Bump the all group across 1 directory with 5 updates by dependabot[bot] · Pull Request #581 · dependabot/cli

dependabot · 2026-03-02T19:25:00Z

Bumps the all group with 3 updates in the / directory: github.com/google/go-containerregistry, go.opentelemetry.io/otel and go.opentelemetry.io/otel/exporters/otlp/otlptrace.

Updates github.com/google/go-containerregistry from 0.20.7 to 0.21.1

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.21.1

This release fixes a regression in crane introduced in the previous release.

What's Changed

Add WithFileBufferedOpener for file-backed daemon image buffering by @twdamhore in google/go-containerregistry#2214

crane: fix case in auth response json by @aelindeman in google/go-containerregistry#2218

New Contributors

@twdamhore made their first contribution in google/go-containerregistry#2214

@aelindeman made their first contribution in google/go-containerregistry#2218

Full Changelog: google/go-containerregistry@v0.21.0...v0.21.1

v0.21.0

This release updates the minimum Go version to 1.25.6.

What's Changed

fix(mutate): don't skip dir replacements via whiteout in export by @r4f4 in google/go-containerregistry#2191

Improve performance of v1.NewHash by @bmoylan in google/go-containerregistry#2194

Bump the actions group across 1 directory with 4 updates by @dependabot[bot] in google/go-containerregistry#2207

Bump the root-deps group across 1 directory with 7 updates by @dependabot[bot] in google/go-containerregistry#2195

Fix error messages in crane_test.go by @jammie-jelly in google/go-containerregistry#2189

Bump go version across packages to 1.25.6 by @Subserial in google/go-containerregistry#2211

Join go.mod dependency updates by @Subserial in google/go-containerregistry#2212

Bump the go-deps group across 3 directories with 3 updates by @dependabot[bot] in google/go-containerregistry#2213

Disable taint gosec lints by @Subserial in google/go-containerregistry#2215

Update go version used in goreleaser by @Subserial in google/go-containerregistry#2216

New Contributors

@r4f4 made their first contribution in google/go-containerregistry#2191

@jammie-jelly made their first contribution in google/go-containerregistry#2189

Full Changelog: google/go-containerregistry@v0.20.7...v0.21.0

Commits

85f2bf5 crane: fix case in auth response json (#2218)
e971d63 Add WithFileBufferedOpener for file-backed daemon image buffering (#2214)
8e2d6a6 Update go version used in goreleaser (#2216)
b58334f Disable taint gosec lints (#2215)
88b39ed Bump the go-deps group across 3 directories with 3 updates (#2213)
102ac75 join go.mod dependency updates (#2212)
d5817d5 Bump go version across packages to 1.25.6 (#2211)
23f0632 Fix error messages in crane_test.go (#2189)
438abde Bump the root-deps group across 1 directory with 7 updates (#2195)
b6eadd8 Bump the actions group across 1 directory with 4 updates (#2207)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/exporters/otlp/otlptrace from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/exporters/otlp/otlptrace's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/metric from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/metric's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all group with 3 updates in the / directory: [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry), [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) and [go.opentelemetry.io/otel/exporters/otlp/otlptrace](https://github.com/open-telemetry/opentelemetry-go). Updates `github.com/google/go-containerregistry` from 0.20.7 to 0.21.1 - [Release notes](https://github.com/google/go-containerregistry/releases) - [Commits](google/go-containerregistry@v0.20.7...v0.21.1) Updates `go.opentelemetry.io/otel` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/metric` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/trace` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) --- updated-dependencies: - dependency-name: github.com/google/go-containerregistry dependency-version: 0.21.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: go.opentelemetry.io/otel dependency-version: 1.41.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: all - dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace dependency-version: 1.41.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: all - dependency-name: go.opentelemetry.io/otel/metric dependency-version: 1.41.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: all - dependency-name: go.opentelemetry.io/otel/trace dependency-version: 1.41.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: all ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 2, 2026

dependabot bot requested review from a team as code owners March 2, 2026 19:25

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 2, 2026

JamieMagee approved these changes Mar 2, 2026

View reviewed changes

JamieMagee added this pull request to the merge queue Mar 2, 2026

Merged via the queue into main with commit d4ec5c0 Mar 2, 2026
86 of 87 checks passed

JamieMagee deleted the dependabot/go_modules/all-dbd3011ab2 branch March 2, 2026 19:50

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the all group across 1 directory with 5 updates#581

Bump the all group across 1 directory with 5 updates#581
JamieMagee merged 1 commit intomainfrom
dependabot/go_modules/all-dbd3011ab2

dependabot bot commented on behalf of github Mar 2, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 2, 2026

v0.21.1

What's Changed

New Contributors

v0.21.0

What's Changed

New Contributors

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant