chore(deps): bump modernc.org/sqlite from 1.50.0 to 1.50.1

[dependabot]

Bumps modernc.org/sqlite from 1.50.0 to 1.50.1.

Changelog

Sourced from modernc.org/sqlite's changelog.

Changelog

• 2026-05-10 v1.50.1:

  • Upgrade to SQLite 3.53.1.

• 2026-04-24 v1.50.0:

  • Upgrade to sqlite-vec v0.1.9.
  • Introduce ColumnInfo, enabling dynamic query builders and ORMs to retrieve underlying SQLite C-API metadata (OriginName, TableName, DatabaseName, and DeclType).
  • This feature is exposed via the idiomatic database/sql escape hatch (*sql.Conn).Raw(), avoiding custom statement handles and keeping the standard library workflow intact.
  • See [GitLab merge request #113](https://gitlab.com/cznic/sqlite/-/merge_requests/113), thanks Josh Bleecher Snyder!

• 2026-04-17 v1.49.0: Upgrade to SQLite 3.53.0.

  • Added -DSQLITE_ENABLE_DBPAGE_VTAB to the transpilation. See "The SQLITE_DBPAGE Virtual Table" for details.

• 2026-04-06 v1.48.2:

  • Fix ABI mapping mismatch in the pre-update hook trampoline that caused silent truncation of large 64-bit RowIDs.
  • Ensure the Go trampoline signature correctly aligns with the public sqlite3_preupdate_hook C API, preventing data corruption for high-entropy keys (e.g., Snowflake IDs).
  • See [GitLab merge request #98](https://gitlab.com/cznic/sqlite/-/merge_requests/98), thanks Josh Bleecher Snyder!
  • Fix the memory allocator used in (*conn).Deserialize.
  • Replace tls.Alloc with sqlite3_malloc64 to prevent internal allocator corruption. This ensures the buffer is safely owned by SQLite, which may resize or free it due to the SQLITE_DESERIALIZE_RESIZEABLE and SQLITE_DESERIALIZE_FREEONCLOSE flags.
  • Prevent a memory leak by properly freeing the allocated buffer if fetching the main database name fails before handing ownership to SQLite.
  • See [GitLab merge request #100](https://gitlab.com/cznic/sqlite/-/merge_requests/100), thanks Josh Bleecher Snyder!
  • Fix (*conn).Deserialize to explicitly reject nil or empty byte slices.
  • Prevent silent database disconnection and connection pool corruption caused by SQLite's default behavior when sqlite3_deserialize receives a 0-length buffer.
  • See [GitLab merge request #101](https://gitlab.com/cznic/sqlite/-/merge_requests/101), thanks Josh Bleecher Snyder!
  • Fix commitHookTrampoline and rollbackHookTrampoline signatures by removing the unused pCsr parameter.
  • Aligns internal hook callbacks accurately with the underlying SQLite C API, cleaning up the code to prevent potential future confusion or bugs.
  • See [GitLab merge request #102](https://gitlab.com/cznic/sqlite/-/merge_requests/102), thanks Josh Bleecher Snyder!
  • Fix checkptr instrumentation failures during go test -race when registering and using virtual tables (vtab).
  • Allocate sqlite3_module instances using the C allocator (libc.Xcalloc) instead of the Go heap. This ensures transpiled C code can safely perform pointer operations on the struct without tripping Go's pointer checks.
  • See [GitLab merge request #103](https://gitlab.com/cznic/sqlite/-/merge_requests/103), thanks Josh Bleecher Snyder!
  • Fix data race on mutex.id in the mutexTry non-recursive path.
  • Ensure consistent atomic writes (atomic.StoreInt32) to prevent data races with atomic loads in mutexHeld and mutexNotheld during concurrent execution.
  • See [GitLab merge request #104](https://gitlab.com/cznic/sqlite/-/merge_requests/104), thanks Josh Bleecher Snyder!
  • Fix resource leak in (*Backup).Commit where the destination connection was not closed on error.
  • Ensure dstConn is properly closed when sqlite3_backup_finish fails, preventing file descriptor, TLS, and memory leaks.
  • See [GitLab merge request #105](https://gitlab.com/cznic/sqlite/-/merge_requests/105), thanks Josh Bleecher Snyder!
  • Fix Exec to fully drain rows when encountering SQLITE_ROW, preventing silent data loss in DML statements.
  • Previously, Exec aborted after the first row, meaning INSERT, UPDATE, or DELETE statements with a RETURNING clause would fail to process subsequent rows. The execution path now correctly loops until SQLITE_DONE and properly respects context cancellations during the drain loop, fully aligning with native C sqlite3_exec semantics.
  • See [GitLab merge request #106](https://gitlab.com/cznic/sqlite/-/merge_requests/106), thanks Josh Bleecher Snyder!
  • Fix "Shadowed err value (stmt.go)".
  • See [GitLab issue #249](https://gitlab.com/cznic/sqlite/-/work_items/249), thanks Emrecan BATI!
  • Fix silent omission of virtual table savepoint callbacks by correctly setting the sqlite3_module version.
  • See [GitLab merge request #107](https://gitlab.com/cznic/sqlite/-/merge_requests/107), thanks Josh Bleecher Snyder!
  • Fix vfsRead to properly handle partial and fragmented reads from io.Reader.
  • Replace f.Read with io.ReadFull to ensure the buffer is fully populated, preventing premature SQLITE_IOERR_SHORT_READ errors on valid mid-stream partial reads. Unread tail bytes at EOF are now efficiently zero-filled using the built-in clear function.
  • See [GitLab merge request #108](https://gitlab.com/cznic/sqlite/-/merge_requests/108), thanks Josh Bleecher Snyder!
  • Refactor internal error formatting to safely handle uninitialized or closed database pointers.
  • Prevent a misleading "out of memory" error message when an operation fails and the underlying SQLite database handle is NULL (db == 0).
  • See [GitLab merge request #109](https://gitlab.com/cznic/sqlite/-/merge_requests/109), thanks Josh Bleecher Snyder!

... (truncated)

Commits

• b95ed45 upgrade to SQLite 3.53.1
• See full diff in compare view

[crozzy]

@dependabot rebase

[crozzy]

/fast-forward

[github-actions]

Triggered from #1878 (comment) by @​crozzy.

Trying to fast forward main (76f5ffb) to dependabot/go_modules/modernc.org/sqlite-1.50.1 (8b52d54).

Target branch (main):

commit 76f5ffb698c5f95dda7c549d009401ebb110ff81 (HEAD -> main, origin/main)
Author: dependabot[bot] <dependabot[bot]@users.noreply.github.com>
Date:   Fri May 15 16:10:16 2026 +0000

    chore(deps): bump the golang-x group across 1 directory with 5 updates
    
    Bumps the golang-x group with 3 updates in the / directory: [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/net](https://github.com/golang/net) and [golang.org/x/tools](https://github.com/golang/tools).
    
    
    Updates `golang.org/x/crypto` from 0.50.0 to 0.51.0
    - [Commits](https://github.com/golang/crypto/compare/v0.50.0...v0.51.0)
    
    Updates `golang.org/x/net` from 0.53.0 to 0.54.0
    - [Commits](https://github.com/golang/net/compare/v0.53.0...v0.54.0)
    
    Updates `golang.org/x/sys` from 0.43.0 to 0.44.0
    - [Commits](https://github.com/golang/sys/compare/v0.43.0...v0.44.0)
    
    Updates `golang.org/x/text` from 0.36.0 to 0.37.0
    - [Release notes](https://github.com/golang/text/releases)
    - [Commits](https://github.com/golang/text/compare/v0.36.0...v0.37.0)
    
    Updates `golang.org/x/tools` from 0.44.0 to 0.45.0
    - [Release notes](https://github.com/golang/tools/releases)
    - [Commits](https://github.com/golang/tools/compare/v0.44.0...v0.45.0)
    
    ---
    updated-dependencies:
    - dependency-name: golang.org/x/crypto
      dependency-version: 0.51.0
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: golang-x
    - dependency-name: golang.org/x/net
      dependency-version: 0.54.0
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: golang-x
    - dependency-name: golang.org/x/sys
      dependency-version: 0.44.0
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: golang-x
    - dependency-name: golang.org/x/text
      dependency-version: 0.37.0
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: golang-x
    - dependency-name: golang.org/x/tools
      dependency-version: 0.45.0
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: golang-x
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>

Pull request (dependabot/go_modules/modernc.org/sqlite-1.50.1):

commit 8b52d545a4c5990829f08f0fc1494b49d3f9c1a7 (pull_request/dependabot/go_modules/modernc.org/sqlite-1.50.1)
Author: dependabot[bot] <dependabot[bot]@users.noreply.github.com>
Date:   Fri May 15 21:02:00 2026 +0000

    chore(deps): bump modernc.org/sqlite from 1.50.0 to 1.50.1
    
    Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.50.0 to 1.50.1.
    - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md)
    - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.50.0...v1.50.1)
    
    ---
    updated-dependencies:
    - dependency-name: modernc.org/sqlite
      dependency-version: 1.50.1
      dependency-type: direct:production
      update-type: version-update:semver-patch
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>

Fast forwarding main (76f5ffb) to dependabot/go_modules/modernc.org/sqlite-1.50.1 (8b52d54).

$ git push origin 8b52d545a4c5990829f08f0fc1494b49d3f9c1a7:main
remote: error: GH013: Repository rule violations found for refs/heads/main.        
remote: Review all repository rules at https://github.com/quay/claircore/rules?ref=refs%2Fheads%2Fmain        
remote: 
remote: - At least 1 approving review is required by reviewers with write access.        
remote: 
To https://github.com/quay/claircore.git
 ! [remote rejected]   8b52d545a4c5990829f08f0fc1494b49d3f9c1a7 -> main (push declined due to repository rule violations)
error: failed to push some refs to 'https://github.com/quay/claircore.git'