Skip to content

[gomod] Bump the dependencies group across 1 directory with 5 updates#534

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/loca-onboarding/dependencies-404880b8d3
Open

[gomod] Bump the dependencies group across 1 directory with 5 updates#534
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/loca-onboarding/dependencies-404880b8d3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown
Contributor

Bumps the dependencies group with 4 updates in the /loca-onboarding directory: github.com/go-openapi/errors, github.com/go-openapi/runtime, github.com/go-openapi/validate and google.golang.org/grpc.

Updates github.com/go-openapi/errors from 0.22.7 to 0.22.8

Release notes

Sourced from github.com/go-openapi/errors's releases.

v0.22.8

0.22.8 - 2026-05-31

Full Changelog: go-openapi/errors@v0.22.7...v0.22.8

13 commits in this release.

Implemented enhancements

  • feat(ci): added shared workflow for bot-pr monitoring by @​fredbi ...

Documentation

Code quality

Miscellaneous tasks

Updates

People who contributed to this release

errors license terms

... (truncated)

Commits
  • a677038 feat(ci): added shared workflow for bot-pr monitoring
  • 0cda362 chore(deps): bump the development-dependencies group across 1 directory with ...
  • 7d9a134 chore(deps): bump github.com/go-openapi/testify/v2
  • e810af9 chore(deps): bump github.com/go-openapi/testify/v2
  • 921874f chore(deps): bump the development-dependencies group with 7 updates
  • b78497c doc: updated contributors file
  • e1888b7 chore(deps): bump github.com/go-openapi/testify/v2
  • 3e93bcb chore(deps): bump the development-dependencies group with 7 updates
  • b00e83e chore: bump go directive to 1.25.0 (#102)
  • 53f8970 doc: add portable agentic instructions (#101)
  • Additional commits viewable in compare view

Updates github.com/go-openapi/runtime from 0.29.4 to 0.32.2

Release notes

Sourced from github.com/go-openapi/runtime's releases.

v0.32.2

0.32.2 - 2026-05-27

Full Changelog: go-openapi/runtime@v0.32.1...v0.32.2

2 commits in this release.

Fixed bugs

Miscellaneous tasks

People who contributed to this release

runtime license terms

License

Per-module changes

client-middleware/opentracing (0.32.2)

Miscellaneous tasks

v0.32.1

... (truncated)

Commits
  • a357ecf chore: prepare release v0.32.2
  • 10b4d12 fix(client): added a guard to avoid the client to panic (#474)
  • ea80e5a chore: prepare release v0.32.1
  • 01f5c55 doc: documented SkipAuth feature with build tag (#472)
  • af192a9 refactor(client): promote ContextualTransport to runtime package (#471)
  • 1002219 chore: prepare release v0.32.0
  • c1e2e2c Merge pull request #469 from fredbi/fix/3113-file-urlencoded
  • 584ff89 ci: add unsafe-skipauth tagged-build workflow with coverage
  • 4042690 feat(middleware): build-tag-gated SetSkipAuth for dev-mode auth bypass
  • cd748fa refactor(client/otel): pivot OpenTelemetry transport to SubmitContext
  • Additional commits viewable in compare view

Updates github.com/go-openapi/strfmt from 0.26.1 to 0.26.2

Release notes

Sourced from github.com/go-openapi/strfmt's releases.

v0.26.2

0.26.2 - 2026-04-29

Full Changelog: go-openapi/strfmt@v0.26.1...v0.26.2

13 commits in this release.

Documentation

Performance

Miscellaneous tasks

Updates

  • build(deps): bump the other-dependencies group across 2 directories with 2 updates by @​dependabot[bot] in #245 ...
  • build(deps): bump the development-dependencies group with 8 updates by @​dependabot[bot] in #242 ...
  • build(deps): bump golang.org/x/net from 0.52.0 to 0.53.0 in the golang-org-dependencies group across 1 directory by @​dependabot[bot] in #241 ...
  • build(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.1 in /internal/testintegration in the other-dependencies group across 1 directory by @​dependabot[bot] in #240 ...
  • build(deps): bump the go-openapi-dependencies group across 2 directories with 1 update by @​dependabot[bot] in #238 ...
  • build(deps): bump golang.org/x/net from 0.50.0 to 0.52.0 in the golang-org-dependencies group across 1 directory by @​dependabot[bot] in #228 ...

People who contributed to this release

strfmt license terms

[![License][license-badge]][license-url]

... (truncated)

Commits
  • fb29dd2 chore: prepare release v0.26.2
  • c8c1e4e doc: aligned docs with org-wide documentation. (#247)
  • ebb2f2f perf(duration): faster and stricter ParseDuration. (#246)
  • c09c1cd build(deps): bump the other-dependencies group across 2 directories with 2 up...
  • 1dfdf84 build(deps): bump the development-dependencies group with 8 updates
  • 290bce4 build(deps): bump golang.org/x/net
  • 49afd07 build(deps): bump github.com/jackc/pgx/v5 (#240)
  • b04e233 doc: updated contributors file
  • 9cdd252 build(deps): bump the go-openapi-dependencies group across 2 directories with...
  • 5b911b6 build(deps): bump golang.org/x/net
  • Additional commits viewable in compare view

Updates github.com/go-openapi/validate from 0.25.2 to 0.25.3

Release notes

Sourced from github.com/go-openapi/validate's releases.

v0.25.3

0.25.3 - 2026-05-31

Full Changelog: go-openapi/validate@v0.25.2...v0.25.3

17 commits in this release.

Implemented enhancements

  • feat(ci): added shared workflow for bot-pr monitoring by @​fredbi ...

Documentation

Miscellaneous tasks

Updates

People who contributed to this release

... (truncated)

Commits
  • 5bff947 chore: updated deps (#254)
  • 83c7e8d chore(deps): bump the development-dependencies group across 1 directory with ...
  • 8434d39 feat(ci): added shared workflow for bot-pr monitoring
  • 71d6405 chore(deps): bump github.com/go-openapi/analysis
  • 8c7a365 chore(deps): bump github.com/go-openapi/testify/v2
  • 80870d1 chore(deps): bump the go-openapi-dependencies group with 2 updates
  • f08e1a2 chore(deps): bump github.com/go-openapi/jsonpointer
  • 8918dce chore(deps): bump the development-dependencies group with 7 updates
  • 86798f8 chore(deps): bump the go-openapi-dependencies group with 5 updates
  • af6ab3f chore(deps): bump github.com/go-openapi/testify/v2
  • Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.80.0 to 1.81.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.81.1

Security

  • xds/rbac: Fix a potential authorization bypass caused by incorrectly falling through URI/DNS SANs to Subject Distinguished Name (DN) when matching the authenticated principal name. With this fix, only the first non-empty identity source will be used, as per gRFC A41. (#9111)

Bug Fixes

  • otel: Segregate client and server RPC information used for metrics and traces, to avoid one overwriting the other. (#9081)

Release 1.81.0

Behavior Changes

  • balancer/rls: Switch gauge metrics to asynchronous emission (once per collection cycle) to reduce telemetry noise and align with other gRPC language implementations. (#8808)

Dependencies

  • Minimum supported Go version is now 1.25. (#8969)

Bug Fixes

  • xds: Use the leaf cluster's security config for the TLS handshake instead of the aggregate cluster's config. (#8956)
  • transport: Send a RST_STREAM when receiving an END_STREAM when the stream is not already half-closed. (#8832)
  • xds: Fix ADS resource name validation to prevent a panic. (#8970)

New Features

  • grpc/stats: Add support for custom labels in per-call metrics (gRFC A108). (#9008)
  • xds: Add support for Server Name Indication (SNI) and SAN validation (gRFC A101). Disabled by default. To enable, set GRPC_EXPERIMENTAL_XDS_SNI=true environment variable. (#9016)
  • xds: Add support to control which fields get propagated from ORCA backend metric reports to LRS load reports (gRFC A85). Disabled by default. To enable, set GRPC_EXPERIMENTAL_XDS_ORCA_LRS_PROPAGATION=true. (#9005)
  • xds: Add metrics to track xDS client connectivity and cached resource state (gRFC A78). (#8807)
  • stats/otel: Enhance grpc.subchannel.disconnections metric by adding disconnection reason to the grpc.disconnect_error label (gRFC A94). This provides granular insights into why subchannels are closing. (#8973)
  • mem: Add mem.Buffer.Slice() API to slice the buffer like a slice. (#8977)

Performance Improvements

  • alts: Pool read buffers to lower memory utilization when sockets are unreadable. (#8964)
  • transport: Pool HTTP/2 framer read buffers to reduce idle memory consumption. Currently limited to Linux for ALTS and non-encrypted transports (TCP, Unix). To disable, set GRPC_GO_EXPERIMENTAL_HTTP_FRAMER_READ_BUFFER_POOLING=false and report any issues. (#9032)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
[gomod] Bump the dependencies group across 1 directory with 5 updates
5cc4a5c 
Bumps the dependencies group with 4 updates in the /loca-onboarding directory: [github.com/go-openapi/errors](https://github.com/go-openapi/errors), [github.com/go-openapi/runtime](https://github.com/go-openapi/runtime), [github.com/go-openapi/validate](https://github.com/go-openapi/validate) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).


Updates `github.com/go-openapi/errors` from 0.22.7 to 0.22.8
- [Release notes](https://github.com/go-openapi/errors/releases)
- [Commits](go-openapi/errors@v0.22.7...v0.22.8)

Updates `github.com/go-openapi/runtime` from 0.29.4 to 0.32.2
- [Release notes](https://github.com/go-openapi/runtime/releases)
- [Commits](go-openapi/runtime@v0.29.4...v0.32.2)

Updates `github.com/go-openapi/strfmt` from 0.26.1 to 0.26.2
- [Release notes](https://github.com/go-openapi/strfmt/releases)
- [Commits](go-openapi/strfmt@v0.26.1...v0.26.2)

Updates `github.com/go-openapi/validate` from 0.25.2 to 0.25.3
- [Release notes](https://github.com/go-openapi/validate/releases)
- [Commits](go-openapi/validate@v0.25.2...v0.25.3)

Updates `google.golang.org/grpc` from 1.80.0 to 1.81.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.80.0...v1.81.1)

---
updated-dependencies:
- dependency-name: github.com/go-openapi/errors
  dependency-version: 0.22.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github.com/go-openapi/runtime
  dependency-version: 0.32.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github.com/go-openapi/strfmt
  dependency-version: 0.26.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github.com/go-openapi/validate
  dependency-version: 0.25.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: google.golang.org/grpc
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jun 8, 2026
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jun 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cjnolan cjnolan Awaiting requested review from cjnolan cjnolan is a code owner

@damiankopyto damiankopyto Awaiting requested review from damiankopyto damiankopyto is a code owner

@niket-intc niket-intc Awaiting requested review from niket-intc niket-intc is a code owner

@rranjan3 rranjan3 Awaiting requested review from rranjan3 rranjan3 is a code owner

@soniabha-intc soniabha-intc Awaiting requested review from soniabha-intc soniabha-intc is a code owner

@sunil-parida sunil-parida Awaiting requested review from sunil-parida sunil-parida is a code owner

@krishnajs krishnajs Awaiting requested review from krishnajs krishnajs is a code owner

@SushilLakra SushilLakra Awaiting requested review from SushilLakra SushilLakra is a code owner

@Ram-srini Ram-srini Awaiting requested review from Ram-srini Ram-srini is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants