Skip to content

Bump the all group across 1 directory with 5 updates#57

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/go_modules/all-efb3066d9e
Open

Bump the all group across 1 directory with 5 updates#57
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/go_modules/all-efb3066d9e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 12, 2026

Copy link
Copy Markdown

Bumps the all group with 5 updates in the / directory:

Package From To
github.com/RoaringBitmap/roaring 1.9.1 1.9.4
github.com/streamingfast/dstore 0.2.2 0.2.3
github.com/streamingfast/logging 0.0.0-20260108192805-38f96de0a641 1.2.2
go.uber.org/zap 1.27.1 1.28.0
google.golang.org/grpc 1.80.0 1.81.1

Updates github.com/RoaringBitmap/roaring from 1.9.1 to 1.9.4

Release notes

Sourced from github.com/RoaringBitmap/roaring's releases.

Version 1.9.4

Updated documented regarding BSI. Users are encouraged to specify the full range, otherwise the query results could be incorrect.

Issue: RoaringBitmap/roaring#426

Full Changelog: RoaringBitmap/roaring@v1.9.3...v1.9.4

Version 1.9.3

What's Changed

Full Changelog: RoaringBitmap/roaring@v1.9.2...v1.9.3

Version 1.9.2

What's Changed

Full Changelog: RoaringBitmap/roaring@v1.9.1...v1.9.2

Commits

Updates github.com/streamingfast/dstore from 0.2.2 to 0.2.3

Release notes

Sourced from github.com/streamingfast/dstore's releases.

v0.2.3

Fixed

  • GCS store: disable gRPC DirectPath when both a project is set and client_protocol=grpc is used, preventing connection issues in that configuration.
  • S3 store: share a single HTTP transport across all store clones for proper HTTP/2 multiplexing, replacing the previous per-clone transport that broke connection sharing.
Changelog

Sourced from github.com/streamingfast/dstore's changelog.

v0.2.3

Fixed

  • GCS store: disable gRPC DirectPath when both a project is set and client_protocol=grpc is used, preventing connection issues in that configuration.
  • S3 store: share a single HTTP transport across all store clones for proper HTTP/2 multiplexing, replacing the previous per-clone transport that broke connection sharing.
Commits
  • d3be6ce Preparing for release 0.2.3
  • fd1b1b7 disable directPath when both project is set and client_protocol=grpc
  • 08a4988 Merge pull request #24 from aggris2/fix/shared-s3-transport
  • bd71e00 Share HTTP transport across S3 store clones for proper HTTP/2 multiplexing
  • See full diff in compare view

Updates github.com/streamingfast/logging from 0.0.0-20260108192805-38f96de0a641 to 1.2.2

Release notes

Sourced from github.com/streamingfast/logging's releases.

v1.2.2

Added

  • Registry.GetTracerByPackageID(packageID string) (*bool, bool) exposes the raw trace-enabled pointer for a registered logger, allowing external bridges (e.g. a v2 compatibility layer) to mirror trace state into v1 tracers.
  • logging.LoggerFromContext(ctx, fallback) as the canonical replacement for logging.Logger(ctx, fallback).

Deprecated

  • logging.Logger(ctx, fallback) — use logging.LoggerFromContext instead, or the one-liner level helpers logging.Info, logging.Debug, etc.

v1.2.1

Added

  • zapx.TruncatedStringer, an lazy version of zapx.TruncatedString.

v1.2.0

Added

  • GlobalRegistry() Registry exposes the global registry, allowing a future v2 module to discover and re-instantiate all loggers registered via v1 PackageLogger.
  • Registry.All(fn func(packageID, shortName string)) iterates over all registered loggers in a registry, enabling cross-module migration scenarios.
  • Loggers registered via PackageLogger after InstantiateLoggers has already been called are now immediately instantiated and have the same level rules (default level, pre-spec, env spec) applied to them.

Fixed

  • SetLevelFor now re-applies the current environment variable overrides (DLOG, DEBUG, TRACE, …) after setting the level, so the provided level acts as a baseline that env vars can override. This fixes the common pattern of calling SetLevelFor(".*", zap.WarnLevel, false) in a Cobra PreRun hook while still allowing DLOG/DEBUG/TRACE to take effect.

Changed

  • The default text encoder use to encode log entries now emits the level when coloring is disabled.
  • Deprecated logging.IsTraceEnabled, define your logger and Tracer directly with var zlog, tracer = logging.PackageLogger(<shortName>, "...") instead of separately, tracer.Enabled() can then be used to determine if tracing should be enabled (can be enable dynamically).
  • Deprecated logging.TestingOverride, use logging.InstantiateLoggers directly.
  • Deprecated logging.Overidde, use logging.InstantiateLoggers directly and use the logging.WithDefaultSpec to configure the various loggers.` instead.
  • Deprecated logging.Register, use var zlog, _ = logging.PackageLogger(<shortName>, "...") instead.
  • Deprecated logging.RegisterOnUpdate, use logging.LoggerOnUpdate instead (will probably be removed actually entirely since it's not needed anymore).
  • Deprecated logging.WithServiceName, no replacement yet (will be logging.LoggerServiceName in a future release, if unspecified shortName will be used).
  • Deprecated logging.RootLogger, use logging.PackageLogger and control levels via logging.WithDefaultSpec(...) in InstantiateLoggers instead (e.g. WithDefaultSpec("logger1=info,logger2=debug,.*=warn")). The root logger concept tried to be smart about defaulting to info which caused API confusion.

Removed

  • BREAKING CHANGE Removed logging.Handler, it has been moved to dtracing package to limit transitive depdendencies on this project, you should use dtracing.NewAddTraceIDAwareLoggerMiddleware instead.
Changelog

Sourced from github.com/streamingfast/logging's changelog.

v1.2.2

Added

  • Registry.GetTracerByPackageID(packageID string) (*bool, bool) exposes the raw trace-enabled pointer for a registered logger, allowing external bridges (e.g. a v2 compatibility layer) to mirror trace state into v1 tracers.
  • logging.LoggerFromContext(ctx, fallback) as the canonical replacement for logging.Logger(ctx, fallback).

Deprecated

  • logging.Logger(ctx, fallback) — use logging.LoggerFromContext instead, or the one-liner level helpers logging.Info, logging.Debug, etc.

v1.2.1

Added

  • zapx.TruncatedStringer, an lazy version of zapx.TruncatedString.

v1.2.0

Added

  • GlobalRegistry() Registry exposes the global registry, allowing a future v2 module to discover and re-instantiate all loggers registered via v1 PackageLogger.
  • Registry.All(fn func(packageID, shortName string)) iterates over all registered loggers in a registry, enabling cross-module migration scenarios.
  • Loggers registered via PackageLogger after InstantiateLoggers has already been called are now immediately instantiated and have the same level rules (default level, pre-spec, env spec) applied to them.

Fixed

  • SetLevelFor now re-applies the current environment variable overrides (DLOG, DEBUG, TRACE, …) after setting the level, so the provided level acts as a baseline that env vars can override. This fixes the common pattern of calling SetLevelFor(".*", zap.WarnLevel, false) in a Cobra PreRun hook while still allowing DLOG/DEBUG/TRACE to take effect.

Changed

  • The default text encoder use to encode log entries now emits the level when coloring is disabled.
  • Deprecated logging.IsTraceEnabled, define your logger and Tracer directly with var zlog, tracer = logging.PackageLogger(<shortName>, "...") instead of separately, tracer.Enabled() can then be used to determine if tracing should be enabled (can be enable dynamically).
  • Deprecated logging.TestingOverride, use logging.InstantiateLoggers directly.
  • Deprecated logging.Overidde, use logging.InstantiateLoggers directly and use the logging.WithDefaultSpec to configure the various loggers.` instead.
  • Deprecated logging.Register, use var zlog, _ = logging.PackageLogger(<shortName>, "...") instead.
  • Deprecated logging.RegisterOnUpdate, use logging.LoggerOnUpdate instead (will probably be removed actually entirely since it's not needed anymore).
  • Deprecated logging.WithServiceName, no replacement yet (will be logging.LoggerServiceName in a future release, if unspecified shortName will be used).
  • Deprecated logging.RootLogger, use logging.PackageLogger and control levels via logging.WithDefaultSpec(...) in InstantiateLoggers instead (e.g. WithDefaultSpec("logger1=info,logger2=debug,.*=warn")). The root logger concept tried to be smart about defaulting to info which caused API confusion.

Removed

  • BREAKING CHANGE Removed logging.Handler, it has been moved to dtracing package to limit transitive depdendencies on this project, you should use dtracing.NewAddTraceIDAwareLoggerMiddleware instead.

2020-03-21

Changed

  • License changed to Apache 2.0
Commits

Updates go.uber.org/zap from 1.27.1 to 1.28.0

Release notes

Sourced from go.uber.org/zap's releases.

v1.28.0

Enhancements:

  • #1534[]: Add zapcore.CheckPreWriteHook and CheckedEntry.Before method for transforming entries before they are written to any Cores.

#1534: uber-go/zap#1534

Changelog

Sourced from go.uber.org/zap's changelog.

1.28.0 (27 Apr 2026)

Enhancements:

  • #1534[]: Add zapcore.CheckPreWriteHook and CheckedEntry.Before method for transforming entries before they are written to any Cores.
Commits
  • 5b81b37 release v1.28.0 (#1547)
  • 0ab0d5a zapcore: Add PreWriteHook for transforming entries before write (#1534)
  • d278c59 [chore] CI: test on Go 1.26 (#1535)
  • 16fb16b chore(dep): replace archived gopkg.in/yaml.v3 with officially maintained go.y...
  • See full diff in compare view

Updates google.golang.org/grpc from 1.80.0 to 1.81.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.81.1

Security

  • xds/rbac: Fix a potential authorization bypass caused by incorrectly falling through URI/DNS SANs to Subject Distinguished Name (DN) when matching the authenticated principal name. With this fix, only the first non-empty identity source will be used, as per gRFC A41. (#9111)

Bug Fixes

  • otel: Segregate client and server RPC information used for metrics and traces, to avoid one overwriting the other. (#9081)

Release 1.81.0

Behavior Changes

  • balancer/rls: Switch gauge metrics to asynchronous emission (once per collection cycle) to reduce telemetry noise and align with other gRPC language implementations. (#8808)

Dependencies

  • Minimum supported Go version is now 1.25. (#8969)

Bug Fixes

  • xds: Use the leaf cluster's security config for the TLS handshake instead of the aggregate cluster's config. (#8956)
  • transport: Send a RST_STREAM when receiving an END_STREAM when the stream is not already half-closed. (#8832)
  • xds: Fix ADS resource name validation to prevent a panic. (#8970)

New Features

  • grpc/stats: Add support for custom labels in per-call metrics (gRFC A108). (#9008)
  • xds: Add support for Server Name Indication (SNI) and SAN validation (gRFC A101). Disabled by default. To enable, set GRPC_EXPERIMENTAL_XDS_SNI=true environment variable. (#9016)
  • xds: Add support to control which fields get propagated from ORCA backend metric reports to LRS load reports (gRFC A85). Disabled by default. To enable, set GRPC_EXPERIMENTAL_XDS_ORCA_LRS_PROPAGATION=true. (#9005)
  • xds: Add metrics to track xDS client connectivity and cached resource state (gRFC A78). (#8807)
  • stats/otel: Enhance grpc.subchannel.disconnections metric by adding disconnection reason to the grpc.disconnect_error label (gRFC A94). This provides granular insights into why subchannels are closing. (#8973)
  • mem: Add mem.Buffer.Slice() API to slice the buffer like a slice. (#8977)

Performance Improvements

  • alts: Pool read buffers to lower memory utilization when sockets are unreadable. (#8964)
  • transport: Pool HTTP/2 framer read buffers to reduce idle memory consumption. Currently limited to Linux for ALTS and non-encrypted transports (TCP, Unix). To disable, set GRPC_GO_EXPERIMENTAL_HTTP_FRAMER_READ_BUFFER_POOLING=false and report any issues. (#9032)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the all group across 1 directory with 5 updates
13db668 
Bumps the all group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/RoaringBitmap/roaring](https://github.com/RoaringBitmap/roaring) | `1.9.1` | `1.9.4` |
| [github.com/streamingfast/dstore](https://github.com/streamingfast/dstore) | `0.2.2` | `0.2.3` |
| [github.com/streamingfast/logging](https://github.com/streamingfast/logging) | `0.0.0-20260108192805-38f96de0a641` | `1.2.2` |
| [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.1` | `1.28.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.80.0` | `1.81.1` |



Updates `github.com/RoaringBitmap/roaring` from 1.9.1 to 1.9.4
- [Release notes](https://github.com/RoaringBitmap/roaring/releases)
- [Commits](RoaringBitmap/roaring@v1.9.1...v1.9.4)

Updates `github.com/streamingfast/dstore` from 0.2.2 to 0.2.3
- [Release notes](https://github.com/streamingfast/dstore/releases)
- [Changelog](https://github.com/streamingfast/dstore/blob/develop/CHANGELOG.md)
- [Commits](streamingfast/dstore@v0.2.2...v0.2.3)

Updates `github.com/streamingfast/logging` from 0.0.0-20260108192805-38f96de0a641 to 1.2.2
- [Release notes](https://github.com/streamingfast/logging/releases)
- [Changelog](https://github.com/streamingfast/logging/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/streamingfast/logging/commits/v1.2.2)

Updates `go.uber.org/zap` from 1.27.1 to 1.28.0
- [Release notes](https://github.com/uber-go/zap/releases)
- [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md)
- [Commits](uber-go/zap@v1.27.1...v1.28.0)

Updates `google.golang.org/grpc` from 1.80.0 to 1.81.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.80.0...v1.81.1)

---
updated-dependencies:
- dependency-name: github.com/RoaringBitmap/roaring
  dependency-version: 1.9.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github.com/streamingfast/dstore
  dependency-version: 0.2.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github.com/streamingfast/logging
  dependency-version: 1.2.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: go.uber.org/zap
  dependency-version: 1.28.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: google.golang.org/grpc
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jun 12, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants