Bump github.com/nats-io/nats-server/v2 from 2.10.7 to 2.10.9

dependabot[bot] commented 10 months ago

Bumps github.com/nats-io/nats-server/v2 from 2.10.7 to 2.10.9.

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.10.9

Changelog

Refer to the 2.10 Upgrade Guide for backwards compatibility notes with 2.9.x.

Go Version

1.21.6

Fixed

JetStream

Guard against potential panic when finding starting sequence for stream sources from 2.9.x servers (#4950)

Complete Changes

https://github.com/nats-io/nats-server/compare/v2.10.8...v2.10.9

Release v2.10.8

Changelog

Refer to the 2.10 Upgrade Guide for backwards compatibility notes with 2.9.x.

Go Version

1.21.6

Dependencies

golang.org/x/crypto v0.18.0

golang.org/x/sys v0.16.0

github.com/nats-io/nkeys v0.4.7

Added

TLS

Add 'certs' option to TLS block for multi-cert support (#4889)

Improved

General

Random number generation now uses a faster lock-free algorithm (#4901)

no_auth_user is now allowed to be an nkey (#4938)

JetStream

Improve matching efficiency of filter subjects in consumer (#4864) Thanks to @svenfoo for the contribution!

Optimize JetStream metalayer snapshots by reducing allocations and simplifying marshaling (#4925)

Micro-optimization where subject tokenization occurs (#4880) Thanks to @svenfoo for the contribution!

Prevent backing up internal JS API requests in large-scale source and mirror setups (#4884)

Optimize catchups for replicas and mirrors where there are a significant number of interior deletes (#4929)

Reduce lock contention on the stream lock for some operations that could block routes & gateways (#4933)

Do not load all blocks for NumPending when delivery is LastPerSubject (#4885)

Call stream update only if the config has changed (#4898)

Prevent large memory buildup in the apply queue for NRGs during startup (#4895)

Finding the last sourced message for each source of a stream is now much faster (#4935)

... (truncated)

Commits

a5298e2 Release v2.10.9 (#4952)
acd0d8c Release v2.10.9
95e409e Bump version to 2.10.9
f14c62b Fix line with wrong variable add extra guard and optimization
6a41e96 Release v2.10.8 (#4948)
3345e1b Cherry-pick PRs into v2.10.8 release branch (#4944)
aa6bee3 Update crypto dependency
d7de801 Bump Go version
35b2044 Always restart OCSP monitors on reload
ab71f02 Cherry-pick PRs into v2.10.8 release branch (#4941)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)