dendrite/go.mod

162 lines
7.2 KiB
Modula-2
Raw Permalink Normal View History

module github.com/element-hq/dendrite
2019-05-21 22:56:55 +02:00
require (
2024-08-03 20:26:28 +02:00
github.com/Arceliar/phony v0.0.0-20220903101357-530938a4b13d
github.com/DATA-DOG/go-sqlmock v1.5.0
github.com/MFAshby/stdemuxerhook v1.0.0
Bump github.com/Masterminds/semver/v3 from 3.1.1 to 3.3.1 (#3519) Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) from 3.1.1 to 3.3.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Masterminds/semver/releases">github.com/Masterminds/semver/v3's releases</a>.</em></p> <blockquote> <h2>v3.3.1</h2> <h2>What's Changed</h2> <ul> <li>Fix for allowing some version that were invalid by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/253">Masterminds/semver#253</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/Masterminds/semver/compare/v3.3.0...v3.3.1">https://github.com/Masterminds/semver/compare/v3.3.0...v3.3.1</a></p> <h2>v3.3.0</h2> <h2>What's Changed</h2> <ul> <li>Fix: bad package in README by <a href="https://github.com/sdelicata"><code>@​sdelicata</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/226">Masterminds/semver#226</a></li> <li>Updating the GitHub Actions and versions of Go used by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/229">Masterminds/semver#229</a></li> <li>Fix spelling in README by <a href="https://github.com/robinschneider"><code>@​robinschneider</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/222">Masterminds/semver#222</a></li> <li>Adding go build cache to fuzz output by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/232">Masterminds/semver#232</a></li> <li>Add caching to fuzz testing by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/234">Masterminds/semver#234</a></li> <li>updating github actions by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/235">Masterminds/semver#235</a></li> <li>feat: nil version equality by <a href="https://github.com/KnutZuidema"><code>@​KnutZuidema</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/213">Masterminds/semver#213</a></li> <li>add &gt;= and &lt;= by <a href="https://github.com/grosser"><code>@​grosser</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/238">Masterminds/semver#238</a></li> <li>doc: hyphen range constraint without whitespace by <a href="https://github.com/johnnychen94"><code>@​johnnychen94</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/216">Masterminds/semver#216</a></li> <li>Removing reference to vert by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/245">Masterminds/semver#245</a></li> <li>simplify StrictNewVersion by <a href="https://github.com/grosser"><code>@​grosser</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/241">Masterminds/semver#241</a></li> <li>Updating the testing version of Go used by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/246">Masterminds/semver#246</a></li> <li>bumping min version in go.mod based on what's tested by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/248">Masterminds/semver#248</a></li> <li>Updating changelog for 3.3.0 by <a href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a href="https://redirect.github.com/Masterminds/semver/pull/249">Masterminds/semver#249</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/sdelicata"><code>@​sdelicata</code></a> made their first contribution in <a href="https://redirect.github.com/Masterminds/semver/pull/226">Masterminds/semver#226</a></li> <li><a href="https://github.com/robinschneider"><code>@​robinschneider</code></a> made their first contribution in <a href="https://redirect.github.com/Masterminds/semver/pull/222">Masterminds/semver#222</a></li> <li><a href="https://github.com/KnutZuidema"><code>@​KnutZuidema</code></a> made their first contribution in <a href="https://redirect.github.com/Masterminds/semver/pull/213">Masterminds/semver#213</a></li> <li><a href="https://github.com/grosser"><code>@​grosser</code></a> made their first contribution in <a href="https://redirect.github.com/Masterminds/semver/pull/238">Masterminds/semver#238</a></li> <li><a href="https://github.com/johnnychen94"><code>@​johnnychen94</code></a> made their first contribution in <a href="https://redirect.github.com/Masterminds/semver/pull/216">Masterminds/semver#216</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0">https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0</a></p> <h2>v3.2.1</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/198">#198</a>: Improved testing around pre-release names</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/200">#200</a>: Improved code scanning with addition of CodeQL</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/201">#201</a>: Testing now includes Go 1.20. Go 1.17 has been dropped</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/202">#202</a>: Migrated Fuzz testing to Go built-in Fuzzing. CI runs daily</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/203">#203</a>: Docs updated for security details</li> </ul> <h3>Fixed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/199">#199</a>: Fixed issue with range transformations</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/Masterminds/semver/compare/v3.2.0...v3.2.1">https://github.com/Masterminds/semver/compare/v3.2.0...v3.2.1</a></p> <h2>v3.2.0</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Masterminds/semver/blob/master/CHANGELOG.md">github.com/Masterminds/semver/v3's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>3.3.0 (2024-08-27)</h2> <h3>Added</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/238">#238</a>: Add LessThanEqual and GreaterThanEqual functions (thanks <a href="https://github.com/grosser"><code>@​grosser</code></a>)</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/213">#213</a>: nil version equality checking (thanks <a href="https://github.com/KnutZuidema"><code>@​KnutZuidema</code></a>)</li> </ul> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/241">#241</a>: Simplify StrictNewVersion parsing (thanks <a href="https://github.com/grosser"><code>@​grosser</code></a>)</li> <li>Testing support up through Go 1.23</li> <li>Minimum version set to 1.21 as this is what's tested now</li> <li>Fuzz testing now supports caching</li> </ul> <h2>3.2.1 (2023-04-10)</h2> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/198">#198</a>: Improved testing around pre-release names</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/200">#200</a>: Improved code scanning with addition of CodeQL</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/201">#201</a>: Testing now includes Go 1.20. Go 1.17 has been dropped</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/202">#202</a>: Migrated Fuzz testing to Go built-in Fuzzing. CI runs daily</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/203">#203</a>: Docs updated for security details</li> </ul> <h3>Fixed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/199">#199</a>: Fixed issue with range transformations</li> </ul> <h2>3.2.0 (2022-11-28)</h2> <h3>Added</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/190">#190</a>: Added text marshaling and unmarshaling</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/167">#167</a>: Added JSON marshalling for constraints (thanks <a href="https://github.com/SimonTheLeg"><code>@​SimonTheLeg</code></a>)</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/173">#173</a>: Implement encoding.TextMarshaler and encoding.TextUnmarshaler on Version (thanks <a href="https://github.com/MarkRosemaker"><code>@​MarkRosemaker</code></a>)</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/179">#179</a>: Added New() version constructor (thanks <a href="https://github.com/kazhuravlev"><code>@​kazhuravlev</code></a>)</li> </ul> <h3>Changed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/182">#182</a>/<a href="https://redirect.github.com/Masterminds/semver/issues/183">#183</a>: Updated CI testing setup</li> </ul> <h3>Fixed</h3> <ul> <li><a href="https://redirect.github.com/Masterminds/semver/issues/186">#186</a>: Fixing issue where validation of constraint section gave false positives</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/176">#176</a>: Fix constraints check with *-0 (thanks <a href="https://github.com/mtt0"><code>@​mtt0</code></a>)</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/181">#181</a>: Fixed Caret operator (^) gives unexpected results when the minor version in constraint is 0 (thanks <a href="https://github.com/arshchimni"><code>@​arshchimni</code></a>)</li> <li><a href="https://redirect.github.com/Masterminds/semver/issues/161">#161</a>: Fixed godoc (thanks <a href="https://github.com/afirth"><code>@​afirth</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Masterminds/semver/commit/1558ca3488226e3490894a145e831ad58a5ff958"><code>1558ca3</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/253">#253</a> from mattfarina/fix-bad-versions</li> <li><a href="https://github.com/Masterminds/semver/commit/252dd61dd30c2bcf2bcfc30be1428c68d8f25934"><code>252dd61</code></a> Fix for allowing some version that were invalid</li> <li><a href="https://github.com/Masterminds/semver/commit/e6e3d4d3cb1073f0ab8fb3d4be0869d1687b75f9"><code>e6e3d4d</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/249">#249</a> from mattfarina/update-changelog-3.3.0</li> <li><a href="https://github.com/Masterminds/semver/commit/e80c4ea7233523c64c380d944a3ed57c1666ac67"><code>e80c4ea</code></a> Updating changelog for 3.3.0</li> <li><a href="https://github.com/Masterminds/semver/commit/80427ad56e4fca2ef72e4050f01f1c9c347a0cd3"><code>80427ad</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/248">#248</a> from mattfarina/bump-min-version</li> <li><a href="https://github.com/Masterminds/semver/commit/b6108372278f95198bb85fd22464b3cdc894a3a2"><code>b610837</code></a> bumping min version in go.mod based on what's tested</li> <li><a href="https://github.com/Masterminds/semver/commit/a4cccd8ea5e6a94c09921a2dd4136e337ef069d1"><code>a4cccd8</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/246">#246</a> from mattfarina/bump-go-1.23</li> <li><a href="https://github.com/Masterminds/semver/commit/7c178cf0c64cb23c5fcf0a291a2c9fb968806819"><code>7c178cf</code></a> Updating the testing version of Go used</li> <li><a href="https://github.com/Masterminds/semver/commit/29f94c1119d901b8b4daf94be98df54ef044d3d9"><code>29f94c1</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/241">#241</a> from grosser/grosser/validate</li> <li><a href="https://github.com/Masterminds/semver/commit/2cf1b16b95d71b6f8ccd5fc0fe43e1896a3049cd"><code>2cf1b16</code></a> Merge pull request <a href="https://redirect.github.com/Masterminds/semver/issues/245">#245</a> from mattfarina/remove-vert</li> <li>Additional commits viewable in <a href="https://github.com/Masterminds/semver/compare/v3.1.1...v3.3.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/Masterminds/semver/v3&package-manager=go_modules&previous-version=3.1.1&new-version=3.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-28 16:58:14 +00:00
github.com/Masterminds/semver/v3 v3.3.1
Bump github.com/blevesearch/bleve/v2 from 2.4.0 to 2.4.4 (#3506) Bumps [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) from 2.4.0 to 2.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blevesearch/bleve/releases">github.com/blevesearch/bleve/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.4</h2> <h5>Bug Fixes</h5> <ul> <li>Identified root cause for <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a> to be recycling of TermFieldReaders that was causing illegal/incorrect access of several in-memory structures in certain scenarios. We've gone ahead and disabled this feature with <a href="https://redirect.github.com/blevesearch/bleve/pull/2117">blevesearch/bleve#2117</a> + <a href="https://redirect.github.com/blevesearch/bleve/pull/2121">blevesearch/bleve#2121</a> . Will work towards re-enabling in the near future once we've ironed out the several associated wrinkles.</li> <li>Introduced a guard rail with <a href="https://redirect.github.com/blevesearch/zapx/pull/282">blevesearch/zapx#282</a> while performing vector search queries with pre-filtering to avoid hitting a panic when qualified docs do not hold valid vector fields.</li> <li>Fixed an issue while applying <code>ivf_max_codes_pct</code> in vector search requests involving pre-filtering which can cause reduction in recall - <a href="https://redirect.github.com/blevesearch/go-faiss/pull/40">blevesearch/go-faiss#40</a></li> </ul> <p>Vector search continues to require same version of <code>faiss</code> dynamic library (as with <a href="https://github.com/blevesearch/bleve/releases/tag/v2.4.3">v2.4.3</a>) to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></p> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/25">v2.4.4</a></li> </ul> <h2>v2.4.3</h2> <h5>Bug Fixes</h5> <ul> <li>Address a corner case with <code>ivf_nprobe_pct</code> query parameter (<a href="https://redirect.github.com/blevesearch/go-faiss/pull/34">blevesearch/go-faiss#34</a>)</li> <li>Several guard rails put in place to avoid array-out-of-bounds-access and divide-by-zero errors: (<a href="https://redirect.github.com/blevesearch/zapx/pull/263">blevesearch/zapx#263</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/270">blevesearch/zapx#270</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/271">blevesearch/zapx#271</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/273">blevesearch/zapx#273</a>) to overcome <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a></li> <li>Handling early exits/optimization for boolean queries (<a href="https://redirect.github.com/blevesearch/bleve/pull/2065">blevesearch/bleve#2065</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires <code>faiss</code> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></li> <li>Support for cosine similarity distance metric to normalize vectors before indexing/querying for nearest neighbor search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2051">blevesearch/bleve#2051</a>)</li> <li>Support for <a href="https://github.com/blevesearch/bleve/blob/v2.4.3/docs/vectors.md#querying-with-filters-v243">selectivity filters</a> as a pre-cursor to vector search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2063">blevesearch/bleve#2063</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/23">v2.4.3</a></li> </ul> <h2>v2.4.2</h2> <h5>Bug Fixes</h5> <ul> <li>Set <code>MaxSegmentFileSize</code> for force merge when <code>SingleSegmentMergePlanOptions</code> goes into use (<a href="https://redirect.github.com/blevesearch/bleve/issues/2050">#2050</a>)</li> <li>Protect code against any bolt failures (<a href="https://redirect.github.com/blevesearch/bleve/issues/2043">#2043</a>)</li> <li>Fix size estimation for various field types (<a href="https://redirect.github.com/blevesearch/bleve/issues/2052">#2052</a>)</li> <li>Address an out-of-bounds panic that could occur with zapx/v16 in the event of a single non-vector field (<a href="https://redirect.github.com/blevesearch/bleve/issues/2058">#2058</a>) <ul> <li><a href="https://redirect.github.com/blevesearch/zapx/pull/252">blevesearch/zapx#252</a></li> </ul> </li> </ul> <h5>Improvements</h5> <ul> <li>Support new search params for vector search queries - [<code>ivf_probe_pct</code>, <code>ivf_max_codes_pct</code>] (<a href="https://redirect.github.com/blevesearch/bleve/issues/2049">#2049</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/22">v2.4.2</a></li> </ul> <h2>v2.4.1</h2> <h5>Bug Fixes</h5> <ul> <li>Addressed a bug where <code>ClientContextID</code> was missing from SearchRequest when library used with <code>vectors</code> (<a href="https://redirect.github.com/blevesearch/bleve/pull/2014">blevesearch/bleve#2014</a>)</li> <li>Fix to a memory leak in vector query path (<a href="https://redirect.github.com/blevesearch/bleve/pull/2023">blevesearch/bleve#2023</a>)</li> <li>Fix to issue <a href="https://redirect.github.com/blevesearch/bleve/issues/2027">blevesearch/bleve#2027</a>, error in parsing a certain datetime syntax (<a href="https://redirect.github.com/blevesearch/bleve/pull/2030">blevesearch/bleve#2030</a>)</li> <li>Fix that mitigates a race between persister's stale segment removal and index copy operations (<a href="https://redirect.github.com/blevesearch/bleve/pull/2032">blevesearch/bleve#2032</a>)</li> <li>Nested field mapping determination was broken (<a href="https://redirect.github.com/blevesearch/bleve/pull/2031">blevesearch/bleve#2031</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires the <em>faiss</em> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/d9db66a38518d99eb334218697e1df0732f3fdf8">blevesearch/faiss@d9db66a</a></li> <li>Support for new data type - <code>vector_base64</code> which allows for interpreting vector float32s encoded as base64 following littleEndian byte ordering (<a href="https://redirect.github.com/blevesearch/bleve/pull/2012">blevesearch/bleve#2012</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blevesearch/bleve/commit/137a21665e10013ca7ea285d59c22b8d85313e17"><code>137a216</code></a> MB-64513: Upgrade blevesearch/go-faiss, zapx/v16 for fix (<a href="https://redirect.github.com/blevesearch/bleve/issues/2123">#2123</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/5c53634221cd2b2c8a129f489f74ca315c3ae3a1"><code>5c53634</code></a> MB-64604: Remove unnecessary second map lookup (<a href="https://redirect.github.com/blevesearch/bleve/issues/2121">#2121</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/78cf78999e64fe8b257f215a4087b223cd8d210a"><code>78cf789</code></a> MB-64604: Fix interpreting scorch config: &quot;fieldTFRCacheThreshold&quot; (<a href="https://redirect.github.com/blevesearch/bleve/issues/2117">#2117</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/7d627b9f2d8cda7af90bb1153fd0669ff0cace5e"><code>7d627b9</code></a> MB-64360 - Upgrade zapx v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2107">#2107</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/e72f7c2f22de1d4887b30571fb65f8b3bb408d6b"><code>e72f7c2</code></a> MB-62230 - Pre-filtering Optimisation (<a href="https://redirect.github.com/blevesearch/bleve/issues/2098">#2098</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/902051d4d4714d3b096be55302fc3388e0285ff2"><code>902051d</code></a> MB-62230, MB-63992: Upgrade zapx/v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2095">#2095</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/cb1810f0d3c900edfc8e9c20dce4c21041b4db4d"><code>cb1810f</code></a> MB-63334: Fix race condition in NormalizeVector (<a href="https://redirect.github.com/blevesearch/bleve/issues/2094">#2094</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/bed244cefd701f30cb23d48816e5a76bbe6da478"><code>bed244c</code></a> MB-57871: Upgrade zapx v15 and v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2092">#2092</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/ab10172e2c1da8ae320603a602536b3e5d21075a"><code>ab10172</code></a> MB-57871, MB-62230: Upgrade to zapx/v16@v16.1.7 + go-faiss@v1.0.23 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2088">#2088</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/02d37a4fbc6b77d2a8ea0591db51c64649a236ef"><code>02d37a4</code></a> MB-57871: Upgrade zapx/v16 and zapx/v15 for fixes (<a href="https://redirect.github.com/blevesearch/bleve/issues/2091">#2091</a>)</li> <li>Additional commits viewable in <a href="https://github.com/blevesearch/bleve/compare/v2.4.0...v2.4.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/blevesearch/bleve/v2&package-manager=go_modules&previous-version=2.4.0&new-version=2.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 19:10:21 +00:00
github.com/blevesearch/bleve/v2 v2.4.4
github.com/codeclysm/extract v2.2.0+incompatible
Bump nhooyr.io/websocket from 1.8.7 to 1.8.17 (#3456) Bumps [nhooyr.io/websocket](https://github.com/nhooyr/websocket-old) from 1.8.7 to 1.8.17. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nhooyr/websocket-old/releases">nhooyr.io/websocket's releases</a>.</em></p> <blockquote> <h2>v1.8.17</h2> <ul> <li>This library is now deprecated. Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path. It will not receive any further updates. Coder is now maintaining it at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> <h2>v1.8.16</h2> <ul> <li>Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path as it is deprecated. It will not receive any maintenance updates. Coder is maintaining it now at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> <h2>v1.8.15</h2> <ul> <li>Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path as it is deprecated. It will not receive any maintenance updates. Coder is maintaining it now at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> <h2>v1.8.14</h2> <ul> <li>Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path as it is deprecated. It will not receive any maintenance updates. Coder is maintaining it now at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/nhooyr/websocket-old/commits/v1.8.17">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=nhooyr.io/websocket&package-manager=go_modules&previous-version=1.8.7&new-version=1.8.17)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-12-18 08:01:41 +01:00
github.com/coder/websocket v1.8.12
Adds support for listening on and connecting to I2P and Onion services securely (#3293) This PR adds 2 `dendrite-demo` main's, each designed expressly to serve a Hidden Service/Overlay network. The first, `dendrite-demo-i2p` add self-configuration for use of dendrite as an I2P hidden service(eepsite) and to connect to I2P services(federate) as an I2P client. It further disables the `dendrite` server from communicating with non-anonymous servers by federation(because I2P does not canonically have the ability to exit, we rely on donors for exit traffic), and enables the use of self-signed TLS certificates([because I2P services are self-authenticating but TLS is still required for other aspects of the system to work reliably](https://tor.stackexchange.com/questions/13887/registering-onion-with-certificate-authority)). This demo turns the system into an "pseudonymous" homeserver which people can connect to using an I2P-enabled Matrix client(I like `cinny` and it's what I tested with). The second, `dendrite-demo-tor` adds self-configuration for the use of dendrite as an Onion service and to connect to other onion services and non-anonymous web sites using Tor to obfuscate it's physical location and providing, optionally, pseudonymity. It also enables the use of self-signed TLS certificates, for the same reason as with I2P, because onion services aren't typically eligible for TLS certificates. It has also been tested with `cinny`. These services are both pseudonymous like myself, not anonymous. I will be meeting members of the element team at the CCC assembly shortly to discuss contributing under my pseudonym. As none of the other `dendrite-demo` have unit tests I did not add them to these checkins. * [*] I have added Go unit tests or [Complement integration tests](https://github.com/matrix-org/complement) for this PR _or_ I have justified why this PR doesn't need tests --------- Co-authored-by: eyedeekay <idk@mulder> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-09-23 13:28:28 -04:00
github.com/cretz/bine v0.2.0
Bump github.com/dgraph-io/ristretto from 0.1.1 to 0.2.0 (#3457) Bumps [github.com/dgraph-io/ristretto](https://github.com/dgraph-io/ristretto) from 0.1.1 to 0.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dgraph-io/ristretto/releases">github.com/dgraph-io/ristretto's releases</a>.</em></p> <blockquote> <h2>v0.2.0</h2> <h2>What's Changed</h2> <p>*`docs(readme): Use new Wait method by <a href="https://github.com/angadn"><code>@​angadn</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/327">dgraph-io/ristretto#327</a></p> <ul> <li>docs: format example on readme by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/339">dgraph-io/ristretto#339</a></li> <li>Fix flakes in TestDropUpdates by <a href="https://github.com/evanj"><code>@​evanj</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/334">dgraph-io/ristretto#334</a></li> <li>docs(Cache): document Wait, clarify Get by <a href="https://github.com/evanj"><code>@​evanj</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/333">dgraph-io/ristretto#333</a></li> <li>chore: fix typo error by <a href="https://github.com/proost"><code>@​proost</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/341">dgraph-io/ristretto#341</a></li> <li>fix: support compilation to wasip1 by <a href="https://github.com/achille-roussel"><code>@​achille-roussel</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/344">dgraph-io/ristretto#344</a></li> <li>remove glog dependency by <a href="https://github.com/jhawk28"><code>@​jhawk28</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/350">dgraph-io/ristretto#350</a></li> <li>add config for cleanup ticker duration by <a href="https://github.com/singhvikash11"><code>@​singhvikash11</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/342">dgraph-io/ristretto#342</a></li> <li>fix(OnEvict): Set missing Expiration field on evicted items by <a href="https://github.com/0x1ee7"><code>@​0x1ee7</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/345">dgraph-io/ristretto#345</a></li> <li>uint32 -&gt; uint64 in slice methods by <a href="https://github.com/mocurin"><code>@​mocurin</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/323">dgraph-io/ristretto#323</a></li> <li>fix: cleanupTicker not being stopped by <a href="https://github.com/IlyaFloppy"><code>@​IlyaFloppy</code></a> in <a href="https://redirect.github.com/dgraph-io/ristretto/pull/343">dgraph-io/ristretto#343</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dgraph-io/ristretto/compare/v0.1.1...v0.2.0">https://github.com/dgraph-io/ristretto/compare/v0.1.1...v0.2.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/dgraph-io/ristretto/blob/main/CHANGELOG.md">github.com/dgraph-io/ristretto's changelog</a>.</em></p> <blockquote> <h2>[v0.2.0] - 2024-10-06</h2> <h3>Added</h3> <ul> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/344"><code>fix: support compilation to wasip1 by @​achille-roussel</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/342"><code>add config for cleanup ticker duration by @​singhvikash11</code></a></li> </ul> <h3>Fixed</h3> <ul> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/327"><code>docs(readme): Use new Wait method by @​angadn</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/339"><code>docs: format example on readme by @​rfyiamcool</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/334"><code>Fix flakes in TestDropUpdates by @​evanj</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/333"><code>docs(Cache): document Wait, clarify Get by @​evanj</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/341"><code>chore: fix typo error by @​proost</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/350"><code>remove glog dependency by @​jhawk28</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/345"><code>fix(OnEvict): Set missing Expiration field on evicted items by @​0x1ee7</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/323"><code>uint32 -&gt; uint64 in slice methods by @​mocurin</code></a></li> <li><a href="https://redirect.github.com/dgraph-io/ristretto/pull/343"><code>fix: cleanupTicker not being stopped by @​IlyaFloppy</code></a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dgraph-io/ristretto/compare/v0.1.1...v0.2.0">https://github.com/dgraph-io/ristretto/compare/v0.1.1...v0.2.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dgraph-io/ristretto/commit/185461756714d72b458a7fb6cf9441a96db82dcb"><code>1854617</code></a> minor repo cleanup (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/352">#352</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/91446626cc3b34a596a024bd711f786e74851aeb"><code>9144662</code></a> stop cleanupTicker while closing cache (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/343">#343</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/c00b3525a6a1c4cead9cc26b8d453da4b0e85e52"><code>c00b352</code></a> uint32 to uint64 in slice methods (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/323">#323</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/e6d62cbfa02d3bd4bfd1f50f8d86786dc668ec46"><code>e6d62cb</code></a> chore(ci): separate out coverage report workflow (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/353">#353</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/f0e70276b93a49aa672dd247f4dddfc5f208d07f"><code>f0e7027</code></a> set missing Expiration field on evicted items (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/345">#345</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/e8dc5b0073351c9bf2a0c4ca8567089da049da44"><code>e8dc5b0</code></a> add config for cleanup ticker duration (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/342">#342</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/c5789d66fddc048e40318067bb60cf8395d8a3f8"><code>c5789d6</code></a> update golangci config and cleanup repo (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/351">#351</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/bdcf5e99ac1dcfc086482e8041b79d01167c7590"><code>bdcf5e9</code></a> remove glog dependency (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/350">#350</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/3f6b44a6092c4a0ad1f3ece5db1d54438ddcb39b"><code>3f6b44a</code></a> fix: support compilation to wasip1 (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/344">#344</a>)</li> <li><a href="https://github.com/dgraph-io/ristretto/commit/c73d585ee67e15661e8148de2657f0939b0a63b4"><code>c73d585</code></a> chore: fix typo error (<a href="https://redirect.github.com/dgraph-io/ristretto/issues/341">#341</a>)</li> <li>Additional commits viewable in <a href="https://github.com/dgraph-io/ristretto/compare/v0.1.1...v0.2.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/dgraph-io/ristretto&package-manager=go_modules&previous-version=0.1.1&new-version=0.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-17 21:02:03 +01:00
github.com/dgraph-io/ristretto v0.2.0
Bump github.com/docker/docker from 26.1.0+incompatible to 26.1.5+incompatible (#3466) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 26.1.0+incompatible to 26.1.5+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v26.1.5</h2> <h2>26.1.5</h2> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control. No other changes are included in this release, and this release is otherwise identical for users not using AuthZ plugins.</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v26.1.4...v26.1.5">https://github.com/moby/moby/compare/v26.1.4...v26.1.5</a></p> <h2>v26.1.4</h2> <h2>26.1.4</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A26.1.4">docker/cli, 26.1.4 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A26.1.4">moby/moby, 26.1.4 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v26.1.4/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v26.1.4/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release updates the Go runtime to 1.21.11 which contains security fixes for:</p> <ul> <li><a href="https://redirect.github.com/golang/go/issues/66869">CVE-2024-24789</a></li> <li><a href="https://redirect.github.com/golang/go/issues/67680">CVE-2024-24790</a></li> <li>A symlink time of check to time of use race condition during directory removal reported by Addison Crump (<a href="https://github.com/addisoncrump"><code>@​addisoncrump</code></a>).</li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>Fixed an issue where promoting a node immediately after another node was demoted could cause the promotion to fail. <a href="https://redirect.github.com/moby/moby/pull/47870">moby/moby#47870</a></li> <li>Prevent the daemon log from being spammed with <code>superfluous response.WriteHeader call ...</code> messages.. <a href="https://redirect.github.com/moby/moby/pull/47843">moby/moby#47843</a></li> <li>Don't show empty hints when plugins return an empty hook message. <a href="https://redirect.github.com/docker/cli/pull/5083">docker/cli#5083</a></li> <li>Added <code>ContextType: &quot;moby&quot;</code> to the context list/inspect output to address a compatibility issue with Visual Studio Container Tools. <a href="https://redirect.github.com/docker/cli/pull/5095">docker/cli#5095</a></li> <li>Fix a compatibility issue with Visual Studio Container Tools. <a href="https://redirect.github.com/docker/cli/pull/5095">docker/cli#5095</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.17">v1.7.17</a>. <a href="https://redirect.github.com/moby/moby/pull/47841">moby/moby#47841</a></li> <li><a href="https://redirect.github.com/golang/go/issues/66869">CVE-2024-24789</a>, <a href="https://redirect.github.com/golang/go/issues/67680">CVE-2024-24790</a>: Update Go runtime to 1.21.11. <a href="https://redirect.github.com/moby/moby/pull/47904">moby/moby#47904</a></li> <li>Update Compose to <a href="https://github.com/docker/compose/releases/tag/v2.27.1">v2.27.1</a>. <a href="https://redirect.github.com/docker/docker-ce-packaging/pull/1022">docker/docker-ce-packages#1022</a></li> <li>Update Buildx to <a href="https://github.com/docker/buildx/releases/tag/v0.14.1">v0.14.1</a>. <a href="https://redirect.github.com/docker/docker-ce-packaging/pull/1021">docker/docker-ce-packages#1021</a></li> </ul> <h2>v26.1.3</h2> <h2>26.1.3</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/411e817ddf710ff8e08fa193da80cb78af708191"><code>411e817</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/9cc85eaef15739234909e9c1d4b9915b37bac4ab"><code>9cc85ea</code></a> If url includes scheme, urlPath will drop hostname, which would not match the...</li> <li><a href="https://github.com/moby/moby/commit/820cab90bc2cfc6fadf9bf9f0f460e1f6d07434a"><code>820cab9</code></a> Authz plugin security fixes for 0-length content and path validation</li> <li><a href="https://github.com/moby/moby/commit/6bc49067a6c7647db245d77e0660778c8f61f314"><code>6bc4906</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48123">#48123</a> from vvoland/v26.1-48120</li> <li><a href="https://github.com/moby/moby/commit/6fbdce4b94456b6aad2b83a661bbbbed4dafa583"><code>6fbdce4</code></a> update to go1.21.12</li> <li><a href="https://github.com/moby/moby/commit/f5334644ecc787861fef75c7f6d08756ffe8bbd7"><code>f533464</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/47986">#47986</a> from vvoland/v26.1-47985</li> <li><a href="https://github.com/moby/moby/commit/c1d4587d769bae94305de974fcb97d614fa7b4ef"><code>c1d4587</code></a> builder/mobyexporter: Add missing nil check</li> <li><a href="https://github.com/moby/moby/commit/d6428049a53212ee798fedd90b1328a381492d28"><code>d642804</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/47940">#47940</a> from thaJeztah/26.1_backport_api_remove_container_c...</li> <li><a href="https://github.com/moby/moby/commit/daba2462f545b155011e1f183a85f00a18926181"><code>daba246</code></a> docs: api: image inspect: remove Container and ContainerConfig</li> <li><a href="https://github.com/moby/moby/commit/de5c9cf0b96e4e172b96db54abababa4a328462f"><code>de5c9cf</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/47912">#47912</a> from thaJeztah/26.1_backport_vendor_containerd_1.7.18</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v26.1.0...v26.1.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=26.1.0+incompatible&new-version=26.1.5+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/element-hq/dendrite/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-17 21:42:08 +01:00
github.com/docker/docker v26.1.5+incompatible
Bump github.com/docker/go-connections from 0.4.0 to 0.5.0 (#3465) Bumps [github.com/docker/go-connections](https://github.com/docker/go-connections) from 0.4.0 to 0.5.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/go-connections/commit/fa09c952e3eadbffaf8afc5b8a1667158ba38ace"><code>fa09c95</code></a> Merge pull request <a href="https://redirect.github.com/docker/go-connections/issues/108">#108</a> from thaJeztah/carry_6</li> <li><a href="https://github.com/docker/go-connections/commit/7a67a58690ec00e92abd9fedb3b1b99c95bbbd59"><code>7a67a58</code></a> Swap CloseRead and CloseWrite</li> <li><a href="https://github.com/docker/go-connections/commit/481d3d26b3705da4932f3fb11d3b47a5b5abcb46"><code>481d3d2</code></a> Merge pull request <a href="https://redirect.github.com/docker/go-connections/issues/107">#107</a> from thaJeztah/drop_legacy_go</li> <li><a href="https://github.com/docker/go-connections/commit/9548f9f7bdd4e95eb9d3a20c430517f69f5c62cf"><code>9548f9f</code></a> tlsconfig: remove deprecated io/ioutil</li> <li><a href="https://github.com/docker/go-connections/commit/c564c210e1404800194d27aad617dde3c4f4f831"><code>c564c21</code></a> drop support for go1.17 and older</li> <li><a href="https://github.com/docker/go-connections/commit/7cbebcf931b3107a81a923ce6e1874380c65c436"><code>7cbebcf</code></a> gha: update actions</li> <li><a href="https://github.com/docker/go-connections/commit/2cf423f0ad95e0e87577d9740c647015c00ed8fd"><code>2cf423f</code></a> tlsconfig: move allTLSVersions var</li> <li><a href="https://github.com/docker/go-connections/commit/dca283b66503865dfa3869d7976a925105b82211"><code>dca283b</code></a> tlsconfig: drop support for go1.12 and older</li> <li><a href="https://github.com/docker/go-connections/commit/21876c5afda7f3fe2b7505a72a04eb4a021b64f1"><code>21876c5</code></a> tlsconfig: drop support for go1.6 and older</li> <li><a href="https://github.com/docker/go-connections/commit/4d174dba226cc3a556fa2f158b209f4d54c64281"><code>4d174db</code></a> tlsconfig: drop support for go1.4 and older</li> <li>Additional commits viewable in <a href="https://github.com/docker/go-connections/compare/v0.4.0...v0.5.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/go-connections&package-manager=go_modules&previous-version=0.4.0&new-version=0.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-17 22:00:10 +01:00
github.com/docker/go-connections v0.5.0
Adds support for listening on and connecting to I2P and Onion services securely (#3293) This PR adds 2 `dendrite-demo` main's, each designed expressly to serve a Hidden Service/Overlay network. The first, `dendrite-demo-i2p` add self-configuration for use of dendrite as an I2P hidden service(eepsite) and to connect to I2P services(federate) as an I2P client. It further disables the `dendrite` server from communicating with non-anonymous servers by federation(because I2P does not canonically have the ability to exit, we rely on donors for exit traffic), and enables the use of self-signed TLS certificates([because I2P services are self-authenticating but TLS is still required for other aspects of the system to work reliably](https://tor.stackexchange.com/questions/13887/registering-onion-with-certificate-authority)). This demo turns the system into an "pseudonymous" homeserver which people can connect to using an I2P-enabled Matrix client(I like `cinny` and it's what I tested with). The second, `dendrite-demo-tor` adds self-configuration for the use of dendrite as an Onion service and to connect to other onion services and non-anonymous web sites using Tor to obfuscate it's physical location and providing, optionally, pseudonymity. It also enables the use of self-signed TLS certificates, for the same reason as with I2P, because onion services aren't typically eligible for TLS certificates. It has also been tested with `cinny`. These services are both pseudonymous like myself, not anonymous. I will be meeting members of the element team at the CCC assembly shortly to discuss contributing under my pseudonym. As none of the other `dendrite-demo` have unit tests I did not add them to these checkins. * [*] I have added Go unit tests or [Complement integration tests](https://github.com/matrix-org/complement) for this PR _or_ I have justified why this PR doesn't need tests --------- Co-authored-by: eyedeekay <idk@mulder> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-09-23 13:28:28 -04:00
github.com/eyedeekay/goSam v0.32.54
github.com/eyedeekay/onramp v0.33.8
2023-07-06 10:55:21 +02:00
github.com/getsentry/sentry-go v0.14.0
github.com/gologme/log v1.3.0
2024-04-09 10:24:27 +02:00
github.com/google/go-cmp v0.6.0
Bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible (#3405) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.9+incompatible to 25.0.6+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v25.0.6</h2> <h2>25.0.6</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6">docker/cli, 25.0.6 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6">moby/moby, 25.0.6 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control.</p> <h3>Bug fixes and enhancements</h3> <ul> <li>[25.0] remove erroneous <code>platform</code> from image <code>config</code> OCI descriptor in <code>docker save</code> output. <a href="https://redirect.github.com/moby/moby/pull/47695">moby/moby#47695</a></li> <li>[25.0 backport] Fix a nil dereference when getting image history for images having layers without the <code>Created</code> value set. <a href="https://redirect.github.com/moby/moby/pull/47759">moby/moby#47759</a></li> <li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a href="https://redirect.github.com/moby/moby/pull/47830">moby/moby#47830</a></li> <li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. <a href="https://redirect.github.com/moby/moby/pull/47869">moby/moby#47869</a></li> <li>[25.0 backport] don't depend on containerd platform.Parse to return a typed error. <a href="https://redirect.github.com/moby/moby/pull/47890">moby/moby#47890</a></li> <li>[25.0 backport] builder/mobyexporter: Add missing nil check <a href="https://redirect.github.com/moby/moby/pull/47987">moby/moby#47987</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. <a href="https://redirect.github.com/moby/moby/pull/47724">moby/moby#47724</a></li> <li>Update Go runtime to 1.21.12, which contains security fixes for <a href="https://github.com/advisories/GHSA-hw49-2p59-3mhj">CVE-2024-24791</a> <a href="https://redirect.github.com/moby/moby/pull/48146">moby/moby#48146</a></li> <li>Update Containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.20">v1.7.20</a>. <a href="https://redirect.github.com/moby/moby/pull/48199">moby/moby#48199</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6">https://github.com/moby/moby/compare/v25.0.5...v25.0.6</a></p> <h2>v25.0.5</h2> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li> <p><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></p> </li> <li> <p>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></p> </li> <li> <p>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></p> </li> <li> <p>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/b08a51fe16eed67de3861c03b363ba403643b12e"><code>b08a51f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48231">#48231</a> from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li> <li><a href="https://github.com/moby/moby/commit/d151b0f87f9673f206b477c90db25956e1704ba5"><code>d151b0f</code></a> vendor: OTEL v0.46.1 / v1.21.0</li> <li><a href="https://github.com/moby/moby/commit/c6ba9a5124603357bfc4a64971cbb9708180f06e"><code>c6ba9a5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48225">#48225</a> from austinvazquez/backport-workflow-artifact-reten...</li> <li><a href="https://github.com/moby/moby/commit/4673a3ca2c37ae30270a29c281ccd9477107dcee"><code>4673a3c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48227">#48227</a> from austinvazquez/backport-backport-branch-check-t...</li> <li><a href="https://github.com/moby/moby/commit/30f89081028ce6fb1b49a71c02c156dacbe9aa62"><code>30f8908</code></a> github/ci: Check if backport is opened against the expected branch</li> <li><a href="https://github.com/moby/moby/commit/7454d6a2e672b0b977aaa14463c9aeb53acd06af"><code>7454d6a</code></a> ci: update workflow artifacts retention</li> <li><a href="https://github.com/moby/moby/commit/65cc597cea28cdc25bea3b8a86384b4251872919"><code>65cc597</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/b722836927669b414569c42f096869cd800b59a6"><code>b722836</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48199">#48199</a> from austinvazquez/update-containerd-binary-to-1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e8ecb9c76d97579ebbf3f9d3ef770d08ac303809"><code>e8ecb9c</code></a> update containerd binary to v1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e6cae1f2373d4ff37499570e67f23b2cebb7a043"><code>e6cae1f</code></a> update containerd binary to v1.7.19</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v24.0.9...v25.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=24.0.9+incompatible&new-version=25.0.6+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/matrix-org/dendrite/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-08-02 08:56:24 +02:00
github.com/google/uuid v1.6.0
github.com/gorilla/mux v1.8.0
Bump github.com/gorilla/websocket from 1.5.0 to 1.5.3 (#3455) Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.0 to 1.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gorilla/websocket/releases">github.com/gorilla/websocket's releases</a>.</em></p> <blockquote> <h2>v1.5.3</h2> <h2>Important change</h2> <p>This reverts the websockets package back to <a href="https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d">https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d</a></p> <h2>What's Changed</h2> <ul> <li>Fixes subprotocol selection (aling with rfc6455) by <a href="https://github.com/KSDaemon"><code>@​KSDaemon</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/823">gorilla/websocket#823</a></li> <li>Update README.md, replace master to main by <a href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/862">gorilla/websocket#862</a></li> <li>Use status code constant by <a href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/864">gorilla/websocket#864</a></li> <li>conn.go: default close handler should not return ErrCloseSent. by <a href="https://github.com/pnx"><code>@​pnx</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/865">gorilla/websocket#865</a></li> <li>fix: replace ioutil.readfile with os.readfile by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/868">gorilla/websocket#868</a></li> <li>fix: add comment for the readBufferSize and writeBufferSize by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/869">gorilla/websocket#869</a></li> <li>Remove noisy printf in NextReader() and beginMessage() by <a href="https://github.com/bcreane"><code>@​bcreane</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/878">gorilla/websocket#878</a></li> <li>docs(echoreadall): fix function echoReadAll comment by <a href="https://github.com/XdpCs"><code>@​XdpCs</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/881">gorilla/websocket#881</a></li> <li>make tests parallel by <a href="https://github.com/ninedraft"><code>@​ninedraft</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/872">gorilla/websocket#872</a></li> <li>Upgrader.Upgrade: use http.ResposnseController by <a href="https://github.com/ninedraft"><code>@​ninedraft</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/871">gorilla/websocket#871</a></li> <li>Do not handle network error in <code>SetCloseHandler()</code> by <a href="https://github.com/nak3"><code>@​nak3</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/863">gorilla/websocket#863</a></li> <li>perf: reduce timer in write_control by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/879">gorilla/websocket#879</a></li> <li>fix: lint example code by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/890">gorilla/websocket#890</a></li> <li>feat: format message type by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/889">gorilla/websocket#889</a></li> <li>Remove hideTempErr to allow downstream users to check for errors like net.ErrClosed by <a href="https://github.com/UnAfraid"><code>@​UnAfraid</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/894">gorilla/websocket#894</a></li> <li>Do not timeout when WriteControl deadline is zero in <a href="https://redirect.github.com/gorilla/websocket/pull/898">gorilla/websocket#898</a></li> <li>Excludes errchecks linter by <a href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/904">gorilla/websocket#904</a></li> <li>Return errors instead of printing to logs by <a href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/897">gorilla/websocket#897</a></li> <li>Revert &quot; Update go version &amp; add verification/testing tools (<a href="https://redirect.github.com/gorilla/websocket/issues/840">#840</a>)&quot; by <a href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/908">gorilla/websocket#908</a></li> <li>Fixes broken random value generation by <a href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/926">gorilla/websocket#926</a></li> <li>Reverts back to v1.5.0 by <a href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/929">gorilla/websocket#929</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/KSDaemon"><code>@​KSDaemon</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/823">gorilla/websocket#823</a></li> <li><a href="https://github.com/mstmdev"><code>@​mstmdev</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/862">gorilla/websocket#862</a></li> <li><a href="https://github.com/pnx"><code>@​pnx</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/865">gorilla/websocket#865</a></li> <li><a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/868">gorilla/websocket#868</a></li> <li><a href="https://github.com/bcreane"><code>@​bcreane</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/878">gorilla/websocket#878</a></li> <li><a href="https://github.com/XdpCs"><code>@​XdpCs</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/881">gorilla/websocket#881</a></li> <li><a href="https://github.com/ninedraft"><code>@​ninedraft</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/872">gorilla/websocket#872</a></li> <li><a href="https://github.com/nak3"><code>@​nak3</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/863">gorilla/websocket#863</a></li> <li><a href="https://github.com/UnAfraid"><code>@​UnAfraid</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/894">gorilla/websocket#894</a></li> <li><a href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a> made their first contribution in <a href="https://redirect.github.com/gorilla/websocket/pull/904">gorilla/websocket#904</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3">https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3</a></p> <h2>v1.5.2</h2> <h2>What's Changed</h2> <ul> <li>Fixes subprotocol selection (aling with rfc6455) by <a href="https://github.com/KSDaemon"><code>@​KSDaemon</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/823">gorilla/websocket#823</a></li> <li>Update README.md, replace master to main by <a href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/862">gorilla/websocket#862</a></li> <li>Use status code constant by <a href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/864">gorilla/websocket#864</a></li> <li>conn.go: default close handler should not return ErrCloseSent. by <a href="https://github.com/pnx"><code>@​pnx</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/865">gorilla/websocket#865</a></li> <li>fix: replace ioutil.readfile with os.readfile by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/868">gorilla/websocket#868</a></li> <li>fix: add comment for the readBufferSize and writeBufferSize by <a href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/869">gorilla/websocket#869</a></li> <li>Remove noisy printf in NextReader() and beginMessage() by <a href="https://github.com/bcreane"><code>@​bcreane</code></a> in <a href="https://redirect.github.com/gorilla/websocket/pull/878">gorilla/websocket#878</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gorilla/websocket/commit/ce903f6d1d961af3a8602f2842c8b1c3fca58c4d"><code>ce903f6</code></a> Reverts to v1.5.0</li> <li><a href="https://github.com/gorilla/websocket/commit/9ec25ca502ec881a7e873d3cdf35da60eab22037"><code>9ec25ca</code></a> fixes broken random value generation</li> <li><a href="https://github.com/gorilla/websocket/commit/1bddf2e0dba6f35492b0f5614905b291cd0ab88d"><code>1bddf2e</code></a> bumps go version &amp; removes deprecated module usage</li> <li><a href="https://github.com/gorilla/websocket/commit/750bf92096b4cd4d75082948a4e143f303a65390"><code>750bf92</code></a> adds GHA &amp; Makefile configs</li> <li><a href="https://github.com/gorilla/websocket/commit/b2c246b2ec6f86b53889c79022fec8dabe0a20bb"><code>b2c246b</code></a> Revert &quot; Update go version &amp; add verification/testing tools (<a href="https://redirect.github.com/gorilla/websocket/issues/840">#840</a>)&quot;</li> <li><a href="https://github.com/gorilla/websocket/commit/09a6bab4667fc302c7f23ad770ce48be6fc2d15f"><code>09a6bab</code></a> removing error handling while closing connections</li> <li><a href="https://github.com/gorilla/websocket/commit/58af150309a40ad57463b8087fe33d59d5a490d3"><code>58af150</code></a> return errors instead of printing to logs</li> <li><a href="https://github.com/gorilla/websocket/commit/e5f1a0aad0accdff7dc9131fdcce912e28d8f4d5"><code>e5f1a0a</code></a> excludes errchecks linter</li> <li><a href="https://github.com/gorilla/websocket/commit/b2a86a174473e870c9fcc3eaba8957689090d2cc"><code>b2a86a1</code></a> Do not timeout when WriteControl deadline is zero</li> <li><a href="https://github.com/gorilla/websocket/commit/695e9095ce8736ac99c83939ca6b0fe93768f680"><code>695e909</code></a> Remove hideTempErr to allow downstream users to check for errors like net.Err...</li> <li>Additional commits viewable in <a href="https://github.com/gorilla/websocket/compare/v1.5.0...v1.5.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/gorilla/websocket&package-manager=go_modules&previous-version=1.5.0&new-version=1.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-17 21:44:13 +00:00
