Skip to content

Bump the gomod group with 5 updates #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tstirrat15 merged 2 commits into from
Nov 2, 2025
Merged

Bump the gomod group with 5 updates #35

tstirrat15 merged 2 commits into from
Nov 2, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 1, 2025

Bumps the gomod group with 5 updates:

Package From To
github.com/KimMachineGun/automemlimit 0.7.4 0.7.5
github.com/authzed/authzed-go 1.5.0 1.6.0
github.com/ccoveille/go-safecast 1.6.1 1.8.1
google.golang.org/grpc 1.75.1 1.76.0
google.golang.org/protobuf 1.36.9 1.36.10

Updates github.com/KimMachineGun/automemlimit from 0.7.4 to 0.7.5

Release notes

Sourced from github.com/KimMachineGun/automemlimit's releases.

v0.7.5

What's Changed

Full Changelog: KimMachineGun/automemlimit@v0.7.4...v0.7.5

Commits

Updates github.com/authzed/authzed-go from 1.5.0 to 1.6.0

Release notes

Sourced from github.com/authzed/authzed-go's releases.

v1.6.0

Highlights

Bring in v1.45.4 backwards-compatible changes for SpiceDB

What's Changed

Full Changelog: authzed/authzed-go@v1.5.0...v1.6.0

Commits
  • c3152d7 Merge pull request #354 from authzed/dependabot/go_modules/magefiles/go-mod-m...
  • 1356dd7 Bump the go-mod-magefiles group across 1 directory with 2 updates
  • 16b58d0 Merge pull request #350 from josephschorr/regen-api-watch-changes
  • 96d0a2b Move client to API ref d27fc025233c4149be1ee333389b5dcd
  • e7fe32a Merge pull request #347 from authzed/dependabot/go_modules/go-mod-d8420e696d
  • ce0d0f8 Merge pull request #348 from authzed/dependabot/github_actions/github-actions...
  • 8c6456f Merge pull request #349 from authzed/dependabot/go_modules/magefiles/go-mod-m...
  • fb773be Bump mvdan.cc/gofumpt in /magefiles in the go-mod-magefiles group
  • 210b6e1 Bump actions/setup-go from 5 to 6 in the github-actions group
  • 6caf87a Bump golang.org/x/sync from 0.16.0 to 0.17.0 in the go-mod group
  • Additional commits viewable in compare view

Updates github.com/ccoveille/go-safecast from 1.6.1 to 1.8.1

Release notes

Sourced from github.com/ccoveille/go-safecast's releases.

v1.8.1

What's Changed

Minor

Full Changelog: ccoVeille/go-safecast@v1.8.0...v1.8.1

v1.8.0

What's Changed

Full Changelog: ccoVeille/go-safecast@v1.7.0...v1.8.0

v1.7.0

What's Changed

Minor

Full Changelog: ccoVeille/go-safecast@v1.6.1...v1.7.0

Commits
  • 28158aa feat: use quotes when reporting issue with string conversion (#125)
  • 0baa892 chore: fix invalid go build tag
  • e1b6645 chore: add deprecation notice to all ToIntXX and ToUIntXX functions
  • e16fe30 fix: handle Inf and NaN in conversions
  • d829b47 build(deps): bump crate-ci/typos from 1.36.2 to 1.36.3 in the all group
  • 3bae9d9 refactor: remove type assertions
  • ae54be9 chore: remove CodeClimate integration
  • b5538aa build(deps): bump the all group with 2 updates
  • 8996b07 build(deps): bump crate-ci/typos from 1.35.5 to 1.35.7 in the all group
  • 61a42d1 build(deps): bump the all group across 1 directory with 2 updates
  • Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.75.1 to 1.76.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.76.0

Dependencies

Bug Fixes

  • client: Return status INTERNAL when a server sends zero response messages for a unary or client-streaming RPC. (#8523)
  • client: Fail RPCs with status INTERNAL instead of UNKNOWN upon receiving http headers with status 1xx and END_STREAM flag set. (#8518)
  • pick_first: Fix race condition that could cause pick_first to get stuck in IDLE state on backend address change. (#8615)

New Features

  • credentials: Add credentials/jwt package providing file-based JWT PerRPCCredentials (A97). (#8431)

Performance Improvements

  • client: Improve HTTP/2 header size estimate to reduce re-allocations. (#8547)
  • encoding/proto: Avoid redundant message size calculation when marshaling. (#8569)
Commits
  • d96c2ef Change version to 1.76.0 (#8584)
  • 79c553c Cherry pick #8610, #8615 to v1.76.x (#8621)
  • 0513350 client: minor improvements to log messages (#8564)
  • ebaf486 credentials: implement file-based JWT Call Credentials (part 1 for A97) (#8431)
  • ca78c90 xds/resolver_test: fix flaky test ResolverBadServiceUpdate_NACKedWithoutCache...
  • 83bead4 internal/buffer: set closed flag when closing channel in the Load method (#8575)
  • 0f45079 encoding/proto: enable use cached size option (#8569)
  • 8420f3f transport: avoid slice reallocation during header creation (#8547)
  • b36320e Revert "stats/opentelemetry: record retry attempts from clientStream (#8342)"...
  • c122250 stats/opentelemetry: record retry attempts from clientStream (#8342)
  • Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.9 to 1.36.10

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the gomod group with 5 updates
a27059a 
Bumps the gomod group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/KimMachineGun/automemlimit](https://github.com/KimMachineGun/automemlimit) | `0.7.4` | `0.7.5` |
| [github.com/authzed/authzed-go](https://github.com/authzed/authzed-go) | `1.5.0` | `1.6.0` |
| [github.com/ccoveille/go-safecast](https://github.com/ccoveille/go-safecast) | `1.6.1` | `1.8.1` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.75.1` | `1.76.0` |
| google.golang.org/protobuf | `1.36.9` | `1.36.10` |


Updates `github.com/KimMachineGun/automemlimit` from 0.7.4 to 0.7.5
- [Release notes](https://github.com/KimMachineGun/automemlimit/releases)
- [Commits](KimMachineGun/automemlimit@v0.7.4...v0.7.5)

Updates `github.com/authzed/authzed-go` from 1.5.0 to 1.6.0
- [Release notes](https://github.com/authzed/authzed-go/releases)
- [Commits](authzed/authzed-go@v1.5.0...v1.6.0)

Updates `github.com/ccoveille/go-safecast` from 1.6.1 to 1.8.1
- [Release notes](https://github.com/ccoveille/go-safecast/releases)
- [Commits](ccoVeille/go-safecast@v1.6.1...v1.8.1)

Updates `google.golang.org/grpc` from 1.75.1 to 1.76.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.75.1...v1.76.0)

Updates `google.golang.org/protobuf` from 1.36.9 to 1.36.10

---
updated-dependencies:
- dependency-name: github.com/KimMachineGun/automemlimit
  dependency-version: 0.7.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gomod
- dependency-name: github.com/authzed/authzed-go
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: github.com/ccoveille/go-safecast
  dependency-version: 1.8.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: google.golang.org/grpc
  dependency-version: 1.76.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod
- dependency-name: google.golang.org/protobuf
  dependency-version: 1.36.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gomod
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the area/dependencies Affects dependencies label Nov 1, 2025
tstirrat15
tstirrat15 approved these changes Nov 2, 2025
View reviewed changes
Copy link
Collaborator

@tstirrat15 tstirrat15 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@tstirrat15 tstirrat15 merged commit 892dea2 into main Nov 2, 2025
7 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/gomod-62948f59bf branch November 2, 2025 13:48
@github-actions github-actions bot locked and limited conversation to collaborators Nov 2, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@tstirrat15 tstirrat15 tstirrat15 approved these changes

Assignees

No one assigned

Labels

area/dependencies Affects dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@tstirrat15