fix(deps): vuln major upgrades — 33 packages (major: 1 · unstable: 6 · minor: 26)

[gh-worker-campaigns-3e9aa4]

Summary: Critical-severity security update — 33 packages upgraded (MAJOR changes included)

Manifests changed:

• . (go)

---

✅ Action Required: Please review the changes below. If they look good, approve and merge this PR.

---

Updates

Package	From	To	Type	Dep Type	Vulnerabilities Fixed
google.golang.org/grpc	v1.51.0	v1.80.0	minor	Transitive	3 CRITICAL, 2 HIGH
google.golang.org/protobuf	v1.28.1	v1.36.11	minor	Transitive	2 MODERATE
golang.org/x/sys	v0.6.0	v0.43.0	unstable	Direct	-
k8s.io/api	v0.27.3	v0.35.4	unstable	Direct	-
k8s.io/apimachinery	v0.27.3	v0.35.4	unstable	Direct	-
k8s.io/apiserver	v0.27.3	v0.35.4	unstable	Direct	-
k8s.io/client-go	v0.27.3	v1.5.2	major	Direct	-
k8s.io/component-base	v0.27.3	v0.35.4	unstable	Direct	-
k8s.io/controller-manager	v0.27.3	v0.35.4	unstable	Direct	-
github.com/cenkalti/backoff/v4	v4.1.3	v4.3.0	minor	Transitive	-
github.com/cespare/xxhash/v2	v2.1.2	v2.3.0	minor	Transitive	-
github.com/coreos/go-systemd/v22	v22.4.0	v22.7.0	minor	Transitive	-
github.com/emicklei/go-restful/v3	v3.9.0	v3.13.0	minor	Transitive	-
github.com/fsnotify/fsnotify	v1.6.0	v1.9.0	minor	Transitive	-
github.com/go-logr/logr	v1.2.3	v1.4.3	minor	Transitive	-
github.com/google/uuid	v1.3.0	v1.6.0	minor	Transitive	-
github.com/grpc-ecosystem/grpc-gateway/v2	v2.7.0	v2.29.0	minor	Transitive	-
github.com/inconshreveable/mousetrap	v1.0.1	v1.1.0	minor	Transitive	-
github.com/prometheus/client_golang	v1.14.0	v1.23.2	minor	Direct	-
github.com/spf13/cobra	v1.6.0	v1.10.2	minor	Transitive	-
github.com/stoewer/go-strcase	v1.2.0	v1.3.1	minor	Transitive	-
go.etcd.io/etcd/api/v3	v3.5.7	v3.6.10	minor	Transitive	-
go.etcd.io/etcd/client/pkg/v3	v3.5.7	v3.6.10	minor	Transitive	-
go.etcd.io/etcd/client/v3	v3.5.7	v3.6.10	minor	Transitive	-
go.opentelemetry.io/otel	v1.10.0	v1.43.0	minor	Transitive	-
go.opentelemetry.io/otel/exporters/otlp/otlptrace	v1.10.0	v1.43.0	minor	Transitive	-
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc	v1.10.0	v1.43.0	minor	Transitive	-
go.opentelemetry.io/otel/sdk	v1.10.0	v1.43.0	minor	Transitive	-
go.opentelemetry.io/otel/trace	v1.10.0	v1.43.0	minor	Transitive	-
go.uber.org/multierr	v1.6.0	v1.11.0	minor	Transitive	-
go.uber.org/zap	v1.19.0	v1.27.1	minor	Transitive	-
k8s.io/klog/v2	v2.90.1	v2.140.0	minor	Direct	-
sigs.k8s.io/yaml	v1.3.0	v1.6.0	minor	Direct	-

Packages marked with "-" are updated due to dependency constraints.

---

Warning

Major Version Upgrade

This update includes major version changes that may contain breaking changes. Please:

• Review the changelog/release notes for breaking changes
• Test thoroughly in a staging environment
• Update any code that depends on changed APIs
• Ensure all tests pass before merging

Security Details

🚨 Critical & High Severity (5 fixed)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
google.golang.org/grpc	GO-2026-4762	critical	Authorization bypass in gRPC-Go via missing leading slash in :path in google.golang.org/grpc	v1.51.0	1.79.3
google.golang.org/grpc	CVE-2026-33186	critical	gRPC-Go has an authorization bypass via missing leading slash in :path	v1.51.0	-
google.golang.org/grpc	GHSA-p77j-4mvh-x3m3	CRITICAL	gRPC-Go has an authorization bypass via missing leading slash in :path	v1.51.0	1.79.3
google.golang.org/grpc	GO-2023-2153	HIGH	Denial of service from HTTP/2 Rapid Reset in google.golang.org/grpc	v1.51.0	1.56.3
google.golang.org/grpc	GHSA-m425-mq94-257g	HIGH	gRPC-Go HTTP/2 Rapid Reset vulnerability	v1.51.0	1.56.3

ℹ️ Other Vulnerabilities (2)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
google.golang.org/protobuf	GO-2024-2611	MODERATE	Infinite loop in JSON unmarshaling in google.golang.org/protobuf	v1.28.1	1.33.0
google.golang.org/protobuf	GHSA-8r3f-844c-mc37	MODERATE	Golang protojson.Unmarshal function infinite loop when unmarshaling certain forms of invalid JSON	v1.28.1	1.33.0

⚠️ Dependencies that have Reached EOL (27)

Dependency	Unsafe Version	EOL Date	New Version	Path
github.com/cenkalti/backoff/v4	v4.1.3	-	v4.3.0	go.mod
github.com/cespare/xxhash/v2	v2.1.2	-	v2.3.0	go.mod
github.com/coreos/go-systemd/v22	v22.4.0	Sep 16, 2025	v22.7.0	go.mod
github.com/emicklei/go-restful/v3	v3.9.0	Jul 21, 2025	v3.13.0	go.mod
github.com/fsnotify/fsnotify	v1.6.0	Oct 13, 2025	v1.9.0	go.mod
github.com/go-logr/logr	v1.2.3	-	v1.4.3	go.mod
github.com/google/uuid	v1.3.0	-	v1.6.0	go.mod
github.com/grpc-ecosystem/grpc-gateway/v2	v2.7.0	-	v2.29.0	go.mod
github.com/inconshreveable/mousetrap	v1.0.1	Aug 7, 2025	v1.1.0	go.mod
github.com/prometheus/client_golang	v1.14.0	Nov 8, 2025	v1.23.2	go.mod
github.com/spf13/cobra	v1.6.0	Oct 11, 2025	v1.10.2	go.mod
github.com/stoewer/go-strcase	v1.2.0	-	v1.3.1	go.mod
go.etcd.io/etcd/api/v3	v3.5.7	Jan 20, 2026	v3.6.10	go.mod
go.etcd.io/etcd/client/pkg/v3	v3.5.7	Jan 20, 2026	v3.6.10	go.mod
go.etcd.io/etcd/client/v3	v3.5.7	Jan 20, 2026	v3.6.10	go.mod
go.opentelemetry.io/otel	v1.10.0	Sep 12, 2025	v1.43.0	go.mod
go.opentelemetry.io/otel/exporters/otlp/otlptrace	v1.10.0	Sep 12, 2025	v1.43.0	go.mod
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc	v1.10.0	Sep 12, 2025	v1.43.0	go.mod
go.opentelemetry.io/otel/sdk	v1.10.0	Sep 12, 2025	v1.43.0	go.mod
go.opentelemetry.io/otel/trace	v1.10.0	Sep 12, 2025	v1.43.0	go.mod
go.uber.org/multierr	v1.6.0	-	v1.11.0	go.mod
go.uber.org/zap	v1.19.0	-	v1.27.1	go.mod
golang.org/x/sys	v0.6.0	Mar 4, 2026	v0.43.0	go.mod
google.golang.org/grpc	v1.51.0	Nov 18, 2025	v1.80.0	go.mod
google.golang.org/protobuf	v1.28.1	Jul 28, 2025	v1.36.11	go.mod
k8s.io/klog/v2	v2.90.1	Mar 1, 2026	v2.140.0	go.mod
sigs.k8s.io/yaml	v1.3.0	-	v1.6.0	go.mod

---

Review Checklist

Extra review is recommended for this update:

• Review changes for compatibility with your code
• Check release notes for breaking changes
• Run integration tests to verify service behavior
• Test in staging environment before production
• Monitor key metrics after deployment
• Approve and merge this PR

---

Update Mode: Vulnerability Remediation (Critical/High)

🤖 Generated by DataDog Automated Dependency Management System

[campaigner-prod]

Release Notes

google.golang.org/grpc (v1.51.0 → v1.80.0) — GitHub Release

v1.80.0

Behavior Changes

• balancer: log a warning if a balancer is registered with uppercase letters, as balancer names should be lowercase. In a future release, balancer names will be treated as case-insensitive; see balancer: use case-sensitive balancer registries grpc/grpc-go#5288 for details. (balancer: introduce env flag for case-sensitive registry grpc/grpc-go#8837)
• xds: update resource error handling and re-resolution logic (xds: change cdsbalancer to use update from dependency manager grpc/grpc-go#8907)
  • Re-resolve all LOGICAL_DNS clusters simultaneously when re-resolution is requested.
  • Fail all in-flight RPCs immediately upon receipt of listener or route resource errors, instead of allowing them to complete.

Bug Fixes

• xds: support the LB policy configured in LOGICAL_DNS cluster resources instead of defaulting to pick_first. (xds/clusterresolver: implement gRFC A61 changes for LOGICAL_DNS clusters grpc/grpc-go#8733)
• credentials/tls: perform per-RPC authority validation against the leaf certificate instead of the entire peer certificate chain. (credentials/tls: verify overwritten authority against only leaf certificate grpc/grpc-go#8831)
• xds: enabling A76 ring hash endpoint keys no longer causes EDS resources with invalid proxy metadata to be NACKed when HTTP CONNECT (gRFC A86) is disabled. (xds: decouple A76 and A86 EDS metadata parsing grpc/grpc-go#8875)
• xds: validate that the sum of endpoint weights in a locality does not exceed the maximum uint32 value. (xds/xdsclient: add EDS sum of endpoint weights does not exceed MaxUint32 grpc/grpc-go#8899)
  • Special Thanks: @RAVEYUS
• xds: fix incorrect proto field access in the weighted round robin (WRR) configuration where blackout_period was used instead of weight_expiration_period. (xds: fix copy-paste bug in WeightExpirationPeriod config grpc/grpc-go#8915)
  • Special Thanks: @gregbarasch
• xds/rbac: handle addresses with ports in IP matchers. (xds/rbac: add additional handling for addresses with ports grpc/grpc-go#8990)

New Features

• ringhash: enable gRFC A76 (endpoint hash keys and request hash headers) by default. (ringhash: enable behaviors of A76 by default grpc/grpc-go#8922)

Performance Improvements

(truncated — see source for full notes)

google.golang.org/protobuf (v1.28.1 → v1.36.11) — GitHub Release

v1.36.11

Full Changelog: protocolbuffers/protobuf-go@v1.36.10...v1.36.11

User-visible changes:
CL/726780: encoding/prototext: Support URL chars in type URLs in text-format.

Bug fixes:
CL/728680: internal/impl: check recursion limit in lazy decoding validation
CL/711015: reflect/protodesc: fix handling of import options in dynamic builds

Maintenance:
CL/728681: reflect/protodesc: add support for edition unstable
CL/727960: all: add EDITION_UNSTABLE support
CL/727940: types: regenerate using latest protobuf v33.2 release
CL/727140: internal/testprotos/lazy: convert .proto files to editions
CL/723440: cmd/protoc-gen-go: add missing annotations for few generated protobuf symbols.
CL/720980: internal/filedesc: remove duplicative Message.unmarshalOptions
CL/716360: internal/encoding/tag: use proto3 defaults if proto3
CL/716520: proto: un-flake TestHasExtensionNoAlloc
CL/713342: compiler/protogen: properly filter option dependencies in go-protobuf plugin.
CL/711200: proto: add test for oneofs containing messages with required fields
CL/710855: proto: add explicit test for a non-nil but empty byte slice

v1.36.10

(truncated — see source for full notes)

k8s.io/api (v0.27.3 → v0.35.4) — Commit comparison

• b2e5489 Merge pull request https://github.com/kubernetes/api/issues/118895 from RyanAoh/kep-1860
• 08de24e Graduate AdmissionWebhookMatchCondition to beta
• b99d65a Generated code for IP mode field
• 85d5f1b Update generated documentation
• 23fed57 Fix validation options for old pvc
• 4cea59e upgrade prometheus common to v0.44.0
• 7f35b55 Update generated stuff after changing comments
• 9377396 Update comments about allocatedResourceStatus
• 5adbf42 Update test generated data for 1.26 branch
• 5fba150 Update 1.27 generated data
• c214b0a Update generated data
• dd4da89 Update code to use new generic allocatedResourceStatus field
• cef2f42 Bump kube-openapi
• cc31205 Add IP mode field
• 2786528 Merge pull request https://github.com/kubernetes/api/issues/109616 from wzshiming/feat/pod-host-ips

... and 85 more commits

k8s.io/apimachinery (v0.27.3 → v0.35.4) — Commit comparison

• 557064e always execute condition for wait.PollUntilContextTimeout with
• 6b1428e Merge pull request https://github.com/kubernetes/apimachinery/issues/118507 from jeremyrickard/go1205
• e3550f9 Update vendor with hack/update-vendor.sh
• 16053f7 Merge pull request https://github.com/kubernetes/apimachinery/issues/118522 from jpbetz/remove-bad-merge-key
• 9915519 Remove invalid merge key
• 7ed5d2d Merge pull request https://github.com/kubernetes/apimachinery/issues/118362 from linxiulei/zero_copy
• 4428831 Do not copy bytes for cached serializations
• 57a9270 Merge pull request https://github.com/kubernetes/apimachinery/issues/118384 from Jefftree/gnostic-models-branch
• 9bd9032 Update gnostic references
• 631d495 vendor
• 60180f0 Merge pull request https://github.com/kubernetes/apimachinery/issues/113362 from sxllwx/ftr/extract_listobject_use_copy
• b7c2804 clean up dead code
• 963198f Optimize reflect checks further, save item type information
• f95867e Implement WithAlloc variants for EachListItem and ExtractList
• f3cf2af Extract List reflect optimization

... and 85 more commits

k8s.io/apiserver (v0.27.3 → v0.35.4) — Commit comparison

• 3813b3e remove genericfeatures.DryRun in 1.28
• f5166f7 upgrade etcd deps to v3.5.8
• e6be556 add Authentication tracking request/error counts and latency metrics
• 75fa683 Upgrades spf13/cobra to 1.7.0
• e277c42 Merge pull request https://github.com/kubernetes/apiserver/issues/117716 from thockin/validation_test_whitespace
• 6fa34a3 Clean up brace whitespace in **/validation_test.go
• d77e939 Merge pull request https://github.com/kubernetes/apiserver/issues/114998 from alexzielenski/apiserver/smd/ssa-conditionals
• 81abb60 generate fully qualified type references
• fa401a0 Update k8s.io/utils version to v0.0.0-20230313181309-38a27ef9d749
• 5ea7a9f fixup patcher test to include field manager
• 4bd3e89 remove checks for fieldmanager from handlers
• e04cbed CEL lib: Expose errors on authz decisions instead of raising them from check().
• 330dca5 Cache authz decisions within validating policy admission.
• 444c9b2 add OpenAPIV3 config to tests and server options
• c5d7117 supply deduced typeconverter to apiserver tests

... and 85 more commits

k8s.io/client-go (v0.27.3 → v1.5.2) — Changelog

https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md

k8s.io/component-base (v0.27.3 → v0.35.4) — Commit comparison

• 0c6d6c2 Use ptr.To to retrieve intstr addresses
• 9fc2985 bump github.com/emicklei/go-restful/v3 to v3.11.0.
• 99cad73 update the dependency sigs.k8s.io/structured-merge-diff/v4 to latest tag
• 8d708dd KEP-2305: add metric to track unbounded label values
• 9106e3d WebSocket Client and V5 RemoteCommand Subprotocol
• 6a97c85 Merge pull request https://github.com/kubernetes/component-base/issues/120327 from liggitt/json-patch
• 48a3d8e Revert to json-patch 4.12.0
• 62d4fd0 Merge pull request https://github.com/kubernetes/component-base/issues/120218 from rakshitgondwal/feat/protobuf-version-update
• d528659 feat: update google.golang.org/protobuf to v1.31.0
• b54afcf Merge pull request https://github.com/kubernetes/component-base/issues/119715 from logicalhan/ExponentialBucketsRange
• 31137ad Merge pull request https://github.com/kubernetes/component-base/issues/119725 from MadhavJivrajani/bump-net-dep
• c2ee70c .*: bump golang.org/x/net to v0.13.0
• eef4fb0 add support for ExponentialBucketsRange
• a69210f Merge pull request https://github.com/kubernetes/component-base/issues/118204 from sttts/sttts-openapi-v2-parameter-refs
• 590f17c Merge pull request https://github.com/kubernetes/component-base/issues/119312 from pacoxu/prometheus/common-v0.44

... and 85 more commits

k8s.io/controller-manager (v0.27.3 → v0.35.4) — Commit comparison

• 72410b8 Merge pull request https://github.com/kubernetes/controller-manager/issues/120499 from tukwila/gorilla/websocket_v1.5.0
• f98efae bump: upgrade gorilla/websocket from v1.4.2 to v1.5.0
• f814d6e Merge pull request https://github.com/kubernetes/controller-manager/issues/119334 from kmala/serverapply
• 325383b Merge pull request https://github.com/kubernetes/controller-manager/issues/120275 from danwinship/kep-3705-to-beta
• c917325 Merge pull request https://github.com/kubernetes/controller-manager/issues/120327 from liggitt/json-patch
• 8af5163 Revert to json-patch 4.12.0
• 6237056 Bump CloudDualStackNodeIPs to beta for 1.29
• 9f7546d Merge pull request https://github.com/kubernetes/controller-manager/issues/120218 from rakshitgondwal/feat/protobuf-version-update
• 9a2eba4 feat: update google.golang.org/protobuf to v1.31.0
• 5da7509 Merge pull request https://github.com/kubernetes/controller-manager/issues/120060 from jpbetz/cel-features-1_29
• 8638e93 Bump cel-go to v0.17.6
• bb5e45a Use ptr.To to retrieve intstr addresses
• 005132e Merge pull request https://github.com/kubernetes/controller-manager/issues/119800 from jpbetz/cost-fix
• f81ce26 Merge pull request https://github.com/kubernetes/controller-manager/issues/117977 from liggitt/available-resources
• 357c19b bump github.com/emicklei/go-restful/v3 to v3.11.0.

... and 85 more commits

github.com/coreos/go-systemd/v22 (v22.4.0 → v22.7.0) — GitHub Release

v22.7.0

This release fixes an issue with multiple calls to (e.g.) StopUnit, simplifies and improves code and documentation, and adds a few new methods.

What's Changed

• build(deps): bump actions/setup-go from 5 to 6 by @dependabot[bot] in build(deps): bump actions/setup-go from 5 to 6 coreos/go-systemd#473
• Fixing error on negative value of LISTEN_FDS by @vporoshok in Fixing error on negative value of LISTEN_FDS coreos/go-systemd#472
• Misc error reporting improvements by @kolyshkin in Misc error reporting improvements coreos/go-systemd#475
• daemon: add SdNotifyMonotonicUsec helper function by @corhere in daemon: add SdNotifyMonotonicUsec helper function coreos/go-systemd#435
• build(deps): bump golangci/golangci-lint-action from 8 to 9 by @dependabot[bot] in build(deps): bump golangci/golangci-lint-action from 8 to 9 coreos/go-systemd#481
• build(deps): bump actions/checkout from 5 to 6 by @dependabot[bot] in build(deps): bump actions/checkout from 5 to 6 coreos/go-systemd#483
• dbus: fix TestSetUnitProperties wrt systemd >= 252 by @kolyshkin in dbus: fix TestSetUnitProperties wrt systemd >= 252 coreos/go-systemd#489
• Sync repo templates ⚙ by @coreosbot-releng in Sync repo templates ⚙ coreos/go-systemd#486
• unit: simplify escape character by @huww98 in unit: simplify escape character coreos/go-systemd#485
• machine1: add missing close method to conn. by @maartensson in machine1: add missing close method to conn. coreos/go-systemd#487
• subscription: Added context cancellation and sync to subscription set by @NotSoFancyName in subscription: Added context cancellation and sync to subscription set coreos/go-systemd#480
• ci: improvements by @kolyshkin in ci: improvements coreos/go-systemd#490
• import1: add missing close method to conn by @maartensson in import1: add missing close method to conn coreos/go-systemd#492
• sdjournal: fix copyrights by @kolyshkin in sdjournal: fix copyrights coreos/go-systemd#499
• activation: simplify ListenersWithNames by @kolyshkin in activation: simplify ListenersWithNames coreos/go-systemd#498
• dbus: allow multiple calls for the same unit to *Unit by @haircommander in dbus: allow multiple calls for the same unit to *Unit coreos/go-systemd#496

(truncated — see source for full notes)

github.com/emicklei/go-restful/v3 (v3.9.0 → v3.13.0) — Changelog

• optimize performance of path matching in CurlyRouter ( thanks @wenhuang, Wen Huang)

github.com/grpc-ecosystem/grpc-gateway/v2 (v2.7.0 → v2.29.0) — GitHub Release

v2.29.0

What's Changed

• fix: use proto.Merge to avoid copylocks with use_opaque_api=true by @emahiro in fix: use proto.Merge to avoid copylocks with use_opaque_api=true grpc-ecosystem/grpc-gateway#6383
• fix: allow proto3 optional fields in path parameters by @susanachl in fix: allow proto3 optional fields in path parameters grpc-ecosystem/grpc-gateway#6416
• Add option to disable HTTP method override by @achew22 in Add option to disable HTTP method override grpc-ecosystem/grpc-gateway#6447
• Add Go documentation badge to README by @achew22 in Add Go documentation badge to README grpc-ecosystem/grpc-gateway#6448
• fix: add missing return statements in error handler paths by @jet-go in fix: add missing return statements in error handler paths grpc-ecosystem/grpc-gateway#6561
• Deprecate fields and methods if file is deprecated by @aidandj in Deprecate fields and methods if file is deprecated grpc-ecosystem/grpc-gateway#6613
• Add edition 2024 support by @printfn in Add edition 2024 support grpc-ecosystem/grpc-gateway#6622

New Contributors

• @emahiro made their first contribution in fix: use proto.Merge to avoid copylocks with use_opaque_api=true grpc-ecosystem/grpc-gateway#6383
• @susanachl made their first contribution in fix: allow proto3 optional fields in path parameters grpc-ecosystem/grpc-gateway#6416
• @jet-go made their first contribution in fix: add missing return statements in error handler paths grpc-ecosystem/grpc-gateway#6561
• @aidandj made their first contribution in Deprecate fields and methods if file is deprecated grpc-ecosystem/grpc-gateway#6613
• @printfn made their first contribution in Add edition 2024 support grpc-ecosystem/grpc-gateway#6622

Full Changelog: grpc-ecosystem/grpc-gateway@v2.28.0...v2.29.0

v2.28.0

What's Changed

• feat: add option to disable chunked headers by @irenarindos in feat: add option to disable chunked headers grpc-ecosystem/grpc-gateway#6354
• fix(protoc-gen-openapiv2): fix panic on enum resolution in nested messages by @franchb in fix(protoc-gen-openapiv2): fix panic on enum resolution in nested messages grpc-ecosystem/grpc-gateway#6367

New Contributors

• @irenarindos made their first contribution in feat: add option to disable chunked headers grpc-ecosystem/grpc-gateway#6354

(truncated — see source for full notes)

github.com/prometheus/client_golang (v1.14.0 → v1.23.2) — GitHub Release

v1.23.2

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

All Changes

• [release-1.23] Upgrade to prometheus/common@v0.66.1 by @aknuds1 in [release-1.23] Upgrade to prometheus/common@v0.66.1 prometheus/client_golang#1869
• [release-1.23] Cut v1.23.2 by @aknuds1 in [release-1.23] Cut v1.23.2 prometheus/client_golang#1870

Full Changelog: prometheus/client_golang@v1.23.1...v1.23.2

v1.23.1

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

All Changes

• [release-1.23] Upgrade to prometheus/common v0.66 by @aknuds1 in [release-1.23] Upgrade to prometheus/common v0.66 prometheus/client_golang#1866
• [release-1.23] Cut v1.23.1 by @aknuds1 in [release-1.23] Cut v1.23.1 prometheus/client_golang#1867

Full Changelog: prometheus/client_golang@v1.23.0...v1.23.1

v1.23.0

• [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. Update supported Go versions prometheus/client_golang#1812
• [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix Add WrapCollectorWith and WrapCollectorWithPrefix prometheus/client_golang#1766
• [FEATURE] Add exemplars for native histograms Add exemplars for native histograms prometheus/client_golang#1686
• [ENHANCEMENT] exp/api: Bubble up status code from writeResponse exp/api: Bubble up status code from writeResponse prometheus/client_golang#1823
• [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 Update runtime metrics for Go v1.23 and v1.24 prometheus/client_golang#1833
• [BUGFIX] exp/api: client prompt return on context cancellation fix: client prompt return on context cancellation prometheus/client_golang#1729

Details

(truncated — see source for full notes)

github.com/spf13/cobra (v1.6.0 → v1.10.2) — GitHub Release

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @dims in chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @marckhouzam in Fix linter and allow CI to pass spf13/cobra#2327
• fix: actions/setup-go v6 by @jpmcb in fix: actions/setup-go v6 spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @rvergis in Add documentation for repeated flags functionality spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @htoyoda18 in refactor: replace several vars with consts spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @ssam18 in refactor: change minUsagePadding from var to const spf13/cobra#2325

🤗 New Contributors

• @rvergis made their first contribution in Add documentation for repeated flags functionality spf13/cobra#2316
• @htoyoda18 made their first contribution in refactor: replace several vars with consts spf13/cobra#2328
• @ssam18 made their first contribution in refactor: change minUsagePadding from var to const spf13/cobra#2325
• @dims made their first contribution in chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

v1.10.1

🐛 Fix

• chore: upgrade pflags v1.0.9 by @jpmcb in chore: upgrade pflags v1.0.9 spf13/cobra#2305

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

• Bump pflag to 1.0.8 by @tomasaschan in Bump pflag to 1.0.8 spf13/cobra#2303

(truncated — see source for full notes)

go.etcd.io/etcd/api/v3 (v3.5.7 → v3.6.10) — GitHub Release

v3.6.10

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux

ETCD_VER=v3.6.10

# choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version

# start a local etcd server
/tmp/etcd-download-test/etcd

# write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)

ETCD_VER=v3.6.10

# choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.etcd.io/etcd/client/pkg/v3</b> (v3.5.7 → v3.6.10) — <a href="https://github.com/etcd-io/etcd/releases/tag/v3.6.10">GitHub Release</a></summary>

### v3.6.10

Please check out [CHANGELOG](https://github.com/etcd-io/etcd/blob/main/CHANGELOG/CHANGELOG-3.6.md) for a full list of changes. And make sure to read [upgrade guide](https://etcd.io/docs/v3.6/upgrades/upgrade_3_6/) before upgrading etcd (there may be breaking changes).

For installation guides, please check out [play.etcd.io](http://play.etcd.io) and [operating etcd](https://etcd.io/docs/v3.6/op-guide/). Latest support status for common architectures and operating systems can be found at [supported platforms](https://etcd.io/docs/v3.6/op-guide/supported-platform/).

###### Linux

```sh
ETCD_VER=v3.6.10

# choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version

# start a local etcd server
/tmp/etcd-download-test/etcd

# write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)

ETCD_VER=v3.6.10

# choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.etcd.io/etcd/client/v3</b> (v3.5.7 → v3.6.10) — <a href="https://github.com/etcd-io/etcd/releases/tag/v3.6.10">GitHub Release</a></summary>

### v3.6.10

Please check out [CHANGELOG](https://github.com/etcd-io/etcd/blob/main/CHANGELOG/CHANGELOG-3.6.md) for a full list of changes. And make sure to read [upgrade guide](https://etcd.io/docs/v3.6/upgrades/upgrade_3_6/) before upgrading etcd (there may be breaking changes).

For installation guides, please check out [play.etcd.io](http://play.etcd.io) and [operating etcd](https://etcd.io/docs/v3.6/op-guide/). Latest support status for common architectures and operating systems can be found at [supported platforms](https://etcd.io/docs/v3.6/op-guide/supported-platform/).

###### Linux

```sh
ETCD_VER=v3.6.10

# choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz

/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version

# start a local etcd server
/tmp/etcd-download-test/etcd

# write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)

ETCD_VER=v3.6.10

# choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.opentelemetry.io/otel</b> (v1.10.0 → v1.43.0) — <a href="https://github.com/open-telemetry/opentelemetry-go/releases/tag/v1.43.0">GitHub Release</a></summary>

### v1.43.0

## Added

- Add `IsRandom` and `WithRandom` on `TraceFlags`, and `IsRandom` on `SpanContext` in `go.opentelemetry.io/otel/trace`
  for [W3C Trace Context Level 2 Random Trace ID Flag](https://www.w3.org/TR/trace-context-2/#random-trace-id-flag) support. (https://github.com/open-telemetry/opentelemetry-go/issues/8012)
- Add service detection with `WithService` in `go.opentelemetry.io/otel/sdk/resource`. (https://github.com/open-telemetry/opentelemetry-go/issues/7642)
- Add `DefaultWithContext` and `EnvironmentWithContext` in `go.opentelemetry.io/otel/sdk/resource` to support plumbing `context.Context` through default and environment detectors. (https://github.com/open-telemetry/opentelemetry-go/issues/8051)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.opentelemetry.io/otel/exporters/otlp/otlptrace</b> (v1.10.0 → v1.43.0) — <a href="https://github.com/open-telemetry/opentelemetry-go/releases/tag/v1.43.0">GitHub Release</a></summary>

### v1.43.0

## Added

- Add `IsRandom` and `WithRandom` on `TraceFlags`, and `IsRandom` on `SpanContext` in `go.opentelemetry.io/otel/trace`
  for [W3C Trace Context Level 2 Random Trace ID Flag](https://www.w3.org/TR/trace-context-2/#random-trace-id-flag) support. (https://github.com/open-telemetry/opentelemetry-go/issues/8012)
- Add service detection with `WithService` in `go.opentelemetry.io/otel/sdk/resource`. (https://github.com/open-telemetry/opentelemetry-go/issues/7642)
- Add `DefaultWithContext` and `EnvironmentWithContext` in `go.opentelemetry.io/otel/sdk/resource` to support plumbing `context.Context` through default and environment detectors. (https://github.com/open-telemetry/opentelemetry-go/issues/8051)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc</b> (v1.10.0 → v1.43.0) — <a href="https://github.com/open-telemetry/opentelemetry-go/releases/tag/v1.43.0">GitHub Release</a></summary>

### v1.43.0

## Added

- Add `IsRandom` and `WithRandom` on `TraceFlags`, and `IsRandom` on `SpanContext` in `go.opentelemetry.io/otel/trace`
  for [W3C Trace Context Level 2 Random Trace ID Flag](https://www.w3.org/TR/trace-context-2/#random-trace-id-flag) support. (https://github.com/open-telemetry/opentelemetry-go/issues/8012)
- Add service detection with `WithService` in `go.opentelemetry.io/otel/sdk/resource`. (https://github.com/open-telemetry/opentelemetry-go/issues/7642)
- Add `DefaultWithContext` and `EnvironmentWithContext` in `go.opentelemetry.io/otel/sdk/resource` to support plumbing `context.Context` through default and environment detectors. (https://github.com/open-telemetry/opentelemetry-go/issues/8051)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.opentelemetry.io/otel/sdk</b> (v1.10.0 → v1.43.0) — <a href="https://github.com/open-telemetry/opentelemetry-go/releases/tag/v1.43.0">GitHub Release</a></summary>

### v1.43.0

## Added

- Add `IsRandom` and `WithRandom` on `TraceFlags`, and `IsRandom` on `SpanContext` in `go.opentelemetry.io/otel/trace`
  for [W3C Trace Context Level 2 Random Trace ID Flag](https://www.w3.org/TR/trace-context-2/#random-trace-id-flag) support. (https://github.com/open-telemetry/opentelemetry-go/issues/8012)
- Add service detection with `WithService` in `go.opentelemetry.io/otel/sdk/resource`. (https://github.com/open-telemetry/opentelemetry-go/issues/7642)
- Add `DefaultWithContext` and `EnvironmentWithContext` in `go.opentelemetry.io/otel/sdk/resource` to support plumbing `context.Context` through default and environment detectors. (https://github.com/open-telemetry/opentelemetry-go/issues/8051)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.opentelemetry.io/otel/trace</b> (v1.10.0 → v1.43.0) — <a href="https://github.com/open-telemetry/opentelemetry-go/releases/tag/v1.43.0">GitHub Release</a></summary>

### v1.43.0

## Added

- Add `IsRandom` and `WithRandom` on `TraceFlags`, and `IsRandom` on `SpanContext` in `go.opentelemetry.io/otel/trace`
  for [W3C Trace Context Level 2 Random Trace ID Flag](https://www.w3.org/TR/trace-context-2/#random-trace-id-flag) support. (https://github.com/open-telemetry/opentelemetry-go/issues/8012)
- Add service detection with `WithService` in `go.opentelemetry.io/otel/sdk/resource`. (https://github.com/open-telemetry/opentelemetry-go/issues/7642)
- Add `DefaultWithContext` and `EnvironmentWithContext` in `go.opentelemetry.io/otel/sdk/resource` to support plumbing `context.Context` through default and environment detectors. (https://github.com/open-telemetry/opentelemetry-go/issues/8051)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)
- Support attributes with empty value (`attribute.EMPTY`) in `go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp`. (https://github.com/open-telemetry/opentelemetry-go/issues/8038)

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>go.uber.org/zap</b> (v1.19.0 → v1.27.1) — <a href="https://github.com/uber-go/zap/releases/tag/v1.27.1">GitHub Release</a></summary>

### v1.27.1

Enhancements:
* [https://github.com/uber-go/zap/issues/1501][]: prevent `Object` from panicking on nils 
* [https://github.com/uber-go/zap/issues/1511][]: Fix a race condition in `WithLazy`.

Thanks to @rabbbit, @alshopov, @jquirke, @arukiidou for their contributions to this release.

[https://github.com/uber-go/zap/issues/1501]: https://github.com/uber-go/zap/pull/1501
[https://github.com/uber-go/zap/issues/1511]: https://github.com/uber-go/zap/pull/1511

### v1.27.0

Enhancements:
* [https://github.com/uber-go/zap/issues/1378][]: Add `WithLazy` method for `SugaredLogger`.
* [https://github.com/uber-go/zap/issues/1399][]: zaptest: Add `NewTestingWriter` for customizing TestingWriter with more flexibility than `NewLogger`.
* [https://github.com/uber-go/zap/issues/1406][]: Add `Log`, `Logw`, `Logln` methods for `SugaredLogger`.
* [https://github.com/uber-go/zap/issues/1416][]: Add `WithPanicHook` option for testing panic logs.

Thanks to @defval, @dimmo, @arxeiss, and @MKrupauskas for their contributions to this release.

[https://github.com/uber-go/zap/issues/1378]: https://github.com/uber-go/zap/pull/1378
[https://github.com/uber-go/zap/issues/1399]: https://github.com/uber-go/zap/pull/1399
[https://github.com/uber-go/zap/issues/1406]: https://github.com/uber-go/zap/pull/1406
[https://github.com/uber-go/zap/issues/1416]: https://github.com/uber-go/zap/pull/1416



### v1.26.0

Enhancements:
* [https://github.com/uber-go/zap/issues/1297][]: Add `Dict` as a `Field`.
* [https://github.com/uber-go/zap/issues/1319][]: Add `WithLazy` method to `Logger` which lazily evaluates the structured
context.
* [https://github.com/uber-go/zap/issues/1350][]: String encoding is much (~50%) faster now.

Thanks to @hhk7734, @jquirke, @cdvr1993 for their contributions to this release.

[https://github.com/uber-go/zap/issues/1297]: https://github.com/uber-go/zap/pull/1297

_(truncated — see source for full notes)_

</details>

<details>
<summary><b>k8s.io/klog/v2</b> (v2.90.1 → v2.140.0) — <a href="https://github.com/kubernetes/klog/releases/tag/v2.140.0">GitHub Release</a></summary>

### v2.140.0

## What's Changed
* Add dependabot by @lucacome in https://github.com/kubernetes/klog/pull/410
* Use strconv.AppendQuote instead of strconv.Quote for message formatting by @astef in https://github.com/kubernetes/klog/pull/413
* de-duplication of key/value pairs by @pohly in https://github.com/kubernetes/klog/pull/415
* Fix: Ensure constant format strings in fmt and printf calls by @mikelolasagasti in https://github.com/kubernetes/klog/pull/417
* Remove old note on Go version requirements by @guettli in https://github.com/kubernetes/klog/pull/425
* test with 1.24 and 1.25 by @pohly in https://github.com/kubernetes/klog/pull/428
* ktesting: fix vmodule support by @pohly in https://github.com/kubernetes/klog/pull/431
* ktesting: support multi-line result from AnyToStringHook by @pohly in https://github.com/kubernetes/klog/pull/433
* textlogger: optionally turn off header by @pohly in https://github.com/kubernetes/klog/pull/430
* feat: fix stderrthreshold not honored when logtostderr is set (https://github.com/kubernetes/klog/issues/212) + two new flags by @pierluigilenoci in https://github.com/kubernetes/klog/pull/432

## New Contributors
* @lucacome made their first contribution in https://github.com/kubernetes/klog/pull/410
* @astef made their first contribution in https://github.com/kubernetes/klog/pull/413
* @mikelolasagasti made their first contribution in https://github.com/kubernetes/klog/pull/417
* @guettli made their first contribution in https://github.com/kubernetes/klog/pull/425
* @pierluigilenoci made their first contribution in https://github.com/kubernetes/klog/pull/432

**Full Changelog**: https://github.com/kubernetes/klog/compare/v2.130.1...v2.140.0

### v2.130.1

## What's Changed
* data race: avoid unprotected access to sb.file by @pohly in https://github.com/kubernetes/klog/pull/408


**Full Changelog**: https://github.com/kubernetes/klog/compare/v2.130.0...v2.130.1

### v2.130.0

## What's Changed

_(truncated — see source for full notes)_

</details>

---
_Generated by ADMS_ Sources: 16 GitHub Releases, 2 Changelogs, 5 Commit comparisons, 10 not available.

[seberm-6]

Hey, sorry for the noise. This was caused by a bug in our automated dependency update system that incorrectly included upstream changelog content in PR comments, triggering notifications to external contributors. The feature flag has been turned off and we're working on a fix. Sorry about that again.