Sourced from github.com/getsentry/sentry-go's releases.

0.15.0

• fix: Scope values should not override Event values (#446)
• feat: Make maximum amount of spans configurable (#460)
• feat: Add a method to start a transaction (#482)
• feat: Extend User interface by adding Data, Name and Segment (#483)
• feat: Add ClientOptions.SendDefaultPII (#485)

0.14.0

• feat: Add function to continue from trace string (#434)
• feat: Add max-depth options (#428)
• [breaking] ref: Use a Context type mapping to a map[string]interface{} for all event contexts (#444)
• [breaking] ref: Replace deprecated ioutil pkg with os & io (#454)
• ref: Optimize stacktrace.go from size and speed (#467)
• ci: Test against go1.19 and go1.18, drop go1.16 and go1.15 support (#432, #477)
• deps: Dependency update to fix CVEs (#462, #464, #477)

NOTE: This version drops support for Go 1.16 and Go 1.15. The currently supported Go versions are the last 3 stable releases: 1.19, 1.18 and 1.17.

Sourced from github.com/getsentry/sentry-go's changelog.

0.15.0

• fix: Scope values should not override Event values (#446)
• feat: Make maximum amount of spans configurable (#460)
• feat: Add a method to start a transaction (#482)
• feat: Extend User interface by adding Data, Name and Segment (#483)
• feat: Add ClientOptions.SendDefaultPII (#485)

0.14.0

• feat: Add function to continue from trace string (#434)
• feat: Add max-depth options (#428)
• [breaking] ref: Use a Context type mapping to a map[string]interface{} for all event contexts (#444)
• [breaking] ref: Replace deprecated ioutil pkg with os & io (#454)
• ref: Optimize stacktrace.go from size and speed (#467)
• ci: Test against go1.19 and go1.18, drop go1.16 and go1.15 support (#432, #477)
• deps: Dependency update to fix CVEs (#462, #464, #477)

NOTE: This version drops support for Go 1.16 and Go 1.15. The currently supported Go versions are the last 3 stable releases: 1.19, 1.18 and 1.17.

• f1b56c1 release: 0.15.0
• 19c8481 ref: Rename ClientOptions.SendDefaultPii to ClientOptions.SendDefaultPII (#490)
• 3bb8296 feat: Add ClientOptions.SendDefaultPii (#485)
• 5301f85 feat: Make maximum amount of spans configurable (#460)
• 78a3b74 feat(ci): add stale bot (#489)
• 6f14ecb Update CHANGELOG.md (#488)
• a62b88a fix: Scope values should not override Event values (#446)
• bf68bd2 docs: Run go fmt (#487)
• e78f722 feat: Extend User struct by adding Data, Name and Segment (#483)
• af05cee feat: Add a method to start a transaction (#482)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from google.golang.org/grpc's releases.

Release 1.50.1

New Features

• gcp/observability: support new configuration defined in public preview user guide

Release 1.50.0

Behavior Changes

• client: use proper "@" semantics for connecting to abstract unix sockets. (#5678)
  • This is technically a bug fix; the result is that the address was including a trailing NULL byte, which it should not have. This may break users creating the socket in Go by prefixing a NULL instead of an "@", though, so calling it out as a behavior change.
  • Special Thanks: @​jachor

New Features

• metadata: add experimental ValueFromIncomingContext to more efficiently retrieve a single value (#5596)
  • Special Thanks: @​horpto
• stats: provide peer information in HandleConn context (#5589)
  • Special Thanks: @​feihu-stripe
• xds: add support for Outlier Detection, enabled by default (#5435, #5673)

Bug Fixes

• client: fix deadlock in transport caused by GOAWAY racing with stream creation (#5652)
  • This should only occur with an HTTP/2 server that does not follow best practices of an advisory GOAWAY (not a grpc-go server).
• xds/xdsclient: fix a bug which was causing routes with cluster_specifier_plugin set to be NACKed when GRPC_EXPERIMENTAL_XDS_RLS_LB was off (#5670)
• xds/xdsclient: NACK cluster resource if config_source_specifier in lrs_server is not self (#5613)
• xds/ringhash: fix a bug which sometimes prevents the LB policy from retrying connection attempts (#5601)
• xds/ringhash: do nothing when asked to exit IDLE instead of falling back on the default channel behavior of connecting to all addresses (#5614)
• xds/rls: fix a bug which was causing the channel to be stuck in IDLE (#5656)
• alts: fix a bug which was setting WaitForReady on handshaker service RPCs, thereby delaying fallback when required (#5620)
• gcp/observability: fix End() to cleanup global state correctly (#5623)

• 4c776ec Cherry-pick observability changes from master to v1.50.x and update version t...
• 6576007 Change version to 1.50.1-dev (#5686)
• c1d7d7a Change version to 1.50.0 (#5685)
• 1451c62 internal/transport: optimize grpc-message encoding/decoding (#5654)
• be4b63b test: minor test cleanup (#5679)
• d83070e Changed Outlier Detection Env Var to default true (#5673)
• 54521b2 client: remove trailing null from unix abstract socket address (#5678)
• 36e4810 orca: cleanup old code, and get grpc package to use new code (#5627)
• e8866a8 build: harden GitHub Workflow permissions (#5660)
• 8458251 xdsclient: ignore routes with cluster_specifier_plugin when GRPC_EXPERIMENTAL...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from google.golang.org/grpc's releases.

Release 1.50.0

Behavior Changes

• client: use proper "@" semantics for connecting to abstract unix sockets. (#5678)
  • This is technically a bug fix; the result is that the address was including a trailing NULL byte, which it should not have. This may break users creating the socket in Go by prefixing a NULL instead of an "@", though, so calling it out as a behavior change.
  • Special Thanks: @​jachor

New Features

• metadata: add experimental ValueFromIncomingContext to more efficiently retrieve a single value (#5596)
  • Special Thanks: @​horpto
• stats: provide peer information in HandleConn context (#5589)
  • Special Thanks: @​feihu-stripe
• xds: add support for Outlier Detection, enabled by default (#5435, #5673)

Bug Fixes

• client: fix deadlock in transport caused by GOAWAY racing with stream creation (#5652)
  • This should only occur with an HTTP/2 server that does not follow best practices of an advisory GOAWAY (not a grpc-go server).
• xds/xdsclient: fix a bug which was causing routes with cluster_specifier_plugin set to be NACKed when GRPC_EXPERIMENTAL_XDS_RLS_LB was off (#5670)
• xds/xdsclient: NACK cluster resource if config_source_specifier in lrs_server is not self (#5613)
• xds/ringhash: fix a bug which sometimes prevents the LB policy from retrying connection attempts (#5601)
• xds/ringhash: do nothing when asked to exit IDLE instead of falling back on the default channel behavior of connecting to all addresses (#5614)
• xds/rls: fix a bug which was causing the channel to be stuck in IDLE (#5656)
• alts: fix a bug which was setting WaitForReady on handshaker service RPCs, thereby delaying fallback when required (#5620)
• gcp/observability: fix End() to cleanup global state correctly (#5623)

• c1d7d7a Change version to 1.50.0 (#5685)
• 1451c62 internal/transport: optimize grpc-message encoding/decoding (#5654)
• be4b63b test: minor test cleanup (#5679)
• d83070e Changed Outlier Detection Env Var to default true (#5673)
• 54521b2 client: remove trailing null from unix abstract socket address (#5678)
• 36e4810 orca: cleanup old code, and get grpc package to use new code (#5627)
• e8866a8 build: harden GitHub Workflow permissions (#5660)
• 8458251 xdsclient: ignore routes with cluster_specifier_plugin when GRPC_EXPERIMENTAL...
• a238ceb xDS: Outlier Detection Env Var not hardcoded to false (#5664)
• b1d7f56 transport: Fix deadlock in transport caused by GOAWAY race with new stream cr...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• fb83e1e Fix compatibility with redis.v9 (#50)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/getsentry/sentry-go's releases.

0.14.0

• feat: Add function to continue from trace string (#434)
• feat: Add max-depth options (#428)
• ref: Use a Context type mapping to a map[string]interface{} for all event contexts (#444)
• ref: Optimize stacktrace.go from size and speed (#467)
• ref: Replace deprecated ioutil pkg with os & io (#454)
• ci: Test against go1.19 and go1.18, drop go1.16 and go1.15 support (#432, #477)
• deps: Dependency update to fix CVEs (#462, #464, #477)

NOTE: This version drops support for Go 1.16 and Go 1.15. The currently supported Go versions are the last 3 stable releases: 1.19, 1.18 and 1.17.

Sourced from github.com/getsentry/sentry-go's changelog.

0.14.0

• feat: Add function to continue from trace string (#434)
• feat: Add max-depth options (#428)
• ref: Use a Context type mapping to a map[string]interface{} for all event contexts (#444)
• ref: Optimize stacktrace.go from size and speed (#467)
• ref: Replace deprecated ioutil pkg with os & io (#454)
• ci: Test against go1.19 and go1.18, drop go1.16 and go1.15 support (#432, #477)
• deps: Dependency update to fix CVEs (#462, #464, #477)

NOTE: This version drops support for Go 1.16 and Go 1.15. The currently supported Go versions are the last 3 stable releases: 1.19, 1.18 and 1.17.

• e7611f7 release: 0.14.0
• 82cd3e4 ci: Change changelogPolicy to auto (#478)
• 23801d7 deps: Update all dependencies, add go1.19, drop go1.16, prepare changelog
• 58adf6c ref: Replace deprecated ioutil pkg with os & io
• ce36dbb misc: Tweak readme, assume new users are using go modules
• 64b90ef ref: Minor code cleanup and ExtractStacktrace benchmarks (#469)
• 5e27377 ref: Optimize stacktrace from size and speed (#467)
• 33f7b69 Dependency update to fix CVEs (#464)
• 576cf05 deps: Update dependencies to resolve a few CVEs (#462)
• 26ea603 readme: drop forum for discussions (#449)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/Shopify/sarama's releases.

Version 1.37.1 (2022-10-04)

What's Changed

:bug: Fixes

• fix: support existing deprecated Rebalance.Strategy field usage by @​spongecaptain in Shopify/sarama#2352
• fix(test): consumer group rebalance strategy compatibility by @​Jacob-bzx in Shopify/sarama#2353
• fix(producer): replace time.After with time.Timer to avoid high memory usage by @​Jacob-bzx in Shopify/sarama#2355

New Contributors

• @​spongecaptain made their first contribution in Shopify/sarama#2352

Full Changelog: https://github.com/Shopify/sarama/compare/v1.37.0...v1.37.1

• 0162486 fix(producer): replace time.After with time.Timer to avoid high memory usage ...
• 50ceb93 fix(test): consumer group rebalance strategy compatibility (#2353)
• eaf1def fix: support existing deprecated Rebalance.Strategy field usage (#2352)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from go.etcd.io/etcd/api/v3's releases.

v3.5.5

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux

ETCD_VER=v3.5.5
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version

# start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)

ETCD_VER=v3.5.5
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
</tr></table>

... (truncated)

• 19002cf version: bump up to 3.5.5
• 2ba1bab Merge pull request #14454 from ahrtr/fix_TestV3AuthRestartMember_20220913_3.5
• 2f1171f fix the flaky test fix_TestV3AuthRestartMember_20220913 for 3.5
• 6c26693 Merge pull request #14178 from lavacat/release-3.5-txn-panic
• 646ba66 Merge pull request #14434 from tjungblu/bz_1918413_3.5
• 243b7a1 etcdctl: fix move-leader for multiple endpoints
• 16d72c0 Merge pull request #14440 from vsvastey/usr/vsvastey/open-with-max-index-test...
• eef5e22 testing: fix TestOpenWithMaxIndex cleanup
• a5a33cb Merge pull request #14436 from serathius/arm64
• bb3fae4 Merge pull request #14409 from vivekpatani/release-3.5
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 0452fee version: bump up to 3.5.3
• 842cb4b Merge pull request #13938 from endocrimes/dani/backport
• 50978d5 clientv3: disable mirror auth test with proxy
• 5d44f22 cv3/mirror: Fetch the most recent prefix revision
• cd750e4 Merge pull request #13862 from mrueg/update-baseimage
• 003a310 Merge pull request #13933 from ahrtr/fix_snapshot_recover_cindex_3.5
• 6095cf8 Dockerfile-release.*: Update base image snapshot
• 719082e Merge pull request #13932 from ahrtr/lease_renew_linearizable_3.5
• 4002aa5 set backend to cindex before recovering the lessor in applySnapshot
• bc5307d support linearizable renew lease
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/Shopify/sarama's releases.

Version 1.37.0 (2022-09-28)

What's Changed

:tada: New Features / Improvements

• feat(consumer): support multiple balance strategies by @​Jacob-bzx in Shopify/sarama#2339
• feat(producer): transactional API by @​ryarnyah in Shopify/sarama#2295
• feat(mocks): support key in MockFetchResponse. by @​Skandalik in Shopify/sarama#2328

:bug: Fixes

• fix: avoid panic when Metadata.RefreshFrequency is 0 by @​Jacob-bzx in Shopify/sarama#2329
• fix(consumer): avoid pushing unrelated responses to paused children by @​pkoutsovasilis in Shopify/sarama#2317
• fix: prevent metrics leak with cleanup by @​auntan in Shopify/sarama#2340
• fix: race condition(may panic) when closing consumer group by @​Jacob-bzx in Shopify/sarama#2331
• fix(consumer): default ResetInvalidOffsets to true by @​dnwe in Shopify/sarama#2345
• Validate the Config when creating a mock producer/consumer by @​joewreschnig in Shopify/sarama#2327

:package: Dependency updates

• chore(deps): bump module github.com/pierrec/lz4/v4 to v4.1.16 by @​dnwe in Shopify/sarama#2335
• chore(deps): bump golang.org/x/net digest to bea034e by @​dnwe in Shopify/sarama#2333
• chore(deps): bump golang.org/x/sync digest to 7f9b162 by @​dnwe in Shopify/sarama#2334
• chore(deps): bump golang.org/x/net digest to f486391 by @​dnwe in Shopify/sarama#2348
• chore(deps): bump module github.com/shopify/toxiproxy/v2 to v2.5.0 by @​dnwe in Shopify/sarama#2336
• chore(deps): bump module github.com/klauspost/compress to v1.15.11 by @​dnwe in Shopify/sarama#2349
• chore(deps): bump module github.com/pierrec/lz4/v4 to v4.1.17 by @​dnwe in Shopify/sarama#2350

:wrench: Maintenance

• chore(ci): bump kafka-versions to latest by @​dnwe in Shopify/sarama#2346
• chore(ci): bump go-versions to N and N-1 by @​dnwe in Shopify/sarama#2347

New Contributors

• @​Jacob-bzx made their first contribution in Shopify/sarama#2329
• @​pkoutsovasilis made their first contribution in Shopify/sarama#2317
• @​Skandalik made their first contribution in Shopify/sarama#2328
• @​auntan made their first contribution in Shopify/sarama#2340
• @​ryarnyah made their first contribution in Shopify/sarama#2295

Full Changelog: https://github.com/Shopify/sarama/compare/v1.36.0...v1.37.0

• 619d4ef Merge pull request #2327 from joewreschnig/mock-config-validate
• 9a14762 Validate the Config when creating a mock producer/consumer
• b923960 Merge pull request #2350 from Shopify/deps/github.com-pierrec-lz4-v4-4.1.x
• fcc0267 Merge pull request #2349 from Shopify/deps/github.com-klauspost-compress-1.15.x
• c9db08b Merge pull request #2336 from Shopify/deps/github.com-shopify-toxiproxy-v2-2.x
• 802274a Merge pull request #2348 from Shopify/deps/golang.org-x-net-digest
• f0045f2 chore(deps): bump module github.com/shopify/toxiproxy/v2 to v2.5.0
• 73a6257 chore(deps): bump module github.com/pierrec/lz4/v4 to v4.1.17
• 3584bd2 chore(deps): bump module github.com/klauspost/compress to v1.15.11
• 49606c1 chore(deps): bump golang.org/x/net digest to f486391
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 328f301 add some test case which related the logic (#5477)
• 1223745 fix: use preparestmt in trasaction will use new conn, close #5508
• 73bc53f feat: migrator support type aliases (#5627)
• 101a7c7 fix: scan array (#5624)
• 3a72ba1 Allow shared foreign key for many2many jointable
• 1f634c3 support scan assign slice cap (#5634)
• 5ed7b1a fix: same embedded filed name (#5705)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/go-playground/validator/v10's releases.

Release 10.11.1

What was fixed?

Corrected/Enhanced is boolean check to take the field type into consideration. Thanks @​V-R-Dighe for the PR

• c7e0172 Update README.md
• 1e8c614 Fixed boolean validation to handle bool kind (#988)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/getsentry/sentry-go's releases.

0.15.0

• fix: Scope values should not override Event values (#446)
• feat: Make maximum amount of spans configurable (#460)
• feat: Add a method to start a transaction (#482)
• feat: Extend User interface by adding Data, Name and Segment (#483)
• feat: Add ClientOptions.SendDefaultPII (#485)

0.14.0

• feat: Add function to continue from trace string (#434)
• feat: Add max-depth options (#428)
• [breaking] ref: Use a Context type mapping to a map[string]interface{} for all event contexts (#444)
• [breaking] ref: Replace deprecated ioutil pkg with os & io (#454)
• ref: Optimize stacktrace.go from size and speed (#467)
• ci: Test against go1.19 and go1.18, drop go1.16 and go1.15 support (#432, #477)
• deps: Dependency update to fix CVEs (#462, #464, #477)

NOTE: This version drops support for Go 1.16 and Go 1.15. The currently supported Go versions are the last 3 stable releases: 1.19, 1.18 and 1.17.

Sourced from github.com/getsentry/sentry-go's changelog.

0.16.0

The Sentry SDK team is happy to announce the immediate availability of Sentry Go SDK v0.16.0. Due to ongoing work towards a stable API for v1.0.0, we sadly had to include two breaking changes in this release.

Breaking Changes

• Add EnableTracing, a boolean option flag to enable performance monitoring (false by default).

  • If you're using TracesSampleRate or TracesSampler, this option is required to enable performance monitoring.

    sentry.Init(sentry.ClientOptions{
        EnableTracing: true,
        TracesSampleRate: 1.0,
    })
    

• Unify TracesSampler #498

  • TracesSampler was changed to a callback that must return a float64 between 0.0 and 1.0.

    For example, you can apply a sample rate of 1.0 (100%) to all /api transactions, and a sample rate of 0.5 (50%) to all other transactions. You can read more about this in our SDK docs.

    sentry.Init(sentry.ClientOptions{
        TracesSampler: sentry.TracesSampler(func(ctx sentry.SamplingContext) float64 {
             hub := sentry.GetHubFromContext(ctx.Span.Context())
             name := hub.Scope().Transaction()
         if strings.HasPrefix(name, "GET /api") {
             return 1.0
         }
     return 0.5
    
    }),
    
    }
    

Features

• Send errors logged with Logrus to Sentry.
  • Have a look at our logrus examples on how to use the integration.
• Add support for Dynamic Sampling #491
  • You can read more about Dynamic Sampling in our product docs.
• Add detailed logging about the reason transactions are being dropped.
  • You can enable SDK logging via sentry.ClientOptions.Debug: true.

Bug Fixes

• Do not clone the hub when calling StartTransaction #505
  • Fixes #502

... (truncated)

• 1602d6c release: 0.16.0
• 5b9117b Prepare 0.16.0 (#509)
• 1c273b2 Create an empty DSC in case there is no baggage header (#510)
• c63acf9 feat: Add support for Dynamic Sampling (#491)
• 5dbb801 fix: Do not clone the hub inside StartTransaction (#505)
• c5a9734 ref: Unify TracesSampler (#498)
• 014331c Update README.md (#504)
• b31dec1 Add logrus support (#471)
• 4880d1d docs: Update changelog (#495)
• 46b93cf Merge branch 'release/0.15.0'
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from google.golang.org/grpc's releases.

Release 1.51.0

Behavior Changes

• xds: NACK EDS resources with duplicate addresses in accordance with a recent spec change (#5715)
  • Special Thanks: @​erni27
• grpc: restrict status codes that can be generated by the control plane (gRFC A54) (#5653)

New Features

• client: set grpc-accept-encoding header with all registered compressors (#5541)
  • Special Thanks: @​jronak
• xds/weightedtarget: return a more meaningful error when all child policies are in TRANSIENT_FAILURE (#5711)
• gcp/observability: add "started rpcs" metric (#5768)
• xds: de-experimentalize the google-c2p-resolver (#5707)
• balancer: add experimental Producer types and methods (#5669)
• orca: provide a way for LB policies to receive OOB load reports (#5669)

Bug Fixes

• go.mod: upgrade x/text dependency to address CVE 2022-32149 (#5769)
• client: fix race that could lead to an incorrect connection state if it was closed immediately after the server's HTTP/2 preface was received (#5714)
  • Special Thanks: @​fuweid
• xds: ensure sum of the weights of all EDS localities at the same priority level does not exceed uint32 max (#5703)
  • Special Thanks: @​erni27
• client: fix binary logging bug which logs a server header on a trailers-only response (#5763)
• balancer/priority: fix a bug where unreleased references to removed child policies (and associated state) was causing a memory leak (#5682)
• xds/google-c2p: validate URI schema for no authorities (#5756)

Release 1.50.1

New Features

• gcp/observability: support new configuration defined in public preview user guide

Release 1.50.0

Behavior Changes

• client: use proper "@" semantics for connecting to abstract unix sockets. (#5678)
  • This is technically a bug fix; the result is that the address was including a trailing NULL byte, which it should not have. This may break users creating the socket in Go by prefixing a NULL instead of an "@", though, so calling it out as a behavior change.
  • Special Thanks: @​jachor

New Features

• metadata: add experimental ValueFromIncomingContext to more efficiently retrieve a single value (#5596)
  • Special Thanks: @​horpto
• stats: provide peer information in HandleConn context (#5589)
  • Special Thanks: @​feihu-stripe
• xds: add support for Outlier Detection, enabled by default (#5435, #5673)

Bug Fixes

• client: fix deadlock in transport caused by GOAWAY racing with stream creation (#5652)

... (truncated)

• eeb9afa Change version to 1.51.0 (#5782)
• 72812fe gcp/observability: filter logging from cloud ops endpoints calls (#5765)
• 0ae33e6 xdsclient: remove unused test code (#5772)
• 824f449 go.mod: upgrade x/text to v0.4 to address CVE (#5769)
• 7f23df0 xdsclient: switch xdsclient watch deadlock test to e2e style (#5697)
• 32f969e o11y: Added started rpc metric in o11y plugin (#5768)
• b597a8e xdsclient: improve authority watchers test (#5700)
• e41e894 orca: create ORCA producer for LB policies to use to receive OOB load reports...
• 36d14db Fix binary logging bug which logs a server header on a trailers only response...
• fcb8bdf xds/google-c2p: validate url for no authorities (#5756)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• e3df4c2 Use ticker instead of resetting timer (#52)
• fb83e1e Fix compatibility with redis.v9 (#50)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/labstack/gommon's releases.

v0.4.0

• Rename binary units according to IEC 60027 and add decimal units (SI) #45
• Fix panic in log with empty header #51

• 6267eb7 Fix panic in log with empty header
• 64116ba Remove prefixType to avoid unnecessary breaking change
• f6ddce3 Rename binary units according to IEC 60027 and add decimal units (SI)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/Shopify/sarama's releases.

Version 1.37.2 (2022-10-04)

What's Changed

:bug: Fixes

• fix: ensure updateMetaDataMs is 64-bit aligned by @​dnwe in Shopify/sarama#2356

:heavy_plus_sign: Other Changes

• fix: bump go.mod specification to go 1.17 by @​dnwe in Shopify/sarama#2357

Full Changelog: https://github.com/Shopify/sarama/compare/v1.37.1...v1.37.2

Version 1.37.1 (2022-10-04)

What's Changed

:bug: Fixes

• fix: support existing deprecated Rebalance.Strategy field usage by @​spongecaptain in Shopify/sarama#2352
• fix(test): consumer group rebalance strategy compatibility by @​Jacob-bzx in Shopify/sarama#2353
• fix(producer): replace time.After with time.Timer to avoid high memory usage by @​Jacob-bzx in Shopify/sarama#2355

New Contributors

• @​spongecaptain made their first contribution in Shopify/sarama#2352

Full Changelog: https://github.com/Shopify/sarama/compare/v1.37.0...v1.37.1

• 610514e fix: bump go.mod specification to go 1.17 (#2357)
• fb9a931 fix: ensure updateMetaDataMs is 64-bit aligned (#2356)
• 0162486 fix(producer): replace time.After with time.Timer to avoid high memory usage ...
• 50ceb93 fix(test): consumer group rebalance strategy compatibility (#2353)
• eaf1def fix: support existing deprecated Rebalance.Strategy field usage (#2352)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)