Skip to content

Bump io.grpc:grpc-protobuf from 1.53.0 to 1.54.2 #459

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: release/3.9
Choose a base branch
from
Open

Bump io.grpc:grpc-protobuf from 1.53.0 to 1.54.2 #459

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 13, 2025
edited
Loading

Bumps io.grpc:grpc-protobuf from 1.53.0 to 1.54.2.

Release notes

Sourced from io.grpc:grpc-protobuf's releases.

v1.54.2

Bug Fixes

  • core: Fix regression in 1.54.0 where polling NameResolvers would not refresh after a resolution error (grpc/grpc-java#10328). The symptom is a transient failure like "UNAVAILABLE: Unable to resolve host" continuing potentially forever. This did not impact DnsNameResolver, but it did impacted GrpclbNameResolver which is the dns name resolver used when grpc-grpclb is in the classpath. So even users that think "I don't use grpclb" may have been impacted. round_robin is mainly impacted on startup, but if the error happened afterward it would commonly fix itself for short transient DNS failures. pick_first is impacted at all times; any failed DNS resolution could cause all future RPCs on the channel to fail.
  • xds: Avoid using the default locale for case insensitive path matching (#10149)
  • xds: Avoid potential channel panic when control plane changes the field used to configure load balancing (#10103)
  • core: Allow transparent retries after a retry attempt and the configured max retries was 1 (#10080)

v1.54.1

Bug Fixes

  • core: Fix NPE race during hedging (grpc/grpc-java#10046), fixing a Netty buffer memory leak for cancelled RPCs

Behavior Changes

  • gcp-observability: Remove monitored resource detection for logging (grpc/grpc-java#10026). The cloud libraries will fill in these details instead

API stabilizations

  • Stabilize GcpObservability (grpc/grpc-java#10027)
    • The GcpObservability API provides users with a simple way to export logging, tracing, and metrics to Google Cloud Operations. For more information, please see this blog post.

v1.54.0

New Features

  • xds: Add weightedRoundRobin LB policy. The WRR policy allows picking the subchannel by weight based on the metrics feedback from the backend using ORCA API. See gRFC A58: Weighted Round Robin LB Policy. (#9873)
  • census: Add per call latency metric which is latency across all attempts (#9906)
  • Generated code now has an interface named AsyncService that the <service-name>ImplBase class implements. This allows you to provide your own base class when used with the static <service-name>Grpc.bindService(AsyncService) method(#9688).

Examples

  • Add examples for gcp observability (#9967)

Bugfixes

  • rls:Fix throttling in route lookup where success and error metrics had been inverted (b/262779100) (#9874)
  • protobuf: update external javadoc link (#9890)
  • core: fix outlier detection default ejection time (#9889)
  • xds: deletion only to watchers of same control plane (#9896)
  • api: Target scheme is now properly case insensitive (#9899). NameResolverProviders, however, are expected to return the scheme used for registration in lower-case
  • api: ForwardingServerCall now forwards getMethodDescriptor(). Previously only SimpleForwardingServerCall forwarded the method

Behavior Changes

  • xds:Allow a cluster’s sum of weights to exceed the maximum signed integer up to a limit of max unsigned integer (#9864)
  • grpclb: no SRV lookup for "metadata.google.internal."

Improvements

  • xds, orca: Allow removing OobLoadReportListener from a subchannel in OrcaOobUil. (#9881)
  • services: ORCA API change to allow recording QPS in MetricRecorder and CallMetricRecorder. (#9866)
  • Move name resolution retry from managed channel to name resolver (take #2) (#9812)
  • Rename AbstractXdsClient to ControlPlaneClient (#9934)
  • all: fix build with errorprone 2.18 (#9886)
  • build: allow Java 11+ to use modern error prone
  • errorprone: enable UnnecessaryAnonymousClass (#9927)
  • core: add logger to OutlierDetectionLoadBalancer (#9880)
  • census: add trace annotation to report received message sizes (#9944)
  • gcp-observability: emit latency and payload size metrics by default when monitoring is enabled (#9893)

... (truncated)

Commits
  • fbe3bb7 Bump version to 1.54.2
  • e37a297 Update README etc to reference 1.54.2
  • a650c6f core: ManagedChannelImpl to always use RetryingNameResolver (#10328) (#10330)
  • 68af073 [PSM interop] Don't fail url_map target if sub-target already failed (#10295)...
  • 39bd996 Download Maven from Maven Central
  • 4de4775 buildscripts, psm interop: Don't fail target if sub-target already failed (#1...
  • 1c6657f xds interop: Update Docker images to eclipse-temurin:11-jre (#10172) (#10183)
  • 3996241 xds: Avoid default locale and reset()
  • 1d5aff5 xds: Allow child of cluster_impl LB to change (#10091) (#10103)
  • b256818 retries:Remove early commit for transparent retries with none remaining. (#10...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Aug 13, 2025
@dependabot
Bump io.grpc:grpc-protobuf from 1.53.0 to 1.54.2
75e19e4 
Bumps [io.grpc:grpc-protobuf](https://github.com/grpc/grpc-java) from 1.53.0 to 1.54.2.
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](grpc/grpc-java@v1.53.0...v1.54.2)

---
updated-dependencies:
- dependency-name: io.grpc:grpc-protobuf
  dependency-version: 1.54.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot changed the base branch from release/3.8 to release/3.9 August 15, 2025 17:12
@dependabot dependabot bot force-pushed the dependabot/maven/io.grpc-grpc-protobuf-1.54.2 branch from 5dd7031 to 75e19e4 Compare August 15, 2025 17:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants