fix(deps): update all non-major dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
github.com/bradleyfalzon/ghinstallation/v2	v2.17.0 → v2.18.0			require	minor
github.com/gin-contrib/cors	v1.7.6 → v1.7.7			require	patch
github.com/gin-contrib/requestid	v1.0.5 → v1.0.6			require	patch
github.com/gin-contrib/timeout	v1.1.0 → v1.2.1			require	minor
github.com/gin-contrib/zap	v1.1.5 → v1.1.7			require	patch
github.com/gin-gonic/gin	v1.11.0 → v1.12.0			require	minor
github.com/knadh/koanf/providers/file	v1.2.0 → v1.2.1			require	patch
github.com/knadh/koanf/v2	v2.3.0 → v2.3.4			require	patch
github.com/magiconair/properties	v1.8.9 → v1.8.10			require	patch
github.com/spf13/cobra	v1.10.1 → v1.10.2			require	patch
gitlab.com/gitlab-org/api/client-go	v0.160.0 → v0.161.1			require	minor
go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin	v0.63.0 → v0.67.0			require	minor
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	v0.63.0 → v0.67.0			require	minor
go.opentelemetry.io/otel	v1.38.0 → v1.43.0			require	minor
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc	v1.38.0 → v1.43.0			require	minor
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc	v1.38.0 → v1.43.0			require	minor
go.opentelemetry.io/otel/sdk/metric	v1.38.0 → v1.43.0			require	minor
go.uber.org/zap	v1.27.0 → v1.27.1			require	patch
golang	1.25-bookworm → 1.26-bookworm			stage	minor

---

Release Notes

bradleyfalzon/ghinstallation (github.com/bradleyfalzon/ghinstallation/v2)

v2.18.0

Compare Source

What's Changed

• Bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in #​165
• bump github.com/google/go-github to v83 and ci updates by @​cpanato in #​184
• Update google/go-github to v84 by @​asvoboda in #​185
• Bump actions/checkout from 5.0.0 to 6.0.2 by @​dependabot[bot] in #​180
• Bump golangci/golangci-lint-action from 8.0.0 to 9.2.0 by @​dependabot[bot] in #​176

Full Changelog: bradleyfalzon/ghinstallation@v2.17.0...v2.18.0

gin-contrib/cors (github.com/gin-contrib/cors)

v1.7.7

Compare Source

Changelog

Others

• 2816d6d: Add Go 1.26 to GitHub Actions test matrix (@​appleboy)
• a92928f: Update golangci-lint version to v2.9 (@​appleboy)
• b77776e: Fix Trivy badge URL in README.md (@​appleboy)

Bug fixes

• 123928c: fix: allow ^ anchor in regex CORS origin patterns (#​177) (@​brokenthumbs)
• 3585a5e: fix: resolve golangci-lint issues in tests (@​appleboy)

Enhancements

• 21c982f: chore: update Go version and refresh dependencies to latest releases (@​appleboy)
• 402233a: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (@​appleboy)
• 0c14279: chore(deps): bump actions/checkout from 4 to 6 (@​appleboy)
• 3333b3d: chore(deps): upgrade quic-go to v0.57.1 (@​appleboy)
• 754ef53: chore(ci): update golangci-lint to v2.6 (@​appleboy)
• c5dcea8: chore(deps): bump actions/cache from 4 to 5 (@​appleboy)
• 139173a: chore(ci): upgrade trivy-action from 0.33.1 to 0.35.0 (@​appleboy)
• 9e6ec27: chore(deps): upgrade gin to v1.12.0 and update CI Go versions (@​appleboy)
• e19d20d: chore(deps): upgrade golang.org/x/text to v0.35.0 (@​appleboy)

Build process updates

• f46b87e: ci: integrate Trivy vulnerability scanning into CI workflow (@​appleboy)
• c4b4ccf: ci: broaden CI Go version testing (@​appleboy)
• 33f131c: ci: add dedicated Trivy security scanning and status badge (@​appleboy)
• fe8e9d0: ci: integrate automated Trivy security scanning via GitHub Actions (@​appleboy)
• f20e310: ci: update CI tooling and refine supported Go versions (@​appleboy)
• d94e477: ci: modernize and consolidate CI workflows and security scanning (@​appleboy)
• b16eb9f: ci: rename Trivy workflow file for enhanced clarity (@​appleboy)
• ec180b5: ci(workflow): bump goreleaser/goreleaser-action from v6 to v7 (@​appleboy)

gin-contrib/requestid (github.com/gin-contrib/requestid)

v1.0.6

Compare Source

Changelog

Enhancements

• 1d68e08: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (@​appleboy)
• bc75d4c: chore: upgrade Go and related dependencies to latest versions (@​appleboy)
• 1090669: chore: remove bearer.yml workflow (@​appleboy)
• e488b9d: chore(deps): bump actions/checkout from 4 to 6 (@​appleboy)
• 6407d27: chore: drop Go 1.23 support, require Go 1.24+ (@​appleboy)
• 84d2969: chore(deps): upgrade quic-go to v0.57.1 (@​appleboy)
• b402f35: chore(ci): update golangci-lint to v2.6 (@​appleboy)
• aada698: chore: remove gitter badge from README (@​appleboy)
• 2e0b732: chore(deps): bump actions/cache from 4 to 5 (@​appleboy)
• f363549: chore(ci): upgrade trivy-action from 0.33.1 to 0.35.0 (@​appleboy)
• d2b0016: chore(deps): upgrade gin to v1.12.0 and update CI Go versions (@​appleboy)
• ec402af: chore(deps): upgrade golang.org/x/text to v0.35.0 (@​appleboy)

Build process updates

• 50f2455: ci: add Go 1.25 to CI testing matrix (@​appleboy)
• e561c48: ci: integrate automated Trivy security scanning workflow (@​appleboy)
• 0b0915e: ci(workflow): bump goreleaser/goreleaser-action from v6 to v7 (@​appleboy)

Others

• d54d14e: Add Go 1.26 to GitHub Actions test matrix (@​appleboy)
• 20de786: Update golangci-lint version to v2.9 (@​appleboy)

gin-contrib/timeout (github.com/gin-contrib/timeout)

v1.2.1

Compare Source

Changelog

Bug fixes

• 2d46de1: fix: resolve data race on gin.Context index field (#​84) (@​appleboy)
• 4eb7613: fix(writer): allow multiple WriteHeader calls for static file serving (#​85) (@​appleboy)

Build process updates

• 14337c7: ci(actions): bump codecov/codecov-action from v5 to v6 (@​appleboy)

v1.2.0

Compare Source

Changelog

Features

• 9c9ea6f: feat: track response body size in Writer and expose Size method (@​appleboy)

Enhancements

• 9cbff66: chore: update dependencies and refresh lockfiles to latest versions (@​appleboy)
• 8998fe0: chore: update Go modules and dependencies to latest versions (@​appleboy)
• 5780699: chore: remove bearer.yml workflow (@​appleboy)
• d48bec6: chore(deps): bump actions/checkout from 4 to 6 (@​appleboy)
• c09c917: chore: drop Go 1.23 support, require Go 1.24+ (@​appleboy)
• c818cbf: chore(deps): upgrade quic-go to v0.57.1 (@​appleboy)
• 5de17bd: chore(ci): update golangci-lint to v2.6 (@​appleboy)
• 71d1ccc: chore(deps): bump actions/cache from 4 to 5 (@​appleboy)
• 0c2a03b: chore(ci): upgrade trivy-action from 0.33.1 to 0.35.0 (@​appleboy)
• 85b6248: chore(deps): upgrade gin to v1.12.0 and update CI Go versions (@​appleboy)
• c5a777e: chore(deps): upgrade golang.org/x/text to v0.35.0 (@​appleboy)

Refactor

• 68ce8b8: refactor: update Go modules and refactor timeout handling in examples (@​appleboy)
• b2e7eb5: refactor: refactor panic recovery handling for improved clarity and reuse (@​appleboy)
• 04d4cff: refactor: refactor and enhance tests for improved clarity and coverage (@​appleboy)

Build process updates

• 888c691: ci: enable race detection in CI test pipeline (@​appleboy)
• 2ec65b7: ci: add CI matrix for race and non-race Go test runs (@​appleboy)
• 6e93116: ci: update CI workflow for Go 1.25 and job name consistency (@​appleboy)
• 94f1626: ci: integrate Trivy security scanning workflow and reporting (@​appleboy)
• 7d57230: ci(workflow): bump goreleaser/goreleaser-action from v6 to v7 (@​appleboy)

Documentation updates

• 5a95b3e: docs: revise and clarify example usage and documentation (@​appleboy)
• 042f29e: docs: remove Gitter chat badge from documentation (@​appleboy)
• c83a0a8: docs: revamp documentation with expanded guides and usage examples (@​appleboy)

Others

• a1ae889: test: improve BufferPool robustness and testing clarity (@​appleboy)
• 41886ff: test: improve timeout option handling and response validation in tests (@​appleboy)
• 58b1a9e: style: standardize code formatting and enhance readability (@​appleboy)
• 1343c93: Add Go 1.26 to GitHub Actions test matrix (@​appleboy)
• e5dd31e: Update golangci-lint version to v2.9 (@​appleboy)

gin-contrib/zap (github.com/gin-contrib/zap)

v1.1.7

Compare Source

Changelog

Enhancements

• a814870: chore: remove bearer.yml workflow (@​appleboy)
• f61266b: chore(deps): bump actions/checkout from 4 to 6 (@​appleboy)
• c335019: chore: drop Go 1.23 support, require Go 1.24+ (@​appleboy)
• 0f4d45c: chore(deps): upgrade quic-go to v0.57.1 (@​appleboy)
• fb4de34: chore(ci): update golangci-lint to v2.6 (@​appleboy)
• 229a450: chore: remove gitter badge from README (@​appleboy)
• ad04736: chore(deps): bump actions/cache from 4 to 5 (@​appleboy)
• 2d03f53: chore(ci): upgrade trivy-action from 0.33.1 to 0.35.0 (@​appleboy)
• c1e0baf: chore(deps): upgrade gin to v1.12.0 and update CI Go versions (@​appleboy)
• 49a0354: chore(deps): upgrade golang.org/x/text to v0.35.0 (@​appleboy)

Build process updates

• 4e89f17: ci(workflow): bump goreleaser/goreleaser-action from v6 to v7 (@​appleboy)

Others

• a86c82d: Add Go 1.26 to GitHub Actions test matrix (@​appleboy)
• ae3a18c: Update golangci-lint version to v2.9 (@​appleboy)

v1.1.6

Compare Source

Changelog

Enhancements

• 501c4a9: chore: update dependencies to latest versions (@​appleboy)
• f5fa70b: chore: bump Go version and update golang.org/x dependencies (@​appleboy)

Build process updates

• 377c87f: ci: integrate automated Trivy security scans and reporting (@​appleboy)

gin-gonic/gin (github.com/gin-gonic/gin)

v1.12.0

Compare Source

Features

• feat(render): add bson protocol (#​4145)
• feat(context): add GetError and GetErrorSlice methods for error retrieval (#​4502)
• feat(binding): add support for encoding.UnmarshalText in uri/query binding (#​4203)
• feat(gin): add option to use escaped path (#​4420)
• feat(context): add Protocol Buffers support to content negotiation (#​4423)
• feat(context): implemented Delete method (#​38e7651)
• feat(logger): color latency (#​4146)

Enhancements

• perf(tree): reduce allocations in findCaseInsensitivePath (#​4417)
• perf(recovery): optimize line reading in stack function (#​4466)
• perf(path): replace regex with custom functions in redirectTrailingSlash (#​4414)
• perf(tree): optimize path parsing using strings.Count (#​4246)
• chore(logger): allow skipping query string output (#​4547)
• chore(context): always trust xff headers from unix socket (#​3359)
• chore(response): prevent Flush() panic when the underlying ResponseWriter does not implement http.Flusher (#​4479)
• refactor(recovery): smart error comparison (#​4142)
• refactor(context): replace hardcoded localhost IPs with constants (#​4481)
• refactor(utils): move util functions to utils.go (#​4467)
• refactor(binding): use maps.Copy for cleaner map handling (#​4352)
• refactor(context): using maps.Clone (#​4333)
• refactor(ginS): use sync.OnceValue to simplify engine function (#​4314)
• refactor: replace magic numbers with named constants in bodyAllowedForStatus (#​4529)
• refactor: for loop can be modernized using range over int (#​4392)

Bug Fixes

• fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (#​4535)
• fix(render): write content length in Data.Render (#​4206)
• fix(context): ClientIP handling for multiple X-Forwarded-For header values (#​4472)
• fix(binding): empty value error (#​2169)
• fix(recover): suppress http.ErrAbortHandler in recover (#​4336)
• fix(gin): literal colon routes not working with engine.Handler() (#​4415)
• fix(gin): close os.File in RunFd to prevent resource leak (#​4422)
• fix(response): refine hijack behavior for response lifecycle (#​4373)
• fix(binding): improve empty slice/array handling in form binding (#​4380)
• fix(debug): version mismatch (#​4403)
• fix: correct typos, improve documentation clarity, and remove dead code (#​4511)

Build process updates / CI

• ci: update Go version support to 1.25+ across CI and docs (#​4550)
• chore(binding): upgrade bson dependency to mongo-driver v2 (#​4549)

knadh/koanf (github.com/knadh/koanf/providers/file)

v1.2.1

Compare Source

changelog for v1.2.0 -> v1.2.1

• 29cce50 Merge pull request #​101 from e-nikolov/fix-pflag-map-types
• 0202243 posflag: add support for pflag map types

magiconair/properties (github.com/magiconair/properties)

v1.8.10

Compare Source

What's Changed

• Add 32bit numeric getters which do not panic by @​magiconair in #​77
• escape leading whitespace on value in Write() by @​magiconair in #​81

Full Changelog: magiconair/properties@v1.8.9...v1.8.10

spf13/cobra (github.com/spf13/cobra)

v1.10.2

Compare Source

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in #​2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in #​2327
• fix: actions/setup-go v6 by @​jpmcb in #​2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in #​2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in #​2328
• refactor: change minUsagePadding from var to const by @​ssam18 in #​2325

🤗 New Contributors

• @​rvergis made their first contribution in #​2316
• @​htoyoda18 made their first contribution in #​2328
• @​ssam18 made their first contribution in #​2325
• @​dims made their first contribution in #​2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

gitlab-org/api/client-go (gitlab.com/gitlab-org/api/client-go)

v0.161.1

Compare Source

• Merge branch 'release-client-1.0' into 'main' (f06b8c2)

Bug Fixes

• issues: use AssigneeIDValue for ListProjectIssuesOptions.AssigneeID (1dcb219)

Features

• ListOptions: Update ListOptions to use composition instead of aliasing (60beef3)

BREAKING CHANGES

• Release 1.0
• ListOptions: ListOptions implementation changed from aliasing to composition
  Changelog: Improvements

0.161.1

🐛 Bug Fixes

• fix(users): Fix a bug where error parsing causes user blocking to not function properly (!2584) by Patrick Rice

0.161.1 (2025-11-24)

Bug Fixes

• users: Fix a bug where error parsing causes user blocking to not function properly (2ad5506)

0.161.0

🚀 Features

• fix: return detailed API errors for BlockUser instead of generic LDAP message (!2581) by Zubeen

v0.161.0

Compare Source

• Merge branch 'release-client-1.0' into 'main' (f06b8c2)

Bug Fixes

• issues: use AssigneeIDValue for ListProjectIssuesOptions.AssigneeID (1dcb219)

Features

• ListOptions: Update ListOptions to use composition instead of aliasing (60beef3)

BREAKING CHANGES

• Release 1.0
• ListOptions: ListOptions implementation changed from aliasing to composition
  Changelog: Improvements

0.161.1

🐛 Bug Fixes

• fix(users): Fix a bug where error parsing causes user blocking to not function properly (!2584) by Patrick Rice

0.161.1 (2025-11-24)

Bug Fixes

• users: Fix a bug where error parsing causes user blocking to not function properly (2ad5506)

0.161.0

🚀 Features

• fix: return detailed API errors for BlockUser instead of generic LDAP message (!2581) by Zubeen

v0.160.2

Compare Source

Bug Fixes

• return detailed API errors for BlockUser instead of generic LDAP message (2ba9fa6)

0.160.2

🐛 Bug Fixes

• Fix double escaping in paths (!2583) by Timo Furrer

0.160.2 (2025-11-24)

0.160.1

🐛 Bug Fixes

• fix: update input field from "key" to "name" in pipeline schedules to prevent an API error (!2580) by Zubeen

🔄 Other Changes

• Code Refactor Using Request Handlers - 9 (!2524) by Yashesvinee V
• Code Refactor Using Request Handlers - 7 (!2522) by Yashesvinee V
• Code Refactor Using Request Handlers - 5 (!2518) by Yashesvinee V
• Code Refactor Using Request Handlers - 2 (!2515) by Yashesvinee V
• Code Refactor Using Request Handlers - 4 (!2517) by Yashesvinee V
• Code Refactor Using Request Handlers - 3 (!2516) by Yashesvinee V
• chore(deps): update module github.com/godbus/dbus/v5 to v5.2.0 (!2576) by GitLab Dependency Bot
• chore(deps): update golangci/golangci-lint docker tag to v2.6.2 (!2577) by GitLab Dependency Bot
• Code Refactor Using Request Handlers - 1 (!2514) by Yashesvinee V

0.160.1 (2025-11-19)

Bug Fixes

• update input field from "key" to "name" in pipeline schedules to prevent an API error (062133f)

0.160.0

🚀 Features

• feat (project_members): Add show_seat_info option to ProjectMembers (!2572) by Zubeen

🔄 Other Changes

• refactor: fix modernize lint issues (!2574) by Oleksandr Redko
• chore(deps): update module cel.dev/expr to v0.25.1 (!2573) by GitLab Dependency Bot
• docs(no-release): format examples, update pkg doc url (!2543) by Oleksandr Redko

v0.160.1

Compare Source

Bug Fixes

• return detailed API errors for BlockUser instead of generic LDAP message (2ba9fa6)

0.160.2

🐛 Bug Fixes

• Fix double escaping in paths (!2583) by Timo Furrer

0.160.2 (2025-11-24)

0.160.1

🐛 Bug Fixes

• fix: update input field from "key" to "name" in pipeline schedules to prevent an API error (!2580) by Zubeen

🔄 Other Changes

• Code Refactor Using Request Handlers - 9 (!2524) by Yashesvinee V
• Code Refactor Using Request Handlers - 7 (!2522) by Yashesvinee V
• Code Refactor Using Request Handlers - 5 (!2518) by Yashesvinee V
• Code Refactor Using Request Handlers - 2 (!2515) by Yashesvinee V
• Code Refactor Using Request Handlers - 4 (!2517) by Yashesvinee V
• Code Refactor Using Request Handlers - 3 (!2516) by Yashesvinee V
• chore(deps): update module github.com/godbus/dbus/v5 to v5.2.0 (!2576) by GitLab Dependency Bot
• chore(deps): update golangci/golangci-lint docker tag to v2.6.2 (!2577) by GitLab Dependency Bot
• Code Refactor Using Request Handlers - 1 (!2514) by Yashesvinee V

0.160.1 (2025-11-19)

Bug Fixes

• update input field from "key" to "name" in pipeline schedules to prevent an API error (062133f)

0.160.0

🚀 Features

• feat (project_members): Add show_seat_info option to ProjectMembers (!2572) by Zubeen

🔄 Other Changes

• refactor: fix modernize lint issues (!2574) by Oleksandr Redko
• chore(deps): update module cel.dev/expr to v0.25.1 (!2573) by GitLab Dependency Bot
• docs(no-release): format examples, update pkg doc url (!2543) by Oleksandr Redko

open-telemetry/opentelemetry-go (go.opentelemetry.io/otel)

v1.43.0

Compare Source

Added

• Add IsRandom and WithRandom on TraceFlags, and IsRandom on SpanContext in go.opentelemetry.io/otel/trace
  for W3C Trace Context Level 2 Random Trace ID Flag support. (#​8012)
• Add service detection with WithService in go.opentelemetry.io/otel/sdk/resource. (#​7642)
• Add DefaultWithContext and EnvironmentWithContext in go.opentelemetry.io/otel/sdk/resource to support plumbing context.Context through default and environment detectors. (#​8051)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc. (#​8038)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc. (#​8038)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc. (#​8038)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#​8038)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#​8038)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#​8038)
• Support attributes with empty value (attribute.EMPTY) in go.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest. (#​8038)
• Add support for per-series start time tracking for cumulative metrics in go.opentelemetry.io/otel/sdk/metric.
  Set OTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true to enable. (#​8060)
• Add WithCardinalityLimitSelector for metric reader for configuring cardinality limits specific to the instrument kind. (#​7855)

Changed

• Introduce the EMPTY Type in go.opentelemetry.io/otel/attribute to reflect that an empty value is now a valid value, with INVALID remaining as a deprecated alias of EMPTY. (#​8038)
• Refactor slice handling in go.opentelemetry.io/otel/attribute to optimize short slice values with fixed-size fast paths. (#​8039)
• Improve performance of span metric recording in go.opentelemetry.io/otel/sdk/trace by returning early if self-observability is not enabled. (#​8067)
• Improve formatting of metric data diffs in go.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest. (#​8073)

Deprecated

• Deprecate INVALID in go.opentelemetry.io/otel/attribute. Use EMPTY instead. (#​8038)

Fixed

• Return spec-compliant TraceIdRatioBased description. This is a breaking behavioral change, but it is necessary to
  make the implementation spec-compliant. (#​8027)
• Fix a race condition in go.opentelemetry.io/otel/sdk/metric where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (#​8056)
• Limit HTTP response body to 4 MiB in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp to mitigate excessive memory usage caused by a misconfigured or malicious server.
  Responses exceeding the limit are treated as non-retryable errors. (#​8108)
• Limit HTTP response body to 4 MiB in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp to mitigate excessive memory usage caused by a misconfigured or malicious server.
  Responses exceeding the limit are treated as non-retryable errors. (#​8108)
• Limit HTTP response body to 4 MiB in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp to mitigate excessive memory usage caused by a misconfigured or malicious server.
  Responses exceeding the limit are treated as non-retryable errors. (#​8108)
• WithHostID detector in go.opentelemetry.io/otel/sdk/resource to use full path for kenv command on BSD. (#​8113)
• Fix missing request.GetBody in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp to correctly handle HTTP2 GOAWAY frame. (#​8096)

What's Changed

• chore(deps): update module github.com/jgautheron/goconst to v1.9.0 by @​renovate[bot] in #​8014
• fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to 190d7d4 by @​renovate[bot] in #​8013
• chore(deps): update module go.yaml.in/yaml/v2 to v2.4.4 by @​renovate[bot] in #​8016
• fix(deps): update module github.com/golangci/golangci-lint/v2 to v2.11.1 by @​renovate[bot] in #​8011
• fix(deps): update golang.org/x by [@​renovate](https

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 11 additional dependencies were updated

Details:

Package	Change
github.com/goccy/go-yaml	v1.18.0 -> v1.19.0
github.com/quic-go/qpack	v0.5.1 -> v0.6.0
github.com/quic-go/quic-go	v0.56.0 -> v0.57.1
go.opentelemetry.io/otel/exporters/otlp/otlptrace	v1.38.0 -> v1.39.0
go.opentelemetry.io/otel/metric	v1.38.0 -> v1.39.0
go.opentelemetry.io/otel/trace	v1.38.0 -> v1.39.0
golang.org/x/crypto	v0.44.0 -> v0.45.0
golang.org/x/sys	v0.38.0 -> v0.39.0
google.golang.org/genproto/googleapis/api	v0.0.0-20251111163417-95abcf5c77ba -> v0.0.0-20251202230838-ff82c1b0f217
google.golang.org/genproto/googleapis/rpc	v0.0.0-20251111163417-95abcf5c77ba -> v0.0.0-20251202230838-ff82c1b0f217
google.golang.org/grpc	v1.76.0 -> v1.77.0

[renovate]

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 24 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.24.0 -> 1.25.0
go.opentelemetry.io/otel/sdk	v1.38.0 -> v1.43.0
github.com/bytedance/sonic	v1.14.2 -> v1.15.0
github.com/bytedance/sonic/loader	v0.4.0 -> v0.5.0
github.com/gabriel-vasile/mimetype	v1.4.11 -> v1.4.13
github.com/go-playground/validator/v10	v10.28.0 -> v10.30.1
github.com/goccy/go-yaml	v1.18.0 -> v1.19.2
github.com/google/go-querystring	v1.1.0 -> v1.2.0
github.com/grpc-ecosystem/grpc-gateway/v2	v2.27.3 -> v2.28.0
github.com/quic-go/qpack	v0.5.1 -> v0.6.0
github.com/quic-go/quic-go	v0.56.0 -> v0.59.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace	v1.38.0 -> v1.43.0
go.opentelemetry.io/otel/metric	v1.38.0 -> v1.43.0
go.opentelemetry.io/otel/trace	v1.38.0 -> v1.43.0
go.opentelemetry.io/proto/otlp	v1.9.0 -> v1.10.0
golang.org/x/arch	v0.23.0 -> v0.24.0
golang.org/x/crypto	v0.44.0 -> v0.49.0
golang.org/x/net	v0.47.0 -> v0.52.0
golang.org/x/oauth2	v0.33.0 -> v0.35.0
golang.org/x/sys	v0.38.0 -> v0.42.0
golang.org/x/text	v0.31.0 -> v0.35.0
google.golang.org/genproto/googleapis/api	v0.0.0-20251111163417-95abcf5c77ba -> v0.0.0-20260401024825-9d38bb4040a9
google.golang.org/genproto/googleapis/rpc	v0.0.0-20251111163417-95abcf5c77ba -> v0.0.0-20260401024825-9d38bb4040a9
google.golang.org/grpc	v1.76.0 -> v1.80.0
google.golang.org/protobuf	v1.36.10 -> v1.36.11