chore(deps): bump the gomod-normal-deps group across 1 directory with 5 updates #23

dependabot · 2025-04-14T13:38:01Z

Bumps the gomod-normal-deps group with 4 updates in the / directory: github.com/redis/go-redis/v9, github.com/spf13/cast, go.opentelemetry.io/otel/sdk and go.uber.org/mock.

Updates github.com/redis/go-redis/v9 from 9.7.0 to 9.7.3

Release notes

Sourced from github.com/redis/go-redis/v9's releases.

v9.7.3

What's Changed

fix: handle network error on SETINFO (#3295) (CVE-2025-29923)

Deprecating misspelled DisableIndentity flag in the client options.

Introducing DisableIdentity flag in the client options.

Updating the documentation related to the new flag and the one that was deprecated.

Full Changelog: redis/go-redis@v9.7.1...v9.7.3

v9.7.1

Changes

Recognize byte slice for key argument in cluster client hash slot computation (#3049)

fix(search&aggregate):fix error overwrite and typo #3220 (#3224)

fix: linter configuration (#3279)

fix(search): if ft.aggregate use limit when limitoffset is zero (#3275)

Reinstate read-only lock on hooks access in dialHook to fix data race (#3225)

fix: flaky ClientKillByFilter test (#3268)

chore: fix some comments (#3226)

fix(aggregate, search): ft.aggregate bugfixes (#3263)

fix: add unstableresp3 to cluster client (#3266)

Fix race condition in clusterNodes.Addrs() (#3219)

SortByWithCount FTSearchOptions fix (#3201)

Eliminate redundant dial mutex causing unbounded connection queue contention (#3088)

Add guidance on unstable RESP3 support for RediSearch commands to README (#3177)

🚀 New Features

Add guidance on unstable RESP3 support for RediSearch commands to README (#3177)

🐛 Bug Fixes

fix(search): if ft.aggregate use limit when limitoffset is zero (#3275)

fix: add unstableresp3 to cluster client (#3266)

fix(aggregate, search): ft.aggregate bugfixes (#3263)

SortByWithCount FTSearchOptions fix (#3201)

Recognize byte slice for key argument in cluster client hash slot computation (#3049)

Contributors

We'd like to thank all the contributors who worked on this release!

@ofekshenawa, @Cgol9, @LINKIWI, @shawnwgit, @zhuhaicity, @bitsark, @vladvildanov, @ndyakov

Full Changelog: redis/go-redis@v9.7.0...v9.7.1

Commits

a29d91d release 9.7.3, retract 9.7.2 (#3314)
ce3034c bump version to 9.7.2
0af2b32 fix: handle network error on SETINFO (#3295) (CVE-2025-29923)
3d041a1 release: 9.7.1 patch (#3278)
See full diff in compare view

Updates github.com/spf13/cast from 1.7.0 to 1.7.1

Release notes

Sourced from github.com/spf13/cast's releases.

v1.7.1

What's Changed

Update README.md by @lesichkovm in spf13/cast#224

Fix ToUint64 issue with string input exceeding maximum int64 by @skyjerry in spf13/cast#213

New Contributors

@lesichkovm made their first contribution in spf13/cast#224

@skyjerry made their first contribution in spf13/cast#213

Full Changelog: spf13/cast@v1.7.0...v1.7.1

Commits

487df00 Merge pull request #213 from skyjerry/fix-uint64
955c718 Merge pull request #224 from lesichkovm/patch-1
1849825 Update README.md
6e9731d Title: Fix ToUint64E function in cast library for Go
See full diff in compare view

Updates go.opentelemetry.io/otel/sdk from 1.32.0 to 1.35.0

Changelog

Sourced from go.opentelemetry.io/otel/sdk's changelog.

[1.35.0/0.57.0/0.11.0] 2025-03-05

This release is the last to support [Go 1.22]. The next release will require at least [Go 1.23].

Added

Add ValueFromAttribute and KeyValueFromAttribute in go.opentelemetry.io/otel/log. (#6180)

Add EventName and SetEventName to Record in go.opentelemetry.io/otel/log. (#6187)

Add EventName to RecordFactory in go.opentelemetry.io/otel/log/logtest. (#6187)

AssertRecordEqual in go.opentelemetry.io/otel/log/logtest checks Record.EventName. (#6187)

Add EventName and SetEventName to Record in go.opentelemetry.io/otel/sdk/log. (#6193)

Add EventName to RecordFactory in go.opentelemetry.io/otel/sdk/log/logtest. (#6193)

Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc. (#6211)

Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#6211)

Emit Record.EventName field in go.opentelemetry.io/otel/exporters/stdout/stdoutlog (#6210)

The go.opentelemetry.io/otel/semconv/v1.28.0 package. The package contains semantic conventions from the v1.28.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.27.0(#6236)

The go.opentelemetry.io/otel/semconv/v1.30.0 package. The package contains semantic conventions from the v1.30.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.28.0(#6240)

Document the pitfalls of using Resource as a comparable type. Resource.Equal and Resource.Equivalent should be used instead. (#6272)

Support [Go 1.24]. (#6304)

Add FilterProcessor and EnabledParameters in go.opentelemetry.io/otel/sdk/log. It replaces go.opentelemetry.io/otel/sdk/log/internal/x.FilterProcessor. Compared to previous version it additionally gives the possibility to filter by resource and instrumentation scope. (#6317)

Changed

Update github.com/prometheus/common to v0.62.0, which changes the NameValidationScheme to NoEscaping. This allows metrics names to keep original delimiters (e.g. .), rather than replacing with underscores. This is controlled by the Content-Type header, or can be reverted by setting NameValidationScheme to LegacyValidation in github.com/prometheus/common/model. (#6198)

Fixes

Eliminate goroutine leak for the processor returned by NewSimpleSpanProcessor in go.opentelemetry.io/otel/sdk/trace when Shutdown is called and the passed ctx is canceled and SpanExporter.Shutdown has not returned. (#6368)

Eliminate goroutine leak for the processor returned by NewBatchSpanProcessor in go.opentelemetry.io/otel/sdk/trace when ForceFlush is called and the passed ctx is canceled and SpanExporter.Export has not returned. (#6369)

[1.34.0/0.56.0/0.10.0] 2025-01-17

Changed

Remove the notices from Logger to make the whole Logs API user-facing in go.opentelemetry.io/otel/log. (#6167)

Fixed

Relax minimum Go version to 1.22.0 in various modules. (#6073)

The Type name logged for the go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc client is corrected from otlphttpgrpc to otlptracegrpc. (#6143)

... (truncated)

Commits

5ba5e7a Release v1.35.0/v0.57.0/v0.11.0 (#6407)
3908b67 chore(deps): update module github.com/securego/gosec/v2 to v2.22.2 (#6412)
50172b1 chore(deps): update module github.com/ryancurrah/gomodguard to v1.4.1 (#6411)
cea6d2b fix(deps): update module google.golang.org/grpc to v1.71.0 (#6409)
e2aee3a Move trace sdk tests from trace_test into trace package (#6400)
38f4f39 fix(deps): update build-tools to v0.20.0 (#6403)
2911449 Look at stale issues in ascending order (#6396)
7cb322a chore(deps): update github.com/golangci/dupl digest to 44c6a0b (#6398)
0c3651e fix(deps): update module github.com/golangci/golangci-lint to v1.64.6 (#6394)
f04e951 chore(deps): update mvdan.cc/unparam digest to 0df0534 (#6391)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.32.0 to 1.35.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.35.0/0.57.0/0.11.0] 2025-03-05

This release is the last to support [Go 1.22]. The next release will require at least [Go 1.23].

Added

Add ValueFromAttribute and KeyValueFromAttribute in go.opentelemetry.io/otel/log. (#6180)

Add EventName and SetEventName to Record in go.opentelemetry.io/otel/log. (#6187)

Add EventName to RecordFactory in go.opentelemetry.io/otel/log/logtest. (#6187)

AssertRecordEqual in go.opentelemetry.io/otel/log/logtest checks Record.EventName. (#6187)

Add EventName and SetEventName to Record in go.opentelemetry.io/otel/sdk/log. (#6193)

Add EventName to RecordFactory in go.opentelemetry.io/otel/sdk/log/logtest. (#6193)

Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc. (#6211)

Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#6211)

Emit Record.EventName field in go.opentelemetry.io/otel/exporters/stdout/stdoutlog (#6210)

The go.opentelemetry.io/otel/semconv/v1.28.0 package. The package contains semantic conventions from the v1.28.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.27.0(#6236)

The go.opentelemetry.io/otel/semconv/v1.30.0 package. The package contains semantic conventions from the v1.30.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.28.0(#6240)

Document the pitfalls of using Resource as a comparable type. Resource.Equal and Resource.Equivalent should be used instead. (#6272)

Support [Go 1.24]. (#6304)

Add FilterProcessor and EnabledParameters in go.opentelemetry.io/otel/sdk/log. It replaces go.opentelemetry.io/otel/sdk/log/internal/x.FilterProcessor. Compared to previous version it additionally gives the possibility to filter by resource and instrumentation scope. (#6317)

Changed

Update github.com/prometheus/common to v0.62.0, which changes the NameValidationScheme to NoEscaping. This allows metrics names to keep original delimiters (e.g. .), rather than replacing with underscores. This is controlled by the Content-Type header, or can be reverted by setting NameValidationScheme to LegacyValidation in github.com/prometheus/common/model. (#6198)

Fixes

Eliminate goroutine leak for the processor returned by NewSimpleSpanProcessor in go.opentelemetry.io/otel/sdk/trace when Shutdown is called and the passed ctx is canceled and SpanExporter.Shutdown has not returned. (#6368)

Eliminate goroutine leak for the processor returned by NewBatchSpanProcessor in go.opentelemetry.io/otel/sdk/trace when ForceFlush is called and the passed ctx is canceled and SpanExporter.Export has not returned. (#6369)

[1.34.0/0.56.0/0.10.0] 2025-01-17

Changed

Remove the notices from Logger to make the whole Logs API user-facing in go.opentelemetry.io/otel/log. (#6167)

Fixed

Relax minimum Go version to 1.22.0 in various modules. (#6073)

The Type name logged for the go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc client is corrected from otlphttpgrpc to otlptracegrpc. (#6143)

... (truncated)

Commits

5ba5e7a Release v1.35.0/v0.57.0/v0.11.0 (#6407)
3908b67 chore(deps): update module github.com/securego/gosec/v2 to v2.22.2 (#6412)
50172b1 chore(deps): update module github.com/ryancurrah/gomodguard to v1.4.1 (#6411)
cea6d2b fix(deps): update module google.golang.org/grpc to v1.71.0 (#6409)
e2aee3a Move trace sdk tests from trace_test into trace package (#6400)
38f4f39 fix(deps): update build-tools to v0.20.0 (#6403)
2911449 Look at stale issues in ascending order (#6396)
7cb322a chore(deps): update github.com/golangci/dupl digest to 44c6a0b (#6398)
0c3651e fix(deps): update module github.com/golangci/golangci-lint to v1.64.6 (#6394)
f04e951 chore(deps): update mvdan.cc/unparam digest to 0df0534 (#6391)
Additional commits viewable in compare view

Updates go.uber.org/mock from 0.5.0 to 0.5.1

Release notes

Sourced from go.uber.org/mock's releases.

v0.5.1

0.5.1 (7 Apr 2025)

Fixed

#220[]: Package mode will now generate code that uses aliases of types when they are used in the source.

#219[]: Fixed a collision between function argument names and package names in generated code.

#165[]: Fixed an issue where aliases specified by -imports were not being respected in generated code.

#220: uber-go/mock#220 #219: uber-go/mock#219 #165: uber-go/mock#165

Thanks to @mtoader and @bstncartwright for their contributions to this release.

Changelog

Sourced from go.uber.org/mock's changelog.

0.5.1 (7 Apr 2025)

Fixed

#220[]: Package mode will now generate code that uses aliases of types when they are used in the source.

#219[]: Fixed a collision between function argument names and package names in generated code.

#165[]: Fixed an issue where aliases specified by -imports were not being respected in generated code.

#220: uber-go/mock#220 #219: uber-go/mock#219 #165: uber-go/mock#165

Thanks to @mtoader and @bstncartwright for their contributions to this release.

Commits

cf6f33d Prepare release v0.5.1 (#241)
bb4128e Copying gomock definition and tests from rules_go (#231)
d97cf0d Fix -imports handling aliased imports in source mode (#165)
eb67641 fix: import and arg collision (#219)
c205527 Package Mode: Use aliases when used in source (#220)
b8222fa Back to development (#215)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

… 5 updates Bumps the gomod-normal-deps group with 4 updates in the / directory: [github.com/redis/go-redis/v9](https://github.com/redis/go-redis), [github.com/spf13/cast](https://github.com/spf13/cast), [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) and [go.uber.org/mock](https://github.com/uber/mock). Updates `github.com/redis/go-redis/v9` from 9.7.0 to 9.7.3 - [Release notes](https://github.com/redis/go-redis/releases) - [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md) - [Commits](redis/go-redis@v9.7.0...v9.7.3) Updates `github.com/spf13/cast` from 1.7.0 to 1.7.1 - [Release notes](https://github.com/spf13/cast/releases) - [Commits](spf13/cast@v1.7.0...v1.7.1) Updates `go.opentelemetry.io/otel/sdk` from 1.32.0 to 1.35.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.32.0...v1.35.0) Updates `go.opentelemetry.io/otel/trace` from 1.32.0 to 1.35.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.32.0...v1.35.0) Updates `go.uber.org/mock` from 0.5.0 to 0.5.1 - [Release notes](https://github.com/uber/mock/releases) - [Changelog](https://github.com/uber-go/mock/blob/main/CHANGELOG.md) - [Commits](uber-go/mock@v0.5.0...v0.5.1) --- updated-dependencies: - dependency-name: github.com/redis/go-redis/v9 dependency-version: 9.7.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-normal-deps - dependency-name: github.com/spf13/cast dependency-version: 1.7.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-normal-deps - dependency-name: go.opentelemetry.io/otel/sdk dependency-version: 1.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod-normal-deps - dependency-name: go.opentelemetry.io/otel/trace dependency-version: 1.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod-normal-deps - dependency-name: go.uber.org/mock dependency-version: 0.5.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-normal-deps ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2025-04-14T13:38:02Z

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the gomod-normal-deps group across 1 directory with 5 updates #23

chore(deps): bump the gomod-normal-deps group across 1 directory with 5 updates #23

Uh oh!

dependabot bot commented on behalf of github Apr 14, 2025

Uh oh!

dependabot bot commented on behalf of github Apr 14, 2025

Uh oh!

Uh oh!

chore(deps): bump the gomod-normal-deps group across 1 directory with 5 updates #23

Are you sure you want to change the base?

chore(deps): bump the gomod-normal-deps group across 1 directory with 5 updates #23

Uh oh!

Conversation

dependabot bot commented on behalf of github Apr 14, 2025

v9.7.3

What's Changed

v9.7.1

Changes

🚀 New Features

🐛 Bug Fixes

Contributors

v1.7.1

What's Changed

New Contributors

[1.35.0/0.57.0/0.11.0] 2025-03-05

Added

Changed

Fixes

[1.34.0/0.56.0/0.10.0] 2025-01-17

Changed

Fixed

[1.35.0/0.57.0/0.11.0] 2025-03-05

Added

Changed

Fixes

[1.34.0/0.56.0/0.10.0] 2025-01-17

Changed

Fixed

v0.5.1

0.5.1 (7 Apr 2025)

Fixed

0.5.1 (7 Apr 2025)

Fixed

Uh oh!

dependabot bot commented on behalf of github Apr 14, 2025

Labels

Uh oh!

Uh oh!