Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Log more -- for v0.38.12 #2

Open
wants to merge 343 commits into
base: main
Choose a base branch
from
Open

Log more -- for v0.38.12 #2

wants to merge 343 commits into from

Conversation

kpeluso
Copy link

@kpeluso kpeluso commented Oct 28, 2024

PR looks crazy because I forked from main but we use v0.38.12 today in prod


PR checklist

  • Tests written/updated
  • Changelog entry added in .changelog (we use unclog to manage our changelog)
  • Updated relevant documentation (docs/ or spec/) and code comments

dependabot bot and others added 30 commits September 20, 2023 10:54
)

Bumps [docker/login-action](https://github.com/docker/login-action) from 2.2.0 to 3.0.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@v2.2.0...v3.0.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sergio Mena <sergio@informal.systems>
…metbft#1366)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.10.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@v2.10.0...v3.0.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sergio Mena <sergio@informal.systems>
…1364)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4 to 5.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](goreleaser/goreleaser-action@v4...v5)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sergio Mena <sergio@informal.systems>
(cherry picked from commit dad1253)

Co-authored-by: Aliasgar Merchant <44069404+alijnmerchant21@users.noreply.github.com>
…tbft#1383)

* fix /spec/consensus/consensus-paper (cometbft#1375)

* fixing more broken links (cometbft#1375)

* additional link fixes (cometbft#1375)

* fixing more links, adding missing pages (cometbft#1375)

* fixing some spec p2p broken links (cometbft#1375)

* Update spec/p2p/legacy-docs/README.md

Co-authored-by: Daniel <daniel.cason@informal.systems>

* Update spec/p2p/legacy-docs/README.md

Co-authored-by: Daniel <daniel.cason@informal.systems>

* Update spec/p2p/implementation/README.md

Co-authored-by: Daniel <daniel.cason@informal.systems>

* Update spec/p2p/legacy-docs/README.md

Co-authored-by: Daniel <daniel.cason@informal.systems>

* Update spec/p2p/legacy-docs/README.md

Co-authored-by: Daniel <daniel.cason@informal.systems>

* fixed link title (cometbft#1375)

* removed invalid Google Docs links (cometbft#1375)

* remove (don't show) spec PBTS content (cometbft#1375)

* fixing broken links (cometbft#1375)

* adding more fixes for broken links (cometbft#1375)

* additional fixes (cometbft#1375)

* fixing qa broken links (cometbft#1375)

---------

Co-authored-by: Daniel <daniel.cason@informal.systems>
…#1405) (cometbft#1409)

* doc: improve documentation of BlockParams.MaxBytes (cometbft#1405)

* spec: comment on BlockParams.MaxBytes and timeouts

* spec/abci: link to consensus timeouts doc fixed

* spec/abci: comment on timeout parameters moved down

* spec: advice to wind down default BlockParams.MaxBytes

* spec: more on winding down default BlockParams.MaxBytes

* spec: fixes on winding down default BlockParams.MaxBytes

* spec: nit pic on winding down default BlockParams.MaxBytes

* Applying @sergio-mena suggestion

Co-authored-by: Sergio Mena <sergio@informal.systems>

* Applying @sergio-mena suggestion

Co-authored-by: Sergio Mena <sergio@informal.systems>

* Update spec/abci/abci++_app_requirements.md

Co-authored-by: glnro <8335464+glnro@users.noreply.github.com>

---------

Co-authored-by: Sergio Mena <sergio@informal.systems>
Co-authored-by: glnro <8335464+glnro@users.noreply.github.com>
(cherry picked from commit 80648c4)

* Fixing typo on backported file

---------

Co-authored-by: Daniel <daniel.cason@informal.systems>
* update language (cometbft#1263)

Using "a validator should" instead of 'we'

(cherry picked from commit 3d1c36d)

# Conflicts:
#	docs/core/configuration.md

* solves conflict

---------

Co-authored-by: Aliasgar Merchant <44069404+alijnmerchant21@users.noreply.github.com>
Co-authored-by: lasaro <lasaro@informal.systems>
…cometbft#1452)

Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.11.0 to 0.12.0.
- [Release notes](https://github.com/styfle/cancel-workflow-action/releases)
- [Commits](styfle/cancel-workflow-action@0.11.0...0.12.0)

---
updated-dependencies:
- dependency-name: styfle/cancel-workflow-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…metbft#1451)

Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.26.1 to 1.27.0.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases)
- [Commits](bufbuild/buf-setup-action@v1.26.1...v1.27.0)

---
updated-dependencies:
- dependency-name: bufbuild/buf-setup-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#1502) (cometbft#1509)

* Make BuildExtendedCommitInfo public

* Make BuildLastCommitInfo exported

* Fix validator set heights

* Split BuildCommitInfo functions into public and private parts

* Fix name in comment for buildLastCommitInfoFromStore

* Add doc comments for public Build_CommitInfo functions

(cherry picked from commit d4708b4)

Co-authored-by: Philip Offtermatt <57488781+p-offtermatt@users.noreply.github.com>
…metbft#1526)

Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.27.0 to 1.27.1.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases)
- [Commits](bufbuild/buf-setup-action@v1.27.0...v1.27.1)

---
updated-dependencies:
- dependency-name: bufbuild/buf-setup-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Fix linting on `main` (cometbft#1531)

* Fix linting

* Addressed comments

* Remove nolint in `psql.go`

* state/indexer: override goconst lint in psql

Should probably use some smarter format strings

* Reverted some changes not needed

---------

Co-authored-by: Mikhail Zabaluev <mikhail@informal.systems>
(cherry picked from commit 822b277)

# Conflicts:
#	test/e2e/app/app.go

* Fixed mergify conflicts

---------

Co-authored-by: Sergio Mena <sergio@informal.systems>
Co-authored-by: Jasmina Malicevic <jasmina.dustinac@gmail.com>
* indexer-respect-height-params-on-query

* Update .changelog/unreleased/bug-fixes/1529-indexer-respect-height-params-on-query.md

Co-authored-by: Jasmina Malicevic <jasmina.dustinac@gmail.com>

---------

Co-authored-by: Jasmina Malicevic <jasmina.dustinac@gmail.com>
(cherry picked from commit 95aca04)

Co-authored-by: Kamen Stoykov <24619432+kstoykov@users.noreply.github.com>
Co-authored-by: Jasmina Malicevic <jasmina.dustinac@gmail.com>
…metbft#1548)

Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.27.1 to 1.27.2.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases)
- [Commits](bufbuild/buf-setup-action@v1.27.1...v1.27.2)

---
updated-dependencies:
- dependency-name: bufbuild/buf-setup-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Max byte check (cometbft#1384)

* Update go version

go1.21.1 has security fixes

* Update go.mod to reflect go version and module

* Update to 0.38

* Update formatting

* Update to 0.38

* Update formatting

* Refactor PrepareProposal to handle transaction size limit

* Update go version

go1.21.1 has security fixes

* Update go.mod to reflect go version and module

* Update to 0.38

* Update formatting

* Refactor PrepareProposal to handle transaction size limit

* Fix passage sequence

* Fix passage sequence

(cherry picked from commit c9b75f5)

# Conflicts:
#	docs/guides/go-built-in.md
#	docs/guides/go.md

* Update go-built-in.md

Solving conflict.

* Update go.md

solving conflict

---------

Co-authored-by: Aliasgar Merchant <44069404+alijnmerchant21@users.noreply.github.com>
Co-authored-by: lasaro <lasaro@informal.systems>
…ometbft#1566)

* mempool: Add metric size of pool in bytes (cometbft#1512)

* mempool: Add metric `SizeBytes`

* Safe concurrent read of txsBytes

* Add changelog

(cherry picked from commit b50bca3)

# Conflicts:
#	mempool/metrics.gen.go

* Solving conflict

* Updating grpc and net modules

* Updating grpc and net modules

* Revert "Updating grpc and net modules"

This reverts commit 7bf2645.

* Revert "Updating grpc and net modules"

This reverts commit ba4000f.

---------

Co-authored-by: Hernán Vanzetto <15466498+hvanz@users.noreply.github.com>
Co-authored-by: lasarojc <lasaro@informal.systems>
…metbft#1596)

Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.27.2 to 1.28.0.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases)
- [Commits](bufbuild/buf-setup-action@v1.27.2...v1.28.0)

---
updated-dependencies:
- dependency-name: bufbuild/buf-setup-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Experimental - Reduce # of connections effectively used to gossip transactions out (cometbft#1558)

* maxpeers for mempool

* mempool: fix max_peers bcast routine active flag

* Use semaphore to limit concurrency

* Rename MaxPeers to MaxOutboundPeers

* Add max_outbound_peers to config toml template

* Rename in error message

* Renams the parameter to highlight its experimental nature. Extend the AddPeer method to return an error. Moves the semaphone to outside the broadcast routine

* reverting the addition of error to AddPeer. It fails if the context is done and handling this case will be done some other time, when an actual context is passed into acquire.

* reverting the addition of error to AddPeer. It fails if the context is done and handling this case will be done some other time, when an actual context is passed into acquire.

* Fixing lint issue

* renaming semaphore to something more meaningful

* make default value 0, which is the same as the current behavior. 10 is the recommended value.

* adding new flag to manifest.go

* Adding changelog

* Improve the description of the parameter in the generated config file.

* Add metric to track the current number of active connections.

* Change metric to gauge type and rename it.

* e2e: Allow disabling the PEX reactor on all nodes in the testnet

* Apply suggestions from code review

Co-authored-by: Sergio Mena <sergio@informal.systems>

* Update config/config.go comment

* fix lint error

* Improve config description

* Rename metric (remove experimental prefix)

* Add unit test

* Improve unit test

* Update mempool/reactor.go comment

---------

Co-authored-by: Ethan Buchman <ethan@coinculture.info>
Co-authored-by: Daniel Cason <daniel.cason@informal.systems>
Co-authored-by: lasarojc <lasaro@informal.systems>
Co-authored-by: hvanz <hernan.vanzetto@gmail.com>
Co-authored-by: Andy Nogueira <me@andynogueira.dev>
Co-authored-by: Sergio Mena <sergio@informal.systems>

* Updating test file, leaving it broken for now

* mempool: Limit gossip connections to persistent and non-persistent peers (experimental) (cometbft#1584)

* Ignore persistent peers from limiting of outbound connections

* Update 1558-experimental-gossip-limiting.md

Update changeling

* Fix typo in mempool/metrics.go

* Use two independent configs and semaphores for persistent and non-persistent peers

* Forgot to rename in test

* Update metric description

* Rename semaphores

* Add comment to unit test

---------

Co-authored-by: hvanz <hernan.vanzetto@gmail.com>

* Reverting to old way of reporting errors

* Reverting change that shouldn't have been included in cherry-pick

* Reverting tests to use older functions

* fix rebase merge

---------

Co-authored-by: Adi Seredinschi <adizere@gmail.com>
Co-authored-by: Ethan Buchman <ethan@coinculture.info>
Co-authored-by: Daniel Cason <daniel.cason@informal.systems>
Co-authored-by: hvanz <hernan.vanzetto@gmail.com>
Co-authored-by: Andy Nogueira <me@andynogueira.dev>
Co-authored-by: Sergio Mena <sergio@informal.systems>
Fixes the following compilation error:

```
../../../go/pkg/mod/github.com/cosmos/gogoproto@v1.4.6/proto/merge.go:123:28:
type func(x *descriptorpb.FileDescriptorProto, y
*descriptorpb.FileDescriptorProto) bool of func(x, y
*descriptorpb.FileDescriptorProto) bool {…} does not match inferred type
func(a *descriptorpb.FileDescriptorProto, b
*descriptorpb.FileDescriptorProto) int for func(a E, b E) int
```

go: go1.21.3 darwin/amd64
cometbft: v0.38.0
…s the order of transactions in the receiving reactor. (cometbft#1627)
* Bump Go version to v1.21

Signed-off-by: Thane Thomson <connect@thanethomson.com>

* Bump minimum Go version in Dockerfiles

Signed-off-by: Thane Thomson <connect@thanethomson.com>

* Bump Go version in fuzz tests

Signed-off-by: Thane Thomson <connect@thanethomson.com>

* Bump all Go versions used in CI

Signed-off-by: Thane Thomson <connect@thanethomson.com>

---------

Signed-off-by: Thane Thomson <connect@thanethomson.com>
Co-authored-by: lasaro <lasaro@informal.systems>
* Update SECURITY.md (cometbft#1626)

Signed-off-by: Thane Thomson <connect@thanethomson.com>
(cherry picked from commit 62a97f2)

# Conflicts:
#	SECURITY.md

* Resolve conflicts

Signed-off-by: Thane Thomson <connect@thanethomson.com>

---------

Signed-off-by: Thane Thomson <connect@thanethomson.com>
Co-authored-by: Thane Thomson <connect@thanethomson.com>
* docs: various improvements (cometbft#1603)

* docs: fix Query return parameters

* docs: fix the number of ABCI connections

ABCI creates 4 connections, not 3

* docs: bump cleveldb version

1.20 is 6 years old! 1.23 was released on Feb 24, 2021

* docs: remove check from PrepareProposal

This check only confuses readers. PrepareProposal returns
`proposal.Txs` (original list), not `txs`. Thus for loop is essentially
noop and can be removed. Even if we modify PrepareProposal to return
txs, it confuses application devs since CometBFT respects the limit when
creating a proposal! Therefore, application devs should only check the
limit when modifying the transactions, which is not the case here.

* docs: minor highlighting

* docs: fix syntax error

missing comma

* docs: fix gogoproto@v1.4.6/proto/merge.go:123:28: type error

go: go1.21.3 darwin/amd64
cometbft: v0.38.0

```
../../../go/pkg/mod/github.com/cosmos/gogoproto@v1.4.6/proto/merge.go:123:28:
type func(x *descriptorpb.FileDescriptorProto, y
*descriptorpb.FileDescriptorProto) bool of func(x, y
*descriptorpb.FileDescriptorProto) bool {…} does not match inferred type
func(a *descriptorpb.FileDescriptorProto, b
*descriptorpb.FileDescriptorProto) int for func(a E, b E) int
```

* docs: add missing double quote

* docs: make the same changes in go guide

- add a note about gogoproto
- simplify PrepareProposal
- add missing double quote

* docs: remove XXX

will create a separate PR updating gogoproto for v0.38

* Revert "docs: remove XXX"

This reverts commit a4a1a04.

(cherry picked from commit a05b73e)

# Conflicts:
#	docs/guides/go-built-in.md

* fix merge conflict

---------

Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
* Build changelog for v0.38.1 release

Signed-off-by: Thane Thomson <connect@thanethomson.com>

* version: Bump to v0.38.1

Signed-off-by: Thane Thomson <connect@thanethomson.com>

---------

Signed-off-by: Thane Thomson <connect@thanethomson.com>
…t#1647)

Signed-off-by: Thane Thomson <connect@thanethomson.com>
* proto: Update README

Signed-off-by: Thane Thomson <connect@thanethomson.com>

* Add versions to table for clarity

Signed-off-by: Thane Thomson <connect@thanethomson.com>

---------

Signed-off-by: Thane Thomson <connect@thanethomson.com>
(cherry picked from commit ee99bf5)

Co-authored-by: Thane Thomson <connect@thanethomson.com>
…bft#1660)

Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@v5.0.0...v5.1.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…metbft#1661)

Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action) from 1.28.0 to 1.28.1.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases)
- [Commits](bufbuild/buf-setup-action@v1.28.0...v1.28.1)

---
updated-dependencies:
- dependency-name: bufbuild/buf-setup-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot bot and others added 24 commits August 20, 2024 18:52
…ometbft#3797)

Bumps
[github.com/gorilla/websocket](https://github.com/gorilla/websocket)
from 1.5.0 to 1.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/gorilla/websocket/releases">github.com/gorilla/websocket's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.3</h2>
<h2>Important change</h2>
<p>This reverts the websockets package back to <a
href="https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d">https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d</a></p>
<h2>What's Changed</h2>
<ul>
<li>Fixes subprotocol selection (aling with rfc6455) by <a
href="https://github.com/KSDaemon"><code>@​KSDaemon</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/823">gorilla/websocket#823</a></li>
<li>Update README.md, replace master to main by <a
href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/862">gorilla/websocket#862</a></li>
<li>Use status code constant by <a
href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/864">gorilla/websocket#864</a></li>
<li>conn.go: default close handler should not return ErrCloseSent. by <a
href="https://github.com/pnx"><code>@​pnx</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/865">gorilla/websocket#865</a></li>
<li>fix: replace ioutil.readfile with os.readfile by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/868">gorilla/websocket#868</a></li>
<li>fix: add comment for the readBufferSize and writeBufferSize by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/869">gorilla/websocket#869</a></li>
<li>Remove noisy printf in NextReader() and beginMessage() by <a
href="https://github.com/bcreane"><code>@​bcreane</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/878">gorilla/websocket#878</a></li>
<li>docs(echoreadall): fix function echoReadAll comment by <a
href="https://github.com/XdpCs"><code>@​XdpCs</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/881">gorilla/websocket#881</a></li>
<li>make tests parallel by <a
href="https://github.com/ninedraft"><code>@​ninedraft</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/872">gorilla/websocket#872</a></li>
<li>Upgrader.Upgrade: use http.ResposnseController by <a
href="https://github.com/ninedraft"><code>@​ninedraft</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/871">gorilla/websocket#871</a></li>
<li>Do not handle network error in <code>SetCloseHandler()</code> by <a
href="https://github.com/nak3"><code>@​nak3</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/863">gorilla/websocket#863</a></li>
<li>perf: reduce timer in write_control by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/879">gorilla/websocket#879</a></li>
<li>fix: lint example code by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/890">gorilla/websocket#890</a></li>
<li>feat: format message type by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/889">gorilla/websocket#889</a></li>
<li>Remove hideTempErr to allow downstream users to check for errors
like net.ErrClosed by <a
href="https://github.com/UnAfraid"><code>@​UnAfraid</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/894">gorilla/websocket#894</a></li>
<li>Do not timeout when WriteControl deadline is zero in <a
href="https://redirect.github.com/gorilla/websocket/pull/898">gorilla/websocket#898</a></li>
<li>Excludes errchecks linter by <a
href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a>
in <a
href="https://redirect.github.com/gorilla/websocket/pull/904">gorilla/websocket#904</a></li>
<li>Return errors instead of printing to logs by <a
href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a>
in <a
href="https://redirect.github.com/gorilla/websocket/pull/897">gorilla/websocket#897</a></li>
<li>Revert &quot; Update go version &amp; add verification/testing tools
(<a
href="https://redirect.github.com/gorilla/websocket/issues/840">#840</a>)&quot;
by <a
href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a>
in <a
href="https://redirect.github.com/gorilla/websocket/pull/908">gorilla/websocket#908</a></li>
<li>Fixes broken random value generation by <a
href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a>
in <a
href="https://redirect.github.com/gorilla/websocket/pull/926">gorilla/websocket#926</a></li>
<li>Reverts back to v1.5.0 by <a
href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a>
in <a
href="https://redirect.github.com/gorilla/websocket/pull/929">gorilla/websocket#929</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/KSDaemon"><code>@​KSDaemon</code></a>
made their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/823">gorilla/websocket#823</a></li>
<li><a href="https://github.com/mstmdev"><code>@​mstmdev</code></a> made
their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/862">gorilla/websocket#862</a></li>
<li><a href="https://github.com/pnx"><code>@​pnx</code></a> made their
first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/865">gorilla/websocket#865</a></li>
<li><a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> made
their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/868">gorilla/websocket#868</a></li>
<li><a href="https://github.com/bcreane"><code>@​bcreane</code></a> made
their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/878">gorilla/websocket#878</a></li>
<li><a href="https://github.com/XdpCs"><code>@​XdpCs</code></a> made
their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/881">gorilla/websocket#881</a></li>
<li><a href="https://github.com/ninedraft"><code>@​ninedraft</code></a>
made their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/872">gorilla/websocket#872</a></li>
<li><a href="https://github.com/nak3"><code>@​nak3</code></a> made their
first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/863">gorilla/websocket#863</a></li>
<li><a href="https://github.com/UnAfraid"><code>@​UnAfraid</code></a>
made their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/894">gorilla/websocket#894</a></li>
<li><a
href="https://github.com/apoorvajagtap"><code>@​apoorvajagtap</code></a>
made their first contribution in <a
href="https://redirect.github.com/gorilla/websocket/pull/904">gorilla/websocket#904</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3">https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3</a></p>
<h2>v1.5.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Fixes subprotocol selection (aling with rfc6455) by <a
href="https://github.com/KSDaemon"><code>@​KSDaemon</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/823">gorilla/websocket#823</a></li>
<li>Update README.md, replace master to main by <a
href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/862">gorilla/websocket#862</a></li>
<li>Use status code constant by <a
href="https://github.com/mstmdev"><code>@​mstmdev</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/864">gorilla/websocket#864</a></li>
<li>conn.go: default close handler should not return ErrCloseSent. by <a
href="https://github.com/pnx"><code>@​pnx</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/865">gorilla/websocket#865</a></li>
<li>fix: replace ioutil.readfile with os.readfile by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/868">gorilla/websocket#868</a></li>
<li>fix: add comment for the readBufferSize and writeBufferSize by <a
href="https://github.com/rfyiamcool"><code>@​rfyiamcool</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/869">gorilla/websocket#869</a></li>
<li>Remove noisy printf in NextReader() and beginMessage() by <a
href="https://github.com/bcreane"><code>@​bcreane</code></a> in <a
href="https://redirect.github.com/gorilla/websocket/pull/878">gorilla/websocket#878</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/gorilla/websocket/commit/ce903f6d1d961af3a8602f2842c8b1c3fca58c4d"><code>ce903f6</code></a>
Reverts to v1.5.0</li>
<li><a
href="https://github.com/gorilla/websocket/commit/9ec25ca502ec881a7e873d3cdf35da60eab22037"><code>9ec25ca</code></a>
fixes broken random value generation</li>
<li><a
href="https://github.com/gorilla/websocket/commit/1bddf2e0dba6f35492b0f5614905b291cd0ab88d"><code>1bddf2e</code></a>
bumps go version &amp; removes deprecated module usage</li>
<li><a
href="https://github.com/gorilla/websocket/commit/750bf92096b4cd4d75082948a4e143f303a65390"><code>750bf92</code></a>
adds GHA &amp; Makefile configs</li>
<li><a
href="https://github.com/gorilla/websocket/commit/b2c246b2ec6f86b53889c79022fec8dabe0a20bb"><code>b2c246b</code></a>
Revert &quot; Update go version &amp; add verification/testing tools (<a
href="https://redirect.github.com/gorilla/websocket/issues/840">#840</a>)&quot;</li>
<li><a
href="https://github.com/gorilla/websocket/commit/09a6bab4667fc302c7f23ad770ce48be6fc2d15f"><code>09a6bab</code></a>
removing error handling while closing connections</li>
<li><a
href="https://github.com/gorilla/websocket/commit/58af150309a40ad57463b8087fe33d59d5a490d3"><code>58af150</code></a>
return errors instead of printing to logs</li>
<li><a
href="https://github.com/gorilla/websocket/commit/e5f1a0aad0accdff7dc9131fdcce912e28d8f4d5"><code>e5f1a0a</code></a>
excludes errchecks linter</li>
<li><a
href="https://github.com/gorilla/websocket/commit/b2a86a174473e870c9fcc3eaba8957689090d2cc"><code>b2a86a1</code></a>
Do not timeout when WriteControl deadline is zero</li>
<li><a
href="https://github.com/gorilla/websocket/commit/695e9095ce8736ac99c83939ca6b0fe93768f680"><code>695e909</code></a>
Remove hideTempErr to allow downstream users to check for errors like
net.Err...</li>
<li>Additional commits viewable in <a
href="https://github.com/gorilla/websocket/compare/v1.5.0...v1.5.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/gorilla/websocket&package-manager=go_modules&previous-version=1.5.0&new-version=1.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…ft#3728) (cometbft#3758)

Running a `go get` should consistently build this project as per the
README. However, the latest patch release of `btcec/v2` is not a proper
Semantic Versioning patch. It removes an error return value from
`ecdsa.SignCompact` function (btcsuite/btcd@e5d15fd). This is
functionally a no-op, as the underlying function was hardcoded to always
return `nil` as error. However, this is still a breaking change
(compiler/build error) for all consumers of this function, as they
historically expected two return values, but now only get one.

Ref: btcsuite/btcd#2211
Ref: cometbft#3531
Ref: cometbft#3536

---

#### PR checklist

- [ ] Tests written/updated
- [x] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments<hr>This is an automatic backport of pull request cometbft#3728 done by
[Mergify](https://mergify.com).

