build(deps): Bump google.golang.org/grpc from 1.79.2 to 1.79.3#3181
build(deps): Bump google.golang.org/grpc from 1.79.2 to 1.79.3#3181julienrbrt merged 3 commits intomainfrom
Conversation
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.79.2 to 1.79.3. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.79.2...v1.79.3) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
|
The latest Buf updates on your PR. Results from workflow CI / buf-check (pull_request).
|
|
Claude finished @julienrbrt's task in 1m 17s —— View job Code Review: grpc 1.79.2 → 1.79.3 Security Bump
SummaryThis is a security patch for ReviewChanges are correct and minimal. All 6 Security relevance: grpc is an indirect dependency in all modules (pulled in transitively). The codebase does not appear to instantiate gRPC servers directly — it uses No concerns — this is a pure, clean patch-version bump with no behavior changes outside the security fix. The compatibility score badge confirms no breakage. ✅ Approved. Merge when ready. |
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #3181 +/- ##
==========================================
- Coverage 61.15% 61.10% -0.05%
==========================================
Files 117 117
Lines 12082 12082
==========================================
- Hits 7389 7383 -6
- Misses 3867 3871 +4
- Partials 826 828 +2
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
github-merge-queue
bot
removed this pull request from the merge queue due to failed status checks
julienrbrt
deleted the
dependabot/go_modules/google.golang.org/grpc-1.79.3
branch
1 participant
Bumps google.golang.org/grpc from 1.79.2 to 1.79.3.
Release notes
Sourced from google.golang.org/grpc's releases.
Commits
dda86dbChange version to 1.79.3 (#8983)72186f1grpc: enforce strict path checking for incoming requests on the server (#8981)97ca352Changing version to 1.79.3-dev (#8954)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.