Skip to content

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Oct 6, 2025

Bumps github.com/cloudevents/sdk-go/protocol/kafka_sarama/v2 from 2.15.2 to 2.16.2.

Release notes

Sourced from github.com/cloudevents/sdk-go/protocol/kafka_sarama/v2's releases.

Release v2.16.2

No release notes provided.

Release v2.16.1

CloudEvents SDK Go v2.16.1

🐛 Bug Fixes and Improvements

  • ⚡ NATS JetStream Enhancement: Made send subject optional via context by @​kmpm in cloudevents/sdk-go#1143

    • Added WithSubject function to override the default subject when sending messages
    • Added comprehensive tests and updated samples
    • Non-breaking enhancement that adds flexibility for NATS users
  • 📝 CloudEvents JSON Handling Fixes by @​alank-ps:

    • WriteJson Fix in cloudevents/sdk-go#1162: Fixed WriteJson to properly handle data as JSON when dataContentType is application/cloudevents+json or batch
    • ConsumeData Fix in cloudevents/sdk-go#1164: Fixed consumeData functions to properly recognize structured mode JSON content types
    • Improves compatibility with the CloudEvents specification
  • 🔧 CI/Test Improvements: Fix failing CI tests by @​embano1 in cloudevents/sdk-go#1156

🔄 Maintenance and Dependency Updates

  • 🛠️ Dependency Management Overhaul by @​embano1 in cloudevents/sdk-go#1145
    • Added script (hack/update-deps.sh) to update Go dependencies across all modules
    • Replaced Dependabot with custom script for better dependency management
    • Removed stale and broken OpenTelemetry samples

📦 Key Dependency Updates:

  • github.com/google/go-cmp: v0.6.0 → v0.7.0
  • golang.org/x/sync: v0.12.0 → v0.13.0
  • github.com/nats-io/nats.go: v1.37.0 → v1.41.2
  • github.com/IBM/sarama: v1.40.1 → v1.45.1
  • github.com/docker/docker: v20.10.17 → v27.1.1
  • go.opentelemetry.io/otel: v1.18.0 → v1.35.0
  • 🐹 Go version: Updated from 1.22 to 1.23.0 (toolchain 1.23.8)

🚨 Breaking Changes

None. All updates are either backward-compatible improvements, bug fixes, or internal refactors.

👥 New Contributors

📋 What's Changed

... (truncated)

Commits
  • af3e859 Merge pull request #1184 from cloudevents/dependabot/github_actions/actions/s...
  • bf5b8a6 chore(deps): Bump actions/setup-go from 5.5.0 to 6.0.0
  • 945d930 Merge pull request #1180 from philicious/refactor-pubsubv2
  • 35623f2 chore: Replace deprecated grpc.Dial calls
  • f0bd406 fix: Properly test that supplied ReceiveSettings are being used
  • ae89eba Refactor pubsub protocol to use new upstream v2 library
  • 34f7f6f Merge pull request #1183 from embano1/go-version
  • cafbb12 chore: update go version in workflows
  • 0a1147c Merge pull request #1182 from cloudevents/automated-dependency-updates
  • 835c486 chore: update dependencies
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

…afka_sarama/v2

Bumps [github.com/cloudevents/sdk-go/protocol/kafka_sarama/v2](https://github.com/cloudevents/sdk-go) from 2.15.2 to 2.16.2.
- [Release notes](https://github.com/cloudevents/sdk-go/releases)
- [Commits](cloudevents/sdk-go@v2.15.2...v2.16.2)

---
updated-dependencies:
- dependency-name: github.com/cloudevents/sdk-go/protocol/kafka_sarama/v2
  dependency-version: 2.16.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Oct 6, 2025
@openshift-ci openshift-ci bot requested review from creydr and matzew October 6, 2025 01:17
@openshift-ci
Copy link

openshift-ci bot commented Oct 6, 2025

There are empty aliases in OWNER_ALIASES, cleanup is advised.

@openshift-ci
Copy link

openshift-ci bot commented Oct 6, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign aliok for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci
Copy link

openshift-ci bot commented Oct 6, 2025

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift-knative member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code needs-ok-to-test

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants