Skip to content
This repository was archived by the owner on May 5, 2025. It is now read-only.

Bump connectrpc.com/connect from 1.16.0 to 1.16.2 #80

Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump connectrpc.com/connect from 1.16.0 to 1.16.2 #80

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 14, 2024

Bumps connectrpc.com/connect from 1.16.0 to 1.16.2.

Release notes

Sourced from connectrpc.com/connect's releases.

v1.16.2

This is a patch release to make sure that consuming modules won't be vulnerable to CVE-2023-45288.

What's Changed

  • Update the golang.org/x/net dependency to v0.23.0 in #729.

Full Changelog: connectrpc/connect-go@v1.16.1...v1.16.2

v1.16.1

This release contains a single bugfix.

What's Changed

Bugfixes

  • Fix redundant attempts to write headers in certain error cases in Connect unary RPCs by @​emcfarlane in #726

Full Changelog: connectrpc/connect-go@v1.16.0...v1.16.1

Commits
  • 2972b2d Prepare for v1.16.2 (#733)
  • 30cddf8 Update conformance module to use newer version of Go and quic-go dependency (...
  • f7f3814 Bump golang.org/x/net from 0.22.0 to 0.23.0 in /internal/conformance (#730)
  • a6be0d0 Bump golang.org/x/net from 0.21.0 to 0.23.0 (#729)
  • a5906bd Back to development (#728)
  • 3ed7fb0 Prepare for v1.16.1 (#727)
  • fd9d60a Fix multiple header writes for connect unary on error (#726)
  • 1abde82 Bump connectrpc.com/conformance from 1.0.1 to 1.0.2 in /internal/conformance ...
  • 59f77e7 Update to latest conformance suite: v1.0.1 (#723)
  • e4300c7 Update to v1.0.0-rc4 of conformance suite (#721)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump connectrpc.com/connect from 1.16.0 to 1.16.2
69b4647 
Bumps [connectrpc.com/connect](https://github.com/connectrpc/connect-go) from 1.16.0 to 1.16.2.
- [Release notes](https://github.com/connectrpc/connect-go/releases)
- [Changelog](https://github.com/connectrpc/connect-go/blob/main/RELEASE.md)
- [Commits](connectrpc/connect-go@v1.16.0...v1.16.2)

---
updated-dependencies:
- dependency-name: connectrpc.com/connect
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner May 14, 2024 11:04
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels May 14, 2024
@dependabot dependabot bot mentioned this pull request May 14, 2024
Closed
@github-actions github-actions bot enabled auto-merge (squash) May 14, 2024 11:05
@hardikdr hardikdr added this to Roadmap Jun 29, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@github-actions github-actions[bot] github-actions[bot] approved these changes

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code size/XS

Projects

Roadmap
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant