diff --git a/act b/act
index ed079ed..8bfe9d9 160000
--- a/act
+++ b/act
@@ -1 +1 @@
-Subproject commit ed079edc0d6ab6e8ecb0d5c987fa509ec2b5495609131ff446666de42df5b9f2
+Subproject commit 8bfe9d954746c63cf4d4bc76750489e9bdd10e7c4757b4fa702a81a31a74cbaf
diff --git a/patchinfo.20251201094854511762.93181000773252/_patchinfo b/patchinfo.20251201094854511762.93181000773252/_patchinfo
new file mode 100644
index 0000000..82b0c75
--- /dev/null
+++ b/patchinfo.20251201094854511762.93181000773252/_patchinfo
@@ -0,0 +1,15 @@
+<patchinfo>
+  <issue tracker="bnc" id="1253608">VUL-0: CVE-2025-47913: act: golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request</issue>
+  <issue tracker="cve" id="2025-47913">cve#2025-47913 not resolved: 404 Client Error: Not Found for url: https://bugzilla.suse.com/api2/issues/?references__name=CVE-2025-47913</issue>
+  <packager>elimat</packager>
+  <rating>important</rating>
+  <category>security</category>
+  <summary>Security update for act</summary>
+  <description>This update for act fixes the following issues:
+
+- CVE-2025-47913: Prevent panic in embedded golang.org/x/crypto/ssh/agent client when
+  receiving unexpected message types for key listing or signing requests (boo#1253608)
+</description>
+  <package>act</package>
+  <seperate_build_arch/>
+</patchinfo>