Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the security group with 3 updates #1649

Merged
merged 1 commit into from
Oct 15, 2024
Merged

chore(deps): bump the security group with 3 updates #1649

merged 1 commit into from
Oct 15, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 14, 2024

Bumps the security group with 3 updates: go.opentelemetry.io/otel, go.opentelemetry.io/otel/sdk and helm.sh/helm/v3.

Updates go.opentelemetry.io/otel from 1.30.0 to 1.31.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.31.0/0.53.0/0.7.0/0.0.10] 2024-10-11

Added

  • Add go.opentelemetry.io/otel/sdk/metric/exemplar package which includes Exemplar, Filter, TraceBasedFilter, AlwaysOnFilter, HistogramReservoir, FixedSizeReservoir, Reservoir, Value and ValueType types. These will be used for configuring the exemplar reservoir for the metrics sdk. (#5747, #5862)
  • Add WithExportBufferSize option to log batch processor.(#5877)

Changed

  • Enable exemplars by default in go.opentelemetry.io/otel/sdk/metric. Exemplars can be disabled by setting OTEL_METRICS_EXEMPLAR_FILTER=always_off (#5778)
  • Logger.Enabled in go.opentelemetry.io/otel/log now accepts a newly introduced EnabledParameters type instead of Record. (#5791)
  • FilterProcessor.Enabled in go.opentelemetry.io/otel/sdk/log/internal/x now accepts EnabledParameters instead of Record. (#5791)
  • The Record type in go.opentelemetry.io/otel/log is no longer comparable. (#5847)
  • Performance improvements for the trace SDK SetAttributes method in Span. (#5864)
  • Reduce memory allocations for the Event and Link lists in Span. (#5858)
  • Performance improvements for the trace SDK AddEvent, AddLink, RecordError and End methods in Span. (#5874)

Deprecated

Fixed

  • The race condition for multiple FixedSize exemplar reservoirs identified in #5814 is resolved. (#5819)
  • Fix log records duplication in case of heterogeneous resource attributes by correctly mapping each log record to it's resource and scope. (#5803)
  • Fix timer channel drain to avoid hanging on Go 1.23. (#5868)
  • Fix delegation for global meter providers, and panic when calling otel.SetMeterProvider. (#5827)
  • Change the reflect.TypeOf to use a nil pointer to not allocate on the heap unless necessary. (#5827)
Commits
  • bc2fe88 Release v1.31.0/v0.53.0/v0.7.0/v0.0.10 (#5883)
  • a7d5c1a Add an option to configure the exporter buffer of the BatchProcessor (#5877)
  • eb9279b fix(deps): update golang.org/x/exp digest to f66d83c (#5880)
  • 6441653 Performance improvements for the trace SDK in Span. (#5874)
  • 8e9baf2 chore(deps): update lycheeverse/lychee-action action to v2 (#5878)
  • 8fbaa97 Reduce newEvictedQueueLink and newEvictedQueueEvent memory allocations (#...
  • 4a911f9 chore(deps): update googleapis to 5fefd90 (#5876)
  • 98cbdcb fix(deps): update module google.golang.org/protobuf to v1.35.1 (#5875)
  • 3cbd967 Performance improvements for recordingSpan SetAttributes and `addOverCapA...
  • 9e791a6 fix(deps): update golang.org/x (#5872)
  • Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/sdk from 1.30.0 to 1.31.0

Changelog

Sourced from go.opentelemetry.io/otel/sdk's changelog.

[1.31.0/0.53.0/0.7.0/0.0.10] 2024-10-11

Added

  • Add go.opentelemetry.io/otel/sdk/metric/exemplar package which includes Exemplar, Filter, TraceBasedFilter, AlwaysOnFilter, HistogramReservoir, FixedSizeReservoir, Reservoir, Value and ValueType types. These will be used for configuring the exemplar reservoir for the metrics sdk. (#5747, #5862)
  • Add WithExportBufferSize option to log batch processor.(#5877)

Changed

  • Enable exemplars by default in go.opentelemetry.io/otel/sdk/metric. Exemplars can be disabled by setting OTEL_METRICS_EXEMPLAR_FILTER=always_off (#5778)
  • Logger.Enabled in go.opentelemetry.io/otel/log now accepts a newly introduced EnabledParameters type instead of Record. (#5791)
  • FilterProcessor.Enabled in go.opentelemetry.io/otel/sdk/log/internal/x now accepts EnabledParameters instead of Record. (#5791)
  • The Record type in go.opentelemetry.io/otel/log is no longer comparable. (#5847)
  • Performance improvements for the trace SDK SetAttributes method in Span. (#5864)
  • Reduce memory allocations for the Event and Link lists in Span. (#5858)
  • Performance improvements for the trace SDK AddEvent, AddLink, RecordError and End methods in Span. (#5874)

Deprecated

Fixed

  • The race condition for multiple FixedSize exemplar reservoirs identified in #5814 is resolved. (#5819)
  • Fix log records duplication in case of heterogeneous resource attributes by correctly mapping each log record to it's resource and scope. (#5803)
  • Fix timer channel drain to avoid hanging on Go 1.23. (#5868)
  • Fix delegation for global meter providers, and panic when calling otel.SetMeterProvider. (#5827)
  • Change the reflect.TypeOf to use a nil pointer to not allocate on the heap unless necessary. (#5827)
Commits
  • bc2fe88 Release v1.31.0/v0.53.0/v0.7.0/v0.0.10 (#5883)
  • a7d5c1a Add an option to configure the exporter buffer of the BatchProcessor (#5877)
  • eb9279b fix(deps): update golang.org/x/exp digest to f66d83c (#5880)
  • 6441653 Performance improvements for the trace SDK in Span. (#5874)
  • 8e9baf2 chore(deps): update lycheeverse/lychee-action action to v2 (#5878)
  • 8fbaa97 Reduce newEvictedQueueLink and newEvictedQueueEvent memory allocations (#...
  • 4a911f9 chore(deps): update googleapis to 5fefd90 (#5876)
  • 98cbdcb fix(deps): update module google.golang.org/protobuf to v1.35.1 (#5875)
  • 3cbd967 Performance improvements for recordingSpan SetAttributes and `addOverCapA...
  • 9e791a6 fix(deps): update golang.org/x (#5872)
  • Additional commits viewable in compare view

Updates helm.sh/helm/v3 from 3.16.1 to 3.16.2

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.16.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.2. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.16.3 is the next patch release and will be on November 13, 2024
  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

  • Revering change unrelated to issue #13176 13654a52f7c70a143b1dd51416d633e1071faffb (ricardo.bartels@telekom.de)
  • adds tests for handling of Helm index with broken chart versions #13176 9fc8f1b614e1a2f41afa36e081c89ead21cd63bb (ricardo.bartels@telekom.de)
  • improves handling of Helm index with broken helm chart versions #13176 961194d85dd0c9d18492a99c9193faa7f1556968 (ricardo.bartels@telekom.de)
  • Bump the k8s-io group with 7 updates f6be62b65a92c16927c24310885d01ecfb1d2aaf (dependabot[bot])
  • adding check-latest:true 27d44cf4c9cbdb05aaed038e970263a5b11c0b51 (Robert Sirchia)
  • Grammar fixes 46e0a0f9e44b56b0d2fc81cc0e624534662b1df7 (Nathan Baulch)
  • Fix typos a1bd541d17cd6d120635c1f65ada92edcd224517 (Nathan Baulch)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the security group with 3 updates
be506ce 
Bumps the security group with 3 updates: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go), [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) and [helm.sh/helm/v3](https://github.com/helm/helm).


Updates `go.opentelemetry.io/otel` from 1.30.0 to 1.31.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.30.0...v1.31.0)

Updates `go.opentelemetry.io/otel/sdk` from 1.30.0 to 1.31.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.30.0...v1.31.0)

Updates `helm.sh/helm/v3` from 3.16.1 to 3.16.2
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.16.1...v3.16.2)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: security
- dependency-name: go.opentelemetry.io/otel/sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: security
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
...

Signed-off-by: dependabot[bot] <support@github.com>
replicated-ci
replicated-ci approved these changes Oct 15, 2024
View reviewed changes
Copy link

@replicated-ci replicated-ci left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍

This PR was automatically approved and merged by the automated-prs-manager GitHub action

@replicated-ci replicated-ci merged commit 7818532 into main Oct 15, 2024
27 checks passed
@replicated-ci replicated-ci deleted the dependabot/go_modules/security-310fde0422 branch October 15, 2024 00:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@replicated-ci replicated-ci replicated-ci approved these changes

Assignees
No one assigned
Labels
dependencies go type::security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@replicated-ci