Osmo v28/0.38.17 #154
Open
Osmo v28/0.38.17 #154
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…4435) This PR changes the logic in `run-multiple` to always output the manifest content, not only when it fails. This will be helpful to troubleshoot errors where the infrastructure might be the root cause of the error (test is killed by CI because it was using too many resources). Always showing the manifest content in the log will allow local testing to try to reproduce the problem. <hr>This is an automatic backport of pull request cometbft#4429 done by [Mergify](https://mergify.com). Co-authored-by: Andy Nogueira <[email protected]>
…oteInfo` (backport cometbft#4460) (cometbft#4488) Closes cometbft#4458 --- #### PR checklist - [ ] Tests written/updated - [ ] Changelog entry added in `.changelog` (we use [unclog](https://github.com/informalsystems/unclog) to manage our changelog) - [x] Updated relevant documentation (`docs/` or `spec/`) and code comments <hr>This is an automatic backport of pull request cometbft#4460 done by [Mergify](https://mergify.com). Co-authored-by: Jasmina Malicevic <[email protected]>
…metbft#4498) Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.46.0 to 1.47.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bufbuild/buf-setup-action/releases">bufbuild/buf-setup-action's releases</a>.</em></p> <blockquote> <h2>v1.47.2</h2> <p>Release v1.47.2</p> <h2>v1.47.1</h2> <p>Release v1.47.1</p> <h2>v1.47.0</h2> <p>Release v1.47.0</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/9672cee01808979ea1249f81d6d321217b9a10f6"><code>9672cee</code></a> Release v1.47.2 (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/232">#232</a>)</li> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/89fd430737d67cb92a677e1ae1b5a1f59a2b9c6d"><code>89fd430</code></a> Release v1.47.1 (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/231">#231</a>)</li> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/5b36a1d0a60a060b0da2009af632c8ecf3dc61ac"><code>5b36a1d</code></a> Release v1.47.0 (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/230">#230</a>)</li> <li>See full diff in <a href="https://github.com/bufbuild/buf-setup-action/compare/v1.46.0...v1.47.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ometbft#4499) Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action) from 1.27.0 to 2.0.0. Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#4521) (cometbft#4526) This PR generates new mocks because the version of mockery changes. Marking it as draft until all tests pass. The resolution comes from vektra/mockery#848 . We should think of a way to make our mocks compatible with the upcoming `v3` release. --- #### PR checklist - [ ] Tests written/updated - [x ] Changelog entry added in `.changelog` (we use [unclog](https://github.com/informalsystems/unclog) to manage our changelog) - [ ] Updated relevant documentation (`docs/` or `spec/`) and code comments <hr>This is an automatic backport of pull request cometbft#4521 done by [Mergify](https://mergify.com). --------- Co-authored-by: Jasmina Malicevic <[email protected]> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…38.x`) (cometbft#4533) Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…bft#4582) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.67.1 to 1.68.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases">google.golang.org/grpc's releases</a>.</em></p> <blockquote> <h2>Release 1.68.0</h2> <h1>Known Issues</h1> <ul> <li>The recently added <code>grpc.NewClient</code> function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. This bug has been present since the introduction of <code>NewClient</code>. A fix is expected to be a part of grpc-go v1.70. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7556">#7556</a>)</li> </ul> <hr /> <h1>Behavior Changes</h1> <ul> <li>stats/opentelemetry/csm: Get mesh_id local label from "CSM_MESH_ID" environment variable, rather than parsing from bootstrap file (<a href="https://redirect.github.com/grpc/grpc-go/issues/7740">#7740</a>)</li> <li>orca (experimental): if using an ORCA listener, it must now be registered only on a READY SubConn, and the listener will automatically be stopped when the connection is lost. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7663">#7663</a>)</li> <li>client: <code>ClientConn.Close()</code> now closes transports simultaneously and waits for transports to be closed before returning. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7666">#7666</a>)</li> <li>credentials: TLS credentials created via <code>NewTLS</code> that use <code>tls.Config.GetConfigForClient</code> will now have CipherSuites, supported TLS versions and ALPN configured automatically. These were previously only set for configs not using the <code>GetConfigForClient</code> option. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7709">#7709</a>)</li> </ul> <h1>Bug Fixes</h1> <ul> <li>transport: prevent deadlock in client transport shutdown when writing the GOAWAY frame hangs. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7662">#7662</a>)</li> <li>mem: reuse buffers more accurately by using slice capacity instead of length (<a href="https://redirect.github.com/grpc/grpc-go/issues/7702">#7702</a>) <ul> <li>Special Thanks: <a href="https://github.com/PapaCharlie"><code>@PapaCharlie</code></a></li> </ul> </li> <li>status: Fix regression caused by <a href="https://redirect.github.com/grpc/grpc-go/issues/6919">#6919</a> in status.Details() causing it to return a wrapped type when getting proto messages generated with protoc-gen-go < v1. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7724">#7724</a>)</li> </ul> <h1>Dependencies</h1> <ul> <li>Bump minimum supported Go version to <code>go1.22.7</code>. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7624">#7624</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/grpc/grpc-go/commit/acba4d3e9d537eb5adc09947ebc7cfb85ec774cc"><code>acba4d3</code></a> Change version to 1.68.0 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7743">#7743</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/5363dca57d52c3ed9c5636f60c230633f9b11ec3"><code>5363dca</code></a> credentials: Apply defaults to TLS configs provided through GetConfigForClien...</li> <li><a href="https://github.com/grpc/grpc-go/commit/056dc64310d66e9e8bf5de62f645f62dc681d917"><code>056dc64</code></a> status: Fix status incompatibility introduced by <a href="https://redirect.github.com/grpc/grpc-go/issues/6919">#6919</a> and move non-regenerat...</li> <li><a href="https://github.com/grpc/grpc-go/commit/b79fb619d0ee760167bfabc373c415441183de80"><code>b79fb61</code></a> mem: use slice capacity instead of length, to determine whether to pool buffe...</li> <li><a href="https://github.com/grpc/grpc-go/commit/54841eff8c107067337510cda5b304df1f1bf1bc"><code>54841ef</code></a> stats/opentelemetry/csm: Get mesh_id local label from "CSM_MESH_ID" environme...</li> <li><a href="https://github.com/grpc/grpc-go/commit/ad81c20503be8c36d929741078e1a53a292e4048"><code>ad81c20</code></a> pickfirstleaf: minor simplification to reconcileSubConnsLocked method (<a href="https://redirect.github.com/grpc/grpc-go/issues/7731">#7731</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/b850ea533f746ce3aa7bcc56b041f27e7204de8c"><code>b850ea5</code></a> transport : wait for goroutines to exit before transport closes (<a href="https://redirect.github.com/grpc/grpc-go/issues/7666">#7666</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/00b9e140ce71480ee7ecc6b85317021e0fe11fbb"><code>00b9e14</code></a> pickfirst: New pick first policy for dualstack (<a href="https://redirect.github.com/grpc/grpc-go/issues/7498">#7498</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/18a4eacc06189a8384ffb76b5add28c60ad9f169"><code>18a4eac</code></a> testutils: add couple of log statements to the restartable listener type (<a href="https://redirect.github.com/grpc/grpc-go/issues/7716">#7716</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/fdc2ec2c84c8d21fb23ba82d2aeb95cdef8091e8"><code>fdc2ec2</code></a> xdsclient: deflake TestADS_ResourcesAreRequestedAfterStreamRestart (<a href="https://redirect.github.com/grpc/grpc-go/issues/7720">#7720</a>)</li> <li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.67.1...v1.68.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…tbft#4593) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.9.0 to 6.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p> <blockquote> <h2>v6.10.0</h2> <ul> <li>Add <code>call</code> input to set method for evaluating build by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1265">docker/build-push-action#1265</a></li> <li>Bump <code>@actions/core</code> from 1.10.1 to 1.11.1 in <a href="https://redirect.github.com/docker/build-push-action/pull/1238">docker/build-push-action#1238</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.39.0 to 0.46.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1268">docker/build-push-action#1268</a></li> <li>Bump cross-spawn from 7.0.3 to 7.0.6 in <a href="https://redirect.github.com/docker/build-push-action/pull/1261">docker/build-push-action#1261</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v6.9.0...v6.10.0">https://github.com/docker/build-push-action/compare/v6.9.0...v6.10.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/build-push-action/commit/48aba3b46d1b1fec4febb7c5d0c644b249a11355"><code>48aba3b</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1268">#1268</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="https://github.com/docker/build-push-action/commit/678328cf8e3098e9f2f1d936ae548c9479d6df42"><code>678328c</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/cdf0a37e6f1233dd28f23c10211c33e67a7bec71"><code>cdf0a37</code></a> chore(deps): Bump <code>@docker/actions-toolkit</code> from 0.39.0 to 0.46.0</li> <li><a href="https://github.com/docker/build-push-action/commit/d719b79de1e8e269d4fcc5a80898196da2d0c5b6"><code>d719b79</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1238">#1238</a> from docker/dependabot/npm_and_yarn/actions/core-1.11.1</li> <li><a href="https://github.com/docker/build-push-action/commit/c333dfd43deaf1620b3379589ac39a11be13c72c"><code>c333dfd</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/6b56a4c3f83c50fa6630a247100ee2d2905aaa5f"><code>6b56a4c</code></a> chore(deps): Bump <code>@actions/core</code> from 1.10.1 to 1.11.1</li> <li><a href="https://github.com/docker/build-push-action/commit/92fb0d73b623b7ebf48bd248bd465b6a5cbe7c60"><code>92fb0d7</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1259">#1259</a> from docker/dependabot/github_actions/codecov/codeco...</li> <li><a href="https://github.com/docker/build-push-action/commit/40532c5d6fa1c2aef883289629dcadf2e77165a4"><code>40532c5</code></a> ci: fix deprecated input for codecov-action</li> <li><a href="https://github.com/docker/build-push-action/commit/70dd95342711510431dc0bd25494df47756d27c3"><code>70dd953</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1267">#1267</a> from crazy-max/fix-allow</li> <li><a href="https://github.com/docker/build-push-action/commit/41b4e8020e9e4e2a35082a19644371a54db50097"><code>41b4e80</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1261">#1261</a> from docker/dependabot/npm_and_yarn/cross-spawn-7.0.6</li> <li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/v6.9.0...v6.10.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.8.0 to 0.9.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/sync/commit/151027eb5637d626749783009eab9f0a7cfb446a"><code>151027e</code></a> README: don't recommend go get</li> <li>See full diff in <a href="https://github.com/golang/sync/compare/v0.8.0...v0.9.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…ometbft#4588) Bumps google.golang.org/protobuf from 1.35.1 to 1.35.2. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.30.0 to 0.31.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/net/commit/334afa0d53434157eb708b09ff35a42db2c4531a"><code>334afa0</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/d7f220d3b8964f859b642e7d7c1a0d0973000939"><code>d7f220d</code></a> quic: add LocalAddr and RemoteAddr to quic.Conn</li> <li><a href="https://github.com/golang/net/commit/858db1a8c8f71cbefb8ff2c896ff9aa86d761a47"><code>858db1a</code></a> http2: surface errors occurring very early in a client conn's lifetime</li> <li><a href="https://github.com/golang/net/commit/0aa844c2c8b6054d98e91f074355d5a50528934c"><code>0aa844c</code></a> http2: support unencrypted HTTP/2 handoff from net/http</li> <li><a href="https://github.com/golang/net/commit/f35fec92ec9213ee211cf45f451a5970386f7978"><code>f35fec9</code></a> http2: detect hung client connections by confirming stream resets</li> <li><a href="https://github.com/golang/net/commit/e883daec587fecbebb6434e53c153335e8bdeaef"><code>e883dae</code></a> README: don't recommend go get</li> <li><a href="https://github.com/golang/net/commit/511cc3a40645a2f6ed3d21a1d0803b5057b9aaa1"><code>511cc3a</code></a> html: add Node.{Ancestors,ChildNodes,Descendants}()</li> <li><a href="https://github.com/golang/net/commit/4783315416d92ff3d4664762748bd21776b42b98"><code>4783315</code></a> http2: limit 1xx based on size, do not limit when delivered</li> <li><a href="https://github.com/golang/net/commit/5716b9813d2c78aa3bb6e08160517facfb2e84e6"><code>5716b98</code></a> internal/socket: execute gofmt</li> <li><a href="https://github.com/golang/net/commit/42b11863606139133313f265e6cf2a4d1d8ca972"><code>42b1186</code></a> http2: support ResponseController.EnableFullDuplex</li> <li>See full diff in <a href="https://github.com/golang/net/compare/v0.30.0...v0.31.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
cometbft#4583) Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) from 3.3.0 to 3.3.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Masterminds/semver/releases">github.com/Masterminds/semver/v3's releases</a>.</em></p> <blockquote> <h2>v3.3.1</h2> <h2>What's Changed</h2> <ul> <li>Fix for allowing some version that were invalid by <a href="https://github.com/mattfarina"><code>@mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/253">Masterminds/semver#253</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/Masterminds/semver/compare/v3.3.0...v3.3.1">https://github.com/Masterminds/semver/compare/v3.3.0...v3.3.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Masterminds/semver/blob/master/CHANGELOG.md">github.com/Masterminds/semver/v3's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Masterminds/semver/commit/1558ca3488226e3490894a145e831ad58a5ff958"><code>1558ca3</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/253">#253</a> from mattfarina/fix-bad-versions</li> <li><a href="https://github.com/Masterminds/semver/commit/252dd61dd30c2bcf2bcfc30be1428c68d8f25934"><code>252dd61</code></a> Fix for allowing some version that were invalid</li> <li>See full diff in <a href="https://github.com/Masterminds/semver/compare/v3.3.0...v3.3.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…ometbft#4586) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.9.0 to 1.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stretchr/testify/releases">github.com/stretchr/testify's releases</a>.</em></p> <blockquote> <h2>v1.10.0</h2> <h2>What's Changed</h2> <h3>Functional Changes</h3> <ul> <li>Add PanicAssertionFunc by <a href="https://github.com/fahimbagar"><code>@fahimbagar</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1337">stretchr/testify#1337</a></li> <li>assert: deprecate CompareType by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1566">stretchr/testify#1566</a></li> <li>assert: make YAML dependency pluggable via build tags by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1579">stretchr/testify#1579</a></li> <li>assert: new assertion NotElementsMatch by <a href="https://github.com/hendrywiranto"><code>@hendrywiranto</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1600">stretchr/testify#1600</a></li> <li>mock: in order mock calls by <a href="https://github.com/ReyOrtiz"><code>@ReyOrtiz</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1637">stretchr/testify#1637</a></li> <li>Add assertion for NotErrorAs by <a href="https://github.com/palsivertsen"><code>@palsivertsen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1129">stretchr/testify#1129</a></li> <li>Record Return Arguments of a Call by <a href="https://github.com/jayd3e"><code>@jayd3e</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1636">stretchr/testify#1636</a></li> <li>assert.EqualExportedValues: accepts everything by <a href="https://github.com/redachl"><code>@redachl</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1586">stretchr/testify#1586</a></li> </ul> <h3>Fixes</h3> <ul> <li>assert: make tHelper a type alias by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1562">stretchr/testify#1562</a></li> <li>Do not get argument again unnecessarily in Arguments.Error() by <a href="https://github.com/TomWright"><code>@TomWright</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/820">stretchr/testify#820</a></li> <li>Fix time.Time compare by <a href="https://github.com/myxo"><code>@myxo</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1582">stretchr/testify#1582</a></li> <li>assert.Regexp: handle []byte array properly by <a href="https://github.com/kevinburkesegment"><code>@kevinburkesegment</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1587">stretchr/testify#1587</a></li> <li>assert: collect.FailNow() should not panic by <a href="https://github.com/marshall-lee"><code>@marshall-lee</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1481">stretchr/testify#1481</a></li> <li>mock: simplify implementation of FunctionalOptions by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1571">stretchr/testify#1571</a></li> <li>mock: caller information for unexpected method call by <a href="https://github.com/spirin"><code>@spirin</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1644">stretchr/testify#1644</a></li> <li>suite: fix test failures by <a href="https://github.com/stevenh"><code>@stevenh</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1421">stretchr/testify#1421</a></li> <li>Fix issue <a href="https://redirect.github.com/stretchr/testify/issues/1662">#1662</a> (comparing infs should fail) by <a href="https://github.com/ybrustin"><code>@ybrustin</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1663">stretchr/testify#1663</a></li> <li>NotSame should fail if args are not pointers <a href="https://redirect.github.com/stretchr/testify/issues/1661">#1661</a> by <a href="https://github.com/sikehish"><code>@sikehish</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1664">stretchr/testify#1664</a></li> <li>Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by <a href="https://github.com/sikehish"><code>@sikehish</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1667">stretchr/testify#1667</a></li> <li>fix: compare functional option names for indirect calls by <a href="https://github.com/arjun-1"><code>@arjun-1</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1626">stretchr/testify#1626</a></li> </ul> <h3>Documantation, Build & CI</h3> <ul> <li>.gitignore: ignore "go test -c" binaries by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1565">stretchr/testify#1565</a></li> <li>mock: improve doc by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1570">stretchr/testify#1570</a></li> <li>mock: fix FunctionalOptions docs by <a href="https://github.com/snirye"><code>@snirye</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1433">stretchr/testify#1433</a></li> <li>README: link out to the excellent testifylint by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1568">stretchr/testify#1568</a></li> <li>assert: fix typo in comment by <a href="https://github.com/JohnEndson"><code>@JohnEndson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1580">stretchr/testify#1580</a></li> <li>Correct the EventuallyWithT and EventuallyWithTf example by <a href="https://github.com/JonCrowther"><code>@JonCrowther</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1588">stretchr/testify#1588</a></li> <li>CI: bump softprops/action-gh-release from 1 to 2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1575">stretchr/testify#1575</a></li> <li>mock: document more alternatives to deprecated AnythingOfTypeArgument by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1569">stretchr/testify#1569</a></li> <li>assert: Correctly document EqualValues behavior by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1593">stretchr/testify#1593</a></li> <li>fix: grammar in godoc by <a href="https://github.com/miparnisari"><code>@miparnisari</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1607">stretchr/testify#1607</a></li> <li>.github/workflows: Run tests for Go 1.22 by <a href="https://github.com/HaraldNordgren"><code>@HaraldNordgren</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1629">stretchr/testify#1629</a></li> <li>Document suite's lack of support for t.Parallel by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1645">stretchr/testify#1645</a></li> <li>assert: fix typos in comments by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1650">stretchr/testify#1650</a></li> <li>mock: fix doc comment for NotBefore by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1651">stretchr/testify#1651</a></li> <li>Generate better comments for require package by <a href="https://github.com/Neokil"><code>@Neokil</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1610">stretchr/testify#1610</a></li> <li>README: replace Testify V2 notice with <a href="https://github.com/dolmen"><code>@dolmen</code></a>'s V2 manifesto by <a href="https://github.com/hendrywiranto"><code>@hendrywiranto</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1518">stretchr/testify#1518</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/fahimbagar"><code>@fahimbagar</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1337">stretchr/testify#1337</a></li> <li><a href="https://github.com/TomWright"><code>@TomWright</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/820">stretchr/testify#820</a></li> <li><a href="https://github.com/snirye"><code>@snirye</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1433">stretchr/testify#1433</a></li> <li><a href="https://github.com/myxo"><code>@myxo</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1582">stretchr/testify#1582</a></li> <li><a href="https://github.com/JohnEndson"><code>@JohnEndson</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1580">stretchr/testify#1580</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/stretchr/testify/commit/89cbdd9e7b39eb58896d316a7495597d3aba4371"><code>89cbdd9</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1626">#1626</a> from arjun-1/fix-functional-options-diff-indirect-calls</li> <li><a href="https://github.com/stretchr/testify/commit/07bac606be2191ae89a281195e58d01e0de7b5f8"><code>07bac60</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1667">#1667</a> from sikehish/flaky</li> <li><a href="https://github.com/stretchr/testify/commit/716de8dff46ed7ae3c6ebb7a6124db741ba7c018"><code>716de8d</code></a> Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI</li> <li><a href="https://github.com/stretchr/testify/commit/118fb8346630c192421c8914848381af9d4412a7"><code>118fb83</code></a> NotSame should fail if args are not pointers <a href="https://redirect.github.com/stretchr/testify/issues/1661">#1661</a> (<a href="https://redirect.github.com/stretchr/testify/issues/1664">#1664</a>)</li> <li><a href="https://github.com/stretchr/testify/commit/7d99b2b43d8f60a8982a78cde6e8bd287dea5da0"><code>7d99b2b</code></a> attempt 2</li> <li><a href="https://github.com/stretchr/testify/commit/05f87c016035811e6d8371f1887ec360c318f53f"><code>05f87c0</code></a> more similar</li> <li><a href="https://github.com/stretchr/testify/commit/ea7129e00694592e20cb34c58a6b8a251418b9da"><code>ea7129e</code></a> better fmt</li> <li><a href="https://github.com/stretchr/testify/commit/a1b9c9efe3c25c50678b1e492045164b914e255f"><code>a1b9c9e</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1663">#1663</a> from ybrustin/master</li> <li><a href="https://github.com/stretchr/testify/commit/8302de98b17649445fc1f1992fc3fecdb40c59ba"><code>8302de9</code></a> Merge branch 'master' into master</li> <li><a href="https://github.com/stretchr/testify/commit/89352f7958086841c72425ccd6f43ab299e1309c"><code>89352f7</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1518">#1518</a> from hendrywiranto/adjust-readme-remove-v2</li> <li>Additional commits viewable in <a href="https://github.com/stretchr/testify/compare/v1.9.0...v1.10.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ery`. (backport cometbft#4605) (cometbft#4608) ### Context Using `latest` for `mockery` causes changes in the mocks with almost every new release, which in turn makes our CI fail. By fixing `mockery`'s version, we can prevent this issue. Additionally, `mockery`'s documentation suggests not to use `latest` anyway, so we were doing it incorrectly from the start. ### Changes This PR pins the `mockery` version to `v2.49.2` (the latest release). The `main` branch already uses mocks generated with this version, so using any other version of `mockery` would alter the mocks again. At least we get the benefit from the latest bug fixes.
…t#4636) (cometbft#4641) Co-authored-by: Anton Kaliaev <[email protected]>
…kport cometbft#4633) (cometbft#4635) This is a drive-by fix of a test that doesn't shut its threads down until the whole `go test` execution finishes. I think we have a bunch of these, but I came across this one during an unrelated troubleshooting. Is it worth fixing this? It's not really causing any issues, it's just sloppy coding. The only way to see any difference is to run the `go test` until it reaches its time limit and panics. In that case, the trace will contain references to the threads. For example: ``` go test github.com/cometbft/cometbft/blocksync -v -run TestBlockPoolMaliciousNode -count 100 -failfast -race -timeout 30s ``` After 30 seconds the test didn't run 100 times yet, hence `go test` panics. Because the test has been run multiple times already, multiple sets of threads will be reported in the panic. With the fix, only one set is reported. Author: @greg-szabo <hr>This is an automatic backport of pull request cometbft#4633 done by [Mergify](https://mergify.com). --------- Co-authored-by: Anton Kaliaev <[email protected]> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…etbft#4644) (cometbft#4649) Solves cometbft#4620. Fixes an issue introduced by cometbft#3360. --------- Co-authored-by: Daniel <[email protected]> Co-authored-by: Jasmina Malicevic <[email protected]>
…cometbft#4660) (cometbft#4662) <hr>This is an automatic backport of pull request cometbft#4660 done by [Mergify](https://mergify.com). --------- Co-authored-by: Anton Kaliaev <[email protected]>
…kport cometbft#4663) (cometbft#4677) Co-authored-by: Anton Kaliaev <[email protected]>
[Rendered CHANGELOG](https://github.com/cometbft/cometbft/blob/ab5ec8016ccba1919db28a7d39ffbfeb0397b215/CHANGELOG.md). Manually ran `e2e-nightly` on this branch: [link](https://github.com/cometbft/cometbft/actions/runs/12432997601)
…etbft#4712) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.7.1 to 3.8.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's releases</a>.</em></p> <blockquote> <h2>v3.8.0</h2> <ul> <li>Make cloud prefix optional to download buildx if driver is cloud by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/390">docker/setup-buildx-action#390</a></li> <li>Bump <code>@actions/core</code> from 1.10.1 to 1.11.1 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/370">docker/setup-buildx-action#370</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.39.0 to 0.48.0 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/389">docker/setup-buildx-action#389</a></li> <li>Bump cross-spawn from 7.0.3 to 7.0.6 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/382">docker/setup-buildx-action#382</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v3.7.1...v3.8.0">https://github.com/docker/setup-buildx-action/compare/v3.7.1...v3.8.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/setup-buildx-action/commit/6524bf65af31da8d45b59e8c27de4bd072b392f5"><code>6524bf6</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-buildx-action/issues/390">#390</a> from crazy-max/buildx-cloud-latest</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/8d5e0747fc81adde3c75a11c4ab1cd6e831c45b5"><code>8d5e074</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/7199e57b3551d377384de4d86bb21b747aea8ae4"><code>7199e57</code></a> make cloud prefix optional to download buildx if driver is cloud</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/db63cee3de03c9e9f201f1b6213e29b58eaa560d"><code>db63cee</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-buildx-action/issues/381">#381</a> from docker/dependabot/github_actions/codecov/codecov...</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/043ebe137fb9440c054da78ea0d12b4770d51bb0"><code>043ebe1</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-buildx-action/issues/389">#389</a> from docker/dependabot/npm_and_yarn/docker/actions-to...</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/686da9073d5e9e34c27fc99d06023785a093b3b2"><code>686da90</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/a3d74876b8fd9bd06b520ed90e4838a3ab637302"><code>a3d7487</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-buildx-action/issues/382">#382</a> from docker/dependabot/npm_and_yarn/cross-spawn-7.0.6</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/4dcdbcec48953cab044a8e7d13f601ffd1926c08"><code>4dcdbce</code></a> build(deps): bump <code>@docker/actions-toolkit</code> from 0.39.0 to 0.48.0</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/1a8ac74316906cd182c3b1e6361b0648f1800ecc"><code>1a8ac74</code></a> ci: fix deprecated input for codecov-action</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/e827ebe8ba8bcef11893610e158210f4ce7c2ded"><code>e827ebe</code></a> build(deps): bump cross-spawn from 7.0.3 to 7.0.6</li> <li>Additional commits viewable in <a href="https://github.com/docker/setup-buildx-action/compare/v3.7.1...v3.8.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…metbft#4711) Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.47.2 to 1.48.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bufbuild/buf-setup-action/releases">bufbuild/buf-setup-action's releases</a>.</em></p> <blockquote> <h2>v1.48.0</h2> <p>Release v1.48.0</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/1115d0acd3d2a120b30023fac52abc46807c8fd6"><code>1115d0a</code></a> Release v1.48.0 (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/233">#233</a>)</li> <li>See full diff in <a href="https://github.com/bufbuild/buf-setup-action/compare/v1.47.2...v1.48.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…metbft#4802) Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.48.0 to 1.49.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bufbuild/buf-setup-action/releases">bufbuild/buf-setup-action's releases</a>.</em></p> <blockquote> <h2>v1.49.0</h2> <p>Release v1.49.0</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/480b44ac64eb7784931d42dcddaf762c626186a6"><code>480b44a</code></a> Release v1.49.0 (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/236">#236</a>)</li> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/2ff90c60795eee77ba6134f1fb1aa7ceba7845ff"><code>2ff90c6</code></a> Update license year range (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/235">#235</a>)</li> <li>See full diff in <a href="https://github.com/bufbuild/buf-setup-action/compare/v1.48.0...v1.49.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…etbft#4801) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.10.0 to 6.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p> <blockquote> <h2>v6.11.0</h2> <ul> <li>Handlebar <code>defaultContext</code> support for <code>build-contexts</code> input by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1283">docker/build-push-action#1283</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.46.0 to 0.49.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1281">docker/build-push-action#1281</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v6.10.0...v6.11.0">https://github.com/docker/build-push-action/compare/v6.10.0...v6.11.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/build-push-action/commit/b32b51a8eda65d6793cd0494a773d4f6bcef32dc"><code>b32b51a</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1281">#1281</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="https://github.com/docker/build-push-action/commit/594bf46f0f6d32fd8bd98a553127950004165c96"><code>594bf46</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1294">#1294</a> from crazy-max/fix-e2e</li> <li><a href="https://github.com/docker/build-push-action/commit/fd37bd55af0b8c458ea0ff376ce151a332fa7aed"><code>fd37bd5</code></a> ci(e2e): fix setup docker config</li> <li><a href="https://github.com/docker/build-push-action/commit/e6478a2405f3527f33b93efb6857519c3ffd91f2"><code>e6478a2</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/78785bddff35ca36f384e0c6a8a367584317df9f"><code>78785bd</code></a> chore(deps): Bump <code>@docker/actions-toolkit</code> from 0.46.0 to 0.49.0</li> <li><a href="https://github.com/docker/build-push-action/commit/128779fed7edb034b3f8006e9dac81a8593c040e"><code>128779f</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1283">#1283</a> from crazy-max/named-context-handlebars</li> <li><a href="https://github.com/docker/build-push-action/commit/7e094594beda23fc8f21fa31049f4b203e51096b"><code>7e09459</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1282">#1282</a> from crazy-max/remove-buildkit-5561</li> <li><a href="https://github.com/docker/build-push-action/commit/32ee877a58507615d974839965ef8e530d66362e"><code>32ee877</code></a> Revert "init buildkit-5561 workflow"</li> <li><a href="https://github.com/docker/build-push-action/commit/d1a4129c41bb3f92b731b33dc29cfe5f6cd9298f"><code>d1a4129</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/49c623eaf82513814393adabc13bf2535384d735"><code>49c623e</code></a> handlebar defaultContext support for build-contexts input</li> <li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/v6.10.0...v6.11.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…metbft#4836) Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.49.0 to 1.50.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bufbuild/buf-setup-action/releases">bufbuild/buf-setup-action's releases</a>.</em></p> <blockquote> <h2>v1.50.0</h2> <p>Release v1.50.0</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/bufbuild/buf-setup-action/commit/a47c93e0b1648d5651a065437926377d060baa99"><code>a47c93e</code></a> Release v1.50.0 (<a href="https://redirect.github.com/bufbuild/buf-setup-action/issues/238">#238</a>)</li> <li>See full diff in <a href="https://github.com/bufbuild/buf-setup-action/compare/v1.49.0...v1.50.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…etbft#4835) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.11.0 to 6.12.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p> <blockquote> <h2>v6.12.0</h2> <ul> <li>Bump <code>@docker/actions-toolkit</code> from 0.49.0 to 0.51.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1300">docker/build-push-action#1300</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v6.11.0...v6.12.0">https://github.com/docker/build-push-action/compare/v6.11.0...v6.12.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/build-push-action/commit/67a2d409c0a876cbe6b11854e3e25193efe4e62d"><code>67a2d40</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1300">#1300</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="https://github.com/docker/build-push-action/commit/0b1b1c9c43ec788c199860037a0545356ea03d26"><code>0b1b1c9</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/b6a7c2c4eec8151a4dbcd3823747fe1b77d5b280"><code>b6a7c2c</code></a> chore(deps): Bump <code>@docker/actions-toolkit</code> from 0.49.0 to 0.51.0</li> <li><a href="https://github.com/docker/build-push-action/commit/31ca4e5d51253d7e4a2317bfe74699cbe3a398a9"><code>31ca4e5</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1296">#1296</a> from crazy-max/bake-v6</li> <li><a href="https://github.com/docker/build-push-action/commit/e613db9d5a93dda4d07aeb81991e80164577ae4a"><code>e613db9</code></a> update bake-action to v6</li> <li>See full diff in <a href="https://github.com/docker/build-push-action/compare/v6.11.0...v6.12.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Adding @cometbft/interchain-inc to CODEOWNERS --- #### PR checklist - [ ] Tests written/updated - [ ] Changelog entry added in `.changelog` (we use [unclog](https://github.com/informalsystems/unclog) to manage our changelog) - [ ] Updated relevant documentation (`docs/` or `spec/`) and code comments <hr>This is an automatic backport of pull request cometbft#4848 done by [Mergify](https://mergify.com). --------- Co-authored-by: Zachary Becker <[email protected]>
…ometbft#4753) Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.12.0 to 5.13.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/go-git/go-git/releases">github.com/go-git/go-git/v5's releases</a>.</em></p> <blockquote> <h2>v5.13.0</h2> <h2>What's Changed</h2> <ul> <li>build: bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 in /cli/go-git by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1065">go-git/go-git#1065</a></li> <li>build: bump golang.org/x/net from 0.22.0 to 0.23.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1068">go-git/go-git#1068</a></li> <li>build: bump golang.org/x/net from 0.23.0 to 0.24.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1071">go-git/go-git#1071</a></li> <li>Properly support skipping of non-mandatory extensions by <a href="https://github.com/codablock"><code>@codablock</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1066">go-git/go-git#1066</a></li> <li>git: Refine some codes in test and non-test. by <a href="https://github.com/onee-only"><code>@onee-only</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1077">go-git/go-git#1077</a></li> <li>plumbing: protocol/packp, client-side filter capability support by <a href="https://github.com/edigaryev"><code>@edigaryev</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1000">go-git/go-git#1000</a></li> <li>build: bump golang.org/x/net from 0.22.0 to 0.23.0 in /cli/go-git by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1078">go-git/go-git#1078</a></li> <li>plumbing: fix sideband demux on flush by <a href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1084">go-git/go-git#1084</a></li> <li>storage: dotgit, head reference usually comes first by <a href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1085">go-git/go-git#1085</a></li> <li>build: bump golang.org/x/text from 0.14.0 to 0.15.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1091">go-git/go-git#1091</a></li> <li>build: bump golang.org/x/crypto from 0.22.0 to 0.23.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1094">go-git/go-git#1094</a></li> <li>build: bump golang.org/x/net from 0.24.0 to 0.25.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1093">go-git/go-git#1093</a></li> <li>git: Added an example for Repository.Branches by <a href="https://github.com/johnmatthiggins"><code>@johnmatthiggins</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1088">go-git/go-git#1088</a></li> <li>git: worktree_commit, Modify checking empty commit. Fixes <a href="https://redirect.github.com/go-git/go-git/issues/723">#723</a> by <a href="https://github.com/onee-only"><code>@onee-only</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1050">go-git/go-git#1050</a></li> <li>plumbing: transport/http, Wrap http errors to return reason. Fixes <a href="https://redirect.github.com/go-git/go-git/issues/1097">#1097</a> by <a href="https://github.com/ggambetti"><code>@ggambetti</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1100">go-git/go-git#1100</a></li> <li>build: bump golang.org/x/sys from 0.20.0 to 0.21.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1106">go-git/go-git#1106</a></li> <li>build: bump golang.org/x/text from 0.15.0 to 0.16.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1107">go-git/go-git#1107</a></li> <li>Bumps Go versions and go-billy by <a href="https://github.com/pjbgf"><code>@pjbgf</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1056">go-git/go-git#1056</a></li> <li>_examples: Fixed a dead link COMPATIBILITY.md by <a href="https://github.com/gecko655"><code>@gecko655</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1109">go-git/go-git#1109</a></li> <li>build: bump github.com/jessevdk/go-flags from 1.5.0 to 1.6.1 in /cli/go-git by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1115">go-git/go-git#1115</a></li> <li>build: bump github.com/elazarl/goproxy from v0.0.0-20230808193330-2592e75ae04a to v0.0.0-20240618083138-03be62527ccb by <a href="https://github.com/hbelmiro"><code>@hbelmiro</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1124">go-git/go-git#1124</a></li> <li>build: bump golang.org/x/net from 0.25.0 to 0.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1104">go-git/go-git#1104</a></li> <li>Add option approximating <code>git clean -x</code> flag. by <a href="https://github.com/msuozzo"><code>@msuozzo</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/995">go-git/go-git#995</a></li> <li>Revert "Add option approximating <code>git clean -x</code> flag." by <a href="https://github.com/pjbgf"><code>@pjbgf</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1129">go-git/go-git#1129</a></li> <li>Fix reference updated concurrently error for the filesystem storer by <a href="https://github.com/Javier-varez"><code>@Javier-varez</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1116">go-git/go-git#1116</a></li> <li>build: bump golang.org/x/net from 0.26.0 to 0.27.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1134">go-git/go-git#1134</a></li> <li>utils: merkletrie, Align error message with upstream by <a href="https://github.com/pjbgf"><code>@pjbgf</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1142">go-git/go-git#1142</a></li> <li>plumbing: transport/file, Change paths to absolute by <a href="https://github.com/pjbgf"><code>@pjbgf</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1141">go-git/go-git#1141</a></li> <li>plumbing: gitignore, Fix loading of ignored .gitignore files. by <a href="https://github.com/Achilleshiel"><code>@Achilleshiel</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1114">go-git/go-git#1114</a></li> <li>build: bump github.com/skeema/knownhosts from 1.2.2 to 1.3.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1147">go-git/go-git#1147</a></li> <li>plumbing: transport/ssh, Add support for SSH <a href="https://github.com/cert-authority"><code>@cert-authority</code></a>. by <a href="https://github.com/Javier-varez"><code>@Javier-varez</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1157">go-git/go-git#1157</a></li> <li>build: run example tests during CI workflow by <a href="https://github.com/crazybolillo"><code>@crazybolillo</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1030">go-git/go-git#1030</a></li> <li>storage: filesystem, Fix object cache not working due to uninitialised objects being put into cache by <a href="https://github.com/SatelliteMind"><code>@SatelliteMind</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1138">go-git/go-git#1138</a></li> <li>git: Fix fetching missing commits by <a href="https://github.com/AriehSchneier"><code>@AriehSchneier</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1032">go-git/go-git#1032</a></li> <li>plumbing: format/packfile, remove duplicate checks in findMatch() by <a href="https://github.com/edigaryev"><code>@edigaryev</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1152">go-git/go-git#1152</a></li> <li>git: worktree, Fix file reported as <code>Untracked</code> while it is committed by <a href="https://github.com/rodrigocam"><code>@rodrigocam</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1023">go-git/go-git#1023</a></li> <li>build: bump golang.org/x/sys from 0.22.0 to 0.23.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1160">go-git/go-git#1160</a></li> <li>plumbing: filemode, Remove check for setting size of .git/index file by <a href="https://github.com/nicholasSUSE"><code>@nicholasSUSE</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1159">go-git/go-git#1159</a></li> <li>build: bump golang.org/x/net from 0.27.0 to 0.28.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1163">go-git/go-git#1163</a></li> <li>Fix some lint warning and increase stalebot to 180 days by <a href="https://github.com/pjbgf"><code>@pjbgf</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1128">go-git/go-git#1128</a></li> <li>adjust path extracted from file: url on Windows by <a href="https://github.com/tomqwpl"><code>@tomqwpl</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/416">go-git/go-git#416</a></li> <li>build: bump golang.org/x/sys from 0.23.0 to 0.24.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1164">go-git/go-git#1164</a></li> <li>Add RestoreStaged to Worktree that mimics the behaviour of git restore --staged <!-- raw HTML omitted -->... by <a href="https://github.com/ben-tbotlabs"><code>@ben-tbotlabs</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/493">go-git/go-git#493</a></li> <li>plumbing: signature, support the same x509 signature formats as git by <a href="https://github.com/yoavamit"><code>@yoavamit</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1169">go-git/go-git#1169</a></li> <li>fix: allow discovery of non bare repos in fsLoader by <a href="https://github.com/jakobmoellerdev"><code>@jakobmoellerdev</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1170">go-git/go-git#1170</a></li> <li>build: bump golang.org/x/sys from 0.24.0 to 0.25.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1178">go-git/go-git#1178</a></li> <li>build: bump golang.org/x/text from 0.17.0 to 0.18.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1179">go-git/go-git#1179</a></li> <li>build: bump golang.org/x/net from 0.28.0 to 0.29.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1184">go-git/go-git#1184</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/go-git/go-git/commit/94bd4af1deb15a64e90c6287eaf9e9f09b192a1f"><code>94bd4af</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1261">#1261</a> from BeChris/issue680</li> <li><a href="https://github.com/go-git/go-git/commit/8b7f5ba6f0cade1a25c5c4ca9e4d07a95c639945"><code>8b7f5ba</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1262">#1262</a> from go-git/dependabot/go_modules/github.com/elazarl...</li> <li><a href="https://github.com/go-git/go-git/commit/41d80a059a481d4c623bc8185c41ce82ed8ce985"><code>41d80a0</code></a> build: bump github.com/elazarl/goproxy</li> <li><a href="https://github.com/go-git/go-git/commit/499814044f111480b2a17a07c5a7a4c523ce5b87"><code>4998140</code></a> git: worktree_commit, sanitize author and commiter name and email before crea...</li> <li><a href="https://github.com/go-git/go-git/commit/9049625b98bd05edb9f1d00e7ff5da763afc0745"><code>9049625</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1260">#1260</a> from go-git/dependabot/github_actions/github/codeql-...</li> <li><a href="https://github.com/go-git/go-git/commit/dae48b4340d1cc6b562ade40b54049584075991f"><code>dae48b4</code></a> build: bump github/codeql-action from 3.27.9 to 3.28.0</li> <li><a href="https://github.com/go-git/go-git/commit/7d6fbc2c2a05eb6327b298b816bc0c4f854820a6"><code>7d6fbc2</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1220">#1220</a> from BeChris/accept_uppercase_hexa_in_pktline_length</li> <li><a href="https://github.com/go-git/go-git/commit/62a77b7d343dc1ed08d1d691efa13d81788cbc29"><code>62a77b7</code></a> plumbing: Fix invalid reference name error while cloning branches containing ...</li> <li><a href="https://github.com/go-git/go-git/commit/5e11196652708f339737b31bf9639373610dd7d1"><code>5e11196</code></a> plumbing: format/pktline, accept upercase hexadecimal value as pktline length...</li> <li><a href="https://github.com/go-git/go-git/commit/65f5e1ade083cfabacc2de4aaa68f7880e22b642"><code>65f5e1a</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1256">#1256</a> from go-git/dependabot/go_modules/golang-org-232a611e2d</li> <li>Additional commits viewable in <a href="https://github.com/go-git/go-git/compare/v5.12.0...v5.13.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.9.0 to 0.10.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/sync/commit/913fb63af28f446cd10c684ee847b5606cf328f7"><code>913fb63</code></a> singleflight: fix typo in singleflight_test.go</li> <li>See full diff in <a href="https://github.com/golang/sync/compare/v0.9.0...v0.10.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> Co-authored-by: Zachary Becker <[email protected]>
…bft#4754) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.68.0 to 1.69.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases">google.golang.org/grpc's releases</a>.</em></p> <blockquote> <h2>Release 1.69.2</h2> <h1>Bug Fixes</h1> <ul> <li>stats/experimental: add type aliases for symbols (<code>Metrics</code>/etc) that were moved to the stats package (<a href="https://redirect.github.com/grpc/grpc-go/issues/7929">#7929</a>).</li> <li>client: set user-agent string to the correct version.</li> </ul> <h2>Release 1.69.0</h2> <h1>Known Issues</h1> <ul> <li>The recently added <code>grpc.NewClient</code> function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7556">#7556</a>)</li> </ul> <h1>New Features</h1> <ul> <li>stats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (<a href="https://redirect.github.com/grpc/grpc-go/issues/7874">#7874</a>)</li> <li>xdsclient: add support to fallback to lower priority servers when higher priority ones are down (<a href="https://redirect.github.com/grpc/grpc-go/issues/7701">#7701</a>)</li> <li>dns: Add support for link local IPv6 addresses (<a href="https://redirect.github.com/grpc/grpc-go/issues/7889">#7889</a>)</li> <li>The new experimental <code>pickfirst</code> LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in <a href="https://www.rfc-editor.org/rfc/rfc8305#section-4">RFC-8305 section 4</a>, to attempt connections to multiple backends concurrently. The experimental <code>pickfirst</code> policy can be enabled by setting the environment variable <code>GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST</code> to <code>true</code>. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7725">#7725</a>, <a href="https://redirect.github.com/grpc/grpc-go/issues/7742">#7742</a>)</li> <li>balancer/pickfirst: Emit metrics from the <code>pick_first</code> load balancing policy (<a href="https://redirect.github.com/grpc/grpc-go/issues/7839">#7839</a>)</li> <li>grpc: export <code>MethodHandler</code>, which is the type of an already-exported field in <code>MethodDesc</code> (<a href="https://redirect.github.com/grpc/grpc-go/issues/7796">#7796</a>) <ul> <li>Special Thanks: <a href="https://github.com/mohdjishin"><code>@mohdjishin</code></a></li> </ul> </li> </ul> <h1>Bug Fixes</h1> <ul> <li>credentials/google: set scope for application default credentials (<a href="https://redirect.github.com/grpc/grpc-go/issues/7887">#7887</a>) <ul> <li>Special Thanks: <a href="https://github.com/halvards"><code>@halvards</code></a></li> </ul> </li> <li>xds: fix edge-case issues where some clients or servers would not initialize correctly or would not receive errors when resources are invalid or unavailable if another channel or server with the same target was already in use . (<a href="https://redirect.github.com/grpc/grpc-go/issues/7851">#7851</a>, <a href="https://redirect.github.com/grpc/grpc-go/issues/7853">#7853</a>)</li> <li>examples: fix the debugging example, which was broken by a recent change (<a href="https://redirect.github.com/grpc/grpc-go/issues/7833">#7833</a>)</li> </ul> <h1>Behavior Changes</h1> <ul> <li>client: update retry attempt backoff to apply jitter per updates to <a href="https://github.com/grpc/proposal/blob/master/A6-client-retries.md">gRFC A6</a>. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7869">#7869</a>) <ul> <li>Special Thanks: <a href="https://github.com/isgj"><code>@isgj</code></a></li> </ul> </li> <li>balancer/weightedroundrobin: use the <code>pick_first</code> LB policy to manage connections (<a href="https://redirect.github.com/grpc/grpc-go/issues/7826">#7826</a>)</li> </ul> <h1>API Changes</h1> <ul> <li>balancer: An internal method is added to the <code>balancer.SubConn</code> interface to force implementors to embed a delegate implementation. This requirement is present in the interface documentation, but wasn't enforced earlier. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7840">#7840</a>)</li> </ul> <h1>Performance Improvements</h1> <ul> <li>mem: implement a <code>ReadAll()</code> method for more efficient <code>io.Reader</code> consumption (<a href="https://redirect.github.com/grpc/grpc-go/issues/7653">#7653</a>) <ul> <li>Special Thanks: <a href="https://github.com/ash2k"><code>@ash2k</code></a></li> </ul> </li> <li>mem: use slice capacity instead of length to determine whether to pool buffers or directly allocate them (<a href="https://redirect.github.com/grpc/grpc-go/issues/7702">#7702</a>) <ul> <li>Special Thanks: <a href="https://github.com/PapaCharlie"><code>@PapaCharlie</code></a></li> </ul> </li> </ul> <h1>Documentation</h1> <ul> <li>examples/csm_observability: Add xDS Credentials and switch server to be xDS enabled (<a href="https://redirect.github.com/grpc/grpc-go/issues/7875">#7875</a>)</li> </ul> <h2>Release 1.68.2</h2> <h1>Dependencies</h1> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/grpc/grpc-go/commit/b615b35c4feb932a0ac658fb86b7127f10ef664e"><code>b615b35</code></a> Change version to 1.69.2 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7947">#7947</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/6b36a3e60ae03bc1aebf3f3e6bce58a2bc496ded"><code>6b36a3e</code></a> experimental/stats: re-add type aliases for migration (<a href="https://redirect.github.com/grpc/grpc-go/issues/7929">#7929</a>) (<a href="https://redirect.github.com/grpc/grpc-go/issues/7941">#7941</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/4535c6d2699749b5cd423e07caa7459fa42a76a7"><code>4535c6d</code></a> Change version to 1.69.2-dev (<a href="https://redirect.github.com/grpc/grpc-go/issues/7928">#7928</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/b6e7c72ece4bc35a2fd79952cee6305a7ce5aaef"><code>b6e7c72</code></a> examples/features/csm_observability: Make CSM Observability example server li...</li> <li><a href="https://github.com/grpc/grpc-go/commit/9355fbcc19aca55a3b6803626cb9f26f2ac7874e"><code>9355fbc</code></a> Change version to 1.69.1 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7927">#7927</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/927a1e1d1ae83fd60664b2d9d7d07539dea38eaa"><code>927a1e1</code></a> Change version to 1.69.1-dev (<a href="https://redirect.github.com/grpc/grpc-go/issues/7902">#7902</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/97d633a62e60acb359d26b3a5fa390ac5e04b732"><code>97d633a</code></a> Change version to 1.69.0 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7901">#7901</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/317271b232677b7869576a49855b01b9f4775d67"><code>317271b</code></a> pickfirst: Register a health listener when used as a leaf policy (<a href="https://redirect.github.com/grpc/grpc-go/issues/7832">#7832</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/5565631455d326987ad3f9dba6d45478cc426c9f"><code>5565631</code></a> balancer/pickfirst: replace grpc.Dial with grpc.NewClient in tests (<a href="https://redirect.github.com/grpc/grpc-go/issues/7879">#7879</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/634497b75899887567d48ff134059443069b8196"><code>634497b</code></a> test: Split import paths for generated message and service code (<a href="https://redirect.github.com/grpc/grpc-go/issues/7891">#7891</a>)</li> <li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.68.0...v1.69.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> Co-authored-by: Zachary Becker <[email protected]>
…ometbft#4755) Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.60.1 to 0.61.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/common/releases">github.com/prometheus/common's releases</a>.</em></p> <blockquote> <h2>v0.61.0</h2> <h2>What's Changed</h2> <ul> <li>Mark sigv4 deprecated by <a href="https://github.com/SuperQ"><code>@SuperQ</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/715">prometheus/common#715</a></li> <li>Provide a way to get UserAgent by <a href="https://github.com/mmorel-35"><code>@mmorel-35</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/716">prometheus/common#716</a></li> <li>Synchronize common files from prometheus/prometheus by <a href="https://github.com/prombot"><code>@prombot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/714">prometheus/common#714</a></li> <li>Bump golang.org/x/net from 0.29.0 to 0.30.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/712">prometheus/common#712</a></li> <li>chore: enable perfsprint linter by <a href="https://github.com/mmorel-35"><code>@mmorel-35</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/717">prometheus/common#717</a></li> <li>chore: use testify instead of testing.Fatal by <a href="https://github.com/mmorel-35"><code>@mmorel-35</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/718">prometheus/common#718</a></li> <li>Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/711">prometheus/common#711</a></li> <li>setup dependabot for <code>github.com/prometheus/common/assets</code> by <a href="https://github.com/mmorel-35"><code>@mmorel-35</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/719">prometheus/common#719</a></li> <li>Synchronize common files from prometheus/prometheus by <a href="https://github.com/prombot"><code>@prombot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/721">prometheus/common#721</a></li> <li>Mark promlog deprecated by <a href="https://github.com/SuperQ"><code>@SuperQ</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/720">prometheus/common#720</a></li> <li>Synchronize common files from prometheus/prometheus by <a href="https://github.com/prombot"><code>@prombot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/722">prometheus/common#722</a></li> <li>Allow custom user-agent definition by <a href="https://github.com/mmorel-35"><code>@mmorel-35</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/725">prometheus/common#725</a></li> <li>fix: values escaping bugs by <a href="https://github.com/ywwg"><code>@ywwg</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/727">prometheus/common#727</a></li> <li>fix(promslog): always use UTC for time by <a href="https://github.com/tjhop"><code>@tjhop</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/735">prometheus/common#735</a></li> <li>Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /assets by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/729">prometheus/common#729</a></li> <li>Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/730">prometheus/common#730</a></li> <li>promslog: always lowercase log level from CLI by <a href="https://github.com/jkroepke"><code>@jkroepke</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/728">prometheus/common#728</a></li> <li>Synchronize common files from prometheus/prometheus by <a href="https://github.com/prombot"><code>@prombot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/726">prometheus/common#726</a></li> <li>Bump golang.org/x/net from 0.30.0 to 0.32.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/736">prometheus/common#736</a></li> <li>Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/731">prometheus/common#731</a></li> <li>Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/732">prometheus/common#732</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/prometheus/common/compare/v0.60.1...v0.61.0">https://github.com/prometheus/common/compare/v0.60.1...v0.61.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/common/commit/7b484e97ca04d69d5db9a46326f399f230e1e4e0"><code>7b484e9</code></a> Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 (<a href="https://redirect.github.com/prometheus/common/issues/732">#732</a>)</li> <li><a href="https://github.com/prometheus/common/commit/05e3c4037f304834166c34a305a0658ef5b8db4c"><code>05e3c40</code></a> Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (<a href="https://redirect.github.com/prometheus/common/issues/731">#731</a>)</li> <li><a href="https://github.com/prometheus/common/commit/a0ef7371c3226c0353f663af2779e573dce2bd89"><code>a0ef737</code></a> Bump golang.org/x/net from 0.30.0 to 0.32.0 (<a href="https://redirect.github.com/prometheus/common/issues/736">#736</a>)</li> <li><a href="https://github.com/prometheus/common/commit/f99f029bc33e969a04aa799cb0e3fb96ab55ac7c"><code>f99f029</code></a> Update common Prometheus files (<a href="https://redirect.github.com/prometheus/common/issues/726">#726</a>)</li> <li><a href="https://github.com/prometheus/common/commit/b88f24cd1d8e9dc895a67e5de83aa15b75cb1243"><code>b88f24c</code></a> promslog: always lowercase log level from CLI (<a href="https://redirect.github.com/prometheus/common/issues/728">#728</a>)</li> <li><a href="https://github.com/prometheus/common/commit/2c3c048674edaf6067181aaeae0496d8234d9b02"><code>2c3c048</code></a> Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 (<a href="https://redirect.github.com/prometheus/common/issues/730">#730</a>)</li> <li><a href="https://github.com/prometheus/common/commit/ec7291f51d0897a24d460e5b9d3640f78b37bdeb"><code>ec7291f</code></a> Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /assets (<a href="https://redirect.github.com/prometheus/common/issues/729">#729</a>)</li> <li><a href="https://github.com/prometheus/common/commit/145b50adb4ece06ea09a5b0abcbedb76bd1b123a"><code>145b50a</code></a> fix(promslog): always use UTC for time (<a href="https://redirect.github.com/prometheus/common/issues/735">#735</a>)</li> <li><a href="https://github.com/prometheus/common/commit/39a62f7ded818701bb7c79d88119d6a1c9e72154"><code>39a62f7</code></a> fix: values escaping bugs (<a href="https://redirect.github.com/prometheus/common/issues/727">#727</a>)</li> <li><a href="https://github.com/prometheus/common/commit/7ed45232224c2722ad677589452579095a42e4fe"><code>7ed4523</code></a> Allow custom user-agent definition (<a href="https://redirect.github.com/prometheus/common/issues/725">#725</a>)</li> <li>Additional commits viewable in <a href="https://github.com/prometheus/common/compare/v0.60.1...v0.61.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> Co-authored-by: Zachary Becker <[email protected]>
…ometbft#4757) Bumps google.golang.org/protobuf from 1.35.2 to 1.36.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…bft#4856) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.69.2 to 1.69.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases">google.golang.org/grpc's releases</a>.</em></p> <blockquote> <h2>Release 1.69.4</h2> <h1>Bug Fixes</h1> <ul> <li>rbac: fix support for :path header matchers, which would previously never successfully match (<a href="https://redirect.github.com/grpc/grpc-go/issues/7965">#7965</a>).</li> </ul> <h1>Documentation</h1> <ul> <li>examples/features/csm_observability: update example client and server to use the helloworld service instead of echo service (<a href="https://redirect.github.com/grpc/grpc-go/issues/7945">#7945</a>).</li> </ul> <p>Release 1.69.3 was accidentally tagged on the master branch and will be deleted. Please update to 1.69.4 instead.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/grpc/grpc-go/commit/4103cfc52a951673d441f8b2c02eee96e31f1897"><code>4103cfc</code></a> Change version to 1.69.4 (<a href="https://redirect.github.com/grpc/grpc-go/issues/8005">#8005</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/cf6ddaa06db9da8bcdc23e682b72dcf831abfda8"><code>cf6ddaa</code></a> Change version to 1.69.4-dev (<a href="https://redirect.github.com/grpc/grpc-go/issues/8001">#8001</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/94a0c2cbfc5fa21cdc3f2a3eecad7f5ae5e23e99"><code>94a0c2c</code></a> Change version to 1.69.3 (<a href="https://redirect.github.com/grpc/grpc-go/issues/8000">#8000</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/ec415604a2f817c7c44fbadfa3f7983c9f6ab8d5"><code>ec41560</code></a> Cherry pick <a href="https://redirect.github.com/grpc/grpc-go/issues/7965">#7965</a> <a href="https://redirect.github.com/grpc/grpc-go/issues/7945">#7945</a> to v1.69.x (<a href="https://redirect.github.com/grpc/grpc-go/issues/7996">#7996</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/3b328ba4d21148e7d4526e938b0b2cde611b388f"><code>3b328ba</code></a> Change version to 1.69.3-dev (<a href="https://redirect.github.com/grpc/grpc-go/issues/7948">#7948</a>)</li> <li>See full diff in <a href="https://github.com/grpc/grpc-go/compare/v1.69.2...v1.69.4">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ometbft#4858) Bumps google.golang.org/protobuf from 1.36.1 to 1.36.3. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.33.0 to 0.34.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd"><code>8da7ed1</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d"><code>2124140</code></a> all: make function and struct comments match the names</li> <li><a href="https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72"><code>e9d95ba</code></a> http2: do not surface errors from a conn's idle timer expiring</li> <li><a href="https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f"><code>c2be992</code></a> quic: remember which remote connection IDs have been retired</li> <li>See full diff in <a href="https://github.com/golang/net/compare/v0.33.0...v0.34.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…ometbft#4861) Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.13.0 to 5.13.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/go-git/go-git/releases">github.com/go-git/go-git/v5's releases</a>.</em></p> <blockquote> <h2>v5.13.2</h2> <h2>What's Changed</h2> <ul> <li>plumbing: use the correct user agent string. Fixes <a href="https://redirect.github.com/go-git/go-git/issues/883">#883</a> by <a href="https://github.com/uragirii"><code>@uragirii</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1364">go-git/go-git#1364</a></li> <li>build: bump golang.org/x/sys from 0.28.0 to 0.29.0 in the golang-org group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1365">go-git/go-git#1365</a></li> <li>build: bump the golang-org group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1367">go-git/go-git#1367</a></li> <li>build: bump github.com/ProtonMail/go-crypto from 1.1.3 to 1.1.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1368">go-git/go-git#1368</a></li> <li>build: bump github.com/go-git/go-billy/v5 from 5.6.1 to 5.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1378">go-git/go-git#1378</a></li> <li>build: bump github/codeql-action from 3.28.0 to 3.28.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1376">go-git/go-git#1376</a></li> <li>build: bump github.com/elazarl/goproxy from 1.2.3 to 1.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1377">go-git/go-git#1377</a></li> <li>git: worktree, fix restoring dot slash files (backported to v5). Fixes <a href="https://redirect.github.com/go-git/go-git/issues/1176">#1176</a> by <a href="https://github.com/BeChris"><code>@BeChris</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1361">go-git/go-git#1361</a></li> <li>build: bump github.com/pjbgf/sha1cd from 0.3.0 to 0.3.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1392">go-git/go-git#1392</a></li> <li>git: worktree_status, fix adding dot slash files to working tree (backported to v5). Fixes <a href="https://redirect.github.com/go-git/go-git/issues/1150">#1150</a> by <a href="https://github.com/BeChris"><code>@BeChris</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1359">go-git/go-git#1359</a></li> <li>build: bump github.com/ProtonMail/go-crypto from 1.1.4 to 1.1.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1383">go-git/go-git#1383</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-git/go-git/compare/v5.13.1...v5.13.2">https://github.com/go-git/go-git/compare/v5.13.1...v5.13.2</a></p> <h2>v5.13.1</h2> <h2>What's Changed</h2> <ul> <li>build: bump github.com/go-git/go-billy/v5 from 5.6.0 to 5.6.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1327">go-git/go-git#1327</a></li> <li>build: bump github.com/elazarl/goproxy from 1.2.1 to 1.2.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1329">go-git/go-git#1329</a></li> <li>build: bump github.com/elazarl/goproxy from 1.2.2 to 1.2.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/go-git/go-git/pull/1340">go-git/go-git#1340</a></li> <li>Revert "plumbing: transport/ssh, Add support for SSH <a href="https://github.com/cert-authority"><code>@cert-authority</code></a>." by <a href="https://github.com/pjbgf"><code>@pjbgf</code></a> in <a href="https://redirect.github.com/go-git/go-git/issues/1346">#1346</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-git/go-git/compare/v5.13.0...v5.13.1">https://github.com/go-git/go-git/compare/v5.13.0...v5.13.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/go-git/go-git/commit/2c6824768b483ea030ba312972e508c23e62d75c"><code>2c68247</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1383">#1383</a> from go-git/dependabot/go_modules/github.com/ProtonM...</li> <li><a href="https://github.com/go-git/go-git/commit/d462c2e805717c5f084657eede3b8804b7d0566b"><code>d462c2e</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1359">#1359</a> from BeChris/issue1150-v5</li> <li><a href="https://github.com/go-git/go-git/commit/32ac23a70733b230478a7431f0210d5615e1c5b5"><code>32ac23a</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1392">#1392</a> from go-git/dependabot/go_modules/github.com/pjbgf/s...</li> <li><a href="https://github.com/go-git/go-git/commit/93e635a0f5255658775091b975512c7774b60767"><code>93e635a</code></a> build: bump github.com/pjbgf/sha1cd from 0.3.0 to 0.3.2</li> <li><a href="https://github.com/go-git/go-git/commit/b2bb975dca41917cc2efe5c40f7be0cdf9eeb0e9"><code>b2bb975</code></a> git: worktree_status, took into account code review remarks</li> <li><a href="https://github.com/go-git/go-git/commit/518ac8860920e2b52c039828f821321b53cb7f64"><code>518ac88</code></a> git: worktree_status, fix adding dot slash files to working tree (backported ...</li> <li><a href="https://github.com/go-git/go-git/commit/21b3150921b0ce9786fb38a81cd9a8dbad0207b2"><code>21b3150</code></a> build: bump github.com/ProtonMail/go-crypto from 1.1.4 to 1.1.5</li> <li><a href="https://github.com/go-git/go-git/commit/189e7e463f747abdd8e31ef2abcbd72ad1b90621"><code>189e7e4</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1361">#1361</a> from BeChris/issue1176-v5</li> <li><a href="https://github.com/go-git/go-git/commit/654815aad1bd5bc35d9f5eb3d7a201af0c4457f5"><code>654815a</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1377">#1377</a> from go-git/dependabot/go_modules/github.com/elazarl...</li> <li><a href="https://github.com/go-git/go-git/commit/91dbdb92df7594bc8e42e355e82bf2c63be31a22"><code>91dbdb9</code></a> Merge pull request <a href="https://redirect.github.com/go-git/go-git/issues/1376">#1376</a> from go-git/dependabot/github_actions/github/codeql-...</li> <li>Additional commits viewable in <a href="https://github.com/go-git/go-git/compare/v5.13.0...v5.13.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…ometbft#4865) Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.61.0 to 0.62.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/common/releases">github.com/prometheus/common's releases</a>.</em></p> <blockquote> <h2>v0.62.0</h2> <p>⚠️ This releases switches internal global to <code>UTF8Validation</code> from <code>LegacyValidation</code>. This is a breaking change, relaxing the validation. We don't intend to add more schemas and we have to have a global for unmarshalling interfaces, thus the change was made⚠️ </p> <h2>What's Changed</h2> <ul> <li>Change default validation scheme to UTF8Validation by <a href="https://github.com/ywwg"><code>@ywwg</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/724">prometheus/common#724</a></li> <li>Remove deprecated promlog package by <a href="https://github.com/SuperQ"><code>@SuperQ</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/738">prometheus/common#738</a></li> <li>Remove deprecated sigv4 module by <a href="https://github.com/SuperQ"><code>@SuperQ</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/737">prometheus/common#737</a></li> <li>update links to openmetrics to reference the v1.0.0 release by <a href="https://github.com/dashpole"><code>@dashpole</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/740">prometheus/common#740</a></li> <li>Synchronize common files from prometheus/prometheus by <a href="https://github.com/prombot"><code>@prombot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/742">prometheus/common#742</a></li> <li>Bump google.golang.org/protobuf from 1.35.2 to 1.36.