build(deps): bump the dependabot group across 1 directory with 8 updates

[dependabot]

Bumps the dependabot group with 5 updates in the / directory:

Package	From	To
cloud.google.com/go/pubsub	1.45.2	1.45.3
github.com/docker/docker	27.3.1+incompatible	27.4.1+incompatible
github.com/prometheus/common	0.60.1	0.61.0
google.golang.org/grpc	1.68.0	1.69.2
google.golang.org/protobuf	1.35.2	1.36.0

Updates cloud.google.com/go/pubsub from 1.45.2 to 1.45.3

Release notes

Sourced from cloud.google.com/go/pubsub's releases.

pubsub: v1.45.3

1.45.3 (2024-12-04)

Bug Fixes

• pubsub: Convert stream ack deadline seconds from duration (#11214) (b2b05e4)

Commits

• 002f45c chore(main): release pubsub 1.45.3 (#11221)
• ba9412a fix(cloudbuild): deprecate apiv1 client (#11225)
• e24b55d chore: bump dependencies (#11219)
• 5d5bc96 chore(storage): bump grpc dep (#11223)
• fd1db20 feat(storage): add Writer.ChunkTransferTimeout (#11111)
• f82fffd test(storage): skip dataflux emulator test (#11222)
• b2b05e4 fix(pubsub): convert stream ack deadline seconds from duration (#11214)
• 63b704e chore: release main (#11176)
• 481f97b chore(main): release auth 0.12.0 (#11187)
• 191a664 feat(dialogflow): make TrainingPhrase name field output-only (#11217)
• Additional commits viewable in compare view

Updates github.com/docker/docker from 27.3.1+incompatible to 27.4.1+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.4.1

27.4.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.4.1 milestone
• moby/moby, 27.4.1 milestone

Bug fixes and enhancements

• Fix excessive memory allocations when OTel is not configured. moby/moby#49079
• The docker info command and the corresponding GET /info API endpoint no longer include warnings when bridge-nf-call-iptables or bridge-nf-call-ip6tables are disabled at the daemon is started. The br_netfilter kernel module is now attempted to be loaded when needed, which made those warnings inaccurate. moby/moby#49090
• Attempt to load kernel modules, including ip6_tables and br_netfilter when required, using a method that is likely to succeed inside a Docker-in-Docker container. moby/moby#49043
• Fix a bug that could result in an iptables DOCKER FILTER chain not being cleaned up on failure. moby/moby#49110

Deprecations

• pkg/system: Deprecate Lstat(), Mkdev(), Mknod(), FromStatT() and Stat() functions, and related StatT types. These were only used internally, and will be removed in the next release. moby/moby#49100
• libnetwork/iptables: Deprecate IPV, Iptables and IP6Tables types in favor of IPVersion, IPv4, and IPv6. This type and consts will be removed in the next release. moby/moby#49093
• libnetwork/iptables: Deprecate Passthrough. This function was only used internally, and will be removed in the next release. moby/moby#49119

Packaging updates

• Update Compose to v2.32.1. docker/docker-ce-packaging#1130
• Update Buildx to v0.19.3. docker/docker-ce-packaging#1132
• Update runc to v1.2.3 (static packages only). moby/moby#49085

v27.4.0

27.4.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.4.0 milestone
• moby/moby, 27.4.0 milestone

API

• GET /images/json with the manifests option enabled now preserves the original order in which manifests appeared in the manifest-index. moby/moby#48712

Bug fixes and enhancements

• When reading logs with the jsonfile or local log drivers, any errors while trying to read or parse underlying log files will cause the rest of the file to be skipped and move to the next log file (if one exists) rather than returning an error to the client and closing the stream. The errors are viewable in the Docker Daemon logs and exported to traces when tracing is configured. moby/moby#48842
• When reading log files, compressed log files are now only decompressed when needed rather than decompressing all files before starting the log stream. moby/moby#48842
• Fix an issue that meant published ports from one container on a bridge network were not accessible from another container on the same network with userland-proxy disabled, if the kernel's br_netfilter module was not loaded and enabled. The daemon will now attempt to load the module and enable bridge-nf-call-iptables or bridge-nf-call-ip6tables when creating a network with the userland proxy disabled. moby/moby#48685
• Fix loading of bridge and br_netfilter kernel modules. moby/moby#48966
• containerd image store: Fix Docker daemon failing to fully start with a "context deadline exceeded error" with containerd snapshotter and many builds/images. moby/moby#48954
• containerd image-store: Fix partially pulled images not being garbage-collected. moby#48910, moby/moby#48957
• containerd image store: Fix docker image inspect outputting duplicate references in RepoDigests. moby/moby#48785

... (truncated)

Commits

• c710b88 Merge pull request #49119 from thaJeztah/27.x_backport_libnetwork_deprecate_P...
• eda0a20 libnetwork/iptables: deprecate Passthrough
• b51622d libnet/iptables: deprecate type IPV
• 829ac83 Merge pull request #49104 from thaJeztah/27.x_backport_update_swagger_headers
• bd7da11 Merge pull request #49110 from thaJeztah/27.x_backport_fix_setupIPChains_defer
• 135b144 Merge pull request #49105 from thaJeztah/27.x_backport_testing-suse-apparmor
• 08de719 libnetwork/drivers/bridge: setupIPChains: fix defer checking wrong err
• 2a62319 Merge pull request #49100 from thaJeztah/27.x_backport_deprecate_pkg_system
• 6855ca1 integration-cli: don't skip AppArmor tests on SLES
• 224b305 docs/api: document correct case for Api-Version header
• Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.60.1 to 0.61.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.61.0

What's Changed

• Mark sigv4 deprecated by @​SuperQ in prometheus/common#715
• Provide a way to get UserAgent by @​mmorel-35 in prometheus/common#716
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#714
• Bump golang.org/x/net from 0.29.0 to 0.30.0 by @​dependabot in prometheus/common#712
• chore: enable perfsprint linter by @​mmorel-35 in prometheus/common#717
• chore: use testify instead of testing.Fatal by @​mmorel-35 in prometheus/common#718
• Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 by @​dependabot in prometheus/common#711
• setup dependabot for github.com/prometheus/common/assets by @​mmorel-35 in prometheus/common#719
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#721
• Mark promlog deprecated by @​SuperQ in prometheus/common#720
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#722
• Allow custom user-agent definition by @​mmorel-35 in prometheus/common#725
• fix: values escaping bugs by @​ywwg in prometheus/common#727
• fix(promslog): always use UTC for time by @​tjhop in prometheus/common#735
• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /assets by @​dependabot in prometheus/common#729
• Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 by @​dependabot in prometheus/common#730
• promslog: always lowercase log level from CLI by @​jkroepke in prometheus/common#728
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#726
• Bump golang.org/x/net from 0.30.0 to 0.32.0 by @​dependabot in prometheus/common#736
• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by @​dependabot in prometheus/common#731
• Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 by @​dependabot in prometheus/common#732

Full Changelog: prometheus/common@v0.60.1...v0.61.0

Commits

• 7b484e9 Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 (#732)
• 05e3c40 Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#731)
• a0ef737 Bump golang.org/x/net from 0.30.0 to 0.32.0 (#736)
• f99f029 Update common Prometheus files (#726)
• b88f24c promslog: always lowercase log level from CLI (#728)
• 2c3c048 Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 (#730)
• ec7291f Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /assets (#729)
• 145b50a fix(promslog): always use UTC for time (#735)
• 39a62f7 fix: values escaping bugs (#727)
• 7ed4523 Allow custom user-agent definition (#725)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.29.0 to 0.30.0

Commits

• 7042ebc openpgp/clearsign: just use rand.Reader in tests
• 3e90321 go.mod: update golang.org/x dependencies
• 8c4e668 x509roots/fallback: update bundle
• See full diff in compare view

Updates golang.org/x/net from 0.31.0 to 0.32.0

Commits

• 285e1cf go.mod: update golang.org/x dependencies
• d0a1049 route: remove unused sizeof* consts on freebsd
• 6e41410 http2: fix benchmarks using common frame read/write functions
• 4be1253 route: change from syscall to x/sys/unix
• bc37675 http2: limit number of PINGs bundled with RST_STREAMs
• e9cd716 route: fix parse of zero-length sockaddrs in RIBs
• 9a51899 http2: add SETTINGS_ENABLE_CONNECT_PROTOCOL support
• See full diff in compare view

Updates google.golang.org/api from 0.209.0 to 0.210.0

Release notes

Sourced from google.golang.org/api's releases.

v0.210.0

0.210.0 (2024-12-04)

Features

• all: Auto-regenerate discovery clients (#2886) (f446504)
• all: Auto-regenerate discovery clients (#2888) (a990614)
• all: Auto-regenerate discovery clients (#2892) (22e0d11)
• all: Auto-regenerate discovery clients (#2893) (2657039)
• all: Auto-regenerate discovery clients (#2895) (46fab24)
• all: Auto-regenerate discovery clients (#2896) (efded92)
• Async refresh dry run in parallel with sync refresh (#2849) (acd2581)
• option/internaloption: Add AuthCreds helper (#2891) (6ee8349)

Bug Fixes

• gensupport: Context cancel error check (#2890) (f57c82d)

Changelog

Sourced from google.golang.org/api's changelog.

0.210.0 (2024-12-04)

Features

• all: Auto-regenerate discovery clients (#2886) (f446504)
• all: Auto-regenerate discovery clients (#2888) (a990614)
• all: Auto-regenerate discovery clients (#2892) (22e0d11)
• all: Auto-regenerate discovery clients (#2893) (2657039)
• all: Auto-regenerate discovery clients (#2895) (46fab24)
• all: Auto-regenerate discovery clients (#2896) (efded92)
• Async refresh dry run in parallel with sync refresh (#2849) (acd2581)
• option/internaloption: Add AuthCreds helper (#2891) (6ee8349)

Bug Fixes

• gensupport: Context cancel error check (#2890) (f57c82d)

Commits

• de4bf86 chore(main): release 0.210.0 (#2887)
• efded92 feat(all): auto-regenerate discovery clients (#2896)
• 46fab24 feat(all): auto-regenerate discovery clients (#2895)
• c1b41c9 chore(all): update all (#2889)
• acd2581 feat: Async refresh dry run in parallel with sync refresh (#2849)
• 2657039 feat(all): auto-regenerate discovery clients (#2893)
• 22e0d11 feat(all): auto-regenerate discovery clients (#2892)
• 6ee8349 feat(option/internaloption): add AuthCreds helper (#2891)
• a990614 feat(all): auto-regenerate discovery clients (#2888)
• f57c82d fix(gensupport): context cancel error check (#2890)
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.68.0 to 1.69.2

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.69.2

Bug Fixes

• stats/experimental: add type aliases for symbols (Metrics/etc) that were moved to the stats package (#7929).
• client: set user-agent string to the correct version.

Release 1.69.0

Known Issues

• The recently added grpc.NewClient function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (#7556)

New Features

• stats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (#7874)
• xdsclient: add support to fallback to lower priority servers when higher priority ones are down (#7701)
• dns: Add support for link local IPv6 addresses (#7889)
• The new experimental pickfirst LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in RFC-8305 section 4, to attempt connections to multiple backends concurrently. The experimental pickfirst policy can be enabled by setting the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST to true. (#7725, #7742)
• balancer/pickfirst: Emit metrics from the pick_first load balancing policy (#7839)
• grpc: export MethodHandler, which is the type of an already-exported field in MethodDesc (#7796)
  • Special Thanks: @​mohdjishin

Bug Fixes

• credentials/google: set scope for application default credentials (#7887)
  • Special Thanks: @​halvards
• xds: fix edge-case issues where some clients or servers would not initialize correctly or would not receive errors when resources are invalid or unavailable if another channel or server with the same target was already in use . (#7851, #7853)
• examples: fix the debugging example, which was broken by a recent change (#7833)

Behavior Changes

• client: update retry attempt backoff to apply jitter per updates to gRFC A6. (#7869)
  • Special Thanks: @​isgj
• balancer/weightedroundrobin: use the pick_first LB policy to manage connections (#7826)

API Changes

• balancer: An internal method is added to the balancer.SubConn interface to force implementors to embed a delegate implementation. This requirement is present in the interface documentation, but wasn't enforced earlier. (#7840)

Performance Improvements

• mem: implement a ReadAll() method for more efficient io.Reader consumption (#7653)
  • Special Thanks: @​ash2k
• mem: use slice capacity instead of length to determine whether to pool buffers or directly allocate them (#7702)
  • Special Thanks: @​PapaCharlie

Documentation

• examples/csm_observability: Add xDS Credentials and switch server to be xDS enabled (#7875)

Release 1.68.2

Dependencies

... (truncated)

Commits

• b615b35 Change version to 1.69.2 (#7947)
• 6b36a3e experimental/stats: re-add type aliases for migration (#7929) (#7941)
• 4535c6d Change version to 1.69.2-dev (#7928)
• b6e7c72 examples/features/csm_observability: Make CSM Observability example server li...
• 9355fbc Change version to 1.69.1 (#7927)
• 927a1e1 Change version to 1.69.1-dev (#7902)
• 97d633a Change version to 1.69.0 (#7901)
• 317271b pickfirst: Register a health listener when used as a leaf policy (#7832)
• 5565631 balancer/pickfirst: replace grpc.Dial with grpc.NewClient in tests (#7879)
• 634497b test: Split import paths for generated message and service code (#7891)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.35.2 to 1.36.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[netlify]

✅ Deploy Preview for ohsu-comp-bio-funnel canceled.

Name	Link
🔨 Latest commit	860241c
🔍 Latest deploy log	https://app.netlify.com/sites/ohsu-comp-bio-funnel/deploys/6764a92cc403d0000833b43c