deps: bump the all-go-minor-and-patch group across 1 directory with 15 updates

[dependabot]

Bumps the all-go-minor-and-patch group with 11 updates in the / directory:

Package	From	To
github.com/Azure/azure-sdk-for-go/sdk/azcore	1.19.0	1.20.0
github.com/Azure/azure-sdk-for-go/sdk/azidentity	1.11.0	1.13.1
github.com/Microsoft/hcsshim	0.12.0	0.13.0
github.com/avast/retry-go/v4	4.6.1	4.7.0
github.com/hashicorp/go-version	1.7.0	1.8.0
github.com/prometheus/client_golang	1.23.0	1.23.2
github.com/spf13/cobra	1.10.1	1.10.2
go.uber.org/zap	1.27.0	1.27.1
golang.org/x/sys	0.35.0	0.38.0
google.golang.org/grpc	1.75.0	1.77.0
golang.org/x/time	0.12.0	0.14.0

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.19.0 to 1.20.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.20.0

1.20.0 (2025-11-06)

Features Added

• Added runtime.FetcherForNextLinkOptions.HTTPVerb to specify the HTTP verb when fetching the next page via next link. Defaults to http.MethodGet.

Bugs Fixed

• Fixed potential panic when decoding base64 strings.
• Fixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.

sdk/azcore/v1.19.1

1.19.1 (2025-09-11)

Bugs Fixed

• Fixed resource identifier parsing for provider-specific resource hierarchies containing "resourceGroups" segments.

Other Changes

• Improved error fall-back for improperly authored long-running operations.
• Upgraded dependencies.

Commits

• 466795e Prep [email protected] (#25563)
• 6fce238 [azsystemevents] Remove gopls (#25555)
• c0ac8ea Sync eng/common directory with azure-sdk-tools for PR 12476 (#25549)
• 047fb66 [Release] sdk/resourcemanager/containerregistry/armcontainerregistry/2.0.0 (#...
• 908cfea [azsystemevents] Fixing build.go to work properly with tsp-client as the orch...
• c30fd4c cosmos: Allow the Query Pipeline to return an alternative query to execute in...
• 1b44564 fixed resource type validation in ParseResourceType and correlated tests (#25...
• e566eec Sync eng/common directory with azure-sdk-tools for PR 12531 (#25545)
• 053de1a Increment package version after release of data/azcosmos (#25544)
• 8e673bb release pr (#25543)
• Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.11.0 to 1.13.1

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azidentity's releases.

sdk/azidentity/v1.13.1

1.13.1 (2025-11-10)

Bugs Fixed

• AzureCLICredential quoted arguments incorrectly on Windows

sdk/azidentity/v1.13.0

1.13.0 (2025-10-07)

Features Added

• Added AzurePowerShellCredential, which authenticates as the identity logged in to Azure PowerShell (thanks ArmaanMcleod)
• When AZURE_TOKEN_CREDENTIALS is set to ManagedIdentityCredential, DefaultAzureCredential behaves the same as does ManagedIdentityCredential when used directly. It doesn't apply special retry configuration or attempt to determine whether IMDS is available. (#25265)

Breaking Changes

• Removed the WorkloadIdentityCredential support for identity binding mode added in v1.13.0-beta.1. It will return in v1.14.0-beta.1

sdk/azidentity/v1.13.0-beta.1

1.13.0-beta.1 (2025-09-17)

Features Added

• Added AzurePowerShellCredential, which authenticates as the identity logged in to Azure PowerShell (thanks ArmaanMcleod)
• WorkloadIdentityCredential supports identity binding mode (#25056)

sdk/azidentity/v1.12.0

1.12.0 (2025-09-16)

Features Added

• Added DefaultAzureCredentialOptions.RequireAzureTokenCredentials. NewDefaultAzureCredential returns an error when this option is true and the environment variable AZURE_TOKEN_CREDENTIALS has no value.

Other Changes

• AzureDeveloperCLICredential no longer hangs when AZD_DEBUG is set
• GetToken methods of AzureCLICredential and AzureDeveloperCLICredential return an error when TokenRequestOptions.Claims has a value because these credentials can't acquire a token in that case. The error messages describe the action required to get a token.

