Skip to content

Doc-only: true Bump the go-modules group in /src/control with 8 updates#17974

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/src/control/master/go-modules-4f636a1fa7
Open

Doc-only: true Bump the go-modules group in /src/control with 8 updates#17974
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/src/control/master/go-modules-4f636a1fa7

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 10, 2026

Bumps the go-modules group in /src/control with 8 updates:

Package From To
github.com/desertbit/grumble 1.2.0 1.3.1
github.com/hashicorp/go-hclog 1.6.2 1.6.3
github.com/hashicorp/raft 1.7.0 1.7.3
github.com/prometheus/common 0.66.1 0.67.5
golang.org/x/net 0.48.0 0.53.0
golang.org/x/sys 0.39.0 0.43.0
google.golang.org/grpc 1.79.3 1.80.0
google.golang.org/protobuf 1.36.10 1.36.11

Updates github.com/desertbit/grumble from 1.2.0 to 1.3.1

Commits
  • 395f8e6 fix: boolean flags no longer consume the next positional argument
  • bbecfe6 Closer v4, DevContainer, Tests (#71)
  • 0876615 add string list implementation by chroblert + refactor by skaldesh (#43)
  • f218f9a refactored strconv code into separate file; use base 0 now with strconv funcs...
  • 39f44c2 refactor flags & add missing flag base types (#44)
  • See full diff in compare view

Updates github.com/hashicorp/go-hclog from 1.6.2 to 1.6.3

Release notes

Sourced from github.com/hashicorp/go-hclog's releases.

Optional JSON escaping

What's Changed

New Contributors

Full Changelog: hashicorp/go-hclog@v1.6.2...v1.6.3

Commits
  • d12136a Merge pull request #141 from Ericwww/support-json-escape
  • cb8687c support configure json escape when log in json format
  • 5dbb615 Merge pull request #138 from hashicorp/update-go1.22
  • 1f0704a hclogvet: updates for go1.22
  • See full diff in compare view

Updates github.com/hashicorp/raft from 1.7.0 to 1.7.3

Release notes

Sourced from github.com/hashicorp/raft's releases.

v1.7.3

What's Changed

New Contributors

Full Changelog: hashicorp/raft@v1.7.2...v1.7.3

v1.7.2

What's Changed

Full Changelog: hashicorp/raft@v1.7.1...v1.7.2

v1.7.1

This patch release fixes two potential issues with Pre-Vote which was added in 1.7.0. One of these has been observed in a single deployed instance but we've been unable to replicate the exact conditions so impact is difficult to assess. Out of an abundance of caution we strongly recommend all 1.7.0 users upgrade to 1.7.1 to avoid this issue occurring.

  1. #605 Fixes the observed issue where a node looses leadership but is unable to get pre-votes accepted due to followers thinking it's still the leader. This was an implementation bug.
  2. #609 fixes a theoretical issue (not come up with an actual reproduction yet) where a very specific sequence of pre-votes could artificially prevent cluster followers from holding elections even though there is no active leader succeeding to get a quorum of pre-vote responses.
Changelog

Sourced from github.com/hashicorp/raft's changelog.

UNRELEASED

IMPROVEMENETS

  • Added a flag to skip legacy duplicate telemetry. GH-630
Commits
  • c0dc6a0 Add logging on active node when sending a snapshot to a follower (#636)
  • 8f99c15 Add linter rules to ensure we don't accidentally emit metrics directly instea...
  • 7650cd0 Introduce hashicorp/go-metrics compatibility (#631)
  • a5bc06c chore: Add flag to skip legacy duplicate telemetry (#630)
  • 7e8e836 Merge pull request #629 from mukeshjc/main
  • 8368671 Merge branch 'main' into main
  • 017ad34 Remove deprecated releng github team
  • ede1f8d Merge pull request #595 from alexandear/docs-comments-fix-grammar
  • fb360eb Update CODEOWNERS file in .github/CODEOWNERS
  • 4b60222 Update CODEOWNERS file in .github/CODEOWNERS
  • Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.66.1 to 0.67.5

Release notes

Sourced from github.com/prometheus/common's releases.

v0.67.5

What's Changed

Full Changelog: prometheus/common@v0.67.4...v0.67.5

v0.67.4 / 2025-11-18

What's Changed

Full Changelog: prometheus/common@v0.67.3...v0.67.4

v0.67.3 / 2025-11-18

What's Changed

New Contributors

Full Changelog: prometheus/common@v0.67.2...v0.67.3

v0.67.2 / 2025-10-28

What's Changed

New Contributors

Full Changelog: prometheus/common@v0.67.1...v0.67.2

v0.67.1

What's Changed

Full Changelog: prometheus/common@v0.67.0...v0.67.1

v0.67.0 / 2025-10-07

What's Changed

... (truncated)

Changelog

Sourced from github.com/prometheus/common's changelog.

Changelog

main / unreleased

What's Changed

v0.67.2 / 2025-10-28

What's Changed

New Contributors

Full Changelog: prometheus/common@v0.67.1...v0.67.2

v0.67.1 / 2025-10-07

What's Changed

Full Changelog: prometheus/common@v0.67.0...v0.67.1

v0.67.0 / 2025-10-07

What's Changed

New Contributors

Full Changelog: prometheus/common@v0.66.1...v0.67.0

Commits
  • 934ff37 build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 (#870)
  • 1e29804 build(deps): bump golang.org/x/net from 0.46.0 to 0.48.0 (#872)
  • 0bd1c40 Synchronize common files from prometheus/prometheus (#866)
  • b644201 build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.34.0 (#871)
  • d80d854 chore: Add omitempty tag to all config fields (#865)
  • 04686b2 chore: 'omitempty' to Oauth2 fields with type Secret to avoid requiring them ...
  • 0b2fbf3 chore: clean up golangci-lint configuration (#782)
  • b2cdb07 Merge pull request #863 from prometheus/remove-http2-comment
  • cd1ab56 Config: remove outdated comment about HTTP/2 issues
  • f4c0aea Support JWT Profile for Authorization Grant (RFC 7523 3.1) (#862)
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.48.0 to 0.53.0

Commits
  • a8d1fc1 go.mod: update golang.org/x dependencies
  • 056ac74 quic: avoid depending on golang.org/x/sys/unix
  • c85f611 http3: add http3 package for testing in std
  • 805fc81 http2: add transport API tests
  • e63b894 http2: support testing via net/http.Transport.RoundTrip
  • 9ee1e48 http2/hpack: prevent HeaderField from escaping during encoding
  • 1e71bd8 http2: prevent hanging Transport due to bad SETTINGS frame
  • 7bca150 internal/http3: respect net/http Server Shutdown context when shutting down
  • 44c41be internal/http3: prevent server from holding mutex when sleeping during shutdown
  • 228a67a internal/http3: add CloseIdleConnections support in transport
  • Additional commits viewable in compare view

Updates golang.org/x/sys from 0.39.0 to 0.43.0

Commits
  • f33a730 windows: support nil security descriptor on GetNamedSecurityInfo
  • 493d172 cpu: add runtime import in cpu_darwin_arm64_other.go
  • 2c2be75 windows: use syscall.SyscallN in Proc.Call
  • a76ec62 cpu: roll back "use IsProcessorFeaturePresent to calculate ARM64 on windows"
  • eaaaaee windows/registry: correct KeyInfo.ModTime calculation
  • 942780b cpu: darwin/arm64 feature detection
  • acef388 unix/linux: Prefixmsg and PrefixCacheinfo structs
  • 3687fbd cpu: better defaults on darwin ARM64
  • 48062e9 plan9: change Note to alias syscall.Note
  • 4f23f80 windows: change Signal to alias syscall.Signal
  • Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.79.3 to 1.80.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.80.0

Behavior Changes

  • balancer: log a warning if a balancer is registered with uppercase letters, as balancer names should be lowercase. In a future release, balancer names will be treated as case-insensitive; see #5288 for details. (#8837)
  • xds: update resource error handling and re-resolution logic (#8907)
    • Re-resolve all LOGICAL_DNS clusters simultaneously when re-resolution is requested.
    • Fail all in-flight RPCs immediately upon receipt of listener or route resource errors, instead of allowing them to complete.

Bug Fixes

  • xds: support the LB policy configured in LOGICAL_DNS cluster resources instead of defaulting to pick_first. (#8733)
  • credentials/tls: perform per-RPC authority validation against the leaf certificate instead of the entire peer certificate chain. (#8831)
  • xds: enabling A76 ring hash endpoint keys no longer causes EDS resources with invalid proxy metadata to be NACKed when HTTP CONNECT (gRFC A86) is disabled. (#8875)
  • xds: validate that the sum of endpoint weights in a locality does not exceed the maximum uint32 value. (#8899)
  • xds: fix incorrect proto field access in the weighted round robin (WRR) configuration where blackout_period was used instead of weight_expiration_period. (#8915)
  • xds/rbac: handle addresses with ports in IP matchers. (#8990)

New Features

  • ringhash: enable gRFC A76 (endpoint hash keys and request hash headers) by default. (#8922)

Performance Improvements

  • credentials/alts: pool write buffers to reduce memory allocations and usage. (#8919)
  • grpc: enable the use of pooled write buffers for buffering HTTP/2 frame writes by default. This reduces memory usage when connections are idle. Use the WithSharedWriteBuffer dial option or the SharedWriteBuffer server option to disable this feature. (#8957)
  • xds/priority: stop caching child LB policies removed from the configuration. This will help reduce memory and cpu usage when localities are constantly switching between priorities. (#8997)
  • mem: add a faster tiered buffer pool; use the experimental mem.NewBinaryTieredBufferPool function to create such pools. (#8775)
Commits

Updates google.golang.org/protobuf from 1.36.10 to 1.36.11

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Doc-only: true
2be86aa 
 Bump the go-modules group

Bumps the go-modules group in /src/control with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/desertbit/grumble](https://github.com/desertbit/grumble) | `1.2.0` | `1.3.1` |
| [github.com/hashicorp/go-hclog](https://github.com/hashicorp/go-hclog) | `1.6.2` | `1.6.3` |
| [github.com/hashicorp/raft](https://github.com/hashicorp/raft) | `1.7.0` | `1.7.3` |
| [github.com/prometheus/common](https://github.com/prometheus/common) | `0.66.1` | `0.67.5` |
| [golang.org/x/net](https://github.com/golang/net) | `0.48.0` | `0.53.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.39.0` | `0.43.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.79.3` | `1.80.0` |
| google.golang.org/protobuf | `1.36.10` | `1.36.11` |


Updates `github.com/desertbit/grumble` from 1.2.0 to 1.3.1
- [Commits](desertbit/grumble@v1.2.0...v1.3.1)

Updates `github.com/hashicorp/go-hclog` from 1.6.2 to 1.6.3
- [Release notes](https://github.com/hashicorp/go-hclog/releases)
- [Commits](hashicorp/go-hclog@v1.6.2...v1.6.3)

Updates `github.com/hashicorp/raft` from 1.7.0 to 1.7.3
- [Release notes](https://github.com/hashicorp/raft/releases)
- [Changelog](https://github.com/hashicorp/raft/blob/main/CHANGELOG.md)
- [Commits](hashicorp/raft@v1.7.0...v1.7.3)

Updates `github.com/prometheus/common` from 0.66.1 to 0.67.5
- [Release notes](https://github.com/prometheus/common/releases)
- [Changelog](https://github.com/prometheus/common/blob/main/CHANGELOG.md)
- [Commits](prometheus/common@v0.66.1...v0.67.5)

Updates `golang.org/x/net` from 0.48.0 to 0.53.0
- [Commits](golang/net@v0.48.0...v0.53.0)

Updates `golang.org/x/sys` from 0.39.0 to 0.43.0
- [Commits](golang/sys@v0.39.0...v0.43.0)

Updates `google.golang.org/grpc` from 1.79.3 to 1.80.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.79.3...v1.80.0)

Updates `google.golang.org/protobuf` from 1.36.10 to 1.36.11

---
updated-dependencies:
- dependency-name: github.com/desertbit/grumble
  dependency-version: 1.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/hashicorp/go-hclog
  dependency-version: 1.6.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/hashicorp/raft
  dependency-version: 1.7.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/prometheus/common
  dependency-version: 0.67.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/net
  dependency-version: 0.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/sys
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: google.golang.org/grpc
  dependency-version: 1.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: google.golang.org/protobuf
  dependency-version: 1.36.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-modules
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 10, 2026
@dependabot dependabot bot requested review from a team as code owners April 10, 2026 16:08
@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 10, 2026

Errors are component not formatted correctly,Ticket number prefix incorrect,Ticket number suffix is not a number. See https://daosio.atlassian.net/wiki/spaces/DC/pages/11133911069/Commit+Comments,Unable to load ticket data
https://daosio.atlassian.net/browse/Doc-only:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants