Skip to content

build(deps): Bump the go-dependencies group with 9 updates#465

Merged
mahendrapaipuri merged 2 commits intomainfrom
dependabot/go_modules/go-dependencies-1438064ac8
Feb 16, 2026
Merged

build(deps): Bump the go-dependencies group with 9 updates#465
mahendrapaipuri merged 2 commits intomainfrom
dependabot/go_modules/go-dependencies-1438064ac8

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 16, 2026

Bumps the go-dependencies group with 9 updates:

Package From To
github.com/containerd/cgroups/v3 3.1.2 3.1.3
github.com/mattn/go-sqlite3 1.14.33 1.14.34
github.com/stmcginnis/gofish 0.20.0 0.21.0
golang.org/x/crypto 0.47.0 0.48.0
google.golang.org/grpc 1.78.0 1.79.1
k8s.io/api 0.35.0 0.35.1
k8s.io/apimachinery 0.35.0 0.35.1
k8s.io/client-go 0.35.0 0.35.1
k8s.io/kubelet 0.35.0 0.35.1

Updates github.com/containerd/cgroups/v3 from 3.1.2 to 3.1.3

Release notes

Sourced from github.com/containerd/cgroups/v3's releases.

v3.1.3

What's Changed

Full Changelog: containerd/cgroups@v3.1.2...v3.1.3

Commits
  • 076b5e0 Merge pull request #387 from dcantah/cg2-stats-filter
  • 31da8b0 Merge pull request #388 from dcantah/oom-group-kill
  • d72c9ce Cg2: Add ability to set memory.oom.group
  • 4584088 Events: Add OOMGroupKill
  • 9293fbb Cg2: Add the ability to filter stats
  • 568b349 Merge pull request #385 from containerd/dependabot/github_actions/actions/cac...
  • 90c5813 build(deps): bump actions/cache from 4 to 5
  • See full diff in compare view

Updates github.com/mattn/go-sqlite3 from 1.14.33 to 1.14.34

Commits

Updates github.com/stmcginnis/gofish from 0.20.0 to 0.21.0

Release notes

Sourced from github.com/stmcginnis/gofish's releases.

v0.21.0

⚠️ This release has many breaking changes ⚠️

Significant Changes

Package refactoring

There has been a lot of struggle and compromises trying to keep the Redfish and Swordfish packages separate. The Swordfish schema builds on top of Redfish, but there are now many cases where Redfish schemas refer to Swordfish schema objects and types. This works fine for defining a spec, but has some issues with languages like Go and avoiding circular imports.

This release refactors nearly everything to move all Redfish and Swordfish objects into the schemas package. This makes it easier to find everything and avoids the circular import issue.

Code generation

There were some helpers for generating some source files in the past, but it wasn't very well maintained and the resulting files required a lot of clean up to make them usable. Some effort was put in to creating new generator tooling for everything. Cleanup is still needed, but much less than before. Now, when new spec versions are released, the generator can be run and the diff of the old and new code can be used to find differences and keep our workarounds.

This has also made it easy to flesh out a lot more of the spec implementation. Many objects and properties have been added that were in the spec but missing from Gofish. Implementation should be much more complete than it was before.

Optional numeric values

Monitoring software using Gofish has had the issue that some values would be reported as 0, but it wasn't always clear if that was the actual value or if the service didn't report anything. This could be a challenge for things like metrics reporting.

This release is now consistent where any numeric value that is defined as optional: true in the spec is now a pointer value. For library users that need to know if the value was present or not, you can now do something like:

if ps.PowerConsumedWatts != nil {
	// Only report the value if the system provides it
	powerConsumedCounter.Record(ctx, *ps.PowerConsumedWatts)
}

For those that do not care there is a helper method to just get the referenced value or its "zero value":

watts := gofish.Deref(ps.PowerConsumedWatts)

And setting values for updates:

cs.PowerCycleDelaySeconds = gofish.ToRef(30)

Consistent action calls

Some Redfish actions are async. Implementations can optionally return task or task monitor information in the headers or the body of the response. This is somewhat up to the implementation, so it's not a clear expectation just from the spec. This release changes all action methods that do not explicitly return a synchronous result to optionally return a TaskMonitor to be able to track async progress.

This means calls the used to only return a possible error result now return both a possible TaskMonitor and possible error, resulting in changes like:

err = accountToUpdate.ChangePassword(newPassword, sessionAccountPassword)
</tr></table> 

... (truncated)

Commits

Updates golang.org/x/crypto from 0.47.0 to 0.48.0

Commits

Updates google.golang.org/grpc from 1.78.0 to 1.79.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.79.1

Bug Fixes

Release 1.79.0

API Changes

  • mem: Add experimental API SetDefaultBufferPool to change the default buffer pool. (#8806)
  • experimental/stats: Update MetricsRecorder to require embedding the new UnimplementedMetricsRecorder (a no-op struct) in all implementations for forward compatibility. (#8780)

Behavior Changes

  • balancer/weightedtarget: Remove handling of Addresses and only handle Endpoints in resolver updates. (#8841)

New Features

  • experimental/stats: Add support for asynchronous gauge metrics through the new AsyncMetricReporter and RegisterAsyncReporter APIs. (#8780)
  • pickfirst: Add support for weighted random shuffling of endpoints, as described in gRFC A113.
    • This is enabled by default, and can be turned off using the environment variable GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING. (#8864)
  • xds: Implement :authority rewriting, as specified in gRFC A81. (#8779)
  • balancer/randomsubsetting: Implement the random_subsetting LB policy, as specified in gRFC A68. (#8650)

Bug Fixes

  • credentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (#8726)
  • xds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in CONNECTING state. (#8813)
  • health: Fix a bug where health checks failed for clients using legacy compression options (WithDecompressor or RPCDecompressor). (#8765)
  • transport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (#8769)
  • server: Propagate status detail headers, if available, when terminating a stream during request header processing. (#8754)

Performance Improvements

  • credentials/alts: Optimize read buffer alignment to reduce copies. (#8791)
  • mem: Optimize pooling and creation of buffer objects. (#8784)
  • transport: Reduce slice re-allocations by reserving slice capacity. (#8797)
Commits

Updates k8s.io/api from 0.35.0 to 0.35.1

Commits

Updates k8s.io/apimachinery from 0.35.0 to 0.35.1

Commits

Updates k8s.io/client-go from 0.35.0 to 0.35.1

Commits

Updates k8s.io/kubelet from 0.35.0 to 0.35.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the go-dependencies group with 9 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/containerd/cgroups/v3](https://github.com/containerd/cgroups) | `3.1.2` | `3.1.3` |
| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) | `1.14.33` | `1.14.34` |
| [github.com/stmcginnis/gofish](https://github.com/stmcginnis/gofish) | `0.20.0` | `0.21.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.47.0` | `0.48.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.78.0` | `1.79.1` |
| [k8s.io/api](https://github.com/kubernetes/api) | `0.35.0` | `0.35.1` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.35.0` | `0.35.1` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.35.0` | `0.35.1` |
| [k8s.io/kubelet](https://github.com/kubernetes/kubelet) | `0.35.0` | `0.35.1` |


Updates `github.com/containerd/cgroups/v3` from 3.1.2 to 3.1.3
- [Release notes](https://github.com/containerd/cgroups/releases)
- [Commits](containerd/cgroups@v3.1.2...v3.1.3)

Updates `github.com/mattn/go-sqlite3` from 1.14.33 to 1.14.34
- [Release notes](https://github.com/mattn/go-sqlite3/releases)
- [Commits](mattn/go-sqlite3@v1.14.33...v1.14.34)

Updates `github.com/stmcginnis/gofish` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/stmcginnis/gofish/releases)
- [Commits](stmcginnis/gofish@v0.20.0...v0.21.0)

Updates `golang.org/x/crypto` from 0.47.0 to 0.48.0
- [Commits](golang/crypto@v0.47.0...v0.48.0)

Updates `google.golang.org/grpc` from 1.78.0 to 1.79.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.78.0...v1.79.1)

Updates `k8s.io/api` from 0.35.0 to 0.35.1
- [Commits](kubernetes/api@v0.35.0...v0.35.1)

Updates `k8s.io/apimachinery` from 0.35.0 to 0.35.1
- [Commits](kubernetes/apimachinery@v0.35.0...v0.35.1)

Updates `k8s.io/client-go` from 0.35.0 to 0.35.1
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.35.0...v0.35.1)

Updates `k8s.io/kubelet` from 0.35.0 to 0.35.1
- [Commits](kubernetes/kubelet@v0.35.0...v0.35.1)

---
updated-dependencies:
- dependency-name: github.com/containerd/cgroups/v3
  dependency-version: 3.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/mattn/go-sqlite3
  dependency-version: 1.14.34
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/stmcginnis/gofish
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/crypto
  dependency-version: 0.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: google.golang.org/grpc
  dependency-version: 1.79.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: k8s.io/api
  dependency-version: 0.35.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: k8s.io/apimachinery
  dependency-version: 0.35.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: k8s.io/client-go
  dependency-version: 0.35.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: k8s.io/kubelet
  dependency-version: 0.35.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 16, 2026
* Add Discord channel in README contact section

Signed-off-by: Mahendra Paipuri <mahendra.paipuri@gmail.com>
@mahendrapaipuri mahendrapaipuri merged commit 06cc53d into main Feb 16, 2026
16 checks passed
@mahendrapaipuri mahendrapaipuri deleted the dependabot/go_modules/go-dependencies-1438064ac8 branch February 16, 2026 09:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant