Sourced from grpc-context's releases.

v1.50.2

Bug fixes

gcp-observability: Supports period(.) in the service name part of regular expression for a fully-qualified method to accept "package.service"

v1.50.1

gcp-observability: support new configuration defined in grpc-gcp-observability public preview user guide

v1.50.0

New Features

• okhttp: Added connection management features to okhttp server, including maxConnectionIdle(), permitKeepAliveTime(), and permitKeepAliveWithoutCalls() (#9494, #9544)
• binder: Add SecurityPolicies for checking device owner/profile owner (#9428)

API Changes

• api: Add LoadBalancer.acceptResolvedAddresses() (#9498). The method is like handleResolvedAddresses() but returns a boolean of whether the addresses and configuration were accepted. Not accepting the update triggers the NameResolver to retry after a delay. We are not yet encouraging migration to this method, as there is still a second future API change
• core: add CallOptions to CallCredentials.RequestInfo (#9538)

Bug Fixes

• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9504)
• core: Ensure that context cancellationCause is set (#9501)
• core: Update outlier detection max ejection logic to allow exceeding the limit by one, to match Envoy. (#9489, #9492)
• core: outlier detection to honor min host request volume (#9490)
• okhttp: Add timeout for HTTP CONNECT proxy handshake (#9586)
• xds: ringhash policy in TRANSIENT_FAILURE should not attempt connecting when already in connecting (#9535). With workloads where most requests have the same hash, ring hash should behave more like pick-first of slowly trying backends

Dependencies

• netty: upgrade netty from 4.1.77.Final to 4.1.79.Final and tcnative from 2.0.53 to 2.0.54 (#9451)

Acknowledgements

@​cpovirk @​prateek-0 @​sai-sunder-s

v1.49.2

Dependencies

• Bump protobuf to 3.21.7

v1.49.1

Bug Fixes

• xds: Fix a bug in ring-hash load balancing policy that, during TRANSIENT_FAILURE state, it might cause unnecessary internal connection requests on subchannels. (#9537)
• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9524)

Behavior Changes

• core: Update outlier detection max ejection logics, and min host request volume logics. (grpc/grpc-java#9550, #9551, #9552)

v1.49.0

New Features

• okhttp: Add OkHttpServerBuilder. The server can be used directly, but is not yet available via ServerBuilder.forPort() and Grpc.newServerBuilderForPort(). It passes our tests, but has seen no real-world use. It is also lacking connection management features
• okhttp: Add support for byte-based private keys via TlsChannelCredentials and TlsServerCredentials

... (truncated)

• e900f17 Bump version to 1.51.0
• 976ab8d Update README etc to reference 1.51.0
• a82ea0c Fix jmh -PjmhIncludeSingleClass
• 0d44203 xds: Delay priority LB updates from children (#9670)
• ba182c3 core: round_robin to use acceptResolvedAddresses()
• c1d0e14 xds: Fake control plane test setup code to Rules (#9666)
• 39c2646 xds: least_request LB to use acceptResolvedAddresses() (#9616)
• a65ecef xds: ring_hash to use acceptResolvedAddresses() (#9617)
• a97db60 c2p resolver: use federation if enabled via env var (#9660)
• 47ddfa4 okhttp: add maxConnectionAge and maxConnectionAgeGrace (#9649)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.50.0

New Features

• okhttp: Added connection management features to okhttp server, including maxConnectionIdle(), permitKeepAliveTime(), and permitKeepAliveWithoutCalls() (#9494, #9544)
• binder: Add SecurityPolicies for checking device owner/profile owner (#9428)

API Changes

• api: Add LoadBalancer.acceptResolvedAddresses() (#9498). The method is like handleResolvedAddresses() but returns a boolean of whether the addresses and configuration were accepted. Not accepting the update triggers the NameResolver to retry after a delay. We are not yet encouraging migration to this method, as there is still a second future API change
• core: add CallOptions to CallCredentials.RequestInfo (#9538)

Bug Fixes

• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9504)
• core: Ensure that context cancellationCause is set (#9501)
• core: Update outlier detection max ejection logic to allow exceeding the limit by one, to match Envoy. (#9489, #9492)
• core: outlier detection to honor min host request volume (#9490)
• okhttp: Add timeout for HTTP CONNECT proxy handshake (#9586)
• xds: ringhash policy in TRANSIENT_FAILURE should not attempt connecting when already in connecting (#9535). With workloads where most requests have the same hash, ring hash should behave more like pick-first of slowly trying backends

Dependencies

• netty: upgrade netty from 4.1.77.Final to 4.1.79.Final and tcnative from 2.0.53 to 2.0.54 (#9451)

Acknowledgements

@​cpovirk @​prateek-0 @​sai-sunder-s

v1.49.2

Dependencies

• Bump protobuf to 3.21.7

v1.49.1

Bug Fixes

• xds: Fix a bug in ring-hash load balancing policy that, during TRANSIENT_FAILURE state, it might cause unnecessary internal connection requests on subchannels. (#9537)
• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9524)

Behavior Changes

• core: Update outlier detection max ejection logics, and min host request volume logics. (grpc/grpc-java#9550, #9551, #9552)

v1.49.0

New Features

• okhttp: Add OkHttpServerBuilder. The server can be used directly, but is not yet available via ServerBuilder.forPort() and Grpc.newServerBuilderForPort(). It passes our tests, but has seen no real-world use. It is also lacking connection management features
• okhttp: Add support for byte-based private keys via TlsChannelCredentials and TlsServerCredentials
• core: New outlier detection load balancer
• googleapis: google-c2p resolver is now stabilized

Bug Fixes

• core: Fix retry causing memory leak for canceled RPCs. (#9360)
• core: Use SyncContext for InProcess transport callbacks to avoid deadlocks. This fixes the long-standing issue #3084 which prevented using directExecutor() in some tests using streaming RPCs
• core: Disable retries with in-process transport by default (#9361). In-process does not compute message sizes so can retain excessive amounts of memory
• bazel: Use valid target name for services and xds when overriding Maven targets (#9422). This fixes an error of the form no such target '@io_grpc_grpc_java//services:services' for services and missing ORCA classes for xds. The wrong target names were introduced in 1.47.0

... (truncated)

• a07c5a1 Bump version to 1.50.2
• 49e13f2 Update README etc to reference 1.50.2
• a541fca add period to service filter regular expression in logging config (#9631) (#9...
• 65677d0 Bump version to 1.50.2-SNAPSHOT
• 25a0e07 Bump version to 1.50.1
• 9d8e9c4 Update README etc to reference 1.50.1
• befbd85 gcp-observability: updated config to public preview config (#9622)
• 85d6b80 gcp-observability: update observability logging proto (#9608)
• 615e820 Bump version to 1.50.1-SNAPSHOT
• df9670d Bump version to 1.50.0
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.50.0

New Features

• okhttp: Added connection management features to okhttp server, including maxConnectionIdle(), permitKeepAliveTime(), and permitKeepAliveWithoutCalls() (#9494, #9544)
• binder: Add SecurityPolicies for checking device owner/profile owner (#9428)

API Changes

• api: Add LoadBalancer.acceptResolvedAddresses() (#9498). The method is like handleResolvedAddresses() but returns a boolean of whether the addresses and configuration were accepted. Not accepting the update triggers the NameResolver to retry after a delay. We are not yet encouraging migration to this method, as there is still a second future API change
• core: add CallOptions to CallCredentials.RequestInfo (#9538)

Bug Fixes

• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9504)
• core: Ensure that context cancellationCause is set (#9501)
• core: Update outlier detection max ejection logic to allow exceeding the limit by one, to match Envoy. (#9489, #9492)
• core: outlier detection to honor min host request volume (#9490)
• okhttp: Add timeout for HTTP CONNECT proxy handshake (#9586)
• xds: ringhash policy in TRANSIENT_FAILURE should not attempt connecting when already in connecting (#9535). With workloads where most requests have the same hash, ring hash should behave more like pick-first of slowly trying backends

Dependencies

• netty: upgrade netty from 4.1.77.Final to 4.1.79.Final and tcnative from 2.0.53 to 2.0.54 (#9451)

Acknowledgements

@​cpovirk @​prateek-0 @​sai-sunder-s

v1.49.2

Dependencies

• Bump protobuf to 3.21.7

v1.49.1

Bug Fixes

• xds: Fix a bug in ring-hash load balancing policy that, during TRANSIENT_FAILURE state, it might cause unnecessary internal connection requests on subchannels. (#9537)
• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9524)

Behavior Changes

• core: Update outlier detection max ejection logics, and min host request volume logics. (grpc/grpc-java#9550, #9551, #9552)

v1.49.0

New Features

• okhttp: Add OkHttpServerBuilder. The server can be used directly, but is not yet available via ServerBuilder.forPort() and Grpc.newServerBuilderForPort(). It passes our tests, but has seen no real-world use. It is also lacking connection management features
• okhttp: Add support for byte-based private keys via TlsChannelCredentials and TlsServerCredentials
• core: New outlier detection load balancer
• googleapis: google-c2p resolver is now stabilized

Bug Fixes

• core: Fix retry causing memory leak for canceled RPCs. (#9360)
• core: Use SyncContext for InProcess transport callbacks to avoid deadlocks. This fixes the long-standing issue #3084 which prevented using directExecutor() in some tests using streaming RPCs
• core: Disable retries with in-process transport by default (#9361). In-process does not compute message sizes so can retain excessive amounts of memory
• bazel: Use valid target name for services and xds when overriding Maven targets (#9422). This fixes an error of the form no such target '@io_grpc_grpc_java//services:services' for services and missing ORCA classes for xds. The wrong target names were introduced in 1.47.0

... (truncated)

• 25a0e07 Bump version to 1.50.1
• 9d8e9c4 Update README etc to reference 1.50.1
• befbd85 gcp-observability: updated config to public preview config (#9622)
• 85d6b80 gcp-observability: update observability logging proto (#9608)
• 615e820 Bump version to 1.50.1-SNAPSHOT
• df9670d Bump version to 1.50.0
• 3aa8868 Update README etc to reference 1.50.0
• 69e86b9 okhttp: Add client transport proxy socket timeout (#9586)
• ce5f789 Use Protobuf 21.7 in our code generator
• d211b54 Bump Protobuf to 3.21.7
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.49.2

Dependencies

• Bump protobuf to 3.21.7

v1.49.1

Bug Fixes

• xds: Fix a bug in ring-hash load balancing policy that, during TRANSIENT_FAILURE state, it might cause unnecessary internal connection requests on subchannels. (#9537)
• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9524)

Behavior Changes

• core: Update outlier detection max ejection logics, and min host request volume logics. (grpc/grpc-java#9550, #9551, #9552)

v1.49.0

New Features

• okhttp: Add OkHttpServerBuilder. The server can be used directly, but is not yet available via ServerBuilder.forPort() and Grpc.newServerBuilderForPort(). It passes our tests, but has seen no real-world use. It is also lacking connection management features
• okhttp: Add support for byte-based private keys via TlsChannelCredentials and TlsServerCredentials
• core: New outlier detection load balancer
• googleapis: google-c2p resolver is now stabilized

Bug Fixes

• core: Fix retry causing memory leak for canceled RPCs. (#9360)
• core: Use SyncContext for InProcess transport callbacks to avoid deadlocks. This fixes the long-standing issue #3084 which prevented using directExecutor() in some tests using streaming RPCs
• core: Disable retries with in-process transport by default (#9361). In-process does not compute message sizes so can retain excessive amounts of memory
• bazel: Use valid target name for services and xds when overriding Maven targets (#9422). This fixes an error of the form no such target '@io_grpc_grpc_java//services:services' for services and missing ORCA classes for xds. The wrong target names were introduced in 1.47.0
• xds: channel_id hash policy now uses a random per-channel id instead of an incrementing one. The incrementing id was the same for every process of a binary, which was not the intention (#9453)
• core: Fix a bug that the server stream should not deliver halfClose() when the call is immediately canceled. The bug causes a bad message INTERNAL, desc: Half-closed without a request at server call. (#9362)
• xds: Remove shaded orca proto dependency in ORCA api. The shading was broken and couldn't really be used. (#9366)

Behavior Changes

• gcp-observability: Interceptors are now injected in more situations, including for non-Netty transports and when using transport-specific APIs like NettyChannelBuilder. (#9309 #9312 #9424)
• gcp-observability: custom tags now extended to metrics and traces (#9402 #9407)
• gcp-observability: excludes RPCs into Google Cloud Ops backend for instrumentation (#9436)
• xds: xdsNameResolver now matches channel overrideAuthority in virtualHost matching (#9405)

Acknowledgement

@​benjaminp @​j-min5u

v1.48.2

Bug Fixes

• xds: Fix a bug in ring-hash load balancing policy that, during TRANSIENT_FAILURE state, it might cause unnecessary internal connection requests on subchannels. (grpc/grpc-java#9537)
• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (grpc/grpc-java#9524)
• xds: channel_id hash policy now uses a random per-channel id instead of an incrementing one. The incrementing id was the same for every process of a binary, which was not the intention (grpc/grpc-java#9453)
• bazel: Use valid target name for services and xds when overriding Maven targets (grpc/grpc-java#9422). This fixes an error of the form no such target '@​io_grpc_grpc_java//services:services' for services and missing ORCA classes for xds. The wrong target names were introduced in 1.47.0

Dependencies

... (truncated)

• df9670d Bump version to 1.50.0
• 3aa8868 Update README etc to reference 1.50.0
• 69e86b9 okhttp: Add client transport proxy socket timeout (#9586)
• ce5f789 Use Protobuf 21.7 in our code generator
• d211b54 Bump Protobuf to 3.21.7
• e998955 xds: Avoid NPE from update after removing subscriptions
• 6f8e44a xds: security code refactoring/renaming (#9555)
• 0cda133 observability: replace current OpenCensus registerAllGrpcViews with only sele...
• 2289956 core: outlier_detection LB to use acceptResolvedAddresses() (#9557)
• 8925696 Revert "xds: prevent concurrent priority LB picker updates (#9363)" (#9554)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pulsar's releases.

1.17.5

What's Changed

Warning Version 1.17.4 was released upgrading slf4j-api to version 2.x. This dependency has been reverted to 1.17.x.

• Rollback back to slf4j-api 1.7.36 (#5951) @​kiview
• Bump logback-classic versions (#5948) @​eddumelendez
• Bump kotlin plugins version to 1.7.20 (#5945) @​eddumelendez
• Add banner when Ryuk is disabled (#5929) @​eddumelendez

📖 Documentation

• Test container example for ImmuDB (#5860) @​hariohmprasath
• Reference to GitHub Discussions (#5928) @​eddumelendez
• Rename main branch (#5847) @​eddumelendez

📦 Dependency updates

• Combined dependencies PR (#5944) @​eddumelendez
• Combined dependencies PR (#5936) @​eddumelendez
• Combined dependencies PR (#5935) @​eddumelendez
• Combined dependencies PR (#5931) @​eddumelendez

1.17.4

What's Changed

Highlights

This release has been made possible through the efforts of whopping 23 contributors, wow! 🤯

Besides 3 new modules, this release brings a couple of bugfixes, improved compatibility and resilience in certain scenarios, better defaults and more configurability.

You might also notice many PRs related to the documentation, templates for PRs and issues, and automation regarding OSS contributions. Testcontainers has always been a project with a lot of involvement by the community and we are very proud of this. That’s why want to make contributing to Testcontainers a great experience, no matter if you raise an issue, submit a PR or initiate a discussion in GitHhub Discussions.

🐼 New Module: Redpanda (#5740) @​eddumelendez

Redpanda, a Kafka-compatible streaming platform, recently added a special dev-container mode to their container image, that allows even faster startup times. A great reason to work in a Testcontainers module that leverages this flag by default to give you a great integration testing experience when using Redpanda. And of course, using Redpanda with Testcontainers is as easy and convenient as you are used to:

var container = new RedpandaContainer("docker.redpanda.com/vectorized/redpanda:v22.2.1")
container.start()
var connectionUrl = container.getBootstrapServers()
// use the connectionUrl and start testing!

You can check out the docs to learn more.

New Module: TiDB (#5511) @​Icemap

... (truncated)

• abf87ab Rollback back to slf4j-api 1.7.36 (#5951)
• c2a741d Bump logback-classic versions (#5948)
• a8ec3e6 Fix main branch name in ci.yml
• 03de1ce Fix example docs links
• 2798d34 Bump kotlin plugins version to 1.7.20 (#5945)
• 16124b2 Merge pull request #5944 from testcontainers/combined-pr-branch
• 8e3f5d5 Merge remote-tracking branch 'origin/dependabot/gradle/modules/localstack/com...
• 4ae3211 Merge remote-tracking branch 'origin/dependabot/gradle/modules/dynalite/com.a...
• a34b9f0 Merge remote-tracking branch 'origin/dependabot/gradle/modules/localstack/com...
• bfe07eb Merge remote-tracking branch 'origin/dependabot/github_actions/actions/cache-...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.49.1

Bug Fixes

• xds: Fix a bug in ring-hash load balancing policy that, during TRANSIENT_FAILURE state, it might cause unnecessary internal connection requests on subchannels. (#9537)
• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9524)

Behavior Changes

• core: Update outlier detection max ejection logics, and min host request volume logics. (grpc/grpc-java#9550, #9551, #9552)

v1.49.0

New Features

• okhttp: Add OkHttpServerBuilder. The server can be used directly, but is not yet available via ServerBuilder.forPort() and Grpc.newServerBuilderForPort(). It passes our tests, but has seen no real-world use. It is also lacking connection management features
• okhttp: Add support for byte-based private keys via TlsChannelCredentials and TlsServerCredentials
• core: New outlier detection load balancer
• googleapis: google-c2p resolver is now stabilized

Bug Fixes

• core: Fix retry causing memory leak for canceled RPCs. (#9360)
• core: Use SyncContext for InProcess transport callbacks to avoid deadlocks. This fixes the long-standing issue #3084 which prevented using directExecutor() in some tests using streaming RPCs
• core: Disable retries with in-process transport by default (#9361). In-process does not compute message sizes so can retain excessive amounts of memory
• bazel: Use valid target name for services and xds when overriding Maven targets (#9422). This fixes an error of the form no such target '@io_grpc_grpc_java//services:services' for services and missing ORCA classes for xds. The wrong target names were introduced in 1.47.0
• xds: channel_id hash policy now uses a random per-channel id instead of an incrementing one. The incrementing id was the same for every process of a binary, which was not the intention (#9453)
• core: Fix a bug that the server stream should not deliver halfClose() when the call is immediately canceled. The bug causes a bad message INTERNAL, desc: Half-closed without a request at server call. (#9362)
• xds: Remove shaded orca proto dependency in ORCA api. The shading was broken and couldn't really be used. (#9366)

Behavior Changes

• gcp-observability: Interceptors are now injected in more situations, including for non-Netty transports and when using transport-specific APIs like NettyChannelBuilder. (#9309 #9312 #9424)
• gcp-observability: custom tags now extended to metrics and traces (#9402 #9407)
• gcp-observability: excludes RPCs into Google Cloud Ops backend for instrumentation (#9436)
• xds: xdsNameResolver now matches channel overrideAuthority in virtualHost matching (#9405)

Acknowledgement

@​benjaminp @​j-min5u

v1.48.1

New Features

ORCA provides APIs to inject custom metrics at a gRPC server, and consume them at a gRPC client. It implements A51: Custom Backend Metrics Support. We changed the ORCA APIs; they had broken shading and couldn't really be used, so we fixed them in the patch release.

Bug Fixes

• core: Fix a bug that the server stream should not deliver halfClose() when the call is immediately canceled. The bug causes a bad message INTERNAL, desc: Half-closed without a request at server call. (#9362)
• core: Fix retry causing memory leak for cancelled RPCs. (#9415)
• core: Disable retry by default for in-process transport's channel.(#9368)

v1.48.0

Bug Fixes

• Removed the Class-Path manifest entry from jars generated with the gradle shadow plugin (#9270). This should prevent “[WARNING] [path] bad path element” compilation warnings
• Fix Channelz HTTP/2 window reporting. Previously the sender and receiver windows were reversed
• Service config parse failures should be UNAVAILABLE, not INVALID_ARGUMENT (#9346). This bug could cause RPCs to fail with INVALID_ARGUMENT if the service config was invalid when the channel started. RPCs were not failed if the channel had previously received no config or a valid config. Channels using xds were not exposed to this issue

... (truncated)

• 6eed4f8 Bump version to 1.49.2
• adf9546 Update README etc to reference 1.49.2
• 44281ac Bump Protobuf to 3.21.7
• 069e670 Bump version to 1.49.2-SNAPSHOT
• eb32ed1 Bump version to 1.49.1
• c1e9c2b Update README etc to reference 1.49.1
• 8b9acff core: outlier detection max ejection logic update (#9492) (#9552)
• 0707aac core: outlier detection to min host request volume (#9490) (#9551)
• 0e4e716 core: Update outlier detection max ejection logic. (#9489) (#9550)
• e55bf31 xds: ringhash policy in TRANSIENT_FAILURE should not attempt connecting when ...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pulsar's releases.

1.17.4

What's Changed

Highlights

This release has been made possible through the efforts of whopping 23 contributors, wow! 🤯

Besides 3 new modules, this release brings a couple of bugfixes, improved compatibility and resilience in certain scenarios, better defaults and more configurability.

You might also notice many PRs related to the documentation, templates for PRs and issues, and automation regarding OSS contributions. Testcontainers has always been a project with a lot of involvement by the community and we are very proud of this. That’s why want to make contributing to Testcontainers a great experience, no matter if you raise an issue, submit a PR or initiate a discussion in GitHhub Discussions.

🐼 New Module: Redpanda (#5740) @​eddumelendez

Redpanda, a Kafka-compatible streaming platform, recently added a special dev-container mode to their container image, that allows even faster startup times. A great reason to work in a Testcontainers module that leverages this flag by default to give you a great integration testing experience when using Redpanda. And of course, using Redpanda with Testcontainers is as easy and convenient as you are used to:

var container = new RedpandaContainer("docker.redpanda.com/vectorized/redpanda:v22.2.1")
container.start()
var connectionUrl = container.getBootstrapServers()
// use the connectionUrl and start testing!

You can check out the docs to learn more.

New Module: TiDB (#5511) @​Icemap

With TiDB, we are adding support for a new database module. As with other databases that can be accessed via JDBC, you can leverage Testcontainers’ special JDBC URL integration:

jdbc:tc:tidb:v6.1.0:///databasename

New Module: Hashicorp Consul (#4683) @​julb

Consul

🚀 Features & Enhancements

• getContainerByServiceName should work without suffix (#5776) @​REslim30
• Allow Pulsar default WaitStrategy to honour startup timeout (#5674) @​nahguam
• fix: ContainerDatabaseDriver does not register Properties object (#5829) @​REslim30
• couchbase: allow to configure bucket replicas and default to 0. (#5840) @​daschl
• Add compatibility with MongoDB 6 (#5771) @​eddumelendez
• Set default elasticsearch heap size to 2GB (Alternate PR) (#5684) @​REslim30
• Add Transferable.of(String, int) (#5741) @​eddumelendez
• Make TestcontainersExtension public (#5285) @​hmatt1
• Update Cassandra driver to 4.x (#2830) @​emerkle826
• Make outer maximum startup timeout in DockerComposeContainer configurable (#5588) @​henri-tremblay
• Improve Pulsar's wait strategy to rely on clusterName (#5613) @​eddumelendez

... (truncated)

• 2215e21 Add Testcontainers icon for JetBrains IDEs (#5870)
• 405ddb7 Allow Pulsar default WaitStrategy to honour startup timeout (#5674)
• f54a29a getLivenessCheckPortNumbers() should return mapped port (#5734)
• 9847d59 Fix: ContainerDatabaseDriver does not register Properties object (#5829)
• de1a77e Improve consistency of Testcontainers name in docs (#5866)
• 459d2f6 Use testCompileOnly instead of testCompileClasspath (#5849)
• 22aa85d Remove thundra from ci.yml (#5850)
• 9e98add Update slf4j in test-support to 2.0.0 (#5848)
• 9540652 Update localstack images in tests (#5783)
• 1f3a1f7 couchbase: allow to configure bucket replicas and default to 0. (#5840)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.49.0

New Features

• okhttp: Add OkHttpServerBuilder. The server can be used directly, but is not yet available via ServerBuilder.forPort() and Grpc.newServerBuilderForPort(). It passes our tests, but has seen no real-world use. It is also lacking connection management features
• okhttp: Add support for byte-based private keys via TlsChannelCredentials and TlsServerCredentials
• core: New outlier detection load balancer
• googleapis: google-c2p resolver is now stabilized

Bug Fixes

• core: Fix retry causing memory leak for canceled RPCs. (#9360)
• core: Use SyncContext for InProcess transport callbacks to avoid deadlocks. This fixes the long-standing issue #3084 which prevented using directExecutor() in some tests using streaming RPCs
• core: Disable retries with in-process transport by default (#9361). In-process does not compute message sizes so can retain excessive amounts of memory
• bazel: Use valid target name for services and xds when overriding Maven targets (#9422). This fixes an error of the form no such target '@io_grpc_grpc_java//services:services' for services and missing ORCA classes for xds. The wrong target names were introduced in 1.47.0
• xds: channel_id hash policy now uses a random per-channel id instead of an incrementing one. The incrementing id was the same for every process of a binary, which was not the intention (#9453)
• core: Fix a bug that the server stream should not deliver halfClose() when the call is immediately canceled. The bug causes a bad message INTERNAL, desc: Half-closed without a request at server call. (#9362)
• xds: Remove shaded orca proto dependency in ORCA api. The shading was broken and couldn't really be used. (#9366)

Behavior Changes

• gcp-observability: Interceptors are now injected in more situations, including for non-Netty transports and when using transport-specific APIs like NettyChannelBuilder. (#9309 #9312 #9424)
• gcp-observability: custom tags now extended to metrics and traces (#9402 #9407)
• gcp-observability: excludes RPCs into Google Cloud Ops backend for instrumentation (#9436)
• xds: xdsNameResolver now matches channel overrideAuthority in virtualHost matching (#9405)

Acknowledgement

@​benjaminp @​j-min5u

v1.48.1

New Features

ORCA provides APIs to inject custom metrics at a gRPC server, and consume them at a gRPC client. It implements A51: Custom Backend Metrics Support. We changed the ORCA APIs; they had broken shading and couldn't really be used, so we fixed them in the patch release.

Bug Fixes

• core: Fix a bug that the server stream should not deliver halfClose() when the call is immediately canceled. The bug causes a bad message INTERNAL, desc: Half-closed without a request at server call. (#9362)
• core: Fix retry causing memory leak for cancelled RPCs. (#9415)
• core: Disable retry by default for in-process transport's channel.(#9368)

v1.48.0

Bug Fixes

• Removed the Class-Path manifest entry from jars generated with the gradle shadow plugin (#9270). This should prevent “[WARNING] [path] bad path element” compilation warnings
• Fix Channelz HTTP/2 window reporting. Previously the sender and receiver windows were reversed
• Service config parse failures should be UNAVAILABLE, not INVALID_ARGUMENT (#9346). This bug could cause RPCs to fail with INVALID_ARGUMENT if the service config was invalid when the channel started. RPCs were not failed if the channel had previously received no config or a valid config. Channels using xds were not exposed to this issue

New Features

• xds: implement ignore_resource_deletion server feature as defined in the gRFC A53: Option for Ignoring xDS Resource Deletion. (#9339)
• bazel: Support maven_install's strict_visibility=True by including direct dependencies explicitly

Improvements

• Changed the debug strings for many Attributes.Keys to reference the API of the key. This should make it easier to find the API the key is exposed when using attributes.toString()
• api: Document Attributes.Key uses reference equality. This is to make it clear the behavior is on purpose, and mirrors other Key types in the API
• api: Explain security constraints of EquivalentAddressGroup.ATTR_AUTHORITY_OVERRIDE, to avoid misuse by NameResolvers (#9281)

... (truncated)

• eb32ed1 Bump version to 1.49.1
• c1e9c2b Update README etc to reference 1.49.1
• 8b9acff core: outlier detection max ejection logic update (#9492) (#9552)
• 0707aac core: outlier detection to min host request volume (#9490) (#9551)
• 0e4e716 core: Update outlier detection max ejection logic. (#9489) (#9550)
• e55bf31 xds: ringhash policy in TRANSIENT_FAILURE should not attempt connecting when ...
• d0848ef [core,api,auth: Choose executor based on need for thread affinity (#9504) (#9...
• 46eb94d xDS interop: enable pod log collection in the buildscripts (#9495) (#9512)
• cf10676 Bump version to 1.49.1-SNAPSHOT
• dfbdfe8 Bump version to 1.49.0
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.48.1

New Features

ORCA provides APIs to inject custom metrics at a gRPC server, and consume them at a gRPC client. It implements A51: Custom Backend Metrics Support. We changed the ORCA APIs; they had broken shading and couldn't really be used, so we fixed them in the patch release.

Bug Fixes

• core: Fix a bug that the server stream should not deliver halfClose() when the call is immediately canceled. The bug causes a bad message INTERNAL, desc: Half-closed without a request at server call. (#9362)
• core: Fix retry causing memory leak for cancelled RPCs. (#9415)
• core: Disable retry by default for in-process transport's channel.(#9368)

v1.48.0

Bug Fixes

• Removed the Class-Path manifest entry from jars generated with the gradle shadow plugin (#9270). This should prevent “[WARNING] [path] bad path element” compilation warnings
• Fix Channelz HTTP/2 window reporting. Previously the sender and receiver windows were reversed
• Service config parse failures should be UNAVAILABLE, not INVALID_ARGUMENT (#9346). This bug could cause RPCs to fail with INVALID_ARGUMENT if the service config was invalid when the channel started. RPCs were not failed if the channel had previously received no config or a valid config. Channels using xds were not exposed to this issue

New Features

• xds: implement ignore_resource_deletion server feature as defined in the gRFC A53: Option for Ignoring xDS Resource Deletion. (#9339)
• bazel: Support maven_install's strict_visibility=True by including direct dependencies explicitly

Improvements

• Changed the debug strings for many Attributes.Keys to reference the API of the key. This should make it easier to find the API the key is exposed when using attributes.toString()
• api: Document Attributes.Key uses reference equality. This is to make it clear the behavior is on purpose, and mirrors other Key types in the API
• api: Explain security constraints of EquivalentAddressGroup.ATTR_AUTHORITY_OVERRIDE, to avoid misuse by NameResolvers (#9281)
• testing: GrpcCleanupRule now extends ExternalResource. This makes it usable with JUnit 5
• core: Clear ConfigSelector when the channel enters panic mode (#9272). This prevents hanging RPCs if panic mode is entered very early in the channel lifetime and makes panic mode more predictable when xds is in use. Panic mode is a Channel feature used when a bug causes an unrecoverable error
• core: Avoid unnecessary flushes for unary responses. It optimizes the response flow (#9273)
• core: Use the offload executor in CallCredentials rather than the executor from CallOptions (#9313)
• compiler: support protoc compiling on loongarch_64 and ppc64le platform (#9178 #9284)
• binder: Add security Policy for verifying signature using sha-256 hash (#9305)
• xds: clusterresolver reuses child policy names for the same locality to avoid subchannel connection churns (#9287)
• xds: Fail RPCs with error details when resources are deleted instead of “NameResolver returned no usable address errors” (#9337)
• xds: Support least_request LB in LoadBalancingPolicy (#9262)
• xds: weighted target to delay picker updates while updating children (#9306)
• xds: delete the permanent error logic in processing LDS updates in XdsServerWrapper (#9268)
• xds: when delegate server throws on start communicate the error to statusListener (#9277)

Dependencies

• Bump Guava to 31.1
• Bump protobuf to 3.21.1 (#9311)
• Bump Error Prone annotations to 2.14.0
• Bump Animal Sniffer annotations to 1.21
• Bump Netty to 4.1.77.Final and netty_tcnative to 2.0.53.Final
• protobuf: Bump com.google.api.grpc:proto-google-common-protos to 2.9.0
• alts: Bump Conscrypt to 2.5.2
• xds: Bump RE2J to 1.6
• xds: Remove unused org.bouncycastle:bcpkix-jdk15on dependency
• xds: Update xDS protos (#9223)

Acknowledgements

... (truncated)

• dfbdfe8 Bump version to 1.49.0
• 780a4a3 Update README etc to reference 1.49.0
• 342690e core: Enable outlier detection by default. (#9479)
• 6aea9a9 buildscripts: Add outlier_detection_test interop test. (#9461)
• 050e615 xds: Fix outlier detection env flag name. (#9462)
• b8b06dd core: [outlier detection] Get addresses from subchannel args. (#9468)
• 3ebdfc7 core: [outlier detection] eject/uneject states to delegate listener. (#9469) ...
• 184fdaa core: OutlierDetectionLoadBalancer to pass child LB config. (#9467) (#9474)
• ac20c19 xds: Configure outlier detection. (#9456)
• c7307ec Outlier detection load balancer (#9447)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.48.0

Bug Fixes

• Removed the Class-Path manifest entry from jars generated with the gradle shadow plugin (#9270). This should prevent “[WARNING] [path] bad path element” compilation warnings
• Fix Channelz HTTP/2 window reporting. Previously the sender and receiver windows were reversed
• Service config parse failures should be UNAVAILABLE, not INVALID_ARGUMENT (#9346). This bug could cause RPCs to fail with INVALID_ARGUMENT if the service config was invalid when the channel started. RPCs were not failed if the channel had previously received no config or a valid config. Channels using xds were not exposed to this issue

New Features

• xds: implement ignore_resource_deletion server feature as defined in the gRFC A53: Option for Ignoring xDS Resource Deletion. (#9339)
• bazel: Support maven_install's strict_visibility=True by including direct dependencies explicitly

Improvements

• Changed the debug strings for many Attributes.Keys to reference the API of the key. This should make it easier to find the API the key is exposed when using attributes.toString()
• api: Document Attributes.Key uses reference equality. This is to make it clear the behavior is on purpose, and mirrors other Key types in the API
• api: Explain security constraints of EquivalentAddressGroup.ATTR_AUTHORITY_OVERRIDE, to avoid misuse by NameResolvers (#9281)
• testing: GrpcCleanupRule now extends ExternalResource. This makes it usable with JUnit 5
• core: Clear ConfigSelector when the channel enters panic mode (#9272). This prevents hanging RPCs if panic mode is entered very early in the channel lifetime and makes panic mode more predictable when xds is in use. Panic mode is a Channel feature used when a bug causes an unrecoverable error
• xds: clusterresolver reuses child policy names for the same locality to avoid subchannel connection churns (#9287)
• xds: Fail RPCs with error details when resources are deleted instead of “NameResolver returned no usable address errors” (#9337)
• xds: Support least_request LB in LoadBalancingPolicy (#9262)
• xds: weighted target to delay picker updates while updating children (#9306)
• compiler: support protoc compiling on loongarch_64 and ppc64le platform (#9178 #9284)
• core: Avoid unnecessary flushes for unary responses. It optimizes the response flow (#9273)
• binder: Add security Policy for verifying signature using sha-256 hash (#9305)
• core: Use the offload executor in CallCredentials rather than the executor from CallOptions (#9313)
• xds: delete the permanent error logic in processing LDS updates in XdsServerWrapper (#9268)
• xds: when delegate server throws on start communicate the error to statusListener (#9277)

Dependencies

• Bump Guava to 31.1
• Bump protobuf to 3.21.1 (#9311)
• Bump Error Prone annotations to 2.14.0
• Bump Animal Sniffer annotations to 1.21
• Bump Netty to 4.1.77.Final and netty_tcnative to 2.0.53.Final
• protobuf: Bump com.google.api.grpc:proto-google-common-protos to 2.9.0
• alts: Bump Conscrypt to 2.5.2
• xds: Bump RE2J to 1.6
• xds: Remove unused org.bouncycastle:bcpkix-jdk15on dependency
• xds: Update xDS protos (#9223)

Acknowledgements

@​mirlord @​zhangwenlong8911 @​adilansari @​amirhadadi @​jader-eero @​jvolkman @​sumitd2

v1.47.0

... (truncated)

• 6e2e18b Bump version to 1.48.1
• dd74493 Update README etc to reference 1.48.1
• d56f8fb core: server stream should not deliver halfClose() when call is immediately c...
• 80dc067 example-orca: fix lost streamTracerFactor (#9411)
• c7f0965 service: CalMetricRecorder.recordCallMetric is deprecated, use CalMetricRecor...
• 0c287af example: fix orca example to use new ORCA API (#9403)
• 014c022 service: make the orca MetricReport a top level experimental class (#9382)
• 25183ed xds: do not expose orca proto in ORCA api (#9366)
• 289a442 core: Workaround retry causing memory leak
• 61a3a2f core: Disable retry by default for in-process transport's channel (#9368)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.47.0

Bug Fixes

• api: Ignore ClassCastExceptions for hard-coded providers on Android (#9174). This avoids ServiceConfigurationError in certain cases when an “SDK” includes a copy of gRPC that was renamed with Proguard-like tools that do precise class name rewriting (versus something like Maven Shade Plugin which uses coarse pattern matching)
• binder: respect requested message limits when provide received messages to listener (#9163)
• binder: Avoid an ISE from asAndroidAppUri() (#9169)
• okhttp: Use the user-provided ScheduledExecutorService for keepalive if provided. Previously the user-provided executor was used for deadlines, but not keepalive. Keepalive always used the default executor (#9073)
• bom: Reverted “bom: Removed protoc-gen-grpc-java from the BOM” in v1.46.0. There was a way to use it with Gradle (#9154)
• build: fix grpc-java build against protobuf 3.21 (#9218)
• grpclb: Adds missing META-INF resources to libgrpclb.jar produced by bazel //grpclb:grpclb target (#9156)
• xds: Protect xdstp processing with federation env var. If the xds server uses xdstp:// resource names it was possible for federation code paths to be entered even without enabling the experimental federation support. This is now fixed and it is safe for xds servers to use xdstp:// resource names. (#9190)
• xds: fix bugs in ring-hash load balancer picking subchannel behavior per gRFC. The bug may cause connection not failing over from TRANSIENT_FAILURE status. (#9085)
• xds: NACK EDS resources with duplicate localities in the same priority (#9119)

New Features

• api: Add connection management APIs to ServerBuilder (#9176). This includes methods for keepalive, max connection age, and max connection idle. These APIs have been available on NettyServerBuilder since v1.4.0
• api: allow NameResolver to influence which transport to use (#9076)
• api: New API in ServerCall to expose SecurityLevel on server-side (#8943)
• netty: Add NameResolver for unix: scheme, as defined in gRPC Name Resolution (#9113)
• binder: add allOf security policy, which allows access iff ALL given security policies allow access. (#9125)
• binder: add anyOf security policy, which allows access if ANY given security policy allows access. (#9147)
• binder: add hasPermissions security policy, which checks that a caller has all of the given package permissions. (#9117)
• build: Add Bazel build support for xds, googleapis, rls, and services. grpc-services previously had partial bazel support, but some parts were missing. These artifacts are now configured via IO_GRPC_GRPC_JAVA_OVERRIDE_TARGETS so maven_install will not use the artifacts from Maven Central (#9172)
• xds: New ability to configure custom load balancer implementations via the xDS Cluster.load_balancing_policy field. This implements gRFC A52: gRPC xDS Custom Load Balancer Configuration. (#9141)
• xds, orca: add support for custom backend metrics reporting: allow setting metrics at gRPC server and consuming metrics reports from a custom load balancing policy at the client. This implements gRFC A51: Custom Backend Metrics Support.
• xds: include node ID in RPC failure status messages from the XdsClient (#9099)
• xds: support for the is_optional logic in Cluster Specifier Plugins: if an unsupported Cluster Specifier Plugin is optional, don't NACK, and skip any routes that point to it. (#9168)

Behavior Changes

• xds: Allow unspecified listener traffic direction, to match other languages and to work with Istio (#9173)
• xds: change priority load balancer failover time behavior and ring_hash LB aggregation rule to better handle transient_failure channel status (#9084, #9093)

Dependencies

• Bump GSON to 2.9.0. Earlier versions of GSON are affected by CVE-2022-25647. gRPC was not impacted by the vulnerability. (#9215)
• gcp-observability: add grpc-census as a dependency and update opencensus version (#9140)

Acknowledgements

@​caseyduquettesc @​cfredri4 @​jvolkman @​mirlord @​ovidiutirla

v1.46.0

Bug Fixes

• netty: Fixed incompatibility with Netty 4.1.75.Final that caused COMPRESSION_ERROR (#9004)
• xds: Fix LBs blindly propagating control plane errors (#9012). This change forces the use of UNAVAILABLE for any xDS communication failures, which otherwise could greatly confuse an application. This is essentially a continuation of the fix in 1.45.0 for XdsNameResolver, but for other similar cases
• xds: Fix ring_hash reconnecting behavior. Previously a TRANSIENT_FAILURE subchannel would remain failed forever
• xds: Fix ring_hash defeating priority’s failover connection timeout. grpc/proposal#296
• binder: Work around an Android Intent bug for consistent AndroidComponentAndress hashCode() and equals() (#9061)
• binder: Fix deadlock when using process-local Binder (#8987). Process-local binder has a different threading model than normal FLAG_ONEWAY, so this case is now detected and the FLAG_ONEWAY threading model is emulated

... (truncated)

• ed58a2c Bump version to 1.48.0
• 6ffba86 Update README etc to reference 1.48.0
• 3f47a6e buildscripts: Fix kube contexts in the xds LB tests (#9389)
• 826a7c9 Revert "Fix for ipv6 link local with scope (#9326)"
• 5991239 interop-testing: Hack runtimeOnly deps to be available at runtime (1.48.x bac...
• fb2d5cf xds: implement ignore_resource_deletion server feature (#9339)
• bdc27cd Service config parse failures should be UNAVAILABLE
• 258ac60 Bump Bazel deps missed in fb314d3
• 97b6a65 Bump versions for assorted dependencies
• 0b3a0b4 Fix for ipv6 link local with scope (#9326)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from grpc-context's releases.

v1.51.0

Bug Fixes

• grpclb: Fix a debug logging message which incorrectly logged loadbalancer addresses under backend addresses. (#9602)

New Features

• okhttp: okhttp server now supports maxConnectionAge and maxConnectionAgeGrace configuration for improved connection management. (#9649)

Behavior Changes

• netty: switch default cumulation strategy from MERGE to ADAPTIVE. When accumulating incoming network data, Adaptive cumulator dynamically switches between MERGE and COMPOSE strategies to minimize the amount of copying while also limiting per-buffer overhead. (#9558)

Acknowledgements

@​TrevorEdwards

v1.50.2

Bug fixes

gcp-observability: Supports period(.) in the service name part of regular expression for a fully-qualified method to accept "package.service"

v1.50.1

gcp-observability: support new configuration defined in grpc-gcp-observability public preview user guide

v1.50.0

New Features

• okhttp: Added connection management features to okhttp server, including maxConnectionIdle(), permitKeepAliveTime(), and permitKeepAliveWithoutCalls() (#9494, #9544)
• binder: Add SecurityPolicies for checking device owner/profile owner (#9428)

API Changes

• api: Add LoadBalancer.acceptResolvedAddresses() (#9498). The method is like handleResolvedAddresses() but returns a boolean of whether the addresses and configuration were accepted. Not accepting the update triggers the NameResolver to retry after a delay. We are not yet encouraging migration to this method, as there is still a second future API change
• core: add CallOptions to CallCredentials.RequestInfo (#9538)

Bug Fixes

• auth: Fix AppEngine failing while retrieving access token when instantiating a blocking stub using AppEngineCredentials (#9504)
• core: Ensure that context cancellationCause is set (#9501)
• core: Update outlier detection max ejection logic to allow exceeding the limit by one, to match Envoy. (#9489, #9492)
• core: outlier detection to honor min host request volume (#9490)
• okhttp: Add timeout for HTTP CONNECT proxy handshake (#9586)
• xds: ringhash policy in TRANSIENT_FAILURE should not attempt connecting when already in connecting (#9535). With workloads where most requests have the same hash, ring hash should behave more like pick-first of slowly trying backends

Dependencies

• netty: upgrade netty from 4.1.77.Final to 4.1.79.Final and tcnative from 2.0.53 to 2.0.54 (#9451)

Acknowledgements

@​cpovirk @​prateek-0 @​sai-sunder-s

v1.49.2

Dependencies

• Bump protobuf to 3.21.7

... (truncated)

• 68b7089 Bump version to 1.51.1
• d448478 Update README etc to reference 1.51.1
• eec9f67 xds:Fix ConcurrentModificationException in PriorityLoadBalancer (#9728) (#9744)
• 73c4194 Bump version to 1.51.1-SNAPSHOT
• e900f17 Bump version to 1.51.0
• 976ab8d Update README etc to reference 1.51.0
• a82ea0c Fix jmh -PjmhIncludeSingleClass
• 0d44203 xds: Delay priority LB updates from children (#9670)
• ba182c3 core: round_robin to use acceptResolvedAddresses()
• c1d0e14 xds: Fake control plane test setup code to Rules (#9666)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pulsar's releases.

1.17.6

What's Changed

Highlights

This release has been made possible through the efforts of 20 contributors. The Testcontainers does not cease to amaze us, thanks to everyone of you and thanks for the ongoing support and collaboration 🥰.

This release brings a lot of database love with 2 new modules, and as always a couple of bug fixes and improvements

New Module: QuestDB (#5995) @​Vangreen

QuestDB, is a high-performance, open-source SQL database for applications in financial services, IoT, machine learning, DevOps and observability.

var container = new QuestDBContainer("questdb/questdb:6.5.3")
container.start()
var connectionUrl = container.getHttpUrl()
// use the connectionUrl and start testing!

New Module: YugabyteDB (#4372) @​srinivasa-vasu

YugabyteDB, is a modern distributed SQL database for transactional cloud native applications. PostgreSQL compatible. It offers two APIs, SQL and CQL.

var container = new YugabyteDBYSQLContainer("yugabytedb/yugabyte:2.14.4.0-b26");
container.start()
var jdbcUrl = container.getJdbcUrl();
// use the jdbcUrl and start testing!

var container = new YugabyteDBYCQLContainer("yugabytedb/yugabyte:2.14.4.0-b26");
container.start()
var contactPoint = container.getContactPoint();
// use the contactPoint and start testing!

🚀 Features & Enhancements

• InfluxDB v2 support (#3669) @​raminqaf
• Add support for flags in DatastoreEmulatorContainer (#5993) @​eddumelendez
• Expose Redpanda schema registry (#5994) @​gustavomonarin
• Adds the ability to set a target build stage to a Dockerfile (#4810) @​GenghisChen

🐛 Bug Fixes

• Fixes wrong timestamp calculation (#5988) @​leblonk
• Catch and ignore more errors when reflecting into container subclass (#5990) @​akhaku
• Return default for empty environment variable (#5983) @​roulpriya

📖 Documentation

• Add Spotify in Donors section (#6083) @​eddumelendez

... (truncated)

• 4a2ca13 Merge pull request #6212 from testcontainers/combined-pr-branch
• 388af56 Merge remote-tracking branch 'origin/dependabot/gradle/modules/localstack/com...
• 2748cf8 Merge remote-tracking branch 'origin/dependabot/gradle/modules/localstack/com...
• 889ea6b Add yugabytedb to mkdocs.yml (#6211)
• c174676 Bump aws-java-sdk-logs from 1.12.337 to 1.12.343 in /modules/localstack
• c2abe0d Bump aws-java-sdk-s3 from 1.12.337 to 1.12.343 in /modules/localstack
• 11c3079 Merge pull request #6210 from testcontainers/combined-pr-branch
• aed19b8 Merge remote-tracking branch 'origin/dependabot/gradle/modules/dynalite/com.a...
• 6633109 Merge remote-tracking branch 'origin/dependabot/gradle/modules/gcloud/com.goo...
• fa867b0 Merge remote-tracking branch 'origin/dependabot/gradle/examples/org.jetbrains...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/setup-java's releases.

v3.6.0

In scope of this release we added Maven Toolchains Support and Maven Toolchains Declaration. Moreover, from this release we use os.arch to determine default architecture for runners: actions/setup-java#376. Besides, we made such changes as:

• Upgrade @​actions/cache from 3.0.0 to 3.0.4 so it respects SEGMENT_DOWNLOAD_TIMEOUT_MINS
• Support Gradle version catalog
• Update @​actions/core to 1.10.0

v3.5.1

In scope of this release we change logic for Microsoft Build of OpenJDK. Previously it had hard coded versions. In this release versions were moved to the separate json file. When a new version of Java is released, it can be added to this file and be used without releasing new version of the action.

• Related pull request: actions/setup-java#383

v3.5.0

Add support for multiple jdks

In scope of this release we add support for multiple jdks. Customers can specify multiple versions of java through java-version input.

    steps:
      - uses: actions/setup-java@v3
        with:
          distribution: '<distribution>'
          java-version: |
            8
            11
            15

Besides, we added such changes as:

• Removed restore-keys because it leaded to an unexpected growth of the cache: actions/setup-java#285
• Added new files pattern for gradle cache: actions/setup-java#274
• Added cache-hit output to the action.yml: actions/setup-java#373

v3.4.1

In scope of this release we updated actions/cache package as the new version contains fixes for caching error handling.

v3.4.0

In scope of this release we introduce such changes as:

• Add Java 11.0.15 to Microsoft Build of OpenJDK: actions/setup-java#331
• Update versions for Java 17 to 17.0.3 and add aarch64 support to Java 11 for Microsoft Build of OpenJDK: actions/setup-java#342
• Fix support for Zulu OpenJDK arm64 architecture: actions/setup-java#339
• Sbt-cache: don't cache some files: actions/setup-java#332

v3.3.0

In scope of this pull request we add support for Amazon Corretto Build of OpenJDK (actions/setup-java#312).

steps:
  - name: Checkout
    uses: actions/checkout@v3
  - name: Setup-java
    uses: actions/setup-java@v3
</tr></table> 

... (truncated)

• de1bb2b feat: support Gradle version catalog (#394)
• 2c53c1a Update actions/cache to 3.0.4 version (#392)
• 3617c43 Default to runner architecture (#376)
• a82e6d0 Update README.md (#391)
• fbb2692 Merge pull request #390 from rentziass/rentziass/update-actions-core
• dfcd06a Update @​actions/core to 1.10.0
• e150063 Merge pull request #282 from Okeanos/maven-toolchains-support
• eb1418a Add Maven Toolchains Declaration (#276)
• 499ae9c Merge pull request #387 from akv-platform/v-sdolin/issue-382-docs2
• a18c333 Add versions-manifest.json for Microsoft Build of OpenJDK (#383)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/cache's releases.

v3.0.11

What's Changed

• Call out cache not saved on hit by @​Phantsure in actions/cache#946
• Update @​actions/core to 1.10.0 by @​rentziass in actions/cache#950
• Update cache to use @​actions/core@^1.10.0 by @​pdotl in actions/cache#956

New Contributors

• @​rentziass made their first contribution in actions/cache#950

Full Changelog: https://github.com/actions/cache/compare/v3...v3.0.11

v3.0.10

• Fix a bug with sorting inputs.
• Update definition for restore-keys in README.md

v3.0.9

• Enhanced the warning message for cache unavailability in case of GHES.

v3.0.8

What's Changed

• Fix zstd not working for windows on gnu tar in issues.
• Allow users to provide a custom timeout as input for aborting cache segment download using the environment variable SEGMENT_DOWNLOAD_TIMEOUT_MIN. Default is 60 minutes.

v3.0.7

What's Changed

• Fix for the download stuck problem has been added in actions/cache for users who were intermittently facing the issue. As part of this fix, new timeout has been introduced in the download step to stop the download if it doesn't complete within an hour and run the rest of the workflow without erroring out.

v3.0.6

What's Changed

• Add example for clojure lein project dependencies by @​shivamarora1 in PR actions/cache#835
• Update toolkit's cache npm module to latest. Bump cache version to v3.0.6 by @​pdotl in PR actions/cache#887
• Fix issue #809 where cache save/restore was failing for Amazon Linux 2 runners due to older tar version
• Fix issue #833 where cache save was not working for caching github workspace directory

New Contributors

• @​shivamarora1 made their first contribution in actions/cache#835
• @​pdotl made their first contribution in actions/cache#887

Full Changelog: https://github.com/actions/cache/compare/v3...v3.0.6

v3.0.5

Removed error handling by consuming actions/cache 3.0 toolkit, Now cache server error handling will be done by toolkit.

v3.0.4

In this release, we have fixed the tar creation error while trying to create it with path as ~/ home folder on ubuntu-latest.

v3.0.3

Fixed avoiding empty cache save when no files are available for caching. (actions/cache#624)

v3.0.2

... (truncated)

Sourced from actions/cache's changelog.

• 9b0c1fc Merge pull request #956 from actions/pdotl-version-bump
• 18103f6 Fix licensed status error
• 3e383cd Update RELEASES
• 43428ea toolkit versioon update and version bump for cache
• 1c73980 3.0.11
• a3f5edc Merge pull request #950 from rentziass/rentziass/update-actions-core
• 831ee69 Update licenses
• b9c8bfe Update @​actions/core to 1.10.0
• 0f20846 Merge pull request #946 from actions/Phantsure-patch-2
• 862fc14 Update README.md
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/checkout's releases.

v3.1.0

What's Changed

• Inject GitHub host to be able to clone from another GitHub instance by @​peter-murray in actions/checkout#922
• Bump @​actions/core to 1.10.0 by @​rentziass in actions/checkout#939

New Contributors

• @​peter-murray made their first contribution in actions/checkout#922
• @​rentziass made their first contribution in actions/checkout#939

Full Changelog: https://github.com/actions/checkout/compare/v3.0.2...v3.1.0

v3.0.2

What's Changed

• Add set-safe-directory input to allow customers to take control. by @​TingluoHuang in actions/checkout#770
• Prepare changelog for v3.0.2. by @​TingluoHuang in actions/checkout#777

Full Changelog: https://github.com/actions/checkout/compare/v3...v3.0.2

v3.0.1

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory
• Bumped various npm package versions

v3.0.0

• Updated to the node16 runtime by default
  • This requires a minimum Actions Runner version of v2.285.0 to run, which is by default available in GHES 3.4 or later.

v2.4.2

What's Changed

• Add set-safe-directory input to allow customers to take control. (#770) by @​TingluoHuang in actions/checkout#776
• Prepare changelog for v2.4.2. by @​TingluoHuang in actions/checkout#778

Full Changelog: https://github.com/actions/checkout/compare/v2...v2.4.2

v2.4.1

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

v2.4.0

• Convert SSH URLs like org-<ORG_ID>@github.com: to https://github.com/ - pr

v2.3.5

Update dependencies

v2.3.4

• Add missing awaits
• Swap to Environment Files

v2.3.3

• Remove Unneeded commit information from build logs

... (truncated)

Sourced from actions/checkout's changelog.

v3.1.0

• Use @​actions/core saveState and getState
• Add github-server-url input

v3.0.2

• Add input set-safe-directory

v3.0.1

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory
• Bumped various npm package versions

v3.0.0

• Update to node 16

v2.3.1

• Fix default branch resolution for .wiki and when using SSH

v2.3.0

• Fallback to the default branch

v2.2.0

• Fetch all history for all tags and branches when fetch-depth=0

v2.1.1

• Changes to support GHES (here and here)

v2.1.0

• Group output
• Changes to support GHES alpha release
• Persist core.sshCommand for submodules
• Add support ssh
• Convert submodule SSH URL to HTTPS, when not using SSH
• Add submodule support
• Follow proxy settings
• Fix ref for pr closed event when a pr is merged
• Fix issue checking detached when git less than 2.22

v2.0.0

• Do not pass cred on command line
• Add input persist-credentials
• Fallback to REST API to download repo

• 93ea575 Prepare release v3.1.0 (#940)
• 6a84743 Bump @​actions/core to 1.10.0 (#939)
• e6d535c Inject GitHub host to be able to clone from another GitHub instance (#922)
• 2541b12 Prepare changelog for v3.0.2. (#777)
• 0ffe6f9 Add set-safe-directory input to allow customers to take control. (#770)
• dcd71f6 Enforce safe directory (#762)
• add3486 Patch to fix the dependbot alert. (#744)
• 5126516 Bump minimist from 1.2.5 to 1.2.6 (#741)
• d50f8ea Add v3.0 release information to changelog (#740)
• 2d1c119 update test workflows to checkout v3 (#709)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 3f732de Update README.md
• 0802ecf optimize queries to only pull active statuses
• 70e4efc Also filteer non pr and push events
• beb7c0e Also filteer non pr and push events
• a38415f optimize queries to only pull active statuses
• 3f0b5bc Add initial support for schedule, and refactor accordingly
• 28fd9a7 release
• 40bee3e Add support for pull requests
• e41960e Update README.md
• 24356dc Reenable branch filtering
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)