Bump github.com/oschwald/maxminddb-golang/v2 from 2.0.0-beta.8 to 2.0.0

[dependabot]

Bumps github.com/oschwald/maxminddb-golang/v2 from 2.0.0-beta.8 to 2.0.0.

Release notes

Sourced from github.com/oschwald/maxminddb-golang/v2's releases.

2.0.0

• BREAKING CHANGE: Removed deprecated FromBytes. Use OpenBytes instead.
• Fixed verifier metadata error message to require a non-empty map for the database description. GitHub #187.
• Introduces the v2 API with Reader.Lookup(ip).Decode(...), netip.Addr support, custom decoder interfaces, and richer error reporting.
• See MIGRATION.md for guidance on upgrading projects from v1 to v2.

2.0.0-beta.10

• Replaced runtime.SetFinalizer with runtime.AddCleanup for resource cleanup in Go 1.24+. This provides more reliable finalization behavior and better garbage collection performance.

2.0.0-beta.9

• SECURITY: Fixed integer overflow vulnerability in search tree size calculation that could potentially allow malformed databases to trigger security issues.
• SECURITY: Enhanced bounds checking in tree traversal functions to return proper errors instead of silent failures when encountering malformed databases.
• Added validation for invalid prefixes in NetworksWithin to prevent unexpected behavior with malformed input.
• Added SkipEmptyValues() option for Networks and NetworksWithin to skip networks whose data is an empty map or empty array. This is useful for databases that store empty maps or arrays for records without meaningful data. GitHub #172.
• Optimized custom unmarshaler type assertion to use Go 1.25's reflect.TypeAssert when available, reducing allocations in reflection code paths.
• Improved memory mapping implementation by using SyscallConn() instead of Fd() to avoid side effects and prepare for Go 1.25+ Windows I/O enhancements. Pull request by database64128. GitHub #179.
• Added OpenBytes function for better API discoverability and consistency with Open(). FromBytes is now deprecated and will be removed in a future version.

Changelog

Sourced from github.com/oschwald/maxminddb-golang/v2's changelog.

2.0.0 - 2025-10-18

• BREAKING CHANGE: Removed deprecated FromBytes. Use OpenBytes instead.
• Fixed verifier metadata error message to require a non-empty map for the database description. GitHub #187.
• Introduces the v2 API with Reader.Lookup(ip).Decode(...), netip.Addr support, custom decoder interfaces, and richer error reporting.
• See MIGRATION.md for guidance on upgrading projects from v1 to v2.

2.0.0-beta.10 - 2025-08-23

• Replaced runtime.SetFinalizer with runtime.AddCleanup for resource cleanup in Go 1.24+. This provides more reliable finalization behavior and better garbage collection performance.

2.0.0-beta.9 - 2025-08-23

• SECURITY: Fixed integer overflow vulnerability in search tree size calculation that could potentially allow malformed databases to trigger security issues.
• SECURITY: Enhanced bounds checking in tree traversal functions to return proper errors instead of silent failures when encountering malformed databases.
• Added validation for invalid prefixes in NetworksWithin to prevent unexpected behavior with malformed input.
• Added SkipEmptyValues() option for Networks and NetworksWithin to skip networks whose data is an empty map or empty array. This is useful for databases that store empty maps or arrays for records without meaningful data. GitHub #172.
• Optimized custom unmarshaler type assertion to use Go 1.25's reflect.TypeAssert when available, reducing allocations in reflection code paths.
• Improved memory mapping implementation by using SyscallConn() instead of Fd() to avoid side effects and prepare for Go 1.25+ Windows I/O enhancements. Pull request by database64128. GitHub #179.
• Added OpenBytes function for better API discoverability and consistency with Open(). FromBytes is now deprecated and will be removed in a future version.

Commits

• d182bcb Add v2 migration guide
• 0df30a4 Fix verifier description error
• dee4c2c Fix lint config and pointer switch
• af17178 Remove deprecated FromBytes in favor of OpenBytes
• 58b8530 Merge pull request #186 from oschwald/greg/perf
• 7002e02 Merge pull request #190 from oschwald/dependabot/github_actions/github/codeql...
• d71c66d Merge pull request #191 from oschwald/dependabot/go_modules/golang.org/x/sys-...
• 17b6dc4 Bump golang.org/x/sys from 0.36.0 to 0.37.0
• a83aab2 Bump github/codeql-action from 3 to 4
• 7e52dc0 Merge pull request #188 from oschwald/dependabot/github_actions/actions/setup...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[dependabot]

Superseded by #39.