dmwm / WMArchive

Workload Archive project
4 stars 13 forks source link

Bump github.com/nats-io/nats-server/v2 from 2.1.9 to 2.7.4 in /src/go #355

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps github.com/nats-io/nats-server/v2 from 2.1.9 to 2.7.4.

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.7.4

Changelog

Note about .deb/.rpm packages

We use Goreleaser to build our assets, and it seems that it changed the default install from /usr/local/bin to /usr/bin. See Goreleaser's change here. We are sorry for the inconvenience this may cause.

Go Version

  • 1.17.8: Both release executables and Docker images are built with this Go release.

Improved

  • JetStream:
    • Better startup logging to help debug RAFT log directories to streams/consumers (#2897)

Fixed

  • JetStream:
    • The consumers count when getting stream information could be wrong in clustered mode (#2896)
    • Never used clustered and filtered consumers consume storage under $SYS. Thanks to @​nayanparegi and @​aksdb for the reports (#2899, #2914)
    • Stream not recovered on restart with "deleted message", "checksum" or "no message cache" errors (#2900)
    • Schema violations in the NATS CLI tool caused by large number overflow when "active" field for Sources and Mirrors was computed and there had been no contact yet (#2903)
    • Some Stream advisories were missing (#2887)
    • Inconsistent durable consumer state after stream peer removal (#2904)
    • Scaling up and down for streams and consumers (#2905)
    • Validate files' path when restoring stream from a snapshot/backup (CVE-2022-26652). Thanks to Yiming Xiang for the report (#2917)
  • Monitoring:
    • Panic on non 64-bit platforms due to an unaligned 64-bit atomic operation. Thanks to @​mlorenz-tug for the report (#2915)
  • LeafNode:
    • Queue subscription interest could be suppressed in complex situations causing messages to not flow from a LeafNode server to the rest of the (super)cluster (#2901)
  • Fixed some lock inversions (#2911)

Complete Changes

https://github.com/nats-io/nats-server/compare/v2.7.3...v2.7.4

Release v2.7.3

Changelog

Go Version

  • 1.17.7: Both release executables and Docker images are built with this Go release.

Added

  • JetStream:
    • Allow replica updates during stream update (#2867)
    • Allow stream placement by tags (#2871)

Updated

  • Dependencies:

... (truncated)

Commits
  • a86b84a Merge pull request #2918 from nats-io/release_2_7_4
  • 773636c Release v2.7.4
  • 818c2c7 Merge pull request #2917 from nats-io/file_path
  • b412869 Ensure file path is correct during stream restore
  • 0cb0f6d Merge pull request #2914 from nats-io/fix_2913
  • 9a2da9e Adding denies $KV.>/$OBJ.> along leaf connections on differing domain (#2916)
  • 5a97ee6 Merge pull request #2911 from nats-io/fix_lock_inversions
  • 3538aea Merge pull request #2915 from nats-io/fix_atomic_unaligned
  • 0fae806 [FIXED] Some lock inversions
  • dde235a [FIXED] Panic when monitoring enabled on non 64bit architectures
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dmwm/WMArchive/network/alerts).