Skip to content

build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0#5012

Merged
pkoutsovasilis merged 2 commits intomainfrom
dependabot/go_modules/google.golang.org/grpc-1.73.0
Jun 6, 2025
Merged

build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0#5012
pkoutsovasilis merged 2 commits intomainfrom
dependabot/go_modules/google.golang.org/grpc-1.73.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jun 6, 2025
edited
Loading

Bumps google.golang.org/grpc from 1.72.2 to 1.73.0.

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.73.0

New Features

  • balancer/ringhash: move LB policy from xds/internal to exported path to facilitate use without xds (#8249)
  • xds: enable least request LB policy by default. It can be disabled by setting GRPC_EXPERIMENTAL_ENABLE_LEAST_REQUEST=false in your environment. (#8253)
  • grpc: add a CallAuthority Call Option that can be used to overwrite the http :authority header on per-RPC basis. (#8068)
  • stats/opentelemetry: add trace event for name resolution delay. (#8074)
  • health: added List method to gRPC Health service. (#8155)
  • ringhash: implement features from gRFC A76. (#8159)
  • xds: add functionality to support SPIFFE Bundle Maps as roots of trust in XDS which can be enabled by setting GRPC_EXPERIMENTAL_XDS_MTLS_SPIFFE=true. (#8167, #8180, #8229, #8343)

Bug Fixes

  • xds: locality ID metric label is changed to make it consistent with gRFC A78. (#8256)
  • client: fail RPCs on the client when using extremely short contexts that expire before the grpc-timeout header is created. (#8312)
  • server: non-positive grpc-timeout header values are now rejected. This is consistent with the gRPC protocol spec. (#8290)
  • xds: fix reported error string when LRS load reporting interval is invalid. (#8224)

Performance Improvements

  • credentials/alts: improve read performance by optimizing buffer copies and allocations. (#8271)
  • server: improve performance of RPC handling by avoid a status proto copy (#8282)

Documentation

  • examples/features/opentelemetry: modify example to demonstrate tracing using OpenTelemtry plugin. (#8056)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added automation dependency Team:Elastic-Agent-Control-Plane Label for the Agent Control Plane team labels Jun 6, 2025
@dependabot dependabot bot requested a review from a team as a code owner June 6, 2025 00:15
@dependabot dependabot bot requested a review from blakerouse June 6, 2025 00:15
@dependabot dependabot bot added the Team:Elastic-Agent-Control-Plane Label for the Agent Control Plane team label Jun 6, 2025
@dependabot dependabot bot requested a review from kaanyalti June 6, 2025 00:15
@mergify
Copy link
Copy Markdown
Contributor

mergify bot commented Jun 6, 2025

This pull request does not have a backport label. Could you fix it @dependabot[bot]? 🙏
To fixup this pull request, you need to add the backport labels for the needed
branches, such as:

  • backport-./d./d is the label to automatically backport to the 8./d branch. /d is the digit
  • backport-active-all is the label that automatically backports to all active branches.
  • backport-active-8 is the label that automatically backports to all active minor branches for the 8 major.
  • backport-active-9 is the label that automatically backports to all active minor branches for the 9 major.

@prodsecmachine
Copy link
Copy Markdown

prodsecmachine commented Jun 6, 2025
edited
Loading

🎉 Snyk checks have passed. No issues have been found so far.

security/snyk check is complete. No issues have been found. (View Details)

license/snyk check is complete. No issues have been found. (View Details)

@pkoutsovasilis pkoutsovasilis mentioned this pull request Jun 6, 2025
Merged
8 tasks
@pkoutsovasilis
Copy link
Copy Markdown
Contributor

pkoutsovasilis commented Jun 6, 2025

@dependabot rebase

@mergify mergify bot mentioned this pull request Jun 6, 2025
Closed
8 tasks
@dependabot dependabot bot force-pushed the dependabot/go_modules/google.golang.org/grpc-1.73.0 branch from 17db3f2 to 108b718 Compare June 6, 2025 11:20
@pkoutsovasilis
Copy link
Copy Markdown
Contributor

pkoutsovasilis commented Jun 6, 2025

@dependabot rebase

@dependabot
build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0
1004dd1 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.72.2 to 1.73.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.72.2...v1.73.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-version: 1.73.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/google.golang.org/grpc-1.73.0 branch from 108b718 to 1004dd1 Compare June 6, 2025 11:46
@elastic-sonarqube
Copy link
Copy Markdown

elastic-sonarqube bot commented Jun 6, 2025

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarQube

@pkoutsovasilis pkoutsovasilis merged commit d919b29 into main Jun 6, 2025
7 checks passed
@pkoutsovasilis pkoutsovasilis deleted the dependabot/go_modules/google.golang.org/grpc-1.73.0 branch June 6, 2025 15:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@blakerouse blakerouse Awaiting requested review from blakerouse blakerouse is a code owner automatically assigned from elastic/elastic-agent-control-plane

@kaanyalti kaanyalti Awaiting requested review from kaanyalti kaanyalti is a code owner automatically assigned from elastic/elastic-agent-control-plane

1 more reviewer

@pkoutsovasilis pkoutsovasilis pkoutsovasilis approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

automation dependency Team:Elastic-Agent-Control-Plane Label for the Agent Control Plane team

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@prodsecmachine @pkoutsovasilis