regatta icon indicating copy to clipboard operation
regatta copied to clipboard

Published 20 hours ago verified publisher icon jamf

build(deps): bump the gomod group across 1 directory with 10 updates

Open dependabot[bot] opened this issue 6 months ago • 2 comments

Bumps the gomod group with 9 updates in the / directory:

Package From To
github.com/VictoriaMetrics/metrics 1.33.1 1.35.1
github.com/klauspost/compress 1.17.8 1.17.9
github.com/prometheus/common 0.53.0 0.55.0
github.com/spf13/cobra 1.8.0 1.8.1
github.com/spf13/viper 1.18.2 1.19.0
golang.org/x/sync 0.7.0 0.8.0
golang.org/x/time 0.5.0 0.6.0
google.golang.org/grpc 1.63.2 1.65.0
google.golang.org/grpc/cmd/protoc-gen-go-grpc 1.3.0 1.5.1

Updates github.com/VictoriaMetrics/metrics from 1.33.1 to 1.35.1

Commits
  • d783709 push.go: clarify the docs for PushOptions.Method field
  • eba0da0 process_metrics_linux.go: avoid calling os.Getpagesize() with every writeProc...
  • 7a44715 histogram.go: code cleanup after e40cfe3ab596ac0302fad2cb8eb1779895bc43a3
  • 17878c4 Make UnregisterSet() less error-prone to use
  • 32321d6 Merge pull request #77 from VictoriaMetrics/fixed-histogram-merge
  • 001417b fixed tests
  • 925f863 fixed histogram merge
  • d5fb341 Merge pull request #70 from aierui/request_method
  • 464c46d Merge pull request #76 from zhengtianbao/master
  • 7b14975 Use Getpagesize replace hard-coded page size
  • Additional commits viewable in compare view

Updates github.com/klauspost/compress from 1.17.8 to 1.17.9

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.17.9

What's Changed

Full Changelog: https://github.com/klauspost/compress/compare/v1.17.8...v1.17.9

Commits

Updates github.com/prometheus/common from 0.53.0 to 0.55.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.55.0

What's Changed

New Contributors

Full Changelog: https://github.com/prometheus/common/compare/v0.54.0...v0.55.0

v0.54.0

What's Changed

New Contributors

Full Changelog: https://github.com/prometheus/common/compare/v0.53.0...v0.54.0

Commits
  • 0c7b585 Merge pull request #649 from rajagopalanand/13364
  • 804fbbe Update common Prometheus files (#660)
  • 3f20456 Bump golang.org/x/net from 0.25.0 to 0.26.0 (#657)
  • e31eeaa Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (#658)
  • 3236a12 Bump golang.org/x/oauth2 from 0.20.0 to 0.21.0 (#656)
  • 1cfb464 Bump github.com/aws/aws-sdk-go from 1.53.14 to 1.54.7 in /sigv4 (#659)
  • ab322ea chore: add HumanizeTimestamp; make ConvertToFloat exportable (#654)
  • 04635d2 Merge pull request #655 from yeya24/change-omit-empty
  • c4974e5 fix test
  • 43f0db5 set http_headers to be omit empty
  • Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.8.0 to 1.8.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.8.1

✨ Features

🐛 Bug fixes

🔧 Maintenance

🧪 Testing & CI/CD

✏️ Documentation

... (truncated)

Commits

Updates github.com/spf13/viper from 1.18.2 to 1.19.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.19.0

What's Changed

Bug Fixes 🐛

Dependency Updates ⬆️

... (truncated)

Commits
  • b9733f0 build(deps): bump actions/checkout from 4.1.4 to 4.1.6
  • 6ecc5c8 build(deps): bump cachix/install-nix-action from 26 to 27
  • 248c6fd build(deps): bump github/codeql-action from 3.25.4 to 3.25.7
  • abea773 Update references to bketelsen/crypt
  • f17acb4 build(deps): bump golangci/golangci-lint-action from 4.0.0 to 6.0.1
  • 8e285a5 build(deps): bump github/codeql-action from 3.25.2 to 3.25.4
  • 4017620 build(deps): bump actions/setup-go from 5.0.0 to 5.0.1
  • b67e814 build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.1 to 2.2.2
  • 4a182c7 build(deps): bump actions/dependency-review-action from 4.2.5 to 4.3.2
  • 45a0e12 build(deps): bump mheap/github-action-required-labels
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.7.0 to 0.8.0

Commits

Updates golang.org/x/time from 0.5.0 to 0.6.0

Commits

Updates google.golang.org/grpc from 1.63.2 to 1.65.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.65.0

Dependencies

  • Change support policy to cover only the latest TWO releases of Go, matching the policy for Go itself. See #7249 for more information. (#7250)
  • Update x/net/http2 to address CVE-2023-45288 (#7282)

Behavior Changes

  • credentials/tls: clients and servers will now reject connections that don't support ALPN when environment variable GRPC_ENFORCE_ALPN_ENABLED is set to "true" (case insensitive). (#7184)
    • NOTE: this behavior will become the default in a future release.
  • metadata: remove String method from MD to make printing more consistent (#7373)

New Features

  • grpc: add WithMaxCallAttempts to configure gRPC's retry behavior per-channel. (#7229)

Bug Fixes

  • ringhash: properly apply endpoint weights instead of ignoring them (#7156)
  • xds: fix a bug that could cause xds-enabled servers to stop accepting new connections after handshaking errors (#7128)

Release 1.64.1

Dependencies

  • Update x/net/http2 to address CVE-2023-45288 (#7352)
  • metadata: remove String method from MD to make printing consistent (#7374)

Release 1.64.0

API Changes

  • stats: Deprecate InPayload.Data and OutPayload.Data; they were experimental and will be deleted in the next release (#7121)

Behavior Changes

  • codec: Remove handling of environment variable GRPC_GO_ADVERTISE_COMPRESSORS to suppress setting supported compressors in grpc-accept-encoding header. Compressors will always be advertised, as they have been by default for some time (#7203)

New Features

  • resolver/dns: Add SetMinResolutionInterval to set the minimum interval at which DNS re-resolutions may occur (#6962)
  • peer/peer: Implement the fmt.Stringer interface for pretty printing Peer, and
  • metadata/metadata: Implement the fmt.Stringer interface for pretty printing MD (#7137)

Performance Improvements

... (truncated)

Commits
  • 2da9769 Change version to 1.65.0 (#7306)
  • ede96b7 metadata: remove String method (#7373)
  • 64be203 grpc: Readd pick first name (#7336) (#7341)
  • 25e33a6 examples: Add CSM Observability example (#7302) (#7318)
  • 04a5f46 xds/internal/xdsclient: Emit unknown for CSM Labels if not present in CDS (#7...
  • cff5c3e stats/opentelemetry: Add e2e testing for CSM Observability (#7279) (#7316)
  • 9b970fd dns: fix constant 30s backoff for re-resolution (#7262) (#7311)
  • 6d23620 documentation: on server, use FromIncomingContext for retrieving context and...
  • 7e5898e xds: unify xDS client creation APIs meant for testing (#7268)
  • 5d7bd7a interop/xds: Interop client and server changes for CSM Observability (#7280)
  • Additional commits viewable in compare view

Updates google.golang.org/grpc/cmd/protoc-gen-go-grpc from 1.3.0 to 1.5.1

Release notes

Sourced from google.golang.org/grpc/cmd/protoc-gen-go-grpc's releases.

protoc-gen-go-grpc v1.5.1

Dependencies

  • Removed replace directive (needed only for testing), since it is incompatible with go install (#7451).

protoc-gen-go-grpc v1.5.0

Security

  • The generated function Register<Service>Server now panics if the Unimplemented<Service>Server struct is embedded in a way that would otherwise lead to runtime panics if an unimplemented method was called. Users are advised to ensure they are properly embedding the Unimplemented struct for their service, and to regenerate their proto files to confirm. (#7438)
    • Note: "Proper embedding" of the Unimplemented struct means either embedding the struct by value (preferred) or ensuring it is always initialized to a valid pointer. E.g.
struct MyServiceImpl {
	pb.UnimplementedMyServiceServer // embedded by value, not pointer
	// .. other struct fields ..
}

New Features

  • Generated code for services will produce streaming method definitions using one of six different generic types (e.g. BidiStreamingServer or ClientStreamingClient) instead of producing complete interfaces and implementations for the streaming methods. This can be disabled by setting use_generic_streams_experimental=false. Please file a bug if you encounter any issues with this behavior. (#7387)

Bug Fixes

  • A period (.) is added to the end of the service interface doc comment to comply with Godoc. (#7392)

protoc-gen-go-grpc v1.4.0

New Features

  • Add an optional implementation of streams using generics (Experimental) (#7057)
    • The new use_generic_stream_experimental=true option will cause the gRPC codegen to use prebuilt generic types to implement client and server stream objects, rather than generating new types and implementations for every RPC method. We intend to transition this to the default behavior in the next release. Please test it and provide any feedback.
    • Special Thanks: @​aarongable
  • Copy service comments to interfaces in generated code (#7243)
  • Generated code includes static method gRPC call options for integration with the upcoming OpenTelemetry metrics support (#6960)

Dependencies

Commits

Updates google.golang.org/protobuf from 1.34.1 to 1.34.2

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

dependabot[bot] avatar Aug 05 '24 12:08 dependabot[bot]