chore(deps): Bump the production-dependencies group across 1 directory with 8 updates

[dependabot[bot]]

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
github.com/containerd/errdefs	0.2.0	0.3.0
github.com/cyphar/filepath-securejoin	0.3.3	0.3.4
github.com/klauspost/compress	1.17.10	1.17.11
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	0.55.0	0.56.0
google.golang.org/protobuf	1.34.2	1.35.1

Updates github.com/containerd/errdefs from 0.2.0 to 0.3.0

Release notes

Sourced from github.com/containerd/errdefs's releases.

v0.3.0

This release splits the errdefs package into the github.com/containerd/errdefs package which only contains error definitions as well as basic functions to check for those definitions and the github.com/containerd/errdefs/pkg package which containers functionality for using the errdefs, such as error serialization and adding more data to errors.

What's Changed

• Update GitHub Actions packages and runners by @​austinvazquez in containerd/errdefs#20
• Add errdefs/pkg package by @​dmcgowan in containerd/errdefs#19

Full Changelog: https://github.com/containerd/errdefs/compare/v0.2.0...v0.3.0

pkg/v0.3.0

What's Changed

• Update pkg errodefs to v0.3.0 by @​dmcgowan in containerd/errdefs#21

Full Changelog: https://github.com/containerd/errdefs/compare/v0.3.0...pkg/v0.3.0

Commits

• 9fd32fc Merge pull request #19 from dmcgowan/pkg-package
• 3dabb2b Merge pull request #20 from austinvazquez/upgrade-ci
• 303a6ea Update to Go 1.22.8 in CI
• e70104e Upgrade to golangci-lint@v1.61.0
• ffe5586 Upgrade to golangci/golangci-lint-action@v6
• 908b04b Upgrade to actions/checkout@v4
• 608b83c Upgrade to actions/setup-go@v5
• 8e82ae4 Upgrade macOS runner image to macOS 13
• 46a6522 Add errdefs/pkg package
• See full diff in compare view

Updates github.com/cyphar/filepath-securejoin from 0.3.3 to 0.3.4

Release notes

Sourced from github.com/cyphar/filepath-securejoin's releases.

v0.3.4

This release primarily includes a fix that blocked using filepath-securejoin in Kubernetes.

• Previously, some testing mocks we had resulted in us doing import "testing" in non-_test.go code, which made some downstreams like Kubernetes unhappy. This has been fixed. (#32)

Thanks to all of the contributors who made this release possible:

• Aleksa Sarai cyphar@cyphar.com
• Stephen Kitt skitt@redhat.com

Signed-off-by: Aleksa Sarai cyphar@cyphar.com

Changelog

Sourced from github.com/cyphar/filepath-securejoin's changelog.

[0.3.4] - 2024-10-09

Fixed

• Previously, some testing mocks we had resulted in us doing import "testing" in non-_test.go code, which made some downstreams like Kubernetes unhappy. This has been fixed. (#32)

Commits

• fd16ade VERSION: release v0.3.4
• 00e0710 godoc: update package documentation
• 0cd6be1 README: fix reference to open_tree kernel requirements
• 205046f README: add pkg.go.dev badge
• ecb1b8e tests: procfs: clean up mock test hook
• 3ec6eed CHANGELOG: mention #32 fix
• 86e6182 merge #32 into cyphar/filepath-securejoin:main
• 6864912 Isolate the testing import in test code
• 4348fee openat: remove unused function
• d0c7d67 merge #31 into cyphar/filepath-securejoin:main
• Additional commits viewable in compare view

Updates github.com/klauspost/compress from 1.17.10 to 1.17.11

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.17.11

What's Changed

• zstd: Fix extra CRC written with multiple Close calls by @​klauspost in klauspost/compress#1017
• s2: Don't use stack for index tables by @​klauspost in klauspost/compress#1014
• gzhttp: No content-type on no body response code by @​juliens in klauspost/compress#1011
• gzhttp: Do not set the content-type when response has no body by @​kevinpollet in klauspost/compress#1013

New Contributors

• @​juliens made their first contribution in klauspost/compress#1011
• @​kevinpollet made their first contribution in klauspost/compress#1013

Full Changelog: https://github.com/klauspost/compress/compare/v1.17.10...v1.17.11

Commits

• 72cd4a9 zstd: Fix extra CRC written with multiple Close calls (#1017)
• dbd6c38 s2: Don't use stack for index tables (#1014)
• f73ab1e Do not set the content-type when response has no body (#1013)
• f2a4f25 build(deps): bump github/codeql-action in the github-actions group (#1012)
• 8e14b1b No content-type on no body response code (#1011)
• 13a1ce6 ci: Match goreleaser version (#1009)
• 6c5a195 Update README.md
• See full diff in compare view

Updates go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.55.0 to 0.56.0

Release notes

Sourced from go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp's releases.

Release v1.31.0/v0.56.0/v0.25.0/v0.11.0/v0.6.0/v0.4.0/v0.3.0

Overview

Added

• The Severitier and SeverityVar types are added to go.opentelemetry.io/contrib/processors/minsev allowing dynamic configuration of the severity used by the LogProcessor. (#6116)
• Move examples from go.opentelemetry.io/otel to this repository under examples directory. (#6158)
• Support yaml/json struct tags for generated code in go.opentelemetry.io/contrib/config. (#5433)
• Add support for parsing YAML configuration via ParseYAML in go.opentelemetry.io/contrib/config. (#5433)
• Add support for temporality preference configuration in go.opentelemetry.io/contrib/config. (#5860)

Changed

• The function signature of NewLogProcessor in go.opentelemetry.io/contrib/processors/minsev has changed to accept the added Severitier interface instead of a log.Severity. (#6116)
• Updated go.opentelemetry.io/contrib/config to use the v0.3.0 release of schema which includes backwards incompatible changes. (#6126)
• NewSDK in go.opentelemetry.io/contrib/config now returns a no-op SDK if disabled is set to true. (#6185)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho package has found a Code Owner. The package is no longer deprecated. (#6207)

Fixed

• Possible nil dereference panic in go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace. (#5965)
• logrus.Level transformed to appropriate log.Severity in go.opentelemetry.io/contrib/bridges/otellogrus. (#6191)

Removed

• The Minimum field of the LogProcessor in go.opentelemetry.io/contrib/processors/minsev is removed. Use NewLogProcessor to configure this setting. (#6116)
• The deprecated go.opentelemetry.io/contrib/instrumentation/gopkg.in/macaron.v1/otelmacaron package is removed. (#6186)
• The deprecated go.opentelemetry.io/contrib/samplers/aws/xray package is removed. (#6187)

What's Changed

• Add skeleton for otellogr bridge by @​scorpionknifes in open-telemetry/opentelemetry-go-contrib#6097
• chore(deps): update opentelemetry-go monorepo by @​renovate in open-telemetry/opentelemetry-go-contrib#6108
• fix(deps): update module google.golang.org/grpc to v1.66.2 by @​renovate in open-telemetry/opentelemetry-go-contrib#6109
• otelhttptrace: handle missing getconn hook without panic by @​krantideep95 in open-telemetry/opentelemetry-go-contrib#5965
• chore(deps): update kubernetes packages to v0.31.1 by @​renovate in open-telemetry/opentelemetry-go-contrib#6110
• fix(deps): update module cloud.google.com/go/compute/metadata to v0.5.1 by @​renovate in open-telemetry/opentelemetry-go-contrib#6114
• fix(deps): update module github.com/aws/aws-sdk-go-v2/config to v1.27.34 by @​renovate in open-telemetry/opentelemetry-go-contrib#6117
• Bump otel/log after introducing EnabledParameters by @​pellared in open-telemetry/opentelemetry-go-contrib#6115
• fix(deps): update opentelemetry-go monorepo to 534ce5a by @​renovate in open-telemetry/opentelemetry-go-contrib#6118
• fix(deps): update aws-sdk-go-v2 monorepo by @​renovate in open-telemetry/opentelemetry-go-contrib#6120
• fix(deps): update module github.com/prometheus/client_golang to v1.20.4 by @​renovate in open-telemetry/opentelemetry-go-contrib#6119
• fix(deps): update module go.mongodb.org/mongo-driver to v1.17.0 by @​renovate in open-telemetry/opentelemetry-go-contrib#6121
• fix(deps): update opentelemetry-go monorepo to 7bd1c85 by @​renovate in open-telemetry/opentelemetry-go-contrib#6122
• fix(deps): update module github.com/aws/aws-sdk-go-v2/service/s3 to v1.62.0 by @​renovate in open-telemetry/opentelemetry-go-contrib#6124
• Update minsev to allow dynamic severities by @​MrAlias in open-telemetry/opentelemetry-go-contrib#6116
• otelmongo: Use a mock deployment for testing against a MongoDB server by @​prestonvasquez in open-telemetry/opentelemetry-go-contrib#5749
• fix(deps): update module github.com/aws/smithy-go to v1.21.0 by @​renovate in open-telemetry/opentelemetry-go-contrib#6129
• fix(deps): update module google.golang.org/grpc to v1.67.0 by @​renovate in open-telemetry/opentelemetry-go-contrib#6131
• fix(deps): update opentelemetry-go monorepo to a200e0a by @​renovate in open-telemetry/opentelemetry-go-contrib#6130

... (truncated)

Changelog

Sourced from go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp's changelog.

[1.31.0/0.56.0/0.25.0/0.11.0/0.6.0/0.4.0/0.3.0] - 2024-10-14

Added

• The Severitier and SeverityVar types are added to go.opentelemetry.io/contrib/processors/minsev allowing dynamic configuration of the severity used by the LogProcessor. (#6116)
• Move examples from go.opentelemetry.io/otel to this repository under examples directory. (#6158)
• Support yaml/json struct tags for generated code in go.opentelemetry.io/contrib/config. (#5433)
• Add support for parsing YAML configuration via ParseYAML in go.opentelemetry.io/contrib/config. (#5433)
• Add support for temporality preference configuration in go.opentelemetry.io/contrib/config. (#5860)

Changed

• The function signature of NewLogProcessor in go.opentelemetry.io/contrib/processors/minsev has changed to accept the added Severitier interface instead of a log.Severity. (#6116)
• Updated go.opentelemetry.io/contrib/config to use the v0.3.0 release of schema which includes backwards incompatible changes. (#6126)
• NewSDK in go.opentelemetry.io/contrib/config now returns a no-op SDK if disabled is set to true. (#6185)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho package has found a Code Owner. The package is no longer deprecated. (#6207)

Fixed

• Possible nil dereference panic in go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace. (#5965)
• logrus.Level transformed to appropriate log.Severity in go.opentelemetry.io/contrib/bridges/otellogrus. (#6191)

Removed

• The Minimum field of the LogProcessor in go.opentelemetry.io/contrib/processors/minsev is removed. Use NewLogProcessor to configure this setting. (#6116)
• The deprecated go.opentelemetry.io/contrib/instrumentation/gopkg.in/macaron.v1/otelmacaron package is removed. (#6186)
• The deprecated go.opentelemetry.io/contrib/samplers/aws/xray package is removed. (#6187)

Commits

• 9cf5701 Release v1.31.0/v0.56.0/v0.25.0/v0.11.0/v0.6.0/v0.4.0/v0.3.0 (#6243)
• d6305c0 chore(deps): update module github.com/klauspost/compress to v1.17.11 (#6232)
• 09cbf41 fix(deps): update module github.com/aws/aws-sdk-go-v2/service/s3 to v1.65.3 (...
• c3c8538 Update otel core to the latest release (#6233)
• 79bb705 otelecho: Add Code Owner and remove deprecation (#6207)
• 45ba204 config: support v0.3 of the config schema (#6126)
• 20e45af Revert "chore(deps): update lycheeverse/lychee-action action to v2" (#6229)
• 5322670 Remove otelmacaron (#6186)
• 87d0229 feat(instrumentation/http/otelhttp): move client metrics creation into intern...
• 900fc4b Run the test compatibility check even if tests failed (#6224)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel from 1.30.0 to 1.31.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.31.0/0.53.0/0.7.0/0.0.10] 2024-10-11

Added

• Add go.opentelemetry.io/otel/sdk/metric/exemplar package which includes Exemplar, Filter, TraceBasedFilter, AlwaysOnFilter, HistogramReservoir, FixedSizeReservoir, Reservoir, Value and ValueType types. These will be used for configuring the exemplar reservoir for the metrics sdk. (#5747, #5862)
• Add WithExportBufferSize option to log batch processor.(#5877)

Changed

• Enable exemplars by default in go.opentelemetry.io/otel/sdk/metric. Exemplars can be disabled by setting OTEL_METRICS_EXEMPLAR_FILTER=always_off (#5778)
• Logger.Enabled in go.opentelemetry.io/otel/log now accepts a newly introduced EnabledParameters type instead of Record. (#5791)
• FilterProcessor.Enabled in go.opentelemetry.io/otel/sdk/log/internal/x now accepts EnabledParameters instead of Record. (#5791)
• The Record type in go.opentelemetry.io/otel/log is no longer comparable. (#5847)
• Performance improvements for the trace SDK SetAttributes method in Span. (#5864)
• Reduce memory allocations for the Event and Link lists in Span. (#5858)
• Performance improvements for the trace SDK AddEvent, AddLink, RecordError and End methods in Span. (#5874)

Deprecated

• Deprecate all examples under go.opentelemetry.io/otel/example as they are moved to Contrib repository. (#5854)

Fixed

• The race condition for multiple FixedSize exemplar reservoirs identified in #5814 is resolved. (#5819)
• Fix log records duplication in case of heterogeneous resource attributes by correctly mapping each log record to it's resource and scope. (#5803)
• Fix timer channel drain to avoid hanging on Go 1.23. (#5868)
• Fix delegation for global meter providers, and panic when calling otel.SetMeterProvider. (#5827)
• Change the reflect.TypeOf to use a nil pointer to not allocate on the heap unless necessary. (#5827)

Commits

• bc2fe88 Release v1.31.0/v0.53.0/v0.7.0/v0.0.10 (#5883)
• a7d5c1a Add an option to configure the exporter buffer of the BatchProcessor (#5877)
• eb9279b fix(deps): update golang.org/x/exp digest to f66d83c (#5880)
• 6441653 Performance improvements for the trace SDK in Span. (#5874)
• 8e9baf2 chore(deps): update lycheeverse/lychee-action action to v2 (#5878)
• 8fbaa97 Reduce newEvictedQueueLink and newEvictedQueueEvent memory allocations (#...
• 4a911f9 chore(deps): update googleapis to 5fefd90 (#5876)
• 98cbdcb fix(deps): update module google.golang.org/protobuf to v1.35.1 (#5875)
• 3cbd967 Performance improvements for recordingSpan SetAttributes and `addOverCapA...
• 9e791a6 fix(deps): update golang.org/x (#5872)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/metric from 1.30.0 to 1.31.0

Changelog

Sourced from go.opentelemetry.io/otel/metric's changelog.

[1.31.0/0.53.0/0.7.0/0.0.10] 2024-10-11

Added

• Add go.opentelemetry.io/otel/sdk/metric/exemplar package which includes Exemplar, Filter, TraceBasedFilter, AlwaysOnFilter, HistogramReservoir, FixedSizeReservoir, Reservoir, Value and ValueType types. These will be used for configuring the exemplar reservoir for the metrics sdk. (#5747, #5862)
• Add WithExportBufferSize option to log batch processor.(#5877)

Changed

• Enable exemplars by default in go.opentelemetry.io/otel/sdk/metric. Exemplars can be disabled by setting OTEL_METRICS_EXEMPLAR_FILTER=always_off (#5778)
• Logger.Enabled in go.opentelemetry.io/otel/log now accepts a newly introduced EnabledParameters type instead of Record. (#5791)
• FilterProcessor.Enabled in go.opentelemetry.io/otel/sdk/log/internal/x now accepts EnabledParameters instead of Record. (#5791)
• The Record type in go.opentelemetry.io/otel/log is no longer comparable. (#5847)
• Performance improvements for the trace SDK SetAttributes method in Span. (#5864)
• Reduce memory allocations for the Event and Link lists in Span. (#5858)
• Performance improvements for the trace SDK AddEvent, AddLink, RecordError and End methods in Span. (#5874)

Deprecated

• Deprecate all examples under go.opentelemetry.io/otel/example as they are moved to Contrib repository. (#5854)

Fixed

• The race condition for multiple FixedSize exemplar reservoirs identified in #5814 is resolved. (#5819)
• Fix log records duplication in case of heterogeneous resource attributes by correctly mapping each log record to it's resource and scope. (#5803)
• Fix timer channel drain to avoid hanging on Go 1.23. (#5868)
• Fix delegation for global meter providers, and panic when calling otel.SetMeterProvider. (#5827)
• Change the reflect.TypeOf to use a nil pointer to not allocate on the heap unless necessary. (#5827)

Commits

• bc2fe88 Release v1.31.0/v0.53.0/v0.7.0/v0.0.10 (#5883)
• a7d5c1a Add an option to configure the exporter buffer of the BatchProcessor (#5877)
• eb9279b fix(deps): update golang.org/x/exp digest to f66d83c (#5880)
• 6441653 Performance improvements for the trace SDK in Span. (#5874)
• 8e9baf2 chore(deps): update lycheeverse/lychee-action action to v2 (#5878)
• 8fbaa97 Reduce newEvictedQueueLink and newEvictedQueueEvent memory allocations (#...
• 4a911f9 chore(deps): update googleapis to 5fefd90 (#5876)
• 98cbdcb fix(deps): update module google.golang.org/protobuf to v1.35.1 (#5875)
• 3cbd967 Performance improvements for recordingSpan SetAttributes and `addOverCapA...
• 9e791a6 fix(deps): update golang.org/x (#5872)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.30.0 to 1.31.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.31.0/0.53.0/0.7.0/0.0.10] 2024-10-11

Added

• Add go.opentelemetry.io/otel/sdk/metric/exemplar package which includes Exemplar, Filter, TraceBasedFilter, AlwaysOnFilter, HistogramReservoir, FixedSizeReservoir, Reservoir, Value and ValueType types. These will be used for configuring the exemplar reservoir for the metrics sdk. (#5747, #5862)
• Add WithExportBufferSize option to log batch processor.(#5877)

Changed

• Enable exemplars by default in go.opentelemetry.io/otel/sdk/metric. Exemplars can be disabled by setting OTEL_METRICS_EXEMPLAR_FILTER=always_off (#5778)
• Logger.Enabled in go.opentelemetry.io/otel/log now accepts a newly introduced EnabledParameters type instead of Record. (#5791)
• FilterProcessor.Enabled in go.opentelemetry.io/otel/sdk/log/internal/x now accepts EnabledParameters instead of Record. (#5791)
• The Record type in go.opentelemetry.io/otel/log is no longer comparable. (#5847)
• Performance improvements for the trace SDK SetAttributes method in Span. (#5864)
• Reduce memory allocations for the Event and Link lists in Span. (#5858)
• Performance improvements for the trace SDK AddEvent, AddLink, RecordError and End methods in Span. (#5874)

Deprecated

• Deprecate all examples under go.opentelemetry.io/otel/example as they are moved to Contrib repository. (#5854)

Fixed

• The race condition for multiple FixedSize exemplar reservoirs identified in #5814 is resolved. (#5819)
• Fix log records duplication in case of heterogeneous resource attributes by correctly mapping each log record to it's resource and scope. (#5803)
• Fix timer channel drain to avoid hanging on Go 1.23. (#5868)
• Fix delegation for global meter providers, and panic when calling otel.SetMeterProvider. (#5827)
• Change the reflect.TypeOf to use a nil pointer to not allocate on the heap unless necessary. (#5827)

Commits

• bc2fe88 Release v1.31.0/v0.53.0/v0.7.0/v0.0.10 (#5883)
• a7d5c1a Add an option to configure the exporter buffer of the BatchProcessor (#5877)
• eb9279b fix(deps): update golang.org/x/exp digest to f66d83c (#5880)
• 6441653 Performance improvements for the trace SDK in Span. (#5874)
• 8e9baf2 chore(deps): update lycheeverse/lychee-action action to v2 (#5878)
• 8fbaa97 Reduce newEvictedQueueLink and newEvictedQueueEvent memory allocations (#...
• 4a911f9 chore(deps): update googleapis to 5fefd90 (#5876)
• 98cbdcb fix(deps): update module google.golang.org/protobuf to v1.35.1 (#5875)
• 3cbd967 Performance improvements for recordingSpan SetAttributes and `addOverCapA...
• 9e791a6 fix(deps): update golang.org/x (#5872)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.34.2 to 1.35.1

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[kubevirt-bot]

Hi @dependabot[bot]. Thanks for your PR.

PRs from untrusted users cannot be marked as trusted with /ok-to-test in this repo meaning untrusted PR authors can never trigger tests themselves. Collaborators can still trigger tests on the PR using /test all.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes-sigs/prow](https://github.com/kubernetes-sigs/prow/issues/new?title=Prow%20issue:) repository.

[jcanocan]

/test all /lgtm

[kubevirt-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: 0xFelix

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/kubevirt/containerdisks/blob/main/OWNERS)~~ [0xFelix] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment