Skip to content

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 24, 2025

Bumps the production-dependencies group with 10 updates in the / directory:

Package From To
github.com/go-sql-driver/mysql 1.8.1 1.9.1
github.com/google/cel-go 0.23.2 0.24.1
github.com/google/go-cmp 0.6.0 0.7.0
github.com/jackc/pgx/v5 5.7.2 5.7.3
github.com/spf13/cobra 1.8.1 1.9.1
github.com/tetratelabs/wazero 1.8.2 1.9.0
golang.org/x/sync 0.11.0 0.12.0
google.golang.org/grpc 1.70.0 1.71.0
google.golang.org/protobuf 1.36.5 1.36.6
modernc.org/sqlite 1.35.0 1.36.1

Updates github.com/go-sql-driver/mysql from 1.8.1 to 1.9.1

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.1

What's Changed

New Contributors

Full Changelog: go-sql-driver/mysql@v1.9.0...v1.9.1

v1.9.0

Major Changes

  • Implement zlib compression. (#1487)
  • Supported Go version is updated to Go 1.21+. (#1639)
  • Add support for VECTOR type introduced in MySQL 9.0. (#1609)
  • Config object can have custom dial function. (#1527)

Bugfixes

  • Fix auth errors when username/password are too long. (#1625)
  • Check if MySQL supports CLIENT_CONNECT_ATTRS before sending client attributes. (#1640)
  • Fix auth switch request handling. (#1666)

Other changes

  • Add "filename:line" prefix to log in go-mysql. Custom loggers now show it. (#1589)
  • Improve error handling. It reduces the "busy buffer" errors. (#1595, #1601, #1641)
  • Use strconv.Atoi to parse max_allowed_packet. (#1661)
  • rejectReadOnly option now handles ER_READ_ONLY_MODE (1290) error too. (#1660)

Full Changelog: go-sql-driver/mysql@v1.8.1...v1.9.0

New Contributors

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.1 (2025-03-21)

Major Changes

  • Add Charset() option. (#1679)

Bugfixes

  • go.mod: fix go version format (#1682)
  • Fix FormatDSN missing ConnectionAttributes (#1619)

v1.9.0 (2025-02-18)

Major Changes

  • Implement zlib compression. (#1487)
  • Supported Go version is updated to Go 1.21+. (#1639)
  • Add support for VECTOR type introduced in MySQL 9.0. (#1609)
  • Config object can have custom dial function. (#1527)

Bugfixes

  • Fix auth errors when username/password are too long. (#1625)
  • Check if MySQL supports CLIENT_CONNECT_ATTRS before sending client attributes. (#1640)
  • Fix auth switch request handling. (#1666)

Other changes

  • Add "filename:line" prefix to log in go-mysql. Custom loggers now show it. (#1589)
  • Improve error handling. It reduces the "busy buffer" errors. (#1595, #1601, #1641)
  • Use strconv.Atoi to parse max_allowed_packet. (#1661)
  • rejectReadOnly option now handles ER_READ_ONLY_MODE (1290) error too. (#1660)
Commits

Updates github.com/google/cel-go from 0.23.2 to 0.24.1

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.24.1

Fixes

  • Separate unnest optimization from composer to capture type info #1138

Full Changelog: google/cel-go@v0.24.0...v0.24.1

Release v0.24.0

Support for subsetting CEL standard library and serialization of CEL environments to YAML.

CEL is an official Google product #1122

Features

  • Helper methods for subsetting function overloads #1120
  • Introduce cel package aliases for Activation #1123
  • Canonical environment description and stdlib subsetting #1125
  • Support for cel.Env conversion to YAML-serializable config #1128
  • Option to configure CEL via env.Config object #1129
  • Support for feature flags and validators in env.Config #1132
  • Add k8s custom policy tag handler for test #1121

Fixes

  • ContextEval support for Unknowns #1126
  • Fix godoc formatting for Lists and OptionalTypes functions #1127
  • Default enable DefaultUTCTimeZone #1130
  • Support for splitting nested branching operators within policies #1136

New Contributors

Full Changelog: google/cel-go@v0.23.2...v0.24.0

Release v0.24.0-beta

Features

  • Introduce cel package aliases for Activation #1123
  • Canonical environment description and stdlib subsetting #1125
  • Support for cel.Env conversion to YAML-serializable config #1128
  • Option to configure CEL via env.Config object #1129
  • Support for feature flags and validators in env.Config #1132

Fixes

  • ContextEval support for Unknowns #1126
  • Fix godoc formatting for Lists and OptionalTypes functions #1127
  • Default enable DefaultUTCTimeZone #1130

... (truncated)

Commits
  • 3b3a438 Separate unnest optimization from composer to capture type info (#1138)
  • 9855c70 Support for splitting nested branching operators within policies (#1136)
  • fad0c1b Use remote caching for Cloud Build with Bazel (#1134)
  • 45c4980 Support for feature flags and validators in env.Config (#1132)
  • 4b27149 Option to configure CEL via env.Config object (#1129)
  • 4adcf4d Default enable DefaultUTCTimeZone (#1130)
  • af0bf8e Support for cel.Env conversion to YAML-serializable config (#1128)
  • fddae56 Canonical environment description and stdlib subsetting (#1125)
  • b7c14fa Fix godoc formatting (#1127)
  • 9a4b48b ContextEval support for Unknowns (#1126)
  • Additional commits viewable in compare view

Updates github.com/google/go-cmp from 0.6.0 to 0.7.0

Release notes

Sourced from github.com/google/go-cmp's releases.

v0.7.0

New API:

  • (#367) Support compare functions with SortSlices and SortMaps

Panic messaging:

  • (#370) Detect proto.Message types when failing to export a field
Commits

Updates github.com/jackc/pgx/v5 from 5.7.2 to 5.7.3

Changelog

Sourced from github.com/jackc/pgx/v5's changelog.

5.7.3 (March 21, 2025)

  • Expose EmptyAcquireWaitTime in pgxpool.Stat (vamshiaruru32)
  • Improve SQL sanitizer performance (ninedraft)
  • Fix Scan confusion with json(b), sql.Scanner, and automatic dereferencing (moukoublen, felix-roehrich)
  • Fix Values() for xml type always returning nil instead of []byte
  • Add ability to send Flush message in pipeline mode (zenkovev)
  • Fix pgtype.Timestamp's JSON behavior to match PostgreSQL (pconstantinou)
  • Better error messages when scanning structs (logicbomb)
  • Fix handling of error on batch write (bonnefoa)
  • Match libpq's connection fallback behavior more closely (felix-roehrich)
  • Add MinIdleConns to pgxpool (djahandarie)
Commits

Updates github.com/spf13/cobra from 1.8.1 to 1.9.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.9.1

🐛 Fixes

Full Changelog: spf13/cobra@v1.9.0...v1.9.1

v1.9.0

✨ Features

🐛 Fixes

🤖 Completions

🧪 Testing

✍🏼 Documentation

🔧 Dependency upgrades

... (truncated)

Commits

Updates github.com/tetratelabs/wazero from 1.8.2 to 1.9.0

Release notes

Sourced from github.com/tetratelabs/wazero's releases.

v1.9.0

wazero 1.9.0 comes with a few bug fixes (#2378, #2365) as well as it is ensured to be compatible with the latest Go 1.24! Enjoy!

Commits

Updates golang.org/x/sync from 0.11.0 to 0.12.0

Commits
  • b637f27 errgroup: drop support for Go versions before 1.20
  • 960bf1f all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Updates google.golang.org/grpc from 1.70.0 to 1.71.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.71.0

API Changes

  • balancer: Custom LB policies that record metrics must use the new MetricsRecorder method on Balancer.ClientConn instead of the removed Balancer.BuildOptions.MetricsRecorder field to obtain a metrics recorder. (#8027)
  • balancer: balancer.ClientConn implementations must now embed a delegate implementation. This allows grpc-go to add new methods to the interface and remain backward compatible. (#8026)
  • balancer/endpointsharding: The constructor accepts the child balancer's builder and a struct with optional configuration. (#8052)

New Features

  • xds: Add support for dualstack via the additional_addresses field in the Endpoint resource. To disable this feature, set the environment variable GRPC_EXPERIMENTAL_XDS_DUALSTACK_ENDPOINTS=false. (#8134)
  • stats/opentelemetry: Add experimental support for OpenTelemetry tracing. (#7852)
  • xds/internal/xdsclient: Add counter metrics for valid and invalid resource updates. (#8038)
  • balancer/leastrequest, roundrobin: Add dualstack support. (#7969, #7966)
  • balancer/endpointsharding: Balancers created with the new DisableAutoReconnect option will not attempt to call ExitIdle automatically on their children when the children report idle. (#8052)

Bug Fixes

  • client: Fix support for proxies when using grpc.NewClient so the target is resolved by the proxy as expected. (#7881)
    • Added WithLocalDNSResolution() dial option to explicitly force target resolution on the client instead. (#7881)
  • weightedtarget: Return erroring picker when no targets are configured. (#8070)
  • xds: Fail RPCs with UNAVAILABLE when the EDS resource is missing or contains no endpoints (#8070)
  • xdsclient: Fix a bug where connectivity failures were reported to resource watchers before trying all listed servers. (#8075)
  • grpc: Fix the number of bytes reported in the error message when encoded messages are larger than 4GB. (#8033)
  • xds: Fixed a bug preventing tests from creating multiple servers or channels with different bootstrap configs. (#8050)
  • grpc: Fix message length checks when compression is enabled and maxReceiveMessageSize is MaxInt (#7918)

Documentation

  • client: Improve documentation of grpc.NewClient and ClientConn.CanonicalTarget by providing examples. (#8078)
  • examples/features/dualstack: New example demonstrating usage of endpoints and dualstack functionality. (#8098)
Commits
  • d01db5c Change version to 1.71.0 (#8105)
  • 012f8bf xds: Enable dualstack flag (#8134)
  • bf0c885 examples/features/dualstack: Demonstrate Dual Stack functionality (#8098) (#8...
  • 05bdd66 ringhash: Remove TODO comment (#8096)
  • ddb2484 xds: remove obsolete xDS transport custom dialer option (#8079)
  • 8528f43 cleanup: replace Dial with NewClient (#7975)
  • ae2a04f ringhash: Replace DNS resolver before sending xDS Update in test (#8091)
  • e55819e lazy: Use channel to wait for resolver error being received in test (#8088)
  • b524c08 xdsclient: include xds node ID in errors from the WatchResource API (#8093)
  • 91eb6aa client: improve documentation of target strings (#8078)
  • Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.5 to 1.36.6

Updates modernc.org/sqlite from 1.35.0 to 1.36.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 10 updates

Bumps the production-dependencies group with 10 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql) | `1.8.1` | `1.9.1` |
| [github.com/google/cel-go](https://github.com/google/cel-go) | `0.23.2` | `0.24.1` |
| [github.com/google/go-cmp](https://github.com/google/go-cmp) | `0.6.0` | `0.7.0` |
| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.7.2` | `5.7.3` |
| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.8.1` | `1.9.1` |
| [github.com/tetratelabs/wazero](https://github.com/tetratelabs/wazero) | `1.8.2` | `1.9.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.11.0` | `0.12.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.70.0` | `1.71.0` |
| google.golang.org/protobuf | `1.36.5` | `1.36.6` |
| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.35.0` | `1.36.1` |



Updates `github.com/go-sql-driver/mysql` from 1.8.1 to 1.9.1
- [Release notes](https://github.com/go-sql-driver/mysql/releases)
- [Changelog](https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md)
- [Commits](go-sql-driver/mysql@v1.8.1...v1.9.1)

Updates `github.com/google/cel-go` from 0.23.2 to 0.24.1
- [Release notes](https://github.com/google/cel-go/releases)
- [Commits](google/cel-go@v0.23.2...v0.24.1)

Updates `github.com/google/go-cmp` from 0.6.0 to 0.7.0
- [Release notes](https://github.com/google/go-cmp/releases)
- [Commits](google/go-cmp@v0.6.0...v0.7.0)

Updates `github.com/jackc/pgx/v5` from 5.7.2 to 5.7.3
- [Changelog](https://github.com/jackc/pgx/blob/master/CHANGELOG.md)
- [Commits](jackc/pgx@v5.7.2...v5.7.3)

Updates `github.com/spf13/cobra` from 1.8.1 to 1.9.1
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](spf13/cobra@v1.8.1...v1.9.1)

Updates `github.com/tetratelabs/wazero` from 1.8.2 to 1.9.0
- [Release notes](https://github.com/tetratelabs/wazero/releases)
- [Commits](wazero/wazero@v1.8.2...v1.9.0)

Updates `golang.org/x/sync` from 0.11.0 to 0.12.0
- [Commits](golang/sync@v0.11.0...v0.12.0)

Updates `google.golang.org/grpc` from 1.70.0 to 1.71.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.70.0...v1.71.0)

Updates `google.golang.org/protobuf` from 1.36.5 to 1.36.6

Updates `modernc.org/sqlite` from 1.35.0 to 1.36.1
- [Commits](https://gitlab.com/cznic/sqlite/compare/v1.35.0...v1.36.1)

---
updated-dependencies:
- dependency-name: github.com/go-sql-driver/mysql
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: github.com/google/cel-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: github.com/google/go-cmp
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: github.com/jackc/pgx/v5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: github.com/tetratelabs/wazero
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: golang.org/x/sync
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: modernc.org/sqlite
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 24, 2025
@dosubot dosubot bot added size:M This PR changes 30-99 lines, ignoring generated files. 🔧 golang labels Mar 24, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 24, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 24, 2025
@dependabot dependabot bot deleted the dependabot/go_modules/production-dependencies-b0f813ab61 branch March 24, 2025 18:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code size:M This PR changes 30-99 lines, ignoring generated files. 🔧 golang

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants