Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the gomod group with 12 updates #504

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump the gomod group with 12 updates #504

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2025

Bumps the gomod group with 12 updates:

Package From To
github.com/alecthomas/kong 1.7.0 1.8.1
github.com/go-sql-driver/mysql 1.8.1 1.9.0
github.com/nats-io/nats.go 1.38.0 1.39.1
github.com/prometheus/client_golang 1.20.5 1.21.0
github.com/zitadel/oidc/v3 3.34.1 3.35.0
golang.org/x/crypto 0.32.0 0.35.0
golang.org/x/oauth2 0.25.0 0.26.0
golang.org/x/sync 0.10.0 0.11.0
golang.org/x/time 0.9.0 0.10.0
k8s.io/api 0.32.1 0.32.2
k8s.io/apimachinery 0.32.1 0.32.2
k8s.io/client-go 0.32.1 0.32.2

Updates github.com/alecthomas/kong from 1.7.0 to 1.8.1

Commits
  • cab639a chore: add test for decoding
  • 7747b41 Revert "Load environment variables as a resolver (#480)"
  • 3cedc44 Load environment variables as a resolver (#480)
  • 6590294 chore(deps): update all non-major dependencies (#486)
  • 705e259 chore: reduce lefthook output
  • a6efd40 chore: add lefthook
  • 5765c11 refactor: minor simplification of getMethods
  • See full diff in compare view

Updates github.com/go-sql-driver/mysql from 1.8.1 to 1.9.0

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.0

Major Changes

  • Implement zlib compression. (#1487)
  • Supported Go version is updated to Go 1.21+. (#1639)
  • Add support for VECTOR type introduced in MySQL 9.0. (#1609)
  • Config object can have custom dial function. (#1527)

Bugfixes

  • Fix auth errors when username/password are too long. (#1625)
  • Check if MySQL supports CLIENT_CONNECT_ATTRS before sending client attributes. (#1640)
  • Fix auth switch request handling. (#1666)

Other changes

  • Add "filename:line" prefix to log in go-mysql. Custom loggers now show it. (#1589)
  • Improve error handling. It reduces the "busy buffer" errors. (#1595, #1601, #1641)
  • Use strconv.Atoi to parse max_allowed_packet. (#1661)
  • rejectReadOnly option now handles ER_READ_ONLY_MODE (1290) error too. (#1660)

Full Changelog: go-sql-driver/mysql@v1.8.1...v1.9.0

New Contributors

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.0 (2025-02-18)

Major Changes

  • Implement zlib compression. (#1487)
  • Supported Go version is updated to Go 1.21+. (#1639)
  • Add support for VECTOR type introduced in MySQL 9.0. (#1609)
  • Config object can have custom dial function. (#1527)

Bugfixes

  • Fix auth errors when username/password are too long. (#1625)
  • Check if MySQL supports CLIENT_CONNECT_ATTRS before sending client attributes. (#1640)
  • Fix auth switch request handling. (#1666)

Other changes

  • Add "filename:line" prefix to log in go-mysql. Custom loggers now show it. (#1589)
  • Improve error handling. It reduces the "busy buffer" errors. (#1595, #1601, #1641)
  • Use strconv.Atoi to parse max_allowed_packet. (#1661)
  • rejectReadOnly option now handles ER_READ_ONLY_MODE (1290) error too. (#1660)
Commits

Updates github.com/nats-io/nats.go from 1.38.0 to 1.39.1

Release notes

Sourced from github.com/nats-io/nats.go's releases.

Release v1.39.1

Changelog

Fixed

  • KeyValue:
    • Prevent ListKeysFiltered from returning deleted keys. Thanks @​kruegernet for the contribution (#1803)

Improved

  • Remove stale experimental comment in Service API (#1805)

Complete Changes

nats-io/nats.go@v1.39.0...v1.39.1

v1.39.0

Changelog

Overview

This release bumps the minimal go version in go.mod to 1.22.

Added

  • JetStream:
    • Added PullMaxMessagesWithBytesLimit option for Consume and Messages (#1789)
    • Added Metadata to OrderedConsumerConfig. Thanks @​mwain for the contribution (#1737)
    • Added JetStream.Options() and JetStream.Conn() methods to JetStream interface (#1792)
  • KeyValue:
    • Added ListKeysFiltered for listing keys with multiple filters. Thanks @​somratdutta for the contribution (#1711)

Fixed

  • JetStream:
    • Fixed invalid heartbeat timer for Consumer.Messages() (#1786)
  • ObjectStore:
    • Fixed invalid error being returned from DeleteObjectStore (#1762)
  • WebSockets:
    • Fixed protocol parsing errors with websocket compression and PONGs. Thanks @​rsafonseca for the contribution (#1790)
  • Core NATS:
    • Protect against possible nil pointer panic (#1771)

Changed

  • Bump go version to v1.22 (#1773)

Improved

  • Fixed typo in JetStream docs. Thanks @​davydog187 for the contribution (#1758)
  • Improved documentation of JetStream Consume and Messages options (#1770)
  • Removed obsolete build tags (#1787)

Complete Changes

... (truncated)

Commits
  • 4ba1afe Release v1.39.1 (#1806)
  • acd252b Remove stale experimental comment (#1805)
  • 7885c8c [FIXED] Prevent KV ListKeysFiltered from returning deleted keys (#1803)
  • 901c987 Release v1.39.0 (#1798)
  • 5a2c74a [IMPROVED] Enhance documentation for PullMaxMessagesWithBytesLimit and PullMa...
  • 81d2fae [ADDED] PullMaxMessagesWithFetchSizeLimit option for Consume and Messages (#1...
  • b1be9bf [IMPROVED] Use faster gha runners and fix leaking goroutines in Service API (...
  • faec055 [ADDED] Options() and Conn() methods to JetStream (#1792)
  • 16e780e [FIXED] Protect against potential panics (#1771)
  • dfb52ad [FIXED] Protocol parsing errors with ws compression and pongs (#1790)
  • Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.20.5 to 1.21.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.21.0 / 2025-02-19

⚠️ This release contains potential breaking change if you upgrade github.com/prometheus/common to 0.62+ together with client_golang (and depend on the strict, legacy validation for the label names). New common version changes model.NameValidationScheme global variable, which relaxes the validation of label names and metric name, allowing all UTF-8 characters. Typically, this should not break any user, unless your test or usage expects strict certain names to panic/fail on client_golang metric registration, gathering or scrape. In case of problems change model.NameValidationScheme to old model.LegacyValidation value in your project init function. ⚠️

  • [BUGFIX] gocollector: Fix help message for runtime/metric metrics. #1583
  • [BUGFIX] prometheus: Fix Desc.String() method for no labels case. #1687
  • [PERF] prometheus: Optimize popular prometheus.BuildFQName function; now up to 30% faster. #1665
  • [PERF] prometheus: Optimize Inc, Add and Observe cumulative metrics; now up to 50% faster under high concurrent contention. #1661
  • [CHANGE] Upgrade prometheus/common to 0.62.0 which changes model.NameValidationScheme global variable. #1712
  • [CHANGE] Add support for Go 1.23. #1602
  • [FEATURE] process_collector: Add support for Darwin systems. #1600 #1616 #1625 #1675 #1715
  • [FEATURE] api: Add ability to invoke CloseIdleConnections on api.Client using api.Client.(CloseIdler).CloseIdleConnections() casting. #1513
  • [FEATURE] promhttp: Add promhttp.HandlerOpts.EnableOpenMetricsTextCreatedSamples option to create OpenMetrics _created lines. Not recommended unless you want to use opt-in Created Timestamp feature. Community works on OpenMetrics 2.0 format that should make those lines obsolete (they increase cardinality significantly). #1408
  • [FEATURE] prometheus: Add NewConstNativeHistogram function. #1654

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.21.0 / 2025-02-17

⚠️ This release contains potential breaking change if you upgrade github.com/prometheus/common to 0.62+ together with client_golang. ⚠️

New common version changes model.NameValidationScheme global variable, which relaxes the validation of label names and metric name, allowing all UTF-8 characters. Typically, this should not break any user, unless your test or usage expects strict certain names to panic/fail on client_golang metric registration, gathering or scrape. In case of problems change model.NameValidationScheme to old model.LegacyValidation value in your project init function.

  • [BUGFIX] gocollector: Fix help message for runtime/metric metrics. #1583
  • [BUGFIX] prometheus: Fix Desc.String() method for no labels case. #1687
  • [ENHANCEMENT] prometheus: Optimize popular prometheus.BuildFQName function; now up to 30% faster. #1665
  • [ENHANCEMENT] prometheus: Optimize Inc, Add and Observe cumulative metrics; now up to 50% faster under high concurrent contention. #1661
  • [CHANGE] Upgrade prometheus/common to 0.62.0 which changes model.NameValidationScheme global variable. #1712
  • [CHANGE] Add support for Go 1.23. #1602
  • [FEATURE] process_collector: Add support for Darwin systems. #1600 #1616 #1625 #1675 #1715
  • [FEATURE] api: Add ability to invoke CloseIdleConnections on api.Client using api.Client.(CloseIdler).CloseIdleConnections() casting. #1513
  • [FEATURE] promhttp: Add promhttp.HandlerOpts.EnableOpenMetricsTextCreatedSamples option to create OpenMetrics _created lines. Not recommended unless you want to use opt-in Created Timestamp feature. Community works on OpenMetrics 2.0 format that should make those lines obsolete (they increase cardinality significantly). #1408
  • [FEATURE] prometheus: Add NewConstNativeHistogram function. #1654
Commits

Updates github.com/zitadel/oidc/v3 from 3.34.1 to 3.35.0

Release notes

Sourced from github.com/zitadel/oidc/v3's releases.

v3.35.0

3.35.0 (2025-02-24)

Features

v3.34.2

3.34.2 (2025-02-21)

Bug Fixes

  • migrate deprecated io/ioutil.ReadFile to os.ReadFile (#714) (eb98343)
Commits
  • 4ef9529 feat: support for session_state (#712)
  • eb98343 fix: migrate deprecated io/ioutil.ReadFile to os.ReadFile (#714)
  • add254f docs(example): fixed creation of refresh token (#711)
  • b1e5aca docs(example): check and extend refresh token expiration (#698)
  • c03a8c5 docs(example): check access token expiration (#702)
  • 37dd41e docs(example): simplified deletion (#699)
  • 03e5ff8 docs(example): add auth time (#700)
  • c3c1bd3 chore(deps): bump github.com/go-chi/chi/v5 from 5.2.0 to 5.2.1 (#706)
  • 0d46df9 chore(deps): bump golang.org/x/text from 0.21.0 to 0.22.0 (#708)
  • 4250aad chore(deps): bump golang.org/x/oauth2 from 0.25.0 to 0.26.0 (#707)
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.32.0 to 0.35.0

Commits
  • 7292932 ssh: limit the size of the internal packet queue while waiting for KEX
  • f66f74b acme/autocert: check host policy before probing the cache
  • b0784b7 x509roots/fallback: drop obsolete build constraint
  • 911360c all: bump golang.org/x/crypto dependencies of asm generators
  • 89ff08d all: upgrade go directive to at least 1.23.0 [generated]
  • e47973b all: update certs for go1.24
  • 9290511 go.mod: update golang.org/x dependencies
  • fa5273e x509roots/fallback: update bundle
  • a8ea4be ssh: add ServerConfig.PreAuthConnCallback, ServerPreAuthConn (banner) interface
  • 71d3a4c acme: support challenges that require the ACME client to send a non-empty JSO...
  • See full diff in compare view

Updates golang.org/x/oauth2 from 0.25.0 to 0.26.0

Commits
  • b9c813b google: add warning about externally-provided credentials
  • See full diff in compare view

Updates golang.org/x/sync from 0.10.0 to 0.11.0

Commits
  • fe3591b sync/errgroup: improve documentation for semaphore limit behavior
  • See full diff in compare view

Updates golang.org/x/time from 0.9.0 to 0.10.0

Commits
  • 2c6c5a2 rate: prevent overflows when calculating durationFromTokens
  • See full diff in compare view

Updates k8s.io/api from 0.32.1 to 0.32.2

Commits

Updates k8s.io/apimachinery from 0.32.1 to 0.32.2

Commits

Updates k8s.io/client-go from 0.32.1 to 0.32.2

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the gomod group with 12 updates
7e33d5d 
Bumps the gomod group with 12 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/alecthomas/kong](https://github.com/alecthomas/kong) | `1.7.0` | `1.8.1` |
| [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql) | `1.8.1` | `1.9.0` |
| [github.com/nats-io/nats.go](https://github.com/nats-io/nats.go) | `1.38.0` | `1.39.1` |
| [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) | `1.20.5` | `1.21.0` |
| [github.com/zitadel/oidc/v3](https://github.com/zitadel/oidc) | `3.34.1` | `3.35.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.32.0` | `0.35.0` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.25.0` | `0.26.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.10.0` | `0.11.0` |
| [golang.org/x/time](https://github.com/golang/time) | `0.9.0` | `0.10.0` |
| [k8s.io/api](https://github.com/kubernetes/api) | `0.32.1` | `0.32.2` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.32.1` | `0.32.2` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.32.1` | `0.32.2` |


Updates `github.com/alecthomas/kong` from 1.7.0 to 1.8.1
- [Release notes](https://github.com/alecthomas/kong/releases)
- [Commits](alecthomas/kong@v1.7.0...v1.8.1)

Updates `github.com/go-sql-driver/mysql` from 1.8.1 to 1.9.0
- [Release notes](https://github.com/go-sql-driver/mysql/releases)
- [Changelog](https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md)
- [Commits](go-sql-driver/mysql@v1.8.1...v1.9.0)

Updates `github.com/nats-io/nats.go` from 1.38.0 to 1.39.1
- [Release notes](https://github.com/nats-io/nats.go/releases)
- [Commits](nats-io/nats.go@v1.38.0...v1.39.1)

Updates `github.com/prometheus/client_golang` from 1.20.5 to 1.21.0
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](prometheus/client_golang@v1.20.5...v1.21.0)

Updates `github.com/zitadel/oidc/v3` from 3.34.1 to 3.35.0
- [Release notes](https://github.com/zitadel/oidc/releases)
- [Changelog](https://github.com/zitadel/oidc/blob/main/.releaserc.js)
- [Commits](zitadel/oidc@v3.34.1...v3.35.0)

Updates `golang.org/x/crypto` from 0.32.0 to 0.35.0
- [Commits](golang/crypto@v0.32.0...v0.35.0)

Updates `golang.org/x/oauth2` from 0.25.0 to 0.26.0
- [Commits](golang/oauth2@v0.25.0...v0.26.0)

Updates `golang.org/x/sync` from 0.10.0 to 0.11.0
- [Commits](golang/sync@v0.10.0...v0.11.0)

Updates `golang.org/x/time` from 0.9.0 to 0.10.0
- [Commits](golang/time@v0.9.0...v0.10.0)

Updates `k8s.io/api` from 0.32.1 to 0.32.2
- [Commits](kubernetes/api@v0.32.1...v0.32.2)

Updates `k8s.io/apimachinery` from 0.32.1 to 0.32.2
- [Commits](kubernetes/apimachinery@v0.32.1...v0.32.2)

Updates `k8s.io/client-go` from 0.32.1 to 0.32.2
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.32.1...v0.32.2)

---
updated-dependencies:
- dependency-name: github.com/alecthomas/kong
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: github.com/go-sql-driver/mysql
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: github.com/nats-io/nats.go
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: github.com/zitadel/oidc/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: golang.org/x/sync
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: golang.org/x/time
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: k8s.io/api
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gomod
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gomod
- dependency-name: k8s.io/client-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gomod
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 1, 2025
@github-actions github-actions bot enabled auto-merge March 1, 2025 00:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants