Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump github.com/newrelic/go-agent/v3 from 3.13.0 to 3.15.1 #44

Closed
wants to merge 1 commit into from
Closed

Bump github.com/newrelic/go-agent/v3 from 3.13.0 to 3.15.1 #44

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Nov 1, 2021

Bumps github.com/newrelic/go-agent/v3 from 3.13.0 to 3.15.1.

Release notes

Sourced from github.com/newrelic/go-agent/v3's releases.

Release v3.15.1

3.15.1

Fixed

  • Updated support for SQL database instrumentation across the board for the Go Agent’s database integrations to more accurately extract the database table name from SQL queries. Fixes [Issue #397](newrelic/go-agent#397).

  • Updated the go.mod file in the nrecho-v4 integration to require version 4.5.0 of the github.com/labstack/echo package. This addresses a security concern arising from downstream dependencies in older versions of the echo package, as described in the release notes for echo v4.5.0.

ARM64 Compatibility Note

The New Relic Go Agent is implemented in platform-independent Go, and supports (among the other platforms which run Go) ARM64/Graviton2 using Go 1.17+.

Support Statement

New Relic recommends that you upgrade the agent regularly to ensure that you’re getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

Release v3.15.0

3.15.0

Fixed

  • Updated mongodb driver version to 1.5.1 to fix security issue in external dependency. Fixes [Issue #358](newrelic/go-agent#358) and [Issue #370](newrelic/go-agent#370).

  • Updated the go.mod file in the nrgin integration to require version 1.7.0 of the github.com/gin-gonic/gin package. This addresses CVE-2020-28483 which documents a vulnerability in versions of github.com/gin-gonic/gin earlier than 1.7.0.

Added

  • New integration nrpgx added to provide the same functionality for instrumenting Postgres database queries as the existing nrpq integration, but using the pgx driver instead. This only covers (at present) the use case of the pgx driver with the standard library database/sql. Fixes [Issue #142](newrelic/go-agent#142) and [Issue #292](newrelic/go-agent#292)

Changed

  • Enhanced debugging logs so that New Relic license keys are redacted from the log output. Fixes [Issue #353](newrelic/go-agent#353).

  • Updated the advice in GUIDE.md to have correct go get commands with explicit reference to v3.

Support Statement

New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

Release v3.14.1

3.14.1

Fixed

  • A typographical error in the nrgrpc unit tests was fixed. Fixes [Issue #344](newrelic/go-agent#344). This updates the nrgrpc integration to version 1.3.1.

Support Statement

New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

Release v3.14.0

3.14.0

... (truncated)

Changelog

Sourced from github.com/newrelic/go-agent/v3's changelog.

3.15.1

Fixed

  • Updated support for SQL database instrumentation across the board for the Go Agent’s database integrations to more accurately extract the database table name from SQL queries. Fixes [Issue #397](newrelic/go-agent#397).

  • Updated the go.mod file in the nrecho-v4 integration to require version 4.5.0 of the github.com/labstack/echo package. This addresses a security concern arising from downstream dependencies in older versions of the echo package, as described in the release notes for echo v4.5.0.

ARM64 Compatibility Note

The New Relic Go Agent is implemented in platform-independent Go, and supports (among the other platforms which run Go) ARM64/Graviton2 using Go 1.17+.

Support Statement

New Relic recommends that you upgrade the agent regularly to ensure that you’re getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

3.15.0

Fixed

  • Updated mongodb driver version to 1.5.1 to fix security issue in external dependency. Fixes [Issue #358](newrelic/go-agent#358) and [Issue #370](newrelic/go-agent#370).

  • Updated the go.mod file in the nrgin integration to require version 1.7.0 of the github.com/gin-gonic/gin package. This addresses CVE-2020-28483 which documents a vulnerability in versions of github.com/gin-gonic/gin earlier than 1.7.0.

Added

  • New integration nrpgx added to provide the same functionality for instrumenting Postgres database queries as the existing nrpq integration, but using the pgx driver instead. This only covers (at present) the use case of the pgx driver with the standard library database/sql. Fixes [Issue #142](newrelic/go-agent#142) and [Issue #292](newrelic/go-agent#292)

Changed

  • Enhanced debugging logs so that New Relic license keys are redacted from the log output. Fixes [Issue #353](newrelic/go-agent#353).

  • Updated the advice in GUIDE.md to have correct go get commands with explicit reference to v3.

Support Statement

New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

3.14.1

Fixed

  • A typographical error in the nrgrpc unit tests was fixed. Fixes [Issue #344](newrelic/go-agent#344). This updates the nrgrpc integration to version 1.3.1.

Support Statement

New Relic recommends that you upgrade the agent regularly to ensure that you're getting the latest features and performance benefits. Additionally, older releases will no longer be supported when they reach end-of-life.

3.14.0

Fixed

... (truncated)

Commits
  • 5be716d Merge pull request #403 from newrelic/develop
  • c9234d3 Merge pull request #404 from RichVanderwal/slower-test
  • 56ff5a7 Make Trace Observer test even slower for arm64 emulator
  • d501bf5 Merge pull request #401 from nr-swilloughby/october_2021_release
  • 20bd4fb Merge pull request #400 from nr-swilloughby/394_echo_version
  • 7f45483 release 3.15.1
  • 6538930 Upgraded echo/v4 dependency version
  • 1483137 Merge pull request #399 from nr-swilloughby/dbnameparse
  • 19ab2b4 (fix issue #397) incorrect table name reported
  • 06dc024 First try at arm64 Ci (#381)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump github.com/newrelic/go-agent/v3 from 3.13.0 to 3.15.1
0c69e15 
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent) from 3.13.0 to 3.15.1.
- [Release notes](https://github.com/newrelic/go-agent/releases)
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md)
- [Commits](newrelic/go-agent@v3.13.0...v3.15.1)

---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 1, 2021
@dependabot dependabot bot mentioned this pull request Nov 1, 2021
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Dec 13, 2021

Superseded by #54.

@dependabot dependabot bot closed this Dec 13, 2021
@dependabot dependabot bot deleted the dependabot/go_modules/github.com/newrelic/go-agent/v3-3.15.1 branch December 13, 2021 09:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants