Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the all-deps group across 1 directory with 5 updates #123

Closed
wants to merge 1 commit into from
Closed

Bump the all-deps group across 1 directory with 5 updates #123

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Dec 16, 2024
edited
Loading

Bumps the all-deps group with 5 updates in the / directory:

Package From To
github.com/fullstorydev/grpcurl 1.9.1 1.9.2
github.com/google/trillian 1.6.1 1.7.0
golang.org/x/crypto 0.29.0 0.31.0
golang.org/x/net 0.31.0 0.32.0
google.golang.org/grpc 1.68.0 1.69.0

Updates github.com/fullstorydev/grpcurl from 1.9.1 to 1.9.2

Release notes

Sourced from github.com/fullstorydev/grpcurl's releases.

v1.9.2

Changelog

  • b9a11e9 update core Go version in go.mod to 1.21 (#495)
  • bc5cf81 chore: update to Golang 1.23 (#485)
  • fb49f04 Update README.md (#353)
  • cdb43b0 Remove custom dialer in order to use the default grpc-go dialer, which supports proxies. (#480)
  • 56181ba makefile updates (#484)
  • 46c38b3 feat: Add functionality to export proto files (#475)
  • a05d48d Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (#470)
  • fc63514 add 32bit arm build targets (#461)
  • e14d9f7 Bump google.golang.org/protobuf from 1.34.0 to 1.34.1 (#465)
  • 239dde4 feat: introduce transparent client side health check (#463)
  • 80e833a Bump google.golang.org/protobuf (#460)
  • 6fccd77 Bump golang.org/x/net from 0.22.0 to 0.23.0 (#458)
Commits
  • b9a11e9 update core Go version in go.mod to 1.21 (#495)
  • bc5cf81 chore: update to Golang 1.23 (#485)
  • fb49f04 Update README.md (#353)
  • cdb43b0 Remove custom dialer in order to use the default grpc-go dialer, which suppor...
  • 56181ba makefile updates (#484)
  • 46c38b3 feat: Add functionality to export proto files (#475)
  • a05d48d Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (#470)
  • fc63514 add 32bit arm build targets (#461)
  • e14d9f7 Bump google.golang.org/protobuf from 1.34.0 to 1.34.1 (#465)
  • 239dde4 feat: introduce transparent client side health check (#463)
  • Additional commits viewable in compare view

Updates github.com/google/trillian from 1.6.1 to 1.7.0

Release notes

Sourced from github.com/google/trillian's releases.

v1.7.0

What's Changed

Storage

Misc

Dependency updates

... (truncated)

Changelog

Sourced from github.com/google/trillian's changelog.

v1.7.0

Storage

Misc

Dependency updates

... (truncated)

Commits
  • 1d73795 Update changelog for v1.7.0 release (#3690)
  • 5209ff1 Sensible default quota and storage systems when MySQL support unavailable (#3...
  • 92bc601 Bump the go-deps group with 3 updates (#3687)
  • db5cf79 Bump github/codeql-action in the github-actions-deps group (#3688)
  • a3014be Add postgresql Docker image to Dependabot (#3677)
  • f908fbc Pin Docker container images by hash (#3678)
  • 5a88d3d Bump the go-deps group with 10 updates (#3684)
  • 263e312 Bump the docker-deps group across 3 directories with 2 updates (#3686)
  • 6ff4354 Bump google-auth-library from 9.14.2 to 9.15.0 in /scripts/gcb2slack (#3683)
  • 23163e0 Bump github/codeql-action in the github-actions-deps group (#3685)
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.29.0 to 0.31.0

Commits
  • b4f1988 ssh: make the public key cache a 1-entry FIFO cache
  • 7042ebc openpgp/clearsign: just use rand.Reader in tests
  • 3e90321 go.mod: update golang.org/x dependencies
  • 8c4e668 x509roots/fallback: update bundle
  • See full diff in compare view

Updates golang.org/x/net from 0.31.0 to 0.32.0

Commits
  • 285e1cf go.mod: update golang.org/x dependencies
  • d0a1049 route: remove unused sizeof* consts on freebsd
  • 6e41410 http2: fix benchmarks using common frame read/write functions
  • 4be1253 route: change from syscall to x/sys/unix
  • bc37675 http2: limit number of PINGs bundled with RST_STREAMs
  • e9cd716 route: fix parse of zero-length sockaddrs in RIBs
  • 9a51899 http2: add SETTINGS_ENABLE_CONNECT_PROTOCOL support
  • See full diff in compare view

Updates google.golang.org/grpc from 1.68.0 to 1.69.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.69.0

Known Issues

  • The recently added grpc.NewClient function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (#7556)

New Features

  • stats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (#7874)
  • xdsclient: add support to fallback to lower priority servers when higher priority ones are down (#7701)
  • dns: Add support for link local IPv6 addresses (#7889)
  • The new experimental pickfirst LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in RFC-8305 section 4, to attempt connections to multiple backends concurrently. The experimental pickfirst policy can be enabled by setting the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST to true. (#7725, #7742)
  • balancer/pickfirst: Emit metrics from the pick_first load balancing policy (#7839)
  • grpc: export MethodHandler, which is the type of an already-exported field in MethodDesc (#7796)

Bug Fixes

  • credentials/google: set scope for application default credentials (#7887)
  • xds: fix edge-case issues where some clients or servers would not initialize correctly or would not receive errors when resources are invalid or unavailable if another channel or server with the same target was already in use . (#7851, #7853)
  • examples: fix the debugging example, which was broken by a recent change (#7833)

Behavior Changes

  • client: update retry attempt backoff to apply jitter per updates to gRFC A6. (#7869)
  • balancer/weightedroundrobin: use the pick_first LB policy to manage connections (#7826)

API Changes

  • balancer: An internal method is added to the balancer.SubConn interface to force implementors to embed a delegate implementation. This requirement is present in the interface documentation, but wasn't enforced earlier. (#7840)

Performance Improvements

  • mem: implement a ReadAll() method for more efficient io.Reader consumption (#7653)
  • mem: use slice capacity instead of length to determine whether to pool buffers or directly allocate them (#7702)

Documentation

  • examples/csm_observability: Add xDS Credentials and switch server to be xDS enabled (#7875)

Release 1.68.1

Bug Fixes

  • credentials/alts: avoid SRV and TXT lookups for handshaker service to work around hangs caused by buggy versions of systemd-resolved. (#7861)

Dependencies

... (truncated)

Commits
  • 317271b pickfirst: Register a health listener when used as a leaf policy (#7832)
  • 5565631 balancer/pickfirst: replace grpc.Dial with grpc.NewClient in tests (#7879)
  • 634497b test: Split import paths for generated message and service code (#7891)
  • 78aa51b pickfirst: Stop test servers without closing listeners (#7872)
  • 00272e8 dns: Support link local IPv6 addresses (#7889)
  • 17d08f7 scripts/gen-deps: filter out grpc modules (#7890)
  • ab189b0 examples/features/csm_observability: Add xDS Credentials (#7875)
  • 3ce87dd credentials/google: Add cloud-platform scope for ADC (#7887)
  • 3c0586a stats/opentelemetry: Cleanup OpenTelemetry API's before stabilization (#7874)
  • 4c07bca stream: add jitter to retry backoff in accordance with gRFC A6 (#7869)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the all-deps group across 1 directory with 5 updates
2520eb0 
Bumps the all-deps group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/fullstorydev/grpcurl](https://github.com/fullstorydev/grpcurl) | `1.9.1` | `1.9.2` |
| [github.com/google/trillian](https://github.com/google/trillian) | `1.6.1` | `1.7.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.29.0` | `0.31.0` |
| [golang.org/x/net](https://github.com/golang/net) | `0.31.0` | `0.32.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.68.0` | `1.69.0` |



Updates `github.com/fullstorydev/grpcurl` from 1.9.1 to 1.9.2
- [Release notes](https://github.com/fullstorydev/grpcurl/releases)
- [Changelog](https://github.com/fullstorydev/grpcurl/blob/master/.goreleaser.yml)
- [Commits](fullstorydev/grpcurl@v1.9.1...v1.9.2)

Updates `github.com/google/trillian` from 1.6.1 to 1.7.0
- [Release notes](https://github.com/google/trillian/releases)
- [Changelog](https://github.com/google/trillian/blob/master/CHANGELOG.md)
- [Commits](google/trillian@v1.6.1...v1.7.0)

Updates `golang.org/x/crypto` from 0.29.0 to 0.31.0
- [Commits](golang/crypto@v0.29.0...v0.31.0)

Updates `golang.org/x/net` from 0.31.0 to 0.32.0
- [Commits](golang/net@v0.31.0...v0.32.0)

Updates `google.golang.org/grpc` from 1.68.0 to 1.69.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.68.0...v1.69.0)

---
updated-dependencies:
- dependency-name: github.com/fullstorydev/grpcurl
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-deps
- dependency-name: github.com/google/trillian
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Dec 16, 2024
@dependabot dependabot bot mentioned this pull request Dec 16, 2024
Closed
@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Dec 23, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 23, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/all-deps-72378769c7 branch December 23, 2024 13:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants