Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[10.0.x] Bump the dev-dependencies group with 2 updates #11992

Open
wants to merge 1 commit into
base: jetty-10.0.x
Choose a base branch
from
Open

[10.0.x] Bump the dev-dependencies group with 2 updates #11992

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 1, 2024

Bumps the dev-dependencies group with 2 updates: org.junit:junit-bom and io.grpc:grpc-core.

Updates org.junit:junit-bom from 5.10.2 to 5.10.3

Release notes

Sourced from org.junit:junit-bom's releases.

JUnit 5.10.3 = Platform 1.10.3 + Jupiter 5.10.3 + Vintage 5.10.3

See Release Notes.

Full Changelog: junit-team/junit5@r5.10.2...r5.10.3

Commits
  • 55d1232 Release 5.10.3
  • 4455093 Remove accidental heading
  • b86a681 Remove JDK 21 as it's no longer available via Oracle's setup-java step
  • bc1608c Clean up release notes
  • 316ed31 Use Liberica for JDK 8 for compatibility with Apple Silicon
  • ad7c5dd Update copyright headers to 2024
  • 6c663b1 Use same default seed for method and class ordering (#3821)
  • d29e3eb Fix NPE when deserializing TestIdentifier (#3820)
  • f936c01 Fix class-level execution conditions on GraalVM (#3785)
  • 76b7c05 Allow GraalVmStarterTests to run remotely on Test Distribution agents
  • Additional commits viewable in compare view

Updates io.grpc:grpc-core from 1.64.0 to 1.65.0

Release notes

Sourced from io.grpc:grpc-core's releases.

v1.65.0

grpc-netty in this release is compatible with Netty 4.1.111; it fixes the incompatibility that caused data corruption. grpc-netty-shaded is still using Netty 4.1.100.

New Features

  • New module grpc-gcp-csm-observability (df8cfe9dd)

Improvements

  • api: Add ClientStreamTracer.inboundHeaders(Metadata) (960012d76). This is the same as the existing inboundHeaders(), but is provided the Metadata
  • api: Fix various typos in the documentation (#11144) (6ec744f2a)
  • core: When queuing RPCs, don’t request picks from the LB twice (8844cf7b8). This could be viewed as a small performance optimization, but mainly reduces the amount of race-handling code
  • util: Improve AdvancedTlsX509KeyManager’s documentation, verification, and testing. (#11139) (781b4c457) This change shows @ExperimentalApi being removed, but it was re-added in 3c97245 before the release
  • examples: Fix broken command in reflection readme (#11131) (c31dbf48a)
  • binder: Add a connection timeout (#11255) (791f894e2)

Bug fixes

  • core: Exit idle mode when delayed transport is in use (fea577c80). This was a long-standing race that could cause RPCs to hang, but was very unlikely to be hit. Avoiding the double-picking (8844cf7b8) made the race more visible
  • netty: Fix Netty composite buffer merging to be compatible with Netty 4.1.111 (#11294) (0fea7dd). The previous behavior easily caused data corruption
  • okhttp: Workaround SSLSocket not noticing socket is closed (a28357e19). Previously, shutting down when a new connection was being established could result in the server never becoming terminated
  • inprocess: Fix listener race if transport is shutdown while starting (e4e7f3a06). This issue was unlikely to be hit outside of specialized tests
  • services: restore //services:binarylog bazel target (#11292) (d57f271). This fixes a regression introduced in 1.62.2
  • binder: Wait for all server transports to terminate before returning the security policy executor to the object pool (#11240) (34ee600dc)
  • binder: Reject further SETUP_TRANSPORT requests post-BinderServer shutdown (#11260) (1670e97f7)
  • bazel: Include missing com_google_protobuf_javalite in MODULE.bazel (#11147) (f995c121e)

Thanks to

@​hakusai22 @​firov @​mateusazis @​Mir3605 @​niloc132

v1.64.1

What's Changed

Commits
  • 6296726 Bump version to 1.65.0
  • 4d25c34 Update README etc to reference 1.65.0
  • fb761a1 services: restore //services:binarylog bazel target (#11292)
  • 3c97245 util: Add ExperimentalApi to AdvancedTlsX509KeyManager
  • c11b560 Remove unused imports from CSM Observability example (#11307) (#11310)
  • 4824eaf all:Add GCP CSM Observability (#11305) (#11308)
  • d6ce8c5 examples: Add gRPC OpenTelemetry example (v1.65.x backport) (#11309)
  • b9927b0 netty:Fix Netty composite buffer merging to be compatible with Netty 4.1.111 ...
  • 71eca4e opentelemetry: Add explicit histogram buckets for per-call metrics (#11281) (...
  • f54cdf0 examples: Add GCP CSM Observability example (v1.65.x backport) (#11286)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
[10.0.x] Bump the dev-dependencies group with 2 updates
f9b78f0 
Bumps the dev-dependencies group with 2 updates: [org.junit:junit-bom](https://github.com/junit-team/junit5) and [io.grpc:grpc-core](https://github.com/grpc/grpc-java).


Updates `org.junit:junit-bom` from 5.10.2 to 5.10.3
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](junit-team/junit5@r5.10.2...r5.10.3)

Updates `io.grpc:grpc-core` from 1.64.0 to 1.65.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](grpc/grpc-java@v1.64.0...v1.65.0)

---
updated-dependencies:
- dependency-name: org.junit:junit-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: io.grpc:grpc-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 1, 2024
@dependabot dependabot bot added this to the 10.0.x milestone Jul 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
10.0.x
Development

Successfully merging this pull request may close these issues.

None yet
0 participants