Skip to content

Bump protobuf from 4.25.3 to 4.25.8#95492

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/pip/protobuf-4.25.8
Closed

Bump protobuf from 4.25.3 to 4.25.8#95492
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/pip/protobuf-4.25.8

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jun 17, 2025
edited
Loading

Bumps protobuf from 4.25.3 to 4.25.8.

Commits
  • a4cbdd3 Updating version.json and repo version numbers to: 25.8
  • 29445be Merge pull request #21880 from shaod2/py-25
  • cc13b69 Remove debugging code and add EOLs
  • d31100c Manually backport recursion limit enforcement to 25.x
  • 88a3b90 Change pre-22 poison pill to only log once per affected message type. (#21754)
  • 320eafa Weaken vulnerable gencode poison pills to warning by default.
  • f584fe3 Merge branch 'protocolbuffers:25.x' into 25.x
  • c710036 Update test_upb.yml to use ubuntu-22
  • 9721758 Fix missing trailing newline.
  • cca7b28 Update test_upb.yml to use ubuntu-22
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jun 17, 2025
@google-ml-butler google-ml-butler bot added the size:M CL Change Size: Medium label Jun 17, 2025
@google-ml-butler google-ml-butler bot added the awaiting review Pull request awaiting review label Jun 17, 2025
@github-project-automation github-project-automation bot moved this to Assigned Reviewer in PR Queue Jun 17, 2025
@google-ml-butler google-ml-butler bot added kokoro:force-run Tests on submitted change ready to pull PR ready for merge process labels Jun 17, 2025
@github-project-automation github-project-automation bot moved this from Assigned Reviewer to Approved by Reviewer in PR Queue Jun 17, 2025
@kokoro-team kokoro-team removed the kokoro:force-run Tests on submitted change label Jun 17, 2025
@dependabot
Bump protobuf from 4.25.3 to 4.25.8
3c83f3a 
Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 4.25.3 to 4.25.8.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](protocolbuffers/protobuf@v4.25.3...v4.25.8)

---
updated-dependencies:
- dependency-name: protobuf
  dependency-version: 4.25.8
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/pip/protobuf-4.25.8 branch from 78f3282 to 3c83f3a Compare June 18, 2025 17:56
@google-ml-butler google-ml-butler bot removed the ready to pull PR ready for merge process label Jun 18, 2025
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Jun 20, 2025

Superseded by #95674.

@dependabot dependabot bot closed this Jun 20, 2025
@dependabot dependabot bot deleted the dependabot/pip/protobuf-4.25.8 branch June 20, 2025 08:37
@google-ml-butler google-ml-butler bot removed the awaiting review Pull request awaiting review label Jun 20, 2025
@github-project-automation github-project-automation bot moved this from Approved by Reviewer to Closed/Rejected in PR Queue Jun 20, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mihaimaruseac mihaimaruseac Awaiting requested review from mihaimaruseac

Assignees

@gbaned gbaned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code size:M CL Change Size: Medium

Projects

PR Queue
Status: Closed/Rejected

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mihaimaruseac @kokoro-team @gbaned @keerthanakadiri