Commits

• 6bb9b03 azidentity v1.13.1 (#25574)
• e18dbd7 Increment package version after release of azidentity (#25367)
• 4f0facc Prepare azidentity v1.13.0 for release (#25352)
• 2d8c98b Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...
• 67dd4fc Increment package version after release of azidentity (#25263)
• 1a74bc8 Prepare azidentity v1.12.0 for release (#25231)
• 839a355 Test IMDS managed identity with a remote VM (#25237)
• c352be3 Sync eng/common directory with azure-sdk-tools for PR 11931 (#25243)
• c994eca gofmt (#25234)
• 9c95d95 [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...
• Additional commits viewable in compare view

Updates github.com/Microsoft/hcsshim from 0.12.0 to 0.13.0

Release notes

Sourced from github.com/Microsoft/hcsshim's releases.

v0.13.0

What's Changed

• Enable Windows UVM functional tests by @​jiechen0826 in microsoft/hcsshim#2338
• Add support for HCN v2 endpoint and add unit tests by @​katiewasnothere in microsoft/hcsshim#2343
• Skip HVSock_* flaky tests until they are fixed by @​jiechen0826 in microsoft/hcsshim#2365
• Fix duplicate artifact name in github CI by @​jiechen0826 in microsoft/hcsshim#2366
• Fix TestLCOW_IPv6_Assignment functional test by @​katiewasnothere in microsoft/hcsshim#2359
• Enabled Linux UVM tests to run on 1ES github runner pool by @​jiechen0826 in microsoft/hcsshim#2357
• Revert "Enabled Linux UVM tests to run on 1ES github runner pool" by @​jiechen0826 in microsoft/hcsshim#2378
• github-actions: update lint action by @​anmaxvl in microsoft/hcsshim#2379
• fix golangci-lint config by @​anmaxvl in microsoft/hcsshim#2387
• HvSocket support for containers by @​anmaxvl in microsoft/hcsshim#2353
• feature: cross-container named pipes by @​anmaxvl in microsoft/hcsshim#2358
• tooling: allow pause container to be run in privileged mode by @​anmaxvl in microsoft/hcsshim#2406
• Initial support for creating confidential windows UtilityVMs by @​ambarve in microsoft/hcsshim#2388
• Deps/crypto vulnFix golang.org/x/crypto vulnerability by @​helsaawy in microsoft/hcsshim#2416
• rego policy enforcer should use the same user parsing logic as GCS by @​anmaxvl in microsoft/hcsshim#2405

New Contributors

• @​jiechen0826 made their first contribution in microsoft/hcsshim#2338

Full Changelog: microsoft/hcsshim@v0.13.0-rc.3...v0.13.0

v0.13.0-rc.3

What's Changed

• Update go version + Switch to using containerd/errdefs/pkg/errgrpc for grpc translation by @​kiashok in microsoft/hcsshim#2300
• add longPathAware to shim manifest by @​anmaxvl in microsoft/hcsshim#2303
• Fix issue with mask length of gateway addresses by @​katiewasnothere in microsoft/hcsshim#2305
• remove dmverity-vhd code and release pipeline by @​anmaxvl in microsoft/hcsshim#2318
• Add build version block for pod CPU limits updating by @​katiewasnothere in microsoft/hcsshim#2321
• Fix go.mod to have the correct Go version by @​kevpar in microsoft/hcsshim#2326
• Fix path in security policyenginesimulator sample by @​MahatiC in microsoft/hcsshim#2329
• octtrpc: Fix span status defer, add tests by @​kevpar in microsoft/hcsshim#2330
• Support for Block CIMs by @​ambarve in microsoft/hcsshim#2261
• osversion: Add new versions, fix compat bug, improve tests by @​kevpar in microsoft/hcsshim#2327
• Use abs path to testing binary by @​helsaawy in microsoft/hcsshim#2344
• Omnibus dependabot update by @​helsaawy in microsoft/hcsshim#2347

Full Changelog: microsoft/hcsshim@v0.13.0-rc.2...v0.13.0-rc.3

v0.12.9

What's Changed

• [release/0.12] Update go to 1.22 + switch to using containerd/errdefs/pkg/errgrpc for grpc translation by @​kiashok in microsoft/hcsshim#2301

Full Changelog: microsoft/hcsshim@v0.12.8...v0.12.9

v0.12.8

What's Changed

... (truncated)

Commits

• 7084bd2 rego policy enforcer should use the same user parsing logic as GCS (#2405)
• a5c5b4c Deps/crypto vulnFix golang.org/x/crypto vulnerability (#2416)
• a00144a Add support for running confidential WCOW UVMs
• 5def1d7 Allow different types of boot configurations for WCOW UVM
• b4e0744 Merge pull request #2406 from anmaxvl/privileged-pause
• e5f8fd8 tooling: allow pause container to be run in privileged mode
• d7e3842 feature: cross-container named pipes (#2358)
• 62ddb12 HvSocket support for containers (#2353)
• fa9d402 ci: fix golangci-lint config (#2387)
• a3c0edf github-actions: update lint action (#2379)
• Additional commits viewable in compare view

Updates github.com/avast/retry-go/v4 from 4.6.1 to 4.7.0

Release notes

Sourced from github.com/avast/retry-go/v4's releases.

v4.7.0

What's Changed

• support context cancel cause by @​NivKeidan in avast/retry-go#117
• Bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @​dependabot[bot] in avast/retry-go#136
• Add FullJitterBackoffDelay by @​amirrezafahimi in avast/retry-go#128
• No delay after final retry on max attempts by @​StounhandJ in avast/retry-go#129
• BackOffDelay multiplies attempts from zero by @​StounhandJ in avast/retry-go#130
• add Go version 1.25 to test matrix for expanded compatibility testing by @​JaSei in avast/retry-go#142

New Contributors

• @​NivKeidan made their first contribution in avast/retry-go#117
• @​amirrezafahimi made their first contribution in avast/retry-go#128
• @​StounhandJ made their first contribution in avast/retry-go#129

Full Changelog: avast/retry-go@4.6.1...v4.7.0

Commits

• 375037b bump version
• 306fcee Merge pull request #142 from avast/go_1_25_test_environment
• 0bdef9c ci(workflow): add Go version 1.25 to test matrix for expanded compatibility t...
• 66013da Merge pull request #130 from StounhandJ/back_off_delay
• 9e5d0d6 Merge pull request #129 from StounhandJ/master
• 5068e50 Merge pull request #128 from amirrezafahimi/master
• 22920c3 Merge pull request #136 from avast/dependabot/go_modules/github.com/stretchr/...
• 459fade Bump github.com/stretchr/testify from 1.10.0 to 1.11.1
• 6c62c20 BackOffDelay multiplies attempts from zero
• e330bce no delay after final retry on max attempts
• Additional commits viewable in compare view

Updates github.com/hashicorp/go-version from 1.7.0 to 1.8.0

Release notes

Sourced from github.com/hashicorp/go-version's releases.

v1.8.0

What's Changed

• Add CODEOWNERS file in .github/CODEOWNERS by @​mukeshjc in hashicorp/go-version#145
• Linting by @​KaushikiAnand in hashicorp/go-version#151
• Correct typos in comments by @​alexandear in hashicorp/go-version#134
• Migrate GitHub Actions updates from TSCCR to Dependabot by @​nodyhub in hashicorp/go-version#155
• Bump the github-actions-backward-compatible group with 2 updates by @​dependabot[bot] in hashicorp/go-version#157
• Update doc reference in README by @​alexandear in hashicorp/go-version#135
• Bump the github-actions-breaking group with 3 updates by @​dependabot[bot] in hashicorp/go-version#156
• [Compliance] - PR Template Changes Required by @​compliance-pr-automation-bot[bot] in hashicorp/go-version#158
• Add benchmark test for version.String() by @​Manikkumar1988 in hashicorp/go-version#159
• Bytes implementation by @​Manikkumar1988 in hashicorp/go-version#161
• Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by @​dependabot[bot] in hashicorp/go-version#167
• Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by @​dependabot[bot] in hashicorp/go-version#166
• Bump the github-actions-breaking group across 1 directory with 2 updates by @​dependabot[bot] in hashicorp/go-version#171
• [IND-4226] [COMPLIANCE] Update Copyright Headers by @​oss-core-libraries-dashboard[bot] in hashicorp/go-version#172
• drop init() by @​florianl in hashicorp/go-version#175

New Contributors

• @​mukeshjc made their first contribution in hashicorp/go-version#145
• @​KaushikiAnand made their first contribution in hashicorp/go-version#151
• @​alexandear made their first contribution in hashicorp/go-version#134
• @​nodyhub made their first contribution in hashicorp/go-version#155
• @​compliance-pr-automation-bot[bot] made their first contribution in hashicorp/go-version#158
• @​Manikkumar1988 made their first contribution in hashicorp/go-version#159
• @​oss-core-libraries-dashboard[bot] made their first contribution in hashicorp/go-version#172
• @​florianl made their first contribution in hashicorp/go-version#175

Full Changelog: hashicorp/go-version@v1.7.0...v1.8.0

Changelog

Sourced from github.com/hashicorp/go-version's changelog.

1.8.0 (Nov 28, 2025)

ENHANCEMENTS:

• Add benchmark test for version.String() in hashicorp/go-version#159
• Bytes implementation in hashicorp/go-version#161

INTERNAL:

• Add CODEOWNERS file in .github/CODEOWNERS in hashicorp/go-version#145
• Linting in hashicorp/go-version#151
• Correct typos in comments in hashicorp/go-version#134
• Migrate GitHub Actions updates from TSCCR to Dependabot in hashicorp/go-version#155
• Bump the github-actions-backward-compatible group with 2 updates in hashicorp/go-version#157
• Update doc reference in README in hashicorp/go-version#135
• Bump the github-actions-breaking group with 3 updates in hashicorp/go-version#156
• [Compliance] - PR Template Changes Required in hashicorp/go-version#158
• Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in hashicorp/go-version#167
• Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in hashicorp/go-version#166
• Bump the github-actions-breaking group across 1 directory with 2 updates in hashicorp/go-version#171
• [IND-4226] [COMPLIANCE] Update Copyright Headers in hashicorp/go-version#172
• drop init() in hashicorp/go-version#175

Commits

• 505335e Merge pull request #175 from florianl/drop-init
• 6dd734b drop init()
• 0824a89 Merge pull request #172 from hashicorp/compliance/update-headers
• 9325934 [COMPLIANCE] Update Copyright and License Headers
• 5b82b98 Bump the github-actions-breaking group across 1 directory with 2 updates (#171)
• 6c6cd77 Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking grou...
• 0e50733 Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compati...
• 4e24ef1 Bytes implementation (#161)
• 437649a Add benchmark test for version.String() (#159)
• b6c4db5 Merge pull request #158 from hashicorp/compliance-template
• Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.23.0 to 1.23.2

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.23.2 - 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

• [release-1.23] Upgrade to prometheus/[email protected] by @​aknuds1 in prometheus/client_golang#1869
• [release-1.23] Cut v1.23.2 by @​aknuds1 in prometheus/client_golang#1870

Full Changelog: prometheus/client_golang@v1.23.1...v1.23.2

v1.23.1 - 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

• [release-1.23] Upgrade to prometheus/common v0.66 by @​aknuds1 in prometheus/client_golang#1866
• [release-1.23] Cut v1.23.1 by @​aknuds1 in prometheus/client_golang#1867

Full Changelog: prometheus/client_golang@v1.23.0...v1.23.1

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.23.2 / 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

1.23.1 / 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

Commits

• 8179a56 Cut v1.23.2 (#1870)
• 4142b59 Merge pull request #1869 from prometheus/arve/upgrade-common
• 4ff40f0 Cut v1.23.1 (#1867)
• 989b029 Upgrade to prometheus/common v0.66 (#1866)
• See full diff in compare view

Updates github.com/spf13/cobra from 1.10.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Updates go.uber.org/zap from 1.27.0 to 1.27.1

Release notes

Sourced from go.uber.org/zap's releases.

v1.27.1

Enhancements:

• #1501[]: prevent Object from panicking on nils
• #1511[]: Fix a race condition in WithLazy.

Thanks to @​rabbbit, @​alshopov, @​jquirke, @​arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Changelog

Sourced from go.uber.org/zap's changelog.

1.27.1 (19 Nov 2025)

Enhancements:

• #1501[]: prevent Object from panicking on nils
• #1511[]: Fix a race condition in WithLazy.

Thanks to @​rabbbit, @​alshopov, @​jquirke, @​arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Commits

• 7b755a3 release 1.27.1 (#1521)
• d6b395b Update lazy logger not to materialize unless it's being written to (#1519)
• 4b9cea0 ci: Test with Go 1.24, Go 1.25 (#1508)
• 7c80d7b Fix race condition in WithLazy implementation (#1426) (#1511)
• 07077a6 Prevent zap.Object from panicing on nils (#1501)
• a6afd05 Fix lint check name (#1502)
• 6d48253 chore: fix typo (#1482)
• 32f2ec1 Fix the field test for bool type (#1480)
• fe16eb5 Upgrade grpc in zapgrc test package & bump go version (#1478)
• 5f00c34 test(AtomicLevel): demonstrate Handler is not vulnerable to XSS (#1477)
• Additional commits viewable in compare view

Updates golang.org/x/sys from 0.35.0 to 0.38.0

Commits

• 15129aa cpu: also use MRS instruction in getmmfr1
• ed38ca2 unix: add SizeofNhmsg and SizeofNexthopGrp
• 3675c4c cpu: use MRS instruction to read arm64 system registers
• 2a15272 unix: add consts for ELF handling
• 6239615 cpu: add HPDS, LOR, PAN detection for arm64
• ea436ef windows: add iphlpapi routing functions
• 28c5bda unix: add SetMemPolicy and its mode/flag values
• b731f78 unix/linux: switch to ubuntu 25.04, Go 1.25.1
• 1edeebe unix: mkall.sh: fail if docker build failed
• ecada54 unix: use slices.{Equal,Sort} in tests
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.75.0 to 1.77.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.77.0

API Changes

• mem: Replace the Reader interface with a struct for better performance and maintainability. (#8669)

Behavior Changes

• balancer/pickfirst: Remove support for the old pick_first LB policy via the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST=false. The new pick_first has been the default since v1.71.0. (#8672)

Bug Fixes

• xdsclient: Fix a race condition in the ADS stream implementation that could result in resource-not-found errors, causing the gRPC client channel to move to TransientFailure. (#8605)
• client: Ignore HTTP status header for gRPC streams. (#8548)
• client: Set a read deadline when closing a transport to prevent it from blocking indefinitely on a broken connection. (#8534)
  • Special Thanks: @​jgold2-stripe
• client: Fix a bug where default port 443 was not automatically added to addresses without a specified port when sent to a proxy.
  • Setting environment variable GRPC_EXPERIMENTAL_ENABLE_DEFAULT_PORT_FOR_PROXY_TARGET=false disables this change; please file a bug if any problems are encountered as we will remove this option soon. (#8613)
• balancer/pickfirst: Fix a bug where duplicate addresses were not being ignored as intended. (#8611)
• server: Fix a bug that caused overcounting of channelz metrics for successful and failed streams. (#8573)
  • Special Thanks: @​hugehoo
• balancer/pickfirst: When configured, shuffle addresses in resolver updates that lack endpoints. Since gRPC automatically adds endpoints to resolver updates, this bug only affects custom LB policies that delegate to pick_first but don't set endpoints. (#8610)
• mem: Clear large buffers before re-using. (#8670)

Performance Improvements

• transport: Reduce heap allocations to reduce time spent in garbage collection. (#8624, #8630, #8639, #8668)
• transport: Avoid copies when reading and writing Data frames. (#8657, #8667)
• mem: Avoid clearing newly allocated buffers. (#8670)

New Features

• outlierdetection: Add metrics specified in gRFC A91. (#8644)
  • Special Thanks: @​davinci26, @​PardhuKonakanchi
• stats/opentelemetry: Add support for optional label grpc.lb.backend_service in per-call metrics (#8637)
• xds: Add support for JWT Call Credentials as specified in gRFC A97. Set environment variable GRPC_EXPERIMENTAL_XDS_BOOTSTRAP_CALL_CREDS=true to enable this feature. (#8536)
  • Special Thanks: @​dimpavloff
• experimental/stats: Add support for up/down counters. (#8581)

Release 1.76.0

Dependencies

• Minimum supported Go version is now 1.24 (#8509)
  • Special Thanks: @​kevinGC

Bug Fixes

• client: Return status INTERNAL when a server sends zero response messages for a unary or client-streaming RPC. (#8523)
• client: Fail RPCs with status INTERNAL instead of UNKNOWN upon receiving http headers with status 1xx and END_STREAM flag set. (#8518)
  • Special Thanks: @​vinothkumarr227
• pick_first: Fix race condition that could cause pick_first to get stuck in IDLE state on backend address change. (#8615)

... (truncated)

Commits

• 805b1f8 Change version to 1.77.0 (#8677)
• ea7b66e Cherrypick #8702 to v1.77.x (#8709)
• cadae08 Cherry-pick #8536 to v1.77.x (#8691)
• 4288cfc Cherrypick #8657 and #8667 to v1.77.x (#8690)
• f959da6 transport: Reduce heap allocations (#8668)
• 0d49384 deps: update all dependencies (#8673)
• e3e142d pickfirst: Remove old pickfirst (#8672)
• 254ab10 documentation: fix typos in benchmark and auth docs (#8674)
• 2d56bda mem: Remove Reader interface and export the concrete struct (#8669)
• 8ab0c82 mem: Avoid clearing new buffers and clear buffers from simpleBufferPools (#8670)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.8 to 1.36.10

Updates github.com/prometheus/common from 0.65.0 to 0.66.1

Release notes

Sourced from github.com/prometheus/common's releases.

v0.66.1

This release has no functional changes, it just drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement).

What's Changed

• Revert "Use github.com/grafana/regexp instead of regexp" by @​aknuds1 in prometheus/common#835
• Move to supported version of yaml parser by @​dims in prometheus/common#834
• Revert "Use go.uber.org/atomic instead of sync/atomic (#825)" by @​aknuds1 in prometheus/common#838

Full Changelog: prometheus/common@v1.20.99...v0.66.1

v0.66.0

⚠️ Breaking Changes ⚠️

• A default-constructed TextParser will be invalid. It must have a valid scheme set, so users should use the NewTextParser function to create a valid TextParser. Otherwise parsing will panic with "Invalid name validation scheme requested: unset".

What's Changed

• model: add constants for type and unit labels. by @​bwplotka in prometheus/common#801

• model.ValidationScheme: Support encoding as YAML by @​aknuds1 in prometheus/common#799

• fix(promslog): always print time.Duration values as go duration strings by @​tjhop in prometheus/common#798

• Add ValidationScheme methods IsValidMetricName and IsValidLabelName by @​aknuds1 in prometheus/common#806

• Fix delimited proto not escaped correctly by @​thampiotr in prometheus/common#809

• Decoder: Remove use of global name validation and add validation by @​ywwg in prometheus/common#808

• ValidationScheme implements pflag.Value and json.Marshaler/Unmarshaler interfaces by @​juliusmh in prometheus/common#807

• expfmt: Add NewTextParser function by @​aknuds1 in prometheus/common#816

• Enable the godot linter by @​aknuds1 in prometheus/common#821

• Enable usestdlibvars linter by @​aknuds1 in prometheus/common#820

• Enable unconvert linter by @​aknuds1 in prometheus/common#819

• Enable the fatcontext linter by @​aknuds1 in prometheus/common#822

• Enable gocritic linter by @​aknuds1 in

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.