Bump opentelemetry-sdk from 1.31.1 to 1.36.0

[dependabot]

Bumps opentelemetry-sdk from 1.31.1 to 1.36.0.

Changelog

Sourced from opentelemetry-sdk's changelog.

Version 1.36.0/0.57b0 (2025-07-29)

• Add missing Prometheus exporter documentation (#4485)

• Overwrite logging.config.fileConfig and logging.config.dictConfig to ensure the OTLP LogHandler remains attached to the root logger. Fix a bug that can cause a deadlock to occur over logging._lock in some cases (#4636).

• otlp-http-exporter: set default value for param timeout_sec in _export method (#4691)

• Update OTLP gRPC/HTTP exporters: calling shutdown will now interrupt exporters that are sleeping before a retry attempt, and cause them to return failure immediately. Update BatchSpan/LogRecordProcessors: shutdown will now complete after 30 seconds of trying to finish exporting any buffered telemetry, instead of continuing to export until all telemetry was exported. (#4638).

Version 1.35.0/0.56b0 (2025-07-11)

• Update OTLP proto to v1.7 #4645.
• Add event_name as a top level field in the LogRecord. Events are now simply logs with the event_name field set, the logs SDK should be used to emit events (#4652).
• Update OTLP gRPC/HTTP exporters: the export timeout is now inclusive of all retries and backoffs. A +/-20% jitter was added to all backoffs. A pointless 32 second sleep that occurred after all retries had completed/failed was removed. (#4564).
• Update ConsoleLogExporter.export to handle LogRecord's containing bytes type in the body (#4614).
• opentelemetry-sdk: Fix invalid type: ignore that causes mypy to ignore the whole file (#4618)
• Add span_exporter property back to BatchSpanProcessor class (#4621)
• Fix license field in pyproject.toml files (#4625)
• Update logger level to NOTSET in logs example (#4637)
• Logging API accepts optional context; deprecates trace_id, span_id, trace_flags. (#4597) and (#4668)
• sdk: use context instead of trace_id,span_id for initializing LogRecord (#4653)
• Rename LogRecordProcessor.emit to on_emit (#4648)
• Logging API hide std_to_otel function to convert python logging severity to otel severity (#4649)
• proto: relax protobuf version requirement to support v6 (#4620)
• Bump semantic-conventions to 1.36.0 (#4669)
• Set expected User-Agent in HTTP headers for grpc OTLP exporter (#4658)

... (truncated)

Commits

• 1aaa2a2 Prepare release 1.36.0/0.57b0 (#4704)
• f9ca475 Use @pytest.mark.flaky decorator instead of @flaky.flaky (#4700)
• eb1a4c5 otlp-http-exporter: set default value for param timeout_sec in _export me...
• 23aad5e Add permissions that were missed on the first pass (#4692)
• 344c647 Add minimum token permissions for all github workflow files (#4663)
• ff9dc82 Migrate from opentelemetrybot to otelbot (#4685)
• d4e6068 Interrupt exporter retry backoff sleeps when shutdown is called. Update Batch...
• a28b0ca Fix broken link in Prometheus exporter README. Fixes #4399 (#4485)
• 9746645 Introducing tox-uv (#4516)
• 57cb935 Fix issue where deadlock can occur over logging._lock (#4636)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)