Skip to content

build(deps): bump the go-dependencies group in /tools with 5 updates#1772

Merged
anthony-gomez-fastly merged 1 commit intomainfrom
dependabot/go_modules/tools/go-dependencies-d9e0cb29e2
Apr 29, 2026
Merged

build(deps): bump the go-dependencies group in /tools with 5 updates#1772
anthony-gomez-fastly merged 1 commit intomainfrom
dependabot/go_modules/tools/go-dependencies-d9e0cb29e2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 29, 2026

Bumps the go-dependencies group in /tools with 5 updates:

Package From To
github.com/buger/jsonparser 1.1.2 1.2.0
github.com/go-openapi/strfmt 0.26.1 0.26.2
github.com/modelcontextprotocol/registry 1.7.2 1.7.3
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc 0.67.0 0.68.0
go.uber.org/zap 1.27.1 1.28.0

Updates github.com/buger/jsonparser from 1.1.2 to 1.2.0

Release notes

Sourced from github.com/buger/jsonparser's releases.

v1.2.0

What's Changed

Full Changelog: buger/jsonparser@v1.1.2...v1.2.0

Commits
  • c172c16 Merge pull request #269 from buger/tinygo
  • 680cd2e Merge pull request #281 from buger/reqproof-assurance-hardening
  • 9dce61c Migrate review storage from reviews/ folder to per-requirement timestamps
  • c03b9ef feat: add property-based obligation classes with 24 new SYS-REQs
  • 9c46110 chore: fix spec lint warnings — remove stale parent field, set review metadata
  • 8bbb8a8 Close coverage gaps: SYS-REQ-007/008/010 fuzz harness coverage to 100%
  • 552e93b Install Z3 via apt before audit
  • 98133b4 Remove manual Z3 pre-download, now handled by proof-action
  • 1b70ead Debug Z3 pre-download: remove output suppression
  • aac1fbc Pre-download Z3 solver before audit
  • Additional commits viewable in compare view

Updates github.com/go-openapi/strfmt from 0.26.1 to 0.26.2

Release notes

Sourced from github.com/go-openapi/strfmt's releases.

v0.26.2

0.26.2 - 2026-04-29

Full Changelog: go-openapi/strfmt@v0.26.1...v0.26.2

13 commits in this release.

Documentation

Performance

Miscellaneous tasks

Updates

  • build(deps): bump the other-dependencies group across 2 directories with 2 updates by @​dependabot[bot] in #245 ...
  • build(deps): bump the development-dependencies group with 8 updates by @​dependabot[bot] in #242 ...
  • build(deps): bump golang.org/x/net from 0.52.0 to 0.53.0 in the golang-org-dependencies group across 1 directory by @​dependabot[bot] in #241 ...
  • build(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.1 in /internal/testintegration in the other-dependencies group across 1 directory by @​dependabot[bot] in #240 ...
  • build(deps): bump the go-openapi-dependencies group across 2 directories with 1 update by @​dependabot[bot] in #238 ...
  • build(deps): bump golang.org/x/net from 0.50.0 to 0.52.0 in the golang-org-dependencies group across 1 directory by @​dependabot[bot] in #228 ...

People who contributed to this release

strfmt license terms

[![License][license-badge]][license-url]

... (truncated)

Commits
  • fb29dd2 chore: prepare release v0.26.2
  • c8c1e4e doc: aligned docs with org-wide documentation. (#247)
  • ebb2f2f perf(duration): faster and stricter ParseDuration. (#246)
  • c09c1cd build(deps): bump the other-dependencies group across 2 directories with 2 up...
  • 1dfdf84 build(deps): bump the development-dependencies group with 8 updates
  • 290bce4 build(deps): bump golang.org/x/net
  • 49afd07 build(deps): bump github.com/jackc/pgx/v5 (#240)
  • b04e233 doc: updated contributors file
  • 9cdd252 build(deps): bump the go-openapi-dependencies group across 2 directories with...
  • 5b911b6 build(deps): bump golang.org/x/net
  • Additional commits viewable in compare view

Updates github.com/modelcontextprotocol/registry from 1.7.2 to 1.7.3

Release notes

Sourced from github.com/modelcontextprotocol/registry's releases.

v1.7.3

What's Changed

Full Changelog: modelcontextprotocol/registry@v1.7.2...v1.7.3

Commits
  • 736d376 fix(db): raise pgxpool MaxConns + PG max_connections + set PG resources (#1221)
  • 54cbe24 fix(list): use JSONB containment for RemoteURL filter (GIN-indexable) (#1220)
  • a490b6f build(deps): bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 in the act...
  • 3764aca build(deps): bump github.com/pulumi/pulumi-kubernetes/sdk/v4 from 4.29.0 to 4...
  • a4d9d82 deploy: update prod to v1.7.2 (#1216)
  • See full diff in compare view

Updates go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.67.0 to 0.68.0

Release notes

Sourced from go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc's releases.

Release v1.43.0/v2.5.0/v0.68.0/v0.37.0/v0.23.0/v0.18.0/v0.16.0/v0.15.0

Added

  • Add Resource method to SDK in go.opentelemetry.io/contrib/otelconf/v0.3.0 to expose the resolved SDK resource from declarative configuration. (#8660)
  • Add support to set the configuration file via OTEL_CONFIG_FILE in go.opentelemetry.io/contrib/otelconf. (#8639)
  • Add support for service resource detector in go.opentelemetry.io/contrib/otelconf. (#8674)
  • Add support for attribute_count_limit and attribute_value_length_limit in tracer provider configuration in go.opentelemetry.io/contrib/otelconf. (#8687)
  • Add support for attribute_count_limit and attribute_value_length_limit in logger provider configuration in go.opentelemetry.io/contrib/otelconf. (#8686)
  • Add support for server.address and server.port attributes in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#8723)
  • Add support for OTEL_SEMCONV_STABILITY_OPT_IN in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. Supported values are rpc (default), rpc/dup and rpc/old. (#8726)
  • Add the http.route metric attribute to go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#8632)

Changed

  • Prepend _ to the normalized environment variable name when the key starts with a digit in go.opentelemetry.io/contrib/propagators/envcar, ensuring POSIX compliance. (#8678)
  • Move experimental types from go.opentelemetry.io/contrib/otelconf to go.opentelemetry.io/contrib/otelconf/x. (#8529)
  • Normalize cached environment variable names in go.opentelemetry.io/contrib/propagators/envcar, aligning Carrier.Keys output with the carrier's normalized key format. (#8761)

Fixed

  • Fix go.opentelemetry.io/contrib/otelconf Prometheus reader converting OTel dot-style label names (e.g. service.name) to underscore-style (service_name) in target_info when both without_type_suffix and without_units are set. Use NoTranslation instead of UnderscoreEscapingWithoutSuffixes to preserve dot-style label names while still suppressing metric name suffixes. (#8763)
  • Limit the request body size at 1MB in go.opentelemetry.io/contrib/zpages. (#8656)
  • Fix server spans using the client's address and port for server.address and server.port attributes in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#8723)

Removed

  • Host ID resource detector has been removed when configuring the host resource detector in go.opentelemetry.io/contrib/otelconf. (#8581)

Deprecated

  • Deprecate OTEL_EXPERIMENTAL_CONFIG_FILE in favour of OTEL_CONFIG_FILE in go.opentelemetry.io/contrib/otelconf. (#8639)

What's Changed

... (truncated)

Changelog

Sourced from go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc's changelog.

[1.43.0/2.5.0/0.68.0/0.37.0/0.23.0/0.18.0/0.16.0/0.15.0] - 2026-04-03

Added

  • Add Resource method to SDK in go.opentelemetry.io/contrib/otelconf/v0.3.0 to expose the resolved SDK resource from declarative configuration. (#8660)
  • Add support to set the configuration file via OTEL_CONFIG_FILE in go.opentelemetry.io/contrib/otelconf. (#8639)
  • Add support for service resource detector in go.opentelemetry.io/contrib/otelconf. (#8674)
  • Add support for attribute_count_limit and attribute_value_length_limit in tracer provider configuration in go.opentelemetry.io/contrib/otelconf. (#8687)
  • Add support for attribute_count_limit and attribute_value_length_limit in logger provider configuration in go.opentelemetry.io/contrib/otelconf. (#8686)
  • Add support for server.address and server.port attributes in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#8723)
  • Add support for OTEL_SEMCONV_STABILITY_OPT_IN in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. Supported values are rpc (default), rpc/dup and rpc/old. (#8726)
  • Add the http.route metric attribute to go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#8632)

Changed

  • Prepend _ to the normalized environment variable name when the key starts with a digit in go.opentelemetry.io/contrib/propagators/envcar, ensuring POSIX compliance. (#8678)
  • Move experimental types from go.opentelemetry.io/contrib/otelconf to go.opentelemetry.io/contrib/otelconf/x. (#8529)
  • Normalize cached environment variable names in go.opentelemetry.io/contrib/propagators/envcar, aligning Carrier.Keys output with the carrier's normalized key format. (#8761)

Fixed

  • Fix go.opentelemetry.io/contrib/otelconf Prometheus reader converting OTel dot-style label names (e.g. service.name) to underscore-style (service_name) in target_info when both without_type_suffix and without_units are set. Use NoTranslation instead of UnderscoreEscapingWithoutSuffixes to preserve dot-style label names while still suppressing metric name suffixes. (#8763)
  • Limit the request body size at 1MB in go.opentelemetry.io/contrib/zpages. (#8656)
  • Fix server spans using the client's address and port for server.address and server.port attributes in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#8723)

Removed

  • Host ID resource detector has been removed when configuring the host resource detector in go.opentelemetry.io/contrib/otelconf. (#8581)

