This is an automated email from the ASF dual-hosted git repository.
zeroshade pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow-go.git
The following commit(s) were added to refs/heads/main by this push:
new a8542303 chore: Bump google.golang.org/grpc from 1.74.2 to 1.75.0
(#483)
a8542303 is described below
commit a85423035e7091d3857f879e3181adc358581722
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Wed Aug 27 12:08:57 2025 -0400
chore: Bump google.golang.org/grpc from 1.74.2 to 1.75.0 (#483)
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from
1.74.2 to 1.75.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/grpc/grpc-go/releases";>google.golang.org/grpc's
releases</a>.</em></p>
<blockquote>
<h2>Release 1.75.0</h2>
<h1>Behavior Changes</h1>
<ul>
<li>xds: Remove support for GRPC_EXPERIMENTAL_XDS_FALLBACK environment
variable. Fallback support can no longer be disabled. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8482";>#8482</a>)</li>
<li>stats: Introduce <code>DelayedPickComplete</code> event, a type
alias of <code>PickerUpdated</code>. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8465";>#8465</a>)
<ul>
<li>This (combined) event will now be emitted only once per call, when a
transport is successfully selected for the attempt.</li>
<li>OpenTelemetry metrics will no longer have multiple "Delayed LB
pick complete" events in Go, matching other gRPC languages.</li>
<li>A future release will delete the <code>PickerUpdated</code>
symbol.</li>
</ul>
</li>
<li>credentials: Properly apply <code>grpc.WithAuthority</code> as the
highest-priority option for setting authority, above the setting in the
credentials themselves. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8488";>#8488</a>)
<ul>
<li>Now that this <code>WithAuthority</code> is available, the
credentials should not be used to override the authority.</li>
</ul>
</li>
<li>round_robin: Randomize the order in which addresses are connected to
in order to spread out initial RPC load between clients. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8438";>#8438</a>)</li>
<li>server: Return status code INTERNAL when a client sends more than
one request in unary and server streaming RPC. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8385";>#8385</a>)
<ul>
<li>This is a behavior change but also a bug fix to bring gRPC-Go in
line with the gRPC spec.</li>
</ul>
</li>
</ul>
<h1>New Features</h1>
<ul>
<li>dns: Add an environment variable
(<code>GRPC_ENABLE_TXT_SERVICE_CONFIG</code>) to provide a way to
disable TXT lookups in the DNS resolver (by setting it to
<code>false</code>). By default, TXT lookups are enabled, as they were
previously. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8377";>#8377</a>)</li>
</ul>
<h1>Bug Fixes</h1>
<ul>
<li>xds: Fix regression preventing empty node IDs in xDS bootstrap
configuration. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8476";>#8476</a>)
<ul>
<li>Special Thanks: <a
href="https://github.com/davinci26";><code>@​davinci26</code></a></li>
</ul>
</li>
<li>xds: Fix possible panic when certain invalid resources are
encountered. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8412";>#8412</a>)
<ul>
<li>Special Thanks: <a
href="https://github.com/wooffie";><code>@​wooffie</code></a></li>
</ul>
</li>
<li>xdsclient: Fix a rare panic caused by processing a response from a
closed server. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8389";>#8389</a>)</li>
<li>stats: Fix metric unit formatting by enclosing non-standard units
like <code>call</code> and <code>endpoint</code> in curly braces to
comply with UCUM and gRPC OpenTelemetry guidelines. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8481";>#8481</a>)</li>
<li>xds: Fix possible panic when clusters are removed from the xds
configuration. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8428";>#8428</a>)</li>
<li>xdsclient: Fix a race causing "resource doesn not exist"
when rapidly subscribing and unsubscribing to the same resource. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8369";>#8369</a>)</li>
<li>client: When determining the authority, properly percent-encode (if
needed, which is unlikely) when the target string omits the hostname and
only specifies a port
(<code>grpc.NewClient(":<port-number-or-name>")</code>).
