chore(deps): update opentelemetry-exporter-otlp requirement from ~=1.37.0 to >=1.37,<1.39

[dependabot[bot]]

Updates the requirements on opentelemetry-exporter-otlp to permit the latest version.

Changelog

Sourced from opentelemetry-exporter-otlp's changelog.

Version 1.38.0/0.59b0 (2025-10-16)

• Add rstcheck to pre-commit to stop introducing invalid RST (#4755)
• logs: extend Logger.emit to accept separated keyword arguments (#4737)
• logs: add warnings for classes that would be deprecated and renamed in 1.39.0 (#4771)

Version 1.37.0/0.58b0 (2025-09-11)

• Add experimental composite samplers (#4714)
• Add new environment variables to the SDK OTEL_PYTHON_EXPORTER_OTLP_{HTTP/GRPC}_{METRICS/TRACES/LOGS}_CREDENTIAL_PROVIDER that can be used to inject a requests.Session or grpc.ChannelCredentials object into OTLP exporters created during auto instrumentation #4689.
• Filter duplicate logs out of some internal logger's logs on the export logs path that might otherwise endlessly log or cause a recursion depth exceeded issue in cases where logging itself results in an exception. (#4695).
• docs: linked the examples with their github source code location and added Prometheus example (#4728)
• Permit to override default HTTP OTLP exporters headers (#4634)
• semantic-conventions: Bump to 1.37.0 (#4731)
• opentelemetry-sdk: fix handling of OTEL_ATTRIBUTE_COUNT_LIMIT in logs (#4677)
• Performance: Cache importlib_metadata.entry_points (#4735)
• opentelemetry-sdk: fix calling Logger.emit with an API LogRecord instance (#4741)

Version 1.36.0/0.57b0 (2025-07-29)

• Add missing Prometheus exporter documentation (#4485)

• Overwrite logging.config.fileConfig and logging.config.dictConfig to ensure the OTLP LogHandler remains attached to the root logger. Fix a bug that can cause a deadlock to occur over logging._lock in some cases (#4636).

• otlp-http-exporter: set default value for param timeout_sec in _export method (#4691)

• Update OTLP gRPC/HTTP exporters: calling shutdown will now interrupt exporters that are sleeping before a retry attempt, and cause them to return failure immediately. Update BatchSpan/LogRecordProcessors: shutdown will now complete after 30 seconds of trying to finish exporting any buffered telemetry, instead of continuing to export until all telemetry was exported. (#4638).

Version 1.35.0/0.56b0 (2025-07-11)

• Update OTLP proto to v1.7 #4645.
• Add event_name as a top level field in the LogRecord. Events are now simply logs with the

... (truncated)

Commits

• 1f68134 Prepare release 1.38.0/0.59b0 (#4777)
• f1de47f Warnings before removals (#4771)
• 1797c1d docs (#4774)
• daae23b opentelemetry-sdk: be less picky about deprecated LogRecord interface (#4762)
• da15594 Fixup LogRecord.emit signature (#4737)
• b63f643 Add exporter/opentelemetry-exporter-otlp-proto-grpc to the pyright include ...
• 6f97ed8 Add rstcheck to pre-commit (#4755)
• 5c8269c removed references to batch processor (#4751)
• e75b0ab Update version to 1.38.0.dev/0.59b0.dev (#4744)
• 359f436 opentelemetry-sdk: fix formatting (#4746)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)