build(deps): Bump the all-go group across 4 directories with 6 updates by dependabot[bot] · Pull Request #3116 · evstack/ev-node

dependabot · 2026-03-02T22:51:08Z

Bumps the all-go group with 3 updates in the / directory: go.opentelemetry.io/otel, go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp and golang.org/x/net.
Bumps the all-go group with 1 update in the /execution/evm directory: go.opentelemetry.io/otel.
Bumps the all-go group with 1 update in the /execution/grpc directory: golang.org/x/net.
Bumps the all-go group with 1 update in the /test/docker-e2e directory: github.com/celestiaorg/tastora.

Updates go.opentelemetry.io/otel from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/sdk from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/sdk's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates golang.org/x/net from 0.50.0 to 0.51.0

Commits

60b3f6f internal/http3: prevent Server handler from writing longer body than declared
b0ca456 internal/http3: fix Write in Server Handler returning the wrong value
1558ba7 publicsuffix: update to 2026-02-06
4e1c745 internal/http3: make Server response include headers that can be inferred
19f580f http2: fix nil panic in typeFrameParser for unassigned frame types
818aad7 internal/http3: add server to client trailer header support
c1bbe1a internal/http3: add client to server trailer header support
29181b8 all: remove go1.25 and older build constraints
8109305 all: upgrade go directive to at least 1.25.0 [generated]
0b37bdf quic: don't run TestStreamsCreateConcurrency in synctest bubble
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/sdk from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/sdk's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

Support testing of [Go 1.26]. (#7902)

Fixed

Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)

Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
c38a4a5 Generate semconv/v1.40.0 (#7929)
0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
Additional commits viewable in compare view

Updates golang.org/x/net from 0.50.0 to 0.51.0

Commits

60b3f6f internal/http3: prevent Server handler from writing longer body than declared
b0ca456 internal/http3: fix Write in Server Handler returning the wrong value
1558ba7 publicsuffix: update to 2026-02-06
4e1c745 internal/http3: make Server response include headers that can be inferred
19f580f http2: fix nil panic in typeFrameParser for unassigned frame types
818aad7 internal/http3: add server to client trailer header support
c1bbe1a internal/http3: add client to server trailer header support
29181b8 all: remove go1.25 and older build constraints
8109305 all: upgrade go directive to at least 1.25.0 [generated]
0b37bdf quic: don't run TestStreamsCreateConcurrency in synctest bubble
Additional commits viewable in compare view

Updates github.com/celestiaorg/tastora from 0.15.0 to 0.16.0

Release notes

Sourced from github.com/celestiaorg/tastora's releases.

v0.16.0

What's Changed

chore: create internal and external query scopes by @chatton in celestiaorg/tastora#181

Full Changelog: celestiaorg/tastora@v0.15.0...v0.16.0

Commits

e175641 chore: create internal and external query scopes (#181)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all-go group with 3 updates in the / directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go), [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) and [golang.org/x/net](https://github.com/golang/net). Bumps the all-go group with 1 update in the /execution/evm directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go). Bumps the all-go group with 1 update in the /execution/grpc directory: [golang.org/x/net](https://github.com/golang/net). Bumps the all-go group with 1 update in the /test/docker-e2e directory: [github.com/celestiaorg/tastora](https://github.com/celestiaorg/tastora). Updates `go.opentelemetry.io/otel` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/sdk` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/trace` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `golang.org/x/net` from 0.50.0 to 0.51.0 - [Commits](golang/net@v0.50.0...v0.51.0) Updates `go.opentelemetry.io/otel` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/sdk` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/trace` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `golang.org/x/net` from 0.50.0 to 0.51.0 - [Commits](golang/net@v0.50.0...v0.51.0) Updates `github.com/celestiaorg/tastora` from 0.15.0 to 0.16.0 - [Release notes](https://github.com/celestiaorg/tastora/releases) - [Commits](celestiaorg/tastora@v0.15.0...v0.16.0) --- updated-dependencies: - dependency-name: go.opentelemetry.io/otel dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: go.opentelemetry.io/otel/sdk dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: go.opentelemetry.io/otel/trace dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: golang.org/x/net dependency-version: 0.51.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: go.opentelemetry.io/otel dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: go.opentelemetry.io/otel/sdk dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: go.opentelemetry.io/otel/trace dependency-version: 1.41.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: golang.org/x/net dependency-version: 0.51.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go - dependency-name: github.com/celestiaorg/tastora dependency-version: 0.16.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go ... Signed-off-by: dependabot[bot] <support@github.com>

claude · 2026-03-03T08:16:31Z

Claude finished @julienrbrt's task in 1m 25s —— View job

Code Review

Gather context and analyze PR
Review dependency changes
Check CI status
Post final review

This is a routine Dependabot dependency bump across 4 Go module directories. All 18 changed files are go.mod/go.sum files only — no source code changes. Here's my assessment:

Summary of Updates

Package	From	To	Scope
`go.opentelemetry.io/otel` + sub-packages	1.40.0	1.41.0	`/`, `/execution/evm`
`golang.org/x/net`	0.50.0	0.51.0	`/`, `/execution/grpc`
`github.com/celestiaorg/tastora`	0.15.0	0.16.0	`/test/docker-e2e`
`google.golang.org/grpc` (indirect)	1.78.0	1.79.1	all modules
`github.com/grpc-ecosystem/grpc-gateway/v2` (indirect)	2.27.7	2.28.0	all modules

Version Consistency

All direct and indirect OTel packages (otel, otel/sdk, otel/trace, otel/metric, otel/exporters/otlp/...) are consistently updated to v1.41.0 across all modules. golang.org/x/net is uniformly at v0.51.0. No version skew detected.

Notable Changes in Updated Packages

OpenTelemetry 1.41.0:

Fixes W3C Baggage spec compliance (Baggage.Parse/New now return partial results with error on limit exceeded)
Fixes OTLP HTTP exporters to properly error when insecure endpoint is combined with TLS config — this is a security improvement relevant to this project's observability setup
Note: 1.41.0 is the last release supporting Go 1.24; the next OTel release will require Go 1.25. This project already uses go 1.25.6 across all modules, so this is not a concern.

golang.org/x/net 0.51.0:

Fixes a nil panic in http2.typeFrameParser for unassigned frame types — a meaningful reliability fix for gRPC and HTTP/2 connections
Updates publicsuffix list to 2026-02-06
Upgrades minimum Go directive to 1.25; project is already on 1.25.6 so compatible

celestiaorg/tastora 0.16.0:

Introduces internal/external query scopes (test infrastructure only, isolated to test/docker-e2e)
Single commit change — low risk

Assessment

Approve. This is a clean, well-structured dependency update:

No breaking API changes across all bumps (minor version increments)
Security and reliability improvements in OTel exporters and x/net
Consistent version updates across all modules with no drift
Go version requirements are already compatible (project is on 1.25.6)
CI is currently running; no failures at time of review

github-actions · 2026-03-03T08:16:58Z

The latest Buf updates on your PR. Results from workflow CI / buf-check (pull_request).

Build	Format	Lint	Breaking	Updated (UTC)
`✅ passed`	`⏩ skipped`	`✅ passed`	`✅ passed`	Mar 3, 2026, 8:16 AM

codecov · 2026-03-03T08:20:48Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 60.75%. Comparing base (0366336) to head (1ea5ee6).
⚠️ Report is 4 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3116      +/-   ##
==========================================
- Coverage   60.77%   60.75%   -0.02%     
==========================================
  Files         113      113              
  Lines       11675    11675              
==========================================
- Hits         7095     7093       -2     
- Misses       3777     3780       +3     
+ Partials      803      802       -1

Flag	Coverage Δ
combined	`60.75% <ø> (-0.02%)`	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

dependabot bot added the T:dependencies label Mar 2, 2026

github-actions bot and others added 2 commits March 2, 2026 22:52

chore: run just deps after Dependabot update

f80409b

Merge branch 'main' into dependabot/go_modules/all-go-8c65133a24

1ea5ee6

julienrbrt approved these changes Mar 3, 2026

View reviewed changes

julienrbrt enabled auto-merge March 3, 2026 08:18

julienrbrt added this pull request to the merge queue Mar 3, 2026

github-merge-queue bot removed this pull request from the merge queue due to failed status checks Mar 3, 2026

julienrbrt merged commit a02e90b into main Mar 3, 2026
29 checks passed

julienrbrt deleted the dependabot/go_modules/all-go-8c65133a24 branch March 3, 2026 08:40

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): Bump the all-go group across 4 directories with 6 updates#3116

build(deps): Bump the all-go group across 4 directories with 6 updates#3116
julienrbrt merged 3 commits intomainfrom
dependabot/go_modules/all-go-8c65133a24

dependabot bot commented on behalf of github Mar 2, 2026

Uh oh!

claude bot commented Mar 3, 2026 •

edited

Loading

Uh oh!

github-actions bot commented Mar 3, 2026

Uh oh!

codecov bot commented Mar 3, 2026 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 2, 2026

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

Added

Fixed

v0.16.0

What's Changed

Uh oh!

claude bot commented Mar 3, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Code Review

Summary of Updates

Version Consistency

Notable Changes in Updated Packages

Assessment

Uh oh!

github-actions bot commented Mar 3, 2026

Uh oh!

codecov bot commented Mar 3, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

claude bot commented Mar 3, 2026 •

edited

Loading

codecov bot commented Mar 3, 2026 •

edited

Loading