build(deps): bump the prometheus group with 3 updates by dependabot[bot] · Pull Request #535 · cloudflare/ebpf_exporter

dependabot · 2025-04-01T06:33:06Z

Bumps the prometheus group with 3 updates: github.com/prometheus/client_golang, github.com/prometheus/common and github.com/prometheus/procfs.

Updates github.com/prometheus/client_golang from 1.21.0 to 1.21.1

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.21.1 / 2025-03-04

This release addresses a performance regression introduced in #1661 -- thanks to all who reported this quickly: @chlunde, @dethi, @aaronbee @tsuna @kakkoyun 💪🏽. This patch release also fixes the iOS build.

We will be hardening the release process even further (#1759, #1761) to prevent this in future, sorry for the inconvenience!

The high concurrency optimization is planned to be eventually reintroduced, however in a much safer manner, potentially in a separate API.

[BUGFIX] prometheus: Revert of Inc, Add and Observe cumulative metric CAS optimizations (#1661), causing regressions on low concurrency cases #1757

[BUGFIX] prometheus: Fix GOOS=ios build, broken due to process_collector_* wrong build tags. #1758

Revert "exponential backoff for CAS operations on floats" and cut 1.21.1 by @bwplotka in prometheus/client_golang#1757

Fix ios build for 1.21.1 by @bwplotka in prometheus/client_golang#1758

Full Changelog: prometheus/client_golang@v1.21.0...v1.21.1

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.21.1 / 2025-03-04

[BUGFIX] prometheus: Revert of Inc, Add and Observe cumulative metric CAS optimizations (#1661), causing regressions on low contention cases.

[BUGFIX] prometheus: Fix GOOS=ios build, broken due to process_collector_* wrong build tags.

Commits

8a42da3 Fix ios build. (#1758)
40c62f7 Merge pull request #1757 from prometheus/revert-121cas
689f590 Cut 1.21.1
9e567a7 Revert "Add: exponential backoff for CAS operations on floats (#1661)"
See full diff in compare view

Updates github.com/prometheus/common from 0.62.0 to 0.63.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.63.0

What's Changed

Making the map a public variable for promtheus-operator by @dongjiang1989 in prometheus/common#741

setup ossf scorecard and codeql workflows by @mmorel-35 in prometheus/common#564

feat(promslog): implement reserved keys, rename duplicates by @tjhop in prometheus/common#746

Bump golang.org/x/oauth2 from 0.24.0 to 0.25.0 by @dependabot in prometheus/common#750

Bump golang.org/x/net from 0.33.0 to 0.34.0 by @dependabot in prometheus/common#749

Bump google.golang.org/protobuf from 1.36.1 to 1.36.3 by @dependabot in prometheus/common#751

promslog: Make AllowedLevel concurrency safe. by @bwplotka in prometheus/common#754

Fix typo 'the an' by @petern48 in prometheus/common#752

Synchronize common files from prometheus/prometheus by @prombot in prometheus/common#757

build(deps): bump google.golang.org/protobuf from 1.36.3 to 1.36.4 by @dependabot in prometheus/common#756

build(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by @dependabot in prometheus/common#761

build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 by @dependabot in prometheus/common#763

build(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 by @dependabot in prometheus/common#762

model: Clarify the purpose of model.NameValidationScheme by @ywwg in prometheus/common#765

Fix spelling mistake in godoc by @grobinson-grafana in prometheus/common#766

Synchronize common files from prometheus/prometheus by @prombot in prometheus/common#767

otlptranslator: Add dependency free package that translates OTLP data into Prometheus metric/label names by @ArthurSens in prometheus/common#768

New Contributors

@dongjiang1989 made their first contribution in prometheus/common#741

@petern48 made their first contribution in prometheus/common#752

Full Changelog: prometheus/common@v0.62.0...v0.63.0

Commits

cf3c56f Merge pull request #768 from prometheus/otlp-translator
b35ad99 Add test case for BuildCompliantMetricName with a metric that starts with a d...
227989c otlptranslator: Add dependency free package that translator OTLP data into Pr...
a9cc7f7 Update common Prometheus files (#767)
0decf1f Fix spelling mistake in godoc (#766)
6b9636c model: Clarify the purpose of model.NameValidationScheme (#765)
56f6f38 build(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 (#762)
b516f6d build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#763)
0db99da build(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5 (#761)
ca40aa0 build(deps): bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (#756)
Additional commits viewable in compare view

Updates github.com/prometheus/procfs from 0.15.1 to 0.16.0

Release notes

Sourced from github.com/prometheus/procfs's releases.

v0.16.0

What's Changed

enhancement: Expose CPU online status by @rexagod in prometheus/procfs#644

enable gofmt and goimports linter by @mmorel-35 in prometheus/procfs#646

chore: deprecate NewTCPx methods by @rexagod in prometheus/procfs#640

Add support for SELinux AVC statistics by @cgzones in prometheus/procfs#599

Synchronize common files from prometheus/prometheus by @prombot in prometheus/procfs#647

Fix parsing NSpids field in /proc/{PID}/status by @timuralp in prometheus/procfs#648

Bump golang.org/x/sys from 0.20.0 to 0.21.0 by @dependabot in prometheus/procfs#649

Bump golang.org/x/sys from 0.21.0 to 0.22.0 by @dependabot in prometheus/procfs#656

Synchronize common files from prometheus/prometheus by @prombot in prometheus/procfs#652

Bump golang.org/x/sys from 0.22.0 to 0.24.0 by @dependabot in prometheus/procfs#661

Bump golang.org/x/sync from 0.7.0 to 0.8.0 by @dependabot in prometheus/procfs#660

Add Disk IO stats and ext4 FS stats by @mshahzeb in prometheus/procfs#651

Synchronize common files from prometheus/prometheus by @prombot in prometheus/procfs#657

Synchronize common files from prometheus/prometheus by @prombot in prometheus/procfs#662

Synchronize common files from prometheus/prometheus by @prombot in prometheus/procfs#666

Forbid print statements by @SuperQ in prometheus/procfs#668

Update supported Go versions by @SuperQ in prometheus/procfs#669

NetIPSocketSummary: Fix typo in godoc: UPD→UDP by @Miciah in prometheus/procfs#681

Bump golang.org/x/sys from 0.25.0 to 0.26.0 by @dependabot in prometheus/procfs#682

feat(blockdevice): added sysblockdevicesize method and test by @fs185143 in prometheus/procfs#658

Bump golang.org/x/sync from 0.8.0 to 0.9.0 by @dependabot in prometheus/procfs#683

Bump golang.org/x/sys from 0.26.0 to 0.28.0 by @dependabot in prometheus/procfs#688

feat: Read PCIE AER counters class/net by @dasturiasArista in prometheus/procfs#686

Bump golang.org/x/sync from 0.9.0 to 0.10.0 by @dependabot in prometheus/procfs#690

Enhancement: Implement classes to read drm subsystem by @jritter in prometheus/procfs#654

Bump golang.org/x/sys from 0.28.0 to 0.29.0 by @dependabot in prometheus/procfs#697

fix: correct linters-settings typo in .golangci.yml by @thevilledev in prometheus/procfs#696

Add support for per-interface SNMP6 stats by @Vascko in prometheus/procfs#693

build(deps): bump golang.org/x/sync from 0.10.0 to 0.11.0 by @dependabot in prometheus/procfs#701

build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 by @dependabot in prometheus/procfs#702

build(deps): bump golang.org/x/sys from 0.29.0 to 0.30.0 by @dependabot in prometheus/procfs#703

New Contributors

@cgzones made their first contribution in prometheus/procfs#599

@timuralp made their first contribution in prometheus/procfs#648

@mshahzeb made their first contribution in prometheus/procfs#651

@Miciah made their first contribution in prometheus/procfs#681

@fs185143 made their first contribution in prometheus/procfs#658

@dasturiasArista made their first contribution in prometheus/procfs#686

@jritter made their first contribution in prometheus/procfs#654

@thevilledev made their first contribution in prometheus/procfs#696

@Vascko made their first contribution in prometheus/procfs#693

Full Changelog: prometheus/procfs@v0.15.1...v0.16.0

Commits

775997f build(deps): bump golang.org/x/sys from 0.29.0 to 0.30.0 (#703)
672fb0e build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#702)
ca691f1 build(deps): bump golang.org/x/sync from 0.10.0 to 0.11.0 (#701)
5d8dd55 Add support for per-interface SNMP6 stats
64d7b47 chore: nolint misspell on vulnerability names
3cc6dc9 fix: correct linters-settings typo in .golangci.yml
88acb09 Bump golang.org/x/sys from 0.28.0 to 0.29.0
6185448 refactor: Rename symbol names according to golang conventions
21839df enhancement: Implement classes to read drm subsystem
a05af62 Bump golang.org/x/sync from 0.9.0 to 0.10.0 (#690)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the prometheus group with 3 updates: [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang), [github.com/prometheus/common](https://github.com/prometheus/common) and [github.com/prometheus/procfs](https://github.com/prometheus/procfs). Updates `github.com/prometheus/client_golang` from 1.21.0 to 1.21.1 - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.21.0...v1.21.1) Updates `github.com/prometheus/common` from 0.62.0 to 0.63.0 - [Release notes](https://github.com/prometheus/common/releases) - [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md) - [Commits](prometheus/common@v0.62.0...v0.63.0) Updates `github.com/prometheus/procfs` from 0.15.1 to 0.16.0 - [Release notes](https://github.com/prometheus/procfs/releases) - [Commits](prometheus/procfs@v0.15.1...v0.16.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-version: 1.21.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prometheus - dependency-name: github.com/prometheus/common dependency-version: 0.63.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prometheus - dependency-name: github.com/prometheus/procfs dependency-version: 0.16.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: prometheus ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Apr 1, 2025

bobrik force-pushed the dependabot/go_modules/prometheus-491b4ad855 branch from fa9de88 to 79b3f35 Compare April 8, 2025 02:52

bobrik merged commit f434562 into master Apr 8, 2025
37 checks passed

dependabot bot deleted the dependabot/go_modules/prometheus-491b4ad855 branch April 8, 2025 03:14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the prometheus group with 3 updates#535

build(deps): bump the prometheus group with 3 updates#535
bobrik merged 1 commit intomasterfrom
dependabot/go_modules/prometheus-491b4ad855

dependabot bot commented on behalf of github Apr 1, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Apr 1, 2025

v1.21.1 / 2025-03-04

1.21.1 / 2025-03-04

v0.63.0

What's Changed

New Contributors

v0.16.0

What's Changed

New Contributors

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant