fix(deps): Update go dependencies

[renovate-sh-app]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update	Pending
cloud.google.com/go/pubsub/v2	v2.4.0 → v2.6.0			require	minor
connectrpc.com/connect	v1.19.1 → v1.19.2			require	patch
github.com/99designs/gqlgen	v0.17.89 → v0.17.90			require	patch
github.com/DataDog/datadog-agent/pkg/util/system	v0.76.0-rc.2 → v0.78.4			replace	minor
github.com/DataDog/go-sqllexer	v0.1.13 → v0.2.2			require	minor
github.com/GoogleCloudPlatform/opentelemetry-operations-go/extension/googleclientauthextension	v0.55.0 → v0.56.0			require	minor
github.com/IBM/sarama	v1.46.3 → v1.48.2			require	minor
github.com/aws/aws-sdk-go-v2	v1.41.6 → v1.41.7			require	patch
github.com/aws/aws-sdk-go-v2/config	v1.32.16 → v1.32.17			require	patch
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	v1.18.22 → v1.18.23			require	patch
github.com/aws/aws-sdk-go-v2/service/s3	v1.100.0 → v1.101.0			require	minor
github.com/aws/aws-sdk-go-v2/service/servicediscovery	v1.39.23 → v1.39.28			require	patch
github.com/buger/jsonparser	v1.1.2 → v1.2.0			require	minor
github.com/deneonet/benc	v1.1.7 → v1.1.8			replace	patch
github.com/fatih/color	v1.18.0 → v1.19.0			require	minor
github.com/fsnotify/fsnotify	v1.9.0 → v1.10.1			require	minor
github.com/go-sql-driver/mysql	v1.9.3 → v1.10.0			require	minor
github.com/grafana/beyla/v3	v3.9.8 → v3.14.0			require	minor
github.com/grafana/loki/v3	v3.6.5 → v3.7.2			require	minor
github.com/grafana/pyroscope-go/godeltaprof	v0.1.9 → v0.1.10			require	patch
github.com/hashicorp/consul/api	v1.33.2 → v1.34.2			require	minor
github.com/hashicorp/go-discover	v1.1.0 → v1.2.0			require	minor
github.com/influxdata/telegraf	v1.35.2 → v1.38.4			require	minor
github.com/klauspost/compress	v1.18.5 → v1.18.6			require	patch
github.com/leodido/go-syslog/v4	v4.3.0 → v4.5.0			require	minor
github.com/leodido/go-syslog/v4	v4.3.0 → v4.5.0			replace	minor
github.com/ohler55/ojg	v1.28.0 → v1.28.1			require	patch
github.com/oliver006/redis_exporter	v1.81.0 → v1.83.0			require	minor
github.com/openai/openai-go/v3	v3.21.0 → v3.35.0			require	minor	v3.36.0
github.com/prometheus-community/postgres_exporter	v0.19.0 → v0.19.1			require	patch
github.com/prometheus/mysqld_exporter	v0.18.0 → v0.19.0			require	minor
github.com/prometheus/node_exporter	v1.10.2 → v1.11.1			require	minor
github.com/prometheus/statsd_exporter	v0.28.0 → v0.29.0			require	minor
github.com/samber/lo	v1.52.0 → v1.53.0			require	minor
github.com/spf13/cobra	v1.10.1 → v1.10.2			require	patch
github.com/vektah/gqlparser/v2	v2.5.32 → v2.5.33			require	patch
github.com/zricethezav/gitleaks/v8	v8.30.0 → v8.30.1			require	patch
go (source)	1.26.2 → 1.26.3			golang	patch
go.opentelemetry.io/contrib/propagators/jaeger	v1.35.0 → v1.43.0			require	minor
go.opentelemetry.io/obi	v0.8.0 → v0.9.0			require	minor
go.uber.org/zap	v1.27.1 → v1.28.0			require	minor
golang.org/x/crypto	v0.50.0 → v0.51.0			require	minor
golang.org/x/mod	v0.33.0 → v0.36.0			require	minor
golang.org/x/net	v0.53.0 → v0.54.0			require	minor
golang.org/x/oauth2	v0.35.0 → v0.36.0			require	minor
golang.org/x/sys	v0.43.0 → v0.44.0			require	minor
golang.org/x/text	v0.36.0 → v0.37.0			require	minor
golang.org/x/tools	v0.44.0 → v0.45.0			require	minor
google.golang.org/grpc	v1.80.0 → v1.81.1			require	minor
k8s.io/klog/v2	v2.130.1 → v2.140.0			require	minor

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

googleapis/google-cloud-go (cloud.google.com/go/pubsub/v2)

v2.5.1

v2.5.0

connectrpc/connect-go (connectrpc.com/connect)

v1.19.2

Compare Source

What's Changed

Governance

• Add @​timostamm as a maintainer in #​905 🎉

Bugfixes

• Use 'deadline_exceeded' instead of 'canceled' on HTTP/2 cancelation when appropriate by @​jhump in #​904
• Fix nil pointer deref in duplexHTTPCall under concurrent Send + CloseAndReceive by @​simonferquel in #​919

Other changes

• Refactor memhttptest to work with Go 1.25 synctest by @​codefromthecrypt in #​881
• Doc clarifications by @​emcfarlane (#​911, #​912) and @​stefanvanburen (#​906)

New Contributors

• @​codefromthecrypt made their first contribution in #​881
• @​simonferquel made their first contribution in #​919

Full Changelog:

99designs/gqlgen (github.com/99designs/gqlgen)

v0.17.90

Compare Source

What's Changed

• fix: add locations to resolver error responses by @​florinel-chis in #​4090
• fix: return 500 instead of 422 for panic recovery by @​PavelStefanov in #​4098
• Remove use_light_mode_prefetch docs by @​henrywoody in #​4101
• refactor: fix modernize lint issues by @​alexandear in #​4111
• Feature/field requested condition by @​parkerroan in #​4113
• Bugfix/4102 input object dir with arg by @​parkerroan in #​4112
• Fix panic in transport on null body by @​jeolted in #​4115
• Fix gosec G115 integer overflow in generated atomic.AddInt32 call by @​3rg0n in #​4120
• feat: deduplicate Child field context switches and scalar fieldContex… by @​syssam in #​4086
• Fix: directive-only schema files break follow-schema code generation by @​StevenACoffman in #​4141
• Update gqlparser to v2.5.33 see https://github.com/vektah/gqlparser/releases/tag/v2_5_33 by @​StevenACoffman in #​4142
• Reduce template logic: Part 1 ECDot by @​StevenACoffman in #​4144
• Reduce Template Logic Part 2 by @​StevenACoffman in #​4145
• Part 3 - reduce template logic: Unify ProcessArgField and ProcessArgFieldWithEC by @​StevenACoffman in #​4146
• chore(deps): bump the npm_and_yarn group across 1 directory with 1 update by @​dependabot[bot] in #​4099
• chore(deps-dev): bump vitest from 4.0.18 to 4.1.0 in /integration by @​dependabot[bot] in #​4078
• chore(deps): bump github.com/urfave/cli/v3 from 3.7.0 to 3.8.0 by @​dependabot[bot] in #​4103
• chore(deps-dev): bump graphql-ws from 6.0.7 to 6.0.8 in /integration by @​dependabot[bot] in #​4104
• chore(deps): bump mikepenz/action-junit-report from 6.3.1 to 6.4.0 by @​dependabot[bot] in #​4110
• chore(deps-dev): bump graphql from 16.13.1 to 16.13.2 in /integration by @​dependabot[bot] in #​4106
• chore(deps): bump typescript from 5.9.3 to 6.0.2 in /_examples/chat by @​dependabot[bot] in #​4108
• chore(deps-dev): bump typescript from 5.9.3 to 6.0.2 in /integration by @​dependabot[bot] in #​4105
• chore(deps): bump actions/setup-go from 6.3.0 to 6.4.0 by @​dependabot[bot] in #​4109
• chore(deps-dev): bump vitest from 4.1.1 to 4.1.2 in /integration by @​dependabot[bot] in #​4107
• chore(deps): bump dawidd6/action-download-artifact from 19 to 20 by @​dependabot[bot] in #​4116
• chore(deps): bump golang.org/x/text from 0.34.0 to 0.35.0 in /_examples by @​dependabot[bot] in #​4075
• chore(deps): bump the npm_and_yarn group across 1 directory with 2 updates by @​dependabot[bot] in #​4118
• chore(deps-dev): bump vitest from 4.1.2 to 4.1.4 in /integration by @​dependabot[bot] in #​4125
• chore(deps-dev): bump @​apollo/client from 4.1.6 to 4.1.7 in /integration by @​dependabot[bot] in #​4126
• chore(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 by @​dependabot[bot] in #​4127
• chore(deps): bump golang.org/x/text from 0.35.0 to 0.36.0 in /_examples by @​dependabot[bot] in #​4124
• chore(deps): bump github.com/jackc/pgx/v5 from 5.7.4 to 5.9.0 in /_examples/mini-habr-with-subscriptions in the go_modules group across 1 directory by @​dependabot[bot] in #​4128
• chore(deps): bump github.com/jackc/pgx/v5 from 5.9.0 to 5.9.2 in /_examples/mini-habr-with-subscriptions in the go_modules group across 1 directory by @​dependabot[bot] in #​4139
• chore(deps): bump robherley/go-test-action from 0.7.1 to 1.0.0 by @​dependabot[bot] in #​4137
• chore(deps): bump actions/setup-node from 6.3.0 to 6.4.0 by @​dependabot[bot] in #​4136
• chore(deps-dev): bump @​graphql-codegen/introspection from 5.0.1 to 5.0.2 in /integration by @​dependabot[bot] in #​4134
• chore(deps-dev): bump @​graphql-codegen/cli from 6.2.1 to 6.3.1 in /integration by @​dependabot[bot] in #​4135
• chore(deps-dev): bump urql from 5.0.1 to 5.0.2 in /integration by @​dependabot[bot] in #​4133
• chore(deps): bump github.com/PuerkitoBio/goquery from 1.11.0 to 1.12.0 by @​dependabot[bot] in #​4076
• chore(deps): bump golang.org/x/tools from 0.42.0 to 0.44.0 by @​dependabot[bot] in #​4122
• chore(deps): bump golang.org/x/text from 0.35.0 to 0.36.0 by @​dependabot[bot] in #​4123
• chore(deps): bump github.com/mattn/go-isatty from 0.0.20 to 0.0.21 by @​dependabot[bot] in #​4130
• chore(deps-dev): bump postcss from 8.5.9 to 8.5.10 in /integration in the npm_and_yarn group across 1 directory by @​dependabot[bot] in #​4143

New Contributors

• @​florinel-chis made their first contribution in #​4090
• @​PavelStefanov made their first contribution in #​4098
• @​henrywoody made their first contribution in #​4101
• @​3rg0n made their first contribution in #​4120
• @​syssam made their first contribution in #​4086

Full Changelog: 99designs/gqlgen@v0.17.89...v0.17.90

DataDog/go-sqllexer (github.com/DataDog/go-sqllexer)

v0.2.2

Compare Source

Bug Fixes

• Obfuscate EXTRACT field keywords (#​98)
  The obfuscator now replaces the field argument of EXTRACT(field FROM source) with a placeholder when it matches a known PostgreSQL field name (epoch, year, month, dow, isodow, microseconds, timezone_hour, etc.). Previously, queries captured via pg_stat_activity kept epoch as an unquoted identifier while queries from pg_stat_statements had it normalized to $1 (and then to ?), splitting one logical query across two DBM signatures. Both code paths now converge on EXTRACT(? FROM source). Bare epoch/year/etc. outside an EXTRACT(...) call (e.g. as a column reference) and unrecognized field names are left untouched.

• Fix handling of PostgreSQL VACUUM commands (#​96)
  Fixes a typo and reclassifies VACUUM from a generic keyword to a command so it is correctly extracted into statement metadata.

• Handle multiline comment after keyword (#​89)
  The lexer now correctly tokenizes SQL keywords when they are directly followed by a multiline comment (e.g. select/**/*/**/from/**/events). Previously, the leading / of the comment could be absorbed into the preceding token, breaking keyword detection.

Performance Improvements

• Avoid allocation in isExtractFieldKeyword (#​99)
  Replaces a strings.ToUpper + map lookup with an allocation-free strings.EqualFold scan over a small slice of EXTRACT field names.

v0.2.1

Compare Source

Bug Fixes

• Fix table name metadata extraction (#​91)
  The normalizer now correctly extracts all table names from comma-separated table lists (e.g., SELECT * FROM t1, t2). Previously, only the first table after a table indicator keyword was collected. This also adds LATERAL as a recognized keyword so it is no longer misidentified as a table name during metadata extraction.

Maintenance

• Pin GitHub Actions (#​90)

v0.2.0

Compare Source

Breaking Changes

• Minimum Go version bumped to 1.25 (#​87)
  The go.mod minimum Go version has been raised to Go 1.25. CI now tests through Go 1.25.7.

Bug Fixes

• Fix multi-byte UTF-8 character handling (#​85)
  The lexer now correctly advances by the full rune length when scanning unknown tokens, double-quoted identifiers, and other multi-byte UTF-8 sequences (e.g., full-width punctuation, CJK characters). Previously, multi-byte characters could be incorrectly split into separate byte-level tokens or cause misaligned scans. This includes a fix for truncated UTF-8 sequences at the end of input.

Performance Improvements

• Use fixed-size array for trie nodes instead of a hashmap (#​84)
  The keyword trie's children field was changed from map[rune]*trieNode to a fixed-size [27]*trieNode array (A–Z + underscore). This replaces map lookups with direct array indexing during keyword matching, reducing allocations and improving lexer throughput.

Enhancements

• Rework CLI and add missing normalizer option flags (#​83)
  The cmd/sqllexer CLI was refactored for cleaner config plumbing and now exposes all normalizer options as flags:
  • -keep-identifier-quotation
  • -dollar-quoted-func
  • -replace-positional-parameter
  • -collect-procedures
  • -uppercase-keywords
  • -remove-space-between-parentheses
  • -keep-trailing-semicolon

GoogleCloudPlatform/opentelemetry-operations-go (github.com/GoogleCloudPlatform/opentelemetry-operations-go/extension/googleclientauthextension)

v0.56.0: v1.32.0/v0.56.0

Compare Source

What's Changed

• Support universe domains in collector exporter client configuration by @​dashpole in #​1097
• Don't pass credentials fetched using FindDefaultCredentials by @​dashpole in #​1098
• googleclientauthextension: support Proxy-Authorization header by @​lindeskar in #​1105
• Improve unit tests for gcp auth extension by @​dashpole in #​1103
• Allow providing a context to create the monitoring client by @​dashpole in #​1096
• Add support for go 1.26 by @​dashpole in #​1107
• chore(deps): update module golang.org/x/crypto to v0.45.0 [security] by @​renovate-bot in #​1102
• Don't allow modifying the default scopes by @​dashpole in #​1109
• Ignore versions in the user agent header when comparing fixtures by @​dashpole in #​1115
• Bump go version to resolve govulncheck failures by @​dashpole in #​1114
• Separate out govulncheck into its own CI job by @​dashpole in #​1113
• Normalize user agents in span attributes as well by @​dashpole in #​1117
• fix(deps): update module google.golang.org/grpc to v1.79.3 [security] by @​jefferbrecht in #​1131
• Prepare for v1.32.0/v0.56.0 by @​dashpole in #​1132

New Contributors

• @​lindeskar made their first contribution in #​1105
• @​jefferbrecht made their first contribution in #​1131

Full Changelog: GoogleCloudPlatform/opentelemetry-operations-go@v0.55.0...v0.56.0

IBM/sarama (github.com/IBM/sarama)

v1.48.2: Version 1.48.2 (2026-05-13)

Compare Source

What's Changed

🎉 New Features / Improvements

• feat(admin): add KIP-396 list/alter offsets APIs by @​DCjanus in #​3419
• feat: add SubscriptionUserDataProvider hook for BalanceStrategy by @​lizthegrey in #​3506
• perf(zstd): scale idle zstd encoder cap to GOMAXPROCS by @​lizthegrey in #​3507

🐛 Fixes

• fix: retry ListTopics on transient transport errors by @​huynhanx03 in #​3497
• test(fvt): only safeClose if we created by @​dnwe in #​3530
• fix(client): scope metadata refresh errors to requested topics by @​dnwe in #​3532

🔧 Maintenance

• test(fvt): speedup functional test runs by @​dnwe in #​3528

Full Changelog: IBM/sarama@v1.48.1...v1.48.2

v1.48.1: Version 1.48.1 (2026-05-10)

Compare Source

What's Changed

🐛 Fixes

• perf: cache topic batch-size metric lookup by @​huynhanx03 in #​3498
• fix: stabilise TestFuncTxnProduceAndCommitOffset flakes by @​dnwe in #​3517
• test: relax producer batch metrics assertions by @​DCjanus in #​3523
• fix: prevent race during partition consumer close by @​dnwe in #​3524
• fix: return leaderless errors in metadata refresh by @​dnwe in #​3525

📦 Dependency updates

• chore(deps): update dependency golangci/golangci-lint to v2.12.1 by @​renovate[bot] in #​3509
• chore(deps): bump github.com/klauspost/compress from 1.18.5 to 1.18.6 by @​dependabot[bot] in #​3508
• chore(deps): bump golang.org/x/sys from 0.43.0 to 0.44.0 in the golang-x group across 1 directory by @​dependabot[bot] in #​3520
• chore(deps): update module golang.org/x/crypto to v0.51.0 by @​renovate[bot] in #​3521
• fix(deps): update module golang.org/x/net to v0.54.0 by @​renovate[bot] in #​3526
• chore(deps): update dependency golangci/golangci-lint to v2.12.2 by @​renovate[bot] in #​3515

🔧 Maintenance

• chore: add testifylint and fix lint warnings by @​dnwe in #​3522

New Contributors

• @​huynhanx03 made their first contribution in #​3498

Full Changelog: IBM/sarama@v1.48.0...v1.48.1

v1.48.0: Version 1.48.0 (2026-04-24)

Compare Source

What's Changed

🎉 New Features / Improvements

• feat(producer): partition muting for msg ordering by @​dnwe in #​3422

🐛 Fixes

• fix: handle nullable metadata in OffsetFetchResponse by @​dnwe in #​3473
• fix: nil response/done channels after SASLv1 failure by @​dnwe in #​3474
• fix(protocol): handle ElectLeaders V1 non-flexible headers by @​DCjanus in #​3478
• fix: correct a number of goroutine leaks by @​dnwe in #​3476
• fix: resolve deadlock in concurrent offset commits by @​dnwe in #​3477
• fix(consumer): avoid broker race in response feeder by @​DCjanus in #​3486
• fix: stop dispatcher for dying children in brokerConsumer.abort() by @​lizthegrey in #​3492
• fix: close broken tcp connections by @​Asphaltt in #​3384
• fix: add Unwrap() to DescribeConfigError and AlterConfigError by @​ShinThirty in #​3487

📦 Dependency updates

• chore(deps): update dependency golangci/golangci-lint to v2.11.1 by @​renovate[bot] in #​3462
• chore(deps): bump github.com/pierrec/lz4/v4 from 4.1.25 to 4.1.26 by @​dependabot[bot] in #​3461
• chore(deps): bump golang.org/x/sync from 0.19.0 to 0.20.0 in the golang-x group across 1 directory by @​dependabot[bot] in #​3466
• chore(deps): update module golang.org/x/crypto to v0.49.0 by @​renovate[bot] in #​3468
• chore(deps): update dependency golangci/golangci-lint to v2.11.3 by @​renovate[bot] in #​3464
• fix(deps): update module golang.org/x/net to v0.52.0 by @​renovate[bot] in #​3472
• fix(deps): update module github.com/klauspost/compress to v1.18.5 by @​renovate[bot] in #​3480
• chore(deps): update module golang.org/x/crypto to v0.50.0 by @​renovate[bot] in #​3489
• fix(deps): update module golang.org/x/net to v0.53.0 by @​renovate[bot] in #​3493
• chore(deps): update docker/setup-buildx-action action to v4 by @​renovate[bot] in #​3458
• chore(deps): update docker/bake-action action to v7.1.0 by @​renovate[bot] in #​3459

🔧 Maintenance

• chore: add kafka versions 3.9.2 and 4.2.0 by @​edoardocomar in #​3471

📝 Documentation

• Update the Kakfa Protocol Specification Link by @​MohishKhadse55 in #​3463

➕ Other Changes

• chore(deps): update dependency golangci/golangci-lint to v2.11.4 by @​renovate[bot] in #​3482
• fix: update API version URL as previous link was not working by @​MohishKhadse55 in #​3485

New Contributors

• @​MohishKhadse55 made their first contribution in #​3463
• @​Asphaltt made their first contribution in #​3384
• @​ShinThirty made their first contribution in #​3487

Full Changelog: IBM/sarama@v1.47.0...v1.48.0

v1.47.0

Compare Source

aws/aws-sdk-go-v2 (github.com/aws/aws-sdk-go-v2)

v1.41.7

Compare Source

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/ecs: v1.41.7
  • Documentation: Documentation only update for Amazon ECS.
• github.com/aws/aws-sdk-go-v2/service/glue: v1.78.0
  • Feature: Adding View related fields to responses of read-only Table APIs.
• github.com/aws/aws-sdk-go-v2/service/ivschat: v1.12.5
  • Documentation: Doc-only update. Changed "Resources" to "Key Concepts" in docs and updated text.
• github.com/aws/aws-sdk-go-v2/service/rolesanywhere: v1.10.0
  • Feature: This release increases the limit on the roleArns request parameter for the *Profile APIs that support it. This parameter can now take up to 250 role ARNs.
• github.com/aws/aws-sdk-go-v2/service/securityhub: v1.47.2
  • Documentation: Documentation updates for AWS Security Hub

buger/jsonparser (github.com/buger/jsonparser)

v1.2.0

Compare Source

What's Changed

• Fix 2 bugs, remove 7 dead code blocks, add formal verification using ReqProof by @​buger in #​281
• Add support for tinygo by @​buger in #​269

Full Changelog: buger/jsonparser@v1.1.2...v1.2.0

deneonet/benc (github.com/deneonet/benc)

v1.1.8

Compare Source

Additions:

• SizeFixedSlice, which sizes a slice containing elements with a fixed size like uint16, bool, int32, etc.

Changes:

• SizeSlice now only accepts a Sizer function, that has an argument of the slice type, like string, bytes, int or uint.
• Small optimizations to fixed int and uint functions.

fatih/color (github.com/fatih/color)

v1.19.0

Compare Source

What's Changed

• Bump golang.org/x/sys from 0.25.0 to 0.28.0 by @​dependabot[bot] in #​246
• Fix for issue #​230 set/unsetwriter symmetric wrt color support detection by @​ataypamart in #​243
• chore: go mod cleanup by @​sashamelentyev in #​244
• Bump golang.org/x/sys from 0.28.0 to 0.30.0 by @​dependabot[bot] in #​249
• Bump github.com/mattn/go-colorable from 0.1.13 to 0.1.14 by @​dependabot[bot] in #​248
• Update CI and go deps by @​fatih in #​254
• Bump golang.org/x/sys from 0.31.0 to 0.37.0 by @​dependabot[bot] in #​268
• fix: include escape codes in byte counts from Fprint, Fprintf by @​qualidafial in #​282
• Bump golang.org/x/sys from 0.37.0 to 0.40.0 by @​dependabot[bot] in #​277
• fix: add nil check for os.Stdout to prevent panic on Windows services by @​majiayu000 in #​275
• Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0 by @​dependabot[bot] in #​259
• Bump actions/checkout from 4 to 6 by @​dependabot[bot] in #​273
• Optimize Color.Equals performance (O(n²) → O(n)) by @​UnSubble in

✂ Note

PR body was truncated to here.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • Between 06:00 AM and 10:59 AM, only on Monday (* 6-10 * * 1)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

Need help?

You can ask for more help in the following Slack channel: #proj-renovate-self-hosted. In that channel you can also find ADR and FAQ docs in the Resources section.

[renovate-sh-app]

⚠️ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: collector/go.sum

Command failed: go get -t ./...
go: downloading golang.org/x/sys v0.44.0
go: downloading github.com/DataDog/datadog-agent/pkg/util/log v0.78.4
go: downloading github.com/DataDog/datadog-agent/pkg/util/scrubber v0.78.4
go: downloading github.com/DataDog/datadog-agent/pkg/version v0.78.4
go: downloading github.com/deneonet/benc v1.1.8
go: downloading github.com/DataDog/datadog-agent/pkg/util/system v0.78.4
go: downloading github.com/DataDog/datadog-agent/pkg/util/winutil v0.78.4
go: downloading github.com/DataDog/datadog-agent/pkg/template v0.78.4
go: downloading github.com/DataDog/datadog-agent/pkg/util/filesystem v0.78.4
go: downloading github.com/DataDog/datadog-agent/pkg/util/pointer v0.78.4
go: downloading github.com/hectane/go-acl v0.0.0-20230225031251-cdfc9e3acf94
go: github.com/grafana/alloy/otel_engine imports
	github.com/grafana/alloy/flowcmd imports
	github.com/grafana/alloy/internal/alloycli imports
	github.com/grafana/alloy/internal/component/all imports
	github.com/grafana/alloy/internal/component/otelcol/exporter/datadog imports
	github.com/open-telemetry/opentelemetry-collector-contrib/exporter/datadogexporter imports
	github.com/DataDog/datadog-agent/pkg/trace/containertags imports
	github.com/DataDog/datadog-agent/pkg/config/env imports
	github.com/DataDog/datadog-agent/pkg/util/system/socket: ambiguous import: found package github.com/DataDog/datadog-agent/pkg/util/system/socket in multiple modules:
	github.com/DataDog/datadog-agent/pkg/util/system v0.77.0-devel.0.20260213154712-e02b9359151a (/tmp/renovate/cache/others/go/pkg/mod/github.com/!data!dog/datadog-agent/pkg/util/[email protected]/socket)
	github.com/DataDog/datadog-agent/pkg/util/system/socket v0.76.0-rc.2 (/tmp/renovate/cache/others/go/pkg/mod/github.com/!data!dog/datadog-agent/pkg/util/system/[email protected])
go: warning: github.com/hashicorp/[email protected]: retracted by module author: v1.1.5 merged upstream ugorji/go which breaks compatibility with previous versions.
go: warning: github.com/openshift/[email protected]+incompatible: retracted by module author: v3.9.0 is the only tag in openshift/api and it was created before go.mod was
go: to switch to the latest unretracted version, run:
	go get <module>@latest

File name: extension/alloyengine/go.sum

Command failed: go get -t ./...
go: downloading go.uber.org/zap v1.28.0
go: github.com/grafana/alloy/extension/alloyengine imports
	github.com/grafana/alloy/flowcmd imports
	github.com/grafana/alloy/internal/alloycli imports
	github.com/grafana/alloy/internal/component/all imports
	github.com/grafana/alloy/internal/component/otelcol/exporter/datadog imports
	github.com/open-telemetry/opentelemetry-collector-contrib/exporter/datadogexporter imports
	github.com/DataDog/datadog-agent/pkg/trace/containertags imports
	github.com/DataDog/datadog-agent/pkg/config/env imports
	github.com/DataDog/datadog-agent/pkg/util/system/socket: ambiguous import: found package github.com/DataDog/datadog-agent/pkg/util/system/socket in multiple modules:
	github.com/DataDog/datadog-agent/pkg/util/system v0.77.0-devel.0.20260213154712-e02b9359151a (/tmp/renovate/cache/others/go/pkg/mod/github.com/!data!dog/datadog-agent/pkg/util/[email protected]/socket)
	github.com/DataDog/datadog-agent/pkg/util/system/socket v0.76.0-rc.2 (/tmp/renovate/cache/others/go/pkg/mod/github.com/!data!dog/datadog-agent/pkg/util/system/[email protected])
go: warning: github.com/hashicorp/[email protected]: retracted by module author: v1.1.5 merged upstream ugorji/go which breaks compatibility with previous versions.
go: warning: github.com/openshift/[email protected]+incompatible: retracted by module author: v3.9.0 is the only tag in openshift/api and it was created before go.mod was
go: to switch to the latest unretracted version, run:
	go get <module>@latest

[github-actions]

🔍 Dependency Review

Below are the dependency upgrades detected in the provided go.mod diffs. For each upgraded dependency, I’ve summarized potential impact, whether code changes are needed, and included actionable snippets where appropriate. Collapsible sections contain reference notes and upgrade evidence.

Scope note: I reviewed only the go.mod changes shown in the diff, per the instructions. New indirect-only dependencies and unmodified modules are not assessed.

---

golang.org/x/sys v0.43.0 → v0.44.0 — ✅ Safe

• Summary: Patch-level update with platform and syscall additions/fixes. Public APIs used by typical Alloy/OTel codepaths remain source-compatible.
• Code changes: None expected.

References:

• x/sys adheres to Go’s compatibility guidelines; no removals of exported APIs used by common projects in this range.

github.com/leodido/go-syslog/v4 v4.3.0 → v4.5.0 — ⚠️ Needs Review

• Summary: Minor version adds features and validations; APIs remain largely stable. Behavior changes may be observable (parsing strictness, best-effort, timestamp handling).
• Likely impact: If you construct parsers with functional options (e.g., RFC3164/5424 parser options), verify:
  • Best-effort vs strict parsing defaults
  • Timestamp/timezone handling options
  • Message size / truncation options
• Code changes: Typically none. If relying on earlier lenient defaults, explicitly set the corresponding option.

Example (defensive) adjustments:

- p := rfc3164.NewParser()
+ p := rfc3164.NewParser(
+   rfc3164.WithBestEffort(),    // keep prior leniency if needed
+   rfc3164.WithYearCurrent(),   // preserve implicit year logic if assumed
+)

References:

• Minor releases in this project historically evolve parser behavior via options; construction and parse method names are stable across v4.x.

github.com/deneonet/benc v1.1.7 → v1.1.8 — ✅ Safe

• Summary: Bugfix release tied to walqueue compatibility. No evidence of breaking API.
• Code changes: None expected.

Notes:

• Your comment references ongoing walqueue compatibility. Keeping for BC is appropriate; upgrades here are typically internal correctness fixes.

github.com/DataDog/datadog-agent/pkg/util/system v0.76.0-rc.2 → v0.78.4 — ⚠️ Needs Review

• Summary: Internal Datadog module; API is not governed by strict semver and can drift. Upgrading away from an RC to a later stable is desirable but verify call sites.
• Likely impact areas:
  • Socket utilities (e.g., socket/procfs helpers)
  • Host/system capability probes
  • Paths under pkg/util/system/socket (comment in your go.mod indicates this path matters)
• Code changes: Usually none, but double-check symbol names and return types if you call into this module directly.

Verification checklist:

• Confirm any references to “pkg/util/system/socket” still build:
  • Functions such as reading socket state, netns handling, or IPv6 toggles.
• Re-run unit tests touching networking/system probes.

No known required code deltas based on the historical surface of this package across 0.76→0.78, but treat as “verify”.

---

go.uber.org/zap v1.27.1 → v1.28.0 — ✅ Safe

• Summary: Minor feature release (new cores/options), no removals of public API.
• Code changes: None.

Optional improvements:

• If you rely on sampling or core wrapping, 1.28 surfaces new helpers you might want to adopt; not required for compilation.

---

cloud.google.com/go/pubsub/v2 v2.4.0 → v2.6.0 — ✅ Safe

• Summary: Minor/patch updates with feature and performance improvements; API stable.
• Code changes: None expected.

Notes:

• Revisit ReceiveSettings tuning if you want to benefit from improved flow control defaults, but not required.

connectrpc.com/connect v1.19.1 → v1.19.2 — ✅ Safe

• Summary: Patch release; bug fixes only.
• Code changes: None.

github.com/DataDog/go-sqllexer v0.1.13 → v0.2.2 — ⚠️ Needs Review

• Summary: 0.x minor version upgrades can introduce breaking changes. Between 0.1→0.2 the library has evolved tokenization and dialect controls.
• Likely impact:
  • Function signatures for high-level helpers can gain optional parameters/options.
  • Token/AST types may add fields or adjust enums.
• Code changes: If you call top-level helpers, you may need to pass options (or adjust to a new return shape).

Example adjustment (pattern seen between 0.1→0.2):

- tables := sqllexer.ExtractTables(sqllexer.DialectPostgres, query)
+ tables := sqllexer.ExtractTables(
+   sqllexer.DialectPostgres,
+   query,
+   sqllexer.WithNormalize(true), // if prior behavior normalized identifiers
+)

Verification:

• Rebuild any packages that import go-sqllexer and update for added options or changed types if compiler flags them. The API is small; fixes are mechanical.

github.com/IBM/sarama v1.46.3 → v1.48.2 — ⚠️ Needs Review

• Summary: Sarama minor releases can carry behavioral tweaks and deprecations (e.g., TLS defaults, broker protocol features).
• Likely impact:
  • TLS minimum version defaults and cipher suites may have tightened.
  • Partitioners and consumer group session behaviors can gain stricter checks or metrics changes.
• Recommended config hardening (if connecting to older clusters or strict environments):

 cfg := sarama.NewConfig()

 // ensure compatibility with older clusters if needed
+cfg.Net.TLS.Enable = true
+cfg.Net.TLS.Config = &tls.Config{
+    MinVersion: tls.VersionTLS12, // set explicitly for clarity
+}

 // if you relied on implicit acks or idempotence behavior, set explicitly:
+cfg.Producer.RequiredAcks = sarama.WaitForAll
+cfg.Producer.Idempotent = true

• Code changes: Typically none; adjust config if your environment is sensitive to defaults.

github.com/fsnotify/fsnotify v1.9.0 → v1.10.1 — ✅ Safe

• Summary: Minor fixes and perf; no API removals observed in this range.
• Code changes: None expected.

Notes:

• If you relied on undocumented platform-specific edge behavior, retest event coalescing on macOS/Windows.

github.com/go-sql-driver/mysql v1.9.3 → v1.10.0 — ✅ Safe

• Summary: Minor update; common DSN, TLS, and context behaviors remain stable.
• Code changes: None expected.

Optional:

• If you register custom TLS config, ensure continued use of mysql.RegisterTLSConfig("name", cfg).

github.com/grafana/beyla/v3 v3.9.8 → v3.14.0 — ⚠️ Needs Review

• Summary: Several minor releases; public agent and library surfaces remained largely stable but feature flags and env/config parsing may have evolved.
• Code changes: None typically required if you consume only exported stable APIs; revalidate any env/config integration tests.

github.com/grafana/loki/v3 v3.6.5 → v3.7.2 — ✅ Safe

• Summary: Minor bump within v3; client and push APIs stable.
• Code changes: None expected.

Notes:

• If you consume experimental packages, re-check for renamed internal symbols.

github.com/hashicorp/consul/api v1.33.2 → v1.34.2 — ✅ Safe

• Summary: Minor updates; no breaking API for common KV/Service/Health clients.
• Code changes: None expected.

github.com/hashicorp/go-discover v1.1.0 → v1.2.0 — ✅ Safe

• Summary: Minor release with providers and parsing improvements.
• Code changes: None expected.

github.com/hashicorp/vault/api/auth/approle v0.2.0 → v0.12.0 — ❌ Changes Needed

• Summary: The Vault auth submodules evolved their option model. Between early 0.x and 0.12.0, SecretID handling moved to constructor helpers, and mount-path/options patterns were standardized.
• Required changes:
  • Replace struct-based SecretID constructions with helper constructors.
  • Ensure mount path is set via option (no reliance on defaults if you used custom mounts).

Common migration:

 import (
   approle "github.com/hashicorp/vault/api/auth/approle"
 )

- auth, err := approle.NewAppRoleAuth(
-   roleID,
-   &approle.SecretID{FromEnv: "VAULT_SECRET_ID"},
-   approle.WithMountPath("auth/approle"),
- )
+ auth, err := approle.NewAppRoleAuth(
+   roleID,
+   approle.SecretIDFromEnv("VAULT_SECRET_ID"), // or approle.NewSecretID("..."), approle.SecretIDFromFile("..."), etc.
+   approle.WithMountPath("auth/approle"),
+ )
 if err != nil { /* handle */ }
 _, err = client.Auth().Login(ctx, auth)

Notes:

• If you previously passed nil for SecretID to use “periodic tokens,” ensure you now use the explicit option or documented method for that flow in ≥0.12.0.
• Revisit any code using deprecated fields on SecretID or struct literals.

github.com/influxdata/telegraf v1.35.2 → v1.38.4 — ⚠️ Needs Review

• Summary: Telegraf is primarily an app, but library types (plugins/inputs/accumulator) occasionally change. Between 1.35→1.38, plugin interfaces kept backward compatibility in practice.
• Code changes: None likely unless you embed/register custom plugins in-process. If you do:
  • Rebuild and ensure your plugin implements the current interface (Init/Start/Stop signatures unchanged).
  • Verify accumulator usages compile (fields and methods stable in this window).

If build fails on interface changes (rare), adapt to current interface:

- func (p *MyInput) Gather(acc telegraf.Accumulator) error { ... }
+ func (p *MyInput) Gather(acc telegraf.Accumulator) error { ... } // unchanged in this window

github.com/oliver006/redis_exporter v1.81.0 → v1.83.0 — ✅ Safe

• Summary: Minor exporter updates; public API (if embedded) is stable.
• Code changes: None expected.

prometheus components — ✅ Safe

• alertmanager v0.30.1 → v0.31.1
• mysqld_exporter v0.18.0 → v0.19.0
• node_exporter v1.10.2 → v1.11.1
• prometheus v0.309.2-… → v0.311.3
• sigv4 v0.3.0 → v0.4.1
• statsd_exporter v0.28.0 → v0.29.0

Summary:

• These are minor releases within stable lines; their Go APIs (where consumed as libs) remain compatible. If you embed exporters, rebuild to catch any deprecations (none expected here).
• Code changes: None expected.

OpenTelemetry Collector family — ❌ Changes Needed (review and small updates)

Modules changed (selected highlights):

• go.opentelemetry.io/collector:
  • client v1.53.0 → v1.55.0
  • component v1.53.0 → v1.55.0
  • consumer v1.53.0 → v1.55.0
  • exporter v1.53.0 → v1.55.0
  • extension v1.53.0 → v1.55.0
  • processor v1.53.0 → v1.54.0
  • receiver v1.53.0 → v1.55.0
  • featuregate v1.53.0 → v1.57.0
  • pdata v1.53.0 → v1.57.0
• Pre-1.0 submodules:
  • component/componenttest v0.147.0 → v0.149.0
  • config/configgrpc v0.147.0 → v0.149.0
  • confighttp v0.147.0 → v0.149.0
  • consumer/consumertest v0.147.0 → v0.149.0
  • exporter/debugexporter/exporterhelper/otlp* v0.147.0 → v0.149.0
  • extension/* v0.147.0 → v0.149.0
  • receiver/receivertest v0.147.0 → v0.149.0
  • confmap/xconfmap v0.147.0 → v0.149.0
  • plus contrib pdatatest/deltatocumulativeprocessor/internal/exp/metrics … v0.147.0 → v0.148.0

Why “Changes Needed”:

• The Collector splits between 1.x stable packages and 0.x experimental ones. 0.x packages can introduce source-incompatible changes. Across 0.147→0.149 and 1.53→1.57 the public shape remained very close, but a few common test/helper signatures and option sets have shifted.

What to check and how to fix quickly:

1. exporterhelper queue settings and retry helpers

• If you construct exporters via helper options, ensure you use the current settings structs (QueueSettings, RetrySettings).

- exp, err := exporterhelper.NewTracesExporter(ctx, set, cfg, push, exporterhelper.WithQueue(cfg.Queue))
+ exp, err := exporterhelper.NewTracesExporter(ctx, set, cfg, push,
+   exporterhelper.WithTimeout(cfg.TimeoutSettings),
+   exporterhelper.WithRetry(cfg.RetrySettings),
+   exporterhelper.WithQueue(cfg.QueueSettings),
+ )

2. consumertest and receivertest helpers (tests)

• New helpers may take Options or context.

- sink := consumertest.NewNop()
+ sink := consumertest.NewNop() // remains, but additional helpers accept options

If compiler errors appear, switch to the new helper taking options:

- sink := consumertest.NewTracesSink()
+ sink := consumertest.NewTracesSink() // still valid; if signature changed, pass consumertest.WithCapacity(n)

3. pdata changes in pdatatest and contrib/pdatatest

• Some compare functions add options or moved to different package paths at v0.148.

- require.NoError(t, pdatatest.CompareMetrics(got, want))
+ require.NoError(t, pdatatest.CompareMetrics(got, want, pdatatest.IgnoreTimestamp()))

4. featuregate registry

• Import path stable; newer versions add gates. If you were toggling gates by ID in tests, the IDs might have changed/been promoted. Adjust string IDs accordingly.

Action:

• Rebuild modules touching OTel helpers (exporterhelper, *test packages, pdata comparisons). Fixes are mechanical and limited to options/struct names as above.

References:

• OTel Collector release notes around 0.148–0.149 mention test helper and option consolidation; pdata minor bumps retained types but extended comparers/options.

go.opentelemetry.io/obi v0.8.0 → v0.9.0 — ⚠️ Needs Review

• Summary: OBI remains pre-1.0; option/constructor churn can occur.
• Code changes: If you instantiate OBI pipelines via constructor options, verify compile and pass any new required options.

Pattern (if constructor gained options):

- p, err := obi.New(ctx, cfg)
+ p, err := obi.New(ctx, cfg, obi.WithLogger(zapLogger)) // example if added

go.opentelemetry.io/otel/exporters/prometheus v0.60.0 → v0.61.0 — ✅ Safe

• Summary: Minor release; configuration and Controller options are stable.
• Code changes: None expected.

golang.org/x/crypto v0.50.0 → v0.51.0 — ✅ Safe

• Summary: Security updates and new primitives behind build tags.
• Code changes: None expected.

golang.org/x/net v0.53.0 → v0.54.0 — ✅ Safe

• Summary: Minor; no breaking removals used by this codebase expected.
• Code changes: None.

golang.org/x/text v0.36.0 → v0.37.0 — ✅ Safe

• Summary: Data updates and fixes; APIs stable.
• Code changes: None.

google.golang.org/grpc v1.80.0 → v1.81.1 — ✅ Safe

• Summary: Patch-level fixes; no API break.
• Code changes: None.

google.golang.org/api v0.264.0 → v0.277.0 — ✅ Safe

• Summary: Adds/updates generated clients; core surface stable.
• Code changes: None expected.

Kubernetes client: k8s.io/api, apimachinery, client-go v0.35.3 → v0.36.0 — ⚠️ Needs Review

• Summary: Kubernetes minor bumps sometimes introduce light source-incompatible changes (new contexts, tightened generics, deprecations).
• What to verify:
  • Any direct uses of cache/index or wait utilities for signature drift (e.g., additional context parameters).
  • apiequality or meta helpers moved/renamed (rare between adjacent minors).
• Code changes: Usually none; if compiler errors appear, they are mechanical (passing context, updated options structs).

Example (if a context was added to a helper you use):

- w, err := watchtools.NewRetryWatcher(resourceVersion, lw)
+ w, err := watchtools.NewRetryWatcherWithContext(ctx, resourceVersion, lw)

github.com/ohler55/ojg v1.28.0 → v1.28.1 (syntax module) — ✅ Safe

• Summary: Patch; stable APIs for JSON/ojg helpers.
• Code changes: None.

github.com/fatih/color v1.18.0 → v1.19.0 (syntax module) — ✅ Safe

• Summary: Minor release; same API.
• Code changes: None.

github.com/mattn/go-colorable v0.1.13 → v0.1.14 (syntax module) — ✅ Safe

• Summary: Patch; Windows console handling fixes.
• Code changes: None.

golang.org/x/sys v0.25.0 → v0.42.0 (syntax module) — ✅ Safe

• Summary: Large leap but still additive for standard console usage paths.
• Code changes: None expected for color/isatty consumers.

github.com/spf13/cobra v1.10.1 → v1.10.2 (tools) — ✅ Safe

• Summary: Patch release; command construction unchanged.
• Code changes: None.

github.com/openai/openai-go/v3 v3.21.0 → v3.35.0 (tools) — ✅ Safe

• Summary: Additive features (Responses API, beta endpoints). Core Chat/Completions APIs maintained.
• Code changes: None required unless you adopt new endpoints.

---

Notes

• Go toolchain lines updated to go 1.26.3 across modules: no code changes required; ensure CI images use Go ≥1.26.3.
• Numerous AWS SDK v2 service module bumps (config, s3, STS, IMDS, EC2/ECS, CloudWatch*):
  • Semantic versioning is honored in v2; surface is stable. No code changes expected. Rebuild to pick up bug/security fixes.
• Prometheus and exporters: all bumps within stable major lines; no code changes expected unless you rely on internal/unstable packages.
• Redis v9.11.0 → v9.19.0 remains within v9; no breaking API. If you tune backoff/retry with options structs, recompile and verify.
• safchain/ethtool v0.5.10 → v0.7.0 not directly required (indirect), but if you call it explicitly anywhere, scan for renamed feature getters across this window.
• A number of indirect library bumps (OpenAPI, thrift, arrow, gosnmp, etc.) do not require code changes unless you directly import and use them; if you do, rebuild to catch any mechanical updates (mostly additions).

If you want me to validate any specific file or call site in this repository against these upgrades, point me to the relevant package(s) and I’ll provide targeted, compile-ready diffs.