Skip to content

chore(deps): Bump github.com/nats-io/nats-server/v2 from 2.12.6 to 2.12.8 in /services/tool-learning#144

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/services/tool-learning/github.com/nats-io/nats-server/v2-2.12.8
Closed

chore(deps): Bump github.com/nats-io/nats-server/v2 from 2.12.6 to 2.12.8 in /services/tool-learning#144
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/services/tool-learning/github.com/nats-io/nats-server/v2-2.12.8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/nats-io/nats-server/v2 from 2.12.6 to 2.12.8.

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.12.8

Changelog

Refer to the 2.12 Upgrade Guide for backwards compatibility notes with 2.11.x.

Go Version

  • 1.25.9

Dependencies

  • golang.org/x/crypto v0.50.0 (#8030)
  • golang.org/x/sys v0.43.0 (#8030)
  • github.com/nats-io/nats.go v1.51.0 (#8068)

Improved

JetStream

  • Refactored and simplified setting the pinned headers in consumers (#8032)
  • Scanning for the starting sequence for consumers is now an asynchronous operation which no longer pauses the metalayer (#8051)

Fixed

General

  • Reload logic on gateway pinned_certs configuration has been corrected
  • Repeated CONNECT messages on a connection now clear subscriptions
  • JWT claims with validity times that cross midnight are now validated correctly
  • The /connz monitoring endpoint no longer discloses bearer JWTs
  • Monitoring redaction of route and cluster URL secrets when passed in as command line arguments
  • Fixed a panic that could occur when negotiating compression on leafnode connections
  • Max control line enforcement for non-clients has been fixed
  • Fixed a bug where setting message headers could mutate the input message buffers

Leafnodes

  • Solicited leafnode connections now send a connect advisory, which was previously missing (#8015)

JetStream

  • Message roll-ups are now applied on interest-based streams where there is no interest over the subjects (#8019)
  • Stream leaders can now catch up from incoming snapshots, correcting an edge case when scaling up (#8021)
  • Fixed a Raft commit index reset when terms mismatch (#8023, contributed by @​thecitymouse)
  • Purging via scheduled Nats-Schedule-Next: purge now errors when message scheduling is not enabled (#8035)
  • Recovering with a legacy zero index Raft snapshot will no longer panic (#8039)
  • Messages with a deduplication Nats-Msg-Id header are no longer incorrectly deduplicated in mirrors (#8043)
  • Fixed a panic when scaling after a stream update when the assignment is not fully populated yet on recovery (#8049)
  • Stream info and consumer info requests will no longer return not found when the assignments are in-flight (#8054)
  • Streams and consumers now correctly reject path separators in asset names

... (truncated)

Commits
  • e9559e9 Release v2.12.8
  • 972a686 Release v2.12.8-RC.2
  • f17e974 Cherry-picks for v2.12.8-RC.2 (#98)
  • 82b57ae [FIXED] c.setHeader mutates input message
  • 2530117 [FIXED] Max control line for non-clients
  • dfd2abc [FIXED] retryDisconnectedSyncConsumers properly checks for closed clients
  • 61e8ea8 [IMPROVED] Refactor processInboundSourceMsg for simplicity
  • 03c87ea [FIXED] Source rolls sequence back on error reset
  • 83e3d37 [FIXED] Source does not duplicate messages after leaf reconnect
  • 2a0c5c7 Update dependencies
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/nats-io/nats-server/v2](https://github.com/nats-io/nats-server) from 2.12.6 to 2.12.8.
- [Release notes](https://github.com/nats-io/nats-server/releases)
- [Changelog](https://github.com/nats-io/nats-server/blob/main/RELEASES.md)
- [Commits](nats-io/nats-server@v2.12.6...v2.12.8)

---
updated-dependencies:
- dependency-name: github.com/nats-io/nats-server/v2
  dependency-version: 2.12.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Apr 27, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, go, tool-learning. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot @github

dependabot Bot commented on behalf of github May 4, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #148.

@dependabot dependabot Bot closed this May 4, 2026
@dependabot dependabot Bot deleted the dependabot/go_modules/services/tool-learning/github.com/nats-io/nats-server/v2-2.12.8 branch May 4, 2026 23:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants