chore: bump github.com/usememos/memos from 0.27.1 to 0.28.0

[dependabot]

Bumps github.com/usememos/memos from 0.27.1 to 0.28.0.

Release notes

Sourced from github.com/usememos/memos's releases.

v0.28.0

0.28.0 (2026-04-27)

This release improves SSO account handling by linking external provider identities to local Memos users instead of treating provider identifiers as local usernames. It also refreshes account and SSO management, adds memo time display controls, and includes several authentication and editor fixes.

Breaking Change

• Existing SSO users must link their identity again - If you previously signed in through SSO, sign in once with your username and password after upgrading, then go to Account Settings to link your SSO identity. After the identity is linked, future SSO sign-ins will resolve to your existing Memos account.

Features

• auth: add SSO user identity linkage (#5883) (d688914)
• memos: choose created or updated time for memos (#5894) (c268551)
• redesign account and SSO management (#5886) (ee17998)

Bug Fixes

• auth: harden authorization and username validation (#5890) (0fb83a7)
• disable modal prop on DropdownMenu to prevent scroll disappearing (#5861) (d98f665)
• fix legacy username auth flows (#5885) (30c0611)
• markdown: split mixed task and bullet lists (e2c6084)
• reduce list memo query overhead (#5880) (5063804)
• web: preserve task checkbox state (#5867) (b5863d7)

Changelog

Sourced from github.com/usememos/memos's changelog.

0.28.0 (2026-04-27)

Features

• auth: add SSO user identity linkage (#5883) (d688914)
• memos: choose created or updated time for memos (#5894) (c268551)
• redesign account and SSO management (#5886) (ee17998)

Bug Fixes

• auth: harden authorization and username validation (#5890) (0fb83a7)
• disable modal prop on DropdownMenu to prevent scroll disappearing (#5861) (d98f665)
• fix legacy username auth flows (#5885) (30c0611)
• markdown: split mixed task and bullet lists (e2c6084)
• reduce list memo query overhead (#5880) (5063804)
• web: preserve task checkbox state (#5867) (b5863d7)

Commits

• 9bf648a chore(main): release 0.28.0 (#5866)
• 94ce1e5 chore(settings): show build commit in version info
• e2c6084 fix(markdown): split mixed task and bullet lists
• c268551 feat(memos): choose created or updated time for memos (#5894)
• 3949a25 style(web): refine scrollbar styling
• 34c90dd chore: remove duplicate tags from share image preview
• 0fb83a7 fix(auth): harden authorization and username validation (#5890)
• ee17998 feat: redesign account and SSO management (#5886)
• 30c0611 fix: fix legacy username auth flows (#5885)
• d688914 feat(auth): add SSO user identity linkage (#5883)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)