Deprecated

  • Deprecate OTEL_EXPERIMENTAL_CONFIG_FILE in favour of OTEL_CONFIG_FILE in go.opentelemetry.io/contrib/otelconf. (#8639)
Commits
  • 45977a4 Release v1.43.0/v2.5.0/v0.68.0/v0.37.0/v0.23.0/v0.18.0/v0.16.0/v0.15.0 (#8769)
  • 0fcc152 fix(deps): update module github.com/googlecloudplatform/opentelemetry-operati...
  • eaba3cd chore(deps): update googleapis to 6f92a3b (#8776)
  • 6df430c chore(deps): update module github.com/jgautheron/goconst to v1.10.0 (#8771)
  • ae90e32 Fix otelconf prometheus label escaping (#8763)
  • f202c3f otelconf: move experimental types to otelconf/x (#8529)
  • 8ddaece fix(deps): update aws-sdk-go-v2 monorepo (#8764)
  • c7c03a4 chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (#8766)
  • 717a85a envcar: normalize cached environment variable names (#8761)
  • ad990b6 fix(deps): update module github.com/aws/smithy-go to v1.24.3 (#8765)
  • Additional commits viewable in compare view

Updates go.uber.org/zap from 1.27.1 to 1.28.0

Release notes

Sourced from go.uber.org/zap's releases.

v1.28.0

Enhancements:

  • #1534[]: Add zapcore.CheckPreWriteHook and CheckedEntry.Before method for transforming entries before they are written to any Cores.

#1534: uber-go/zap#1534

Changelog

Sourced from go.uber.org/zap's changelog.

1.28.0 (27 Apr 2026)

Enhancements:

  • #1534[]: Add zapcore.CheckPreWriteHook and CheckedEntry.Before method for transforming entries before they are written to any Cores.
Commits
  • 5b81b37 release v1.28.0 (#1547)
  • 0ab0d5a zapcore: Add PreWriteHook for transforming entries before write (#1534)
  • d278c59 [chore] CI: test on Go 1.26 (#1535)
  • 16fb16b chore(dep): replace archived gopkg.in/yaml.v3 with officially maintained go.y...
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the go-dependencies group in /tools with 5 updates
b343b8c 
Bumps the go-dependencies group in /tools with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.2` | `1.2.0` |
| [github.com/go-openapi/strfmt](https://github.com/go-openapi/strfmt) | `0.26.1` | `0.26.2` |
| [github.com/modelcontextprotocol/registry](https://github.com/modelcontextprotocol/registry) | `1.7.2` | `1.7.3` |
| [go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc](https://github.com/open-telemetry/opentelemetry-go-contrib) | `0.67.0` | `0.68.0` |
| [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.1` | `1.28.0` |


Updates `github.com/buger/jsonparser` from 1.1.2 to 1.2.0
- [Release notes](https://github.com/buger/jsonparser/releases)
- [Commits](buger/jsonparser@v1.1.2...v1.2.0)

Updates `github.com/go-openapi/strfmt` from 0.26.1 to 0.26.2
- [Release notes](https://github.com/go-openapi/strfmt/releases)
- [Commits](go-openapi/strfmt@v0.26.1...v0.26.2)

Updates `github.com/modelcontextprotocol/registry` from 1.7.2 to 1.7.3
- [Release notes](https://github.com/modelcontextprotocol/registry/releases)
- [Commits](modelcontextprotocol/registry@v1.7.2...v1.7.3)

Updates `go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc` from 0.67.0 to 0.68.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go-contrib@zpages/v0.67.0...zpages/v0.68.0)

Updates `go.uber.org/zap` from 1.27.1 to 1.28.0
- [Release notes](https://github.com/uber-go/zap/releases)
- [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md)
- [Commits](uber-go/zap@v1.27.1...v1.28.0)

---
updated-dependencies:
- dependency-name: github.com/buger/jsonparser
  dependency-version: 1.2.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/go-openapi/strfmt
  dependency-version: 0.26.2
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/modelcontextprotocol/registry
  dependency-version: 1.7.3
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
  dependency-version: 0.68.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: go.uber.org/zap
  dependency-version: 1.28.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the tools Indicates that a given PR updates the repo tooling. label Apr 29, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 29, 2026 16:50
@dependabot dependabot Bot added the tools Indicates that a given PR updates the repo tooling. label Apr 29, 2026
@github-actions github-actions Bot added the Skip-Changelog do not add a changelog entry for this change label Apr 29, 2026
@anthony-gomez-fastly anthony-gomez-fastly enabled auto-merge (squash) April 29, 2026 16:51
@anthony-gomez-fastly anthony-gomez-fastly merged commit c863273 into main Apr 29, 2026
12 of 18 checks passed
@anthony-gomez-fastly anthony-gomez-fastly deleted the dependabot/go_modules/tools/go-dependencies-d9e0cb29e2 branch April 29, 2026 17:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@anthony-gomez-fastly anthony-gomez-fastly anthony-gomez-fastly approved these changes

Assignees

No one assigned

Labels

Skip-Changelog do not add a changelog entry for this change tools Indicates that a given PR updates the repo tooling.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@anthony-gomez-fastly