Skip to content

build(go): bump the dependencies group across 1 directory with 4 updates#256

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/grpc/dependencies-7c7a6f8015
Closed

build(go): bump the dependencies group across 1 directory with 4 updates#256
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/grpc/dependencies-7c7a6f8015

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Aug 11, 2025
edited
Loading

Bumps the dependencies group with 2 updates in the /grpc directory: github.com/grpc-ecosystem/grpc-gateway/v2 and google.golang.org/protobuf.

Updates github.com/grpc-ecosystem/grpc-gateway/v2 from 2.26.3 to 2.27.1

Release notes

Sourced from github.com/grpc-ecosystem/grpc-gateway/v2's releases.

v2.27.1

What's Changed

New Contributors

Full Changelog: grpc-ecosystem/grpc-gateway@v2.27.0...v2.27.1

v2.27.0

What's Changed

New Contributors

Full Changelog: grpc-ecosystem/grpc-gateway@v2.26.3...v2.26.4

Commits
  • d08f8db fix: Use type name instead of full type declaration (#5679)
  • ddde420 chore(deps): update googleapis digest to fc1e32c (#5681)
  • 10dc12a chore(deps): update googleapis digest to a4268de (#5680)
  • 2fbec00 chore(deps): update dependency bazel to v8.3.0 (#5677)
  • d723ec1 chore(deps): update googleapis digest to b79e8c4 (#5676)
  • 8e47f4f chore(deps): update googleapis digest to 18314b0 (#5675)
  • 7eae063 chore(deps): update googleapis digest to 9425777 (#5674)
  • d4310fe chore(deps): update googleapis digest to 34b323e (#5672)
  • 16145f3 chore(deps): update googleapis digest to 09243fd (#5671)
  • f7e7da8 chore(deps): update googleapis digest to f01a17a (#5670)
  • Additional commits viewable in compare view

Updates google.golang.org/genproto/googleapis/rpc from 0.0.0-20250409194420-de1ac958c67a to 0.0.0-20250603155806-513f23925822

Commits

Updates google.golang.org/grpc from 1.71.1 to 1.73.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.73.0

New Features

  • balancer/ringhash: move LB policy from xds/internal to exported path to facilitate use without xds (#8249)
  • xds: enable least request LB policy by default. It can be disabled by setting GRPC_EXPERIMENTAL_ENABLE_LEAST_REQUEST=false in your environment. (#8253)
  • grpc: add a CallAuthority Call Option that can be used to overwrite the http :authority header on per-RPC basis. (#8068)
  • stats/opentelemetry: add trace event for name resolution delay. (#8074)
  • health: added List method to gRPC Health service. (#8155)
  • ringhash: implement features from gRFC A76. (#8159)
  • xds: add functionality to support SPIFFE Bundle Maps as roots of trust in XDS which can be enabled by setting GRPC_EXPERIMENTAL_XDS_MTLS_SPIFFE=true. (#8167, #8180, #8229, #8343)

Bug Fixes

  • xds: locality ID metric label is changed to make it consistent with gRFC A78. (#8256)
  • client: fail RPCs on the client when using extremely short contexts that expire before the grpc-timeout header is created. (#8312)
  • server: non-positive grpc-timeout header values are now rejected. This is consistent with the gRPC protocol spec. (#8290)
  • xds: fix reported error string when LRS load reporting interval is invalid. (#8224)

Performance Improvements

  • credentials/alts: improve read performance by optimizing buffer copies and allocations. (#8271)
  • server: improve performance of RPC handling by avoid a status proto copy (#8282)

Documentation

  • examples/features/opentelemetry: modify example to demonstrate tracing using OpenTelemtry plugin. (#8056)

Release 1.72.2

Bug Fixes

  • client: restore support for NO_PROXY environment variable when connecting to locally-resolved addresses (case 2 from gRFC A1). (#8329)
  • balancer/least_request: fix panic on resolver errors. (#8333)

Release 1.72.1

Bug Fixes

  • client: HTTP Proxy connections are no longer attempted for addresses with non-TCP network types. (#8215)
  • client: Fix bug that causes RPCs to fail with status INTERNAL instead of CANCELLED or DEADLINE_EXCEEDED when receiving a RST_STREAM frame in the middle of the gRPC message. (#8289)

Release 1.72.0

Dependencies

  • Minimum supported Go version is now 1.23 (#8108)

API Changes

  • resolver: add experimental AddressMapV2 with generics to ultimately replace AddressMap. Deprecate AddressMap for deletion (#8187)
  • resolver: convert EndpointMap in place to use generics (#8189)

... (truncated)

Commits

Updates google.golang.org/protobuf from 1.36.6 to 1.36.7

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(go): bump the dependencies group across 1 directory with 4 updates
fbf22b2 
Bumps the dependencies group with 2 updates in the /grpc directory: [github.com/grpc-ecosystem/grpc-gateway/v2](https://github.com/grpc-ecosystem/grpc-gateway) and google.golang.org/protobuf.


Updates `github.com/grpc-ecosystem/grpc-gateway/v2` from 2.26.3 to 2.27.1
- [Release notes](https://github.com/grpc-ecosystem/grpc-gateway/releases)
- [Changelog](https://github.com/grpc-ecosystem/grpc-gateway/blob/main/.goreleaser.yml)
- [Commits](grpc-ecosystem/grpc-gateway@v2.26.3...v2.27.1)

Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20250409194420-de1ac958c67a to 0.0.0-20250603155806-513f23925822
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/grpc` from 1.71.1 to 1.73.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.71.1...v1.73.0)

Updates `google.golang.org/protobuf` from 1.36.6 to 1.36.7

---
updated-dependencies:
- dependency-name: github.com/grpc-ecosystem/grpc-gateway/v2
  dependency-version: 2.27.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: google.golang.org/genproto/googleapis/rpc
  dependency-version: 0.0.0-20250603155806-513f23925822
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: google.golang.org/grpc
  dependency-version: 1.73.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: google.golang.org/protobuf
  dependency-version: 1.36.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot requested a review from a team as a code owner August 11, 2025 03:57
@dependabot dependabot Bot added build Changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm) dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Aug 11, 2025
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Aug 25, 2025

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot Bot closed this Aug 25, 2025
@dependabot dependabot Bot deleted the dependabot/go_modules/grpc/dependencies-7c7a6f8015 branch August 25, 2025 02:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@ginokent ginokent

Labels

build Changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm) dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ginokent