---------

Co-authored-by: Valters Jansons <sigv@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
…t#3801)

Bumps [github.com/google/uuid](https://github.com/google/uuid) from
1.4.0 to 1.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/uuid/releases">github.com/google/uuid's
releases</a>.</em></p>
<blockquote>
<h2>v1.6.0</h2>
<h2><a
href="https://github.com/google/uuid/compare/v1.5.0...v1.6.0">1.6.0</a>
(2024-01-16)</h2>
<h3>Features</h3>
<ul>
<li>add Max UUID constant (<a
href="https://redirect.github.com/google/uuid/issues/149">#149</a>) (<a
href="https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3">c58770e</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li>fix typo in version 7 uuid documentation (<a
href="https://redirect.github.com/google/uuid/issues/153">#153</a>) (<a
href="https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06">016b199</a>)</li>
<li>Monotonicity in UUIDv7 (<a
href="https://redirect.github.com/google/uuid/issues/150">#150</a>) (<a
href="https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6">a2b2b32</a>)</li>
</ul>
<h2>v1.5.0</h2>
<h2><a
href="https://github.com/google/uuid/compare/v1.4.0...v1.5.0">1.5.0</a>
(2023-12-12)</h2>
<h3>Features</h3>
<ul>
<li>Validate UUID without creating new UUID (<a
href="https://redirect.github.com/google/uuid/issues/141">#141</a>) (<a
href="https://github.com/google/uuid/commit/9ee7366e66c9ad96bab89139418a713dc584ae29">9ee7366</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/google/uuid/blob/master/CHANGELOG.md">github.com/google/uuid's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/google/uuid/compare/v1.5.0...v1.6.0">1.6.0</a>
(2024-01-16)</h2>
<h3>Features</h3>
<ul>
<li>add Max UUID constant (<a
href="https://redirect.github.com/google/uuid/issues/149">#149</a>) (<a
href="https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3">c58770e</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li>fix typo in version 7 uuid documentation (<a
href="https://redirect.github.com/google/uuid/issues/153">#153</a>) (<a
href="https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06">016b199</a>)</li>
<li>Monotonicity in UUIDv7 (<a
href="https://redirect.github.com/google/uuid/issues/150">#150</a>) (<a
href="https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6">a2b2b32</a>)</li>
</ul>
<h2><a
href="https://github.com/google/uuid/compare/v1.4.0...v1.5.0">1.5.0</a>
(2023-12-12)</h2>
<h3>Features</h3>
<ul>
<li>Validate UUID without creating new UUID (<a
href="https://redirect.github.com/google/uuid/issues/141">#141</a>) (<a
href="https://github.com/google/uuid/commit/9ee7366e66c9ad96bab89139418a713dc584ae29">9ee7366</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/google/uuid/commit/0f11ee6918f41a04c201eceeadf612a377bc7fbc"><code>0f11ee6</code></a>
chore(master): release 1.6.0 (<a
href="https://redirect.github.com/google/uuid/issues/151">#151</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/16939dafc37a38d2743810a8bdf60fdad6a0f3a3"><code>16939da</code></a>
chore(tests): add strict monotonicity test case for uuid v7. (<a
href="https://redirect.github.com/google/uuid/issues/154">#154</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06"><code>016b199</code></a>
fix: fix typo in version 7 uuid documentation (<a
href="https://redirect.github.com/google/uuid/issues/153">#153</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/1d8b6ea0990d688105843a9a67b1d07222350502"><code>1d8b6ea</code></a>
ci: set token permissions to github workflows (<a
href="https://redirect.github.com/google/uuid/issues/143">#143</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6"><code>a2b2b32</code></a>
fix: Monotonicity in UUIDv7 (<a
href="https://redirect.github.com/google/uuid/issues/150">#150</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3"><code>c58770e</code></a>
feat: add Max UUID constant (<a
href="https://redirect.github.com/google/uuid/issues/149">#149</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/4d47f8eb066f43cfaedd728a543479d9c9dfa8f6"><code>4d47f8e</code></a>
chore(master): release 1.5.0 (<a
href="https://redirect.github.com/google/uuid/issues/145">#145</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/9ee7366e66c9ad96bab89139418a713dc584ae29"><code>9ee7366</code></a>
feat: Validate UUID without creating new UUID (<a
href="https://redirect.github.com/google/uuid/issues/141">#141</a>)</li>
<li><a
href="https://github.com/google/uuid/commit/b35aa6a595277504b1ec94c520d4091ec050b9d5"><code>b35aa6a</code></a>
add uuid version 6 and 7 (<a
href="https://redirect.github.com/google/uuid/issues/139">#139</a>)</li>
<li>See full diff in <a
href="https://github.com/google/uuid/compare/v1.4.0...v1.6.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/google/uuid&package-manager=go_modules&previous-version=1.4.0&new-version=1.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…t#3795)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from
1.8.0 to 1.8.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/spf13/cobra/releases">github.com/spf13/cobra's
releases</a>.</em></p>
<blockquote>
<h2>v1.8.1</h2>
<h2>✨ Features</h2>
<ul>
<li>Add env variable to suppress completion descriptions on create by <a
href="https://github.com/scop"><code>@​scop</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/1938">spf13/cobra#1938</a></li>
</ul>
<h2>🐛 Bug fixes</h2>
<ul>
<li>Micro-optimizations by <a
href="https://github.com/scop"><code>@​scop</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/1957">spf13/cobra#1957</a></li>
</ul>
<h2>🔧 Maintenance</h2>
<ul>
<li>build(deps): bump github.com/cpuguy83/go-md2man/v2 from 2.0.3 to
2.0.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2127">spf13/cobra#2127</a></li>
<li>Consistent annotation names by <a
href="https://github.com/nirs"><code>@​nirs</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2140">spf13/cobra#2140</a></li>
<li>Remove fully inactivated linters by <a
href="https://github.com/nirs"><code>@​nirs</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2148">spf13/cobra#2148</a></li>
<li>Address golangci-lint deprecation warnings, enable some more linters
by <a href="https://github.com/scop"><code>@​scop</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2152">spf13/cobra#2152</a></li>
</ul>
<h2>🧪 Testing &amp; CI/CD</h2>
<ul>
<li>Add test for func in cobra.go by <a
href="https://github.com/korovindenis"><code>@​korovindenis</code></a>
in <a
href="https://redirect.github.com/spf13/cobra/pull/2094">spf13/cobra#2094</a></li>
<li>ci: test golang 1.22 by <a
href="https://github.com/cyrilico"><code>@​cyrilico</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2113">spf13/cobra#2113</a></li>
<li>Optimized and added more linting by <a
href="https://github.com/scop"><code>@​scop</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2099">spf13/cobra#2099</a></li>
<li>build(deps): bump actions/setup-go from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2087">spf13/cobra#2087</a></li>
<li>build(deps): bump actions/labeler from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2086">spf13/cobra#2086</a></li>
<li>build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/spf13/cobra/pull/2108">spf13/cobra#2108</a></li>
<li>build(deps): bump actions/cache from 3 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2102">spf13/cobra#2102</a></li>
</ul>
<h2>✏️ Documentation</h2>
<ul>
<li>Fixes and docs for usage as plugin by <a
href="https://github.com/nirs"><code>@​nirs</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2070">spf13/cobra#2070</a></li>
<li>flags: clarify documentation that LocalFlags related function do not
modify the state by <a
href="https://github.com/niamster"><code>@​niamster</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2064">spf13/cobra#2064</a></li>
<li>chore: remove repetitive words by <a
href="https://github.com/racerole"><code>@​racerole</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2122">spf13/cobra#2122</a></li>
<li>Add LXC to the list of projects using Cobra <a
href="https://github.com/VaradBelwalkar"><code>@​VaradBelwalkar</code></a>
in <a
href="https://redirect.github.com/spf13/cobra/pull/2071">spf13/cobra#2071</a></li>
<li>Update projects_using_cobra.md by <a
href="https://github.com/marcuskohlberg"><code>@​marcuskohlberg</code></a>
in <a
href="https://redirect.github.com/spf13/cobra/pull/2089">spf13/cobra#2089</a></li>
<li>[chore]: update projects using cobra by <a
href="https://github.com/cmwylie19"><code>@​cmwylie19</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2093">spf13/cobra#2093</a></li>
<li>Add Taikun CLI to list of projects by <a
href="https://github.com/Smidra"><code>@​Smidra</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2098">spf13/cobra#2098</a></li>
<li>Add Incus to the list of projects using Cobra by <a
href="https://github.com/montag451"><code>@​montag451</code></a> in <a
href="https://redirect.github.com/spf13/cobra/pull/2118">spf13/cobra#2118</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/spf13/cobra/commit/e94f6d0dd9a5e5738dca6bce03c4b1207ffbc0ec"><code>e94f6d0</code></a>
Address golangci-lint deprecation warnings, enable some more linters (<a
href="https://redirect.github.com/spf13/cobra/issues/2152">#2152</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/8003b74a10ef0d0d84fe3c408d3939d86fdeb210"><code>8003b74</code></a>
Remove fully inactivated linters (<a
href="https://redirect.github.com/spf13/cobra/issues/2148">#2148</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/5c2c1d627d35a00153764a3d37400efc66eaca1c"><code>5c2c1d6</code></a>
Consistent annotation names (<a
href="https://redirect.github.com/spf13/cobra/issues/2140">#2140</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/5a1acea3210649f3d70002818ec04b09f6347062"><code>5a1acea</code></a>
build(deps): bump github.com/cpuguy83/go-md2man/v2 from 2.0.3 to 2.0.4
(<a
href="https://redirect.github.com/spf13/cobra/issues/2127">#2127</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/0fc86c2ffd0326b6f6ed5fa36803d26993655c08"><code>0fc86c2</code></a>
docs: update user guide (<a
href="https://redirect.github.com/spf13/cobra/issues/2128">#2128</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/6b5f577ebce858ee70fcdd1f062ea3af4b1c03ab"><code>6b5f577</code></a>
More linting (<a
href="https://redirect.github.com/spf13/cobra/issues/2099">#2099</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/bd914e58d69d65e494b45bdb40e90ca816b92fcc"><code>bd914e5</code></a>
fix: remove deprecated io/ioutils package (<a
href="https://redirect.github.com/spf13/cobra/issues/2120">#2120</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/1f80fa2e23cc550c131e8a54dc72d11b265c6fcf"><code>1f80fa2</code></a>
chore: remove repetitive words (<a
href="https://redirect.github.com/spf13/cobra/issues/2122">#2122</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/c69ae4c36b134dd69e5ab9d3d6b9f571ca5afe1e"><code>c69ae4c</code></a>
ci: test golang 1.22 (<a
href="https://redirect.github.com/spf13/cobra/issues/2113">#2113</a>)</li>
<li><a
href="https://github.com/spf13/cobra/commit/a30cee5e5ab0949cc888ef00ae6aee24e091e042"><code>a30cee5</code></a>
build(deps): bump actions/cache from 3 to 4 (<a
href="https://redirect.github.com/spf13/cobra/issues/2102">#2102</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/spf13/cobra/compare/v1.8.0...v1.8.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/spf13/cobra&package-manager=go_modules&previous-version=1.8.0&new-version=1.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…bft#3772)

Bumps [github.com/spf13/viper](https://github.com/spf13/viper) from
1.18.1 to 1.19.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/spf13/viper/releases">github.com/spf13/viper's
releases</a>.</em></p>
<blockquote>
<h2>v1.19.0</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>fix!: hide struct binding behind a feature flag by <a
href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a>
in <a
href="https://redirect.github.com/spf13/viper/pull/1720">spf13/viper#1720</a></li>
</ul>
<h3>Dependency Updates ⬆️</h3>
<ul>
<li>build(deps): bump github/codeql-action from 2.22.8 to 2.22.9 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1705">spf13/viper#1705</a></li>
<li>build(deps): bump actions/setup-go from 4.1.0 to 5.0.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1703">spf13/viper#1703</a></li>
<li>build(deps): bump github/codeql-action from 2.22.9 to 3.22.11 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1713">spf13/viper#1713</a></li>
<li>build(deps): bump github.com/pelletier/go-toml/v2 from 2.1.0 to
2.1.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1711">spf13/viper#1711</a></li>
<li>build(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1722">spf13/viper#1722</a></li>
<li>build(deps): bump github/codeql-action from 3.22.11 to 3.23.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1734">spf13/viper#1734</a></li>
<li>build(deps): bump actions/dependency-review-action from 3.1.4 to
3.1.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1731">spf13/viper#1731</a></li>
<li>build(deps): bump mheap/github-action-required-labels from 5.1.0 to
5.2.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1743">spf13/viper#1743</a></li>
<li>build(deps): bump github/codeql-action from 3.23.0 to 3.23.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1742">spf13/viper#1742</a></li>
<li>build(deps): bump actions/dependency-review-action from 3.1.5 to
4.0.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1739">spf13/viper#1739</a></li>
<li>build(deps): bump cachix/install-nix-action from 24 to 25 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1737">spf13/viper#1737</a></li>
<li>build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1751">spf13/viper#1751</a></li>
<li>build(deps): bump github/codeql-action from 3.24.0 to 3.24.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1760">spf13/viper#1760</a></li>
<li>build(deps): bump actions/dependency-review-action from 4.0.0 to
4.1.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1761">spf13/viper#1761</a></li>
<li>build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/spf13/viper/pull/1757">spf13/viper#1757</a></li>
<li>build(deps): bump mheap/github-action-required-labels from 5.2.0 to
5.3.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1759">spf13/viper#1759</a></li>
<li>build(deps): bump github/codeql-action from 3.24.1 to 3.24.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1763">spf13/viper#1763</a></li>
<li>build(deps): bump github.com/sagikazarmark/crypt from 0.17.0 to
0.18.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1774">spf13/viper#1774</a></li>
<li>build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1770">spf13/viper#1770</a></li>
<li>build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/spf13/viper/pull/1776">spf13/viper#1776</a></li>
<li>build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1775">spf13/viper#1775</a></li>
<li>build(deps): bump cachix/install-nix-action from 25 to 26 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1778">spf13/viper#1778</a></li>
<li>build(deps): bump actions/dependency-review-action from 4.1.0 to
4.1.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1767">spf13/viper#1767</a></li>
<li>build(deps): bump github/codeql-action from 3.24.6 to 3.24.9 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1790">spf13/viper#1790</a></li>
<li>build(deps): bump mheap/github-action-required-labels from 5.3.0 to
5.4.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1789">spf13/viper#1789</a></li>
<li>build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1780">spf13/viper#1780</a></li>
<li>build(deps): bump actions/dependency-review-action from 4.1.3 to
4.2.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1793">spf13/viper#1793</a></li>
<li>chore: upgrade crypt by <a
href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a>
in <a
href="https://redirect.github.com/spf13/viper/pull/1794">spf13/viper#1794</a></li>
<li>build(deps): bump github.com/pelletier/go-toml/v2 from 2.1.1 to
2.2.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1788">spf13/viper#1788</a></li>
<li>build(deps): bump actions/dependency-review-action from 4.2.4 to
4.2.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1796">spf13/viper#1796</a></li>
<li>build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.0 to
2.2.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1804">spf13/viper#1804</a></li>
<li>build(deps): bump github/codeql-action from 3.24.9 to 3.25.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1806">spf13/viper#1806</a></li>
<li>build(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1807">spf13/viper#1807</a></li>
<li>build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1808">spf13/viper#1808</a></li>
<li>build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1813">spf13/viper#1813</a></li>
<li>build(deps): bump github/codeql-action from 3.25.1 to 3.25.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1811">spf13/viper#1811</a></li>
<li>build(deps): bump mheap/github-action-required-labels from 5.4.0 to
5.4.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1817">spf13/viper#1817</a></li>
<li>build(deps): bump actions/dependency-review-action from 4.2.5 to
4.3.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1821">spf13/viper#1821</a></li>
<li>build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.1 to
2.2.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1822">spf13/viper#1822</a></li>
<li>build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1824">spf13/viper#1824</a></li>
<li>build(deps): bump github/codeql-action from 3.25.2 to 3.25.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1828">spf13/viper#1828</a></li>
<li>build(deps): bump golangci/golangci-lint-action from 4.0.0 to 6.0.1
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/spf13/viper/pull/1829">spf13/viper#1829</a></li>
<li>build(deps): bump github/codeql-action from 3.25.4 to 3.25.7 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/spf13/viper/pull/1844">spf13/viper#1844</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/spf13/viper/commit/b9733f03ad014259d08f405c13e3d7f469fa1a8e"><code>b9733f0</code></a>
build(deps): bump actions/checkout from 4.1.4 to 4.1.6</li>
<li><a
href="https://github.com/spf13/viper/commit/6ecc5c810f98ebe1984fb55ce5ad5c6afc3fc44e"><code>6ecc5c8</code></a>
build(deps): bump cachix/install-nix-action from 26 to 27</li>
<li><a
href="https://github.com/spf13/viper/commit/248c6fdd03eafa8a524f75af5b5c059af0c952bd"><code>248c6fd</code></a>
build(deps): bump github/codeql-action from 3.25.4 to 3.25.7</li>
<li><a
href="https://github.com/spf13/viper/commit/abea773f16452659b7b47770862dfb29b61e82d1"><code>abea773</code></a>
Update references to bketelsen/crypt</li>
<li><a
href="https://github.com/spf13/viper/commit/f17acb4fd40fcd0e22d09217b6680a6297092a33"><code>f17acb4</code></a>
build(deps): bump golangci/golangci-lint-action from 4.0.0 to 6.0.1</li>
<li><a
href="https://github.com/spf13/viper/commit/8e285a5880531e2ed4933648e388353df1db5106"><code>8e285a5</code></a>
build(deps): bump github/codeql-action from 3.25.2 to 3.25.4</li>
<li><a
href="https://github.com/spf13/viper/commit/40176207a58a5f2b0b95e72da8b6ebf2df02416e"><code>4017620</code></a>
build(deps): bump actions/setup-go from 5.0.0 to 5.0.1</li>
<li><a
href="https://github.com/spf13/viper/commit/b67e814385886e962dfe9c304a69e42b8880d3a8"><code>b67e814</code></a>
build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.1 to
2.2.2</li>
<li><a
href="https://github.com/spf13/viper/commit/4a182c767b9521adfd8981bea4015457105f608e"><code>4a182c7</code></a>
build(deps): bump actions/dependency-review-action from 4.2.5 to
4.3.2</li>
<li><a
href="https://github.com/spf13/viper/commit/45a0e1214a55ce1fcdc6e66526177e2dc83f2bef"><code>45a0e12</code></a>
build(deps): bump mheap/github-action-required-labels</li>
<li>Additional commits viewable in <a
href="https://github.com/spf13/viper/compare/v1.18.1...v1.19.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/spf13/viper&package-manager=go_modules&previous-version=1.18.1&new-version=1.19.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
…etbft#3783)

Bumps [github.com/golang/protobuf](https://github.com/golang/protobuf)
from 1.5.3 to 1.5.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/protobuf/releases">github.com/golang/protobuf's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.4</h2>
<p>Notable changes</p>
<ul>
<li>update descriptor.proto to latest version</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/golang/protobuf/commit/75de7c059e36b64f01d0dd234ff2fff404ec3374"><code>75de7c0</code></a>
Merge pull request <a
href="https://redirect.github.com/golang/protobuf/issues/1597">#1597</a>
from golang/updatedesc</li>
<li><a
href="https://github.com/golang/protobuf/commit/b7697bb698b1c56643249ef6179c7cae1478881d"><code>b7697bb</code></a>
all: update descriptor.proto to latest version</li>
<li>See full diff in <a
href="https://github.com/golang/protobuf/compare/v1.5.3...v1.5.4">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/golang/protobuf&package-manager=go_modules&previous-version=1.5.3&new-version=1.5.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
cometbft#3786)

Bumps
[github.com/cometbft/cometbft-db](https://github.com/cometbft/cometbft-db)
from 0.7.0 to 0.14.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cometbft/cometbft-db/releases">github.com/cometbft/cometbft-db's
releases</a>.</em></p>
<blockquote>
<h2>v0.14.0</h2>
<p>📖 <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v0140">CHANGELOG</a></p>
<h2>v0.13.0</h2>
<p>📖 <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v0130">CHANGELOG</a></p>
<h2>v0.12.0</h2>
<p>:book: <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v0120">CHANGELOG</a></p>
<h2>v0.11.0</h2>
<p>:book: <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v0110">CHANGELOG</a></p>
<h2>v0.10.0</h2>
<p>:book: <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v0100">CHANGELOG</a></p>
<h2>v0.9.4</h2>
<p><a
href="https://github.com/cometbft/cometbft-db/blob/v0.9.x/CHANGELOG.md#v094">CHANGELOG</a></p>
<h2>v0.9.3</h2>
<p>📖 <a
href="https://github.com/cometbft/cometbft-db/blob/v0.9.x/CHANGELOG.md#v093">CHANGELOG</a></p>
<h2>v0.9.0</h2>
<p>:book: <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v090">CHANGELOG</a></p>
<h2>v0.8.0</h2>
<p>:book: <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md#v080">CHANGELOG</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cometbft/cometbft-db/blob/main/CHANGELOG.md">github.com/cometbft/cometbft-db's
changelog</a>.</em></p>
<blockquote>
<h2>v0.14.0</h2>
<p><em>Aug 9, 2024</em></p>
<p>This release reinstates boltdb and cleveldb as deprecated backend
types.
Please note that we discourage the use of them, as we plan to
discontinue support in a future release.</p>
<h3>DEPENDENCIES</h3>
<ul>
<li>reinstate BoltDB and ClevelDB as backend DBs
(<a
href="https://redirect.github.com/cometbft/cometbft-db/pull/177">#177</a>)</li>
</ul>
<h2>v0.13.0</h2>
<p><em>Aug 2, 2024</em></p>
<p>This release:</p>
<ul>
<li>changes the contract of the Iterator Key() and Value() APIs. Namely,
the caller is now responsible for creating a copy of their returned
value if they want to modify it.</li>
<li>removes support for boltDB and clevelDB, which were marked as
deprecated in release v0.12.0.</li>
</ul>
<h3>BREAKING CHANGES</h3>
<ul>
<li>removed deprecated boltdb and cleveldb (<a
href="https://redirect.github.com/cometbft/cometbft-db/pull/155">#155</a>)</li>
</ul>
<h3>FEATURES</h3>
<ul>
<li>Iterator Key and Value APIs now return an object that must be copied
before
use (<a
href="https://redirect.github.com/cometbft/cometbft-db/pull/168">#168</a>)</li>
</ul>
<h2>v0.12.0</h2>
<p><em>Apr 10, 2024</em></p>
<p>This release deprecates boltdb and cleveldb. Also, Go MSRV is bumped
to 1.22.</p>
<h3>FEATURES</h3>
<ul>
<li>Deprecate boltdb and cleveldb. If you're using either of those,
please reach
out (<a
href="https://redirect.github.com/cometbft/cometbft-db/pull/153">#153</a>)</li>
</ul>
<h2>v0.11.0</h2>
<p><em>Feb 7, 2024</em></p>
<p>This release adds support for explicit compaction. Please note that
badger and
bolt do not support this.</p>
<h3>BREAKING CHANGES</h3>
<ul>
<li>Expanded db interface to support compaction (<a
href="https://redirect.github.com/cometbft/cometbft-db/pull/111">#111</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/4d1c572491cee4a8e320f7169c78f7b496ae5ae9"><code>4d1c572</code></a>
Release v0.14.0 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/178">#178</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/9db1a4497b2714eaa5ed0390cd2d6641b38a2472"><code>9db1a44</code></a>
Reinstate BoltDB and ClevelDB as backend DBs (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/177">#177</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/a79d349c76690be5a41efe45f0d89c6948c89693"><code>a79d349</code></a>
Update v0.13.0 Changelog (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/176">#176</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/4206c01301462934dc5365f45067009d6570acb7"><code>4206c01</code></a>
build(deps): bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/173">#173</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/fa53f970216bb5229f665fa7fb13500360a78d00"><code>fa53f97</code></a>
build(deps): bump docker/setup-buildx-action from 3.4.0 to 3.6.1 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/174">#174</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/66f1cd5d1f01b44d08a503ec9d26c51612c42e6c"><code>66f1cd5</code></a>
build(deps): bump docker/login-action from 3.2.0 to 3.3.0 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/171">#171</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/73ce4932bd9f4b36fa60db6274aa0263fd1e669a"><code>73ce493</code></a>
updated changelog for release v0.13.0 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/172">#172</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/8182c1c90b5a785236962395beee587faf1a931e"><code>8182c1c</code></a>
Update cometbft-db Go version to 1.22.5 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/169">#169</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/8ff694289eec12e8e76d4e47af581ac025521575"><code>8ff6942</code></a>
feat!: Iterator <code>Key()</code> and <code>Value()</code> no longer
return a copy (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/168">#168</a>)</li>
<li><a
href="https://github.com/cometbft/cometbft-db/commit/20b4a09e993902b5e90064bdf28724f86399c27f"><code>20b4a09</code></a>
build(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 (<a
href="https://redirect.github.com/cometbft/cometbft-db/issues/167">#167</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/cometbft/cometbft-db/compare/v0.7.0...v0.14.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/cometbft/cometbft-db&package-manager=go_modules&previous-version=0.7.0&new-version=0.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
…ometbft#3790)

Bumps
[github.com/prometheus/common](https://github.com/prometheus/common)
from 0.42.0 to 0.55.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/prometheus/common/releases">github.com/prometheus/common's
releases</a>.</em></p>
<blockquote>
<h2>v0.55.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Move goautoneg to external dependency by <a
href="https://github.com/mikelolasagasti"><code>@​mikelolasagasti</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/625">prometheus/common#625</a></li>
<li>Expose secret as SecretReader and InlineSecret from config package
by <a href="https://github.com/pracucci"><code>@​pracucci</code></a> in
<a
href="https://redirect.github.com/prometheus/common/pull/650">prometheus/common#650</a></li>
<li>Fix HTTPClientConfig JSON marshalling by <a
href="https://github.com/pracucci"><code>@​pracucci</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/651">prometheus/common#651</a></li>
<li>Expose secret as FileSecret from config package by <a
href="https://github.com/alanprot"><code>@​alanprot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/653">prometheus/common#653</a></li>
<li>Set http_headers to be omit empty by <a
href="https://github.com/yeya24"><code>@​yeya24</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/655">prometheus/common#655</a></li>
<li>chore: add HumanizeTimestamp; make ConvertToFloat exportable by <a
href="https://github.com/freak12techno"><code>@​freak12techno</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/654">prometheus/common#654</a></li>
<li>Synchronize common files from prometheus/prometheus by <a
href="https://github.com/prombot"><code>@​prombot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/660">prometheus/common#660</a></li>
<li>Add SigV4 FIPS STS endpoint config by <a
href="https://github.com/rajagopalanand"><code>@​rajagopalanand</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/649">prometheus/common#649</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/gotjosh"><code>@​gotjosh</code></a> made
their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/644">prometheus/common#644</a></li>
<li><a
href="https://github.com/mikelolasagasti"><code>@​mikelolasagasti</code></a>
made their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/625">prometheus/common#625</a></li>
<li><a href="https://github.com/alanprot"><code>@​alanprot</code></a>
made their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/653">prometheus/common#653</a></li>
<li><a href="https://github.com/yeya24"><code>@​yeya24</code></a> made
their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/655">prometheus/common#655</a></li>
<li><a
href="https://github.com/rajagopalanand"><code>@​rajagopalanand</code></a>
made their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/649">prometheus/common#649</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/prometheus/common/compare/v0.54.0...v0.55.0">https://github.com/prometheus/common/compare/v0.54.0...v0.55.0</a></p>
<h2>v0.54.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Bump golang.org/x/net from 0.22.0 to 0.23.0 in /sigv4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/624">prometheus/common#624</a></li>
<li>Bump golang.org/x/net from 0.22.0 to 0.23.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/623">prometheus/common#623</a></li>
<li>Add HTTP headers support to common HTTP client. by <a
href="https://github.com/roidelapluie"><code>@​roidelapluie</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/416">prometheus/common#416</a></li>
<li>Synchronize common files from prometheus/prometheus by <a
href="https://github.com/prombot"><code>@​prombot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/633">prometheus/common#633</a></li>
<li>Bump github.com/aws/aws-sdk-go from 1.51.11 to 1.51.32 in /sigv4 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/prometheus/common/pull/632">prometheus/common#632</a></li>
<li>Bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/628">prometheus/common#628</a></li>
<li>Bump golang.org/x/net from 0.23.0 to 0.24.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/630">prometheus/common#630</a></li>
<li>Bump github.com/prometheus/client_model from 0.6.0 to 0.6.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/631">prometheus/common#631</a></li>
<li>Bump google.golang.org/protobuf from 1.33.0 to 1.34.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/629">prometheus/common#629</a></li>
<li>Use common interface to fetch secrets in HTTP client config by <a
href="https://github.com/TheSpiritXIII"><code>@​TheSpiritXIII</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/538">prometheus/common#538</a></li>
<li>Add support for secret refs via a secret manager by <a
href="https://github.com/TheSpiritXIII"><code>@​TheSpiritXIII</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/572">prometheus/common#572</a></li>
<li>oauth2RoundTripper: Avoid race condition and readability changes. by
<a href="https://github.com/bwplotka"><code>@​bwplotka</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/634">prometheus/common#634</a></li>
<li>Synchronize common files from prometheus/prometheus by <a
href="https://github.com/prombot"><code>@​prombot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/636">prometheus/common#636</a></li>
<li>Bump github.com/aws/aws-sdk-go from 1.51.32 to 1.53.14 in /sigv4 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/prometheus/common/pull/638">prometheus/common#638</a></li>
<li>Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 in
/sigv4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/639">prometheus/common#639</a></li>
<li>feat: add time template helpers by <a
href="https://github.com/freak12techno"><code>@​freak12techno</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/627">prometheus/common#627</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/bwplotka"><code>@​bwplotka</code></a>
made their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/634">prometheus/common#634</a></li>
<li><a
href="https://github.com/freak12techno"><code>@​freak12techno</code></a>
made their first contribution in <a
href="https://redirect.github.com/prometheus/common/pull/627">prometheus/common#627</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/prometheus/common/compare/v0.53.0...v0.54.0">https://github.com/prometheus/common/compare/v0.53.0...v0.54.0</a></p>
<h2>v0.53.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add StatusAt method for Alert struct by <a
href="https://github.com/grobinson-grafana"><code>@​grobinson-grafana</code></a>
in <a
href="https://redirect.github.com/prometheus/common/pull/618">prometheus/common#618</a></li>
<li>config: allow exposing real secret value through marshal by <a
href="https://github.com/GiedriusS"><code>@​GiedriusS</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/487">prometheus/common#487</a></li>
<li>Fix up config test by <a
href="https://github.com/SuperQ"><code>@​SuperQ</code></a> in <a
href="https://redirect.github.com/prometheus/common/pull/621">prometheus/common#621</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/prometheus/common/commit/0c7b585c7da330aae136aaa874cb4f89f5b3e5d9"><code>0c7b585</code></a>
Merge pull request <a
href="https://redirect.github.com/prometheus/common/issues/649">#649</a>
from rajagopalanand/13364</li>
<li><a
href="https://github.com/prometheus/common/commit/804fbbe9d6bcca828ac14d7b5dfa204de880c22e"><code>804fbbe</code></a>
Update common Prometheus files (<a
href="https://redirect.github.com/prometheus/common/issues/660">#660</a>)</li>
<li><a
href="https://github.com/prometheus/common/commit/3f20456b01f7c7816064350d02e7f68ad011576d"><code>3f20456</code></a>
Bump golang.org/x/net from 0.25.0 to 0.26.0 (<a
href="https://redirect.github.com/prometheus/common/issues/657">#657</a>)</li>
<li><a
href="https://github.com/prometheus/common/commit/e31eeaaced72e694bc8be87a6d1a09c21f8e4635"><code>e31eeaa</code></a>
Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (<a
href="https://redirect.github.com/prometheus/common/issues/658">#658</a>)</li>
<li><a
href="https://github.com/prometheus/common/commit/3236a12e2e6cc0592985c2851d8e53b30f03e94c"><code>3236a12</code></a>
Bump golang.org/x/oauth2 from 0.20.0 to 0.21.0 (<a
href="https://redirect.github.com/prometheus/common/issues/656">#656</a>)</li>
<li><a
href="https://github.com/prometheus/common/commit/1cfb464a28c5fefa56beec1b48ccf0e41f4cb347"><code>1cfb464</code></a>
Bump github.com/aws/aws-sdk-go from 1.53.14 to 1.54.7 in /sigv4 (<a
href="https://redirect.github.com/prometheus/common/issues/659">#659</a>)</li>
<li><a
href="https://github.com/prometheus/common/commit/ab322ea2c291549d457c23476304ed16a4d814a3"><code>ab322ea</code></a>
chore: add HumanizeTimestamp; make ConvertToFloat exportable (<a
href="https://redirect.github.com/prometheus/common/issues/654">#654</a>)</li>
<li><a
href="https://github.com/prometheus/common/commit/04635d2962f9f3232a2cf2cb5616b72a466d78d7"><code>04635d2</code></a>
Merge pull request <a
href="https://redirect.github.com/prometheus/common/issues/655">#655</a>
from yeya24/change-omit-empty</li>
<li><a
href="https://github.com/prometheus/common/commit/c4974e5a1af10e6cfa1b3b93f4a0ab350c9647fa"><code>c4974e5</code></a>
fix test</li>
<li><a
href="https://github.com/prometheus/common/commit/43f0db5d12a3168b4acb3e0fd1add422b00a6758"><code>43f0db5</code></a>
set http_headers to be omit empty</li>
<li>Additional commits viewable in <a
href="https://github.com/prometheus/common/compare/v0.42.0...v0.55.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/common&package-manager=go_modules&previous-version=0.42.0&new-version=0.55.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…1.20.1 (cometbft#3793)

Bumps
[github.com/prometheus/client_golang](https://github.com/prometheus/client_golang)
from 1.14.0 to 1.20.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/prometheus/client_golang/releases">github.com/prometheus/client_golang's
releases</a>.</em></p>
<blockquote>
<h2>v1.20.1</h2>
<ul>
<li>[BUGFIX] process-collector: Fixed unregistered descriptor error when
using process collector with PedanticRegistry on Linux machines. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li>
</ul>
<h2>v1.20.0</h2>
<p>Thanks everyone for contributions!</p>
<p>:warning: In this release we remove one (broken anyway, given Go
runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT
and GOMAXPROCS flags) to the default
<code>collectors.NewGoCollector()</code> collector. Given its popular
usage, expect your binary to expose two additional metric.</p>
<h2>Changes</h2>
<ul>
<li>[CHANGE] :warning: go-collector: Remove
<code>go_memstat_lookups_total</code> metric which was always 0; Go
runtime stopped sharing pointer lookup statistics. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li>
<li>[FEATURE] ⚠️ go-collector: Add 3 default metrics:
<code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and
<code>go_sched_gomaxprocs_threads</code> as those are recommended by the
Go team. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li>
<li>[FEATURE] go-collector: Add more information to all metrics' HELP
e.g. the exact <code>runtime/metrics</code> sourcing each metric (if
relevant). <a
href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a>
<a
href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li>
<li>[FEATURE] testutil: Add CollectAndFormat method. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li>
<li>[FEATURE] histograms: Add support for exemplars in native
histograms. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li>
<li>[FEATURE] promhttp: Add experimental support for <code>zstd</code>
on scrape, controlled by the request <code>Accept-Encoding</code>
header. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li>
<li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API
methods that supports it. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li>
<li>[FEATURE] prometheus: Add support for created timestamps in constant
histograms and constant summaries. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li>
<li>[FEATURE] process-collectors: Add network usage metrics:
<code>process_network_receive_bytes_total</code> and
<code>process_network_transmit_bytes_total</code>. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li>
<li>[FEATURE] promlint: Add duplicated metric lint rule. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li>
<li>[BUGFIX] promlint: Relax metric type in name linter rule. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li>
<li>[BUGFIX] promhttp: Make sure server
instrumentation wrapping supports new and future extra responseWriter
methods. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li>
<li>[BUGFIX] testutil: Functions using compareMetricFamilies are now
failing if filtered metricNames are not in the input. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a></li>
</ul>
<!-- raw HTML omitted -->
<ul>
<li>feat(prometheus/testutil/promlint/validations): refine
lintMetricType… by <a
href="https://github.com/foehammer127"><code>@​foehammer127</code></a>
in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1455">prometheus/client_golang#1455</a></li>
<li>Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 in
/examples/middleware by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1457">prometheus/client_golang#1457</a></li>
<li>Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1458">prometheus/client_golang#1458</a></li>
<li>Bump golang.org/x/sys from 0.16.0 to 0.17.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1459">prometheus/client_golang#1459</a></li>
<li>Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 in
/tutorial/whatsup by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1461">prometheus/client_golang#1461</a></li>
<li>Merge Release 1.19 back to main by <a
href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1462">prometheus/client_golang#1462</a></li>
<li>Bump the github-actions group with 2 updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1456">prometheus/client_golang#1456</a></li>
<li>Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1466">prometheus/client_golang#1466</a></li>
<li>Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in
/examples/middleware by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1467">prometheus/client_golang#1467</a></li>
<li>Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in
/tutorial/whatsup by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1469">prometheus/client_golang#1469</a></li>
<li>Add LintDuplicateMetric to promlint by <a
href="https://github.com/bboreham"><code>@​bboreham</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1472">prometheus/client_golang#1472</a></li>
<li>Auto-update Go Collector Metrics for new Go versions by <a
href="https://github.com/SachinSahu431"><code>@​SachinSahu431</code></a>
in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1476">prometheus/client_golang#1476</a></li>
<li>Implement Unwrap() for responseWriterDelegator by <a
href="https://github.com/igor-drozdov"><code>@​igor-drozdov</code></a>
in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1480">prometheus/client_golang#1480</a></li>
<li>Bump golang.org/x/sys from 0.17.0 to 0.18.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1485">prometheus/client_golang#1485</a></li>
<li>Bump github.com/prometheus/procfs from 0.12.0 to 0.13.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1486">prometheus/client_golang#1486</a></li>
<li>ci: Remove hardcoded supported Go versions from go.yml by <a
href="https://github.com/SachinSahu431"><code>@​SachinSahu431</code></a>
in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1489">prometheus/client_golang#1489</a></li>
<li>feat: metrics generation workflow by <a
href="https://github.com/SachinSahu431"><code>@​SachinSahu431</code></a>
in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1481">prometheus/client_golang#1481</a></li>
<li>fix: remove redundant go module in middleware example by <a
href="https://github.com/majolo"><code>@​majolo</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1492">prometheus/client_golang#1492</a></li>
<li>chore: Refactor how base metrics are added to Sched metrics by <a
href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1483">prometheus/client_golang#1483</a></li>
<li>gocollector: Add regex option to allow collection of debug runtime
metrics by <a
href="https://github.com/ArthurSens"><code>@​ArthurSens</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1389">prometheus/client_golang#1389</a></li>
<li>Bump github.com/prometheus/common from 0.48.0 to 0.52.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1498">prometheus/client_golang#1498</a></li>
<li>chore: fix function name in comment by <a
href="https://github.com/oftenoccur"><code>@​oftenoccur</code></a> in <a
href="https://redirect.github.com/prometheus/client_golang/pull/1497">prometheus/client_golang#1497</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/prometheus/client_golang/blob/v1.20.1/CHANGELOG.md">github.com/prometheus/client_golang's
changelog</a>.</em></p>
<blockquote>
<h2>1.20.1 / 2024-08-20</h2>
<ul>
<li>[BUGFIX] process-collector: Fixed unregistered descriptor error when
using process collector with <code>PedanticRegistry</code> on linux
machines. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a></li>
</ul>
<h2>1.20.0 / 2024-08-14</h2>
<ul>
<li>[CHANGE] ⚠️ go-collector: Remove
<code>go_memstat_lookups_total</code> metric which was always 0; Go
runtime stopped sharing pointer lookup statistics. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1577">#1577</a></li>
<li>[FEATURE] ⚠️ go-collector: Add 3 default metrics:
<code>go_gc_gogc_percent</code>, <code>go_gc_gomemlimit_bytes</code> and
<code>go_sched_gomaxprocs_threads</code> as those are recommended by the
Go team. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1559">#1559</a></li>
<li>[FEATURE] go-collector: Add more information to all metrics' HELP
e.g. the exact <code>runtime/metrics</code> sourcing each metric (if
relevant). <a
href="https://redirect.github.com/prometheus/client_golang/issues/1568">#1568</a>
<a
href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a></li>
<li>[FEATURE] testutil: Add CollectAndFormat method. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1503">#1503</a></li>
<li>[FEATURE] histograms: Add support for exemplars in native
histograms. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1471">#1471</a></li>
<li>[FEATURE] promhttp: Add experimental support for <code>zstd</code>
on scrape, controlled by the request <code>Accept-Encoding</code>
header. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1496">#1496</a></li>
<li>[FEATURE] api/v1: Add <code>WithLimit</code> parameter to all API
methods that supports it. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1544">#1544</a></li>
<li>[FEATURE] prometheus: Add support for created timestamps in constant
histograms and constant summaries. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1537">#1537</a></li>
<li>[FEATURE] process-collector: Add network usage metrics:
<code>process_network_receive_bytes_total</code> and
<code>process_network_transmit_bytes_total</code>. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1555">#1555</a></li>
<li>[FEATURE] promlint: Add duplicated metric lint rule. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1472">#1472</a></li>
<li>[BUGFIX] promlint: Relax metric type in name linter rule. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1455">#1455</a></li>
<li>[BUGFIX] promhttp: Make sure server instrumentation wrapping
supports new and future extra responseWriter methods. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1480">#1480</a></li>
<li>[BUGFIX] testutil: Functions using compareMetricFamilies are now
failing if filtered metricNames are not in the input. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1424">#1424</a></li>
</ul>
<h2>1.19.0 / 2024-02-27</h2>
<p>The module <code>prometheus/common v0.48.0</code> introduced an
incompatibility when used together with client_golang (See <a
href="https://redirect.github.com/prometheus/client_golang/pull/1448">prometheus/client_golang#1448</a>
for more details). If your project uses client_golang and you want to
use <code>prometheus/common v0.48.0</code> or higher, please update
client_golang to v1.19.0.</p>
<ul>
<li>[CHANGE] Minimum required go version is now 1.20 (we also test
client_golang against new 1.22 version). <a
href="https://redirect.github.com/prometheus/client_golang/issues/1445">#1445</a>
<a
href="https://redirect.github.com/prometheus/client_golang/issues/1449">#1449</a></li>
<li>[FEATURE] collectors: Add version collector. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1422">#1422</a>
<a
href="https://redirect.github.com/prometheus/client_golang/issues/1427">#1427</a></li>
</ul>
<h2>1.18.0 / 2023-12-22</h2>
<ul>
<li>[FEATURE] promlint: Allow creation of custom metric validations. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1311">#1311</a></li>
<li>[FEATURE] Go programs using client_golang can be built in wasip1 OS.
<a
href="https://redirect.github.com/prometheus/client_golang/issues/1350">#1350</a></li>
<li>[BUGFIX] histograms: Add timer to reset ASAP after bucket limiting
has happened. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1367">#1367</a></li>
<li>[BUGFIX] testutil: Fix comparison of metrics with empty Help
strings. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1378">#1378</a></li>
<li>[ENHANCEMENT] Improved performance of
<code>MetricVec.WithLabelValues(...)</code>. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1360">#1360</a></li>
</ul>
<h2>1.17.0 / 2023-09-27</h2>
<ul>
<li>[CHANGE] Minimum required go version is now 1.19 (we also test
client_golang against new 1.21 version). <a
href="https://redirect.github.com/prometheus/client_golang/issues/1325">#1325</a></li>
<li>[FEATURE] Add support for Created Timestamps in Counters, Summaries
and Historams. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1313">#1313</a></li>
<li>[ENHANCEMENT] Enable detection of a native histogram without
observations. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1314">#1314</a></li>
</ul>
<h2>1.16.0 / 2023-06-15</h2>
<ul>
<li>[BUGFIX] api: Switch to POST for LabelNames, Series, and
QueryExemplars. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1252">#1252</a></li>
<li>[BUGFIX] api: Fix undefined execution order in return statements. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1260">#1260</a></li>
<li>[BUGFIX] native histograms: Fix bug in bucket key calculation. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1279">#1279</a></li>
<li>[ENHANCEMENT] Reduce constrainLabels allocations for all metrics. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1272">#1272</a></li>
<li>[ENHANCEMENT] promhttp: Add process start time header for scrape
efficiency. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1278">#1278</a></li>
<li>[ENHANCEMENT] promlint: Improve metricUnits runtime. <a
href="https://redirect.github.com/prometheus/client_golang/issues/1286">#1286</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/prometheus/client_golang/commit/2254d6c3087d3660f73785ae123c7cc705f2a9c2"><code>2254d6c</code></a>
Merge pull request <a
href="https://redirect.github.com/prometheus/client_golang/issues/1587">#1587</a>
from prometheus/fix-processcollector</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/4a15d0584653a36547195042512218cad99888c6"><code>4a15d05</code></a>
Cut 1.20.1</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/f2dd7b35fd3f28b6a59b64953aab727b5c0c0404"><code>f2dd7b3</code></a>
Use pedantic registry in other places too, to double check.</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/261fe84cd4f670b8e51bf74f6f6bbb96aa1fce20"><code>261fe84</code></a>
bugfix: Pass network metrics to processCollector's Describe()
function</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/5bf3341b6684a18bfdc019c9b2c154ab6a42c0a1"><code>5bf3341</code></a>
Use NewPedanticRegistry in Process' Collector tests</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/73b811c54a628c7a7fe43005fb81351f64da9289"><code>73b811c</code></a>
Cut 1.20.0 release. (<a
href="https://redirect.github.com/prometheus/client_golang/issues/1580">#1580</a>)</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/7ce508988aa3bfc91d56afa9f82b7167b36c4590"><code>7ce5089</code></a>
gocollector: Attach original runtime/metrics metric name to help. (<a
href="https://redirect.github.com/prometheus/client_golang/issues/1578">#1578</a>)</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/062300ede93e1e14dcf47291c8ed03f5bf3c1109"><code>062300e</code></a>
Remove go_memstat_lookups_total; added runtime/metrics calculation to
memstat...</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/aa3c00d2ee32f97a06edc29716ae80ba0e713b9e"><code>aa3c00d</code></a>
Update common Prometheus files (<a
href="https://redirect.github.com/prometheus/client_golang/issues/1576">#1576</a>)</li>
<li><a
href="https://github.com/prometheus/client_golang/commit/3ad272204b3a9bf4c182d3baba3aac45436b87d1"><code>3ad2722</code></a>
Add default Go runtime metrics for /gc/gogc:percent,
/gc/gomemlimit:bytes, /s...</li>
<li>Additional commits viewable in <a
href="https://github.com/prometheus/client_golang/compare/v1.14.0...v1.20.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/client_golang&package-manager=go_modules&previous-version=1.14.0&new-version=1.20.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
) (cometbft#3824)

---

#### PR checklist

- [ ] Tests written/updated
- [ ] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments
<hr>This is an automatic backport of pull request cometbft#3819 done by
[Mergify](https://mergify.com).

---------

Co-authored-by: Hernán Vanzetto <15466498+hvanz@users.noreply.github.com>
Co-authored-by: hvanz <hernan.vanzetto@gmail.com>
…ometbft#3842)

close cometbft#3836 

#### PR checklist

- [ ] Tests written/updated
- [ ] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments
<hr>This is an automatic backport of pull request cometbft#3838 done by
[Mergify](https://mergify.com).

---------

Co-authored-by: Andy Nogueira <me@andynogueira.dev>
…metbft#3853)

Bumps
[bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action)
from 1.37.0 to 1.38.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/bufbuild/buf-setup-action/releases">bufbuild/buf-setup-action's
releases</a>.</em></p>
<blockquote>
<h2>v1.38.0</h2>
<p>Release v1.38.0</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/bufbuild/buf-setup-action/commit/058316dbc9b9f2adb1bcfc8b2fce48d74e7292d9"><code>058316d</code></a>
Release v1.38.0 (<a
href="https://redirect.github.com/bufbuild/buf-setup-action/issues/220">#220</a>)</li>
<li>See full diff in <a
href="https://github.com/bufbuild/buf-setup-action/compare/v1.37.0...v1.38.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=bufbuild/buf-setup-action&package-manager=github_actions&previous-version=1.37.0&new-version=1.38.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
The mempool
[benchmarks](https://github.com/cometbft/cometbft/blob/main/mempool/bench_test.go)
were invalid due to an incorrect transaction payload. To see this, one
may run `go test -v -count 1 -bench ^BenchmarkCheckTx$ -test.run ^$`
against `main` from the `mempool` directory. These modificationss fix
such a problem and add a new benchmark to exercice`mempool:update`.

---

#### PR checklist

- [ ] Tests written/updated
- [ ] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments

<hr>This is an automatic backport of pull request cometbft#934 done by
[Mergify](https://mergify.com).

---------

Co-authored-by: Pierre Sutra <0track@gmail.com>
Co-authored-by: hvanz <hernan.vanzetto@gmail.com>
…port cometbft#3830) (cometbft#3896)

Resolve cometbft#3828

On cometbft startup, duplicate privval request can enter the channel
between the time listen begins and a send is attempted.

The duplicate listen request will timeout since there is not another
signer connecting, filling logs with errors. A duplicate listen request
is undesired.

---

#### PR checklist

- [x] Tests written/updated
- [x] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments
<hr>This is an automatic backport of pull request cometbft#3830 done by
[Mergify](https://mergify.com).

---------

Co-authored-by: Chill Validation <92176880+chillyvee@users.noreply.github.com>
Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.26.0 to
0.28.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/golang/net/commit/4542a42604cd159f1adb93c58368079ae37b3bf6"><code>4542a42</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="https://github.com/golang/net/commit/765c7e89b3bdd76bfc210acddd3ca73931eb8d1d"><code>765c7e8</code></a>
xsrftoken: create no padding base64 string by RawURLEncoding</li>
<li><a
href="https://github.com/golang/net/commit/032e4e4358b0ef66f5295d9a78bda41e4d6d399b"><code>032e4e4</code></a>
LICENSE: update per Google Legal</li>
<li><a
href="https://github.com/golang/net/commit/e2310ae9eb6425ee6736cfc40f982f42e20f5850"><code>e2310ae</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="https://github.com/golang/net/commit/77708f716e46255944251965f8240a0eab01e099"><code>77708f7</code></a>
quic: skip tests which depend on unimplemented UDP functions on Plan
9</li>
<li><a
href="https://github.com/golang/net/commit/9617c6335bca5e4e80949a5b1dbe43273260e8a3"><code>9617c63</code></a>
http2: avoid Transport hang with Connection: close and AllowHTTP</li>
<li>See full diff in <a
href="https://github.com/golang/net/compare/v0.26.0...v0.28.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/net&package-manager=go_modules&previous-version=0.26.0&new-version=0.28.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
cometbft#3906)

Bumps
[github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver)
from 3.2.0 to 3.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/Masterminds/semver/releases">github.com/Masterminds/semver/v3's
releases</a>.</em></p>
<blockquote>
<h2>v3.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix: bad package in README by <a
href="https://github.com/sdelicata"><code>@​sdelicata</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/226">Masterminds/semver#226</a></li>
<li>Updating the GitHub Actions and versions of Go used by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/229">Masterminds/semver#229</a></li>
<li>Fix spelling in README by <a
href="https://github.com/robinschneider"><code>@​robinschneider</code></a>
in <a
href="https://redirect.github.com/Masterminds/semver/pull/222">Masterminds/semver#222</a></li>
<li>Adding go build cache to fuzz output by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/232">Masterminds/semver#232</a></li>
<li>Add caching to fuzz testing by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/234">Masterminds/semver#234</a></li>
<li>updating github actions by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/235">Masterminds/semver#235</a></li>
<li>feat: nil version equality by <a
href="https://github.com/KnutZuidema"><code>@​KnutZuidema</code></a> in
<a
href="https://redirect.github.com/Masterminds/semver/pull/213">Masterminds/semver#213</a></li>
<li>add &gt;= and &lt;= by <a
href="https://github.com/grosser"><code>@​grosser</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/238">Masterminds/semver#238</a></li>
<li>doc: hyphen range constraint without whitespace by <a
href="https://github.com/johnnychen94"><code>@​johnnychen94</code></a>
in <a
href="https://redirect.github.com/Masterminds/semver/pull/216">Masterminds/semver#216</a></li>
<li>Removing reference to vert by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/245">Masterminds/semver#245</a></li>
<li>simplify StrictNewVersion by <a
href="https://github.com/grosser"><code>@​grosser</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/241">Masterminds/semver#241</a></li>
<li>Updating the testing version of Go used by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/246">Masterminds/semver#246</a></li>
<li>bumping min version in go.mod based on what's tested by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/248">Masterminds/semver#248</a></li>
<li>Updating changelog for 3.3.0 by <a
href="https://github.com/mattfarina"><code>@​mattfarina</code></a> in <a
href="https://redirect.github.com/Masterminds/semver/pull/249">Masterminds/semver#249</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/sdelicata"><code>@​sdelicata</code></a>
made their first contribution in <a
href="https://redirect.github.com/Masterminds/semver/pull/226">Masterminds/semver#226</a></li>
<li><a
href="https://github.com/robinschneider"><code>@​robinschneider</code></a>
made their first contribution in <a
href="https://redirect.github.com/Masterminds/semver/pull/222">Masterminds/semver#222</a></li>
<li><a
href="https://github.com/KnutZuidema"><code>@​KnutZuidema</code></a>
made their first contribution in <a
href="https://redirect.github.com/Masterminds/semver/pull/213">Masterminds/semver#213</a></li>
<li><a href="https://github.com/grosser"><code>@​grosser</code></a> made
their first contribution in <a
href="https://redirect.github.com/Masterminds/semver/pull/238">Masterminds/semver#238</a></li>
<li><a
href="https://github.com/johnnychen94"><code>@​johnnychen94</code></a>
made their first contribution in <a
href="https://redirect.github.com/Masterminds/semver/pull/216">Masterminds/semver#216</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0">https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0</a></p>
<h2>v3.2.1</h2>
<h3>Changed</h3>
<ul>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/198">#198</a>:
Improved testing around pre-release names</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/200">#200</a>:
Improved code scanning with addition of CodeQL</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/201">#201</a>:
Testing now includes Go 1.20. Go 1.17 has been dropped</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/202">#202</a>:
Migrated Fuzz testing to Go built-in Fuzzing. CI runs daily</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/203">#203</a>:
Docs updated for security details</li>
</ul>
<h3>Fixed</h3>
<ul>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/199">#199</a>:
Fixed issue with range transformations</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/Masterminds/semver/compare/v3.2.0...v3.2.1">https://github.com/Masterminds/semver/compare/v3.2.0...v3.2.1</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Masterminds/semver/blob/master/CHANGELOG.md">github.com/Masterminds/semver/v3's
changelog</a>.</em></p>
<blockquote>
<h2>3.3.0 (2024-08-27)</h2>
<h3>Added</h3>
<ul>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/238">#238</a>:
Add LessThanEqual and GreaterThanEqual functions (thanks <a
href="https://github.com/grosser"><code>@​grosser</code></a>)</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/213">#213</a>:
nil version equality checking (thanks <a
href="https://github.com/KnutZuidema"><code>@​KnutZuidema</code></a>)</li>
</ul>
<h3>Changed</h3>
<ul>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/241">#241</a>:
Simplify StrictNewVersion parsing (thanks <a
href="https://github.com/grosser"><code>@​grosser</code></a>)</li>
<li>Testing support up through Go 1.23</li>
<li>Minimum version set to 1.21 as this is what's tested now</li>
<li>Fuzz testing now supports caching</li>
</ul>
<h2>3.2.1 (2023-04-10)</h2>
<h3>Changed</h3>
<ul>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/198">#198</a>:
Improved testing around pre-release names</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/200">#200</a>:
Improved code scanning with addition of CodeQL</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/201">#201</a>:
Testing now includes Go 1.20. Go 1.17 has been dropped</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/202">#202</a>:
Migrated Fuzz testing to Go built-in Fuzzing. CI runs daily</li>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/203">#203</a>:
Docs updated for security details</li>
</ul>
<h3>Fixed</h3>
<ul>
<li><a
href="https://redirect.github.com/Masterminds/semver/issues/199">#199</a>:
Fixed issue with range transformations</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Masterminds/semver/commit/e6e3d4d3cb1073f0ab8fb3d4be0869d1687b75f9"><code>e6e3d4d</code></a>
Merge pull request <a
href="https://redirect.github.com/Masterminds/semver/issues/249">#249</a>
from mattfarina/update-changelog-3.3.0</li>
<li><a
href="https://github.com/Masterminds/semver/commit/e80c4ea7233523c64c380d944a3ed57c1666ac67"><code>e80c4ea</code></a>
Updating changelog for 3.3.0</li>
<li><a
href="https://github.com/Masterminds/semver/commit/80427ad56e4fca2ef72e4050f01f1c9c347a0cd3"><code>80427ad</code></a>
Merge pull request <a
href="https://redirect.github.com/Masterminds/semver/issues/248">#248</a>
from mattfarina/bump-min-version</li>
<li><a
href="https://github.com/Masterminds/semver/commit/b6108372278f95198bb85fd22464b3cdc894a3a2"><code>b610837</code></a>
bumping min version in go.mod based on what's tested</li>
<li><a
href="https://github.com/Masterminds/semver/commit/a4cccd8ea5e6a94c09921a2dd4136e337ef069d1"><code>a4cccd8</code></a>
Merge pull request <a
href="https://redirect.github.com/Masterminds/semver/issues/246">#246</a>
from mattfarina/bump-go-1.23</li>
<li><a
href="https://github.com/Masterminds/semver/commit/7c178cf0c64cb23c5fcf0a291a2c9fb968806819"><code>7c178cf</code></a>
Updating the testing version of Go used</li>
<li><a
href="https://github.com/Masterminds/semver/commit/29f94c1119d901b8b4daf94be98df54ef044d3d9"><code>29f94c1</code></a>
Merge pull request <a
href="https://redirect.github.com/Masterminds/semver/issues/241">#241</a>
from grosser/grosser/validate</li>
<li><a
href="https://github.com/Masterminds/semver/commit/2cf1b16b95d71b6f8ccd5fc0fe43e1896a3049cd"><code>2cf1b16</code></a>
Merge pull request <a
href="https://redirect.github.com/Masterminds/semver/issues/245">#245</a>
from mattfarina/remove-vert</li>
<li><a
href="https://github.com/Masterminds/semver/commit/b55476af0ebb4f52e3f5fb5aca65960354bdc309"><code>b55476a</code></a>
Removing reference to vert</li>
<li><a
href="https://github.com/Masterminds/semver/commit/d07450b7cfece0885549dce1ad5b798aa7844d95"><code>d07450b</code></a>
simplify StrictNewVersion</li>
<li>Additional commits viewable in <a
href="https://github.com/Masterminds/semver/compare/v3.2.0...v3.3.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/Masterminds/semver/v3&package-manager=go_modules&previous-version=3.2.0&new-version=3.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
)

Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.8.3 to
1.11.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/rs/cors/commit/a814d7990a5449fcc211a536119d271469cc4157"><code>a814d79</code></a>
Re-add support for multiple Access-Control-Request-Headers field (fixes
<a
href="https://redirect.github.com/rs/cors/issues/184">#184</a>)...</li>
<li><a
href="https://github.com/rs/cors/commit/1562b1715b353146f279ff7d445b7412e0f1a842"><code>1562b17</code></a>
Removed redundant log nil checks (<a
href="https://redirect.github.com/rs/cors/issues/178">#178</a>)</li>
<li><a
href="https://github.com/rs/cors/commit/3d336ea9b505046d343dfb14f09f19fad17673b4"><code>3d336ea</code></a>
Update all dependencies to latest in examples (<a
href="https://redirect.github.com/rs/cors/issues/175">#175</a>)</li>
<li><a
href="https://github.com/rs/cors/commit/85fc0cac7b03634b6bcf9686f0283858b427d484"><code>85fc0ca</code></a>
Make Gin wrapper's status configurable and use 204 as default (fixes <a
href="https://redirect.github.com/rs/cors/issues/145">#145</a>)
(#...</li>
<li><a
href="https://github.com/rs/cors/commit/4c32059b2756926619f6bf70281b91be7b5dddb2"><code>4c32059</code></a>
Normalize allowed request headers and store them in a sorted set (fixes
<a
href="https://redirect.github.com/rs/cors/issues/170">#170</a>)...</li>
<li><a
href="https://github.com/rs/cors/commit/8d33ca4794eae9bcb270e306fd3e9b89cf07ec4c"><code>8d33ca4</code></a>
Complete documentation; deprecate AllowOriginRequestFunc in favour of
AllowOr...</li>
<li><a
href="https://github.com/rs/cors/commit/af821aecfc8d5a51ab050c39b85ae4698cc16a82"><code>af821ae</code></a>
Merge branch 'jub0bs-master'</li>
<li><a
href="https://github.com/rs/cors/commit/0bcf73f5c969d9ae35f1ed986ab27fbb37a58ff2"><code>0bcf73f</code></a>
Update benchmark</li>
<li><a
href="https://github.com/rs/cors/commit/eacc8e8b6c597a9f21aa46971bdfa7cfd39fbcc8"><code>eacc8e8</code></a>
Fix skewed middleware benchmarks (<a
href="https://redirect.github.com/rs/cors/issues/165">#165</a>)</li>
<li><a
href="https://github.com/rs/cors/commit/9297f1560644af50a550ea860e2e7a55d8fa70e6"><code>9297f15</code></a>
Respect the documented precedence of options (<a
href="https://redirect.github.com/rs/cors/issues/163">#163</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/rs/cors/compare/v1.8.3...v1.11.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/rs/cors&package-manager=go_modules&previous-version=1.8.3&new-version=1.11.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Co-authored-by: Hernán Vanzetto <15466498+hvanz@users.noreply.github.com>
…ometbft#3892)

Add new `BenchmarkUpdate` and `BenchmarkUpdateAndRecheck`.
Also fix `BenchmarkCheckDuplicateTx`.

---

#### PR checklist

- [ ] Tests written/updated
- [ ] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments
<hr>This is an automatic backport of pull request cometbft#3873 done by
[Mergify](https://mergify.com).

Co-authored-by: Hernán Vanzetto <15466498+hvanz@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…etbft#3908)

Bumps [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml)
from 1.2.1 to 1.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/BurntSushi/toml/releases">github.com/BurntSushi/toml's
releases</a>.</em></p>
<blockquote>
<h2>v1.4.0</h2>
<p>This version requires Go 1.18</p>
<ul>
<li>
<p>Add toml.Marshal() (<a
href="https://redirect.github.com/BurntSushi/toml/issues/405">#405</a>)</p>
</li>
<li>
<p>Require 2-digit hour (<a
href="https://redirect.github.com/BurntSushi/toml/issues/320">#320</a>)</p>
</li>
<li>
<p>Wrap UnmarshalTOML() and UnmarshalText() return values in ParseError
for position information (<a
href="https://redirect.github.com/BurntSushi/toml/issues/398">#398</a>)</p>
</li>
<li>
<p>Fix inline tables with dotted keys inside inline arrays (e.g.
<code>k=[{a.b=1}]</code>) (<a
href="https://redirect.github.com/BurntSushi/toml/issues/400">#400</a>)</p>
</li>
</ul>
<h2>v1.3.2</h2>
<p>Fix reading <code>BURNTSUSHI_TOML_110</code> again 😅 The fix for
1.3.1 caused a race issue with multiple decodes being run in
parallel.</p>
<h2>v1.3.1</h2>
<p>This fixes two small bugs:</p>
<ul>
<li>
<p>The <code>BURNTSUSHI_TOML_110</code> environment variable would be
checked on package import, rather than Decode().</p>
<p>This meant that setting
<code>os.Setenv(&quot;BURNTSUSHI_TOML_110&quot;, &quot;&quot;)</code>
had no effect, as it happens after the import.</p>
</li>
<li>
<p>Fix order of <code>Meta.Keys()</code> for inline tables (this has
been an issue since support for inline tables was added).</p>
</li>
</ul>
<h2>v1.3.0</h2>
<p>New features:</p>
<ul>
<li>
<p>Support upcoming TOML 1.1</p>
<p>While it looks like TOML 1.1 is mostly stable and I don't expect any
further major changes, there are <em>NO</em> compatibility guarantees as
it is <em>NOT</em> yet released and <em>anything can still
change</em>.</p>
<p>To use it, set the <code>BURNTSUSHI_TOML_110</code> environment
variable to any value, which can be done either with
<code>os.SetEnv()</code> or by the user running a program.</p>
<p>A full list is changes is available in the <a
href="https://github.com/toml-lang/toml/blob/main/CHANGELOG.md">TOML
ChangeLog</a>; the two most notable ones are that newlines and trailing
commas are now allowed in inline tables, and Unicode in bare keys can
now be used – this is now a valid document:</p>
<pre><code>lëttërs = {
  ä = &quot;a with diaeresis&quot;,
  è = &quot;e with accent grave&quot;,
}
</code></pre>
</li>
<li>
<p>Allow MarshalTOML and MarshalText to be used on the document type
itself, instead of only fields (<a
href="https://redirect.github.com/BurntSushi/toml/issues/383">#383</a>).</p>
</li>
</ul>
<p>Bufixes:</p>
<ul>
<li>
<p><code>\</code> escapes at the end of line weren't processed correctly
in multiline strings (<a
href="https://redirect.github.com/BurntSushi/toml/issues/372">#372</a>).</p>
</li>
<li>
<p>Read over UTF-8 BOM (<a
href="https://redirect.github.com/BurntSushi/toml/issues/381">#381</a>).</p>
</li>
<li>
<p><code>omitempty</code> struct tag did not work for pointer values (<a
href="https://redirect.github.com/BurntSushi/toml/issues/371">#371</a>).</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/BurntSushi/toml/commit/1e2c053f442c0ac99df1f5b56bae3feab98caa4f"><code>1e2c053</code></a>
Undeprecate PrimitiveDecode and MetaData.PrimitiveDecode()</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/f8f7e48d515c7f9cfb9a1f142da425598afc136c"><code>f8f7e48</code></a>
Update toml-test</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/9a8066765d83926207bf134b065a95766f7b2f7f"><code>9a80667</code></a>
Add -json flag to tomlv</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/3203540e6e1b096e45b3f614caccb7560be1a87c"><code>3203540</code></a>
fuzz: move fuzz_targets from oss-fuzz (<a
href="https://redirect.github.com/BurntSushi/toml/issues/406">#406</a>)</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/77ce8589413d1fc280be524c8992599c42027c61"><code>77ce858</code></a>
Add Marshal Function (<a
href="https://redirect.github.com/BurntSushi/toml/issues/405">#405</a>)</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/0e879cbdab1075e5622c5c91581eb5e417e6fc1a"><code>0e879cb</code></a>
Fix panic when trying to set subkey for a value that's not a table</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/c299e750ad124b0d1d9700d1fedb4e1a27f5336d"><code>c299e75</code></a>
Update toml-test</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/4223137ff1f96bc65e65b11b6deff32052b127bb"><code>4223137</code></a>
Fix inline tables with dotted keys inside inline arrays (<a
href="https://redirect.github.com/BurntSushi/toml/issues/400">#400</a>)</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/45e7e490beef5f26441bd594860a2d760b1c38ad"><code>45e7e49</code></a>
Update toml-test</li>
<li><a
href="https://github.com/BurntSushi/toml/commit/c320c2d09774325e4cadbcfbe76a6d23935bd0e2"><code>c320c2d</code></a>
Fix utf8.RuneError test</li>
<li>Additional commits viewable in <a
href="https://github.com/BurntSushi/toml/compare/v1.2.1...v1.4.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/BurntSushi/toml&package-manager=go_modules&previous-version=1.2.1&new-version=1.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
…ometbft#3912)

Bumps [github.com/cosmos/gogoproto](https://github.com/cosmos/gogoproto)
from 1.4.11 to 1.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cosmos/gogoproto/releases">github.com/cosmos/gogoproto's
releases</a>.</em></p>
<blockquote>
<h2>v1.7.0</h2>
<h2>What's Changed</h2>
<ul>
<li>refactor: use structural type for AnyResolver &amp; Message by <a
href="https://github.com/tac0turtle"><code>@​tac0turtle</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/144">cosmos/gogoproto#144</a></li>
<li>refactor: increase gogoproto compatibility by <a
href="https://github.com/julienrbrt"><code>@​julienrbrt</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/145">cosmos/gogoproto#145</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/cosmos/gogoproto/compare/v1.6.0...v1.7.0">https://github.com/cosmos/gogoproto/compare/v1.6.0...v1.7.0</a></p>
<h2>v1.6.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore: improve any compat error by <a
href="https://github.com/julienrbrt"><code>@​julienrbrt</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/138">cosmos/gogoproto#138</a></li>
<li>chore: bump bufbuild/buf-setup-action from 1.31.0 to 1.35.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/139">cosmos/gogoproto#139</a></li>
<li>chore: bump amannn/action-semantic-pull-request from 5.5.2 to 5.5.3
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/136">cosmos/gogoproto#136</a></li>
<li>chore: bump bufbuild/buf-setup-action from 1.35.0 to 1.36.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/141">cosmos/gogoproto#141</a></li>
<li>feat: make serviceDesc public by <a
href="https://github.com/julienrbrt"><code>@​julienrbrt</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/142">cosmos/gogoproto#142</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/cosmos/gogoproto/compare/v1.5.0...v1.6.0">https://github.com/cosmos/gogoproto/compare/v1.5.0...v1.6.0</a></p>
<h2>v1.5.0</h2>
<h2>Improvements</h2>
<ul>
<li><a
href="https://redirect.github.com/cosmos/gogoproto/pull/119">#119</a>
The functions <code>proto.Marshal</code>, <code>proto.Unmarshal</code>,
and <code>proto.MessageName</code>, as well as the <code>jsonpb</code>
marshaling and unmarshaling methods now all support official
<code>google.golang.org/protobuf</code> types. This allows users to
gradually start using these types instead of gogo proto without needing
to refactor all of their code with type switch statements.</li>
</ul>
<p>Full CHANGELOG: <a
href="https://github.com/cosmos/gogoproto/blob/main/CHANGELOG.md">https://github.com/cosmos/gogoproto/blob/main/CHANGELOG.md</a></p>
<h2>v1.4.12</h2>
<h2>What's Changed</h2>
<ul>
<li><a
href="https://github.com/dependabot"><code>@​dependabot</code></a>
chores</li>
<li>docs: updated installation instructions in README.md by <a
href="https://github.com/cratelyn"><code>@​cratelyn</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/106">cosmos/gogoproto#106</a></li>
<li>chore(any): Add cosmos any type by <a
href="https://github.com/raynaudoe"><code>@​raynaudoe</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/115">cosmos/gogoproto#115</a></li>
<li>chore: prepare v1.4.12 by <a
href="https://github.com/julienrbrt"><code>@​julienrbrt</code></a> in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/116">cosmos/gogoproto#116</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/cratelyn"><code>@​cratelyn</code></a>
made their first contribution in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/106">cosmos/gogoproto#106</a></li>
<li><a href="https://github.com/raynaudoe"><code>@​raynaudoe</code></a>
made their first contribution in <a
href="https://redirect.github.com/cosmos/gogoproto/pull/115">cosmos/gogoproto#115</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/cosmos/gogoproto/compare/v1.4.11...v1.4.12">https://github.com/cosmos/gogoproto/compare/v1.4.11...v1.4.12</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cosmos/gogoproto/blob/main/CHANGELOG.md">github.com/cosmos/gogoproto's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/cosmos/gogoproto/releases/tag/v1.7.0">v1.7.0</a>
- 2024-08-12</h2>
<h3>Improvements</h3>
<ul>
<li><a
href="https://redirect.github.com/cosmos/gogoproto/pull/145">#145</a>
Remove <code>x/exp</code> dependency for greater compatibility.</li>
<li><a
href="https://redirect.github.com/cosmos/gogoproto/pull/144">#144</a>
Change proto.Message and jsonpb.Anyresolver to aliased types to allow
different implementations of the same interface.</li>
</ul>
<h2><a
href="https://github.com/cosmos/gogoproto/releases/tag/v1.6.0">v1.6.0</a>
- 2024-08-08</h2>
<h3>Features</h3>
<ul>
<li><a
href="https://redirect.github.com/cosmos/gogoproto/pull/142">#142</a>
Update code generator to make grpc <code>ServiceDesc</code> public.</li>
</ul>
<h2><a
href="https://github.com/cosmos/gogoproto/releases/tag/v1.5.0">v1.5.0</a>
- 2024-06-05</h2>
<h3>Improvements</h3>
<ul>
<li><a
href="https://redirect.github.com/cosmos/gogoproto/pull/119">#119</a>
The functions <code>proto.Marshal</code>, <code>proto.Unmarshal</code>,
and <code>proto.MessageName</code>, as well as the <code>jsonpb</code>
marshaling and unmarshaling methods now all support official
<code>google.golang.org/protobuf</code> types. This allows users to
gradually start using these types instead of gogo proto without needing
to refactor all of their code with type switch statements.</li>
</ul>
<h2><a
href="https://github.com/cosmos/gogoproto/releases/tag/v1.4.12">v1.4.12</a>
- 2024-03-20</h2>
<h3>Improvements</h3>
<ul>
<li><a
href="https://redirect.github.com/cosmos/gogoproto/pull/115">#115</a>
Move any type from <code>cosmos-sdk/codec/types</code> to
<code>types/any</code>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/cosmos/gogoproto/commit/70f82eb45331b1eb0db349b02a73a9d8e914305f"><code>70f82eb</code></a>
refactor: increase gogoproto compatibility (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/145">#145</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/a2d130f767761f9f7ffbc19e699129693ab8b07c"><code>a2d130f</code></a>
refactor: use structural type for AnyResolver &amp; Message (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/144">#144</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/5312ce88dbb7759774f03277e8b21ab5b90f896a"><code>5312ce8</code></a>
feat: make serviceDesc public (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/142">#142</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/0923950e3edda18a0d1c2a6e380e0262e9016be4"><code>0923950</code></a>
chore: bump bufbuild/buf-setup-action from 1.35.0 to 1.36.0 (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/141">#141</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/dbc693018292093cb8f96cf6eb23ab1583f0d7f0"><code>dbc6930</code></a>
chore: bump amannn/action-semantic-pull-request from 5.5.2 to 5.5.3 (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/136">#136</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/8cd96de98594a0482f25b23a670cd0da4fc6eef1"><code>8cd96de</code></a>
chore: bump bufbuild/buf-setup-action from 1.31.0 to 1.35.0 (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/139">#139</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/89ccff46724aebdd98fc59b603dd83cb57dad02d"><code>89ccff4</code></a>
chore: improve any compat error (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/138">#138</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/6eec9731781bf8ec4feb0e4098ffb19ee74afb50"><code>6eec973</code></a>
docs: Update CHANGELOG.md for v1.5.0 (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/132">#132</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/f63456018a5c1ad89e13491e381f5cdce59e3318"><code>f634560</code></a>
chore: bump amannn/action-semantic-pull-request from 5.5.0 to 5.5.2 (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/125">#125</a>)</li>
<li><a
href="https://github.com/cosmos/gogoproto/commit/eaaae3473df967bbbe7a42f5e782a63f75010982"><code>eaaae34</code></a>
chore: bump amannn/action-semantic-pull-request from 5.4.0 to 5.5.0 (<a
href="https://redirect.github.com/cosmos/gogoproto/issues/124">#124</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/cosmos/gogoproto/compare/v1.4.11...v1.7.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/cosmos/gogoproto&package-manager=go_modules&previous-version=1.4.11&new-version=1.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
The light client implementation compares the `ValidatorSet` instances
received from different sources (the primary against one or more
witnesses). In particular, the state of the proposer selection
algorithm, represented by the  `ProposerPriority` field of each
`Validator` present in the `ValidatorSet`, should be identical.

In order to compare those fields, we add  a`ProposerPriorityHash()` to
the `ValidatorSet` type. This is needed because the  `Hash()` method of
the same type does not include the `ProposerPriority` fields in its
computation.

When the light client detects distinct states of the proposer selection
algorithm, the `VerifyLightBlockAtHeight` method of the `light.Client`
type, used for instance by the state sync protocol, returns an error.
[CHANGELOG](https://github.com/cometbft/cometbft/blob/f3a50afe16e7b4ffe55e3ee506529f220b2d0477/CHANGELOG.md#v03812)

---

#### PR checklist

- [ ] Tests written/updated
- [ ] Changelog entry added in `.changelog` (we use
[unclog](https://github.com/informalsystems/unclog) to manage our
changelog)
- [ ] Updated relevant documentation (`docs/` or `spec/`) and code
comments
Copy link

github-actions bot commented Oct 28, 2024

Hey there and thank you for opening this pull request! 👋🏼

We require pull request titles to follow the Conventional Commits specification and it looks like your proposed title needs to be adjusted.

Details:

No release type found in pull request title "Log more -- for v0.38.12". Add a prefix to indicate what kind of release this pull request corresponds to. For reference, see https://www.conventionalcommits.org/

Available types:
 - feat
 - fix
 - build
 - chore
 - ci
 - docs
 - refactor
 - perf
 - test
 - revert
 - spec
 - merge

General format: type(scope): msg
Breaking change: type(scope)!: msg
Multi-scope change: type: msg
Types: feat, fix, build, chore, ci, docs, refactor, perf, test, revert, spec, merge.
Example: fix(cmd/cometbft/commands/debug): execute p.Signal only when p is not nil

@kpeluso
Copy link
Author

kpeluso commented Oct 28, 2024

PR looks crazy because I forked from main but we use v0.38.12 today in prod

@kpeluso kpeluso mentioned this pull request Oct 28, 2024
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.