(<a
href="https://redirect.github.com/grpc/grpc-go/issues/8488";>#8488</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/grpc/grpc-go/commit/b9788ef265596eda98a4391079c70c3992ed47cb";><code>b9788ef</code></a>
Change version to 1.75.0 (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8493";>#8493</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/2bd74b28f5a7d464de4ed6927aef4b69abc0d3af";><code>2bd74b2</code></a>
credentials: fix behavior of grpc.WithAuthority and credential handshake
prec...</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/9fa3267859958a7fa0141a8180102850f3d5842c";><code>9fa3267</code></a>
xds: remove xds client fallback environment variable (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8482";>#8482</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/62ec29fd9b3f9ea3cea6dc08a31e837aa92678b7";><code>62ec29f</code></a>
grpc: Fix cardinality violations in non-client streaming RPCs. (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8385";>#8385</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/85240a5b02defe7b653ccba66866b4370c982b6a";><code>85240a5</code></a>
stats: change non-standard units to annotations (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8481";>#8481</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/ac13172781fae5593fd97ce07c3019c4044a71cd";><code>ac13172</code></a>
update deps (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8478";>#8478</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/0a895bc971a89c68c00070f792a28cc533846780";><code>0a895bc</code></a>
examples/opentelemetry: use experimental metrics in example (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8441";>#8441</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/8b61e8f7b8fe9b0a4217336f6a4a31731338c3b2";><code>8b61e8f</code></a>
xdsclient: do not process updates from closed server channels (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8389";>#8389</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/7238ab1822875fdc2864e06fb224236dc7cbf3bf";><code>7238ab1</code></a>
Allow empty nodeID (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8476";>#8476</a>)</li>
<li><a
href="https://github.com/grpc/grpc-go/commit/9186ebd774370e3b3232d1b202914ff8fc2c56d6";><code>9186ebd</code></a>
cleanup: use slices.Equal to simplify code (<a
href="https://redirect.github.com/grpc/grpc-go/issues/8472";>#8472</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/grpc/grpc-go/compare/v1.74.2...v1.75.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
go.mod | 4 ++--
go.sum | 28 ++++++++++++++--------------
2 files changed, 16 insertions(+), 16 deletions(-)
diff --git a/go.mod b/go.mod
index 561a5a99..eeffcb4c 100644
--- a/go.mod
+++ b/go.mod
@@ -48,7 +48,7 @@ require (
golang.org/x/tools v0.36.0
golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da
gonum.org/v1/gonum v0.16.0
- google.golang.org/grpc v1.74.2
+ google.golang.org/grpc v1.75.0
google.golang.org/protobuf v1.36.7
modernc.org/sqlite v1.29.6
)
@@ -90,7 +90,7 @@ require (
golang.org/x/net v0.43.0 // indirect
golang.org/x/term v0.34.0 // indirect
golang.org/x/text v0.28.0 // indirect
- google.golang.org/genproto/googleapis/rpc
v0.0.0-20250528174236-200df99c418a // indirect
+ google.golang.org/genproto/googleapis/rpc
v0.0.0-20250707201910-8d1bb00bc6a7 // indirect
gopkg.in/yaml.v3 v3.0.1 // indirect
modernc.org/gc/v3 v3.0.0-20240107210532-573471604cb6 // indirect
modernc.org/libc v1.41.0 // indirect
diff --git a/go.sum b/go.sum
index 2d836e85..595c31b2 100644
--- a/go.sum
+++ b/go.sum
@@ -178,16 +178,16 @@ github.com/zeebo/xxh3 v1.0.2
h1:xZmwmqxHZA8AI603jOQ0tMqmBr9lPeFwGg6d+xy9DC0=
github.com/zeebo/xxh3 v1.0.2/go.mod
h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
go.opentelemetry.io/auto/sdk v1.1.0
h1:cH53jehLUN6UFLY71z+NDOiNJqDdPRaXzTel0sJySYA=
go.opentelemetry.io/auto/sdk v1.1.0/go.mod
h1:3wSPjt5PWp2RhlCcmmOial7AvC4DQqZb7a7wCow3W8A=
-go.opentelemetry.io/otel v1.36.0
h1:UumtzIklRBY6cI/lllNZlALOF5nNIzJVb16APdvgTXg=
-go.opentelemetry.io/otel v1.36.0/go.mod
h1:/TcFMXYjyRNh8khOAO9ybYkqaDBb/70aVwkNML4pP8E=
-go.opentelemetry.io/otel/metric v1.36.0
h1:MoWPKVhQvJ+eeXWHFBOPoBOi20jh6Iq2CcCREuTYufE=
-go.opentelemetry.io/otel/metric v1.36.0/go.mod
h1:zC7Ks+yeyJt4xig9DEw9kuUFe5C3zLbVjV2PzT6qzbs=
-go.opentelemetry.io/otel/sdk v1.36.0
h1:b6SYIuLRs88ztox4EyrvRti80uXIFy+Sqzoh9kFULbs=
-go.opentelemetry.io/otel/sdk v1.36.0/go.mod
h1:+lC+mTgD+MUWfjJubi2vvXWcVxyr9rmlshZni72pXeY=
-go.opentelemetry.io/otel/sdk/metric v1.36.0
h1:r0ntwwGosWGaa0CrSt8cuNuTcccMXERFwHX4dThiPis=
-go.opentelemetry.io/otel/sdk/metric v1.36.0/go.mod
h1:qTNOhFDfKRwX0yXOqJYegL5WRaW376QbB7P4Pb0qva4=
-go.opentelemetry.io/otel/trace v1.36.0
h1:ahxWNuqZjpdiFAyrIoQ4GIiAIhxAunQR6MUoKrsNd4w=
-go.opentelemetry.io/otel/trace v1.36.0/go.mod
h1:gQ+OnDZzrybY4k4seLzPAWNwVBBVlF2szhehOBB/tGA=
+go.opentelemetry.io/otel v1.37.0
h1:9zhNfelUvx0KBfu/gb+ZgeAfAgtWrfHJZcAqFC228wQ=
+go.opentelemetry.io/otel v1.37.0/go.mod
h1:ehE/umFRLnuLa/vSccNq9oS1ErUlkkK71gMcN34UG8I=
+go.opentelemetry.io/otel/metric v1.37.0
h1:mvwbQS5m0tbmqML4NqK+e3aDiO02vsf/WgbsdpcPoZE=
+go.opentelemetry.io/otel/metric v1.37.0/go.mod
h1:04wGrZurHYKOc+RKeye86GwKiTb9FKm1WHtO+4EVr2E=
+go.opentelemetry.io/otel/sdk v1.37.0
h1:ItB0QUqnjesGRvNcmAcU0LyvkVyGJ2xftD29bWdDvKI=
+go.opentelemetry.io/otel/sdk v1.37.0/go.mod
h1:VredYzxUvuo2q3WRcDnKDjbdvmO0sCzOvVAiY+yUkAg=
+go.opentelemetry.io/otel/sdk/metric v1.37.0
h1:90lI228XrB9jCMuSdA0673aubgRobVZFhbjxHHspCPc=
+go.opentelemetry.io/otel/sdk/metric v1.37.0/go.mod
h1:cNen4ZWfiD37l5NhS+Keb5RXVWZWpRE+9WyVCpbo5ps=
+go.opentelemetry.io/otel/trace v1.37.0
h1:HLdcFNbRQBE2imdSEgm/kwqmQj1Or1l/7bW6mxVK7z4=
+go.opentelemetry.io/otel/trace v1.37.0/go.mod
h1:TlgrlQ+PtQO5XFerSPUYG0JSgGyryXewPGyayAWSBS0=
golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod
h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod
h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0
h1:R84qjqJb5nVJMxqWYb3np9L5ZsaDtB+a39EqjV0JSUM=
@@ -246,10 +246,10 @@ golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da
h1:noIWHXmPHxILtqtCOPIhS
golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da/go.mod
h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
gonum.org/v1/gonum v0.16.0 h1:5+ul4Swaf3ESvrOnidPp4GZbzf0mxVQpDCYUQE7OJfk=
gonum.org/v1/gonum v0.16.0/go.mod
h1:fef3am4MQ93R2HHpKnLk4/Tbh/s0+wqD5nfa6Pnwy4E=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20250528174236-200df99c418a
h1:v2PbRU4K3llS09c7zodFpNePeamkAwG3mPrAery9VeE=
-google.golang.org/genproto/googleapis/rpc
v0.0.0-20250528174236-200df99c418a/go.mod
h1:qQ0YXyHHx3XkvlzUtpXDkS29lDSafHMZBAZDc03LQ3A=
-google.golang.org/grpc v1.74.2 h1:WoosgB65DlWVC9FqI82dGsZhWFNBSLjQ84bjROOpMu4=
-google.golang.org/grpc v1.74.2/go.mod
h1:CtQ+BGjaAIXHs/5YS3i473GqwBBa1zGQNevxdeBEXrM=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20250707201910-8d1bb00bc6a7
h1:pFyd6EwwL2TqFf8emdthzeX+gZE1ElRq3iM8pui4KBY=
+google.golang.org/genproto/googleapis/rpc
v0.0.0-20250707201910-8d1bb00bc6a7/go.mod
h1:qQ0YXyHHx3XkvlzUtpXDkS29lDSafHMZBAZDc03LQ3A=
+google.golang.org/grpc v1.75.0 h1:+TW+dqTd2Biwe6KKfhE5JpiYIBWq865PhKGSXiivqt4=
+google.golang.org/grpc v1.75.0/go.mod
h1:JtPAzKiq4v1xcAB2hydNlWI2RnF85XXcV0mhKXr2ecQ=
google.golang.org/protobuf v1.36.7
h1:IgrO7UwFQGJdRNXH/sQux4R1Dj1WAKcLElzeeRaXV2A=
google.golang.org/protobuf v1.36.7/go.mod
h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY=
gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod
h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
