Skip to content

build(deps): bump the go group with 5 updates#636

Merged
calebdoxsey merged 1 commit intomainfrom
dependabot/go_modules/go-d626a08da1
Mar 2, 2026
Merged

build(deps): bump the go group with 5 updates#636
calebdoxsey merged 1 commit intomainfrom
dependabot/go_modules/go-d626a08da1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2026
edited
Loading

Bumps the go group with 5 updates:

Package From To
github.com/elazarl/goproxy 1.8.0 1.8.2
github.com/getsentry/sentry-go 0.42.0 0.43.0
github.com/go-chi/chi/v5 5.2.4 5.2.5
golang.org/x/net 0.49.0 0.51.0
google.golang.org/grpc 1.78.0 1.79.1

Updates github.com/elazarl/goproxy from 1.8.0 to 1.8.2

Release notes

Sourced from github.com/elazarl/goproxy's releases.

v1.8.2

What's Changed

New Contributors

Full Changelog: elazarl/goproxy@v1.8.1...v1.8.2

v1.8.1

What's Changed

Full Changelog: elazarl/goproxy@v1.8.0...v1.8.1

Commits
  • ffdf0b2 Fix NewResponse writing HTTP/0.0 status lines in MITM mode (#749)
  • b343a9a Merge HTTPMitmConnect and MitmConnect actions and use the correct one based o...
  • d6c78b7 Always close request body even if the proxy server had a custom response retu...
  • c2d45c6 Reorganize funding section inside readme
  • 44388f6 Use chunked response when http2 content length is missing (#742)
  • See full diff in compare view

Updates github.com/getsentry/sentry-go from 0.42.0 to 0.43.0

Release notes

Sourced from github.com/getsentry/sentry-go's releases.

0.43.0

Breaking Changes 🛠

  • Add support for go 1.26 by @​giortzisg in #1193
    • bump minimum supported go version to 1.24
  • change type signature of attributes for Logs and Metrics. by @​giortzisg in #1205
    • users are not supposed to modify Attributes directly on the Log/Metric itself, but this is still is a breaking change on the type.
  • Send uint64 overflowing attributes as numbers. by @​giortzisg in #1198
    • The SDK was converting overflowing uint64 attributes to strings for slog and logrus integrations. To eliminate double types for these attributes, the SDK now sends the overflowing attribute as is, and lets the server handle the overflow appropriately.
    • It is expected that overflowing unsigned integers would now get dropped, instead of converted to strings.

New Features ✨

Bug Fixes 🐛

Internal Changes 🔧

Deps

Other

Changelog

Sourced from github.com/getsentry/sentry-go's changelog.

0.43.0

Breaking Changes 🛠

  • Add support for go 1.26 by @​giortzisg in #1193
    • bump minimum supported go version to 1.24
  • change type signature of attributes for Logs and Metrics. by @​giortzisg in #1205
    • users are not supposed to modify Attributes directly on the Log/Metric itself, but this is still is a breaking change on the type.
  • Send uint64 overflowing attributes as numbers. by @​giortzisg in #1198
    • The SDK was converting overflowing uint64 attributes to strings for slog and logrus integrations. To eliminate double types for these attributes, the SDK now sends the overflowing attribute as is, and lets the server handle the overflow appropriately.
    • It is expected that overflowing unsigned integers would now get dropped, instead of converted to strings.

New Features ✨

Bug Fixes 🐛

Internal Changes 🔧

Deps

Other

Commits
  • 8dbf970 release: 0.43.0
  • 44caaae ref!: modify Attributes type for Logs and Metrics (#1205)
  • 71a7230 fix: improve otel span map cleanup performance (#1200)
  • 0fe1ae5 feat: add zap logging integration (#1184)
  • e1e8ceb feat!: Send uint64 overflowing attributes as numbers for slog and logrus (#1198)
  • 0faba36 chore: add omitzero and remove custom serialization (#1197)
  • 648d2d2 build(deps): bump golang.org/x/crypt to 0.48.0 (#1196)
  • 18c50b9 fix(deps): use go1.24.0 (#1195)
  • 2d5637b build(deps)!: add support for go1.26 (#1193)
  • f057a8d fix: ensure correct signal delivery on multi-client setups (#1190)
  • Additional commits viewable in compare view

Updates github.com/go-chi/chi/v5 from 5.2.4 to 5.2.5

Release notes

Sourced from github.com/go-chi/chi/v5's releases.

v5.2.5

What's Changed

New Contributors

Full Changelog: go-chi/chi@v5.2.3...v5.2.5

Commits

Updates golang.org/x/net from 0.49.0 to 0.51.0

Commits
  • 60b3f6f internal/http3: prevent Server handler from writing longer body than declared
  • b0ca456 internal/http3: fix Write in Server Handler returning the wrong value
  • 1558ba7 publicsuffix: update to 2026-02-06
  • 4e1c745 internal/http3: make Server response include headers that can be inferred
  • 19f580f http2: fix nil panic in typeFrameParser for unassigned frame types
  • 818aad7 internal/http3: add server to client trailer header support
  • c1bbe1a internal/http3: add client to server trailer header support
  • 29181b8 all: remove go1.25 and older build constraints
  • 8109305 all: upgrade go directive to at least 1.25.0 [generated]
  • 0b37bdf quic: don't run TestStreamsCreateConcurrency in synctest bubble
  • Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.78.0 to 1.79.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.79.1

Bug Fixes

Release 1.79.0

API Changes

  • mem: Add experimental API SetDefaultBufferPool to change the default buffer pool. (#8806)
  • experimental/stats: Update MetricsRecorder to require embedding the new UnimplementedMetricsRecorder (a no-op struct) in all implementations for forward compatibility. (#8780)

Behavior Changes

  • balancer/weightedtarget: Remove handling of Addresses and only handle Endpoints in resolver updates. (#8841)

New Features

  • experimental/stats: Add support for asynchronous gauge metrics through the new AsyncMetricReporter and RegisterAsyncReporter APIs. (#8780)
  • pickfirst: Add support for weighted random shuffling of endpoints, as described in gRFC A113.
    • This is enabled by default, and can be turned off using the environment variable GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING. (#8864)
  • xds: Implement :authority rewriting, as specified in gRFC A81. (#8779)
  • balancer/randomsubsetting: Implement the random_subsetting LB policy, as specified in gRFC A68. (#8650)

Bug Fixes

  • credentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (#8726)
  • xds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in CONNECTING state. (#8813)
  • health: Fix a bug where health checks failed for clients using legacy compression options (WithDecompressor or RPCDecompressor). (#8765)
  • transport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (#8769)
  • server: Propagate status detail headers, if available, when terminating a stream during request header processing. (#8754)

Performance Improvements

  • credentials/alts: Optimize read buffer alignment to reduce copies. (#8791)
  • mem: Optimize pooling and creation of buffer objects. (#8784)
  • transport: Reduce slice re-allocations by reserving slice capacity. (#8797)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 1, 2026
@dependabot dependabot bot requested a review from a team as a code owner March 1, 2026 23:22
@dependabot dependabot bot requested a review from wasaga March 1, 2026 23:22
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 1, 2026
@dependabot
build(deps): bump the go group with 5 updates
eb52f6b 
Bumps the go group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/elazarl/goproxy](https://github.com/elazarl/goproxy) | `1.8.0` | `1.8.2` |
| [github.com/getsentry/sentry-go](https://github.com/getsentry/sentry-go) | `0.42.0` | `0.43.0` |
| [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) | `5.2.4` | `5.2.5` |
| [golang.org/x/net](https://github.com/golang/net) | `0.49.0` | `0.51.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.78.0` | `1.79.1` |


Updates `github.com/elazarl/goproxy` from 1.8.0 to 1.8.2
- [Release notes](https://github.com/elazarl/goproxy/releases)
- [Commits](elazarl/goproxy@v1.8.0...v1.8.2)

Updates `github.com/getsentry/sentry-go` from 0.42.0 to 0.43.0
- [Release notes](https://github.com/getsentry/sentry-go/releases)
- [Changelog](https://github.com/getsentry/sentry-go/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-go@v0.42.0...v0.43.0)

Updates `github.com/go-chi/chi/v5` from 5.2.4 to 5.2.5
- [Release notes](https://github.com/go-chi/chi/releases)
- [Changelog](https://github.com/go-chi/chi/blob/master/CHANGELOG.md)
- [Commits](go-chi/chi@v5.2.4...v5.2.5)

Updates `golang.org/x/net` from 0.49.0 to 0.51.0
- [Commits](golang/net@v0.49.0...v0.51.0)

Updates `google.golang.org/grpc` from 1.78.0 to 1.79.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.78.0...v1.79.1)

---
updated-dependencies:
- dependency-name: github.com/elazarl/goproxy
  dependency-version: 1.8.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/getsentry/sentry-go
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/go-chi/chi/v5
  dependency-version: 5.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: golang.org/x/net
  dependency-version: 0.51.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/grpc
  dependency-version: 1.79.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-d626a08da1 branch from 4783d97 to eb52f6b Compare March 2, 2026 14:53
@calebdoxsey calebdoxsey merged commit 15d1e55 into main Mar 2, 2026
5 checks passed
@calebdoxsey calebdoxsey deleted the dependabot/go_modules/go-d626a08da1 branch March 2, 2026 14:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@calebdoxsey calebdoxsey calebdoxsey approved these changes

@wasaga wasaga Awaiting requested review from wasaga wasaga is a code owner automatically assigned from pomerium/dev-backend

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@calebdoxsey