Bump the go-modules group across 1 directory with 9 updates

[dependabot]

Bumps the go-modules group with 4 updates in the / directory: github.com/klauspost/compress, go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp, golang.org/x/crypto and golang.org/x/net.

Updates github.com/klauspost/compress from 1.18.3 to 1.18.4

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.18.4

What's Changed

• gzhttp: Add zstandard to server handler wrapper by @​klauspost in klauspost/compress#1121
• zstd: Add ResetWithOptions to encoder/decoder by @​klauspost in klauspost/compress#1122
• gzhttp: preserve qvalue when extra parameters follow in Accept-Encoding by @​analytically in klauspost/compress#1116

New Contributors

• @​analytically made their first contribution in klauspost/compress#1116
• @​ethaizone made their first contribution in klauspost/compress#1124
• @​zwass made their first contribution in klauspost/compress#1125

Full Changelog: klauspost/compress@v1.18.2...v1.18.4

Commits

• c03560f zstd: Add ResetWithOptions to encoder/decoder (#1122)
• 0874ab8 build(deps): bump the github-actions group with 3 updates (#1126)
• 4a36836 doc: Clarify documentation in readme (#1125)
• 4309644 zstd: document concurrency option handling in encoder (#1124)
• c262ec6 Update README.md
• 861ca97 Downstream CVE-2025-61728 (#1123)
• 03de960 gzhttp: Add zstandard to server handler wrapper (#1121)
• bb1ab3b build(deps): bump the github-actions group with 2 updates (#1120)
• 986a51e fix(gzhttp): preserve qvalue when extra parameters follow in Accept-Encoding ...
• fbe3b12 build(deps): bump the github-actions group with 3 updates (#1118)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.64.0 to 0.65.0

Release notes

Sourced from go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp's releases.

Release v1.40.0/v2.2.0/v0.65.0/v0.34.0/v0.20.0/v0.15.0/v0.13.0/v0.12.0

Overview

Added

• WithMetricAttributesFn option in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc to define dynamic attributes on auto-instrumented metrics. (#8191)
• Add support for configuring propagators in go.opentelemetry.io/contrib/otelconf. (#8281)
• Add const Version in go.opentelemetry.io/contrib/bridges/prometheus. (#8401)
• Add const Version in go.opentelemetry.io/contrib/otelconf. (#8461)
• Add const Version in go.opentelemetry.io/contrib/bridges/otellogr. (#8477)
• Add const Version in go.opentelemetry.io/contrib/bridges/otellogrus. (#8485)
• Add const Version in go.opentelemetry.io/contrib/bridges/otelslog. (#8480)

Fixed

• Fix panic when passing nil TracerProvider or MeterProvider to WithTracerProvider or WithMeterProvider in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#8323)
• Transport in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp now supports reading request body multiple times for subsequent requests that reuse http.Request. (#8352)

Changed

• The Version() function in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp has been replaced by const Version. (#8142)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace has been replaced by const Version. (#8302)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc has been replaced by const Version. (#8317)
• The Version() function in go.opentelemetry.io/contrib/zpages has been replaced by const Version. (#8325)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/go.mongodb.org/mongo-driver/mongo/otelmongo has been replaced by const Version. (#8340)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin has been replaced by const Version. (#8341)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/runtime has been replaced by const Version string. (#8349)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-sdk-go-v2/otelaws has been replaced by const Version. (#8356)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-lambda-go/otellambda has been replaced by const Version. (#8357)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/host has been replaced by const Version. (#8358)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful has been replaced by const Version. (#8360)
• The Version() function in go.opentelemetry.io/contrib/propagators/opencensus has been replaced by const Version. (#8361)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho has been replaced by const Version. (#8365)
• The Version() function in go.opentelemetry.io/contrib/samplers/probability/consistent has been replaced by const Version. (#8366)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/go.mongodb.org/mongo-driver/v2/mongo/otelmongo has been replaced by const Version. (#8370)
• Set error.type attribute instead of adding exception span events in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#8386)
• Set error.type attribute instead of adding exception span events in go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-sdk-go-v2/otelaws. (#8386)
• Upgrade go.opentelemetry.io/otel/semconv to v1.39.0, including updates across all instrumentation and detector modules. (#8404)
  • The semantic conventions v1.39.0 release introduces breaking changes, including:
    • rpc span and metric attributes have been renamed to align with naming guidelines:
      • rpc.system → rpc.system.name (values: grpc, grpc_web, connectrpc, thrift, dubbo, etc.)
      • rpc.method and rpc.service have been merged into a fully-qualified rpc.method attribute
      • rpc.client|server.duration → rpc.client|server.call.duration (unit changed to seconds)
      • rpc.grpc.request.metadata/rpc.grpc.response.metadata → rpc.request.metadata/rpc.response.metadata
      • rpc.grpc.status_code → deprecated in favor of rpc.response.status_code
      • rpc.jsonrpc.request_id → jsonrpc.request.id
      • rpc.jsonrpc.version → jsonrpc.protocol.version
    • system and process metrics:
      • *.linux.memory metrics renamed to *.memory.linux
      • system.process.status → process.state

... (truncated)

Changelog

Sourced from go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp's changelog.

[1.40.0/2.2.0/0.65.0/0.34.0/0.20.0/0.15.0/0.13.0/0.12.0] - 2026-02-02

Added

• WithMetricAttributesFn option in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc to define dynamic attributes on auto-instrumented metrics. (#8191)
• Add support for configuring propagators in go.opentelemetry.io/contrib/otelconf. (#8281)
• Add const Version in go.opentelemetry.io/contrib/bridges/prometheus. (#8401)
• Add const Version in go.opentelemetry.io/contrib/otelconf. (#8461)
• Add const Version in go.opentelemetry.io/contrib/bridges/otellogr. (#8477)
• Add const Version in go.opentelemetry.io/contrib/bridges/otellogrus. (#8485)
• Add const Version in go.opentelemetry.io/contrib/bridges/otelslog. (#8480)

Fixed

• Fix panic when passing nil TracerProvider or MeterProvider to WithTracerProvider or WithMeterProvider in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#8323)
• Transport in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp now supports reading request body multiple times for subsequent requests that reuse http.Request. (#8352)

Changed

• The Version() function in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp has been replaced by const Version. (#8142)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace has been replaced by const Version. (#8302)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc has been replaced by const Version. (#8317)
• The Version() function in go.opentelemetry.io/contrib/zpages has been replaced by const Version. (#8325)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/go.mongodb.org/mongo-driver/mongo/otelmongo has been replaced by const Version. (#8340)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin has been replaced by const Version. (#8341)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/runtime has been replaced by const Version string. (#8349)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-sdk-go-v2/otelaws has been replaced by const Version. (#8356)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-lambda-go/otellambda has been replaced by const Version. (#8357)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/host has been replaced by const Version. (#8358)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful has been replaced by const Version. (#8360)
• The Version() function in go.opentelemetry.io/contrib/propagators/opencensus has been replaced by const Version. (#8361)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho has been replaced by const Version. (#8365)
• The Version() function in go.opentelemetry.io/contrib/samplers/probability/consistent has been replaced by const Version. (#8366)
• The Version() function in go.opentelemetry.io/contrib/instrumentation/go.mongodb.org/mongo-driver/v2/mongo/otelmongo has been replaced by const Version. (#8370)
• Set error.type attribute instead of adding exception span events in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#8386)
• Set error.type attribute instead of adding exception span events in go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-sdk-go-v2/otelaws. (#8386)
• Upgrade go.opentelemetry.io/otel/semconv to v1.39.0, including updates across all instrumentation and detector modules. (#8404)
  • The semantic conventions v1.39.0 release introduces breaking changes, including:
    • rpc span and metric attributes have been renamed to align with naming guidelines:
      • rpc.system → rpc.system.name (values: grpc, grpc_web, connectrpc, thrift, dubbo, etc.)
      • rpc.method and rpc.service have been merged into a fully-qualified rpc.method attribute
      • rpc.client|server.duration → rpc.client|server.call.duration (unit changed to seconds)
      • rpc.grpc.request.metadata/rpc.grpc.response.metadata → rpc.request.metadata/rpc.response.metadata
      • rpc.grpc.status_code → deprecated in favor of rpc.response.status_code
      • rpc.jsonrpc.request_id → jsonrpc.request.id
      • rpc.jsonrpc.version → jsonrpc.protocol.version
    • system and process metrics:
      • *.linux.memory metrics renamed to *.memory.linux
      • system.process.status → process.state
      • system.paging.type and process.paging.fault_type → system.paging.fault.type

... (truncated)

Commits

• a89d958 Release v1.40.0/v2.2.0/v0.65.0/v0.34.0/v0.20.0/v0.15.0/v0.13.0/v0.12.0 (#8493)
• 1530d71 Upgrade semconv to v1.39.0 (#8481)
• 135bb60 Upgrade autoexport to latest otel dep (#8483)
• 8e92105 chore(deps): update module github.com/gabriel-vasile/mimetype to v1.4.13 (#8486)
• 147148e fix(deps): update module github.com/shirou/gopsutil/v4 to v4.26.1 (#8487)
• d387510 Add version file for otellogrus bridge (#8485)
• fad49c8 add version file for otelslog bridge (#8480)
• 9e1e573 fix(deps): update module go.mongodb.org/mongo-driver to v1.17.8 (#8479)
• 37aa475 Add version file for otellogr bridge (#8477)
• fc8ef39 chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel from 1.39.0 to 1.40.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.40.0/0.62.0/0.16.0] 2026-02-02

Added

• Add AlwaysRecord sampler in go.opentelemetry.io/otel/sdk/trace. (#7724)
• Add Enabled method to all synchronous instrument interfaces (Float64Counter, Float64UpDownCounter, Float64Histogram, Float64Gauge, Int64Counter, Int64UpDownCounter, Int64Histogram, Int64Gauge,) in go.opentelemetry.io/otel/metric. This stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (#7763)
• Add go.opentelemetry.io/otel/semconv/v1.39.0 package. The package contains semantic conventions from the v1.39.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.38.0. (#7783, #7789)

Changed

• Improve the concurrent performance of HistogramReservoir in go.opentelemetry.io/otel/sdk/metric/exemplar by 4x. (#7443)
• Improve the concurrent performance of FixedSizeReservoir in go.opentelemetry.io/otel/sdk/metric/exemplar. (#7447)
• Improve performance of concurrent histogram measurements in go.opentelemetry.io/otel/sdk/metric. (#7474)
• Improve performance of concurrent synchronous gauge measurements in go.opentelemetry.io/otel/sdk/metric. (#7478)
• Add experimental observability metrics in go.opentelemetry.io/otel/exporters/stdout/stdoutmetric. (#7492)
• Exporter in go.opentelemetry.io/otel/exporters/prometheus ignores metrics with the scope go.opentelemetry.io/contrib/bridges/prometheus. This prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (#7688)
• Improve performance of concurrent exponential histogram measurements in go.opentelemetry.io/otel/sdk/metric. (#7702)
• The rpc.grpc.status_code attribute in the experimental metrics emitted from go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc is replaced with the rpc.response.status_code attribute to align with the semantic conventions. (#7854)
• The rpc.grpc.status_code attribute in the experimental metrics emitted from go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc is replaced with the rpc.response.status_code attribute to align with the semantic conventions. (#7854)

Fixed

• Fix bad log message when key-value pairs are dropped because of key duplication in go.opentelemetry.io/otel/sdk/log. (#7662)
• Fix DroppedAttributes on Record in go.opentelemetry.io/otel/sdk/log to not count the non-attribute key-value pairs dropped because of key duplication. (#7662)
• Fix SetAttributes on Record in go.opentelemetry.io/otel/sdk/log to not log that attributes are dropped when they are actually not dropped. (#7662)
• Fix missing request.GetBody in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp to correctly handle HTTP/2 GOAWAY frame. (#7794)
• WithHostID detector in go.opentelemetry.io/otel/sdk/resource to use full path for ioreg command on Darwin (macOS). (#7818)

Deprecated

• Deprecate go.opentelemetry.io/otel/exporters/zipkin. For more information, see the OTel blog post deprecating the Zipkin exporter. (#7670)

Commits

• a3a5317 Release v1.40.0 (#7859)
• 77785da chore(deps): update github/codeql-action action to v4.32.1 (#7858)
• 56fa1c2 chore(deps): update module github.com/clipperhouse/uax29/v2 to v2.5.0 (#7857)
• 298cbed Upgrade semconv use to v1.39.0 (#7854)
• 3264bf1 refactor: modernize code (#7850)
• fd5d030 chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• 8d3b4cb chore(deps): update actions/cache action to v5.0.3 (#7847)
• 91f7cad chore(deps): update github.com/timakin/bodyclose digest to 73d1f95 (#7845)
• fdad1eb chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• c46d3ba chore(deps): update golang.org/x/telemetry digest to fcf36f6 (#7843)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/metric from 1.39.0 to 1.40.0

Changelog

Sourced from go.opentelemetry.io/otel/metric's changelog.

[1.40.0/0.62.0/0.16.0] 2026-02-02

Added

• Add AlwaysRecord sampler in go.opentelemetry.io/otel/sdk/trace. (#7724)
• Add Enabled method to all synchronous instrument interfaces (Float64Counter, Float64UpDownCounter, Float64Histogram, Float64Gauge, Int64Counter, Int64UpDownCounter, Int64Histogram, Int64Gauge,) in go.opentelemetry.io/otel/metric. This stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (#7763)
• Add go.opentelemetry.io/otel/semconv/v1.39.0 package. The package contains semantic conventions from the v1.39.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.38.0. (#7783, #7789)

Changed

• Improve the concurrent performance of HistogramReservoir in go.opentelemetry.io/otel/sdk/metric/exemplar by 4x. (#7443)
• Improve the concurrent performance of FixedSizeReservoir in go.opentelemetry.io/otel/sdk/metric/exemplar. (#7447)
• Improve performance of concurrent histogram measurements in go.opentelemetry.io/otel/sdk/metric. (#7474)
• Improve performance of concurrent synchronous gauge measurements in go.opentelemetry.io/otel/sdk/metric. (#7478)
• Add experimental observability metrics in go.opentelemetry.io/otel/exporters/stdout/stdoutmetric. (#7492)
• Exporter in go.opentelemetry.io/otel/exporters/prometheus ignores metrics with the scope go.opentelemetry.io/contrib/bridges/prometheus. This prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (#7688)
• Improve performance of concurrent exponential histogram measurements in go.opentelemetry.io/otel/sdk/metric. (#7702)
• The rpc.grpc.status_code attribute in the experimental metrics emitted from go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc is replaced with the rpc.response.status_code attribute to align with the semantic conventions. (#7854)
• The rpc.grpc.status_code attribute in the experimental metrics emitted from go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc is replaced with the rpc.response.status_code attribute to align with the semantic conventions. (#7854)

Fixed

• Fix bad log message when key-value pairs are dropped because of key duplication in go.opentelemetry.io/otel/sdk/log. (#7662)
• Fix DroppedAttributes on Record in go.opentelemetry.io/otel/sdk/log to not count the non-attribute key-value pairs dropped because of key duplication. (#7662)
• Fix SetAttributes on Record in go.opentelemetry.io/otel/sdk/log to not log that attributes are dropped when they are actually not dropped. (#7662)
• Fix missing request.GetBody in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp to correctly handle HTTP/2 GOAWAY frame. (#7794)
• WithHostID detector in go.opentelemetry.io/otel/sdk/resource to use full path for ioreg command on Darwin (macOS). (#7818)

Deprecated

• Deprecate go.opentelemetry.io/otel/exporters/zipkin. For more information, see the OTel blog post deprecating the Zipkin exporter. (#7670)

Commits

• a3a5317 Release v1.40.0 (#7859)
• 77785da chore(deps): update github/codeql-action action to v4.32.1 (#7858)
• 56fa1c2 chore(deps): update module github.com/clipperhouse/uax29/v2 to v2.5.0 (#7857)
• 298cbed Upgrade semconv use to v1.39.0 (#7854)
• 3264bf1 refactor: modernize code (#7850)
• fd5d030 chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• 8d3b4cb chore(deps): update actions/cache action to v5.0.3 (#7847)
• 91f7cad chore(deps): update github.com/timakin/bodyclose digest to 73d1f95 (#7845)
• fdad1eb chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• c46d3ba chore(deps): update golang.org/x/telemetry digest to fcf36f6 (#7843)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.39.0 to 1.40.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.40.0/0.62.0/0.16.0] 2026-02-02

Added

• Add AlwaysRecord sampler in go.opentelemetry.io/otel/sdk/trace. (#7724)
• Add Enabled method to all synchronous instrument interfaces (Float64Counter, Float64UpDownCounter, Float64Histogram, Float64Gauge, Int64Counter, Int64UpDownCounter, Int64Histogram, Int64Gauge,) in go.opentelemetry.io/otel/metric. This stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (#7763)
• Add go.opentelemetry.io/otel/semconv/v1.39.0 package. The package contains semantic conventions from the v1.39.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.38.0. (#7783, #7789)

Changed

• Improve the concurrent performance of HistogramReservoir in go.opentelemetry.io/otel/sdk/metric/exemplar by 4x. (#7443)
• Improve the concurrent performance of FixedSizeReservoir in go.opentelemetry.io/otel/sdk/metric/exemplar. (#7447)
• Improve performance of concurrent histogram measurements in go.opentelemetry.io/otel/sdk/metric. (#7474)
• Improve performance of concurrent synchronous gauge measurements in go.opentelemetry.io/otel/sdk/metric. (#7478)
• Add experimental observability metrics in go.opentelemetry.io/otel/exporters/stdout/stdoutmetric. (#7492)
• Exporter in go.opentelemetry.io/otel/exporters/prometheus ignores metrics with the scope go.opentelemetry.io/contrib/bridges/prometheus. This prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (#7688)
• Improve performance of concurrent exponential histogram measurements in go.opentelemetry.io/otel/sdk/metric. (#7702)
• The rpc.grpc.status_code attribute in the experimental metrics emitted from go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc is replaced with the rpc.response.status_code attribute to align with the semantic conventions. (#7854)
• The rpc.grpc.status_code attribute in the experimental metrics emitted from go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc is replaced with the rpc.response.status_code attribute to align with the semantic conventions. (#7854)

Fixed

• Fix bad log message when key-value pairs are dropped because of key duplication in go.opentelemetry.io/otel/sdk/log. (#7662)
• Fix DroppedAttributes on Record in go.opentelemetry.io/otel/sdk/log to not count the non-attribute key-value pairs dropped because of key duplication. (#7662)
• Fix SetAttributes on Record in go.opentelemetry.io/otel/sdk/log to not log that attributes are dropped when they are actually not dropped. (#7662)
• Fix missing request.GetBody in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp to correctly handle HTTP/2 GOAWAY frame. (#7794)
• WithHostID detector in go.opentelemetry.io/otel/sdk/resource to use full path for ioreg command on Darwin (macOS). (#7818)

Deprecated

• Deprecate go.opentelemetry.io/otel/exporters/zipkin. For more information, see the OTel blog post deprecating the Zipkin exporter. (#7670)

Commits

• a3a5317 Release v1.40.0 (#7859)
• 77785da chore(deps): update github/codeql-action action to v4.32.1 (#7858)
• 56fa1c2 chore(deps): update module github.com/clipperhouse/uax29/v2 to v2.5.0 (#7857)
• 298cbed Upgrade semconv use to v1.39.0 (#7854)
• 3264bf1 refactor: modernize code (#7850)
• fd5d030 chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• 8d3b4cb chore(deps): update actions/cache action to v5.0.3 (#7847)
• 91f7cad chore(deps): update github.com/timakin/bodyclose digest to 73d1f95 (#7845)
• fdad1eb chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...
• c46d3ba chore(deps): update golang.org/x/telemetry digest to fcf36f6 (#7843)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.47.0 to 0.48.0

Commits

• e08b067 go.mod: update golang.org/x dependencies
• 7d0074c scrypt: fix panic on parameters <= 0
• See full diff in compare view

Updates golang.org/x/net from 0.49.0 to 0.50.0

Commits

• ebddb99 go.mod: update golang.org/x dependencies
• 4a490d4 internal/http3: add Expect: 100-continue support to ClientConn
• 73fe701 internal/http3: add Expect: 100-continue support to Server
• af0c9df html: add NodeType.String() method
• e02fb33 internal/http3: make responseWriter.Flush write headers if not done yet
• da558ff internal/http3: ensure bodyReader cannot be read after being closed
• d7c76fa internal/http3: make responseWriter behave closer to other http.ResponseWriter
• 64b3af9 http2: prevent transport deadlock due to WINDOW_UPDATE that exceeds limit
• 1973e8d internal/http3: add Server support for handling HEAD requests
• 57ea86d icmp, internal/socket, ipv4, ipv6: use binary.NativeEndian
• Additional commits viewable in compare view

Updates golang.org/x/sys from 0.40.0 to 0.41.0

Commits

• fc646e4 cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows
• f11c7bb windows: add IsProcessorFeaturePresent and processor feature consts
• d25a7aa unix: add IoctlSetString on all platforms
• 6fb913b unix: return early on error in Recvmsg
• See full diff in compare view

Updates golang.org/x/text from 0.33.0 to 0.34.0

Commits

• 817fba9 go.mod: update golang.org/x dependencies
• 3264de9 all: clean up old Go hacks
• 74af298 all: fix tags in remaining Unicode tables
• 117e03b all: delete old Unicode tables
• 9463ea4 all: update to Unicode 17
• 7278b25 internal/export/idna: update for post-Unicode 10 idna changes
• f964ad8 internal/export/idna: delete old code
• 678d34e unicode/norm: preserve QC Maybe bit in packed forminfo
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions