Bumps protobuf-java-util from 3.21.11 to 3.21.12.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Adds these are required checks for PRs (except on release branches where
they are still not required):
* shell-script-check
* markdown-lint-check
* misspell-check
This is still NOT a required check:
* markdown-link-check
Also in this PR:
* Avoids running `markdown-link-check` at all on release branches since
it's generally expected to be red due to pinning the release download
link before tagging
Bumps `slf4jVersion` from 2.0.5 to 2.0.6.
Updates `slf4j-api` from 2.0.5 to 2.0.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ff6f2c385"><code>5ff6f2c</code></a>
prepare for release 2.0.6</li>
<li><a
href="2f4aa75445"><code>2f4aa75</code></a>
fix SLF4J-575</li>
<li><a
href="363f0a534e"><code>363f0a5</code></a>
remove unused parts</li>
<li><a
href="171679baa8"><code>171679b</code></a>
SLF4J-574: Add full OSGi headers, especially "uses"
clauses</li>
<li><a
href="921b5b31e1"><code>921b5b3</code></a>
fix FUNDING file</li>
<li><a
href="e02244c39f"><code>e02244c</code></a>
fix FUNDING file</li>
<li><a
href="441d4584be"><code>441d458</code></a>
fix FUNDING file</li>
<li><a
href="f5e741ba1a"><code>f5e741b</code></a>
add FUNDING file</li>
<li><a
href="2e71327c8e"><code>2e71327</code></a>
remove unused log4j dependency in the version definition section of
pom.xml</li>
<li><a
href="3ff2a30e05"><code>3ff2a30</code></a>
start work on 2.0.6-SNAPSHOT</li>
<li>See full diff in <a
href="https://github.com/qos-ch/slf4j/compare/v_2.0.5...v_2.0.6">compare
view</a></li>
</ul>
</details>
<br />
Updates `slf4j-simple` from 2.0.5 to 2.0.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ff6f2c385"><code>5ff6f2c</code></a>
prepare for release 2.0.6</li>
<li><a
href="2f4aa75445"><code>2f4aa75</code></a>
fix SLF4J-575</li>
<li><a
href="363f0a534e"><code>363f0a5</code></a>
remove unused parts</li>
<li><a
href="171679baa8"><code>171679b</code></a>
SLF4J-574: Add full OSGi headers, especially "uses"
clauses</li>
<li><a
href="921b5b31e1"><code>921b5b3</code></a>
fix FUNDING file</li>
<li><a
href="e02244c39f"><code>e02244c</code></a>
fix FUNDING file</li>
<li><a
href="441d4584be"><code>441d458</code></a>
fix FUNDING file</li>
<li><a
href="f5e741ba1a"><code>f5e741b</code></a>
add FUNDING file</li>
<li><a
href="2e71327c8e"><code>2e71327</code></a>
remove unused log4j dependency in the version definition section of
pom.xml</li>
<li><a
href="3ff2a30e05"><code>3ff2a30</code></a>
start work on 2.0.6-SNAPSHOT</li>
<li>See full diff in <a
href="https://github.com/qos-ch/slf4j/compare/v_2.0.5...v_2.0.6">compare
view</a></li>
</ul>
</details>
<br />
Updates `log4j-over-slf4j` from 2.0.5 to 2.0.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ff6f2c385"><code>5ff6f2c</code></a>
prepare for release 2.0.6</li>
<li><a
href="2f4aa75445"><code>2f4aa75</code></a>
fix SLF4J-575</li>
<li><a
href="363f0a534e"><code>363f0a5</code></a>
remove unused parts</li>
<li><a
href="171679baa8"><code>171679b</code></a>
SLF4J-574: Add full OSGi headers, especially "uses"
clauses</li>
<li><a
href="921b5b31e1"><code>921b5b3</code></a>
fix FUNDING file</li>
<li><a
href="e02244c39f"><code>e02244c</code></a>
fix FUNDING file</li>
<li><a
href="441d4584be"><code>441d458</code></a>
fix FUNDING file</li>
<li><a
href="f5e741ba1a"><code>f5e741b</code></a>
add FUNDING file</li>
<li><a
href="2e71327c8e"><code>2e71327</code></a>
remove unused log4j dependency in the version definition section of
pom.xml</li>
<li><a
href="3ff2a30e05"><code>3ff2a30</code></a>
start work on 2.0.6-SNAPSHOT</li>
<li>See full diff in <a
href="https://github.com/qos-ch/slf4j/compare/v_2.0.5...v_2.0.6">compare
view</a></li>
</ul>
</details>
<br />
Updates `jcl-over-slf4j` from 2.0.5 to 2.0.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ff6f2c385"><code>5ff6f2c</code></a>
prepare for release 2.0.6</li>
