10-02 12:12:29 +10:00