github.com/gorilla/websocket v1.5.3
2022-10-14 14:53:53 +01:00
github.com/kardianos/minwinsvc v1.0.2
2023-07-06 09:28:39 +02:00
github.com/lib/pq v1.10.9
github.com/matrix-org/dugong v0.0.0-20210921133753-66e6b1c67e2e
github.com/matrix-org/go-sqlite3-js v0.0.0-20220419092513-28aa791a1c91
github.com/matrix-org/gomatrix v0.0.0-20220926102614-ceba4d9f7530
github.com/matrix-org/gomatrixserverlib v0.0.0-20250116181547-c4f1e01eab0d
github.com/matrix-org/pinecone v0.11.1-0.20230810010612-ea4c33717fd7
github.com/matrix-org/util v0.0.0-20221111132719-399730281e66
github.com/mattn/go-sqlite3 v1.14.24
github.com/nats-io/nats-server/v2 v2.10.25
Bump github.com/nats-io/nats.go from 1.37.0 to 1.38.0 (#3481) Bumps [github.com/nats-io/nats.go](https://github.com/nats-io/nats.go) from 1.37.0 to 1.38.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nats-io/nats.go/releases">github.com/nats-io/nats.go's releases</a>.</em></p> <blockquote> <h2>v1.38.0</h2> <h2>Changelog</h2> <h3>Added</h3> <ul> <li>Core NATS: <ul> <li>Added <code>UserInfoHandler</code> for dynamically setting user/password (<a href="https://redirect.github.com/nats-io/nats.go/issues/1713">#1713</a>)</li> <li>Added <code>PermissionErrOnSubscribe</code> option, causing <code>SubscribeSync</code> to return <code>nats.ErrPermissionViolation</code> on <code>NextMsg()</code> if there was a permission error (<a href="https://redirect.github.com/nats-io/nats.go/issues/1728">#1728</a>)</li> <li>Added <code>Msgs()</code> method on <code>Subscription</code>, returning an iterator (<code>iter.Seq2[*nats.Msg, error]</code>) for the subscription. This method is only available for go version &gt;=1.23 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1728">#1728</a>)</li> </ul> </li> <li>KeyValue:</li> <li>Added <code>WatchFiltered</code> method to watch for updates with multiple filters (<a href="https://redirect.github.com/nats-io/nats.go/issues/1739">#1739</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Core NATS: <ul> <li>Fixed closing connections on max subscriptions exceeded (<a href="https://redirect.github.com/nats-io/nats.go/issues/1709">#1709</a>)</li> <li>Removed redundant nil checks. Thanks <a href="https://github.com/ramonberrutti"><code>@​ramonberrutti</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1751">#1751</a>)</li> <li>Add missing nats prefix to error (<a href="https://redirect.github.com/nats-io/nats.go/issues/1753">#1753</a>)</li> </ul> </li> <li>JetStream: <ul> <li>Fixed <code>PublishAsync</code> not closing done and stall channels after failed retries (<a href="https://redirect.github.com/nats-io/nats.go/issues/1719">#1719</a>)</li> <li>Set valid fetch sequence in ordered consumer's <code>Fetch()</code> and <code>Next()</code> after timeout (<a href="https://redirect.github.com/nats-io/nats.go/issues/1705">#1705</a>)</li> <li>Do not overwrite ordered consumer deliver policy if start time is set (<a href="https://redirect.github.com/nats-io/nats.go/issues/1742">#1742</a>)</li> <li>Fixed race condition in <code>MessageBatch</code> (<a href="https://redirect.github.com/nats-io/nats.go/issues/1743">#1743</a>)</li> </ul> </li> <li>Legacy JetStream: <ul> <li>Fixed race condition in <code>MessageBatch</code> (<a href="https://redirect.github.com/nats-io/nats.go/issues/1743">#1743</a>)</li> </ul> </li> </ul> <h3>Changed</h3> <ul> <li>Legacy Jetstream: <ul> <li>Added client retry for jetstream async publish old API. Thanks <a href="https://github.com/pranavmehta94"><code>@​pranavmehta94</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1695">#1695</a>)</li> </ul> </li> </ul> <h3>Improved</h3> <ul> <li>Moved CI to github actions (<a href="https://redirect.github.com/nats-io/nats.go/issues/1623">#1623</a>, <a href="https://redirect.github.com/nats-io/nats.go/issues/1716">#1716</a>)</li> <li>Use errors.New instead of fmt.Errorf to improve efficiency. Thanks <a href="https://github.com/canack"><code>@​canack</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1707">#1707</a>)</li> <li>Fixed invalid schemas in Service API documentation (<a href="https://redirect.github.com/nats-io/nats.go/issues/1720">#1720</a>)</li> <li>Added mention of TTL reset in <code>kv.Update</code> method. Thanks <a href="https://github.com/fmontorsi-equinix"><code>@​fmontorsi-equinix</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1727">#1727</a>)</li> <li>Updated installation commands in <code>README.md</code> (<a href="https://redirect.github.com/nats-io/nats.go/issues/1745">#1745</a>)</li> <li>Bump <code>nkeys</code> to v0.4.9 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1750">#1750</a>)</li> </ul> <h3>Complete Changes</h3> <p><a href="https://github.com/nats-io/nats.go/compare/v1.37.0...v1.38.0">https://github.com/nats-io/nats.go/compare/v1.37.0...v1.38.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nats-io/nats.go/commit/48391f1b8b390ed4569b5c40f59fcde3e4cf1dc7"><code>48391f1</code></a> Release v1.38.0 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1754">#1754</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/6f4e85afdbd6043b2c239512be0d1353d5d9dd54"><code>6f4e85a</code></a> [FIXED] Add missing nats prefix to error (<a href="https://redirect.github.com/nats-io/nats.go/issues/1753">#1753</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/074c819479bb5fa69def43ebd821f3945ad02758"><code>074c819</code></a> [FIXED] twice respMap nil check (<a href="https://redirect.github.com/nats-io/nats.go/issues/1751">#1751</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/d6eaa84a039e2ff58f1fb278e533b8511d8fa571"><code>d6eaa84</code></a> [ADDED] Creating iterators for sync subscriptions (<a href="https://redirect.github.com/nats-io/nats.go/issues/1728">#1728</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/6bc41598ccf73167d509b8568151ef79128a9283"><code>6bc4159</code></a> [FIXED] Race in MessageBatch (<a href="https://redirect.github.com/nats-io/nats.go/issues/1743">#1743</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/d05f24af9e77a67d583ee8d25e303355b1caf510"><code>d05f24a</code></a> Bump nkeys to 0.4.7 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1750">#1750</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/01fafde03391884a3f425dcf0a8c9cf29189f92e"><code>01fafde</code></a> [IMPROVED] Update installation commands (<a href="https://redirect.github.com/nats-io/nats.go/issues/1745">#1745</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/f563c66855dbcc150ae832ca3f4590ce81f09fda"><code>f563c66</code></a> [FIXED] Do not overwrite ordered consumer deliver policy if start time is set...</li> <li><a href="https://github.com/nats-io/nats.go/commit/e963b776f24fb0166e440842c90b9586b6aba9df"><code>e963b77</code></a> [ADDED] WatchFiltered method on KV (<a href="https://redirect.github.com/nats-io/nats.go/issues/1739">#1739</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/4530ef6abf748afd3b6993a21f8d9ac7f82715c9"><code>4530ef6</code></a> [FIXED] Invalid fetch sequence in ordered consumer Fetch and Next after timeo...</li> <li>Additional commits viewable in <a href="https://github.com/nats-io/nats.go/compare/v1.37.0...v1.38.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/nats-io/nats.go&package-manager=go_modules&previous-version=1.37.0&new-version=1.38.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-16 22:59:19 +01:00
github.com/nats-io/nats.go v1.38.0
github.com/nfnt/resize v0.0.0-20180221191011-83c6a9932646
github.com/opentracing/opentracing-go v1.2.0
github.com/patrickmn/go-cache v2.1.0+incompatible
github.com/pkg/errors v0.9.1
Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.5 (#3495) [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/releases">github.com/prometheus/client_golang's releases</a>.</em></p> <blockquote> <h2>v1.20.5 / 2024-10-15</h2> <p>We decided to revert <a href="https://redirect.github.com/prometheus/client_golang/pull/1424">the <code>testutil</code> change</a> that made our util functions less error-prone, but created a lot of work for our downstream users. Apologies for the pain! This revert should not cause any major breaking change, even if you already did the work--unless you depend on the <a href="https://redirect.github.com/grafana/mimir/pull/9624#issuecomment-2413401565">exact error message</a>.</p> <p>Going forward, we plan to reinforce our release testing strategy <a href="https://redirect.github.com/prometheus/client_golang/issues/1646">[1]</a>,<a href="https://redirect.github.com/prometheus/client_golang/issues/1648">[2]</a> and deliver an enhanced <a href="https://redirect.github.com/prometheus/client_golang/issues/1639"><code>testutil</code> package/module</a> with more flexible and safer APIs.</p> <p>Thanks to <a href="https://github.com/dashpole"><code>@​dashpole</code></a> <a href="https://github.com/dgrisonnet"><code>@​dgrisonnet</code></a> <a href="https://github.com/kakkoyun"><code>@​kakkoyun</code></a> <a href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> <a href="https://github.com/vesari"><code>@​vesari</code></a> <a href="https://github.com/logicalhan"><code>@​logicalhan</code></a> <a href="https://github.com/krajorama"><code>@​krajorama</code></a> <a href="https://github.com/bwplotka"><code>@​bwplotka</code></a> who helped in this patch release! 🤗</p> <h3>Changelog</h3> <p>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a></p> <h2>v1.20.4</h2> <ul> <li>[BUGFIX] histograms: Fix a possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>v1.20.3</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>v1.20.2</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>v1.20.1</h2> <p>This release contains the critical fix for the <a href="https://redirect.github.com/prometheus/client_golang/issues/1584">issue</a>. Thanks to <a href="https://github.com/geberl"><code>@​geberl</code></a>, <a href="https://github.com/CubicrootXYZ"><code>@​CubicrootXYZ</code></a>, <a href="https://github.com/zetaab"><code>@​zetaab</code></a> and <a href="https://github.com/timofurrer"><code>@​timofurrer</code></a> for helping us with the investigation!</p> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>v1.20.0</h2> <p>Thanks everyone for contributions!</p> <p>:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default <code>collectors.NewGoCollector()</code> collector. Given its popular usage, expect your binary to expose two additional metric.</p> <h2>Changes</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collectors: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a></li> </ul> <!-- raw HTML omitted --> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md">github.com/prometheus/client_golang's changelog</a>.</em></p> <blockquote> <h2>1.20.5 / 2024-10-15</h2> <ul> <li>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input.</li> </ul> <h2>1.20.4 / 2024-09-07</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>1.20.3 / 2024-09-05</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>1.20.2 / 2024-08-23</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>1.20.1 / 2024-08-20</h2> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with <code>PedanticRegistry</code> on linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>1.20.0 / 2024-08-14</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collector: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] <strong>breaking</strong> testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a> (reverted in 1.20.5)</li> </ul> <h2>1.19.0 / 2024-02-27</h2> <p>The module <code>prometheus/common v0.48.0</code> introduced an incompatibility when used together with client_golang (See <a href="https://redirect.github.com/prometheus/client_golang/pull/1448">prometheus/client_golang#1448</a> for more details). If your project uses client_golang and you want to use <code>prometheus/common v0.48.0</code> or higher, please update client_golang to v1.19.0.</p> <ul> <li>[CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). <a href="https://redirect.github.com/prometheus/client_golang/issues/1445">#1445</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1449">#1449</a></li> <li>[FEATURE] collectors: Add version collector. <a href="https://redirect.github.com/prometheus/client_golang/issues/1422">#1422</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1427">#1427</a></li> </ul> <h2>1.18.0 / 2023-12-22</h2> <ul> <li>[FEATURE] promlint: Allow creation of custom metric validations. <a href="https://redirect.github.com/prometheus/client_golang/issues/1311">#1311</a></li> <li>[FEATURE] Go programs using client_golang can be built in wasip1 OS. <a href="https://redirect.github.com/prometheus/client_golang/issues/1350">#1350</a></li> <li>[BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. <a href="https://redirect.github.com/prometheus/client_golang/issues/1367">#1367</a></li> <li>[BUGFIX] testutil: Fix comparison of metrics with empty Help strings. <a href="https://redirect.github.com/prometheus/client_golang/issues/1378">#1378</a></li> <li>[ENHANCEMENT] Improved performance of <code>MetricVec.WithLabelValues(...)</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1360">#1360</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/client_golang/commit/48e12a185519fd76b4e514b597483781d9ba4093"><code>48e12a1</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a> from prometheus/cut-1204-pr1424</li> <li><a href="https://github.com/prometheus/client_golang/commit/504ad9bf5c6419449d2cacf8cf8855bfdcfcfc18"><code>504ad9b</code></a> Cut 1.20.5; update comments.</li> <li><a href="https://github.com/prometheus/client_golang/commit/584a7ce3d935e4fdca7b893f5f741d59f3289140"><code>584a7ce</code></a> Revert &quot;testutil compareMetricFamilies: make less error-prone (<a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>)&quot;</li> <li><a href="https://github.com/prometheus/client_golang/commit/05fcde9fe4eb93d3fb7b56ebe51acf80536f0583"><code>05fcde9</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a> from krajorama/data-race-in-histogram-write</li> <li><a href="https://github.com/prometheus/client_golang/commit/209f4c041ed1764866f44dd053a8d94aa051c610"><code>209f4c0</code></a> Add changelog</li> <li><a href="https://github.com/prometheus/client_golang/commit/1e398ccb1259d20836e3003885bdd949cb21e635"><code>1e398cc</code></a> native histogram: Fix race between Write and addExemplar</li> <li><a href="https://github.com/prometheus/client_golang/commit/ef2f87ea986252194ea960187b20b409180044dd"><code>ef2f87e</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1620">#1620</a> from prometheus/arthursens/prepare-1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/937ac63d3d2dda83847f4ca842d62edabce4e743"><code>937ac63</code></a> Add changelog entry for 1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/6e9914db5af255f5def17d54a7ca9c531771f4ca"><code>6e9914d</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a> from krajorama/index-out-of-range-native-histogram-e...</li> <li><a href="https://github.com/prometheus/client_golang/commit/d6b8c8925bd16626cf168e642eb70724b17a0d61"><code>d6b8c89</code></a> Update comments with more explanations</li> <li>Additional commits viewable in <a href="https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/client_golang&package-manager=go_modules&previous-version=1.19.1&new-version=1.20.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip CI]
2025-01-19 09:30:45 +01:00
github.com/prometheus/client_golang v1.20.5
github.com/sirupsen/logrus v1.9.3
Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#3479) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.9.0 to 1.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stretchr/testify/releases">github.com/stretchr/testify's releases</a>.</em></p> <blockquote> <h2>v1.10.0</h2> <h2>What's Changed</h2> <h3>Functional Changes</h3> <ul> <li>Add PanicAssertionFunc by <a href="https://github.com/fahimbagar"><code>@​fahimbagar</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1337">stretchr/testify#1337</a></li> <li>assert: deprecate CompareType by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1566">stretchr/testify#1566</a></li> <li>assert: make YAML dependency pluggable via build tags by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1579">stretchr/testify#1579</a></li> <li>assert: new assertion NotElementsMatch by <a href="https://github.com/hendrywiranto"><code>@​hendrywiranto</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1600">stretchr/testify#1600</a></li> <li>mock: in order mock calls by <a href="https://github.com/ReyOrtiz"><code>@​ReyOrtiz</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1637">stretchr/testify#1637</a></li> <li>Add assertion for NotErrorAs by <a href="https://github.com/palsivertsen"><code>@​palsivertsen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1129">stretchr/testify#1129</a></li> <li>Record Return Arguments of a Call by <a href="https://github.com/jayd3e"><code>@​jayd3e</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1636">stretchr/testify#1636</a></li> <li>assert.EqualExportedValues: accepts everything by <a href="https://github.com/redachl"><code>@​redachl</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1586">stretchr/testify#1586</a></li> </ul> <h3>Fixes</h3> <ul> <li>assert: make tHelper a type alias by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1562">stretchr/testify#1562</a></li> <li>Do not get argument again unnecessarily in Arguments.Error() by <a href="https://github.com/TomWright"><code>@​TomWright</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/820">stretchr/testify#820</a></li> <li>Fix time.Time compare by <a href="https://github.com/myxo"><code>@​myxo</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1582">stretchr/testify#1582</a></li> <li>assert.Regexp: handle []byte array properly by <a href="https://github.com/kevinburkesegment"><code>@​kevinburkesegment</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1587">stretchr/testify#1587</a></li> <li>assert: collect.FailNow() should not panic by <a href="https://github.com/marshall-lee"><code>@​marshall-lee</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1481">stretchr/testify#1481</a></li> <li>mock: simplify implementation of FunctionalOptions by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1571">stretchr/testify#1571</a></li> <li>mock: caller information for unexpected method call by <a href="https://github.com/spirin"><code>@​spirin</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1644">stretchr/testify#1644</a></li> <li>suite: fix test failures by <a href="https://github.com/stevenh"><code>@​stevenh</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1421">stretchr/testify#1421</a></li> <li>Fix issue <a href="https://redirect.github.com/stretchr/testify/issues/1662">#1662</a> (comparing infs should fail) by <a href="https://github.com/ybrustin"><code>@​ybrustin</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1663">stretchr/testify#1663</a></li> <li>NotSame should fail if args are not pointers <a href="https://redirect.github.com/stretchr/testify/issues/1661">#1661</a> by <a href="https://github.com/sikehish"><code>@​sikehish</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1664">stretchr/testify#1664</a></li> <li>Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by <a href="https://github.com/sikehish"><code>@​sikehish</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1667">stretchr/testify#1667</a></li> <li>fix: compare functional option names for indirect calls by <a href="https://github.com/arjun-1"><code>@​arjun-1</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1626">stretchr/testify#1626</a></li> </ul> <h3>Documantation, Build &amp; CI</h3> <ul> <li>.gitignore: ignore &quot;go test -c&quot; binaries by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1565">stretchr/testify#1565</a></li> <li>mock: improve doc by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1570">stretchr/testify#1570</a></li> <li>mock: fix FunctionalOptions docs by <a href="https://github.com/snirye"><code>@​snirye</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1433">stretchr/testify#1433</a></li> <li>README: link out to the excellent testifylint by <a href="https://github.com/brackendawson"><code>@​brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1568">stretchr/testify#1568</a></li> <li>assert: fix typo in comment by <a href="https://github.com/JohnEndson"><code>@​JohnEndson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1580">stretchr/testify#1580</a></li> <li>Correct the EventuallyWithT and EventuallyWithTf example by <a href="https://github.com/JonCrowther"><code>@​JonCrowther</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1588">stretchr/testify#1588</a></li> <li>CI: bump softprops/action-gh-release from 1 to 2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1575">stretchr/testify#1575</a></li> <li>mock: document more alternatives to deprecated AnythingOfTypeArgument by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1569">stretchr/testify#1569</a></li> <li>assert: Correctly document EqualValues behavior by <a href="https://github.com/brackendawson"><code>@​brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1593">stretchr/testify#1593</a></li> <li>fix: grammar in godoc by <a href="https://github.com/miparnisari"><code>@​miparnisari</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1607">stretchr/testify#1607</a></li> <li>.github/workflows: Run tests for Go 1.22 by <a href="https://github.com/HaraldNordgren"><code>@​HaraldNordgren</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1629">stretchr/testify#1629</a></li> <li>Document suite's lack of support for t.Parallel by <a href="https://github.com/brackendawson"><code>@​brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1645">stretchr/testify#1645</a></li> <li>assert: fix typos in comments by <a href="https://github.com/alexandear"><code>@​alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1650">stretchr/testify#1650</a></li> <li>mock: fix doc comment for NotBefore by <a href="https://github.com/alexandear"><code>@​alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1651">stretchr/testify#1651</a></li> <li>Generate better comments for require package by <a href="https://github.com/Neokil"><code>@​Neokil</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1610">stretchr/testify#1610</a></li> <li>README: replace Testify V2 notice with <a href="https://github.com/dolmen"><code>@​dolmen</code></a>'s V2 manifesto by <a href="https://github.com/hendrywiranto"><code>@​hendrywiranto</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1518">stretchr/testify#1518</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/fahimbagar"><code>@​fahimbagar</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1337">stretchr/testify#1337</a></li> <li><a href="https://github.com/TomWright"><code>@​TomWright</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/820">stretchr/testify#820</a></li> <li><a href="https://github.com/snirye"><code>@​snirye</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1433">stretchr/testify#1433</a></li> <li><a href="https://github.com/myxo"><code>@​myxo</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1582">stretchr/testify#1582</a></li> <li><a href="https://github.com/JohnEndson"><code>@​JohnEndson</code></a> made their first contribution in <a href="https://redirect.github.com/stretchr/testify/pull/1580">stretchr/testify#1580</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/stretchr/testify/commit/89cbdd9e7b39eb58896d316a7495597d3aba4371"><code>89cbdd9</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1626">#1626</a> from arjun-1/fix-functional-options-diff-indirect-calls</li> <li><a href="https://github.com/stretchr/testify/commit/07bac606be2191ae89a281195e58d01e0de7b5f8"><code>07bac60</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1667">#1667</a> from sikehish/flaky</li> <li><a href="https://github.com/stretchr/testify/commit/716de8dff46ed7ae3c6ebb7a6124db741ba7c018"><code>716de8d</code></a> Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI</li> <li><a href="https://github.com/stretchr/testify/commit/118fb8346630c192421c8914848381af9d4412a7"><code>118fb83</code></a> NotSame should fail if args are not pointers <a href="https://redirect.github.com/stretchr/testify/issues/1661">#1661</a> (<a href="https://redirect.github.com/stretchr/testify/issues/1664">#1664</a>)</li> <li><a href="https://github.com/stretchr/testify/commit/7d99b2b43d8f60a8982a78cde6e8bd287dea5da0"><code>7d99b2b</code></a> attempt 2</li> <li><a href="https://github.com/stretchr/testify/commit/05f87c016035811e6d8371f1887ec360c318f53f"><code>05f87c0</code></a> more similar</li> <li><a href="https://github.com/stretchr/testify/commit/ea7129e00694592e20cb34c58a6b8a251418b9da"><code>ea7129e</code></a> better fmt</li> <li><a href="https://github.com/stretchr/testify/commit/a1b9c9efe3c25c50678b1e492045164b914e255f"><code>a1b9c9e</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1663">#1663</a> from ybrustin/master</li> <li><a href="https://github.com/stretchr/testify/commit/8302de98b17649445fc1f1992fc3fecdb40c59ba"><code>8302de9</code></a> Merge branch 'master' into master</li> <li><a href="https://github.com/stretchr/testify/commit/89352f7958086841c72425ccd6f43ab299e1309c"><code>89352f7</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1518">#1518</a> from hendrywiranto/adjust-readme-remove-v2</li> <li>Additional commits viewable in <a href="https://github.com/stretchr/testify/compare/v1.9.0...v1.10.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/stretchr/testify&package-manager=go_modules&previous-version=1.9.0&new-version=1.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip CI]
2025-01-19 09:29:00 +01:00
github.com/stretchr/testify v1.10.0
github.com/tidwall/gjson v1.18.0
github.com/tidwall/sjson v1.2.5
github.com/uber/jaeger-client-go v2.30.0+incompatible
2021-08-03 11:15:17 +01:00
github.com/uber/jaeger-lib v2.4.1+incompatible
Bump github.com/yggdrasil-network/yggdrasil-go from 0.5.11 to 0.5.12 (#3505) Bumps [github.com/yggdrasil-network/yggdrasil-go](https://github.com/yggdrasil-network/yggdrasil-go) from 0.5.11 to 0.5.12. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/yggdrasil-network/yggdrasil-go/releases">github.com/yggdrasil-network/yggdrasil-go's releases</a>.</em></p> <blockquote> <h2>Version 0.5.12</h2> <ul> <li>Go 1.22 is now required to build Yggdrasil</li> </ul> <h3>Changed</h3> <ul> <li>The <code>latency_ms</code> field in the admin socket <code>getPeers</code> response has been renamed to <code>latency</code></li> </ul> <h3>Fixed</h3> <ul> <li>A timing regression which causes a higher level of idle protocol traffic on each peering has been fixed</li> <li>The <code>-user</code> flag now correctly detects an empty user/group specification</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yggdrasil-network/yggdrasil-go/blob/develop/CHANGELOG.md">github.com/yggdrasil-network/yggdrasil-go's changelog</a>.</em></p> <blockquote> <h2>[0.5.12] - 2024-12-18</h2> <ul> <li>Go 1.22 is now required to build Yggdrasil</li> </ul> <h3>Changed</h3> <ul> <li>The <code>latency_ms</code> field in the admin socket <code>getPeers</code> response has been renamed to <code>latency</code></li> </ul> <h3>Fixed</h3> <ul> <li>A timing regression which causes a higher level of idle protocol traffic on each peering has been fixed</li> <li>The <code>-user</code> flag now correctly detects an empty user/group specification</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/213f72b8403ff55a5e38a0fa7d1cd0a093ac4666"><code>213f72b</code></a> Yggdrasil 0.5.12</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/1fbcf3b3c2014f128575af0b4381c592536bc90b"><code>1fbcf3b</code></a> Rename <code>latency_ms</code> to <code>latency</code> in <code>getPeers</code> response since it isn't even m...</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/22bc9c44e286568e423305fc67c8f890a351b6a1"><code>22bc9c4</code></a> genkeys print the number of generated keys (<a href="https://redirect.github.com/yggdrasil-network/yggdrasil-go/issues/1217">#1217</a>)</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/9c73bacab90806d913df1ef2b6d79b5ebeb0f98b"><code>9c73bac</code></a> Update to Go 1.22, quic-go/quic-go@v0.48.2 (<a href="https://redirect.github.com/yggdrasil-network/yggdrasil-go/issues/1218">#1218</a>)</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/04be129878a68d7bbd2fcf2444f1f17b0c52aa36"><code>04be129</code></a> Update to Arceliar/ironwood@743fe2f</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/657f7e0db38e9375a75e8a88bac5ba6e3f02537f"><code>657f7e0</code></a> Fix empty user/group detection on <code>chuser</code></li> <li>See full diff in <a href="https://github.com/yggdrasil-network/yggdrasil-go/compare/v0.5.11...v0.5.12">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/yggdrasil-network/yggdrasil-go&package-manager=go_modules&previous-version=0.5.11&new-version=0.5.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 20:48:47 +00:00
github.com/yggdrasil-network/yggdrasil-go v0.5.12
github.com/yggdrasil-network/yggquic v0.0.0-20241212194307-0d495106021f
2024-04-09 10:24:27 +02:00
go.uber.org/atomic v1.11.0
golang.org/x/crypto v0.32.0
golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
Bump golang.org/x/image from 0.18.0 to 0.23.0 (#3518) Bumps [golang.org/x/image](https://github.com/golang/image) from 0.18.0 to 0.23.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/image/commit/941f2100a0c205b9588e6c977c6acd0fd1f6a094"><code>941f210</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/image/commit/3724ab8af5c31f982e13765ba3707ffe5c463e64"><code>3724ab8</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/image/commit/ec562a8fd9463c138a07d623022ebb0e099f47c5"><code>ec562a8</code></a> README: don't recommend go get</li> <li><a href="https://github.com/golang/image/commit/931781a504d8accf27aaa5863e135f8b960b3aac"><code>931781a</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/image/commit/c82123aa1384ef5797de16b8c67017758ebaaac6"><code>c82123a</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/image/commit/59aa0406c4e8c388bad00a974aa256f21c4937a4"><code>59aa040</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/image/commit/8bfd4fda7549373b6c3ac280a8c62a7857fee133"><code>8bfd4fd</code></a> colornames: update link to SVG spec</li> <li><a href="https://github.com/golang/image/commit/bad7eb85590e3a472330709c65b0991f592da5f8"><code>bad7eb8</code></a> LICENSE: update per Google Legal</li> <li><a href="https://github.com/golang/image/commit/9abbe108cb423f16627b1c32403aa8a2b9a8c633"><code>9abbe10</code></a> draw: avoid FMA (Fused Multiply Add)</li> <li>See full diff in <a href="https://github.com/golang/image/compare/v0.18.0...v0.23.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/image&package-manager=go_modules&previous-version=0.18.0&new-version=0.23.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-29 19:38:10 +01:00
golang.org/x/image v0.23.0
2024-08-03 20:26:28 +02:00
golang.org/x/mobile v0.0.0-20240520174638-fa72addaaa1b
golang.org/x/sync v0.10.0
golang.org/x/term v0.28.0
2021-03-03 11:08:41 +00:00
gopkg.in/yaml.v2 v2.4.0
Bump gotest.tools/v3 from 3.4.0 to 3.5.1 (#3478) Bumps [gotest.tools/v3](https://github.com/gotestyourself/gotest.tools) from 3.4.0 to 3.5.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gotestyourself/gotest.tools/releases">gotest.tools/v3's releases</a>.</em></p> <blockquote> <h2>v3.5.1</h2> <h2>What's Changed</h2> <ul> <li>Make assert and golden packages compatible with other golden packages by <a href="https://github.com/dnephin"><code>@​dnephin</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/271">gotestyourself/gotest.tools#271</a></li> <li>Also remove cr from file by <a href="https://github.com/filintod"><code>@​filintod</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/273">gotestyourself/gotest.tools#273</a></li> <li>fs: add go doc links by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/275">gotestyourself/gotest.tools#275</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/filintod"><code>@​filintod</code></a> made their first contribution in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/273">gotestyourself/gotest.tools#273</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gotestyourself/gotest.tools/compare/v3.5.0...v3.5.1">https://github.com/gotestyourself/gotest.tools/compare/v3.5.0...v3.5.1</a></p> <h2>v3.5.0</h2> <h2>What's Changed</h2> <ul> <li>go.mod: update dependencies and go version by <a href="https://github.com/thaJeztah"><code>@​thaJeztah</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/248">gotestyourself/gotest.tools#248</a></li> <li>Use Go1.20 by <a href="https://github.com/dnephin"><code>@​dnephin</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/252">gotestyourself/gotest.tools#252</a></li> <li>Fix couple of typos by <a href="https://github.com/wallyqs"><code>@​wallyqs</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/253">gotestyourself/gotest.tools#253</a></li> <li>Added WithStdout and WithStderr helpers by <a href="https://github.com/ericfialkowski"><code>@​ericfialkowski</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/258">gotestyourself/gotest.tools#258</a></li> <li>Moved cmdOperators handling from RunCmd to StartCmd by <a href="https://github.com/ericfialkowski"><code>@​ericfialkowski</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/259">gotestyourself/gotest.tools#259</a></li> <li>Deprecate assert.ErrorType by <a href="https://github.com/dnephin"><code>@​dnephin</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/254">gotestyourself/gotest.tools#254</a></li> <li>Remove outdated Dockerfile by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/261">gotestyourself/gotest.tools#261</a></li> <li>env: add godoc links by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/263">gotestyourself/gotest.tools#263</a></li> <li>poll: add godoc links by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/264">gotestyourself/gotest.tools#264</a></li> <li>doc: add godoc links by <a href="https://github.com/dolmen"><code>@​dolmen</code></a> in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/262">gotestyourself/gotest.tools#262</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/wallyqs"><code>@​wallyqs</code></a> made their first contribution in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/253">gotestyourself/gotest.tools#253</a></li> <li><a href="https://github.com/ericfialkowski"><code>@​ericfialkowski</code></a> made their first contribution in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/258">gotestyourself/gotest.tools#258</a></li> <li><a href="https://github.com/dolmen"><code>@​dolmen</code></a> made their first contribution in <a href="https://redirect.github.com/gotestyourself/gotest.tools/pull/261">gotestyourself/gotest.tools#261</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gotestyourself/gotest.tools/compare/v3.4.0...v3.5.0">https://github.com/gotestyourself/gotest.tools/compare/v3.4.0...v3.5.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/81cea1abc596b025bf2573c7fdf97740512e4c6c"><code>81cea1a</code></a> Merge pull request <a href="https://redirect.github.com/gotestyourself/gotest.tools/issues/275">#275</a> from gotestyourself/fs-add-godoc-links</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/9af8f4ed6e74f570f8f47381e9676789ab646bb7"><code>9af8f4e</code></a> fs: add go doc links</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/2891300d35b0550e72cea231bd3d5d9d7121d071"><code>2891300</code></a> Merge pull request <a href="https://redirect.github.com/gotestyourself/gotest.tools/issues/273">#273</a> from filintod/also-remove-cr-from-file</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/4ed73505b62d9169e98ac0840717baa898cb1467"><code>4ed7350</code></a> fix lint line length</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/73064285756374ef240acaff95785481f33def25"><code>7306428</code></a> rebase/fix only doc</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/e15fa271c80375c3d4306e3dd372ee5d63bed4ef"><code>e15fa27</code></a> Merge pull request <a href="https://redirect.github.com/gotestyourself/gotest.tools/issues/271">#271</a> from dnephin/gate-update-flag</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/56c31231b2ff5ed38ba0b82dec25f0a3e638497d"><code>56c3123</code></a> Make assert and golden compatible with other golden packages</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/a80f057529047c44e1a85d0d017b200787e537e0"><code>a80f057</code></a> Merge pull request <a href="https://redirect.github.com/gotestyourself/gotest.tools/issues/262">#262</a> from dolmen-go/add-godoc-links</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/684bd43c4231346326d372631943ca42e58b80d1"><code>684bd43</code></a> Merge pull request <a href="https://redirect.github.com/gotestyourself/gotest.tools/issues/264">#264</a> from dolmen-go/poll-add-godoc-links</li> <li><a href="https://github.com/gotestyourself/gotest.tools/commit/e2be4be0f7eabb5320f5aba2a18335238551150e"><code>e2be4be</code></a> Merge pull request <a href="https://redirect.github.com/gotestyourself/gotest.tools/issues/263">#263</a> from dolmen-go/env-add-godoc-links</li> <li>Additional commits viewable in <a href="https://github.com/gotestyourself/gotest.tools/compare/v3.4.0...v3.5.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gotest.tools/v3&package-manager=go_modules&previous-version=3.4.0&new-version=3.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip CI]
2025-01-19 09:35:22 +01:00
gotest.tools/v3 v3.5.1
maunium.net/go/mautrix v0.15.1
Bump modernc.org/sqlite from 1.34.2 to 1.34.5 (#3500) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.34.2 to 1.34.5. <details> <summary>Commits</summary> <ul> <li><a href="https://gitlab.com/cznic/sqlite/commit/15818ab7fe22935c740f0bf5069901a1314799d0"><code>15818ab</code></a> move the vendor tool into a separate module, updates gc#3</li> <li><a href="https://gitlab.com/cznic/sqlite/commit/d3e8a664e8b51225de529ad17338007b5f16c5df"><code>d3e8a66</code></a> retract v1.34.3</li> <li><a href="https://gitlab.com/cznic/sqlite/commit/1fcc86e9d6e8d65d4928c1575b3d4cbdcb0fc70c"><code>1fcc86e</code></a> fix accidentaly broken openbsd/amd64 build</li> <li><a href="https://gitlab.com/cznic/sqlite/commit/7f15e6eb45fa87fd65c5817b56d449a3b80a1d24"><code>7f15e6e</code></a> linux/arm64: patch libc bug at runtime, updates <a href="https://gitlab.com/cznic/sqlite/issues/199">#199</a></li> <li>See full diff in <a href="https://gitlab.com/cznic/sqlite/compare/v1.34.2...v1.34.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=modernc.org/sqlite&package-manager=go_modules&previous-version=1.34.2&new-version=1.34.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-16 23:22:19 +01:00
modernc.org/sqlite v1.34.5
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
)
require (
Bump github.com/yggdrasil-network/yggdrasil-go from 0.5.11 to 0.5.12 (#3505) Bumps [github.com/yggdrasil-network/yggdrasil-go](https://github.com/yggdrasil-network/yggdrasil-go) from 0.5.11 to 0.5.12. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/yggdrasil-network/yggdrasil-go/releases">github.com/yggdrasil-network/yggdrasil-go's releases</a>.</em></p> <blockquote> <h2>Version 0.5.12</h2> <ul> <li>Go 1.22 is now required to build Yggdrasil</li> </ul> <h3>Changed</h3> <ul> <li>The <code>latency_ms</code> field in the admin socket <code>getPeers</code> response has been renamed to <code>latency</code></li> </ul> <h3>Fixed</h3> <ul> <li>A timing regression which causes a higher level of idle protocol traffic on each peering has been fixed</li> <li>The <code>-user</code> flag now correctly detects an empty user/group specification</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yggdrasil-network/yggdrasil-go/blob/develop/CHANGELOG.md">github.com/yggdrasil-network/yggdrasil-go's changelog</a>.</em></p> <blockquote> <h2>[0.5.12] - 2024-12-18</h2> <ul> <li>Go 1.22 is now required to build Yggdrasil</li> </ul> <h3>Changed</h3> <ul> <li>The <code>latency_ms</code> field in the admin socket <code>getPeers</code> response has been renamed to <code>latency</code></li> </ul> <h3>Fixed</h3> <ul> <li>A timing regression which causes a higher level of idle protocol traffic on each peering has been fixed</li> <li>The <code>-user</code> flag now correctly detects an empty user/group specification</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/213f72b8403ff55a5e38a0fa7d1cd0a093ac4666"><code>213f72b</code></a> Yggdrasil 0.5.12</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/1fbcf3b3c2014f128575af0b4381c592536bc90b"><code>1fbcf3b</code></a> Rename <code>latency_ms</code> to <code>latency</code> in <code>getPeers</code> response since it isn't even m...</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/22bc9c44e286568e423305fc67c8f890a351b6a1"><code>22bc9c4</code></a> genkeys print the number of generated keys (<a href="https://redirect.github.com/yggdrasil-network/yggdrasil-go/issues/1217">#1217</a>)</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/9c73bacab90806d913df1ef2b6d79b5ebeb0f98b"><code>9c73bac</code></a> Update to Go 1.22, quic-go/quic-go@v0.48.2 (<a href="https://redirect.github.com/yggdrasil-network/yggdrasil-go/issues/1218">#1218</a>)</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/04be129878a68d7bbd2fcf2444f1f17b0c52aa36"><code>04be129</code></a> Update to Arceliar/ironwood@743fe2f</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/657f7e0db38e9375a75e8a88bac5ba6e3f02537f"><code>657f7e0</code></a> Fix empty user/group detection on <code>chuser</code></li> <li>See full diff in <a href="https://github.com/yggdrasil-network/yggdrasil-go/compare/v0.5.11...v0.5.12">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/yggdrasil-network/yggdrasil-go&package-manager=go_modules&previous-version=0.5.11&new-version=0.5.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 20:48:47 +00:00
github.com/Arceliar/ironwood v0.0.0-20241213013129-743fe2fccbd3 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/HdrHistogram/hdrhistogram-go v1.1.2 // indirect
github.com/Microsoft/go-winio v0.5.2 // indirect
Bump github.com/blevesearch/bleve/v2 from 2.4.0 to 2.4.4 (#3506) Bumps [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) from 2.4.0 to 2.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blevesearch/bleve/releases">github.com/blevesearch/bleve/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.4</h2> <h5>Bug Fixes</h5> <ul> <li>Identified root cause for <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a> to be recycling of TermFieldReaders that was causing illegal/incorrect access of several in-memory structures in certain scenarios. We've gone ahead and disabled this feature with <a href="https://redirect.github.com/blevesearch/bleve/pull/2117">blevesearch/bleve#2117</a> + <a href="https://redirect.github.com/blevesearch/bleve/pull/2121">blevesearch/bleve#2121</a> . Will work towards re-enabling in the near future once we've ironed out the several associated wrinkles.</li> <li>Introduced a guard rail with <a href="https://redirect.github.com/blevesearch/zapx/pull/282">blevesearch/zapx#282</a> while performing vector search queries with pre-filtering to avoid hitting a panic when qualified docs do not hold valid vector fields.</li> <li>Fixed an issue while applying <code>ivf_max_codes_pct</code> in vector search requests involving pre-filtering which can cause reduction in recall - <a href="https://redirect.github.com/blevesearch/go-faiss/pull/40">blevesearch/go-faiss#40</a></li> </ul> <p>Vector search continues to require same version of <code>faiss</code> dynamic library (as with <a href="https://github.com/blevesearch/bleve/releases/tag/v2.4.3">v2.4.3</a>) to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></p> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/25">v2.4.4</a></li> </ul> <h2>v2.4.3</h2> <h5>Bug Fixes</h5> <ul> <li>Address a corner case with <code>ivf_nprobe_pct</code> query parameter (<a href="https://redirect.github.com/blevesearch/go-faiss/pull/34">blevesearch/go-faiss#34</a>)</li> <li>Several guard rails put in place to avoid array-out-of-bounds-access and divide-by-zero errors: (<a href="https://redirect.github.com/blevesearch/zapx/pull/263">blevesearch/zapx#263</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/270">blevesearch/zapx#270</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/271">blevesearch/zapx#271</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/273">blevesearch/zapx#273</a>) to overcome <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a></li> <li>Handling early exits/optimization for boolean queries (<a href="https://redirect.github.com/blevesearch/bleve/pull/2065">blevesearch/bleve#2065</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires <code>faiss</code> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></li> <li>Support for cosine similarity distance metric to normalize vectors before indexing/querying for nearest neighbor search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2051">blevesearch/bleve#2051</a>)</li> <li>Support for <a href="https://github.com/blevesearch/bleve/blob/v2.4.3/docs/vectors.md#querying-with-filters-v243">selectivity filters</a> as a pre-cursor to vector search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2063">blevesearch/bleve#2063</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/23">v2.4.3</a></li> </ul> <h2>v2.4.2</h2> <h5>Bug Fixes</h5> <ul> <li>Set <code>MaxSegmentFileSize</code> for force merge when <code>SingleSegmentMergePlanOptions</code> goes into use (<a href="https://redirect.github.com/blevesearch/bleve/issues/2050">#2050</a>)</li> <li>Protect code against any bolt failures (<a href="https://redirect.github.com/blevesearch/bleve/issues/2043">#2043</a>)</li> <li>Fix size estimation for various field types (<a href="https://redirect.github.com/blevesearch/bleve/issues/2052">#2052</a>)</li> <li>Address an out-of-bounds panic that could occur with zapx/v16 in the event of a single non-vector field (<a href="https://redirect.github.com/blevesearch/bleve/issues/2058">#2058</a>) <ul> <li><a href="https://redirect.github.com/blevesearch/zapx/pull/252">blevesearch/zapx#252</a></li> </ul> </li> </ul> <h5>Improvements</h5> <ul> <li>Support new search params for vector search queries - [<code>ivf_probe_pct</code>, <code>ivf_max_codes_pct</code>] (<a href="https://redirect.github.com/blevesearch/bleve/issues/2049">#2049</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/22">v2.4.2</a></li> </ul> <h2>v2.4.1</h2> <h5>Bug Fixes</h5> <ul> <li>Addressed a bug where <code>ClientContextID</code> was missing from SearchRequest when library used with <code>vectors</code> (<a href="https://redirect.github.com/blevesearch/bleve/pull/2014">blevesearch/bleve#2014</a>)</li> <li>Fix to a memory leak in vector query path (<a href="https://redirect.github.com/blevesearch/bleve/pull/2023">blevesearch/bleve#2023</a>)</li> <li>Fix to issue <a href="https://redirect.github.com/blevesearch/bleve/issues/2027">blevesearch/bleve#2027</a>, error in parsing a certain datetime syntax (<a href="https://redirect.github.com/blevesearch/bleve/pull/2030">blevesearch/bleve#2030</a>)</li> <li>Fix that mitigates a race between persister's stale segment removal and index copy operations (<a href="https://redirect.github.com/blevesearch/bleve/pull/2032">blevesearch/bleve#2032</a>)</li> <li>Nested field mapping determination was broken (<a href="https://redirect.github.com/blevesearch/bleve/pull/2031">blevesearch/bleve#2031</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires the <em>faiss</em> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/d9db66a38518d99eb334218697e1df0732f3fdf8">blevesearch/faiss@d9db66a</a></li> <li>Support for new data type - <code>vector_base64</code> which allows for interpreting vector float32s encoded as base64 following littleEndian byte ordering (<a href="https://redirect.github.com/blevesearch/bleve/pull/2012">blevesearch/bleve#2012</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blevesearch/bleve/commit/137a21665e10013ca7ea285d59c22b8d85313e17"><code>137a216</code></a> MB-64513: Upgrade blevesearch/go-faiss, zapx/v16 for fix (<a href="https://redirect.github.com/blevesearch/bleve/issues/2123">#2123</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/5c53634221cd2b2c8a129f489f74ca315c3ae3a1"><code>5c53634</code></a> MB-64604: Remove unnecessary second map lookup (<a href="https://redirect.github.com/blevesearch/bleve/issues/2121">#2121</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/78cf78999e64fe8b257f215a4087b223cd8d210a"><code>78cf789</code></a> MB-64604: Fix interpreting scorch config: &quot;fieldTFRCacheThreshold&quot; (<a href="https://redirect.github.com/blevesearch/bleve/issues/2117">#2117</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/7d627b9f2d8cda7af90bb1153fd0669ff0cace5e"><code>7d627b9</code></a> MB-64360 - Upgrade zapx v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2107">#2107</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/e72f7c2f22de1d4887b30571fb65f8b3bb408d6b"><code>e72f7c2</code></a> MB-62230 - Pre-filtering Optimisation (<a href="https://redirect.github.com/blevesearch/bleve/issues/2098">#2098</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/902051d4d4714d3b096be55302fc3388e0285ff2"><code>902051d</code></a> MB-62230, MB-63992: Upgrade zapx/v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2095">#2095</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/cb1810f0d3c900edfc8e9c20dce4c21041b4db4d"><code>cb1810f</code></a> MB-63334: Fix race condition in NormalizeVector (<a href="https://redirect.github.com/blevesearch/bleve/issues/2094">#2094</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/bed244cefd701f30cb23d48816e5a76bbe6da478"><code>bed244c</code></a> MB-57871: Upgrade zapx v15 and v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2092">#2092</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/ab10172e2c1da8ae320603a602536b3e5d21075a"><code>ab10172</code></a> MB-57871, MB-62230: Upgrade to zapx/v16@v16.1.7 + go-faiss@v1.0.23 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2088">#2088</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/02d37a4fbc6b77d2a8ea0591db51c64649a236ef"><code>02d37a4</code></a> MB-57871: Upgrade zapx/v16 and zapx/v15 for fixes (<a href="https://redirect.github.com/blevesearch/bleve/issues/2091">#2091</a>)</li> <li>Additional commits viewable in <a href="https://github.com/blevesearch/bleve/compare/v2.4.0...v2.4.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/blevesearch/bleve/v2&package-manager=go_modules&previous-version=2.4.0&new-version=2.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 19:10:21 +00:00
github.com/RoaringBitmap/roaring v1.9.3 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/beorn7/perks v1.0.1 // indirect
2024-08-03 20:26:28 +02:00
github.com/bits-and-blooms/bitset v1.13.0 // indirect
github.com/bits-and-blooms/bloom/v3 v3.7.0 // indirect
Bump github.com/blevesearch/bleve/v2 from 2.4.0 to 2.4.4 (#3506) Bumps [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) from 2.4.0 to 2.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blevesearch/bleve/releases">github.com/blevesearch/bleve/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.4</h2> <h5>Bug Fixes</h5> <ul> <li>Identified root cause for <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a> to be recycling of TermFieldReaders that was causing illegal/incorrect access of several in-memory structures in certain scenarios. We've gone ahead and disabled this feature with <a href="https://redirect.github.com/blevesearch/bleve/pull/2117">blevesearch/bleve#2117</a> + <a href="https://redirect.github.com/blevesearch/bleve/pull/2121">blevesearch/bleve#2121</a> . Will work towards re-enabling in the near future once we've ironed out the several associated wrinkles.</li> <li>Introduced a guard rail with <a href="https://redirect.github.com/blevesearch/zapx/pull/282">blevesearch/zapx#282</a> while performing vector search queries with pre-filtering to avoid hitting a panic when qualified docs do not hold valid vector fields.</li> <li>Fixed an issue while applying <code>ivf_max_codes_pct</code> in vector search requests involving pre-filtering which can cause reduction in recall - <a href="https://redirect.github.com/blevesearch/go-faiss/pull/40">blevesearch/go-faiss#40</a></li> </ul> <p>Vector search continues to require same version of <code>faiss</code> dynamic library (as with <a href="https://github.com/blevesearch/bleve/releases/tag/v2.4.3">v2.4.3</a>) to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></p> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/25">v2.4.4</a></li> </ul> <h2>v2.4.3</h2> <h5>Bug Fixes</h5> <ul> <li>Address a corner case with <code>ivf_nprobe_pct</code> query parameter (<a href="https://redirect.github.com/blevesearch/go-faiss/pull/34">blevesearch/go-faiss#34</a>)</li> <li>Several guard rails put in place to avoid array-out-of-bounds-access and divide-by-zero errors: (<a href="https://redirect.github.com/blevesearch/zapx/pull/263">blevesearch/zapx#263</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/270">blevesearch/zapx#270</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/271">blevesearch/zapx#271</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/273">blevesearch/zapx#273</a>) to overcome <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a></li> <li>Handling early exits/optimization for boolean queries (<a href="https://redirect.github.com/blevesearch/bleve/pull/2065">blevesearch/bleve#2065</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires <code>faiss</code> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></li> <li>Support for cosine similarity distance metric to normalize vectors before indexing/querying for nearest neighbor search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2051">blevesearch/bleve#2051</a>)</li> <li>Support for <a href="https://github.com/blevesearch/bleve/blob/v2.4.3/docs/vectors.md#querying-with-filters-v243">selectivity filters</a> as a pre-cursor to vector search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2063">blevesearch/bleve#2063</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/23">v2.4.3</a></li> </ul> <h2>v2.4.2</h2> <h5>Bug Fixes</h5> <ul> <li>Set <code>MaxSegmentFileSize</code> for force merge when <code>SingleSegmentMergePlanOptions</code> goes into use (<a href="https://redirect.github.com/blevesearch/bleve/issues/2050">#2050</a>)</li> <li>Protect code against any bolt failures (<a href="https://redirect.github.com/blevesearch/bleve/issues/2043">#2043</a>)</li> <li>Fix size estimation for various field types (<a href="https://redirect.github.com/blevesearch/bleve/issues/2052">#2052</a>)</li> <li>Address an out-of-bounds panic that could occur with zapx/v16 in the event of a single non-vector field (<a href="https://redirect.github.com/blevesearch/bleve/issues/2058">#2058</a>) <ul> <li><a href="https://redirect.github.com/blevesearch/zapx/pull/252">blevesearch/zapx#252</a></li> </ul> </li> </ul> <h5>Improvements</h5> <ul> <li>Support new search params for vector search queries - [<code>ivf_probe_pct</code>, <code>ivf_max_codes_pct</code>] (<a href="https://redirect.github.com/blevesearch/bleve/issues/2049">#2049</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/22">v2.4.2</a></li> </ul> <h2>v2.4.1</h2> <h5>Bug Fixes</h5> <ul> <li>Addressed a bug where <code>ClientContextID</code> was missing from SearchRequest when library used with <code>vectors</code> (<a href="https://redirect.github.com/blevesearch/bleve/pull/2014">blevesearch/bleve#2014</a>)</li> <li>Fix to a memory leak in vector query path (<a href="https://redirect.github.com/blevesearch/bleve/pull/2023">blevesearch/bleve#2023</a>)</li> <li>Fix to issue <a href="https://redirect.github.com/blevesearch/bleve/issues/2027">blevesearch/bleve#2027</a>, error in parsing a certain datetime syntax (<a href="https://redirect.github.com/blevesearch/bleve/pull/2030">blevesearch/bleve#2030</a>)</li> <li>Fix that mitigates a race between persister's stale segment removal and index copy operations (<a href="https://redirect.github.com/blevesearch/bleve/pull/2032">blevesearch/bleve#2032</a>)</li> <li>Nested field mapping determination was broken (<a href="https://redirect.github.com/blevesearch/bleve/pull/2031">blevesearch/bleve#2031</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires the <em>faiss</em> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/d9db66a38518d99eb334218697e1df0732f3fdf8">blevesearch/faiss@d9db66a</a></li> <li>Support for new data type - <code>vector_base64</code> which allows for interpreting vector float32s encoded as base64 following littleEndian byte ordering (<a href="https://redirect.github.com/blevesearch/bleve/pull/2012">blevesearch/bleve#2012</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blevesearch/bleve/commit/137a21665e10013ca7ea285d59c22b8d85313e17"><code>137a216</code></a> MB-64513: Upgrade blevesearch/go-faiss, zapx/v16 for fix (<a href="https://redirect.github.com/blevesearch/bleve/issues/2123">#2123</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/5c53634221cd2b2c8a129f489f74ca315c3ae3a1"><code>5c53634</code></a> MB-64604: Remove unnecessary second map lookup (<a href="https://redirect.github.com/blevesearch/bleve/issues/2121">#2121</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/78cf78999e64fe8b257f215a4087b223cd8d210a"><code>78cf789</code></a> MB-64604: Fix interpreting scorch config: &quot;fieldTFRCacheThreshold&quot; (<a href="https://redirect.github.com/blevesearch/bleve/issues/2117">#2117</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/7d627b9f2d8cda7af90bb1153fd0669ff0cace5e"><code>7d627b9</code></a> MB-64360 - Upgrade zapx v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2107">#2107</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/e72f7c2f22de1d4887b30571fb65f8b3bb408d6b"><code>e72f7c2</code></a> MB-62230 - Pre-filtering Optimisation (<a href="https://redirect.github.com/blevesearch/bleve/issues/2098">#2098</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/902051d4d4714d3b096be55302fc3388e0285ff2"><code>902051d</code></a> MB-62230, MB-63992: Upgrade zapx/v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2095">#2095</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/cb1810f0d3c900edfc8e9c20dce4c21041b4db4d"><code>cb1810f</code></a> MB-63334: Fix race condition in NormalizeVector (<a href="https://redirect.github.com/blevesearch/bleve/issues/2094">#2094</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/bed244cefd701f30cb23d48816e5a76bbe6da478"><code>bed244c</code></a> MB-57871: Upgrade zapx v15 and v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2092">#2092</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/ab10172e2c1da8ae320603a602536b3e5d21075a"><code>ab10172</code></a> MB-57871, MB-62230: Upgrade to zapx/v16@v16.1.7 + go-faiss@v1.0.23 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2088">#2088</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/02d37a4fbc6b77d2a8ea0591db51c64649a236ef"><code>02d37a4</code></a> MB-57871: Upgrade zapx/v16 and zapx/v15 for fixes (<a href="https://redirect.github.com/blevesearch/bleve/issues/2091">#2091</a>)</li> <li>Additional commits viewable in <a href="https://github.com/blevesearch/bleve/compare/v2.4.0...v2.4.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/blevesearch/bleve/v2&package-manager=go_modules&previous-version=2.4.0&new-version=2.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 19:10:21 +00:00
github.com/blevesearch/bleve_index_api v1.1.12 // indirect
2024-04-09 10:24:27 +02:00
github.com/blevesearch/geo v0.1.20 // indirect
Bump github.com/blevesearch/bleve/v2 from 2.4.0 to 2.4.4 (#3506) Bumps [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) from 2.4.0 to 2.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blevesearch/bleve/releases">github.com/blevesearch/bleve/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.4</h2> <h5>Bug Fixes</h5> <ul> <li>Identified root cause for <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a> to be recycling of TermFieldReaders that was causing illegal/incorrect access of several in-memory structures in certain scenarios. We've gone ahead and disabled this feature with <a href="https://redirect.github.com/blevesearch/bleve/pull/2117">blevesearch/bleve#2117</a> + <a href="https://redirect.github.com/blevesearch/bleve/pull/2121">blevesearch/bleve#2121</a> . Will work towards re-enabling in the near future once we've ironed out the several associated wrinkles.</li> <li>Introduced a guard rail with <a href="https://redirect.github.com/blevesearch/zapx/pull/282">blevesearch/zapx#282</a> while performing vector search queries with pre-filtering to avoid hitting a panic when qualified docs do not hold valid vector fields.</li> <li>Fixed an issue while applying <code>ivf_max_codes_pct</code> in vector search requests involving pre-filtering which can cause reduction in recall - <a href="https://redirect.github.com/blevesearch/go-faiss/pull/40">blevesearch/go-faiss#40</a></li> </ul> <p>Vector search continues to require same version of <code>faiss</code> dynamic library (as with <a href="https://github.com/blevesearch/bleve/releases/tag/v2.4.3">v2.4.3</a>) to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></p> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/25">v2.4.4</a></li> </ul> <h2>v2.4.3</h2> <h5>Bug Fixes</h5> <ul> <li>Address a corner case with <code>ivf_nprobe_pct</code> query parameter (<a href="https://redirect.github.com/blevesearch/go-faiss/pull/34">blevesearch/go-faiss#34</a>)</li> <li>Several guard rails put in place to avoid array-out-of-bounds-access and divide-by-zero errors: (<a href="https://redirect.github.com/blevesearch/zapx/pull/263">blevesearch/zapx#263</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/270">blevesearch/zapx#270</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/271">blevesearch/zapx#271</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/273">blevesearch/zapx#273</a>) to overcome <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a></li> <li>Handling early exits/optimization for boolean queries (<a href="https://redirect.github.com/blevesearch/bleve/pull/2065">blevesearch/bleve#2065</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires <code>faiss</code> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></li> <li>Support for cosine similarity distance metric to normalize vectors before indexing/querying for nearest neighbor search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2051">blevesearch/bleve#2051</a>)</li> <li>Support for <a href="https://github.com/blevesearch/bleve/blob/v2.4.3/docs/vectors.md#querying-with-filters-v243">selectivity filters</a> as a pre-cursor to vector search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2063">blevesearch/bleve#2063</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/23">v2.4.3</a></li> </ul> <h2>v2.4.2</h2> <h5>Bug Fixes</h5> <ul> <li>Set <code>MaxSegmentFileSize</code> for force merge when <code>SingleSegmentMergePlanOptions</code> goes into use (<a href="https://redirect.github.com/blevesearch/bleve/issues/2050">#2050</a>)</li> <li>Protect code against any bolt failures (<a href="https://redirect.github.com/blevesearch/bleve/issues/2043">#2043</a>)</li> <li>Fix size estimation for various field types (<a href="https://redirect.github.com/blevesearch/bleve/issues/2052">#2052</a>)</li> <li>Address an out-of-bounds panic that could occur with zapx/v16 in the event of a single non-vector field (<a href="https://redirect.github.com/blevesearch/bleve/issues/2058">#2058</a>) <ul> <li><a href="https://redirect.github.com/blevesearch/zapx/pull/252">blevesearch/zapx#252</a></li> </ul> </li> </ul> <h5>Improvements</h5> <ul> <li>Support new search params for vector search queries - [<code>ivf_probe_pct</code>, <code>ivf_max_codes_pct</code>] (<a href="https://redirect.github.com/blevesearch/bleve/issues/2049">#2049</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/22">v2.4.2</a></li> </ul> <h2>v2.4.1</h2> <h5>Bug Fixes</h5> <ul> <li>Addressed a bug where <code>ClientContextID</code> was missing from SearchRequest when library used with <code>vectors</code> (<a href="https://redirect.github.com/blevesearch/bleve/pull/2014">blevesearch/bleve#2014</a>)</li> <li>Fix to a memory leak in vector query path (<a href="https://redirect.github.com/blevesearch/bleve/pull/2023">blevesearch/bleve#2023</a>)</li> <li>Fix to issue <a href="https://redirect.github.com/blevesearch/bleve/issues/2027">blevesearch/bleve#2027</a>, error in parsing a certain datetime syntax (<a href="https://redirect.github.com/blevesearch/bleve/pull/2030">blevesearch/bleve#2030</a>)</li> <li>Fix that mitigates a race between persister's stale segment removal and index copy operations (<a href="https://redirect.github.com/blevesearch/bleve/pull/2032">blevesearch/bleve#2032</a>)</li> <li>Nested field mapping determination was broken (<a href="https://redirect.github.com/blevesearch/bleve/pull/2031">blevesearch/bleve#2031</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires the <em>faiss</em> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/d9db66a38518d99eb334218697e1df0732f3fdf8">blevesearch/faiss@d9db66a</a></li> <li>Support for new data type - <code>vector_base64</code> which allows for interpreting vector float32s encoded as base64 following littleEndian byte ordering (<a href="https://redirect.github.com/blevesearch/bleve/pull/2012">blevesearch/bleve#2012</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blevesearch/bleve/commit/137a21665e10013ca7ea285d59c22b8d85313e17"><code>137a216</code></a> MB-64513: Upgrade blevesearch/go-faiss, zapx/v16 for fix (<a href="https://redirect.github.com/blevesearch/bleve/issues/2123">#2123</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/5c53634221cd2b2c8a129f489f74ca315c3ae3a1"><code>5c53634</code></a> MB-64604: Remove unnecessary second map lookup (<a href="https://redirect.github.com/blevesearch/bleve/issues/2121">#2121</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/78cf78999e64fe8b257f215a4087b223cd8d210a"><code>78cf789</code></a> MB-64604: Fix interpreting scorch config: &quot;fieldTFRCacheThreshold&quot; (<a href="https://redirect.github.com/blevesearch/bleve/issues/2117">#2117</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/7d627b9f2d8cda7af90bb1153fd0669ff0cace5e"><code>7d627b9</code></a> MB-64360 - Upgrade zapx v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2107">#2107</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/e72f7c2f22de1d4887b30571fb65f8b3bb408d6b"><code>e72f7c2</code></a> MB-62230 - Pre-filtering Optimisation (<a href="https://redirect.github.com/blevesearch/bleve/issues/2098">#2098</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/902051d4d4714d3b096be55302fc3388e0285ff2"><code>902051d</code></a> MB-62230, MB-63992: Upgrade zapx/v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2095">#2095</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/cb1810f0d3c900edfc8e9c20dce4c21041b4db4d"><code>cb1810f</code></a> MB-63334: Fix race condition in NormalizeVector (<a href="https://redirect.github.com/blevesearch/bleve/issues/2094">#2094</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/bed244cefd701f30cb23d48816e5a76bbe6da478"><code>bed244c</code></a> MB-57871: Upgrade zapx v15 and v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2092">#2092</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/ab10172e2c1da8ae320603a602536b3e5d21075a"><code>ab10172</code></a> MB-57871, MB-62230: Upgrade to zapx/v16@v16.1.7 + go-faiss@v1.0.23 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2088">#2088</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/02d37a4fbc6b77d2a8ea0591db51c64649a236ef"><code>02d37a4</code></a> MB-57871: Upgrade zapx/v16 and zapx/v15 for fixes (<a href="https://redirect.github.com/blevesearch/bleve/issues/2091">#2091</a>)</li> <li>Additional commits viewable in <a href="https://github.com/blevesearch/bleve/compare/v2.4.0...v2.4.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/blevesearch/bleve/v2&package-manager=go_modules&previous-version=2.4.0&new-version=2.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 19:10:21 +00:00
github.com/blevesearch/go-faiss v1.0.24 // indirect
github.com/blevesearch/go-porterstemmer v1.0.3 // indirect
github.com/blevesearch/gtreap v0.1.1 // indirect
github.com/blevesearch/mmap-go v1.0.4 // indirect
Bump github.com/blevesearch/bleve/v2 from 2.4.0 to 2.4.4 (#3506) Bumps [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) from 2.4.0 to 2.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blevesearch/bleve/releases">github.com/blevesearch/bleve/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.4</h2> <h5>Bug Fixes</h5> <ul> <li>Identified root cause for <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a> to be recycling of TermFieldReaders that was causing illegal/incorrect access of several in-memory structures in certain scenarios. We've gone ahead and disabled this feature with <a href="https://redirect.github.com/blevesearch/bleve/pull/2117">blevesearch/bleve#2117</a> + <a href="https://redirect.github.com/blevesearch/bleve/pull/2121">blevesearch/bleve#2121</a> . Will work towards re-enabling in the near future once we've ironed out the several associated wrinkles.</li> <li>Introduced a guard rail with <a href="https://redirect.github.com/blevesearch/zapx/pull/282">blevesearch/zapx#282</a> while performing vector search queries with pre-filtering to avoid hitting a panic when qualified docs do not hold valid vector fields.</li> <li>Fixed an issue while applying <code>ivf_max_codes_pct</code> in vector search requests involving pre-filtering which can cause reduction in recall - <a href="https://redirect.github.com/blevesearch/go-faiss/pull/40">blevesearch/go-faiss#40</a></li> </ul> <p>Vector search continues to require same version of <code>faiss</code> dynamic library (as with <a href="https://github.com/blevesearch/bleve/releases/tag/v2.4.3">v2.4.3</a>) to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></p> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/25">v2.4.4</a></li> </ul> <h2>v2.4.3</h2> <h5>Bug Fixes</h5> <ul> <li>Address a corner case with <code>ivf_nprobe_pct</code> query parameter (<a href="https://redirect.github.com/blevesearch/go-faiss/pull/34">blevesearch/go-faiss#34</a>)</li> <li>Several guard rails put in place to avoid array-out-of-bounds-access and divide-by-zero errors: (<a href="https://redirect.github.com/blevesearch/zapx/pull/263">blevesearch/zapx#263</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/270">blevesearch/zapx#270</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/271">blevesearch/zapx#271</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/273">blevesearch/zapx#273</a>) to overcome <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a></li> <li>Handling early exits/optimization for boolean queries (<a href="https://redirect.github.com/blevesearch/bleve/pull/2065">blevesearch/bleve#2065</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires <code>faiss</code> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></li> <li>Support for cosine similarity distance metric to normalize vectors before indexing/querying for nearest neighbor search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2051">blevesearch/bleve#2051</a>)</li> <li>Support for <a href="https://github.com/blevesearch/bleve/blob/v2.4.3/docs/vectors.md#querying-with-filters-v243">selectivity filters</a> as a pre-cursor to vector search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2063">blevesearch/bleve#2063</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/23">v2.4.3</a></li> </ul> <h2>v2.4.2</h2> <h5>Bug Fixes</h5> <ul> <li>Set <code>MaxSegmentFileSize</code> for force merge when <code>SingleSegmentMergePlanOptions</code> goes into use (<a href="https://redirect.github.com/blevesearch/bleve/issues/2050">#2050</a>)</li> <li>Protect code against any bolt failures (<a href="https://redirect.github.com/blevesearch/bleve/issues/2043">#2043</a>)</li> <li>Fix size estimation for various field types (<a href="https://redirect.github.com/blevesearch/bleve/issues/2052">#2052</a>)</li> <li>Address an out-of-bounds panic that could occur with zapx/v16 in the event of a single non-vector field (<a href="https://redirect.github.com/blevesearch/bleve/issues/2058">#2058</a>) <ul> <li><a href="https://redirect.github.com/blevesearch/zapx/pull/252">blevesearch/zapx#252</a></li> </ul> </li> </ul> <h5>Improvements</h5> <ul> <li>Support new search params for vector search queries - [<code>ivf_probe_pct</code>, <code>ivf_max_codes_pct</code>] (<a href="https://redirect.github.com/blevesearch/bleve/issues/2049">#2049</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/22">v2.4.2</a></li> </ul> <h2>v2.4.1</h2> <h5>Bug Fixes</h5> <ul> <li>Addressed a bug where <code>ClientContextID</code> was missing from SearchRequest when library used with <code>vectors</code> (<a href="https://redirect.github.com/blevesearch/bleve/pull/2014">blevesearch/bleve#2014</a>)</li> <li>Fix to a memory leak in vector query path (<a href="https://redirect.github.com/blevesearch/bleve/pull/2023">blevesearch/bleve#2023</a>)</li> <li>Fix to issue <a href="https://redirect.github.com/blevesearch/bleve/issues/2027">blevesearch/bleve#2027</a>, error in parsing a certain datetime syntax (<a href="https://redirect.github.com/blevesearch/bleve/pull/2030">blevesearch/bleve#2030</a>)</li> <li>Fix that mitigates a race between persister's stale segment removal and index copy operations (<a href="https://redirect.github.com/blevesearch/bleve/pull/2032">blevesearch/bleve#2032</a>)</li> <li>Nested field mapping determination was broken (<a href="https://redirect.github.com/blevesearch/bleve/pull/2031">blevesearch/bleve#2031</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires the <em>faiss</em> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/d9db66a38518d99eb334218697e1df0732f3fdf8">blevesearch/faiss@d9db66a</a></li> <li>Support for new data type - <code>vector_base64</code> which allows for interpreting vector float32s encoded as base64 following littleEndian byte ordering (<a href="https://redirect.github.com/blevesearch/bleve/pull/2012">blevesearch/bleve#2012</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blevesearch/bleve/commit/137a21665e10013ca7ea285d59c22b8d85313e17"><code>137a216</code></a> MB-64513: Upgrade blevesearch/go-faiss, zapx/v16 for fix (<a href="https://redirect.github.com/blevesearch/bleve/issues/2123">#2123</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/5c53634221cd2b2c8a129f489f74ca315c3ae3a1"><code>5c53634</code></a> MB-64604: Remove unnecessary second map lookup (<a href="https://redirect.github.com/blevesearch/bleve/issues/2121">#2121</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/78cf78999e64fe8b257f215a4087b223cd8d210a"><code>78cf789</code></a> MB-64604: Fix interpreting scorch config: &quot;fieldTFRCacheThreshold&quot; (<a href="https://redirect.github.com/blevesearch/bleve/issues/2117">#2117</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/7d627b9f2d8cda7af90bb1153fd0669ff0cace5e"><code>7d627b9</code></a> MB-64360 - Upgrade zapx v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2107">#2107</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/e72f7c2f22de1d4887b30571fb65f8b3bb408d6b"><code>e72f7c2</code></a> MB-62230 - Pre-filtering Optimisation (<a href="https://redirect.github.com/blevesearch/bleve/issues/2098">#2098</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/902051d4d4714d3b096be55302fc3388e0285ff2"><code>902051d</code></a> MB-62230, MB-63992: Upgrade zapx/v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2095">#2095</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/cb1810f0d3c900edfc8e9c20dce4c21041b4db4d"><code>cb1810f</code></a> MB-63334: Fix race condition in NormalizeVector (<a href="https://redirect.github.com/blevesearch/bleve/issues/2094">#2094</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/bed244cefd701f30cb23d48816e5a76bbe6da478"><code>bed244c</code></a> MB-57871: Upgrade zapx v15 and v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2092">#2092</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/ab10172e2c1da8ae320603a602536b3e5d21075a"><code>ab10172</code></a> MB-57871, MB-62230: Upgrade to zapx/v16@v16.1.7 + go-faiss@v1.0.23 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2088">#2088</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/02d37a4fbc6b77d2a8ea0591db51c64649a236ef"><code>02d37a4</code></a> MB-57871: Upgrade zapx/v16 and zapx/v15 for fixes (<a href="https://redirect.github.com/blevesearch/bleve/issues/2091">#2091</a>)</li> <li>Additional commits viewable in <a href="https://github.com/blevesearch/bleve/compare/v2.4.0...v2.4.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/blevesearch/bleve/v2&package-manager=go_modules&previous-version=2.4.0&new-version=2.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 19:10:21 +00:00
github.com/blevesearch/scorch_segment_api/v2 v2.2.16 // indirect
2023-01-26 10:58:44 -07:00
github.com/blevesearch/segment v0.9.1 // indirect
github.com/blevesearch/snowballstem v0.9.0 // indirect
2023-01-26 10:58:44 -07:00
github.com/blevesearch/upsidedown_store_api v1.0.2 // indirect
2024-04-09 10:24:27 +02:00
github.com/blevesearch/vellum v1.0.10 // indirect
github.com/blevesearch/zapx/v11 v11.3.10 // indirect
github.com/blevesearch/zapx/v12 v12.3.10 // indirect
github.com/blevesearch/zapx/v13 v13.3.10 // indirect
github.com/blevesearch/zapx/v14 v14.3.10 // indirect
Bump github.com/blevesearch/bleve/v2 from 2.4.0 to 2.4.4 (#3506) Bumps [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) from 2.4.0 to 2.4.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/blevesearch/bleve/releases">github.com/blevesearch/bleve/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.4</h2> <h5>Bug Fixes</h5> <ul> <li>Identified root cause for <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a> to be recycling of TermFieldReaders that was causing illegal/incorrect access of several in-memory structures in certain scenarios. We've gone ahead and disabled this feature with <a href="https://redirect.github.com/blevesearch/bleve/pull/2117">blevesearch/bleve#2117</a> + <a href="https://redirect.github.com/blevesearch/bleve/pull/2121">blevesearch/bleve#2121</a> . Will work towards re-enabling in the near future once we've ironed out the several associated wrinkles.</li> <li>Introduced a guard rail with <a href="https://redirect.github.com/blevesearch/zapx/pull/282">blevesearch/zapx#282</a> while performing vector search queries with pre-filtering to avoid hitting a panic when qualified docs do not hold valid vector fields.</li> <li>Fixed an issue while applying <code>ivf_max_codes_pct</code> in vector search requests involving pre-filtering which can cause reduction in recall - <a href="https://redirect.github.com/blevesearch/go-faiss/pull/40">blevesearch/go-faiss#40</a></li> </ul> <p>Vector search continues to require same version of <code>faiss</code> dynamic library (as with <a href="https://github.com/blevesearch/bleve/releases/tag/v2.4.3">v2.4.3</a>) to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></p> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/25">v2.4.4</a></li> </ul> <h2>v2.4.3</h2> <h5>Bug Fixes</h5> <ul> <li>Address a corner case with <code>ivf_nprobe_pct</code> query parameter (<a href="https://redirect.github.com/blevesearch/go-faiss/pull/34">blevesearch/go-faiss#34</a>)</li> <li>Several guard rails put in place to avoid array-out-of-bounds-access and divide-by-zero errors: (<a href="https://redirect.github.com/blevesearch/zapx/pull/263">blevesearch/zapx#263</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/270">blevesearch/zapx#270</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/271">blevesearch/zapx#271</a>, <a href="https://redirect.github.com/blevesearch/zapx/pull/273">blevesearch/zapx#273</a>) to overcome <a href="https://redirect.github.com/blevesearch/bleve/issues/1662">blevesearch/bleve#1662</a></li> <li>Handling early exits/optimization for boolean queries (<a href="https://redirect.github.com/blevesearch/bleve/pull/2065">blevesearch/bleve#2065</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires <code>faiss</code> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/b747c55a93a9627039c34d44b081f375dca94e57">blevesearch/faiss@b747c55a</a> which is a modified version of <a href="https://github.com/facebookresearch/faiss/releases/tag/v1.8.0">v1.8.0</a></li> <li>Support for cosine similarity distance metric to normalize vectors before indexing/querying for nearest neighbor search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2051">blevesearch/bleve#2051</a>)</li> <li>Support for <a href="https://github.com/blevesearch/bleve/blob/v2.4.3/docs/vectors.md#querying-with-filters-v243">selectivity filters</a> as a pre-cursor to vector search (<a href="https://redirect.github.com/blevesearch/bleve/pull/2063">blevesearch/bleve#2063</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/23">v2.4.3</a></li> </ul> <h2>v2.4.2</h2> <h5>Bug Fixes</h5> <ul> <li>Set <code>MaxSegmentFileSize</code> for force merge when <code>SingleSegmentMergePlanOptions</code> goes into use (<a href="https://redirect.github.com/blevesearch/bleve/issues/2050">#2050</a>)</li> <li>Protect code against any bolt failures (<a href="https://redirect.github.com/blevesearch/bleve/issues/2043">#2043</a>)</li> <li>Fix size estimation for various field types (<a href="https://redirect.github.com/blevesearch/bleve/issues/2052">#2052</a>)</li> <li>Address an out-of-bounds panic that could occur with zapx/v16 in the event of a single non-vector field (<a href="https://redirect.github.com/blevesearch/bleve/issues/2058">#2058</a>) <ul> <li><a href="https://redirect.github.com/blevesearch/zapx/pull/252">blevesearch/zapx#252</a></li> </ul> </li> </ul> <h5>Improvements</h5> <ul> <li>Support new search params for vector search queries - [<code>ivf_probe_pct</code>, <code>ivf_max_codes_pct</code>] (<a href="https://redirect.github.com/blevesearch/bleve/issues/2049">#2049</a>)</li> </ul> <h5>Milestone</h5> <ul> <li><a href="https://github.com/blevesearch/bleve/milestone/22">v2.4.2</a></li> </ul> <h2>v2.4.1</h2> <h5>Bug Fixes</h5> <ul> <li>Addressed a bug where <code>ClientContextID</code> was missing from SearchRequest when library used with <code>vectors</code> (<a href="https://redirect.github.com/blevesearch/bleve/pull/2014">blevesearch/bleve#2014</a>)</li> <li>Fix to a memory leak in vector query path (<a href="https://redirect.github.com/blevesearch/bleve/pull/2023">blevesearch/bleve#2023</a>)</li> <li>Fix to issue <a href="https://redirect.github.com/blevesearch/bleve/issues/2027">blevesearch/bleve#2027</a>, error in parsing a certain datetime syntax (<a href="https://redirect.github.com/blevesearch/bleve/pull/2030">blevesearch/bleve#2030</a>)</li> <li>Fix that mitigates a race between persister's stale segment removal and index copy operations (<a href="https://redirect.github.com/blevesearch/bleve/pull/2032">blevesearch/bleve#2032</a>)</li> <li>Nested field mapping determination was broken (<a href="https://redirect.github.com/blevesearch/bleve/pull/2031">blevesearch/bleve#2031</a>)</li> </ul> <h5>Improvements</h5> <ul> <li>Vector search requires the <em>faiss</em> dynamic library to be built from <a href="https://github.com/blevesearch/faiss/tree/d9db66a38518d99eb334218697e1df0732f3fdf8">blevesearch/faiss@d9db66a</a></li> <li>Support for new data type - <code>vector_base64</code> which allows for interpreting vector float32s encoded as base64 following littleEndian byte ordering (<a href="https://redirect.github.com/blevesearch/bleve/pull/2012">blevesearch/bleve#2012</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/blevesearch/bleve/commit/137a21665e10013ca7ea285d59c22b8d85313e17"><code>137a216</code></a> MB-64513: Upgrade blevesearch/go-faiss, zapx/v16 for fix (<a href="https://redirect.github.com/blevesearch/bleve/issues/2123">#2123</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/5c53634221cd2b2c8a129f489f74ca315c3ae3a1"><code>5c53634</code></a> MB-64604: Remove unnecessary second map lookup (<a href="https://redirect.github.com/blevesearch/bleve/issues/2121">#2121</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/78cf78999e64fe8b257f215a4087b223cd8d210a"><code>78cf789</code></a> MB-64604: Fix interpreting scorch config: &quot;fieldTFRCacheThreshold&quot; (<a href="https://redirect.github.com/blevesearch/bleve/issues/2117">#2117</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/7d627b9f2d8cda7af90bb1153fd0669ff0cace5e"><code>7d627b9</code></a> MB-64360 - Upgrade zapx v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2107">#2107</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/e72f7c2f22de1d4887b30571fb65f8b3bb408d6b"><code>e72f7c2</code></a> MB-62230 - Pre-filtering Optimisation (<a href="https://redirect.github.com/blevesearch/bleve/issues/2098">#2098</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/902051d4d4714d3b096be55302fc3388e0285ff2"><code>902051d</code></a> MB-62230, MB-63992: Upgrade zapx/v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2095">#2095</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/cb1810f0d3c900edfc8e9c20dce4c21041b4db4d"><code>cb1810f</code></a> MB-63334: Fix race condition in NormalizeVector (<a href="https://redirect.github.com/blevesearch/bleve/issues/2094">#2094</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/bed244cefd701f30cb23d48816e5a76bbe6da478"><code>bed244c</code></a> MB-57871: Upgrade zapx v15 and v16 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2092">#2092</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/ab10172e2c1da8ae320603a602536b3e5d21075a"><code>ab10172</code></a> MB-57871, MB-62230: Upgrade to zapx/v16@v16.1.7 + go-faiss@v1.0.23 (<a href="https://redirect.github.com/blevesearch/bleve/issues/2088">#2088</a>)</li> <li><a href="https://github.com/blevesearch/bleve/commit/02d37a4fbc6b77d2a8ea0591db51c64649a236ef"><code>02d37a4</code></a> MB-57871: Upgrade zapx/v16 and zapx/v15 for fixes (<a href="https://redirect.github.com/blevesearch/bleve/issues/2091">#2091</a>)</li> <li>Additional commits viewable in <a href="https://github.com/blevesearch/bleve/compare/v2.4.0...v2.4.4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/blevesearch/bleve/v2&package-manager=go_modules&previous-version=2.4.0&new-version=2.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 19:10:21 +00:00
github.com/blevesearch/zapx/v15 v15.3.16 // indirect
github.com/blevesearch/zapx/v16 v16.1.9-0.20241217210638-a0519e7caf3b // indirect
Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.5 (#3495) [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/releases">github.com/prometheus/client_golang's releases</a>.</em></p> <blockquote> <h2>v1.20.5 / 2024-10-15</h2> <p>We decided to revert <a href="https://redirect.github.com/prometheus/client_golang/pull/1424">the <code>testutil</code> change</a> that made our util functions less error-prone, but created a lot of work for our downstream users. Apologies for the pain! This revert should not cause any major breaking change, even if you already did the work--unless you depend on the <a href="https://redirect.github.com/grafana/mimir/pull/9624#issuecomment-2413401565">exact error message</a>.</p> <p>Going forward, we plan to reinforce our release testing strategy <a href="https://redirect.github.com/prometheus/client_golang/issues/1646">[1]</a>,<a href="https://redirect.github.com/prometheus/client_golang/issues/1648">[2]</a> and deliver an enhanced <a href="https://redirect.github.com/prometheus/client_golang/issues/1639"><code>testutil</code> package/module</a> with more flexible and safer APIs.</p> <p>Thanks to <a href="https://github.com/dashpole"><code>@​dashpole</code></a> <a href="https://github.com/dgrisonnet"><code>@​dgrisonnet</code></a> <a href="https://github.com/kakkoyun"><code>@​kakkoyun</code></a> <a href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> <a href="https://github.com/vesari"><code>@​vesari</code></a> <a href="https://github.com/logicalhan"><code>@​logicalhan</code></a> <a href="https://github.com/krajorama"><code>@​krajorama</code></a> <a href="https://github.com/bwplotka"><code>@​bwplotka</code></a> who helped in this patch release! 🤗</p> <h3>Changelog</h3> <p>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a></p> <h2>v1.20.4</h2> <ul> <li>[BUGFIX] histograms: Fix a possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>v1.20.3</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>v1.20.2</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>v1.20.1</h2> <p>This release contains the critical fix for the <a href="https://redirect.github.com/prometheus/client_golang/issues/1584">issue</a>. Thanks to <a href="https://github.com/geberl"><code>@​geberl</code></a>, <a href="https://github.com/CubicrootXYZ"><code>@​CubicrootXYZ</code></a>, <a href="https://github.com/zetaab"><code>@​zetaab</code></a> and <a href="https://github.com/timofurrer"><code>@​timofurrer</code></a> for helping us with the investigation!</p> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>v1.20.0</h2> <p>Thanks everyone for contributions!</p> <p>:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default <code>collectors.NewGoCollector()</code> collector. Given its popular usage, expect your binary to expose two additional metric.</p> <h2>Changes</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collectors: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a></li> </ul> <!-- raw HTML omitted --> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md">github.com/prometheus/client_golang's changelog</a>.</em></p> <blockquote> <h2>1.20.5 / 2024-10-15</h2> <ul> <li>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input.</li> </ul> <h2>1.20.4 / 2024-09-07</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>1.20.3 / 2024-09-05</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>1.20.2 / 2024-08-23</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>1.20.1 / 2024-08-20</h2> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with <code>PedanticRegistry</code> on linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>1.20.0 / 2024-08-14</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collector: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] <strong>breaking</strong> testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a> (reverted in 1.20.5)</li> </ul> <h2>1.19.0 / 2024-02-27</h2> <p>The module <code>prometheus/common v0.48.0</code> introduced an incompatibility when used together with client_golang (See <a href="https://redirect.github.com/prometheus/client_golang/pull/1448">prometheus/client_golang#1448</a> for more details). If your project uses client_golang and you want to use <code>prometheus/common v0.48.0</code> or higher, please update client_golang to v1.19.0.</p> <ul> <li>[CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). <a href="https://redirect.github.com/prometheus/client_golang/issues/1445">#1445</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1449">#1449</a></li> <li>[FEATURE] collectors: Add version collector. <a href="https://redirect.github.com/prometheus/client_golang/issues/1422">#1422</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1427">#1427</a></li> </ul> <h2>1.18.0 / 2023-12-22</h2> <ul> <li>[FEATURE] promlint: Allow creation of custom metric validations. <a href="https://redirect.github.com/prometheus/client_golang/issues/1311">#1311</a></li> <li>[FEATURE] Go programs using client_golang can be built in wasip1 OS. <a href="https://redirect.github.com/prometheus/client_golang/issues/1350">#1350</a></li> <li>[BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. <a href="https://redirect.github.com/prometheus/client_golang/issues/1367">#1367</a></li> <li>[BUGFIX] testutil: Fix comparison of metrics with empty Help strings. <a href="https://redirect.github.com/prometheus/client_golang/issues/1378">#1378</a></li> <li>[ENHANCEMENT] Improved performance of <code>MetricVec.WithLabelValues(...)</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1360">#1360</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/client_golang/commit/48e12a185519fd76b4e514b597483781d9ba4093"><code>48e12a1</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a> from prometheus/cut-1204-pr1424</li> <li><a href="https://github.com/prometheus/client_golang/commit/504ad9bf5c6419449d2cacf8cf8855bfdcfcfc18"><code>504ad9b</code></a> Cut 1.20.5; update comments.</li> <li><a href="https://github.com/prometheus/client_golang/commit/584a7ce3d935e4fdca7b893f5f741d59f3289140"><code>584a7ce</code></a> Revert &quot;testutil compareMetricFamilies: make less error-prone (<a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>)&quot;</li> <li><a href="https://github.com/prometheus/client_golang/commit/05fcde9fe4eb93d3fb7b56ebe51acf80536f0583"><code>05fcde9</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a> from krajorama/data-race-in-histogram-write</li> <li><a href="https://github.com/prometheus/client_golang/commit/209f4c041ed1764866f44dd053a8d94aa051c610"><code>209f4c0</code></a> Add changelog</li> <li><a href="https://github.com/prometheus/client_golang/commit/1e398ccb1259d20836e3003885bdd949cb21e635"><code>1e398cc</code></a> native histogram: Fix race between Write and addExemplar</li> <li><a href="https://github.com/prometheus/client_golang/commit/ef2f87ea986252194ea960187b20b409180044dd"><code>ef2f87e</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1620">#1620</a> from prometheus/arthursens/prepare-1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/937ac63d3d2dda83847f4ca842d62edabce4e743"><code>937ac63</code></a> Add changelog entry for 1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/6e9914db5af255f5def17d54a7ca9c531771f4ca"><code>6e9914d</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a> from krajorama/index-out-of-range-native-histogram-e...</li> <li><a href="https://github.com/prometheus/client_golang/commit/d6b8c8925bd16626cf168e642eb70724b17a0d61"><code>d6b8c89</code></a> Update comments with more explanations</li> <li>Additional commits viewable in <a href="https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/client_golang&package-manager=go_modules&previous-version=1.19.1&new-version=1.20.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip CI]
2025-01-19 09:30:45 +01:00
github.com/cespare/xxhash/v2 v2.3.0 // indirect
Bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible (#3405) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.9+incompatible to 25.0.6+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v25.0.6</h2> <h2>25.0.6</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6">docker/cli, 25.0.6 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6">moby/moby, 25.0.6 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control.</p> <h3>Bug fixes and enhancements</h3> <ul> <li>[25.0] remove erroneous <code>platform</code> from image <code>config</code> OCI descriptor in <code>docker save</code> output. <a href="https://redirect.github.com/moby/moby/pull/47695">moby/moby#47695</a></li> <li>[25.0 backport] Fix a nil dereference when getting image history for images having layers without the <code>Created</code> value set. <a href="https://redirect.github.com/moby/moby/pull/47759">moby/moby#47759</a></li> <li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a href="https://redirect.github.com/moby/moby/pull/47830">moby/moby#47830</a></li> <li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. <a href="https://redirect.github.com/moby/moby/pull/47869">moby/moby#47869</a></li> <li>[25.0 backport] don't depend on containerd platform.Parse to return a typed error. <a href="https://redirect.github.com/moby/moby/pull/47890">moby/moby#47890</a></li> <li>[25.0 backport] builder/mobyexporter: Add missing nil check <a href="https://redirect.github.com/moby/moby/pull/47987">moby/moby#47987</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. <a href="https://redirect.github.com/moby/moby/pull/47724">moby/moby#47724</a></li> <li>Update Go runtime to 1.21.12, which contains security fixes for <a href="https://github.com/advisories/GHSA-hw49-2p59-3mhj">CVE-2024-24791</a> <a href="https://redirect.github.com/moby/moby/pull/48146">moby/moby#48146</a></li> <li>Update Containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.20">v1.7.20</a>. <a href="https://redirect.github.com/moby/moby/pull/48199">moby/moby#48199</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6">https://github.com/moby/moby/compare/v25.0.5...v25.0.6</a></p> <h2>v25.0.5</h2> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li> <p><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></p> </li> <li> <p>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></p> </li> <li> <p>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></p> </li> <li> <p>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/b08a51fe16eed67de3861c03b363ba403643b12e"><code>b08a51f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48231">#48231</a> from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li> <li><a href="https://github.com/moby/moby/commit/d151b0f87f9673f206b477c90db25956e1704ba5"><code>d151b0f</code></a> vendor: OTEL v0.46.1 / v1.21.0</li> <li><a href="https://github.com/moby/moby/commit/c6ba9a5124603357bfc4a64971cbb9708180f06e"><code>c6ba9a5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48225">#48225</a> from austinvazquez/backport-workflow-artifact-reten...</li> <li><a href="https://github.com/moby/moby/commit/4673a3ca2c37ae30270a29c281ccd9477107dcee"><code>4673a3c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48227">#48227</a> from austinvazquez/backport-backport-branch-check-t...</li> <li><a href="https://github.com/moby/moby/commit/30f89081028ce6fb1b49a71c02c156dacbe9aa62"><code>30f8908</code></a> github/ci: Check if backport is opened against the expected branch</li> <li><a href="https://github.com/moby/moby/commit/7454d6a2e672b0b977aaa14463c9aeb53acd06af"><code>7454d6a</code></a> ci: update workflow artifacts retention</li> <li><a href="https://github.com/moby/moby/commit/65cc597cea28cdc25bea3b8a86384b4251872919"><code>65cc597</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/b722836927669b414569c42f096869cd800b59a6"><code>b722836</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48199">#48199</a> from austinvazquez/update-containerd-binary-to-1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e8ecb9c76d97579ebbf3f9d3ef770d08ac303809"><code>e8ecb9c</code></a> update containerd binary to v1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e6cae1f2373d4ff37499570e67f23b2cebb7a043"><code>e6cae1f</code></a> update containerd binary to v1.7.19</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v24.0.9...v25.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=24.0.9+incompatible&new-version=25.0.6+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/matrix-org/dendrite/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-08-02 08:56:24 +02:00
github.com/containerd/log v0.1.0 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/davecgh/go-spew v1.1.1 // indirect
Bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible (#3405) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.9+incompatible to 25.0.6+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v25.0.6</h2> <h2>25.0.6</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6">docker/cli, 25.0.6 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6">moby/moby, 25.0.6 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control.</p> <h3>Bug fixes and enhancements</h3> <ul> <li>[25.0] remove erroneous <code>platform</code> from image <code>config</code> OCI descriptor in <code>docker save</code> output. <a href="https://redirect.github.com/moby/moby/pull/47695">moby/moby#47695</a></li> <li>[25.0 backport] Fix a nil dereference when getting image history for images having layers without the <code>Created</code> value set. <a href="https://redirect.github.com/moby/moby/pull/47759">moby/moby#47759</a></li> <li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a href="https://redirect.github.com/moby/moby/pull/47830">moby/moby#47830</a></li> <li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. <a href="https://redirect.github.com/moby/moby/pull/47869">moby/moby#47869</a></li> <li>[25.0 backport] don't depend on containerd platform.Parse to return a typed error. <a href="https://redirect.github.com/moby/moby/pull/47890">moby/moby#47890</a></li> <li>[25.0 backport] builder/mobyexporter: Add missing nil check <a href="https://redirect.github.com/moby/moby/pull/47987">moby/moby#47987</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. <a href="https://redirect.github.com/moby/moby/pull/47724">moby/moby#47724</a></li> <li>Update Go runtime to 1.21.12, which contains security fixes for <a href="https://github.com/advisories/GHSA-hw49-2p59-3mhj">CVE-2024-24791</a> <a href="https://redirect.github.com/moby/moby/pull/48146">moby/moby#48146</a></li> <li>Update Containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.20">v1.7.20</a>. <a href="https://redirect.github.com/moby/moby/pull/48199">moby/moby#48199</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6">https://github.com/moby/moby/compare/v25.0.5...v25.0.6</a></p> <h2>v25.0.5</h2> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li> <p><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></p> </li> <li> <p>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></p> </li> <li> <p>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></p> </li> <li> <p>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/b08a51fe16eed67de3861c03b363ba403643b12e"><code>b08a51f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48231">#48231</a> from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li> <li><a href="https://github.com/moby/moby/commit/d151b0f87f9673f206b477c90db25956e1704ba5"><code>d151b0f</code></a> vendor: OTEL v0.46.1 / v1.21.0</li> <li><a href="https://github.com/moby/moby/commit/c6ba9a5124603357bfc4a64971cbb9708180f06e"><code>c6ba9a5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48225">#48225</a> from austinvazquez/backport-workflow-artifact-reten...</li> <li><a href="https://github.com/moby/moby/commit/4673a3ca2c37ae30270a29c281ccd9477107dcee"><code>4673a3c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48227">#48227</a> from austinvazquez/backport-backport-branch-check-t...</li> <li><a href="https://github.com/moby/moby/commit/30f89081028ce6fb1b49a71c02c156dacbe9aa62"><code>30f8908</code></a> github/ci: Check if backport is opened against the expected branch</li> <li><a href="https://github.com/moby/moby/commit/7454d6a2e672b0b977aaa14463c9aeb53acd06af"><code>7454d6a</code></a> ci: update workflow artifacts retention</li> <li><a href="https://github.com/moby/moby/commit/65cc597cea28cdc25bea3b8a86384b4251872919"><code>65cc597</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/b722836927669b414569c42f096869cd800b59a6"><code>b722836</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48199">#48199</a> from austinvazquez/update-containerd-binary-to-1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e8ecb9c76d97579ebbf3f9d3ef770d08ac303809"><code>e8ecb9c</code></a> update containerd binary to v1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e6cae1f2373d4ff37499570e67f23b2cebb7a043"><code>e6cae1f</code></a> update containerd binary to v1.7.19</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v24.0.9...v25.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=24.0.9+incompatible&new-version=25.0.6+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/matrix-org/dendrite/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-08-02 08:56:24 +02:00
github.com/distribution/reference v0.6.0 // indirect
github.com/docker/go-units v0.5.0 // indirect
2023-07-06 09:28:39 +02:00
github.com/dustin/go-humanize v1.0.1 // indirect
Adds support for listening on and connecting to I2P and Onion services securely (#3293) This PR adds 2 `dendrite-demo` main's, each designed expressly to serve a Hidden Service/Overlay network. The first, `dendrite-demo-i2p` add self-configuration for use of dendrite as an I2P hidden service(eepsite) and to connect to I2P services(federate) as an I2P client. It further disables the `dendrite` server from communicating with non-anonymous servers by federation(because I2P does not canonically have the ability to exit, we rely on donors for exit traffic), and enables the use of self-signed TLS certificates([because I2P services are self-authenticating but TLS is still required for other aspects of the system to work reliably](https://tor.stackexchange.com/questions/13887/registering-onion-with-certificate-authority)). This demo turns the system into an "pseudonymous" homeserver which people can connect to using an I2P-enabled Matrix client(I like `cinny` and it's what I tested with). The second, `dendrite-demo-tor` adds self-configuration for the use of dendrite as an Onion service and to connect to other onion services and non-anonymous web sites using Tor to obfuscate it's physical location and providing, optionally, pseudonymity. It also enables the use of self-signed TLS certificates, for the same reason as with I2P, because onion services aren't typically eligible for TLS certificates. It has also been tested with `cinny`. These services are both pseudonymous like myself, not anonymous. I will be meeting members of the element team at the CCC assembly shortly to discuss contributing under my pseudonym. As none of the other `dendrite-demo` have unit tests I did not add them to these checkins. * [*] I have added Go unit tests or [Complement integration tests](https://github.com/matrix-org/complement) for this PR _or_ I have justified why this PR doesn't need tests --------- Co-authored-by: eyedeekay <idk@mulder> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-09-23 13:28:28 -04:00
github.com/eyedeekay/i2pkeys v0.33.8 // indirect
github.com/eyedeekay/sam3 v0.33.8 // indirect
Bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible (#3405) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.9+incompatible to 25.0.6+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v25.0.6</h2> <h2>25.0.6</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6">docker/cli, 25.0.6 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6">moby/moby, 25.0.6 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control.</p> <h3>Bug fixes and enhancements</h3> <ul> <li>[25.0] remove erroneous <code>platform</code> from image <code>config</code> OCI descriptor in <code>docker save</code> output. <a href="https://redirect.github.com/moby/moby/pull/47695">moby/moby#47695</a></li> <li>[25.0 backport] Fix a nil dereference when getting image history for images having layers without the <code>Created</code> value set. <a href="https://redirect.github.com/moby/moby/pull/47759">moby/moby#47759</a></li> <li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a href="https://redirect.github.com/moby/moby/pull/47830">moby/moby#47830</a></li> <li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. <a href="https://redirect.github.com/moby/moby/pull/47869">moby/moby#47869</a></li> <li>[25.0 backport] don't depend on containerd platform.Parse to return a typed error. <a href="https://redirect.github.com/moby/moby/pull/47890">moby/moby#47890</a></li> <li>[25.0 backport] builder/mobyexporter: Add missing nil check <a href="https://redirect.github.com/moby/moby/pull/47987">moby/moby#47987</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. <a href="https://redirect.github.com/moby/moby/pull/47724">moby/moby#47724</a></li> <li>Update Go runtime to 1.21.12, which contains security fixes for <a href="https://github.com/advisories/GHSA-hw49-2p59-3mhj">CVE-2024-24791</a> <a href="https://redirect.github.com/moby/moby/pull/48146">moby/moby#48146</a></li> <li>Update Containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.20">v1.7.20</a>. <a href="https://redirect.github.com/moby/moby/pull/48199">moby/moby#48199</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6">https://github.com/moby/moby/compare/v25.0.5...v25.0.6</a></p> <h2>v25.0.5</h2> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li> <p><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></p> </li> <li> <p>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></p> </li> <li> <p>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></p> </li> <li> <p>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/b08a51fe16eed67de3861c03b363ba403643b12e"><code>b08a51f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48231">#48231</a> from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li> <li><a href="https://github.com/moby/moby/commit/d151b0f87f9673f206b477c90db25956e1704ba5"><code>d151b0f</code></a> vendor: OTEL v0.46.1 / v1.21.0</li> <li><a href="https://github.com/moby/moby/commit/c6ba9a5124603357bfc4a64971cbb9708180f06e"><code>c6ba9a5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48225">#48225</a> from austinvazquez/backport-workflow-artifact-reten...</li> <li><a href="https://github.com/moby/moby/commit/4673a3ca2c37ae30270a29c281ccd9477107dcee"><code>4673a3c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48227">#48227</a> from austinvazquez/backport-backport-branch-check-t...</li> <li><a href="https://github.com/moby/moby/commit/30f89081028ce6fb1b49a71c02c156dacbe9aa62"><code>30f8908</code></a> github/ci: Check if backport is opened against the expected branch</li> <li><a href="https://github.com/moby/moby/commit/7454d6a2e672b0b977aaa14463c9aeb53acd06af"><code>7454d6a</code></a> ci: update workflow artifacts retention</li> <li><a href="https://github.com/moby/moby/commit/65cc597cea28cdc25bea3b8a86384b4251872919"><code>65cc597</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/b722836927669b414569c42f096869cd800b59a6"><code>b722836</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48199">#48199</a> from austinvazquez/update-containerd-binary-to-1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e8ecb9c76d97579ebbf3f9d3ef770d08ac303809"><code>e8ecb9c</code></a> update containerd binary to v1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e6cae1f2373d4ff37499570e67f23b2cebb7a043"><code>e6cae1f</code></a> update containerd binary to v1.7.19</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v24.0.9...v25.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=24.0.9+incompatible&new-version=25.0.6+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/matrix-org/dendrite/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-08-02 08:56:24 +02:00
github.com/felixge/httpsnoop v1.0.4 // indirect
github.com/go-logr/logr v1.4.2 // indirect
github.com/go-logr/stdr v1.2.2 // indirect
github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/gogo/protobuf v1.3.2 // indirect
github.com/golang/geo v0.0.0-20210211234256-740aa86cb551 // indirect
2023-07-06 09:28:39 +02:00
github.com/golang/protobuf v1.5.3 // indirect
github.com/golang/snappy v0.0.4 // indirect
github.com/google/pprof v0.0.0-20240409012703-83162a5b38cd // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/h2non/filetype v1.1.3 // indirect
2024-08-03 20:26:28 +02:00
github.com/hjson/hjson-go/v4 v4.4.0 // indirect
github.com/json-iterator/go v1.1.12 // indirect
github.com/juju/errors v1.0.0 // indirect
github.com/klauspost/compress v1.17.11 // indirect
github.com/mattn/go-colorable v0.1.13 // indirect
github.com/mattn/go-isatty v0.0.20 // indirect
github.com/minio/highwayhash v1.0.3 // indirect
Bump github.com/docker/docker from 25.0.6+incompatible to 27.4.0+incompatible (#3458) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 25.0.6+incompatible to 27.4.0+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v27.4.0</h2> <h2>27.4.0</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A27.4.0">docker/cli, 27.4.0 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A27.4.0">moby/moby, 27.4.0 milestone</a></li> </ul> <h3>API</h3> <ul> <li><code>GET /images/json</code> with the <code>manifests</code> option enabled now preserves the original order in which manifests appeared in the manifest-index. <a href="https://redirect.github.com/moby/moby/pull/48712">moby/moby#48712</a></li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>When reading logs with the <code>jsonfile</code> or <code>local</code> log drivers, any errors while trying to read or parse underlying log files will cause the rest of the file to be skipped and move to the next log file (if one exists) rather than returning an error to the client and closing the stream. The errors are viewable in the Docker Daemon logs and exported to traces when tracing is configured. <a href="https://redirect.github.com/moby/moby/pull/48842">moby/moby#48842</a></li> <li>When reading log files, compressed log files are now only decompressed when needed rather than decompressing all files before starting the log stream. <a href="https://redirect.github.com/moby/moby/pull/48842">moby/moby#48842</a></li> <li>Fix an issue that meant published ports from one container on a bridge network were not accessible from another container on the same network with <code>userland-proxy</code> disabled, if the kernel's <code>br_netfilter</code> module was not loaded and enabled. The daemon will now attempt to load the module and enable <code>bridge-nf-call-iptables</code> or <code>bridge-nf-call-ip6tables</code> when creating a network with the userland proxy disabled. <a href="https://redirect.github.com/moby/moby/pull/48685">moby/moby#48685</a></li> <li>Fix loading of <code>bridge</code> and <code>br_netfilter</code> kernel modules. <a href="https://redirect.github.com/moby/moby/pull/48966">moby/moby#48966</a></li> <li>containerd image store: Fix Docker daemon failing to fully start with a &quot;context deadline exceeded error&quot; with containerd snapshotter and many builds/images. <a href="https://redirect.github.com/moby/moby/pull/48954">moby/moby#48954</a></li> <li>containerd image-store: Fix partially pulled images not being garbage-collected. <a href="https://redirect.github.com/moby/moby/pull/48910">moby#48910</a>, <a href="https://redirect.github.com/moby/moby/pull/48957">moby/moby#48957</a></li> <li>containerd image store: Fix <code>docker image inspect</code> outputting duplicate references in <code>RepoDigests</code>. <a href="https://redirect.github.com/moby/moby/pull/48785">moby/moby#48785</a></li> <li>containerd image store: Fix not being able to connect to some insecure registries in cases where the HTTPS request failed due to a non-TLS related error. <a href="https://redirect.github.com/moby/moby/pull/48758">moby/moby#48758</a></li> <li>containerd image store: Remove a confusing warning log when tagging a non-dangling image. <a href="https://redirect.github.com/moby/moby/pull/49010">moby/moby#49010</a></li> <li>dockerd-rootless-setuptool.sh: let --force ignore smoke test errors <a href="https://redirect.github.com/moby/moby/pull/48695">moby/moby#48695</a></li> <li>Disable IPv6 Duplicate Address Detection (DAD) for addresses assigned to the bridges belonging to bridge networks. <a href="https://redirect.github.com/moby/moby/pull/48684">moby/moby#48684</a></li> <li>Remove BuildKit init timeout. <a href="https://redirect.github.com/moby/moby/pull/48963">moby/moby#48963</a></li> <li>Ignore &quot;dataset does not exist&quot; error when removing dataset on ZFS. <a href="https://redirect.github.com/moby/moby/pull/48968">moby/moby#48968</a></li> <li>Client: Prevent idle connections leaking FDs. <a href="https://redirect.github.com/moby/moby/pull/48764">moby/moby#48764</a></li> <li>Fix anonymous volumes being created through the <code>--mount</code> option not being marked as anonymous. <a href="https://redirect.github.com/moby/moby/pull/48755">moby/moby#48755</a></li> <li>After a daemon restart with live-restore, ensure an iptables jump to the <code>DOCKER-USER</code> chain is placed before other rules. <a href="https://redirect.github.com/moby/moby/pull/48714">moby/moby#48714</a></li> <li>Fix a possible memory leak caused by OTel meters. <a href="https://redirect.github.com/moby/moby/pull/48693">moby/moby#48693</a></li> <li>Create distinct build history db for each store. <a href="https://redirect.github.com/moby/moby/pull/48688">moby/moby#48688</a></li> <li>Fix an issue that caused excessive memory usage when DNS resolution was made in a tight loop. <a href="https://redirect.github.com/moby/moby/pull/48840">moby/moby#48840</a></li> <li>containerd image store: Do not underline names in <code>docker image ls --tree</code>. <a href="https://redirect.github.com/docker/cli/pull/5519">docker/cli#5519</a></li> <li>containerd image store: Change name of <code>USED</code> column in <code>docker image ls --tree</code> to <code>IN USE</code>. <a href="https://redirect.github.com/docker/cli/pull/5518">docker/cli#5518</a></li> <li>Fix a bug preventing image pulls from being cancelled during <code>docker run</code>. <a href="https://redirect.github.com/docker/cli/pull/5654">docker/cli#5654</a></li> <li>Port some completions from the bash completion to the new cobra based completion. <a href="https://redirect.github.com/docker/cli/pull/5618">docker/cli#5618</a></li> <li>The <code>docker login</code> and <code>docker logout</code> command no longer update the configuration file if the credentials didn't change. <a href="https://redirect.github.com/docker/cli/pull/5569">docker/cli#5569</a></li> <li>Optimise <code>docker stats</code> to reduce flickering issues. <a href="https://redirect.github.com/docker/cli/pull/5588">docker/cli#5588</a>, <a href="https://redirect.github.com/docker/cli/pull/5635">docker/cli#5635</a></li> <li>Fix inaccessible plugins paths preventing plugins from being detected. <a href="https://redirect.github.com/docker/cli/pull/5652">docker/cli#5652</a></li> <li>Add support for <code>events --filter</code> in cobra generated shell completions. <a href="https://redirect.github.com/docker/cli/pull/5614">docker/cli#5614</a></li> <li>Fix bash completion for <code>events --filter daemon=</code>. <a href="https://redirect.github.com/docker/cli/pull/5563">docker/cli#5563</a></li> <li>Improve shell-completion of containers for <code>docker rm</code>. <a href="https://redirect.github.com/docker/cli/pull/5540">docker/cli#5540</a></li> <li>Add shell-completion for <code>--platform</code> flags. <a href="https://redirect.github.com/docker/cli/pull/5540">docker/cli#5540</a></li> <li>rootless: Make <code>/etc/cdi</code> and <code>/var/run/cdi</code> accessible by the Container Device Interface (CDI) integration. <a href="https://redirect.github.com/moby/moby/pull/49027">moby/moby#49027</a></li> </ul> <h3>Removed</h3> <ul> <li>Deprecate <code>Daemon.Exists()</code> and <code>Daemon.IsPaused()</code>. These functions are no longer used and will be removed in the next release. <a href="https://redirect.github.com/moby/moby/pull/48719">moby/moby#48719</a></li> <li>Deprecate <code>container.ErrNameReserved</code> and <code>container.ErrNameNotReserved</code>. <a href="https://redirect.github.com/moby/moby/pull/48697">moby/moby#48697</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/92a83937d0280dcbea92099b01e01aa4251c1777"><code>92a8393</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/49027">#49027</a> from thaJeztah/27.x_backport_cdi-rootless</li> <li><a href="https://github.com/moby/moby/commit/9163aa379a8212c08c14aeff45a25131faa3d47b"><code>9163aa3</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/49026">#49026</a> from thaJeztah/27.x_update_go_1.22.10</li> <li><a href="https://github.com/moby/moby/commit/4775621ab6ab5adb94450d8edfa7f85c790070f7"><code>4775621</code></a> Dockerd rootless: make {/etc,/var/run}/cdi available</li> <li><a href="https://github.com/moby/moby/commit/0176f4a5c3b354fa2c7aa76f1249c1ef93d2d8a1"><code>0176f4a</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/49024">#49024</a> from thaJeztah/27.x_vendor_buildkit_0.17.3</li> <li><a href="https://github.com/moby/moby/commit/0e34b3956b6e95324d67517305a3376d36896490"><code>0e34b39</code></a> update to go1.22.10</li> <li><a href="https://github.com/moby/moby/commit/7919b806e7654c999656ff2288fed76542b2707e"><code>7919b80</code></a> [27.x] vendor: github.com/moby/buildkit v0.17.3</li> <li><a href="https://github.com/moby/moby/commit/a92d4c5a575722f61bfe6f659360a17fb6a53f0d"><code>a92d4c5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/49013">#49013</a> from vvoland/49006-27.x</li> <li><a href="https://github.com/moby/moby/commit/1cc127466dcb3ad693b5285ff13ba3e24163277f"><code>1cc1274</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/49010">#49010</a> from vvoland/49009-27.x</li> <li><a href="https://github.com/moby/moby/commit/525b929947e8cf02246ab53915d1ea89936a2181"><code>525b929</code></a> registry: deprecate RepositoryInfo.Class</li> <li><a href="https://github.com/moby/moby/commit/d6d43b29126043b479ff967f20259a5491d58f0f"><code>d6d43b2</code></a> c8d/tag: Don't log a warning if the source image is not dangling</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v25.0.6...v27.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=25.0.6+incompatible&new-version=27.4.0+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-12-17 20:39:04 +00:00
github.com/moby/docker-image-spec v1.3.1 // indirect
github.com/moby/term v0.5.0 // indirect
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
github.com/modern-go/reflect2 v1.0.2 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/morikuni/aec v1.0.0 // indirect
github.com/mschoch/smat v0.2.0 // indirect
Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.5 (#3495) [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/releases">github.com/prometheus/client_golang's releases</a>.</em></p> <blockquote> <h2>v1.20.5 / 2024-10-15</h2> <p>We decided to revert <a href="https://redirect.github.com/prometheus/client_golang/pull/1424">the <code>testutil</code> change</a> that made our util functions less error-prone, but created a lot of work for our downstream users. Apologies for the pain! This revert should not cause any major breaking change, even if you already did the work--unless you depend on the <a href="https://redirect.github.com/grafana/mimir/pull/9624#issuecomment-2413401565">exact error message</a>.</p> <p>Going forward, we plan to reinforce our release testing strategy <a href="https://redirect.github.com/prometheus/client_golang/issues/1646">[1]</a>,<a href="https://redirect.github.com/prometheus/client_golang/issues/1648">[2]</a> and deliver an enhanced <a href="https://redirect.github.com/prometheus/client_golang/issues/1639"><code>testutil</code> package/module</a> with more flexible and safer APIs.</p> <p>Thanks to <a href="https://github.com/dashpole"><code>@​dashpole</code></a> <a href="https://github.com/dgrisonnet"><code>@​dgrisonnet</code></a> <a href="https://github.com/kakkoyun"><code>@​kakkoyun</code></a> <a href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> <a href="https://github.com/vesari"><code>@​vesari</code></a> <a href="https://github.com/logicalhan"><code>@​logicalhan</code></a> <a href="https://github.com/krajorama"><code>@​krajorama</code></a> <a href="https://github.com/bwplotka"><code>@​bwplotka</code></a> who helped in this patch release! 🤗</p> <h3>Changelog</h3> <p>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a></p> <h2>v1.20.4</h2> <ul> <li>[BUGFIX] histograms: Fix a possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>v1.20.3</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>v1.20.2</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>v1.20.1</h2> <p>This release contains the critical fix for the <a href="https://redirect.github.com/prometheus/client_golang/issues/1584">issue</a>. Thanks to <a href="https://github.com/geberl"><code>@​geberl</code></a>, <a href="https://github.com/CubicrootXYZ"><code>@​CubicrootXYZ</code></a>, <a href="https://github.com/zetaab"><code>@​zetaab</code></a> and <a href="https://github.com/timofurrer"><code>@​timofurrer</code></a> for helping us with the investigation!</p> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>v1.20.0</h2> <p>Thanks everyone for contributions!</p> <p>:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default <code>collectors.NewGoCollector()</code> collector. Given its popular usage, expect your binary to expose two additional metric.</p> <h2>Changes</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collectors: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a></li> </ul> <!-- raw HTML omitted --> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md">github.com/prometheus/client_golang's changelog</a>.</em></p> <blockquote> <h2>1.20.5 / 2024-10-15</h2> <ul> <li>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input.</li> </ul> <h2>1.20.4 / 2024-09-07</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>1.20.3 / 2024-09-05</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>1.20.2 / 2024-08-23</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>1.20.1 / 2024-08-20</h2> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with <code>PedanticRegistry</code> on linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>1.20.0 / 2024-08-14</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collector: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] <strong>breaking</strong> testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a> (reverted in 1.20.5)</li> </ul> <h2>1.19.0 / 2024-02-27</h2> <p>The module <code>prometheus/common v0.48.0</code> introduced an incompatibility when used together with client_golang (See <a href="https://redirect.github.com/prometheus/client_golang/pull/1448">prometheus/client_golang#1448</a> for more details). If your project uses client_golang and you want to use <code>prometheus/common v0.48.0</code> or higher, please update client_golang to v1.19.0.</p> <ul> <li>[CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). <a href="https://redirect.github.com/prometheus/client_golang/issues/1445">#1445</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1449">#1449</a></li> <li>[FEATURE] collectors: Add version collector. <a href="https://redirect.github.com/prometheus/client_golang/issues/1422">#1422</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1427">#1427</a></li> </ul> <h2>1.18.0 / 2023-12-22</h2> <ul> <li>[FEATURE] promlint: Allow creation of custom metric validations. <a href="https://redirect.github.com/prometheus/client_golang/issues/1311">#1311</a></li> <li>[FEATURE] Go programs using client_golang can be built in wasip1 OS. <a href="https://redirect.github.com/prometheus/client_golang/issues/1350">#1350</a></li> <li>[BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. <a href="https://redirect.github.com/prometheus/client_golang/issues/1367">#1367</a></li> <li>[BUGFIX] testutil: Fix comparison of metrics with empty Help strings. <a href="https://redirect.github.com/prometheus/client_golang/issues/1378">#1378</a></li> <li>[ENHANCEMENT] Improved performance of <code>MetricVec.WithLabelValues(...)</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1360">#1360</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/client_golang/commit/48e12a185519fd76b4e514b597483781d9ba4093"><code>48e12a1</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a> from prometheus/cut-1204-pr1424</li> <li><a href="https://github.com/prometheus/client_golang/commit/504ad9bf5c6419449d2cacf8cf8855bfdcfcfc18"><code>504ad9b</code></a> Cut 1.20.5; update comments.</li> <li><a href="https://github.com/prometheus/client_golang/commit/584a7ce3d935e4fdca7b893f5f741d59f3289140"><code>584a7ce</code></a> Revert &quot;testutil compareMetricFamilies: make less error-prone (<a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>)&quot;</li> <li><a href="https://github.com/prometheus/client_golang/commit/05fcde9fe4eb93d3fb7b56ebe51acf80536f0583"><code>05fcde9</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a> from krajorama/data-race-in-histogram-write</li> <li><a href="https://github.com/prometheus/client_golang/commit/209f4c041ed1764866f44dd053a8d94aa051c610"><code>209f4c0</code></a> Add changelog</li> <li><a href="https://github.com/prometheus/client_golang/commit/1e398ccb1259d20836e3003885bdd949cb21e635"><code>1e398cc</code></a> native histogram: Fix race between Write and addExemplar</li> <li><a href="https://github.com/prometheus/client_golang/commit/ef2f87ea986252194ea960187b20b409180044dd"><code>ef2f87e</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1620">#1620</a> from prometheus/arthursens/prepare-1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/937ac63d3d2dda83847f4ca842d62edabce4e743"><code>937ac63</code></a> Add changelog entry for 1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/6e9914db5af255f5def17d54a7ca9c531771f4ca"><code>6e9914d</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a> from krajorama/index-out-of-range-native-histogram-e...</li> <li><a href="https://github.com/prometheus/client_golang/commit/d6b8c8925bd16626cf168e642eb70724b17a0d61"><code>d6b8c89</code></a> Update comments with more explanations</li> <li>Additional commits viewable in <a href="https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/client_golang&package-manager=go_modules&previous-version=1.19.1&new-version=1.20.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip CI]
2025-01-19 09:30:45 +01:00
github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
github.com/nats-io/jwt/v2 v2.7.3 // indirect
Bump github.com/nats-io/nats.go from 1.37.0 to 1.38.0 (#3481) Bumps [github.com/nats-io/nats.go](https://github.com/nats-io/nats.go) from 1.37.0 to 1.38.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nats-io/nats.go/releases">github.com/nats-io/nats.go's releases</a>.</em></p> <blockquote> <h2>v1.38.0</h2> <h2>Changelog</h2> <h3>Added</h3> <ul> <li>Core NATS: <ul> <li>Added <code>UserInfoHandler</code> for dynamically setting user/password (<a href="https://redirect.github.com/nats-io/nats.go/issues/1713">#1713</a>)</li> <li>Added <code>PermissionErrOnSubscribe</code> option, causing <code>SubscribeSync</code> to return <code>nats.ErrPermissionViolation</code> on <code>NextMsg()</code> if there was a permission error (<a href="https://redirect.github.com/nats-io/nats.go/issues/1728">#1728</a>)</li> <li>Added <code>Msgs()</code> method on <code>Subscription</code>, returning an iterator (<code>iter.Seq2[*nats.Msg, error]</code>) for the subscription. This method is only available for go version &gt;=1.23 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1728">#1728</a>)</li> </ul> </li> <li>KeyValue:</li> <li>Added <code>WatchFiltered</code> method to watch for updates with multiple filters (<a href="https://redirect.github.com/nats-io/nats.go/issues/1739">#1739</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Core NATS: <ul> <li>Fixed closing connections on max subscriptions exceeded (<a href="https://redirect.github.com/nats-io/nats.go/issues/1709">#1709</a>)</li> <li>Removed redundant nil checks. Thanks <a href="https://github.com/ramonberrutti"><code>@​ramonberrutti</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1751">#1751</a>)</li> <li>Add missing nats prefix to error (<a href="https://redirect.github.com/nats-io/nats.go/issues/1753">#1753</a>)</li> </ul> </li> <li>JetStream: <ul> <li>Fixed <code>PublishAsync</code> not closing done and stall channels after failed retries (<a href="https://redirect.github.com/nats-io/nats.go/issues/1719">#1719</a>)</li> <li>Set valid fetch sequence in ordered consumer's <code>Fetch()</code> and <code>Next()</code> after timeout (<a href="https://redirect.github.com/nats-io/nats.go/issues/1705">#1705</a>)</li> <li>Do not overwrite ordered consumer deliver policy if start time is set (<a href="https://redirect.github.com/nats-io/nats.go/issues/1742">#1742</a>)</li> <li>Fixed race condition in <code>MessageBatch</code> (<a href="https://redirect.github.com/nats-io/nats.go/issues/1743">#1743</a>)</li> </ul> </li> <li>Legacy JetStream: <ul> <li>Fixed race condition in <code>MessageBatch</code> (<a href="https://redirect.github.com/nats-io/nats.go/issues/1743">#1743</a>)</li> </ul> </li> </ul> <h3>Changed</h3> <ul> <li>Legacy Jetstream: <ul> <li>Added client retry for jetstream async publish old API. Thanks <a href="https://github.com/pranavmehta94"><code>@​pranavmehta94</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1695">#1695</a>)</li> </ul> </li> </ul> <h3>Improved</h3> <ul> <li>Moved CI to github actions (<a href="https://redirect.github.com/nats-io/nats.go/issues/1623">#1623</a>, <a href="https://redirect.github.com/nats-io/nats.go/issues/1716">#1716</a>)</li> <li>Use errors.New instead of fmt.Errorf to improve efficiency. Thanks <a href="https://github.com/canack"><code>@​canack</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1707">#1707</a>)</li> <li>Fixed invalid schemas in Service API documentation (<a href="https://redirect.github.com/nats-io/nats.go/issues/1720">#1720</a>)</li> <li>Added mention of TTL reset in <code>kv.Update</code> method. Thanks <a href="https://github.com/fmontorsi-equinix"><code>@​fmontorsi-equinix</code></a> for the contribution (<a href="https://redirect.github.com/nats-io/nats.go/issues/1727">#1727</a>)</li> <li>Updated installation commands in <code>README.md</code> (<a href="https://redirect.github.com/nats-io/nats.go/issues/1745">#1745</a>)</li> <li>Bump <code>nkeys</code> to v0.4.9 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1750">#1750</a>)</li> </ul> <h3>Complete Changes</h3> <p><a href="https://github.com/nats-io/nats.go/compare/v1.37.0...v1.38.0">https://github.com/nats-io/nats.go/compare/v1.37.0...v1.38.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nats-io/nats.go/commit/48391f1b8b390ed4569b5c40f59fcde3e4cf1dc7"><code>48391f1</code></a> Release v1.38.0 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1754">#1754</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/6f4e85afdbd6043b2c239512be0d1353d5d9dd54"><code>6f4e85a</code></a> [FIXED] Add missing nats prefix to error (<a href="https://redirect.github.com/nats-io/nats.go/issues/1753">#1753</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/074c819479bb5fa69def43ebd821f3945ad02758"><code>074c819</code></a> [FIXED] twice respMap nil check (<a href="https://redirect.github.com/nats-io/nats.go/issues/1751">#1751</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/d6eaa84a039e2ff58f1fb278e533b8511d8fa571"><code>d6eaa84</code></a> [ADDED] Creating iterators for sync subscriptions (<a href="https://redirect.github.com/nats-io/nats.go/issues/1728">#1728</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/6bc41598ccf73167d509b8568151ef79128a9283"><code>6bc4159</code></a> [FIXED] Race in MessageBatch (<a href="https://redirect.github.com/nats-io/nats.go/issues/1743">#1743</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/d05f24af9e77a67d583ee8d25e303355b1caf510"><code>d05f24a</code></a> Bump nkeys to 0.4.7 (<a href="https://redirect.github.com/nats-io/nats.go/issues/1750">#1750</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/01fafde03391884a3f425dcf0a8c9cf29189f92e"><code>01fafde</code></a> [IMPROVED] Update installation commands (<a href="https://redirect.github.com/nats-io/nats.go/issues/1745">#1745</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/f563c66855dbcc150ae832ca3f4590ce81f09fda"><code>f563c66</code></a> [FIXED] Do not overwrite ordered consumer deliver policy if start time is set...</li> <li><a href="https://github.com/nats-io/nats.go/commit/e963b776f24fb0166e440842c90b9586b6aba9df"><code>e963b77</code></a> [ADDED] WatchFiltered method on KV (<a href="https://redirect.github.com/nats-io/nats.go/issues/1739">#1739</a>)</li> <li><a href="https://github.com/nats-io/nats.go/commit/4530ef6abf748afd3b6993a21f8d9ac7f82715c9"><code>4530ef6</code></a> [FIXED] Invalid fetch sequence in ordered consumer Fetch and Next after timeo...</li> <li>Additional commits viewable in <a href="https://github.com/nats-io/nats.go/compare/v1.37.0...v1.38.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/nats-io/nats.go&package-manager=go_modules&previous-version=1.37.0&new-version=1.38.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-16 22:59:19 +01:00
github.com/nats-io/nkeys v0.4.9 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/nats-io/nuid v1.0.1 // indirect
2024-04-09 10:24:27 +02:00
github.com/ncruces/go-strftime v0.1.9 // indirect
github.com/onsi/ginkgo/v2 v2.11.0 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/opencontainers/go-digest v1.0.0 // indirect
github.com/opencontainers/image-spec v1.0.3-0.20211202183452-c5a74bcca799 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/pmezard/go-difflib v1.0.0 // indirect
Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.5 (#3495) [//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/releases">github.com/prometheus/client_golang's releases</a>.</em></p> <blockquote> <h2>v1.20.5 / 2024-10-15</h2> <p>We decided to revert <a href="https://redirect.github.com/prometheus/client_golang/pull/1424">the <code>testutil</code> change</a> that made our util functions less error-prone, but created a lot of work for our downstream users. Apologies for the pain! This revert should not cause any major breaking change, even if you already did the work--unless you depend on the <a href="https://redirect.github.com/grafana/mimir/pull/9624#issuecomment-2413401565">exact error message</a>.</p> <p>Going forward, we plan to reinforce our release testing strategy <a href="https://redirect.github.com/prometheus/client_golang/issues/1646">[1]</a>,<a href="https://redirect.github.com/prometheus/client_golang/issues/1648">[2]</a> and deliver an enhanced <a href="https://redirect.github.com/prometheus/client_golang/issues/1639"><code>testutil</code> package/module</a> with more flexible and safer APIs.</p> <p>Thanks to <a href="https://github.com/dashpole"><code>@​dashpole</code></a> <a href="https://github.com/dgrisonnet"><code>@​dgrisonnet</code></a> <a href="https://github.com/kakkoyun"><code>@​kakkoyun</code></a> <a href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> <a href="https://github.com/vesari"><code>@​vesari</code></a> <a href="https://github.com/logicalhan"><code>@​logicalhan</code></a> <a href="https://github.com/krajorama"><code>@​krajorama</code></a> <a href="https://github.com/bwplotka"><code>@​bwplotka</code></a> who helped in this patch release! 🤗</p> <h3>Changelog</h3> <p>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a></p> <h2>v1.20.4</h2> <ul> <li>[BUGFIX] histograms: Fix a possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>v1.20.3</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>v1.20.2</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>v1.20.1</h2> <p>This release contains the critical fix for the <a href="https://redirect.github.com/prometheus/client_golang/issues/1584">issue</a>. Thanks to <a href="https://github.com/geberl"><code>@​geberl</code></a>, <a href="https://github.com/CubicrootXYZ"><code>@​CubicrootXYZ</code></a>, <a href="https://github.com/zetaab"><code>@​zetaab</code></a> and <a href="https://github.com/timofurrer"><code>@​timofurrer</code></a> for helping us with the investigation!</p> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>v1.20.0</h2> <p>Thanks everyone for contributions!</p> <p>:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default <code>collectors.NewGoCollector()</code> collector. Given its popular usage, expect your binary to expose two additional metric.</p> <h2>Changes</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collectors: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a></li> </ul> <!-- raw HTML omitted --> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md">github.com/prometheus/client_golang's changelog</a>.</em></p> <blockquote> <h2>1.20.5 / 2024-10-15</h2> <ul> <li>[BUGFIX] testutil: Reverted <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>; functions using compareMetricFamilies are (again) only failing if filtered metricNames are in the expected input.</li> </ul> <h2>1.20.4 / 2024-09-07</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars vs metrics gather. <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a></li> </ul> <h2>1.20.3 / 2024-09-05</h2> <ul> <li>[BUGFIX] histograms: Fix possible data race when appending exemplars. <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a></li> </ul> <h2>1.20.2 / 2024-08-23</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> <h2>1.20.1 / 2024-08-20</h2> <ul> <li>[BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with <code>PedanticRegistry</code> on linux machines. <a href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li> </ul> <h2>1.20.0 / 2024-08-14</h2> <ul> <li>[CHANGE] :warning: go-collector: Remove <code>go_memstat_lookups_total</code> metric which was always 0; Go runtime stopped sharing pointer lookup statistics. <a href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li> <li>[FEATURE] :warning: go-collector: Add 3 default metrics: <code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and <code>go_sched_gomaxprocs_threads</code> as those are recommended by the Go team. <a href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li> <li>[FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact <code>runtime/metrics</code> sourcing each metric (if relevant). <a href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li> <li>[FEATURE] testutil: Add CollectAndFormat method. <a href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li> <li>[FEATURE] histograms: Add support for exemplars in native histograms. <a href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li> <li>[FEATURE] promhttp: Add experimental support for <code>zstd</code> on scrape, controlled by the request <code>Accept-Encoding</code> header. <a href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li> <li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API methods that supports it. <a href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li> <li>[FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. <a href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li> <li>[FEATURE] process-collector: Add network usage metrics: <code>process_network_receive_bytes_total</code> and <code>process_network_transmit_bytes_total</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li> <li>[FEATURE] promlint: Add duplicated metric lint rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li> <li>[BUGFIX] promlint: Relax metric type in name linter rule. <a href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li> <li>[BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. <a href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li> <li>[BUGFIX] <strong>breaking</strong> testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. <a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a> (reverted in 1.20.5)</li> </ul> <h2>1.19.0 / 2024-02-27</h2> <p>The module <code>prometheus/common v0.48.0</code> introduced an incompatibility when used together with client_golang (See <a href="https://redirect.github.com/prometheus/client_golang/pull/1448">prometheus/client_golang#1448</a> for more details). If your project uses client_golang and you want to use <code>prometheus/common v0.48.0</code> or higher, please update client_golang to v1.19.0.</p> <ul> <li>[CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). <a href="https://redirect.github.com/prometheus/client_golang/issues/1445">#1445</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1449">#1449</a></li> <li>[FEATURE] collectors: Add version collector. <a href="https://redirect.github.com/prometheus/client_golang/issues/1422">#1422</a> <a href="https://redirect.github.com/prometheus/client_golang/issues/1427">#1427</a></li> </ul> <h2>1.18.0 / 2023-12-22</h2> <ul> <li>[FEATURE] promlint: Allow creation of custom metric validations. <a href="https://redirect.github.com/prometheus/client_golang/issues/1311">#1311</a></li> <li>[FEATURE] Go programs using client_golang can be built in wasip1 OS. <a href="https://redirect.github.com/prometheus/client_golang/issues/1350">#1350</a></li> <li>[BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. <a href="https://redirect.github.com/prometheus/client_golang/issues/1367">#1367</a></li> <li>[BUGFIX] testutil: Fix comparison of metrics with empty Help strings. <a href="https://redirect.github.com/prometheus/client_golang/issues/1378">#1378</a></li> <li>[ENHANCEMENT] Improved performance of <code>MetricVec.WithLabelValues(...)</code>. <a href="https://redirect.github.com/prometheus/client_golang/issues/1360">#1360</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/client_golang/commit/48e12a185519fd76b4e514b597483781d9ba4093"><code>48e12a1</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1645">#1645</a> from prometheus/cut-1204-pr1424</li> <li><a href="https://github.com/prometheus/client_golang/commit/504ad9bf5c6419449d2cacf8cf8855bfdcfcfc18"><code>504ad9b</code></a> Cut 1.20.5; update comments.</li> <li><a href="https://github.com/prometheus/client_golang/commit/584a7ce3d935e4fdca7b893f5f741d59f3289140"><code>584a7ce</code></a> Revert &quot;testutil compareMetricFamilies: make less error-prone (<a href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a>)&quot;</li> <li><a href="https://github.com/prometheus/client_golang/commit/05fcde9fe4eb93d3fb7b56ebe51acf80536f0583"><code>05fcde9</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1623">#1623</a> from krajorama/data-race-in-histogram-write</li> <li><a href="https://github.com/prometheus/client_golang/commit/209f4c041ed1764866f44dd053a8d94aa051c610"><code>209f4c0</code></a> Add changelog</li> <li><a href="https://github.com/prometheus/client_golang/commit/1e398ccb1259d20836e3003885bdd949cb21e635"><code>1e398cc</code></a> native histogram: Fix race between Write and addExemplar</li> <li><a href="https://github.com/prometheus/client_golang/commit/ef2f87ea986252194ea960187b20b409180044dd"><code>ef2f87e</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1620">#1620</a> from prometheus/arthursens/prepare-1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/937ac63d3d2dda83847f4ca842d62edabce4e743"><code>937ac63</code></a> Add changelog entry for 1.20.3</li> <li><a href="https://github.com/prometheus/client_golang/commit/6e9914db5af255f5def17d54a7ca9c531771f4ca"><code>6e9914d</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1608">#1608</a> from krajorama/index-out-of-range-native-histogram-e...</li> <li><a href="https://github.com/prometheus/client_golang/commit/d6b8c8925bd16626cf168e642eb70724b17a0d61"><code>d6b8c89</code></a> Update comments with more explanations</li> <li>Additional commits viewable in <a href="https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/client_golang&package-manager=go_modules&previous-version=1.19.1&new-version=1.20.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip CI]
2025-01-19 09:30:45 +01:00
github.com/prometheus/client_model v0.6.1 // indirect
github.com/prometheus/common v0.55.0 // indirect
github.com/prometheus/procfs v0.15.1 // indirect
Bump github.com/yggdrasil-network/yggdrasil-go from 0.5.11 to 0.5.12 (#3505) Bumps [github.com/yggdrasil-network/yggdrasil-go](https://github.com/yggdrasil-network/yggdrasil-go) from 0.5.11 to 0.5.12. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/yggdrasil-network/yggdrasil-go/releases">github.com/yggdrasil-network/yggdrasil-go's releases</a>.</em></p> <blockquote> <h2>Version 0.5.12</h2> <ul> <li>Go 1.22 is now required to build Yggdrasil</li> </ul> <h3>Changed</h3> <ul> <li>The <code>latency_ms</code> field in the admin socket <code>getPeers</code> response has been renamed to <code>latency</code></li> </ul> <h3>Fixed</h3> <ul> <li>A timing regression which causes a higher level of idle protocol traffic on each peering has been fixed</li> <li>The <code>-user</code> flag now correctly detects an empty user/group specification</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yggdrasil-network/yggdrasil-go/blob/develop/CHANGELOG.md">github.com/yggdrasil-network/yggdrasil-go's changelog</a>.</em></p> <blockquote> <h2>[0.5.12] - 2024-12-18</h2> <ul> <li>Go 1.22 is now required to build Yggdrasil</li> </ul> <h3>Changed</h3> <ul> <li>The <code>latency_ms</code> field in the admin socket <code>getPeers</code> response has been renamed to <code>latency</code></li> </ul> <h3>Fixed</h3> <ul> <li>A timing regression which causes a higher level of idle protocol traffic on each peering has been fixed</li> <li>The <code>-user</code> flag now correctly detects an empty user/group specification</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/213f72b8403ff55a5e38a0fa7d1cd0a093ac4666"><code>213f72b</code></a> Yggdrasil 0.5.12</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/1fbcf3b3c2014f128575af0b4381c592536bc90b"><code>1fbcf3b</code></a> Rename <code>latency_ms</code> to <code>latency</code> in <code>getPeers</code> response since it isn't even m...</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/22bc9c44e286568e423305fc67c8f890a351b6a1"><code>22bc9c4</code></a> genkeys print the number of generated keys (<a href="https://redirect.github.com/yggdrasil-network/yggdrasil-go/issues/1217">#1217</a>)</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/9c73bacab90806d913df1ef2b6d79b5ebeb0f98b"><code>9c73bac</code></a> Update to Go 1.22, quic-go/quic-go@v0.48.2 (<a href="https://redirect.github.com/yggdrasil-network/yggdrasil-go/issues/1218">#1218</a>)</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/04be129878a68d7bbd2fcf2444f1f17b0c52aa36"><code>04be129</code></a> Update to Arceliar/ironwood@743fe2f</li> <li><a href="https://github.com/yggdrasil-network/yggdrasil-go/commit/657f7e0db38e9375a75e8a88bac5ba6e3f02537f"><code>657f7e0</code></a> Fix empty user/group detection on <code>chuser</code></li> <li>See full diff in <a href="https://github.com/yggdrasil-network/yggdrasil-go/compare/v0.5.11...v0.5.12">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/yggdrasil-network/yggdrasil-go&package-manager=go_modules&previous-version=0.5.11&new-version=0.5.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Devon Hudson <devon.dmytro@gmail.com>
2025-01-24 20:48:47 +00:00
github.com/quic-go/quic-go v0.48.2 // indirect
2023-07-06 09:28:39 +02:00
github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect
github.com/rogpeppe/go-internal v1.13.1 // indirect
github.com/rs/zerolog v1.29.1 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
github.com/tidwall/match v1.1.1 // indirect
github.com/tidwall/pretty v1.2.1 // indirect
github.com/wlynxg/anet v0.0.5 // indirect
2024-04-09 10:24:27 +02:00
go.etcd.io/bbolt v1.3.7 // indirect
Bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible (#3405) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.9+incompatible to 25.0.6+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v25.0.6</h2> <h2>25.0.6</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6">docker/cli, 25.0.6 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6">moby/moby, 25.0.6 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control.</p> <h3>Bug fixes and enhancements</h3> <ul> <li>[25.0] remove erroneous <code>platform</code> from image <code>config</code> OCI descriptor in <code>docker save</code> output. <a href="https://redirect.github.com/moby/moby/pull/47695">moby/moby#47695</a></li> <li>[25.0 backport] Fix a nil dereference when getting image history for images having layers without the <code>Created</code> value set. <a href="https://redirect.github.com/moby/moby/pull/47759">moby/moby#47759</a></li> <li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a href="https://redirect.github.com/moby/moby/pull/47830">moby/moby#47830</a></li> <li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. <a href="https://redirect.github.com/moby/moby/pull/47869">moby/moby#47869</a></li> <li>[25.0 backport] don't depend on containerd platform.Parse to return a typed error. <a href="https://redirect.github.com/moby/moby/pull/47890">moby/moby#47890</a></li> <li>[25.0 backport] builder/mobyexporter: Add missing nil check <a href="https://redirect.github.com/moby/moby/pull/47987">moby/moby#47987</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. <a href="https://redirect.github.com/moby/moby/pull/47724">moby/moby#47724</a></li> <li>Update Go runtime to 1.21.12, which contains security fixes for <a href="https://github.com/advisories/GHSA-hw49-2p59-3mhj">CVE-2024-24791</a> <a href="https://redirect.github.com/moby/moby/pull/48146">moby/moby#48146</a></li> <li>Update Containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.20">v1.7.20</a>. <a href="https://redirect.github.com/moby/moby/pull/48199">moby/moby#48199</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6">https://github.com/moby/moby/compare/v25.0.5...v25.0.6</a></p> <h2>v25.0.5</h2> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li> <p><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></p> </li> <li> <p>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></p> </li> <li> <p>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></p> </li> <li> <p>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/b08a51fe16eed67de3861c03b363ba403643b12e"><code>b08a51f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48231">#48231</a> from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li> <li><a href="https://github.com/moby/moby/commit/d151b0f87f9673f206b477c90db25956e1704ba5"><code>d151b0f</code></a> vendor: OTEL v0.46.1 / v1.21.0</li> <li><a href="https://github.com/moby/moby/commit/c6ba9a5124603357bfc4a64971cbb9708180f06e"><code>c6ba9a5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48225">#48225</a> from austinvazquez/backport-workflow-artifact-reten...</li> <li><a href="https://github.com/moby/moby/commit/4673a3ca2c37ae30270a29c281ccd9477107dcee"><code>4673a3c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48227">#48227</a> from austinvazquez/backport-backport-branch-check-t...</li> <li><a href="https://github.com/moby/moby/commit/30f89081028ce6fb1b49a71c02c156dacbe9aa62"><code>30f8908</code></a> github/ci: Check if backport is opened against the expected branch</li> <li><a href="https://github.com/moby/moby/commit/7454d6a2e672b0b977aaa14463c9aeb53acd06af"><code>7454d6a</code></a> ci: update workflow artifacts retention</li> <li><a href="https://github.com/moby/moby/commit/65cc597cea28cdc25bea3b8a86384b4251872919"><code>65cc597</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/b722836927669b414569c42f096869cd800b59a6"><code>b722836</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48199">#48199</a> from austinvazquez/update-containerd-binary-to-1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e8ecb9c76d97579ebbf3f9d3ef770d08ac303809"><code>e8ecb9c</code></a> update containerd binary to v1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e6cae1f2373d4ff37499570e67f23b2cebb7a043"><code>e6cae1f</code></a> update containerd binary to v1.7.19</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v24.0.9...v25.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=24.0.9+incompatible&new-version=25.0.6+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/matrix-org/dendrite/network/alerts). </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-08-02 08:56:24 +02:00
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0 // indirect
go.opentelemetry.io/otel v1.32.0 // indirect
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.32.0 // indirect
go.opentelemetry.io/otel/metric v1.32.0 // indirect
go.opentelemetry.io/otel/sdk v1.32.0 // indirect
go.opentelemetry.io/otel/trace v1.32.0 // indirect
2024-08-03 20:26:28 +02:00
go.uber.org/mock v0.4.0 // indirect
golang.org/x/mod v0.19.0 // indirect
Bump golang.org/x/net from 0.32.0 to 0.33.0 (#3499) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.32.0 to 0.33.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464"><code>dfc720d</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb"><code>8e66b04</code></a> html: use strings.EqualFold instead of lowering ourselves</li> <li><a href="https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46"><code>b935f7b</code></a> html: avoid endless loop on error token</li> <li><a href="https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3"><code>9af49ef</code></a> route: remove unused sizeof* consts</li> <li><a href="https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a"><code>6705db9</code></a> quic: clean up crypto streams when dropping packet protection keys</li> <li><a href="https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200"><code>4ef7588</code></a> quic: handle ACK frame in packet which drops number space</li> <li><a href="https://github.com/golang/net/commit/552d8ac903a11a9fde71a88732f5b58b6b394178"><code>552d8ac</code></a> Revert &quot;route: change from syscall to x/sys/unix&quot;</li> <li><a href="https://github.com/golang/net/commit/13a7c0108bd38aad013797cdb95e6bfca0bbcec6"><code>13a7c01</code></a> Revert &quot;route: remove unused sizeof* consts on freebsd&quot;</li> <li>See full diff in <a href="https://github.com/golang/net/compare/v0.32.0...v0.33.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/net&package-manager=go_modules&previous-version=0.32.0&new-version=0.33.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/element-hq/dendrite/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> [skip ci]
2025-01-16 23:21:53 +01:00
golang.org/x/net v0.33.0 // indirect
golang.org/x/sys v0.29.0 // indirect
golang.org/x/text v0.21.0 // indirect
golang.org/x/time v0.9.0 // indirect
golang.org/x/tools v0.23.0 // indirect
google.golang.org/protobuf v1.35.1 // indirect
Ristretto cache (#2563) * Try Ristretto cache * Tweak * It's beautiful * Update GMSL * More strict keyable interface * Fix that some more * Make less panicky * Don't enforce mutability checks for now * Determine mutability using deep equality * Tweaks * Namespace keys * Make federation caches mutable * Update cost estimation, add metric * Update GMSL * Estimate cost for metrics better * Reduce counters a bit * Try caching events * Some guards * Try again * Try this * Use separate caches for hopefully better hash distribution * Fix bug with admitting events into cache * Try to fix bugs * Check nil * Try that again * Preserve order jeezo this is messy * thanks VS Code for doing exactly the wrong thing * Try this again * Be more specific * aaaaargh * One more time * That might be better * Stronger sorting * Cache expiries, async publishing of EDUs * Put it back * Use a shared cache again * Cost estimation fixes * Update ristretto * Reduce counters a bit * Clean up a bit * Update GMSL * 1GB * Configurable cache sizees * Tweaks * Add `config.DataUnit` for specifying friendly cache sizes * Various tweaks * Update GMSL * Add back some lazy loading caching * Include key in cost * Include key in cost * Tweak max age handling, config key name * Only register prometheus metrics if requested * Review comments @S7evinK * Don't return errors when creating caches (it is better just to crash since otherwise we'll `nil`-pointer exception everywhere) * Review comments * Update sample configs * Update GHA Workflow * Update Complement images to Go 1.18 * Remove the cache test from the federation API as we no longer guarantee immediate cache admission * Don't check the caches in the renewal test * Possibly fix the upgrade tests * Update to matrix-org/gomatrixserverlib#322 * Update documentation to refer to Go 1.18
2022-07-11 14:31:31 +01:00
gopkg.in/macaroon.v2 v2.1.0 // indirect
gopkg.in/yaml.v3 v3.0.1 // indirect
maunium.net/go/maulogger/v2 v2.4.1 // indirect
modernc.org/libc v1.55.3 // indirect
2024-04-09 10:24:27 +02:00
modernc.org/mathutil v1.6.0 // indirect
modernc.org/memory v1.8.0 // indirect
Bump nhooyr.io/websocket from 1.8.7 to 1.8.17 (#3456) Bumps [nhooyr.io/websocket](https://github.com/nhooyr/websocket-old) from 1.8.7 to 1.8.17. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nhooyr/websocket-old/releases">nhooyr.io/websocket's releases</a>.</em></p> <blockquote> <h2>v1.8.17</h2> <ul> <li>This library is now deprecated. Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path. It will not receive any further updates. Coder is now maintaining it at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> <h2>v1.8.16</h2> <ul> <li>Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path as it is deprecated. It will not receive any maintenance updates. Coder is maintaining it now at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> <h2>v1.8.15</h2> <ul> <li>Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path as it is deprecated. It will not receive any maintenance updates. Coder is maintaining it now at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> <h2>v1.8.14</h2> <ul> <li>Please do not use this library any longer at the <code>nhooyr.io/websocket</code> import path as it is deprecated. It will not receive any maintenance updates. Coder is maintaining it now at <a href="https://github.com/coder/websocket">https://github.com/coder/websocket</a> under the <code>github.com/coder/websocket</code> import path.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/nhooyr/websocket-old/commits/v1.8.17">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=nhooyr.io/websocket&package-manager=go_modules&previous-version=1.8.7&new-version=1.8.17)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Till Faelligen <2353100+S7evinK@users.noreply.github.com>
2024-12-18 08:01:41 +01:00
nhooyr.io/websocket v1.8.7 // indirect
2019-05-21 22:56:55 +02:00
)
go 1.22
toolchain go1.23.2