<li><a
href="2f4aa75445"><code>2f4aa75</code></a>
fix SLF4J-575</li>
<li><a
href="363f0a534e"><code>363f0a5</code></a>
remove unused parts</li>
<li><a
href="171679baa8"><code>171679b</code></a>
SLF4J-574: Add full OSGi headers, especially "uses"
clauses</li>
<li><a
href="921b5b31e1"><code>921b5b3</code></a>
fix FUNDING file</li>
<li><a
href="e02244c39f"><code>e02244c</code></a>
fix FUNDING file</li>
<li><a
href="441d4584be"><code>441d458</code></a>
fix FUNDING file</li>
<li><a
href="f5e741ba1a"><code>f5e741b</code></a>
add FUNDING file</li>
<li><a
href="2e71327c8e"><code>2e71327</code></a>
remove unused log4j dependency in the version definition section of
pom.xml</li>
<li><a
href="3ff2a30e05"><code>3ff2a30</code></a>
start work on 2.0.6-SNAPSHOT</li>
<li>See full diff in <a
href="https://github.com/qos-ch/slf4j/compare/v_2.0.5...v_2.0.6">compare
view</a></li>
</ul>
</details>
<br />
Updates `jul-to-slf4j` from 2.0.5 to 2.0.6
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ff6f2c385"><code>5ff6f2c</code></a>
prepare for release 2.0.6</li>
<li><a
href="2f4aa75445"><code>2f4aa75</code></a>
fix SLF4J-575</li>
<li><a
href="363f0a534e"><code>363f0a5</code></a>
remove unused parts</li>
<li><a
href="171679baa8"><code>171679b</code></a>
SLF4J-574: Add full OSGi headers, especially "uses"
clauses</li>
<li><a
href="921b5b31e1"><code>921b5b3</code></a>
fix FUNDING file</li>
<li><a
href="e02244c39f"><code>e02244c</code></a>
fix FUNDING file</li>
<li><a
href="441d4584be"><code>441d458</code></a>
fix FUNDING file</li>
<li><a
href="f5e741ba1a"><code>f5e741b</code></a>
add FUNDING file</li>
<li><a
href="2e71327c8e"><code>2e71327</code></a>
remove unused log4j dependency in the version definition section of
pom.xml</li>
<li><a
href="3ff2a30e05"><code>3ff2a30</code></a>
start work on 2.0.6-SNAPSHOT</li>
<li>See full diff in <a
href="https://github.com/qos-ch/slf4j/compare/v_2.0.5...v_2.0.6">compare
view</a></li>
</ul>
</details>
<br />
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Trask Stalnaker <trask.stalnaker@gmail.com>
Related to #7220
Unfortunately it doesn't fix the aforementioned issue; while the CL used
is no longer the agent classloader, gauge collection still throws that
error.
Still, I think this is a good change that removes one source of agent's
CL leaking into application runtime.
Changed them from standalone top-level attributes to move them under
`log4j.map_message.*` (e.g. similar to `log4j.context_data.*` and
others).
Also adds doc for log4j javaagent properties.
Also cleans up related tests.
Bumps io.quarkus from 2.14.3.Final to 2.15.0.Final.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps protobuf-java-util from 3.21.10 to 3.21.11.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps protobuf-java-util from 3.21.10 to 3.21.11.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps protobuf-java-util from 3.21.10 to 3.21.11.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps dependency-check-gradle from 7.3.2 to 7.4.0.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps httpclient from 4.5.13 to 4.5.14.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Hopefully resolves
https://github.com/open-telemetry/opentelemetry-java-instrumentation/issues/7124
Our kotlin coroutine instrumentation relies on a shaded copy of
`opentelemetry-extension-kotlin`. This doesn't work well when
application also uses `opentelemetry-extension-kotlin`, because the
shaded and unshaded copy store opentelemery context under different key.
This pr attempts to fix this by instrumenting
`opentelemetry-extension-kotlin` provided by the application so that it
would delegate to the one shaded inside the agent.
Co-authored-by: Mateusz Rzeszutek <mrzeszutek@splunk.com>
dependabot[bot]
Mateusz Rzeszutek
Peter Findeisen
Trask Stalnaker
OpenTelemetry Bot
Lauri Tulmin
jason plumb
jack-berg
Felix Wong