trillian icon indicating copy to clipboard operation
trillian copied to clipboard
verified publisher icon google

Bump the go-deps group across 1 directory with 23 updates

Open dependabot[bot] opened this issue 8 months ago • 3 comments

Bumps the go-deps group with 12 updates in the / directory:

Package From To
cloud.google.com/go/spanner 1.77.0 1.80.0
github.com/apache/beam/sdks/v2 2.63.0 2.64.0
github.com/go-sql-driver/mysql 1.9.0 1.9.2
github.com/jackc/pgx/v5 5.7.2 5.7.4
github.com/prometheus/client_golang 1.21.1 1.22.0
github.com/prometheus/client_model 0.6.1 0.6.2
go.etcd.io/etcd/client/v3 3.5.19 3.5.21
go.etcd.io/etcd/etcdctl/v3 3.5.19 3.5.21
go.etcd.io/etcd/v3 3.5.19 3.5.21
golang.org/x/tools 0.31.0 0.32.0
k8s.io/api 0.32.3 0.33.0
k8s.io/client-go 0.32.3 0.33.0

Updates cloud.google.com/go/spanner from 1.77.0 to 1.80.0

Release notes

Sourced from cloud.google.com/go/spanner's releases.

spanner: v1.80.0

1.80.0 (2025-04-23)

Features

Bug Fixes

  • spanner/benchmarks: Update google.golang.org/api to 0.229.0 (3319672)
  • spanner/test/opentelemetry/test: Update google.golang.org/api to 0.229.0 (3319672)
  • spanner: Retry INTERNAL retriable auth error (#12034) (65c7461)
  • spanner: Update google.golang.org/api to 0.229.0 (3319672)

Performance Improvements

  • spanner: Skip gRPC trailers for StreamingRead & ExecuteStreamingSql (#11854) (10dc8b7)
Commits

Updates github.com/apache/beam/sdks/v2 from 2.63.0 to 2.64.0

Release notes

Sourced from github.com/apache/beam/sdks/v2's releases.

Beam 2.64.0 release

We are happy to present the new 2.64.0 release of Beam. This release includes both improvements and new functionality. See the download page for this release.

For more information on changes in 2.64.0, check out the detailed release notes.

Highlights

I/Os

  • [Java] Use API compatible with both com.google.cloud.bigdataoss:util 2.x and 3.x in BatchLoads (#34105)
  • [IcebergIO] Added new CDC source for batch and streaming, available as Managed.ICEBERG_CDC (#33504)
  • [IcebergIO] Address edge case where bundle retry following a successful data commit results in data duplication (#34264)

New Features / Improvements

  • [Python] Support custom coders in Reshuffle (#29908, #33356).
  • [Java] Upgrade SLF4J to 2.0.16. Update default Spark version to 3.5.0. (#33574)
  • [Java] Support for --add-modules JVM option is added through a new pipeline option JdkAddRootModules. This allows extending the module graph with optional modules such as SDK incubator modules. Sample usage: <pipeline invocation> --jdkAddRootModules=jdk.incubator.vector (#30281).
  • Managed API for Java and Python supports key I/O connectors Iceberg, Kafka, and BigQuery.
  • Prism now supports event time triggers for most common cases. (#31438)
    • Prism does not yet support triggered side inputs, or triggers on merging windows (such as session windows).

Breaking Changes

  • [Python] Reshuffle now correctly respects user-specified type hints, fixing a previous bug where it might use FastPrimitivesCoder wrongly. This change could break pipelines with incorrect type hints in Reshuffle. If you have issues after upgrading, temporarily set update_compatibility_version to a previous Beam version to use the old behavior. The recommended solution is to fix the type hints in your code. (#33932)
  • [Java] SparkReceiver 2 has been moved to SparkReceiver 3 that supports Spark 3.x. (#33574)
  • [Python] Correct parsing of collections.abc.Sequence type hints was added, which can lead to pipelines failing type hint checks that were previously passing erroneously. These issues will be most commonly seen trying to consume a PCollection with a Sequence type hint after a GroupByKey or a CoGroupByKey. (#33999.

Bugfixes

  • (Python) Fixed occasional pipeline stuckness that was affecting Python 3.11 users (#33966).
  • (Java) Fixed TIME field encodings for BigQuery Storage API writes on GenericRecords (#34059).
  • (Java) Fixed a race condition in JdbcIO which could cause hangs trying to acquire a connection (#34058).

... (truncated)

Changelog

Sourced from github.com/apache/beam/sdks/v2's changelog.