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/744">prometheus/common#744</a></li> <li>Bump golang.org/x/net from 0.32.0 to 0.33.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/743">prometheus/common#743</a></li> <li>Synchronize common files from prometheus/prometheus by <a href="https://github.com/prombot"><code>@prombot</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/747">prometheus/common#747</a></li> <li>http_config: Allow customizing TLS config and settings. by <a href="https://github.com/bwplotka"><code>@bwplotka</code></a> in <a href="https://redirect.github.com/prometheus/common/pull/748">prometheus/common#748</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/dashpole"><code>@dashpole</code></a> made their first contribution in <a href="https://redirect.github.com/prometheus/common/pull/740">prometheus/common#740</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/prometheus/common/compare/v0.61.0...v0.62.0">https://github.com/prometheus/common/compare/v0.61.0...v0.62.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/common/commit/280b0e7d5bdf09ddfd2d93c226671cb2ebdb7d5f"><code>280b0e7</code></a> http_config: Allow customizing TLS config and settings. (<a href="https://redirect.github.com/prometheus/common/issues/748">#748</a>)</li> <li><a href="https://github.com/prometheus/common/commit/aea8919bdc8b0b593086473f99c50ca6d5796c0c"><code>aea8919</code></a> Update common Prometheus files (<a href="https://redirect.github.com/prometheus/common/issues/747">#747</a>)</li> <li><a href="https://github.com/prometheus/common/commit/8d916fab5bd4b281fe2797100a6cabe2515d3d59"><code>8d916fa</code></a> Bump golang.org/x/net from 0.32.0 to 0.33.0 (<a href="https://redirect.github.com/prometheus/common/issues/743">#743</a>)</li> <li><a href="https://github.com/prometheus/common/commit/fe88605b113417b6baba52ec2850187ac127cc1c"><code>fe88605</code></a> Bump google.golang.org/protobuf from 1.35.2 to 1.36.1 (<a href="https://redirect.github.com/prometheus/common/issues/744">#744</a>)</li> <li><a href="https://github.com/prometheus/common/commit/5d9961df0b3ac7927a16495c3bf40f2de421725c"><code>5d9961d</code></a> Update common Prometheus files (<a href="https://redirect.github.com/prometheus/common/issues/742">#742</a>)</li> <li><a href="https://github.com/prometheus/common/commit/0a89b987581831cf1f9061b3197b8d86f7c7b21c"><code>0a89b98</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/common/issues/740">#740</a> from dashpole/update_om_links</li> <li><a href="https://github.com/prometheus/common/commit/e3926e2a56435b2213296803d4e6c6f66fc3c423"><code>e3926e2</code></a> update links to openmetrics to reference the v1.0.0 release</li> <li><a href="https://github.com/prometheus/common/commit/d88ee1f244f31e9376f4aa8ad865bd5c7dd4a814"><code>d88ee1f</code></a> Remove deprecated sigv4 module (<a href="https://redirect.github.com/prometheus/common/issues/737">#737</a>)</li> <li><a href="https://github.com/prometheus/common/commit/c3fdb171ceca4b3f86385f2f436c7e8cac676548"><code>c3fdb17</code></a> Remove deprecated promlog package (<a href="https://redirect.github.com/prometheus/common/issues/738">#738</a>)</li> <li><a href="https://github.com/prometheus/common/commit/cf5f48f181f5270eeac48e077e974ba0e00f5c58"><code>cf5f48f</code></a> Change default validation scheme to UTF8Validation (<a href="https://redirect.github.com/prometheus/common/issues/724">#724</a>)</li> <li>See full diff in <a href="https://github.com/prometheus/common/compare/v0.61.0...v0.62.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…etbft#4882) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.12.0 to 6.13.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p> <blockquote> <h2>v6.13.0</h2> <ul> <li>Bump <code>@docker/actions-toolkit</code> from 0.51.0 to 0.53.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1308">docker/build-push-action#1308</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v6.12.0...v6.13.0">https://github.com/docker/build-push-action/compare/v6.12.0...v6.13.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/build-push-action/commit/ca877d9245402d1537745e0e356eab47c3520991"><code>ca877d9</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1308">#1308</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="https://github.com/docker/build-push-action/commit/d2fe919bb5012a6186426dc91c361c4980d10c2d"><code>d2fe919</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/f0fc9ece82cf2ace13ec8f35687697ae511bdf74"><code>f0fc9ec</code></a> chore(deps): Bump <code>@docker/actions-toolkit</code> from 0.51.0 to 0.53.0</li> <li>See full diff in <a href="https://github.com/docker/build-push-action/compare/v6.12.0...v6.13.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ometbft#4900) Bumps google.golang.org/protobuf from 1.36.3 to 1.36.4. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
lower than what was previously reported GHSA-22qq-3xwm-r5x4
…bft#4901) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.69.4 to 1.70.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases">google.golang.org/grpc's releases</a>.</em></p> <blockquote> <h2>Release 1.70.0</h2> <h1>Behavior Changes</h1> <ul> <li>client: reject service configs containing an invalid retryPolicy in accordance with gRFCs <a href="https://github.com/grpc/proposal/blob/master/A21-service-config-error-handling.md">A21</a> and <a href="https://github.com/grpc/proposal/blob/master/A6-client-retries.md">A6</a>. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7905">#7905</a>) <ul> <li>Note that this is a potential breaking change for some users using an invalid configuration, but continuing to allow this behavior would violate our cross-language compatibility requirements.</li> </ul> </li> </ul> <h1>New Features</h1> <ul> <li>xdsclient: fallback to a secondary management server (if specified in the bootstrap configuration) when the primary is down is enabled by default. Can be disabled by setting the environment variable <code>GRPC_EXPERIMENTAL_XDS_FALLBACK</code> to <code>false</code>. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7949">#7949</a>)</li> <li>experimental/credentials: experimental transport credentials are added which don't enforce ALPN. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7980">#7980</a>) <ul> <li>These credentials will be removed in an upcoming grpc-go release. Users must not rely on these credentials directly. Instead, they should either vendor a specific version of gRPC or copy the relevant credentials into their own codebase if absolutely necessary.</li> </ul> </li> </ul> <h1>Bug Fixes</h1> <ul> <li>xds: fix a possible deadlock that happens when both the client application and the xDS management server (responsible for configuring the client) are using the xds:/// scheme in their target URIs. (<a href="https://redirect.github.com/grpc/grpc-go/issues/8011">#8011</a>)</li> </ul> <h1>Performance</h1> <ul> <li>server: for unary requests, free raw request message data as soon as parsing is finished instead of waiting until the method handler returns. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7998">#7998</a>) <ul> <li>Special Thanks: <a href="https://github.com/lqs"><code>@lqs</code></a></li> </ul> </li> </ul> <h1>Documentation</h1> <ul> <li>examples/features/gracefulstop: add example to demonstrate server graceful stop. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7865">#7865</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/grpc/grpc-go/commit/98a0092952dd4d8443229c3a335ec592d9c40c9b"><code>98a0092</code></a> Change version to 1.70.0 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7984">#7984</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/bf380dec5e059ea6e7d07cec015dd0c913831a6a"><code>bf380de</code></a> Cherrypick <a href="https://redirect.github.com/grpc/grpc-go/issues/7998">#7998</a>, <a href="https://redirect.github.com/grpc/grpc-go/issues/8011">#8011</a>, <a href="https://redirect.github.com/grpc/grpc-go/issues/8010">#8010</a> into 1.70.x (<a href="https://redirect.github.com/grpc/grpc-go/issues/8028">#8028</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/54b3eb97dbf7400efb5750f26084c2d3b2eff120"><code>54b3eb9</code></a> experimental/credentials: Add credentials that don't enforce ALPN (<a href="https://redirect.github.com/grpc/grpc-go/issues/7980">#7980</a>) (<a href="https://redirect.github.com/grpc/grpc-go/issues/8">#8</a>...</li> <li><a href="https://github.com/grpc/grpc-go/commit/62b9185a6296155e47efd39d60298d8de0a6ed1d"><code>62b9185</code></a> clustetresolver: Copy endpoints.Addresses slice from DNS updates to avoid dat...</li> <li><a href="https://github.com/grpc/grpc-go/commit/724f450f77a09bade8174e5052625977069aaf81"><code>724f450</code></a> examples/features/csm_observability: use helloworld client and server instead...</li> <li><a href="https://github.com/grpc/grpc-go/commit/e8d5feb181766059429259ce3345ddb1f667ded5"><code>e8d5feb</code></a> rbac: add method name to :path in headers (<a href="https://redirect.github.com/grpc/grpc-go/issues/7965">#7965</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/e912015fd3f4aabdff6d6cf835e321c19a204afb"><code>e912015</code></a> cleanup: Fix usages of non-constant format strings (<a href="https://redirect.github.com/grpc/grpc-go/issues/7959">#7959</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/681334a46115da3a5f9086c47e3d501a19362256"><code>681334a</code></a> cleanup: replace dial with newclient (<a href="https://redirect.github.com/grpc/grpc-go/issues/7943">#7943</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/063d352de07403a582ef33f8f5f8149e3b57c47e"><code>063d352</code></a> internal/resolver: introduce a new resolver to handle target URI and proxy ad...</li> <li><a href="https://github.com/grpc/grpc-go/commit/10c7e13311f48bf5237738f4f19b53f62b1146cd"><code>10c7e13</code></a> outlierdetection: Support health listener for ejection updates (<a href="https://redirect.github.com/grpc/grpc-go/issues/7908">#7908</a>)</li> <li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.69.4...v1.70.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Do not merge!! This is for testing and review purposes only
PR checklist
.changelog(we use unclog to manage our changelog)docs/orspec/) and code comments