fix(core): Dummy PR to validate release vbranch. #9191

harshil-goel · 2024-10-07T15:23:39Z

Title format:

Topic(Area): Feature
Topic must be one of build|ci|docs|feat|fix|perf|refactor|chore|test
Area must be one of acl|audit|backup|badger|cdc|dql|export|graphql|indexing|multi-tenancy|raft|restore|upgrade|zero
- Add [BREAKING] if it is a breaking change

Body Format:

Description:
Fixes:
Closes:
Docs:

Go version is required to be explicit for CodeQL scanning to work

…o 25.0.6+incompatible (#9123) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.5+incompatible to 25.0.6+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v25.0.6</h2> <h2>25.0.6</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6">docker/cli, 25.0.6 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6">moby/moby, 25.0.6 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a fix for <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110">CVE-2024-41110</a> / <a href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq">GHSA-v23v-6jw2-98fq</a> that impacted setups using <a href="https://docs.docker.com/engine/extend/plugins_authorization/">authorization plugins (AuthZ)</a> for access control.</p> <h3>Bug fixes and enhancements</h3> <ul> <li>[25.0] remove erroneous <code>platform</code> from image <code>config</code> OCI descriptor in <code>docker save</code> output. <a href="https://redirect.github.com/moby/moby/pull/47695">moby/moby#47695</a></li> <li>[25.0 backport] Fix a nil dereference when getting image history for images having layers without the <code>Created</code> value set. <a href="https://redirect.github.com/moby/moby/pull/47759">moby/moby#47759</a></li> <li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a href="https://redirect.github.com/moby/moby/pull/47830">moby/moby#47830</a></li> <li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. <a href="https://redirect.github.com/moby/moby/pull/47869">moby/moby#47869</a></li> <li>[25.0 backport] don't depend on containerd platform.Parse to return a typed error. <a href="https://redirect.github.com/moby/moby/pull/47890">moby/moby#47890</a></li> <li>[25.0 backport] builder/mobyexporter: Add missing nil check <a href="https://redirect.github.com/moby/moby/pull/47987">moby/moby#47987</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. <a href="https://redirect.github.com/moby/moby/pull/47724">moby/moby#47724</a></li> <li>Update Go runtime to 1.21.12, which contains security fixes for <a href="https://github.com/advisories/GHSA-hw49-2p59-3mhj">CVE-2024-24791</a> <a href="https://redirect.github.com/moby/moby/pull/48146">moby/moby#48146</a></li> <li>Update Containerd (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.20">v1.7.20</a>. <a href="https://redirect.github.com/moby/moby/pull/48199">moby/moby#48199</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6">https://github.com/moby/moby/compare/v25.0.5...v25.0.6</a></p> <h2>v25.0.5</h2> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li> <p><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></p> </li> <li> <p>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></p> </li> <li> <p>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></p> </li> <li> <p>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></p> </li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/b08a51fe16eed67de3861c03b363ba403643b12e"><code>b08a51f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48231">#48231</a> from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li> <li><a href="https://github.com/moby/moby/commit/d151b0f87f9673f206b477c90db25956e1704ba5"><code>d151b0f</code></a> vendor: OTEL v0.46.1 / v1.21.0</li> <li><a href="https://github.com/moby/moby/commit/c6ba9a5124603357bfc4a64971cbb9708180f06e"><code>c6ba9a5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48225">#48225</a> from austinvazquez/backport-workflow-artifact-reten...</li> <li><a href="https://github.com/moby/moby/commit/4673a3ca2c37ae30270a29c281ccd9477107dcee"><code>4673a3c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48227">#48227</a> from austinvazquez/backport-backport-branch-check-t...</li> <li><a href="https://github.com/moby/moby/commit/30f89081028ce6fb1b49a71c02c156dacbe9aa62"><code>30f8908</code></a> github/ci: Check if backport is opened against the expected branch</li> <li><a href="https://github.com/moby/moby/commit/7454d6a2e672b0b977aaa14463c9aeb53acd06af"><code>7454d6a</code></a> ci: update workflow artifacts retention</li> <li><a href="https://github.com/moby/moby/commit/65cc597cea28cdc25bea3b8a86384b4251872919"><code>65cc597</code></a> Merge commit from fork</li> <li><a href="https://github.com/moby/moby/commit/b722836927669b414569c42f096869cd800b59a6"><code>b722836</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48199">#48199</a> from austinvazquez/update-containerd-binary-to-1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e8ecb9c76d97579ebbf3f9d3ef770d08ac303809"><code>e8ecb9c</code></a> update containerd binary to v1.7.20</li> <li><a href="https://github.com/moby/moby/commit/e6cae1f2373d4ff37499570e67f23b2cebb7a043"><code>e6cae1f</code></a> update containerd binary to v1.7.19</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v24.0.5...v25.0.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=24.0.5+incompatible&new-version=25.0.6+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dgraph-io/dgraph/network/alerts). </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

This is needed for some of the upcoming work

add dependabot automated version bumps; behavior is configured as: - group all patch version bumps into one PR - group all minor version bumps into one PR - open individual PRs for all major version bumps

Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4 to 6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2>  <h2>What's Changed</h2> <p>This version removes <code>annotations</code> option (because it was useless), and removes the default output format (<code>github-actions</code>). The annotations are still produced but with another approach.</p> <h3>Changes</h3> <ul> <li>feat: rewrite format handling by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1038">golangci/golangci-lint-action#1038</a></li> </ul> <h3>Dependencies</h3> <ul> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.7.1 to 7.8.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1034">golangci/golangci-lint-action#1034</a></li> <li>build(deps): bump <code>@types/node</code> from 20.12.7 to 20.12.8 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1036">golangci/golangci-lint-action#1036</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.7.1 to 7.8.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1035">golangci/golangci-lint-action#1035</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v5.3.0...v6.0.0">https://github.com/golangci/golangci-lint-action/compare/v5.3.0...v6.0.0</a></p> <h2>v5.3.0</h2>  <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li>feat: uses 2 dots compare syntax for push diff by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1030">golangci/golangci-lint-action#1030</a></li> <li>feat: add option to control cache invalidation interval by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1031">golangci/golangci-lint-action#1031</a></li> <li>feat: use OS and working-directory as cache key by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1032">golangci/golangci-lint-action#1032</a></li> <li>feat: improve log about pwd/cwd by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1033">golangci/golangci-lint-action#1033</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v5.2.0...v5.3.0">https://github.com/golangci/golangci-lint-action/compare/v5.2.0...v5.3.0</a></p> <h2>v5.2.0</h2>  <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li><a href="https://github.com/golangci/golangci-lint-action/commit/aebff4bd9cd0198ff4f020915c27258a9edc4c01">feat: add an option to enable/disable annotations</a> by <a href="https://github.com/ldez"><code>@ldez</code></a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v5.1.0...v5.2.0">https://github.com/golangci/golangci-lint-action/compare/v5.1.0...v5.2.0</a></p> <h2>v5.1.0</h2>  <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li>feat: support for <code>pull</code> and <code>merge_group</code> events with the option <code>only-new-issues</code> by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1029">golangci/golangci-lint-action#1029</a></li> </ul> <h3>Dependencies</h3> <ul> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.7.0 to 7.7.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1027">golangci/golangci-lint-action#1027</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.7.0 to 7.7.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1028">golangci/golangci-lint-action#1028</a></li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golangci/golangci-lint-action/commit/aaa42aa0628b4ae2578232a66b541047968fac86"><code>aaa42aa</code></a> feat: allow to skip golangci-lint installation (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1079">#1079</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/9ec89731c3231147ae014c73448ce9a7240d661b"><code>9ec8973</code></a> build(deps): bump <code>@types/node</code> from 20.14.11 to 22.0.0 in the dependencies gro...</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/58838cffc6bda5bd2ec1d112b85e698357d129ab"><code>58838cf</code></a> build(deps-dev): bump the dev-dependencies group with 3 updates (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1077">#1077</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/9f3ba2c3a8aadb9f3c42d252c4c227a6b0d98539"><code>9f3ba2c</code></a> build(deps): bump <code>@types/node</code> from 20.14.10 to 20.14.11 in the dependencies g...</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/2bd7a04e9163c07aaa1d5eabf703d7380133d655"><code>2bd7a04</code></a> build(deps-dev): bump the dev-dependencies group with 3 updates (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1074">#1074</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/db819a10bda59ee2a8f342af52c07e329576a0f5"><code>db819a1</code></a> build(deps-dev): bump the dev-dependencies group with 3 updates (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1073">#1073</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/d09fb0808ae08b4310fe3140992ba2475deac1c0"><code>d09fb08</code></a> build(deps): bump <code>@types/node</code> from 20.14.9 to 20.14.10 in the dependencies gr...</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/605617a3e2eaed801714e186af8a440496363f8d"><code>605617a</code></a> build(deps-dev): bump the dev-dependencies group with 4 updates (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1071">#1071</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/66f63c74bb4cdd7d445cb7c8c18dee38449cb1c5"><code>66f63c7</code></a> chore: generate</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/2c01d264abe04570211ba8d3c6d3aa17eced3c80"><code>2c01d26</code></a> fix: home dir on Windows</li> <li>Additional commits viewable in <a href="https://github.com/golangci/golangci-lint-action/compare/v4...v6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golangci/golangci-lint-action&package-manager=github_actions&previous-version=4&new-version=6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h2>What's Changed</h2> <p>The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.</p> <p>ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads <em>must</em> use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.</p> <p>For more information, please see:</p> <ol> <li>The <a href="https://github.blog/changelog/2023-12-14-github-actions-artifacts-v4-is-now-generally-available/">changelog</a> post.</li> <li>The <a href="https://github.com/actions/upload-artifact/blob/main/README.md">README</a>.</li> <li>The <a href="https://github.com/actions/upload-artifact/blob/main/docs/MIGRATION.md">migration documentation</a>.</li> <li>As well as the underlying npm package, <a href="https://github.com/actions/toolkit/tree/main/packages/artifact"><code>@actions/artifact</code></a> documentation.</li> </ol> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/vmjoseph"><code>@vmjoseph</code></a> made their first contribution in <a href="https://redirect.github.com/actions/upload-artifact/pull/464">actions/upload-artifact#464</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v3...v4.0.0">https://github.com/actions/upload-artifact/compare/v3...v4.0.0</a></p> <h2>v3.1.3</h2> <h2>What's Changed</h2> <ul> <li>chore(github): remove trailing whitespaces by <a href="https://github.com/ljmf00"><code>@ljmf00</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/313">actions/upload-artifact#313</a></li> <li>Bump <code>@actions/artifact</code> version to v1.1.2 by <a href="https://github.com/bethanyj28"><code>@bethanyj28</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/436">actions/upload-artifact#436</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v3...v3.1.3">https://github.com/actions/upload-artifact/compare/v3...v3.1.3</a></p> <h2>v3.1.2</h2> <ul> <li>Update all <code>@actions/*</code> NPM packages to their latest versions- <a href="https://redirect.github.com/actions/upload-artifact/issues/374">#374</a></li> <li>Update all dev dependencies to their most recent versions - <a href="https://redirect.github.com/actions/upload-artifact/issues/375">#375</a></li> </ul> <h2>v3.1.1</h2> <ul> <li>Update actions/core package to latest version to remove <code>set-output</code> deprecation warning <a href="https://redirect.github.com/actions/upload-artifact/issues/351">#351</a></li> </ul> <h2>v3.1.0</h2> <h2>What's Changed</h2> <ul> <li>Bump <code>@actions/artifact</code> to v1.1.0 (<a href="https://redirect.github.com/actions/upload-artifact/pull/327">actions/upload-artifact#327</a>) <ul> <li>Adds checksum headers on artifact upload (<a href="https://redirect.github.com/actions/toolkit/pull/1095">actions/toolkit#1095</a>) (<a href="https://redirect.github.com/actions/toolkit/pull/1063">actions/toolkit#1063</a>)</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/834a144ee995460fba8ed112a2fc961b36a5ec5a"><code>834a144</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/594">#594</a> from actions/robherley/4.3.6</li> <li><a href="https://github.com/actions/upload-artifact/commit/134dcf33c0b9454c4b17a936843d7e21dccdc335"><code>134dcf3</code></a> v4.3.6</li> <li><a href="https://github.com/actions/upload-artifact/commit/73a0b9c9543c5bbf0637ed4d2c7798a21949ac8a"><code>73a0b9c</code></a> revert back to <code>@actions/artifact</code> 2.1.8</li> <li><a href="https://github.com/actions/upload-artifact/commit/89ef406dd8d7e03cfd12d9e0a4a378f454709029"><code>89ef406</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/588">#588</a> from actions/robherley/4.3.5</li> <li><a href="https://github.com/actions/upload-artifact/commit/23d796df36a979af3abdb7f632f5391e4f15fa07"><code>23d796d</code></a> license updates</li> <li><a href="https://github.com/actions/upload-artifact/commit/e445c64bc2a4ebc990affbc00aa66b845f05600a"><code>e445c64</code></a> bump <code>@actions/artifact</code> to v2.1.9</li> <li><a href="https://github.com/actions/upload-artifact/commit/0b2256b8c012f0828dc542b3febcab082c67f72b"><code>0b2256b</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/584">#584</a> from actions/robherley/bump-pkgs</li> <li><a href="https://github.com/actions/upload-artifact/commit/488dcefb9bf01619ac19bad29c5c5409a1e4dd4c"><code>488dcef</code></a> licensed cache</li> <li><a href="https://github.com/actions/upload-artifact/commit/04c51f57662651dd3333286989e2db1111c0fd07"><code>04c51f5</code></a> ncc</li> <li><a href="https://github.com/actions/upload-artifact/commit/32a9e276a8f8ac18b4b2dce8213ed340ed4e5ed8"><code>32a9e27</code></a> bump <code>@actions/artifact</code> and npm audit</li> <li>Additional commits viewable in <a href="https://github.com/actions/upload-artifact/compare/v3...v4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

update format

…14.2 (#9140) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.13.0 to 1.14.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bits-and-blooms/bitset/releases">github.com/bits-and-blooms/bitset's releases</a>.</em></p> <blockquote> <h2>Version 1.14.2</h2> <h2>What's Changed</h2> <ul> <li>len64() - fix docstring, tests for go1.8 by <a href="https://github.com/skullhole"><code>@skullhole</code></a> in <a href="https://redirect.github.com/bits-and-blooms/bitset/pull/168">bits-and-blooms/bitset#168</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/bits-and-blooms/bitset/compare/v1.14.1...v1.14.2">https://github.com/bits-and-blooms/bitset/compare/v1.14.1...v1.14.2</a></p> <h2>Version 1.14.1</h2> <p>Minor code simplification.</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/bits-and-blooms/bitset/compare/v1.14.0...v1.14.1">https://github.com/bits-and-blooms/bitset/compare/v1.14.0...v1.14.1</a></p> <h2>Version 1.14.0</h2> <h2>What's Changed</h2> <ul> <li>fix for issue 162 by <a href="https://github.com/lemire"><code>@lemire</code></a> in <a href="https://redirect.github.com/bits-and-blooms/bitset/pull/163">bits-and-blooms/bitset#163</a></li> <li>Support ShiftLeft and ShiftRight by <a href="https://github.com/skullhole"><code>@skullhole</code></a> in <a href="https://redirect.github.com/bits-and-blooms/bitset/pull/165">bits-and-blooms/bitset#165</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/skullhole"><code>@skullhole</code></a> made their first contribution in <a href="https://redirect.github.com/bits-and-blooms/bitset/pull/165">bits-and-blooms/bitset#165</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.0">https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/bits-and-blooms/bitset/commit/08d15d2f8dd5068c1be7bf0f5697cbc9fb09f28d"><code>08d15d2</code></a> Merge pull request <a href="https://redirect.github.com/bits-and-blooms/bitset/issues/168">#168</a> from skullhole/167.1</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/064e45bdc00d294dfdb31c5ed36eb8b96c0b0073"><code>064e45b</code></a> leadingZeroes64() go1.8 - fix typo</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/04f7f9a02c43f163c35b05318a6571855e894968"><code>04f7f9a</code></a> leading_zeros_test.go tests for go1.8</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/630b883e21e198c6b120fc37f86d7285d07bc26e"><code>630b883</code></a> leading_zeros_18.go - fix docstring</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/467471f8e446be2cd446592fbb4861bc99449321"><code>467471f</code></a> code simplification</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/12944a5a3649bf5a9b6a7fb0dab6106ac7105ce6"><code>12944a5</code></a> Merge pull request <a href="https://redirect.github.com/bits-and-blooms/bitset/issues/165">#165</a> from skullhole/144</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/b0cdcdc2c88592d4e69a6f8508c7c8993836d3a0"><code>b0cdcdc</code></a> Merge pull request <a href="https://redirect.github.com/bits-and-blooms/bitset/issues/161">#161</a> from bits-and-blooms/dependabot/github_actions/github...</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/5fdaf6bf57cbd885610026403e255e44f710b31e"><code>5fdaf6b</code></a> Merge branch 'master' of <a href="https://github.com/bits-and-blooms/bitset">https://github.com/bits-and-blooms/bitset</a></li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/29e970f93d5a6bd3a7e8a19e99dbb59b88146d27"><code>29e970f</code></a> [no-ci] adding comment</li> <li><a href="https://github.com/bits-and-blooms/bitset/commit/5cfc6ad5a4bfe05da59f40b992c9ab389b0fda73"><code>5cfc6ad</code></a> One more test</li> <li>Additional commits viewable in <a href="https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/bits-and-blooms/bitset&package-manager=go_modules&previous-version=1.13.0&new-version=1.14.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…1.20.2 (#9142) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.1 to 1.20.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/releases">github.com/prometheus/client_golang's releases</a>.</em></p> <blockquote> <h2>v1.20.2</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/prometheus/client_golang/blob/v1.20.2/CHANGELOG.md">github.com/prometheus/client_golang's changelog</a>.</em></p> <blockquote> <h2>1.20.2 / 2024-08-23</h2> <ul> <li>[BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/client_golang/commit/67121dc55a7c1ac353141e360a2b184c5e3d5529"><code>67121dc</code></a> Merge pull request <a href="https://redirect.github.com/prometheus/client_golang/issues/1596">#1596</a> from mrueg/fix-uncompressed-content-header</li> <li><a href="https://github.com/prometheus/client_golang/commit/187acd4ca1a05e3207990e427cae7057a1e58961"><code>187acd4</code></a> Cut 1.20.2</li> <li><a href="https://github.com/prometheus/client_golang/commit/f7f8f3a1e2c09da4b88b78b7e04a9252187cf71f"><code>f7f8f3a</code></a> fix: Unset Content-Encoding header when uncompressed</li> <li>See full diff in <a href="https://github.com/prometheus/client_golang/compare/v1.20.1...v1.20.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/client_golang&package-manager=go_modules&previous-version=1.20.1&new-version=1.20.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Co-authored-by: shivaji-dgraph <[email protected]>

Fix sampling rate of jaeger.

Currently when we rebuild vector index, it only works if you drop it and then add again. With this change, you will be able to rebuild index by changing parameters. We are also restricting vector index to only work with proper distance metric.

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.65.0 to 1.66.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases">google.golang.org/grpc's releases</a>.</em></p> <blockquote> <h2>Release 1.66.0</h2> <h1>New Features</h1> <ul> <li>metadata: stabilize <code>ValueFromIncomingContext</code> (<a href="https://redirect.github.com/grpc/grpc-go/issues/7368">#7368</a>) <ul> <li>Special Thanks: <a href="https://github.com/KarthikReddyPuli"><code>@KarthikReddyPuli</code></a></li> </ul> </li> <li>client: stabilize the <code>WaitForStateChange</code> and <code>GetState</code> methods, which were previously experimental. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7425">#7425</a>)</li> <li>xds: Implement ADS flow control mechanism (<a href="https://redirect.github.com/grpc/grpc-go/issues/7458">#7458</a>) <ul> <li>See <a href="https://redirect.github.com/grpc/grpc/issues/34099">grpc/grpc#34099</a> for context.</li> </ul> </li> <li>balancer/rls: Add metrics for data cache and picker internals (<a href="https://redirect.github.com/grpc/grpc-go/issues/7484">#7484</a>, <a href="https://redirect.github.com/grpc/grpc-go/issues/7495">#7495</a>)</li> <li>xds: LRS load reports now include the <code>total_issued_requests</code> field. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7544">#7544</a>)</li> </ul> <h1>Bug Fixes</h1> <ul> <li>grpc: Clients now return status code INTERNAL instead of UNIMPLEMENTED when the server uses an unsupported compressor. This is consistent with the <a href="https://github.com/grpc/grpc/blob/master/doc/compression.md#compression-method-asymmetry-between-peers">gRPC compression spec</a>. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7461">#7461</a>) <ul> <li>Special Thanks: <a href="https://github.com/Gayathri625"><code>@Gayathri625</code></a></li> </ul> </li> <li>transport: Fix a bug which could result in writes busy looping when the underlying <code>conn.Write</code> returns errors (<a href="https://redirect.github.com/grpc/grpc-go/issues/7394">#7394</a>) <ul> <li>Special Thanks: <a href="https://github.com/veshij"><code>@veshij</code></a></li> </ul> </li> <li>client: fix race that could lead to orphaned connections and associated resources. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7390">#7390</a>)</li> <li>xds: use locality from the connected address for load reporting with pick_first (<a href="https://redirect.github.com/grpc/grpc-go/issues/7378">#7378</a>) <ul> <li>without this fix, if a priority contains multiple localities with pick_first, load was reported for the wrong locality</li> </ul> </li> <li>client: prevent hanging during ClientConn.Close() when the network is unreachable (<a href="https://redirect.github.com/grpc/grpc-go/issues/7540">#7540</a>)</li> </ul> <h1>Performance Improvements</h1> <ul> <li>transport: double buffering is avoided when using an http connect proxy and the target server waits for client to send the first message. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7424">#7424</a>)</li> <li>codec: Implement a new <code>Codec</code> which uses buffer recycling for encoded message (<a href="https://redirect.github.com/grpc/grpc-go/issues/7356">#7356</a>) <ul> <li>introduce a <code>mem</code> package to facilitate buffer reuse (<a href="https://redirect.github.com/grpc/grpc-go/issues/7432">#7432</a>)</li> <li>Special Thanks: <a href="https://github.com/PapaCharlie"><code>@PapaCharlie</code></a></li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/grpc/grpc-go/commit/00d3ec8c71a7ba0f9c755881f0f7147eba5e814c"><code>00d3ec8</code></a> Change version to 1.66.0 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7518">#7518</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/973e3dc60e487d9ee4748bd088952722de108aab"><code>973e3dc</code></a> xdsclient: Populate total_issued_requests count in LRS load reports (<a href="https://redirect.github.com/grpc/grpc-go/issues/7544">#7544</a>) (...</li> <li><a href="https://github.com/grpc/grpc-go/commit/8e3596c300401e31e8adef3f66a0d98616c1df2e"><code>8e3596c</code></a> cherry-pick <a href="https://redirect.github.com/grpc/grpc-go/issues/7557">#7557</a> to v1.66.x branch (<a href="https://redirect.github.com/grpc/grpc-go/issues/7564">#7564</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/62baa5f598a3e8e0123e1c814a1e2513ce138d54"><code>62baa5f</code></a> cherry-pick <a href="https://redirect.github.com/grpc/grpc-go/issues/7356">#7356</a> to v1.66.x branch (<a href="https://redirect.github.com/grpc/grpc-go/issues/7546">#7546</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/f85702084ec526b82740f25f584a7e1141814e19"><code>f857020</code></a> cherry-pick <a href="https://redirect.github.com/grpc/grpc-go/issues/7523">#7523</a> to v1.66.x branch (<a href="https://redirect.github.com/grpc/grpc-go/issues/7547">#7547</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/35e915e77800f5b5af9c91959c0d178ff1f27b91"><code>35e915e</code></a> cherry-pick: transport: add timeout for writing GOAWAY on http2Client.Close()...</li> <li><a href="https://github.com/grpc/grpc-go/commit/63853fd5d21a2350f2f51b8626afff07e0d49ac2"><code>63853fd</code></a> rls: update picker synchronously on configuration update (<a href="https://redirect.github.com/grpc/grpc-go/issues/7412">#7412</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/86135c37f3830c481ff890625928453b4161bbca"><code>86135c3</code></a> csds: unskip e2e test (<a href="https://redirect.github.com/grpc/grpc-go/issues/7502">#7502</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/5d07b636a7ac2ecec9efcdb2329d6e6af06edbe6"><code>5d07b63</code></a> transport: change <code>*http2Client</code> to interface <code>ClientTransport</code> (<a href="https://redirect.github.com/grpc/grpc-go/issues/7512">#7512</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/c98235b9600099cd4e00b91599018c6ffd8ee221"><code>c98235b</code></a> grpclog: refactor to move implementation to grpclog/internal (<a href="https://redirect.github.com/grpc/grpc-go/issues/7465">#7465</a>)</li> <li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.65.0...v1.66.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=google.golang.org/grpc&package-manager=go_modules&previous-version=1.65.0&new-version=1.66.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ryan Fox-Tyler <[email protected]>

…o 27.2.0+incompatible (#9150) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 27.1.2+incompatible to 27.2.0+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v27.2.0</h2> <h2>27.2.0</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A27.2.0">docker/cli, 27.2.0 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A27.2.0">moby/moby, 27.2.0 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v27.2.0/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v27.2.0/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>New</h3> <ul> <li>CLI: Add support for device-code flow login when authenticating to the official registry. <a href="https://redirect.github.com/docker/cli/pull/5349">docker/cli#5349</a></li> <li>containerd image store: <code>docker image ls</code> now supports <code>--tree</code> flag that shows a multiplatform-aware image list. This is experimental and may change at any time without any backwards compatibility. <a href="https://redirect.github.com/docker/cli/pull/5353">docker/cli#5353</a></li> </ul> <h3>API</h3> <ul> <li><code>GET /images/json</code> response now includes <code>Manifests</code> field, which contains information about the sub-manifests included in the image index. This includes things like platform-specific manifests and build attestations. The new field will only be populated if the request also sets the <code>manifests</code> query parameter to <code>true</code>.</li> </ul> <blockquote> <p>[!WARNING]</p> <p>This is experimental and may change at any time without any backward compatibility.</p> </blockquote> <h3>Bug fixes and enhancements</h3> <ul> <li>CLI: Fix issue with remote contexts over SSH where the CLI would allocate a pseudoterminal when connecting to the remote host, which causes issues in rare situations. <a href="https://redirect.github.com/docker/cli/pull/5351">docker/cli#5351</a></li> <li>Fix an issue that prevented network creation with a <code>--ip-range</code> ending on a 64-bit boundary. <a href="https://redirect.github.com/moby/moby/pull/48326">moby/moby#48326</a></li> <li>CLI: IPv6 addresses shown by <code>docker ps</code> in port bindings are now bracketed. <a href="https://redirect.github.com/docker/cli/pull/5365">docker/cli#5365</a></li> <li>containerd image store: Fix early error exit from <code>docker load</code> in cases where unpacking the image would fail. <a href="https://redirect.github.com/moby/moby/pull/48376">moby/moby#48376</a></li> <li>containerd image store: Fix the previous image not being persisted as dangling after <code>docker pull</code>. <a href="https://redirect.github.com/moby/moby/pull/48380">moby/moby#48380</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update BuildKit to <a href="https://github.com/moby/buildkit/releases/tag/v0.15.2">v0.15.2</a>. <a href="https://redirect.github.com/moby/moby/pull/48341">moby/moby#48341</a></li> <li>Update Compose to <a href="https://github.com/docker/compose/releases/tag/v2.29.2">v2.29.2</a>. <a href="https://redirect.github.com/docker/docker-ce-packaging/pull/1050">docker/docker-ce-packaging#1050</a></li> <li>The canonical source for the dockerd(8) man page has been moved back to the same source tree as dockerd itself. <a href="https://redirect.github.com/moby/moby/pull/48378">moby/moby#48378</a></li> <li>Update containerd to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.21">v1.7.21</a>. <a href="https://redirect.github.com/moby/moby/pull/48383">moby/moby#48383</a>, <a href="https://redirect.github.com/docker/containerd-packaging/pull/389">docker/containerd-packaging#389</a></li> </ul> <h2>v27.2.0-rc.1</h2> <h2>27.2.0-rc.1</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A27.2.0">docker/cli, 27.2.0 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A27.2.0">moby/moby, 27.2.0 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v27.2.0/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v27.2.0/docs/api/version-history.md">API version history</a>.</li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/3ab5c7d0036ca8fc43141e83b167456ec79828aa"><code>3ab5c7d</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48383">#48383</a> from vvoland/48382-27.x</li> <li><a href="https://github.com/moby/moby/commit/875e8aeef2bf468332e5d4c71f98c54fa39cc971"><code>875e8ae</code></a> vendor: github.com/containerd/containerd v1.7.21</li> <li><a href="https://github.com/moby/moby/commit/1900e4d8eb8c53bfaa56a399ed00df341f48d7e8"><code>1900e4d</code></a> Dockerfile: update containerd binary to v1.7.21 (static binaries and CI only)</li> <li><a href="https://github.com/moby/moby/commit/cd7746d30b122b2584b72109df17f6c698a16f2e"><code>cd7746d</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48380">#48380</a> from vvoland/48374-27.x</li> <li><a href="https://github.com/moby/moby/commit/2a13a384b8c040c5882dfc3a20007b4c9e5b64c0"><code>2a13a38</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48376">#48376</a> from vvoland/48293-27.x</li> <li><a href="https://github.com/moby/moby/commit/9fd71f5d0e84a19aa2154eac4a834757ab666d26"><code>9fd71f5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48378">#48378</a> from corhere/backport-27.x/dockerd-manpage</li> <li><a href="https://github.com/moby/moby/commit/ecd2b6ff09567c05c1293baf59157cd5306f7942"><code>ecd2b6f</code></a> c8d/image: Add <code>hostPlatformMatcher</code></li> <li><a href="https://github.com/moby/moby/commit/d5b03423d1e4812cd78b101c33163bf81a5a0b8f"><code>d5b0342</code></a> man: support bringing your own go-md2man</li> <li><a href="https://github.com/moby/moby/commit/56c5c23114c8ec22027427dcbf6a0905835e71e9"><code>56c5c23</code></a> man: build dockerd man pages using make</li> <li><a href="https://github.com/moby/moby/commit/77b2eb57342b192d0e0711a0ffb710cadc64c386"><code>77b2eb5</code></a> Removed all mentions of "please" from docs and messages</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v27.1.2...v27.2.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=27.1.2+incompatible&new-version=27.2.0+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ryan Fox-Tyler <[email protected]>

Bumps [golang.org/x/text](https://github.com/golang/text) from 0.17.0 to 0.18.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/text/commit/1e3e9fdab19c86b2b575f3bdb8831eaa3468381f"><code>1e3e9fd</code></a> all: rename Example test functions to prevent vet errors</li> <li>See full diff in <a href="https://github.com/golang/text/compare/v0.17.0...v0.18.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/text&package-manager=go_modules&previous-version=0.17.0&new-version=0.18.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…40.0.0 (#9155)

…e jemalloc (#9158) A general upgrade to latest (compatible) versions of multiple dependencies. Jose v2 also triggers vulnerability issues in our containers, so replaced that with v4 everywhere.

Fixed spelling of euclidean from euclidian. Updated default parameters.

Change badger version to 4.3.0

Update rollup frequency so that txn too old error doesn't happen too frequently. Also added more context to the error to see where it's coming from.

… updates (#9174)

fixes #9145 Currently we allow multiple sorting but only with predicates. Vals() are not allowed for multiple sorting. We are now throwing an error instead of failing silently.

similar to #9003 similar to #9177

Bumps the minor-and-patch group with 2 updates: [github.com/docker/docker](https://github.com/docker/docker) and [google.golang.org/grpc](https://github.com/grpc/grpc-go). Updates `github.com/docker/docker` from 27.2.1+incompatible to 27.3.1+incompatible <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v27.3.1</h2> <h2>27.3.1</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=sort%3Aupdated-desc+is%3Aclosed+milestone%3A27.3.1">docker/cli, 27.3.1 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=sort%3Aupdated-desc+is%3Aclosed+milestone%3A27.3.1">moby/moby, 27.3.1 milestone</a></li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>CLI: Fix issue with command execution metrics not being exported due to the CLI MeterProvider being shutdown too early. <a href="https://redirect.github.com/docker/cli/pull/5457">docker/cli#5457</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update <code>Compose</code> to <a href="https://github.com/docker/compose/releases/tag/v2.29.7">v2.29.7</a></li> </ul> <h2>v27.3.0</h2> <h2>27.3.0</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=sort%3Aupdated-desc+is%3Aclosed+milestone%3A27.3.0">docker/cli, 27.3.0 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=sort%3Aupdated-desc+is%3Aclosed+milestone%3A27.3.0">moby/moby, 27.3.0 milestone</a></li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>containerd image store: Fix <code>docker image prune -a</code> untagging images used by containers started from images referenced by a digested reference. <a href="https://redirect.github.com/moby/moby/pull/48488">moby/moby#48488</a></li> <li>Add a <code>--feature</code> flag to the daemon options. <a href="https://redirect.github.com/moby/moby/pull/48487">moby/moby#48487</a></li> <li>Updated the handling of the <code>--gpus=0</code> flag to be consistent with the NVIDIA Container Runtime. <a href="https://redirect.github.com/moby/moby/pull/48483">moby/moby#48483</a> (<a href="https://redirect.github.com/docker/cli/pull/5432">docker/cli#5432</a>)</li> <li>Support WSL2 mirrored-mode networking's use of interface <code>loopback0</code> for packets from the Windows host. <a href="https://redirect.github.com/moby/moby/pull/48514">moby/moby#48514</a></li> <li>Fix an issue that prevented communication between containers on an IPv4 bridge network when running with <code>--iptables=false</code>, <code>--ip6tables=true</code> (the default), a firewall with a DROP rule for forwarded packets on hosts where the <code>br_netfilter</code> kernel module was not normally loaded. <a href="https://redirect.github.com/moby/moby/pull/48511">moby/moby#48511</a></li> <li>CLI: Fix issue where <code>docker volume update</code> command would cause the CLI to panic if no argument/volume was passed. <a href="https://redirect.github.com/docker/cli/pull/5426">docker/cli#5426</a></li> <li><code>docker/cli#5432</code></li> </ul> <h3>Packaging updates</h3> <ul> <li>Update <code>containerd</code> (static binaries only) to <a href="https://github.com/containerd/containerd/releases/tag/v1.7.22">v1.7.22</a> <a href="https://redirect.github.com/moby/moby/pull/48468">moby/moby#48468</a></li> <li>Updated <code>Buildkit</code> to <a href="https://github.com/moby/buildkit/releases/tag/v0.16.0">v0.16.0</a></li> <li>Update <code>Compose</code> to <a href="https://github.com/docker/compose/releases/tag/v2.29.6">v2.29.6</a></li> <li>Update <code>Buildx</code> to <a href="https://github.com/docker/buildx/releases/tag/v0.17.1">v0.17.1</a></li> </ul> <h2>v27.3.0-rc.2</h2> <h2>27.3.0-rc.2</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=sort%3Aupdated-desc+is%3Aclosed+milestone%3A27.3.0">docker/cli, 27.3.0 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=sort%3Aupdated-desc+is%3Aclosed+milestone%3A27.3.0">moby/moby, 27.3.0 milestone</a></li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/41ca978a0a5400cc24b274137efa9f25517fcc0b"><code>41ca978</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48525">#48525</a> from thaJeztah/27.x_backport_govulncheck_permissions</li> <li><a href="https://github.com/moby/moby/commit/a6b772b24cbfa5c1aab2dc31c5283f7a9bac80f4"><code>a6b772b</code></a> gha: govulncheck: make sure read permissions are set</li> <li><a href="https://github.com/moby/moby/commit/856359cb772e68c274622ebdf18e08e02c72b4e7"><code>856359c</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48514">#48514</a> from robmry/backport-27.x/wsl2_mirrored_loopback0_w...</li> <li><a href="https://github.com/moby/moby/commit/cd21af7e411c114dcc877cead6456d3dda8ef9cc"><code>cd21af7</code></a> Do not DNAT packets from WSL2's loopback0</li> <li><a href="https://github.com/moby/moby/commit/8516f3b0c1aecbb84e26472ec25f95723d05b742"><code>8516f3b</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48510">#48510</a> from thaJeztah/27.x_backport_bump_buildx_compose</li> <li><a href="https://github.com/moby/moby/commit/3a7779ad61700f5f00751cb39826ea6a4add5109"><code>3a7779a</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48511">#48511</a> from robmry/backport-27.x/48375_bridge_netfiltering</li> <li><a href="https://github.com/moby/moby/commit/5c499fc4b249708619b4225de00c50c861bcfc08"><code>5c499fc</code></a> Only enable bridge netfiltering when needed</li> <li><a href="https://github.com/moby/moby/commit/98f24aaf8a5e95b3e98ad9a5bc1035e9b6ba4557"><code>98f24aa</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/48506">#48506</a> from thaJeztah/27.x_backport_man_dockerd_logformat</li> <li><a href="https://github.com/moby/moby/commit/8adc8e405db4115871ad5f8bdd3155f8f162493b"><code>8adc8e4</code></a> Dockerfile: update compose to v2.29.4</li> <li><a href="https://github.com/moby/moby/commit/576fc88b1af1434de8fa753814320f7920d2670a"><code>576fc88</code></a> Dockerfile: update buildx to v0.17.1</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v27.2.1...v27.3.1">compare view</a></li> </ul> </details> <br /> Updates `google.golang.org/grpc` from 1.66.2 to 1.67.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases">google.golang.org/grpc's releases</a>.</em></p> <blockquote> <h2>Release 1.67.0</h2> <h1>Bug Fixes</h1> <ul> <li>ringhash: when used with multiple EDS priorities, fix bug that could prevent a higher priority from recovering from transient failure. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7364">#7364</a>) <ul> <li>Special Thanks: <a href="https://github.com/atollena"><code>@atollena</code></a></li> </ul> </li> </ul> <h1>Behavior Changes</h1> <ul> <li>In accordance with <a href="https://tools.ietf.org/html/rfc7540#section-3.3">RFC 7540</a>, clients and servers will now reject TLS connections that don't support ALPN. This can be disabled by setting the environment variable <code>GRPC_ENFORCE_ALPN_ENABLED</code> to <code>false</code> (case insensitive). Please file a bug if you encounter any issues with this behavior. The environment variable to revert this behavior will be removed in an upcoming release. (<a href="https://redirect.github.com/grpc/grpc-go/issues/7535">#7535</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/grpc/grpc-go/commit/6f50403edb0c2db1bb557168cf4e6f87ea2efdb5"><code>6f50403</code></a> Change version to 1.67.0 (<a href="https://redirect.github.com/grpc/grpc-go/issues/7604">#7604</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/3c3a0257a33b59b0d0a072696775b53392c7d8ae"><code>3c3a025</code></a> mem: replace flate.Reader reference (<a href="https://redirect.github.com/grpc/grpc-go/issues/7595">#7595</a>) (<a href="https://redirect.github.com/grpc/grpc-go/issues/7637">#7637</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/3ffb98b2c93a9a633f7415893c40946e2a6a6e89"><code>3ffb98b</code></a> .*: fix revive lints <code>redefines-builtin-id</code> (<a href="https://redirect.github.com/grpc/grpc-go/issues/7552">#7552</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/56660492e4a669c8c0f02bd7f31ad31a3ef59883"><code>5666049</code></a> vet: enforce revive linter (<a href="https://redirect.github.com/grpc/grpc-go/issues/7589">#7589</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/c6ad07fa041eea78cd6757a51f252dd407105452"><code>c6ad07f</code></a> protoc: regenerate protos (<a href="https://redirect.github.com/grpc/grpc-go/issues/7590">#7590</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/70f19eecd168b0ea1f15e991170576bf36f74b40"><code>70f19ee</code></a> credentials/tls: default GRPC_ENFORCE_ALPN_ENABLED to true (<a href="https://redirect.github.com/grpc/grpc-go/issues/7535">#7535</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/92111dc36694c570dc873b9a5a461ef953ea2b54"><code>92111dc</code></a> xds: keep ads flow control local to xdsclient/transport package (<a href="https://redirect.github.com/grpc/grpc-go/issues/7578">#7578</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/535bdce10d2c1127e526e986b04b38995fe84712"><code>535bdce</code></a> estats: remove dependency on testing package (<a href="https://redirect.github.com/grpc/grpc-go/issues/7579">#7579</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/0f03c747b13b41c3601ee835f1f8bf0f457b3fd2"><code>0f03c74</code></a> .*: fix revive lint issues <code>unused-parameter</code> (<a href="https://redirect.github.com/grpc/grpc-go/issues/7580">#7580</a>)</li> <li><a href="https://github.com/grpc/grpc-go/commit/6147c81cd047f0237c9bfa553fb61ce74bfa37aa"><code>6147c81</code></a> stats/opentelemetry: Optimize slice allocations (<a href="https://redirect.github.com/grpc/grpc-go/issues/7525">#7525</a>)</li> <li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.66.2...v1.67.0">compare view</a></li> </ul> </details> <br /> You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

… minor-and-patch group (#9185)

Reverting the posting list cache for now while we fix the new cache.

CLAassistant · 2024-10-07T15:23:48Z

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
5 out of 6 committers have signed the CLA.

✅ mangalaman93
✅ ryanfoxtyler
✅ harshil-goel
✅ RJKeevil
✅ shivaji-dgraph
❌ kvangundy
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

CLAassistant · 2024-10-07T15:23:49Z

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
5 out of 6 committers have signed the CLA.

✅ mangalaman93
✅ ryanfoxtyler
✅ harshil-goel
✅ shivaji-dgraph
✅ RJKeevil
❌ kvangundy
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

ryanfoxtyler and others added 30 commits October 7, 2024 18:28

Update ci-dgraph-upgrade-tests.yml

572c0df

fix(tests): add explicit permissions for Trivy scan (#9130)

34a132c

fix(other): update patch version in go.mod (#9127)

c2fcbe2

Go version is required to be explicit for CodeQL scanning to work

use /v24 in the import (#9131)

65dbc9d

This is needed for some of the upcoming work

upgrade go mod (#9115)

1494731

chore(): add dependabot version bumps (#9132)

3ee922a

add dependabot automated version bumps; behavior is configured as: - group all patch version bumps into one PR - group all minor version bumps into one PR - open individual PRs for all major version bumps

chore(deps): bump actions/labeler from 4 to 5 (#9134)

51d8f7f

Update dependabot.yml

914eab0

Update dependabot.yml

8e30b9e

fix(repo): labeler config (#9144)

e682581

update format

feat(graphql): adds @default directive to graphql (#8017) (#8837)

d849375

Co-authored-by: shivaji-dgraph <[email protected]>

fix(git): fix Labeler formatting (#9148)

9514217

fix(core): fix sampling rate of jaeger (#9147)

41db39f

Fix sampling rate of jaeger.

upgrade dgo to v240.0.0 (#9154)

37bdb62

chore(deps): bump golang.org/x/mod from 0.20.0 to 0.21.0 (#9157)

814460e

chore(deps): bump github.com/dgraph-io/dgo/v240 from 240.0.0-rc1 to 2…

c629b2b

…40.0.0 (#9155)

chore: Upgrade go.mod dependencies, fix jose v2 vulnerability, upgrad…

8a4e9ef

…e jemalloc (#9158) A general upgrade to latest (compatible) versions of multiple dependencies. Jose v2 also triggers vulnerability issues in our containers, so replaced that with v4 everywhere.

Update dependabot.yml

ede6b37

harshil-goel and others added 12 commits October 7, 2024 18:30

fix(vector): fixed euclidean spelling and a bug in parameters (#9165)

1ba8e20

Fixed spelling of euclidean from euclidian. Updated default parameters.

fix(core): update latest badger (#9169)

99c6463

Change badger version to 4.3.0

Update stale.yml

1b2af87

fix(core): Update error msg for txn too old to give more context (#9170)

2554242

Update rollup frequency so that txn too old error doesn't happen too frequently. Also added more context to the error to see where it's coming from.

chore(deps): bump the minor-and-patch group across 1 directory with 2…

346234d

… updates (#9174)

fix(DQL): unsupported ordering should raise an error (#9173)

86573a6

fixes #9145 Currently we allow multiple sorting but only with predicates. Vals() are not allowed for multiple sorting. We are now throwing an error instead of failing silently.

update expired certificate that are used for testing (#9177)

aaff847

similar to #9003 similar to #9177

Expose APIs that can be used outside Dgraph (#9176)

f6a3079

chore(deps): bump google.golang.org/grpc from 1.67.0 to 1.67.1 in the…

d5bba12

… minor-and-patch group (#9185)

fix(core): add the posting list risteretto cache back (#9181)

bf1f1b8

Reverting the posting list cache for now while we fix the new cache.

harshil-goel requested a review from a team as a code owner October 7, 2024 15:23

harshil-goel closed this Oct 7, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(core): Dummy PR to validate release vbranch. #9191

fix(core): Dummy PR to validate release vbranch. #9191

harshil-goel commented Oct 7, 2024

CLAassistant commented Oct 7, 2024 •

edited

Loading

CLAassistant commented Oct 7, 2024

fix(core): Dummy PR to validate release vbranch. #9191

fix(core): Dummy PR to validate release vbranch. #9191

Conversation

harshil-goel commented Oct 7, 2024

CLAassistant commented Oct 7, 2024 • edited Loading

CLAassistant commented Oct 7, 2024

CLAassistant commented Oct 7, 2024 •

edited

Loading