Skip to content

build(go): bump the dependencies group across 1 directory with 3 updates#255

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/grpc/dependencies-46a9660338
Closed

build(go): bump the dependencies group across 1 directory with 3 updates#255
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/grpc/dependencies-46a9660338

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 23, 2025
edited
Loading

Bumps the dependencies group with 1 update in the /grpc directory: github.com/grpc-ecosystem/grpc-gateway/v2.

Updates github.com/grpc-ecosystem/grpc-gateway/v2 from 2.26.3 to 2.27.0

Release notes

Sourced from github.com/grpc-ecosystem/grpc-gateway/v2's releases.

v2.27.0

What's Changed

New Contributors

Full Changelog: grpc-ecosystem/grpc-gateway@v2.26.3...v2.26.4

Commits
  • a8a7bb0 protoc-gen-grpc-gateway: guard against nil on drain (#5668)
  • e87b1b8 chore(deps): update googleapis digest to ab2a125 (#5666)
  • 59f6e69 chore(deps): update googleapis digest to 970e98f (#5665)
  • 5702c8b chore(deps): update dependency bazel_features to v1.32.0 (#5664)
  • 4d991f0 chore(deps): update googleapis digest to e929e30 (#5663)
  • 8441628 chore(deps): update googleapis digest to b6b04bf (#5662)
  • d326825 chore(deps): update googleapis digest to 7bdfcb7 (#5661)
  • d70759e chore(deps): update dependency gazelle to v0.44.0 (#5660)
  • ce9f90b chore(deps): update dependency bazel_gazelle to v0.44.0 (#5659)
  • a6a9d27 chore(deps): update dependency io_bazel_rules_go to v0.55.1 (#5658)
  • Additional commits viewable in compare view

Updates google.golang.org/genproto/googleapis/rpc from 0.0.0-20250409194420-de1ac958c67a to 0.0.0-20250603155806-513f23925822

Commits

Updates google.golang.org/grpc from 1.71.1 to 1.73.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.73.0

New Features

  • balancer/ringhash: move LB policy from xds/internal to exported path to facilitate use without xds (#8249)
  • xds: enable least request LB policy by default. It can be disabled by setting GRPC_EXPERIMENTAL_ENABLE_LEAST_REQUEST=false in your environment. (#8253)
  • grpc: add a CallAuthority Call Option that can be used to overwrite the http :authority header on per-RPC basis. (#8068)
  • stats/opentelemetry: add trace event for name resolution delay. (#8074)
  • health: added List method to gRPC Health service. (#8155)
  • ringhash: implement features from gRFC A76. (#8159)
  • xds: add functionality to support SPIFFE Bundle Maps as roots of trust in XDS which can be enabled by setting GRPC_EXPERIMENTAL_XDS_MTLS_SPIFFE=true. (#8167, #8180, #8229, #8343)

Bug Fixes

  • xds: locality ID metric label is changed to make it consistent with gRFC A78. (#8256)
  • client: fail RPCs on the client when using extremely short contexts that expire before the grpc-timeout header is created. (#8312)
  • server: non-positive grpc-timeout header values are now rejected. This is consistent with the gRPC protocol spec. (#8290)
  • xds: fix reported error string when LRS load reporting interval is invalid. (#8224)

Performance Improvements

  • credentials/alts: improve read performance by optimizing buffer copies and allocations. (#8271)
  • server: improve performance of RPC handling by avoid a status proto copy (#8282)

Documentation

  • examples/features/opentelemetry: modify example to demonstrate tracing using OpenTelemtry plugin. (#8056)

Release 1.72.2

Bug Fixes

  • client: restore support for NO_PROXY environment variable when connecting to locally-resolved addresses (case 2 from gRFC A1). (#8329)
  • balancer/least_request: fix panic on resolver errors. (#8333)

Release 1.72.1

Bug Fixes

  • client: HTTP Proxy connections are no longer attempted for addresses with non-TCP network types. (#8215)
  • client: Fix bug that causes RPCs to fail with status INTERNAL instead of CANCELLED or DEADLINE_EXCEEDED when receiving a RST_STREAM frame in the middle of the gRPC message. (#8289)

Release 1.72.0

Dependencies

  • Minimum supported Go version is now 1.23 (#8108)

API Changes

  • resolver: add experimental AddressMapV2 with generics to ultimately replace AddressMap. Deprecate AddressMap for deletion (#8187)
  • resolver: convert EndpointMap in place to use generics (#8189)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(go): bump the dependencies group across 1 directory with 3 updates
138d3f3 
Bumps the dependencies group with 1 update in the /grpc directory: [github.com/grpc-ecosystem/grpc-gateway/v2](https://github.com/grpc-ecosystem/grpc-gateway).


Updates `github.com/grpc-ecosystem/grpc-gateway/v2` from 2.26.3 to 2.27.0
- [Release notes](https://github.com/grpc-ecosystem/grpc-gateway/releases)
- [Changelog](https://github.com/grpc-ecosystem/grpc-gateway/blob/main/.goreleaser.yml)
- [Commits](grpc-ecosystem/grpc-gateway@v2.26.3...v2.27.0)

Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20250409194420-de1ac958c67a to 0.0.0-20250603155806-513f23925822
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/grpc` from 1.71.1 to 1.73.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.71.1...v1.73.0)

---
updated-dependencies:
- dependency-name: github.com/grpc-ecosystem/grpc-gateway/v2
  dependency-version: 2.27.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: google.golang.org/genproto/googleapis/rpc
  dependency-version: 0.0.0-20250603155806-513f23925822
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: google.golang.org/grpc
  dependency-version: 1.73.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot requested a review from ginokent June 23, 2025 02:27
@dependabot dependabot Bot requested a review from a team as a code owner June 23, 2025 02:27
@dependabot dependabot Bot added build Changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm) dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 23, 2025
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Jun 23, 2025

The reviewers field in the dependabot.yml file will be removed soon. Please use the code owners file to specify reviewers for Dependabot PRs. For more information, see this blog post.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file build Changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm) go Pull requests that update Go code labels Jun 23, 2025
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Aug 11, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Aug 11, 2025
@dependabot dependabot Bot deleted the dependabot/go_modules/grpc/dependencies-46a9660338 branch August 11, 2025 02:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ginokent ginokent Awaiting requested review from ginokent

Assignees

@ginokent ginokent

Labels

build Changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm) dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ginokent