From 423f83b5dd50b338ac5485129b3012613c33e49c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 27 Jan 2026 16:21:20 +0000 Subject: [PATCH 1/5] build(deps): bump actions/setup-python from 6.1.0 to 6.2.0 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 6.1.0 to 6.2.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/83679a892e2d95755f2dac6acb0bfd1e9ac5d548...a309ff8b426b58ec0e2a45f0f869d46889d02405) --- updated-dependencies: - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/lint.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index e44f42d5..20778170 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -20,7 +20,7 @@ jobs: if: github.repository_owner == 'envoyproxy' steps: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - - uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 + - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: python-version: "3.12" - run: | From f15e1d9dfda2eed2170a5ebcf5c389cf9a06fbac Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 27 Jan 2026 16:21:22 +0000 Subject: [PATCH 2/5] build(deps): bump mysql from 9.5.0 to 9.6.0 in /mysql Bumps mysql from 9.5.0 to 9.6.0. --- updated-dependencies: - dependency-name: mysql dependency-version: 9.6.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- mysql/Dockerfile-mysql | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mysql/Dockerfile-mysql b/mysql/Dockerfile-mysql index 68f138ec..8a94251c 100644 --- a/mysql/Dockerfile-mysql +++ b/mysql/Dockerfile-mysql @@ -1 +1 @@ -FROM mysql:9.6.0@sha256:c5467c2e0e1b0363d9b67633dff98d3e0ab5be2fa70f90e12fc4b63dc79a5f73 +FROM mysql:9.6.0@sha256:6b18d01fb632c0f568ace1cc1ebffb42d1d21bc1de86f6d3e8b7eb18278444d9 From d913b4e6d55b6bf3871ea33970ead2ff6963bdd7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 27 Jan 2026 16:24:22 +0000 Subject: [PATCH 3/5] build(deps): bump openpolicyagent/opa Bumps the examples-ext-authz group in /ext_authz with 1 update: openpolicyagent/opa. Updates `openpolicyagent/opa` from 1.12.1-envoy-2-static to 1.12.2-envoy-1-static --- updated-dependencies: - dependency-name: openpolicyagent/opa dependency-version: 1.12.2-envoy-1-static dependency-type: direct:production update-type: version-update:semver-patch dependency-group: examples-ext-authz ... Signed-off-by: dependabot[bot] --- ext_authz/Dockerfile-opa | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ext_authz/Dockerfile-opa b/ext_authz/Dockerfile-opa index a04eafed..0ef5fd29 100644 --- a/ext_authz/Dockerfile-opa +++ b/ext_authz/Dockerfile-opa @@ -1,3 +1,3 @@ -FROM openpolicyagent/opa:1.12.1-envoy-2-static@sha256:9996ffb887b5695a3574f894f5f7735db94844eb1efab50012df960722e853ae +FROM openpolicyagent/opa:1.12.2-envoy-1-static@sha256:d1ff4f98aa63f02632aed03a8307d7606066a82bce547185d8008604576d8b9e COPY --chmod=644 ./config/opa-service/policy.rego /etc/policy.rego From 7e714bd54e2e309e711564ebd33877aa9c8ecf58 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 27 Jan 2026 16:25:31 +0000 Subject: [PATCH 4/5] build(deps): bump github.com/envoyproxy/envoy Bumps the examples-golang-network group in /golang-network/simple with 1 update: [github.com/envoyproxy/envoy](https://github.com/envoyproxy/envoy). Updates `github.com/envoyproxy/envoy` from 1.36.4 to 1.37.0 - [Release notes](https://github.com/envoyproxy/envoy/releases) - [Changelog](https://github.com/envoyproxy/envoy/blob/main/RELEASES.md) - [Commits](https://github.com/envoyproxy/envoy/compare/v1.36.4...v1.37.0) --- updated-dependencies: - dependency-name: github.com/envoyproxy/envoy dependency-version: 1.37.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: examples-golang-network ... Signed-off-by: dependabot[bot] --- golang-network/simple/go.mod | 8 ++++---- golang-network/simple/go.sum | 12 ++++++------ 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/golang-network/simple/go.mod b/golang-network/simple/go.mod index 6d0da8b1..7e71da2c 100644 --- a/golang-network/simple/go.mod +++ b/golang-network/simple/go.mod @@ -1,20 +1,20 @@ module github.com/envoyproxy/examples/golang-network/simple // the version should >= 1.18 -go 1.24.0 +go 1.24.6 toolchain go1.24.9 // NOTICE: these lines could be generated automatically by "go mod tidy" require ( github.com/cncf/xds/go v0.0.0-20251110193048-8bfbf64dc13e - github.com/envoyproxy/envoy v1.36.4 + github.com/envoyproxy/envoy v1.37.0 google.golang.org/protobuf v1.36.11 ) require ( cel.dev/expr v0.24.0 // indirect github.com/envoyproxy/protoc-gen-validate v1.2.1 // indirect - google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1 // indirect - google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect + google.golang.org/genproto/googleapis/api v0.0.0-20250728155136-f173205681a0 // indirect + google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0 // indirect ) diff --git a/golang-network/simple/go.sum b/golang-network/simple/go.sum index 790ac6df..306e84b0 100644 --- a/golang-network/simple/go.sum +++ b/golang-network/simple/go.sum @@ -2,15 +2,15 @@ cel.dev/expr v0.24.0 h1:56OvJKSH3hDGL0ml5uSxZmz3/3Pq4tJ+fb1unVLAFcY= cel.dev/expr v0.24.0/go.mod h1:hLPLo1W4QUmuYdA72RBX06QTs6MXw941piREPl3Yfiw= github.com/cncf/xds/go v0.0.0-20251110193048-8bfbf64dc13e h1:gt7U1Igw0xbJdyaCM5H2CnlAlPSkzrhsebQB6WQWjLA= github.com/cncf/xds/go v0.0.0-20251110193048-8bfbf64dc13e/go.mod h1:KdCmV+x/BuvyMxRnYBlmVaq4OLiKW6iRQfvC62cvdkI= -github.com/envoyproxy/envoy v1.36.4 h1:O1WqXkfUxFgJdHkx0oNUvh4ssbzYGGcl9qGf8OmPQOo= -github.com/envoyproxy/envoy v1.36.4/go.mod h1:mgMEye9tOlNiUTG+iYhQYgCzQcX46MMS0Jo6bVwRt1U= +github.com/envoyproxy/envoy v1.37.0 h1:OdWP94hv7PQOve8pCQfcIItWW+ut35uzuweV+5oOsA8= +github.com/envoyproxy/envoy v1.37.0/go.mod h1:B54Cuqc1UgTw7dhKzh6HYfBDRi2pXczlQlRY38Py2yE= github.com/envoyproxy/protoc-gen-validate v1.2.1 h1:DEo3O99U8j4hBFwbJfrz9VtgcDfUKS7KJ7spH3d86P8= github.com/envoyproxy/protoc-gen-validate v1.2.1/go.mod h1:d/C80l/jxXLdfEIhX1W2TmLfsJ31lvEjwamM4DxlWXU= github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8= github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU= -google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1 h1:hjSy6tcFQZ171igDaN5QHOw2n6vx40juYbC/x67CEhc= -google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:qpvKtACPCQhAdu3PyQgV4l3LMXZEtft7y8QcarRsp9I= -google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 h1:pPJltXNxVzT4pK9yD8vR9X75DaWYYmLGMsEvBfFQZzQ= -google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU= +google.golang.org/genproto/googleapis/api v0.0.0-20250728155136-f173205681a0 h1:0UOBWO4dC+e51ui0NFKSPbkHHiQ4TmrEfEZMLDyRmY8= +google.golang.org/genproto/googleapis/api v0.0.0-20250728155136-f173205681a0/go.mod h1:8ytArBbtOy2xfht+y2fqKd5DRDJRUQhqbyEnQ4bDChs= +google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0 h1:MAKi5q709QWfnkkpNQ0M12hYJ1+e8qYVDyowc4U1XZM= +google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0/go.mod h1:qQ0YXyHHx3XkvlzUtpXDkS29lDSafHMZBAZDc03LQ3A= google.golang.org/protobuf v1.36.11 h1:fV6ZwhNocDyBLK0dj+fg8ektcVegBBuEolpbTQyBNVE= google.golang.org/protobuf v1.36.11/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco= From 58a767a602e485138bec55f7bb290f997692aa72 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 27 Jan 2026 16:24:57 +0000 Subject: [PATCH 5/5] build(deps): bump protobuf Bumps the examples-grpc-bridge group in /grpc-bridge/client with 1 update: [protobuf](https://github.com/protocolbuffers/protobuf). Updates `protobuf` from 6.33.2 to 6.33.3 - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Commits](https://github.com/protocolbuffers/protobuf/commits) --- updated-dependencies: - dependency-name: protobuf dependency-version: 6.33.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: examples-grpc-bridge ... Signed-off-by: dependabot[bot] --- grpc-bridge/client/requirements.txt | 42 ++++++++++++++--------------- 1 file changed, 21 insertions(+), 21 deletions(-) diff --git a/grpc-bridge/client/requirements.txt b/grpc-bridge/client/requirements.txt index 758f442b..808ba153 100644 --- a/grpc-bridge/client/requirements.txt +++ b/grpc-bridge/client/requirements.txt @@ -232,27 +232,27 @@ idna==3.7 \ --hash=sha256:028ff3aadf0609c1fd278d8ea3089299412a7a8b9bd005dd08b9f8285bcb5cfc \ --hash=sha256:82fee1fc78add43492d3a1898bfa6d8a904cc97d8427f683ed8e798d07761aa0 # via requests -protobuf==6.33.2 \ - --hash=sha256:1f8017c48c07ec5859106533b682260ba3d7c5567b1ca1f24297ce03384d1b4f \ - --hash=sha256:1f8017c48c07ec5859106533b682260ba3d7c5567b1ca1f24297ce03384d1b4f \ - --hash=sha256:2981c58f582f44b6b13173e12bb8656711189c2a70250845f264b877f00b1913 \ - --hash=sha256:2981c58f582f44b6b13173e12bb8656711189c2a70250845f264b877f00b1913 \ - --hash=sha256:56dc370c91fbb8ac85bc13582c9e373569668a290aa2e66a590c2a0d35ddb9e4 \ - --hash=sha256:56dc370c91fbb8ac85bc13582c9e373569668a290aa2e66a590c2a0d35ddb9e4 \ - --hash=sha256:7109dcc38a680d033ffb8bf896727423528db9163be1b6a02d6a49606dcadbfe \ - --hash=sha256:7109dcc38a680d033ffb8bf896727423528db9163be1b6a02d6a49606dcadbfe \ - --hash=sha256:7636aad9bb01768870266de5dc009de2d1b936771b38a793f73cbbf279c91c5c \ - --hash=sha256:7636aad9bb01768870266de5dc009de2d1b936771b38a793f73cbbf279c91c5c \ - --hash=sha256:87eb388bd2d0f78febd8f4c8779c79247b26a5befad525008e49a6955787ff3d \ - --hash=sha256:87eb388bd2d0f78febd8f4c8779c79247b26a5befad525008e49a6955787ff3d \ - --hash=sha256:8cd7640aee0b7828b6d03ae518b5b4806fdfc1afe8de82f79c3454f8aef29872 \ - --hash=sha256:8cd7640aee0b7828b6d03ae518b5b4806fdfc1afe8de82f79c3454f8aef29872 \ - --hash=sha256:b5d3b5625192214066d99b2b605f5783483575656784de223f00a8d00754fc0e \ - --hash=sha256:b5d3b5625192214066d99b2b605f5783483575656784de223f00a8d00754fc0e \ - --hash=sha256:d9b19771ca75935b3a4422957bc518b0cecb978b31d1dd12037b088f6bcc0e43 \ - --hash=sha256:d9b19771ca75935b3a4422957bc518b0cecb978b31d1dd12037b088f6bcc0e43 \ - --hash=sha256:fc2a0e8b05b180e5fc0dd1559fe8ebdae21a27e81ac77728fb6c42b12c7419b4 \ - --hash=sha256:fc2a0e8b05b180e5fc0dd1559fe8ebdae21a27e81ac77728fb6c42b12c7419b4 +protobuf==6.33.4 \ + --hash=sha256:0f12ddbf96912690c3582f9dffb55530ef32015ad8e678cd494312bd78314c4f \ + --hash=sha256:0f12ddbf96912690c3582f9dffb55530ef32015ad8e678cd494312bd78314c4f \ + --hash=sha256:1fe3730068fcf2e595816a6c34fe66eeedd37d51d0400b72fabc848811fdc1bc \ + --hash=sha256:1fe3730068fcf2e595816a6c34fe66eeedd37d51d0400b72fabc848811fdc1bc \ + --hash=sha256:2fe67f6c014c84f655ee06f6f66213f9254b3a8b6bda6cda0ccd4232c73c06f0 \ + --hash=sha256:2fe67f6c014c84f655ee06f6f66213f9254b3a8b6bda6cda0ccd4232c73c06f0 \ + --hash=sha256:3df850c2f8db9934de4cf8f9152f8dc2558f49f298f37f90c517e8e5c84c30e9 \ + --hash=sha256:3df850c2f8db9934de4cf8f9152f8dc2558f49f298f37f90c517e8e5c84c30e9 \ + --hash=sha256:757c978f82e74d75cba88eddec479df9b99a42b31193313b75e492c06a51764e \ + --hash=sha256:757c978f82e74d75cba88eddec479df9b99a42b31193313b75e492c06a51764e \ + --hash=sha256:8f11ffae31ec67fc2554c2ef891dcb561dae9a2a3ed941f9e134c2db06657dbc \ + --hash=sha256:8f11ffae31ec67fc2554c2ef891dcb561dae9a2a3ed941f9e134c2db06657dbc \ + --hash=sha256:918966612c8232fc6c24c78e1cd89784307f5814ad7506c308ee3cf86662850d \ + --hash=sha256:918966612c8232fc6c24c78e1cd89784307f5814ad7506c308ee3cf86662850d \ + --hash=sha256:955478a89559fa4568f5a81dce77260eabc5c686f9e8366219ebd30debf06aa6 \ + --hash=sha256:955478a89559fa4568f5a81dce77260eabc5c686f9e8366219ebd30debf06aa6 \ + --hash=sha256:c7c64f259c618f0bef7bee042075e390debbf9682334be2b67408ec7c1c09ee6 \ + --hash=sha256:c7c64f259c618f0bef7bee042075e390debbf9682334be2b67408ec7c1c09ee6 \ + --hash=sha256:dc2e61bca3b10470c1912d166fe0af67bfc20eb55971dcef8dfa48ce14f0ed91 \ + --hash=sha256:dc2e61bca3b10470c1912d166fe0af67bfc20eb55971dcef8dfa48ce14f0ed91 # via # -r requirements.in # grpcio-tools