[2.64.0] - 2025-03-31

Highlights

I/Os

  • [Java] Use API compatible with both com.google.cloud.bigdataoss:util 2.x and 3.x in BatchLoads (#34105)
  • [IcebergIO] Added new CDC source for batch and streaming, available as Managed.ICEBERG_CDC (#33504)
  • [IcebergIO] Address edge case where bundle retry following a successful data commit results in data duplication (#34264)
  • [Java&Python] Add explicit schema support to JdbcIO read and xlang transform (#23029)

New Features / Improvements

  • [Python] Support custom coders in Reshuffle (#29908, #33356).
  • [Java] Upgrade SLF4J to 2.0.16. Update default Spark version to 3.5.0. (#33574)
  • [Java] Support for --add-modules JVM option is added through a new pipeline option JdkAddRootModules. This allows extending the module graph with optional modules such as SDK incubator modules. Sample usage: <pipeline invocation> --jdkAddRootModules=jdk.incubator.vector (#30281).
  • Managed API for Java and Python supports key I/O connectors Iceberg, Kafka, and BigQuery.
  • [YAML] Beam YAML UDFs (such as those used in MapToFields) can now have declared dependencies (e.g. pypi packages for Python, or extra jars for Java).
  • Prism now supports event time triggers for most common cases. (#31438)
    • Prism does not yet support triggered side inputs, or triggers on merging windows (such as session windows).

Breaking Changes

  • [Python] Reshuffle now correctly respects user-specified type hints, fixing a previous bug where it might use FastPrimitivesCoder wrongly. This change could break pipelines with incorrect type hints in Reshuffle. If you have issues after upgrading, temporarily set update_compatibility_version to a previous Beam version to use the old behavior. The recommended solution is to fix the type hints in your code. (#33932)
  • [Java] SparkReceiver 2 has been moved to SparkReceiver 3 that supports Spark 3.x. (#33574)
  • [Python] Correct parsing of collections.abc.Sequence type hints was added, which can lead to pipelines failing type hint checks that were previously passing erroneously. These issues will be most commonly seen trying to consume a PCollection with a Sequence type hint after a GroupByKey or a CoGroupByKey. (#33999).

Bugfixes

  • (Python) Fixed occasional pipeline stuckness that was affecting Python 3.11 users (#33966).
  • (Java) Fixed TIME field encodings for BigQuery Storage API writes on GenericRecords (#34059).
  • (Java) Fixed a race condition in JdbcIO which could cause hangs trying to acquire a connection (#34058).
  • (Java) Fix BigQuery Storage Write compatibility with Avro 1.8 (#34281).
  • Fixed checkpoint recovery and streaming behavior in Spark Classic and Portable runner's Flatten transform by replacing queueStream with SingleEmitInputDStream (#34080, #18144, #20426)
  • (Java) Fixed Read caching of UnboundedReader objects to effectively cache across multiple DoFns and avoid checkpointing unstarted reader. #34146 #33901

Known Issues

  • (Java) Current version of protobuf has a bug leading to incompatibilities with clients using older versions of Protobuf (example issue). This issue has been seen in SpannerIO in particular. Tracked in #34452.
  • (Java) When constructing SpannerConfig for SpannerIO, calling withHost with a null or empty host will now result in a Null Pointer Exception (java.lang.NullPointerException: Cannot invoke "java.lang.CharSequence.length()" because "this.text" is null). See GoogleCloudPlatform/DataflowTemplates#34489 for context.
Commits

Updates github.com/go-sql-driver/mysql from 1.9.0 to 1.9.2

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.2

What's Changed

v1.9.2 is a re-release of v1.9.1 due to a release process issue; no changes were made to the content.

Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.9.1...v1.9.2

v1.9.1

What's Changed

New Contributors

Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.9.0...v1.9.1

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.2 (2025-04-07)

v1.9.2 is a re-release of v1.9.1 due to a release process issue; no changes were made to the content.

v1.9.1 (2025-03-21)

Major Changes

  • Add Charset() option. (#1679)

Bugfixes

  • go.mod: fix go version format (#1682)
  • Fix FormatDSN missing ConnectionAttributes (#1619)
Commits

Updates github.com/jackc/pgx/v5 from 5.7.2 to 5.7.4

Changelog

Sourced from github.com/jackc/pgx/v5's changelog.

5.7.4 (March 24, 2025)

  • Fix / revert change to scanning JSON null (Felix Röhrich)

5.7.3 (March 21, 2025)

  • Expose EmptyAcquireWaitTime in pgxpool.Stat (vamshiaruru32)
  • Improve SQL sanitizer performance (ninedraft)
  • Fix Scan confusion with json(b), sql.Scanner, and automatic dereferencing (moukoublen, felix-roehrich)
  • Fix Values() for xml type always returning nil instead of []byte
  • Add ability to send Flush message in pipeline mode (zenkovev)
  • Fix pgtype.Timestamp's JSON behavior to match PostgreSQL (pconstantinou)
  • Better error messages when scanning structs (logicbomb)
  • Fix handling of error on batch write (bonnefoa)
  • Match libpq's connection fallback behavior more closely (felix-roehrich)
  • Add MinIdleConns to pgxpool (djahandarie)
Commits

Updates github.com/prometheus/client_golang from 1.21.1 to 1.22.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.22.0 - 2025-04-07

:warning: This release contains potential breaking change if you use experimental zstd support introduce in #1496 :warning:

Experimental support for zstd on scrape was added, controlled by the request Accept-Encoding header. It was enabled by default since version 1.20, but now you need to add a blank import to enable it. The decision to make it opt-in by default was originally made because the Go standard library was expected to have default zstd support added soon, golang/go#62513 however, the work took longer than anticipated and it will be postponed to upcoming major Go versions.

e.g.:

import (
  _ "github.com/prometheus/client_golang/prometheus/promhttp/zstd"
)
  • [FEATURE] prometheus: Add new CollectorFunc utility #1724
  • [CHANGE] Minimum required Go version is now 1.22 (we also test client_golang against latest go version - 1.24) #1738
  • [FEATURE] api: WithLookbackDelta and WithStats options have been added to API client. #1743
  • [CHANGE] :warning: promhttp: Isolate zstd support and klauspost/compress library use to promhttp/zstd package. #1765

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.22.0 / 2025-04-07

:warning: This release contains potential breaking change if you use experimental zstd support introduce in #1496 :warning:

Experimental support for zstd on scrape was added, controlled by the request Accept-Encoding header. It was enabled by default since version 1.20, but now you need to add a blank import to enable it. The decision to make it opt-in by default was originally made because the Go standard library was expected to have default zstd support added soon, golang/go#62513 however, the work took longer than anticipated and it will be postponed to upcoming major Go versions.

e.g.:

import (
  _ "github.com/prometheus/client_golang/prometheus/promhttp/zstd"
)
  • [FEATURE] prometheus: Add new CollectorFunc utility #1724
  • [CHANGE] Minimum required Go version is now 1.22 (we also test client_golang against latest go version - 1.24) #1738
  • [FEATURE] api: WithLookbackDelta and WithStats options have been added to API client. #1743
  • [CHANGE] :warning: promhttp: Isolate zstd support and klauspost/compress library use to promhttp/zstd package. #1765
Commits
  • d50be25 Cut 1.22.0 (#1793)
  • 1043db7 Cut 1.22.0-rc.0 (#1768)
  • e575c9c promhttp: Isolate zstd support and klauspost/compress library use to promhttp...
  • f2276aa Merge pull request #1764 from prometheus/dependabot/github_actions/github-act...
  • 9df772c build(deps): bump peter-evans/create-pull-request
  • a3548c5 Merge pull request #1754 from saswatamcode/exp-eh
  • 60fd2b0 Remove go.work file for now
  • 8f9d0de exp: Add dependabot config
  • c5cf981 Merge pull request #1762 from prometheus/release-1.21
  • e84c305 exp: Reset snappy buf (#1756)
  • Additional commits viewable in compare view

Updates github.com/prometheus/client_model from 0.6.1 to 0.6.2

Release notes

Sourced from github.com/prometheus/client_model's releases.

v0.6.2

What's Changed

Full Changelog: https://github.com/prometheus/client_model/compare/v0.6.1...v0.6.2

Commits
  • eb136e5 Merge pull request #119 from prometheus/superq/google.golang.org/protobuf
  • bf7f2ca Update golanci-lint to v2.
  • 7e9b56c Bump google.golang.org/protobuf from 1.36.5 to 1.36.6
  • ef699ce Merge pull request #116 from prometheus/repo_sync
  • bf8b12e Update common Prometheus files
  • 5b93968 Merge pull request #115 from prometheus/repo_sync
  • ae83ddc Update common Prometheus files
  • afe0b21 Merge pull request #114 from prometheus/repo_sync
  • 75e1daf Update common Prometheus files
  • 73608e2 Merge pull request #113 from prometheus/dependabot/go_modules/google.golang.o...
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/client/v3 from 3.5.19 to 3.5.21

Release notes

Sourced from go.etcd.io/etcd/client/v3's releases.

v3.5.21

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.5.21

choose either URL


GOOGLE_URL=https://storage.googleapis.com/etcd

GITHUB_URL=https://github.com/etcd-io/etcd/releases/download

DOWNLOAD_URL=${GOOGLE_URL}


rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test


curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz


/tmp/etcd-download-test/etcd --version

/tmp/etcd-download-test/etcdctl version

/tmp/etcd-download-test/etcdutl version


start a local etcd server


/tmp/etcd-download-test/etcd


write,read to etcd


/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar

/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo
macOS (Darwin)
ETCD_VER=v3.5.21

choose either URL


GOOGLE_URL=https://storage.googleapis.com/etcd

GITHUB_URL=https://github.com/etcd-io/etcd/releases/download

DOWNLOAD_URL=${GOOGLE_URL}


rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test


curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64

</tr></table>

... (truncated)

Commits
  • a17edfd version: bump up to 3.5.21
  • 2c77e22 Merge pull request #19686 from ivanvc/release-3.5-golang.org-x-net-to-v0.37.0
  • 14b8ce4 dependency: bump golang.org/x/net from v0.36.0 to v0.38.0
  • 163ff00 Merge pull request #19646 from ivanvc/release-3.5-bump-github.com-golang-jwt-...
  • 6439620 dependency: bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2
  • ac31c34 version: bump up to 3.5.20
  • c518f6f Merge pull request #19629 from ahrtr/learner_test_20250319
  • 0a51fc2 Add e2e test to verify etcd is able to automatically fix the issue
  • 3c65dfa Merge pull request #19602 from ahrtr/3.5_add_learner_test_20250314
  • 341af03 Fix the issue that learner promotion command doesn't support json output
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/etcdctl/v3 from 3.5.19 to 3.5.21

Release notes

Sourced from go.etcd.io/etcd/etcdctl/v3's releases.

v3.5.21

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.5.21

choose either URL


GOOGLE_URL=https://storage.googleapis.com/etcd

GITHUB_URL=https://github.com/etcd-io/etcd/releases/download

DOWNLOAD_URL=${GOOGLE_URL}


rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test


curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz


/tmp/etcd-download-test/etcd --version

/tmp/etcd-download-test/etcdctl version

/tmp/etcd-download-test/etcdutl version


start a local etcd server


/tmp/etcd-download-test/etcd


write,read to etcd


/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar

/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo
macOS (Darwin)
ETCD_VER=v3.5.21

choose either URL


GOOGLE_URL=https://storage.googleapis.com/etcd

GITHUB_URL=https://github.com/etcd-io/etcd/releases/download

DOWNLOAD_URL=${GOOGLE_URL}


rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test


curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64

</tr></table>

... (truncated)

Commits
  • a17edfd version: bump up to 3.5.21
  • 2c77e22 Merge pull request #19686 from ivanvc/release-3.5-golang.org-x-net-to-v0.37.0
  • 14b8ce4 dependency: bump golang.org/x/net from v0.36.0 to v0.38.0
  • 163ff00 Merge pull request #19646 from ivanvc/release-3.5-bump-github.com-golang-jwt-...
  • 6439620 dependency: bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2
  • ac31c34 version: bump up to 3.5.20
  • c518f6f Merge pull request #19629 from ahrtr/learner_test_20250319
  • 0a51fc2 Add e2e test to verify etcd is able to automatically fix the issue
  • 3c65dfa Merge pull request #19602 from ahrtr/3.5_add_learner_test_20250314
  • 341af03 Fix the issue that learner promotion command doesn't support json output
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/server/v3 from 3.5.19 to 3.5.21

Release notes

Sourced from go.etcd.io/etcd/server/v3's releases.

v3.5.21

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.5.21

choose either URL


GOOGLE_URL=https://storage.googleapis.com/etcd

GITHUB_URL=https://github.com/etcd-io/etcd/releases/download

DOWNLOAD_URL=${GOOGLE_URL}


rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test


curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz


/tmp/etcd-download-test/etcd --version

/tmp/etcd-download-test/etcdctl version

/tmp/etcd-download-test/etcdutl version


start a local etcd server


/tmp/etcd-download-test/etcd


write,read to etcd


/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar

/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo
macOS (Darwin)
ETCD_VER=v3.5.21

choose either URL


GOOGLE_URL=https://storage.googleapis.com/etcd

GITHUB_URL=https://github.com/etcd-io/etcd/releases/download

DOWNLOAD_URL=${GOOGLE_URL}


rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test


curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64

</tr></table>

... (truncated)

Commits

dependabot[bot] avatar Apr 24 '25 20:04 dependabot[bot]

/gcbrun

dpebot avatar Apr 24 '25 20:04 dpebot

/gcbrun

dpebot avatar May 01 '25 21:05 dpebot

/gcbrun

dpebot avatar Jun 01 '25 21:06 dpebot

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot[bot] avatar Jul 01 '25 21:07 dependabot[bot]