Skip to content

Bump golang.org/x/net from 0.3.1-0.20221206200815-1e63c2f08a10 to 0.38.0 in /eventmesh-operator#5266

Open
dependabot[bot] wants to merge 2 commits into
developfrom
dependabot/go_modules/eventmesh-operator/golang.org/x/net-0.38.0
Open

Bump golang.org/x/net from 0.3.1-0.20221206200815-1e63c2f08a10 to 0.38.0 in /eventmesh-operator#5266
dependabot[bot] wants to merge 2 commits into
developfrom
dependabot/go_modules/eventmesh-operator/golang.org/x/net-0.38.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 1, 2026

Copy link
Copy Markdown
Contributor

Bumps golang.org/x/net from 0.3.1-0.20221206200815-1e63c2f08a10 to 0.38.0.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

qqeasonchen and others added 2 commits July 1, 2026 14:24
* [ISSUE #4761] Update copyright year to 2024 (#4761) (#4762)

Co-authored-by: orol116 <oro116@naver.com>

* [ISSUE #4750] Replace sun.net.httpserver.HttpServer to use netty server  (#4739)

* fix 4738

* fix some bug

* fix bug

* remove initProducerManager from AbstractRemotingServer init

* bug fix

* bug fix

* some enhance

* some enhance

* add admin bootstrap

* some enhance

* remove HttpHandlerManager and ClientManageController.

* modify some unit test

* add admin http handlermanager

* Update README.md (#4772)

* [ISSUE #4458] Support MySQL Sink Connector feature (#4771)

* [ISSUE #4458] Support mysql Sink Connector feature

* remove pg jdbc import

* update dependencies

* [ISSUE #4731] HttpRequestProcessor enhancement (#4732)

* resolve conflicts.

* resolve

* [ISSUE #3014]Replace encoding using the static variable DEFAULT_CHARSET (#4776)

* [ISSUE #4770] Empty class member cause NullpointerException (#4777)

* Add null check in writeOffset method

* delete todo

* Move data.put inside null check in writeOffset method

* simplify if judgement

* remove dev environment

* fix style

* [ISSUE #4778] Fix Standalone MessageQueue does not down counter when dequeue (#4779)

* bug fix

* bug fix

* [ISSUE #3833] optimization ZookeeperMetaService (#4780)

a. Change to private modifier.
b. Repeat code extraction as method.

* [ISSUE #3828] Code optimization for StandaloneAdminTest and TestUtils

* [ISSUE #4785] Condition check for source worker (#4786)

* condition_check_for_source_eorker

* ci_typo_fix

* import_order_fix

* [ISSUE #3824] code optimization for MessageEntity (#4792)

* [ISSUE #4795] Replace this exception in beginFlush() with log print and return false (#4797)

* [ISSUE #4796] Use ThreadPoolFactory to create single thread executor for SourceWorker (#4798)

* [ISSUE #3009]change MetricsHandler#get to try-resources (#4800)

* [ISSUE #3830] InterruptedExceptions should not be ignored in the code. (#4791)

* [ISSUE #3830] InterruptedExceptions should not be ignored in the code.

* [ISSUE #3830] fix code style

* [ISSUE #3830] delete Unneeded throw

* [ISSUE #3830] rethrown InterruptedException

* [ISSUE #3830] InterruptedException return new SendResult

---------

Co-authored-by: JiangShuJu <shuju.jiang@baozun.com>

* [ISSUE #4799]Change the logging level of `msg ignored` from error to warn (#4803)

* [ISSUE #4718] Update DISCLAIMER (#4775)

* Update DISCLAIMER

* docs: delete DISCLAIMER

* docs: delete DISCLMAIR

* [ISSUE #4767] Refactor Admin server http handler. (#4768)

* rebase master

* use httpRequest

* use httpRequest

* some enhancement

* some enhancement

* some enhancement

* some enhancement

* [ISSUE #4206] Add github-action 'stale' bot to this repo (#4207)

* Action: Add 'stale' github-action bot

* Add license

* Remove good first issue label exempt.

* Add open source events to exempt.

* feat: Never close a PR

* Just reminding

* Correct workflow title

* [ISSUE #4808] Unify all `null == object` usage to standard `object == null` (#4809)

* [ISSUE #4805] Rethrow exception in gRPC SDK when publish error occurs (#4806)

* [ISSUE #4810] Fix stale workflow failure and adjust cron with UTC time (#4811)

* [ISSUE #4812] Set up Admin Endpoints v2 (#4813)

* Remove redundant overloaded methods

* Simplify write() result param

* Add writeJson(); Add PUT; Add JavaDoc

* Rename EventHttpHandler to EventMeshHttpHandler

* Correct server thread name

* Clean up messy & non-hierarchical overloading

* No need to set headers manually any more

* Set up v1&v2 endpoints

* Set up v1&v2 response dto

* Introduce fastjson2

* Fix fastjson2 "level too large : 2048" error caused by IPAddress

* Correct @ConfigField naming

* Return properties format json key

* Add format option to query string

* Introduce Result

* Reduce duplicate builder code

* Fix all checkstyle warnings in eventmesh-runtime

* Add known dependency

* [ISSUE #4814] Migrate from fastjson 1.2.83 to fastjson2 (#4819)

* [Enhancement] Migrate from fastjson 1.2.83 to fastjson2 #4814

* fix_dependencies_problem

* fix_check

* [ISSUE #4551] modify the logic of time-consumption statistics (#4822)

* [ISSUE #4804] Fix SubStreamHandler exception loop by closeOnError (#4807)

* Handle exception loop by closeOnError

* Lombok optimization

* some format optimization

* Avoid closing multiple times

* Remove redundant set null

* Revert "Avoid closing multiple times"

This reverts commit 767bc59aa37ab7dc9c6862af916e4ab889d30461.

* Use synchronized latch to keep senderOnComplete called once

* Use boolean to prevent latch called by somebody else

* Remove the unique callee/caller close() of onCompleted()

* [ISSUE #4838] Deprecate unused `eventMesh.connector.plugin.type` etc. properties (#4839)

* Remove all references of `eventMesh.connector.plugin.type`

* Deprecate `eventMesh.connector.plugin.type` and sort properties

* Remove misconfigured & not-used `registerIntervalInMills`, `fetchRegistryAddrIntervalInMills`

* Remove 'defibus' related un-used usages

* Supplement https://github.com/apache/eventmesh/pull/4809 for `null != object`

* [ISSUE #4832] Downgrade stale bot to v8 to resolve state cache reserving error (#4833)

* Revert stale bot to v8 to resolve state cache reserving error

* Reduce operations-per-run to default value to ease pressure

* Unify yaml to yml

* [ISSUE #4820] Bug fix EventHandler not return json (#4821)

* bug fix

* bug fix

* bug fix

* [ISSUE #4700] Remove logging backends from runtime deps (#4719)

* [ISSUE #4700] Remove logging backends from runtime deps

This PR removes all the logging backends from the Maven artifacts. As
explained in #4700 libraries should only depend on logging APIs, not
logging implementations the same way web applications depend on the
Servlet API, not its implementations.

The logging backends are added to the `dist` folder to be included in
the TAR binary distribution.

* Fix licenses

* Fix Logback exclusions

* Fix license check

* Fix `printProjects` according to the review

* Add logging backend to `eventmesh-starter`

* Remove task description

* Fix task dependencies of task `installPlugin`

* Fix `installPlugin` task

* Add comment about exclusions

* Minimize changes to current configuration

This commit minimizes the changes to EventMesh dependencies.

Since a global exclusion is not an effective way to stop propagating
logging backends as **transitive** dependencies we:

* explictly remove logging backends from third-party dependencies that
  include them: RocketMQ, Pulsar, Spring Boot and Zookeeper,
* restore Log4j Core as dependency of `eventmesh-common`,
* exclude Log4j Core as dependency of `eventmesh-sdk-java`.

* Add comments to remove exclusions after upgrade

* Make `installPlugin` independent from `dist`

* Make `copy` tasks easier to understand

* Add `eventmesh-common` to EventMesh OpenConnect deps

* Refactor RocketMQ deps

* Delete `output.dirs`

* Fix typo

* Remove last `outputs.dir`

* Remove dependencies from `installPlugin`

* Add `eventmesh-common` to OpenConnect artifacts

* [ISSUE #3430] Refactor eventmesh-metrics-prometheus module (#4840)

* [ISSUE #3430]Refactor eventmesh-metrics-prometheus module

* optimize code

* optimize code

* [ISSUE #4047] Support chatGPT source connector (#4817)

* [ISSUE #4047] Support chatGPT source connector

* [ISSUE #4047] Add OpenAI configuration and adjust DTO

* [ISSUE #4047] Join parse request support

* [ISSUE #4047] impl Parse request

* [ISSUE #4047] fix code style

* [ISSUE #4047] fix code style

* [ISSUE #4047] fix dependencies check failed

* [ISSUE #4047] fix dependencies check

* [ISSUE #4047] fix license check

* [ISSUE #4047] fix review question

* [ISSUE #4047] fix review question

* [ISSUE #4047] add default value

* [ISSUE #4047] fix test

* [ISSUE #4047] default timeout value is zero , not timeout .

* [ISSUE #4047] fix review

* [ISSUE #4047] fix license check

---------

Co-authored-by: JiangShuJu <shuju.jiang@baozun.com>

* [ISSUE #4849] Enlarge stale bot operations-per-run to process more issues

* [ISSUE #4855] Fix close tcp client failed (#4856)

* [ISSUE #4859] Remove unused variable responseEventMeshCommand in SendSyncMessageProcessor#processRequest (#4860)

* [ISSUE #4830] Generate LICENSE and NOTICE with Gradle tasks (#4831)

* Update com.github.jk1.dependency-license-report to cyclonedx-gradle-plugin

* Remove redundant mavenLocal()

* Store license files by license name

* Sort by version additionally

* Stick to bundled dependencies

* Auto generate NOTICE file

* Add comments

* Display "/" for 'Unicode/ICU License'

* Rename 'third-party-licenses' to 'dist-license' to suit LICENSE file's meaning

* Doing some paperwork

* failed to apply plugins block, minor adjust

* Remove logback completely

* download license if only url is given

* delete mysql's license

* exempt licenses

* minor optimize

* Add checkDeniedLicense task

* Output success

* [ISSUE ##4865] Improve readability of failed topic list log (#4868)

Signed-off-by: Rohit Satya <work.rohitsatya@gmail.com>

* [ISSUE #4834] Add protocol exclusive fields filter for `/v2/configuration` endpoint (#4835)

* Extract commonConfiguration out of subclasses

* Add configs param

* Unify return position

* Catch more exceptions

* [ISSUE #3095] Handling possible NullPointerException[MessageUtils] (#4870)

* [ISSUE #3411] Do some code optimization[ReplyMessageProcessor] (#4871)

* [ISSUE #4864] Remove artifacts with incompatible licenses from jdbc-connector (#4863)

* rebase branch

* fix ci error

* [ISSUE #4824] Add HTTP Sink Connector (#4837)

* feat: Add HTTP Sink Connector

* refactor: Replace okHttpClient with vertx.WebClient

* fix: Resolving dependency conflicts

* test: Add HttpSinkConnectorTest

* fix: Add License

* fix: Solving dependency issues

* fix: License Check

* feat: Add HTTPS/SSL support

* fix: Optimize logging

* feat: Add webhook functionality

* fix: Fix some bugs

* test: add callback test

* refactor: Add webhook Support

* fix: Optimization tests and configuration additions

* fix: code style

* feat: rebuild WebhookHttpSinkHandler and add RetryHttpSinkHandler

* fix: fix ci

* refactor: Use failsafe alternative resilience4j and optimize webhook functionality

* fix: fix License Check

* fix: update something

* fix: fix ci

* fix: update something

* fix: Optimized naming

* fix: fix ci

* fix: fix style check error

* test: update HttpSinkConnectorTest

* [ISSUE #4873] Optimize some configuration information of HTTP Sink Connector (#4874)

* [ISSUE #4720] Modernize CI license check and Enable Dependabot (#4827)

* Sync changes in https://github.com/apache/eventmesh/pull/4719

* minor change

* Only keep the artifact name

* Run `sed -i 's/-[0-9].*\.jar//g'`

* Run `sort known-dependencies.txt | uniq > known-dependencies-unique.txt`

* Allow CI to run on branches with namespace in the branch name in forked repos

* Correct typo and remove useless command

* Use `sort -u -o` instead of `uniq` to remove duplicate artifacts with different version

* Enlarge open-pull-requests-limit

* minor: polish tips

* Test apache/skywalking-eyes/dependency CI result

* Fix 'unable to find version `0.6.0`'

* See debug log to prove it works

* skywalking-eyes/dependency doesn't support gradle, test basic actions/dependency-review-action

* Add all denied licenses

* Remove redundant check

* Remove not included SPDX: ASL, RSAL

* Add a useful printAllDependencyTrees task

* Exampt safe artifact under multiple licenses

* Exempt more safe artifacts (Looks like the last of them)

* 'allow-dependencies-licenses' attribute only supports single-line text

* Add a TODO comment

* Add more file extensions for checkstyle

* Resolve some checkstyle header violations

* Add back apache/skywalking-eyes

* Fix downloaded file didn't have a `.`

* Disable Go deps update & Must pass CI before merge

* No need to force up-to-date & Auto-approve only

* Remove the slash at the end of the homepage url in Repo GitHub desc

* Skip patch updates temporarily to reduce PR noise

* Logback removed after https://github.com/apache/eventmesh/pull/4831/commits/6627c79642cdaa4bca938fbc953eae52556bf185

* Accept patch update

* Submit dependency graph

* Follow https://github.com/gradle/actions/blob/main/docs/dependency-submission.md#usage-with-pull-requests-from-public-forked-repositories

* try to sort dependency graph workflow exec seq

* `workflow_run` event will only trigger a workflow run if the workflow file is on the default branch

* Grant required permission of CodeQL

* Attempt to fix 'No dependency graph files found to submit'

* Attempt to fix 'No dependency graph files found to submit' try 2

* Attempt to fix 'No dependency graph files found to submit' try 3

* Attempt to fix 'No dependency graph files found to submit' try 4

* Try to check dependency-review

* Only check bundled dependencies

* Fix 'No snapshots were found for the head SHA' attempt 1

* Test runtimeClasspath dependencies

* Revert "Test runtimeClasspath dependencies"

This reverts commit b1ab803f7aa04747d1ad46668a52d1b94ac25bf9.

* Try to retry 1 hr wo wait for snapshot update

* Test https://github.com/gradle/actions/issues/196#issuecomment-2074366829

* Add todo comments

* Keep implementation and compileOnly for now

* Keep runtimeOnly deps

* [Breaking Change] Remove dependency-review-action and wait for its bugfix

* Add checkDeniedLicense into CI

* minor code optimization

* Bump actions/checkout from 3 to 4 (#4877)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump docker/login-action from 2 to 3 (#4879)

Bumps [docker/login-action](https://github.com/docker/login-action) from 2 to 3.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump docker/metadata-action from 4 to 5 (#4878)

Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4 to 5.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](https://github.com/docker/metadata-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.fasterxml.jackson.core:jackson-annotations (#4883)

Bumps [com.fasterxml.jackson.core:jackson-annotations](https://github.com/FasterXML/jackson) from 2.13.0 to 2.17.1.
- [Commits](https://github.com/FasterXML/jackson/commits)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-annotations
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump docker/build-push-action from 4 to 5 (#4880)

Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4 to 5.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.slf4j:slf4j-api from 2.0.9 to 2.0.13 (#4882)

Bumps org.slf4j:slf4j-api from 2.0.9 to 2.0.13.

---
updated-dependencies:
- dependency-name: org.slf4j:slf4j-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.javassist:javassist from 3.24.0-GA to 3.30.2-GA (#4884)

Bumps [org.javassist:javassist](https://github.com/jboss-javassist/javassist) from 3.24.0-GA to 3.30.2-GA.
- [Release notes](https://github.com/jboss-javassist/javassist/releases)
- [Changelog](https://github.com/jboss-javassist/javassist/blob/master/Changes.md)
- [Commits](https://github.com/jboss-javassist/javassist/commits)

---
updated-dependencies:
- dependency-name: org.javassist:javassist
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.apache.pulsar:pulsar-client from 2.10.1 to 2.11.4 (#4889)

Bumps [org.apache.pulsar:pulsar-client](https://github.com/apache/pulsar) from 2.10.1 to 2.11.4.
- [Release notes](https://github.com/apache/pulsar/releases)
- [Commits](https://github.com/apache/pulsar/compare/v2.10.1...v2.11.4)

---
updated-dependencies:
- dependency-name: org.apache.pulsar:pulsar-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump log4jVersion from 2.22.1 to 2.23.1 (#4885)

Bumps `log4jVersion` from 2.22.1 to 2.23.1.

Updates `org.apache.logging.log4j:log4j-api` from 2.22.1 to 2.23.1

Updates `org.apache.logging.log4j:log4j-core` from 2.22.1 to 2.23.1

Updates `org.apache.logging.log4j:log4j-slf4j2-impl` from 2.22.1 to 2.23.1

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-api
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-slf4j2-impl
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.apache.kafka:kafka-clients from 3.0.0 to 3.6.2 (#4890)

* Bump org.apache.kafka:kafka-clients from 3.0.0 to 3.7.0

Bumps org.apache.kafka:kafka-clients from 3.0.0 to 3.7.0.

---
updated-dependencies:
- dependency-name: org.apache.kafka:kafka-clients
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Use stable version

* Use stable version

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump org.mongodb:mongodb-driver from 3.12.11 to 3.12.14 (#4117)

Bumps [org.mongodb:mongodb-driver](https://github.com/mongodb/mongo-java-driver) from 3.12.11 to 3.12.14.
- [Release notes](https://github.com/mongodb/mongo-java-driver/releases)
- [Commits](https://github.com/mongodb/mongo-java-driver/compare/r3.12.11...r3.12.14)

---
updated-dependencies:
- dependency-name: org.mongodb:mongodb-driver
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump io.cloudevents:cloudevents-kafka from 2.2.1 to 2.5.0 (#3998)

Bumps [io.cloudevents:cloudevents-kafka](https://github.com/cloudevents/sdk-java) from 2.2.1 to 2.5.0.
- [Release notes](https://github.com/cloudevents/sdk-java/releases)
- [Commits](https://github.com/cloudevents/sdk-java/compare/2.2.1...2.5.0)

---
updated-dependencies:
- dependency-name: io.cloudevents:cloudevents-kafka
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.github.jk1.dependency-license-report from 2.6 to 2.7 (#4903)

Bumps com.github.jk1.dependency-license-report from 2.6 to 2.7.

---
updated-dependencies:
- dependency-name: com.github.jk1.dependency-license-report
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.springframework.boot:spring-boot-starter-web (#4908)

Bumps [org.springframework.boot:spring-boot-starter-web](https://github.com/spring-projects/spring-boot) from 2.7.10 to 2.7.18.
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](https://github.com/spring-projects/spring-boot/compare/v2.7.10...v2.7.18)

---
updated-dependencies:
- dependency-name: org.springframework.boot:spring-boot-starter-web
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.apache.commons:commons-collections4 from 4.1 to 4.3 (#4905)

Bumps org.apache.commons:commons-collections4 from 4.1 to 4.3.

---
updated-dependencies:
- dependency-name: org.apache.commons:commons-collections4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.google.code.gson:gson from 2.8.2 to 2.11.0 (#4900)

Bumps [com.google.code.gson:gson](https://github.com/google/gson) from 2.8.2 to 2.11.0.
- [Release notes](https://github.com/google/gson/releases)
- [Changelog](https://github.com/google/gson/blob/main/CHANGELOG.md)
- [Commits](https://github.com/google/gson/compare/gson-parent-2.8.2...gson-parent-2.11.0)

---
updated-dependencies:
- dependency-name: com.google.code.gson:gson
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.apache.zookeeper:zookeeper from 3.7.1 to 3.9.2 (#4909)

Bumps org.apache.zookeeper:zookeeper from 3.7.1 to 3.9.2.

---
updated-dependencies:
- dependency-name: org.apache.zookeeper:zookeeper
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump software.amazon.awssdk:s3 from 2.20.29 to 2.25.55 (#4907)

Bumps software.amazon.awssdk:s3 from 2.20.29 to 2.25.55.

---
updated-dependencies:
- dependency-name: software.amazon.awssdk:s3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.slack.api:bolt from 1.1.+ to 1.39.2 (#4901)

Bumps [com.slack.api:bolt](https://github.com/slackapi/java-slack-sdk) from 1.1.+ to 1.39.2.
- [Release notes](https://github.com/slackapi/java-slack-sdk/releases)
- [Changelog](https://github.com/slackapi/java-slack-sdk/blob/main/jSlack_changelog.md)
- [Commits](https://github.com/slackapi/java-slack-sdk/commits/v1.39.2)

---
updated-dependencies:
- dependency-name: com.slack.api:bolt
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.jayway.jsonpath:json-path from 2.7.0 to 2.9.0 (#4906)

Bumps [com.jayway.jsonpath:json-path](https://github.com/jayway/JsonPath) from 2.7.0 to 2.9.0.
- [Release notes](https://github.com/jayway/JsonPath/releases)
- [Changelog](https://github.com/json-path/JsonPath/blob/master/changelog.md)
- [Commits](https://github.com/jayway/JsonPath/compare/json-path-2.7.0...json-path-2.9.0)

---
updated-dependencies:
- dependency-name: com.jayway.jsonpath:json-path
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* [ISSUE #4052] Implement the functionality of EventMeshVersion class.  (#4055)

* Implement the functionality of EventMeshVersion.

* Modify modifier

* Bump com.google.protobuf from 0.8.17 to 0.9.4 (#4899)

* Bump com.google.protobuf from 0.8.17 to 0.9.4

Bumps com.google.protobuf from 0.8.17 to 0.9.4.

---
updated-dependencies:
- dependency-name: com.google.protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Add checkstyle exclusion to fix ci

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* [ISSUE #4866] Add unified deps version identifier & Upgrade Gradle from 8.2.1 to 8.7 (#4867)

* Run `./gradlew wrapper --gradle-version 8.7`

* Update deprecated statements

* Update some outdated grammar

* Put some tasks to a better place

* Upgrade gRPC to 1.50.2

* Add unified version identifier

* Upgrade to snakeyaml 2.0 according to https://bitbucket.org/snakeyaml/snakeyaml/issues/556/update-yamlloadas-signature-to-support

* Bump dropwizardMetricsVersion from 4.1.0 to 4.2.25 (#4911)

Bumps `dropwizardMetricsVersion` from 4.1.0 to 4.2.25.

Updates `io.dropwizard.metrics:metrics-core` from 4.1.0 to 4.2.25
- [Release notes](https://github.com/dropwizard/metrics/releases)
- [Commits](https://github.com/dropwizard/metrics/compare/v4.1.0...v4.2.25)

Updates `io.dropwizard.metrics:metrics-healthchecks` from 4.1.0 to 4.2.25
- [Release notes](https://github.com/dropwizard/metrics/releases)
- [Commits](https://github.com/dropwizard/metrics/compare/v4.1.0...v4.2.25)

Updates `io.dropwizard.metrics:metrics-annotation` from 4.1.0 to 4.2.25
- [Release notes](https://github.com/dropwizard/metrics/releases)
- [Commits](https://github.com/dropwizard/metrics/compare/v4.1.0...v4.2.25)

Updates `io.dropwizard.metrics:metrics-json` from 4.1.0 to 4.2.25
- [Release notes](https://github.com/dropwizard/metrics/releases)
- [Commits](https://github.com/dropwizard/metrics/compare/v4.1.0...v4.2.25)

---
updated-dependencies:
- dependency-name: io.dropwizard.metrics:metrics-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.dropwizard.metrics:metrics-healthchecks
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.dropwizard.metrics:metrics-annotation
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.dropwizard.metrics:metrics-json
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump curatorVersion from 5.4.0 to 5.6.0 (#4910)

Bumps `curatorVersion` from 5.4.0 to 5.6.0.

Updates `org.apache.curator:curator-client` from 5.4.0 to 5.6.0
- [Commits](https://github.com/apache/curator/compare/apache-curator-5.4.0...apache-curator-5.6.0)

Updates `org.apache.curator:curator-framework` from 5.4.0 to 5.6.0
- [Commits](https://github.com/apache/curator/compare/apache-curator-5.4.0...apache-curator-5.6.0)

Updates `org.apache.curator:curator-recipes` from 5.4.0 to 5.6.0
- [Commits](https://github.com/apache/curator/compare/apache-curator-5.4.0...apache-curator-5.6.0)

Updates `org.apache.curator:curator-test` from 5.4.0 to 5.6.0
- [Commits](https://github.com/apache/curator/compare/apache-curator-5.4.0...apache-curator-5.6.0)

---
updated-dependencies:
- dependency-name: org.apache.curator:curator-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.curator:curator-framework
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.curator:curator-recipes
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.curator:curator-test
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump mockitoVersion from 3.8.0 to 3.12.4 (#4912)

Bumps `mockitoVersion` from 3.8.0 to 3.12.4.

Updates `org.mockito:mockito-core` from 3.8.0 to 3.12.4
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v3.8.0...v3.12.4)

Updates `org.mockito:mockito-inline` from 3.8.0 to 3.12.4
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v3.8.0...v3.12.4)

Updates `org.mockito:mockito-junit-jupiter` from 3.8.0 to 3.12.4
- [Release notes](https://github.com/mockito/mockito/releases)
- [Commits](https://github.com/mockito/mockito/compare/v3.8.0...v3.12.4)

---
updated-dependencies:
- dependency-name: org.mockito:mockito-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.mockito:mockito-inline
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.mockito:mockito-junit-jupiter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.alibaba.nacos:nacos-client from 2.2.3 to 2.3.2 (#4922)

Bumps [com.alibaba.nacos:nacos-client](https://github.com/alibaba/nacos) from 2.2.3 to 2.3.2.
- [Release notes](https://github.com/alibaba/nacos/releases)
- [Changelog](https://github.com/alibaba/nacos/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/alibaba/nacos/compare/2.2.3...2.3.2)

---
updated-dependencies:
- dependency-name: com.alibaba.nacos:nacos-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.antlr:antlr4-runtime from 4.13.0 to 4.13.1 (#4923)

Bumps [org.antlr:antlr4-runtime](https://github.com/antlr/antlr4) from 4.13.0 to 4.13.1.
- [Release notes](https://github.com/antlr/antlr4/releases)
- [Changelog](https://github.com/antlr/antlr4/blob/dev/doc/go-changes.md)
- [Commits](https://github.com/antlr/antlr4/compare/4.13.0...4.13.1)

---
updated-dependencies:
- dependency-name: org.antlr:antlr4-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.github.spotbugs.snom:spotbugs-gradle-plugin (#4914)

Bumps [com.github.spotbugs.snom:spotbugs-gradle-plugin](https://github.com/spotbugs/spotbugs-gradle-plugin) from 5.0.14 to 5.2.5.
- [Release notes](https://github.com/spotbugs/spotbugs-gradle-plugin/releases)
- [Commits](https://github.com/spotbugs/spotbugs-gradle-plugin/compare/5.0.14...5.2.5)

---
updated-dependencies:
- dependency-name: com.github.spotbugs.snom:spotbugs-gradle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.rabbitmq:amqp-client from 5.16.0 to 5.21.0 (#4917)

Bumps [com.rabbitmq:amqp-client](https://github.com/rabbitmq/rabbitmq-java-client) from 5.16.0 to 5.21.0.
- [Release notes](https://github.com/rabbitmq/rabbitmq-java-client/releases)
- [Commits](https://github.com/rabbitmq/rabbitmq-java-client/compare/v5.16.0...v5.21.0)

---
updated-dependencies:
- dependency-name: com.rabbitmq:amqp-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.projectlombok:lombok from 1.18.22 to 1.18.32 (#4920)

Bumps [org.projectlombok:lombok](https://github.com/projectlombok/lombok) from 1.18.22 to 1.18.32.
- [Changelog](https://github.com/projectlombok/lombok/blob/master/doc/changelog.markdown)
- [Commits](https://github.com/projectlombok/lombok/compare/v1.18.22...v1.18.32)

---
updated-dependencies:
- dependency-name: org.projectlombok:lombok
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.google.guava:guava from 31.0.1-jre to 31.1-jre (#4927)

Bumps [com.google.guava:guava](https://github.com/google/guava) from 31.0.1-jre to 31.1-jre.
- [Release notes](https://github.com/google/guava/releases)
- [Commits](https://github.com/google/guava/commits)

---
updated-dependencies:
- dependency-name: com.google.guava:guava
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump cloudeventsVersion from 2.4.2 to 2.5.0 (#4925)

Bumps `cloudeventsVersion` from 2.4.2 to 2.5.0.

Updates `io.cloudevents:cloudevents-core` from 2.4.2 to 2.5.0
- [Release notes](https://github.com/cloudevents/sdk-java/releases)
- [Commits](https://github.com/cloudevents/sdk-java/compare/2.4.2...2.5.0)

Updates `io.cloudevents:cloudevents-json-jackson` from 2.4.2 to 2.5.0

Updates `io.cloudevents:cloudevents-protobuf` from 2.4.2 to 2.5.0

---
updated-dependencies:
- dependency-name: io.cloudevents:cloudevents-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.cloudevents:cloudevents-json-jackson
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.cloudevents:cloudevents-protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.zendesk:mysql-binlog-connector-java from 0.28.0 to 0.29.2 (#4918)

Bumps [com.zendesk:mysql-binlog-connector-java](https://github.com/osheroff/mysql-binlog-connector-java) from 0.28.0 to 0.29.2.
- [Changelog](https://github.com/osheroff/mysql-binlog-connector-java/blob/master/CHANGELOG.md)
- [Commits](https://github.com/osheroff/mysql-binlog-connector-java/commits)

---
updated-dependencies:
- dependency-name: com.zendesk:mysql-binlog-connector-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump io.vertx:vertx-web-client from 4.4.6 to 4.5.8 (#4915)

Bumps io.vertx:vertx-web-client from 4.4.6 to 4.5.8.

---
updated-dependencies:
- dependency-name: io.vertx:vertx-web-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump io.vertx:vertx-web from 4.4.6 to 4.5.8 (#4928)

Bumps io.vertx:vertx-web from 4.4.6 to 4.5.8.

---
updated-dependencies:
- dependency-name: io.vertx:vertx-web
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump grpcVersion from 1.43.2 to 1.64.0 (#4904)

Bumps `grpcVersion` from 1.43.2 to 1.64.0.

Updates `io.grpc:grpc-core` from 1.43.2 to 1.64.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](https://github.com/grpc/grpc-java/compare/v1.43.2...v1.64.0)

Updates `io.grpc:grpc-protobuf` from 1.42.2 to 1.64.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](https://github.com/grpc/grpc-java/compare/v1.42.2...v1.64.0)

Updates `io.grpc:grpc-stub` from 1.43.2 to 1.64.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](https://github.com/grpc/grpc-java/compare/v1.43.2...v1.64.0)

Updates `io.grpc:grpc-netty` from 1.43.2 to 1.64.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](https://github.com/grpc/grpc-java/compare/v1.43.2...v1.64.0)

Updates `io.grpc:grpc-netty-shaded` from 1.43.2 to 1.64.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](https://github.com/grpc/grpc-java/compare/v1.43.2...v1.64.0)

Updates `io.grpc:protoc-gen-grpc-java` from 1.43.2 to 1.64.0
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](https://github.com/grpc/grpc-java/compare/v1.43.2...v1.64.0)

---
updated-dependencies:
- dependency-name: io.grpc:grpc-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.grpc:grpc-protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.grpc:grpc-stub
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.grpc:grpc-netty
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.grpc:grpc-netty-shaded
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: io.grpc:protoc-gen-grpc-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* update readme file (#4942)

* Add files via upload (#4943)

* Bump com.gradle.enterprise from 3.16.1 to 3.17.4 (#4926)

* Bump com.gradle.enterprise from 3.16.1 to 3.17.4

Bumps com.gradle.enterprise from 3.16.1 to 3.17.4.

---
updated-dependencies:
- dependency-name: com.gradle.enterprise
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Upgrade according to https://docs.gradle.com/develocity/gradle-plugin/legacy/#develocity_migration

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump org.apache.httpcomponents:httpclient from 4.5.13 to 4.5.14 (#4919)

* Bump org.apache.httpcomponents:httpclient from 4.5.13 to 4.5.14

Bumps org.apache.httpcomponents:httpclient from 4.5.13 to 4.5.14.

---
updated-dependencies:
- dependency-name: org.apache.httpcomponents:httpclient
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* use dependencyManagement

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* update eventmesh architecture (#4944)

* [ISSUE #4852] Support Jraft algorithm as meta storage  (#4862)

* init raft function

* init function

* finish this function.

* rename file and remove unnecessary plugin.

* properties modify

* properties modify

* properties modify

* Merge EventMesh function branch to master (#4941)

* EventMesh function admin (#4851)

* own

* dependency

* finish registry

* EventMesh function admin (#4853)

* own

* dependency

* finish registry

* init

* Eventmesh function admin (#4854)

* own

* dependency

* finish registry

* init

* 0419

* 0419

* more discovery and move gRPC

* fix dependency

* EventMesh function connector runtime (#4858)

* [ISSUE #4812] Set up Admin Endpoints v2 (#4813)

* Remove redundant overloaded methods

* Simplify write() result param

* Add writeJson(); Add PUT; Add JavaDoc

* Rename EventHttpHandler to EventMeshHttpHandler

* Correct server thread name

* Clean up messy & non-hierarchical overloading

* No need to set headers manually any more

* Set up v1&v2 endpoints

* Set up v1&v2 response dto

* Introduce fastjson2

* Fix fastjson2 "level too large : 2048" error caused by IPAddress

* Correct @ConfigField naming

* Return properties format json key

* Add format option to query string

* Introduce Result

* Reduce duplicate builder code

* Fix all checkstyle warnings in eventmesh-runtime

* Add known dependency

* [ISSUE #4814] Migrate from fastjson 1.2.83 to fastjson2 (#4819)

* [Enhancement] Migrate from fastjson 1.2.83 to fastjson2 #4814

* fix_dependencies_problem

* fix_check

* [ISSUE #4551] modify the logic of time-consumption statistics (#4822)

* init connector runtime v2

* [ISSUE #4804] Fix SubStreamHandler exception loop by closeOnError (#4807)

* Handle exception loop by closeOnError

* Lombok optimization

* some format optimization

* Avoid closing multiple times

* Remove redundant set null

* Revert "Avoid closing multiple times"

This reverts commit 767bc59aa37ab7dc9c6862af916e4ab889d30461.

* Use synchronized latch to keep senderOnComplete called once

* Use boolean to prevent latch called by somebody else

* Remove the unique callee/caller close() of onCompleted()

* [ISSUE #4838] Deprecate unused `eventMesh.connector.plugin.type` etc. properties (#4839)

* Remove all references of `eventMesh.connector.plugin.type`

* Deprecate `eventMesh.connector.plugin.type` and sort properties

* Remove misconfigured & not-used `registerIntervalInMills`, `fetchRegistryAddrIntervalInMills`

* Remove 'defibus' related un-used usages

* Supplement https://github.com/apache/eventmesh/pull/4809 for `null != object`

* [ISSUE #4832] Downgrade stale bot to v8 to resolve state cache reserving error (#4833)

* Revert stale bot to v8 to resolve state cache reserving error

* Reduce operations-per-run to default value to ease pressure

* Unify yaml to yml

* [ISSUE #4820] Bug fix EventHandler not return json (#4821)

* bug fix

* bug fix

* bug fix

* update runtime v2

* update connector runtime

* update connector runtime

* update connector runtime

* update connector runtime

* update connector runtime

---------

Co-authored-by: Pil0tXia <xiatian@apache.org>
Co-authored-by: Zaki <91261012+cnzakii@users.noreply.github.com>
Co-authored-by: Karson <karsontao@hotmail.com>

* [ISSUE #4931]Add Registry Module for Discovery AdminServer

* [ISSUES #4933]Add Admin Module

* [ISSUE #4935] Add and Move the Pojo Used By Both Runtime and Admin to Common

* [ISSUE #4937]fix gradle dependecy and add runtime v2

* [ISSUES #4939]add canal connector

* fix missing apache header

* fix missing apache header

* fix missing apache header

* update gradle dependencies

* fix admin server ci check error

* fix admin server ci check error

* fix ci checkStyle error

* fix ci check error

---------

Co-authored-by: sodaRyCN <35725024+sodaRyCN@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>
Co-authored-by: Zaki <91261012+cnzakii@users.noreply.github.com>
Co-authored-by: Karson <karsontao@hotmail.com>

* update eventmesh architecture (#4946)

* [ISSUE #3515] Do some code optimization[AuthTokenUtils] (#3644)

* Code optimization

* Remove unused imports

* Added one forgotten import 'Objects'

* Added Constants import

* removed unnecessary space

* fixed code optimization

* corrected some small changes

* redundant lines

* redundant lines

* optimized returned reply in subscribe method

* reverted correct change

* reverted back

* [ISSUE #4847] HTTPS/(m)TLSv1.3 support for HTTP Admin Server (#4848)

* Move admin port to http configs

* Refactor AdminServer to own independent configuration

* Support TLS/SSL for AdminServer

* Add default configs

* Rename jks file to a shorter name

* Add one line of comment

* Fetch current version

* Bump protobufVersion from 3.21.5 to 3.25.3 (#4948)

Bumps `protobufVersion` from 3.21.5 to 3.25.3.

Updates `com.google.protobuf:protobuf-java-util` from 3.21.5 to 3.25.3

Updates `com.google.protobuf:protobuf-java` from 3.21.5 to 3.25.3
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](https://github.com/protocolbuffers/protobuf/compare/v3.21.5...v3.25.3)

---
updated-dependencies:
- dependency-name: com.google.protobuf:protobuf-java-util
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: com.google.protobuf:protobuf-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.antlr:antlr4 from 4.13.0 to 4.13.1 (#4952)

Bumps [org.antlr:antlr4](https://github.com/antlr/antlr4) from 4.13.0 to 4.13.1.
- [Release notes](https://github.com/antlr/antlr4/releases)
- [Changelog](https://github.com/antlr/antlr4/blob/dev/doc/go-changes.md)
- [Commits](https://github.com/antlr/antlr4/compare/4.13.0...4.13.1)

---
updated-dependencies:
- dependency-name: org.antlr:antlr4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.baomidou:mybatis-plus-boot-starter from 3.5.5 to 3.5.6 (#4954)

Bumps [com.baomidou:mybatis-plus-boot-starter](https://github.com/baomidou/mybatis-plus) from 3.5.5 to 3.5.6.
- [Release notes](https://github.com/baomidou/mybatis-plus/releases)
- [Changelog](https://github.com/baomidou/mybatis-plus/blob/3.0/CHANGELOG.md)
- [Commits](https://github.com/baomidou/mybatis-plus/compare/v3.5.5...v3.5.6)

---
updated-dependencies:
- dependency-name: com.baomidou:mybatis-plus-boot-starter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump io.spring.gradle:dependency-management-plugin (#4960)

Bumps [io.spring.gradle:dependency-management-plugin](https://github.com/spring-gradle-plugins/dependency-management-plugin) from 1.0.11.RELEASE to 1.1.5.
- [Release notes](https://github.com/spring-gradle-plugins/dependency-management-plugin/releases)
- [Commits](https://github.com/spring-gradle-plugins/dependency-management-plugin/compare/v1.0.11.RELEASE...v1.1.5)

---
updated-dependencies:
- dependency-name: io.spring.gradle:dependency-management-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.assertj:assertj-core from 2.6.0 to 2.8.0 (#4959)

Bumps [org.assertj:assertj-core](https://github.com/joel-costigliola/assertj-core) from 2.6.0 to 2.8.0.
- [Release notes](https://github.com/joel-costigliola/assertj-core/releases)
- [Commits](https://github.com/joel-costigliola/assertj-core/compare/assertj-core-2.6.0...assertj-core-2.8.0)

---
updated-dependencies:
- dependency-name: org.assertj:assertj-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.aliyun:dingtalk from 2.0.61 to 2.1.25 (#4947)

Bumps [com.aliyun:dingtalk](https://github.com/aliyun/alibabacloud-sdk) from 2.0.61 to 2.1.25.
- [Release notes](https://github.com/aliyun/alibabacloud-sdk/releases)
- [Changelog](https://github.com/aliyun/alibabacloud-sdk/blob/master/ChangeLog-Go.txt)
- [Commits](https://github.com/aliyun/alibabacloud-sdk/commits)

---
updated-dependencies:
- dependency-name: com.aliyun:dingtalk
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.apache.commons:commons-lang3 from 3.6 to 3.14.0 (#4951)

Bumps org.apache.commons:commons-lang3 from 3.6 to 3.14.0.

---
updated-dependencies:
- dependency-name: org.apache.commons:commons-lang3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.mebigfatguy.fb-contrib:fb-contrib from 7.6.0 to 7.6.4 (#4950)

Bumps [com.mebigfatguy.fb-contrib:fb-contrib](https://github.com/mebigfatguy/fb-contrib) from 7.6.0 to 7.6.4.
- [Commits](https://github.com/mebigfatguy/fb-contrib/compare/v7.6.0...v7.6.4)

---
updated-dependencies:
- dependency-name: com.mebigfatguy.fb-contrib:fb-contrib
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump jacksonVersion from 2.0.1 to 2.17.1 (#4955)

* Bump jacksonVersion from 2.0.1 to 2.17.1

Bumps `jacksonVersion` from 2.0.1 to 2.17.1.

Updates `com.fasterxml.jackson.core:jackson-databind` from 2.0.1 to 2.17.1
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.fasterxml.jackson.core:jackson-core` from 2.17.1 to 2.17.1
- [Commits](https://github.com/FasterXML/jackson-core/compare/jackson-core-2.17.1...jackson-core-2.17.1)

Updates `com.fasterxml.jackson.core:jackson-annotations` from 2.17.1 to 2.17.1
- [Commits](https://github.com/FasterXML/jackson/commits)

Updates `com.fasterxml.jackson.dataformat:jackson-dataformat-yaml` from 2.17.1 to 2.17.1
- [Commits](https://github.com/FasterXML/jackson-dataformats-text/compare/jackson-dataformats-text-2.17.1...jackson-dataformats-text-2.17.1)

Updates `com.fasterxml.jackson.datatype:jackson-datatype-jsr310` from 2.17.1 to 2.17.1

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-databind
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: com.fasterxml.jackson.core:jackson-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: com.fasterxml.jackson.core:jackson-annotations
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-yaml
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: com.fasterxml.jackson.datatype:jackson-datatype-jsr310
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* Remove redundant dep declaration

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump io.cloudevents:cloudevents-http-vertx from 2.3.0 to 2.5.0 (#4956)

* Bump io.cloudevents:cloudevents-http-vertx from 2.3.0 to 2.5.0

Bumps io.cloudevents:cloudevents-http-vertx from 2.3.0 to 2.5.0.

---
updated-dependencies:
- dependency-name: io.cloudevents:cloudevents-http-vertx
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Do not downgrade

* Can upgrade

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump com.github.seancfoley:ipaddress from 5.3.3 to 5.5.0 (#4953)

* Bump com.github.seancfoley:ipaddress from 5.3.3 to 5.5.0

Bumps [com.github.seancfoley:ipaddress](https://github.com/seancfoley/IPAddress) from 5.3.3 to 5.5.0.
- [Release notes](https://github.com/seancfoley/IPAddress/releases)
- [Commits](https://github.com/seancfoley/IPAddress/compare/v5.3.3...v5.5.0)

---
updated-dependencies:
- dependency-name: com.github.seancfoley:ipaddress
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Redundant dep declaration

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* [ISSUE #4929] Auto approve when dependabot's branch is changed by committers (#4930)

* a more standard way to prevent creating dependabot PRs

* approve if the PR author is dependabot

* Bump org.redisson:redisson from 3.17.3 to 3.30.0 (#4924)

* Bump org.redisson:redisson from 3.17.3 to 3.30.0

Bumps [org.redisson:redisson](https://github.com/redisson/redisson) from 3.17.3 to 3.30.0.
- [Release notes](https://github.com/redisson/redisson/releases)
- [Changelog](https://github.com/redisson/redisson/blob/master/CHANGELOG.md)
- [Commits](https://github.com/redisson/redisson/compare/redisson-3.17.3...redisson-3.30.0)

---
updated-dependencies:
- dependency-name: org.redisson:redisson
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* manual upgrade

* Update dependency that are no longer maintained

* Streamline build command

* Fix address in use and try to fix countDownLatch await blocking

* Update deprecated ENV

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump com.alibaba.fastjson2:fastjson2 from 2.0.48 to 2.0.51 (#4975)

Bumps [com.alibaba.fastjson2:fastjson2](https://github.com/alibaba/fastjson2) from 2.0.48 to 2.0.51.
- [Release notes](https://github.com/alibaba/fastjson2/releases)
- [Commits](https://github.com/alibaba/fastjson2/compare/2.0.48...2.0.51)

---
updated-dependencies:
- dependency-name: com.alibaba.fastjson2:fastjson2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump mysql:mysql-connector-java from 8.0.32 to 8.0.33 (#4976)

Bumps mysql:mysql-connector-java from 8.0.32 to 8.0.33.

---
updated-dependencies:
- dependency-name: mysql:mysql-connector-java
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.mybatis.spring.boot:mybatis-spring-boot-starter (#4971)

Bumps [org.mybatis.spring.boot:mybatis-spring-boot-starter](https://github.com/mybatis/spring-boot-starter) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/mybatis/spring-boot-starter/releases)
- [Commits](https://github.com/mybatis/spring-boot-starter/compare/mybatis-spring-boot-2.3.1...mybatis-spring-boot-2.3.2)

---
updated-dependencies:
- dependency-name: org.mybatis.spring.boot:mybatis-spring-boot-starter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.h3xstream.findsecbugs:findsecbugs-plugin from 1.11.0 to 1.13.0 (#4974)

Bumps [com.h3xstream.findsecbugs:findsecbugs-plugin](https://github.com/find-sec-bugs/find-sec-bugs) from 1.11.0 to 1.13.0.
- [Release notes](https://github.com/find-sec-bugs/find-sec-bugs/releases)
- [Changelog](https://github.com/find-sec-bugs/find-sec-bugs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/find-sec-bugs/find-sec-bugs/compare/version-1.11.0...version-1.13.0)

---
updated-dependencies:
- dependency-name: com.h3xstream.findsecbugs:findsecbugs-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.asynchttpclient:async-http-client from 2.12.0 to 2.12.3 (#4970)

Bumps [org.asynchttpclient:async-http-client](https://github.com/AsyncHttpClient/async-http-client) from 2.12.0 to 2.12.3.
- [Release notes](https://github.com/AsyncHttpClient/async-http-client/releases)
- [Changelog](https://github.com/AsyncHttpClient/async-http-client/blob/main/CHANGES.md)
- [Commits](https://github.com/AsyncHttpClient/async-http-client/compare/async-http-client-project-2.12.0...async-http-client-project-2.12.3)

---
updated-dependencies:
- dependency-name: org.asynchttpclient:async-http-client
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump commons-io:commons-io from 2.11.0 to 2.16.1 (#4968)

Bumps commons-io:commons-io from 2.11.0 to 2.16.1.

---
updated-dependencies:
- dependency-name: commons-io:commons-io
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.alibaba:druid-spring-boot-starter from 1.2.22 to 1.2.23 (#4972)

Bumps [com.alibaba:druid-spring-boot-starter](https://github.com/alibaba/druid) from 1.2.22 to 1.2.23.
- [Release notes](https://github.com/alibaba/druid/releases)
- [Commits](https://github.com/alibaba/druid/compare/1.2.22...1.2.23)

---
updated-dependencies:
- dependency-name: com.alibaba:druid-spring-boot-starter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump software.amazon.awssdk:s3 from 2.25.55 to 2.25.64 (#4969)

Bumps software.amazon.awssdk:s3 from 2.25.55 to 2.25.64.

---
updated-dependencies:
- dependency-name: software.amazon.awssdk:s3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.apache.commons:commons-text from 1.9 to 1.12.0 (#4967)

Bumps org.apache.commons:commons-text from 1.9 to 1.12.0.

---
updated-dependencies:
- dependency-name: org.apache.commons:commons-text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump org.junit.jupiter:junit-jupiter from 5.6.0 to 5.10.2 (#4966)

* Bump org.junit.jupiter:junit-jupiter from 5.6.0 to 5.10.2

Bumps [org.junit.jupiter:junit-jupiter](https://github.com/junit-team/junit5) from 5.6.0 to 5.10.2.
- [Release notes](https://github.com/junit-team/junit5/releases)
- [Commits](https://github.com/junit-team/junit5/compare/r5.6.0...r5.10.2)

---
updated-dependencies:
- dependency-name: org.junit.jupiter:junit-jupiter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* use dependency mgmt

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump com.alibaba:druid from 1.2.6 to 1.2.23 (#4977)

Bumps [com.alibaba:druid](https://github.com/alibaba/druid) from 1.2.6 to 1.2.23.
- [Release notes](https://github.com/alibaba/druid/releases)
- [Commits](https://github.com/alibaba/druid/compare/1.2.6...1.2.23)

---
updated-dependencies:
- dependency-name: com.alibaba:druid
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump commons-validator:commons-validator from 1.7 to 1.9.0 (#4978)

* Bump commons-validator:commons-validator from 1.7 to 1.9.0

Bumps commons-validator:commons-validator from 1.7 to 1.9.0.

---
updated-dependencies:
- dependency-name: commons-validator:commons-validator
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update build.gradle

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pil0tXia <xiatian@apache.org>

* Bump org.springframework.boot:spring-boot-starter-jetty (#4965)

Bumps [org.springframework.boot:spring-boot-starter-jetty](https://github.com/spring-projects/spring-boot) from 2.7.10 to 2.7.18.
- [Release notes](https://github.com/spring-projects/spring-boot/releases)
- [Commits](https://github.com/spring-projects/spring-boot/compare/v2.7.10...v2.7.18)

---
updated-dependencies:
- dependency-name: org.springframework.boot:spring-boot-starter-jetty
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump com.google.protobuf from 0.8.17 to 0.9.4 (#4973)

* Bump com.google.protobuf from 0.8.17 to 0.9.4

Bumps com.google.protobuf from 0.8.17 to 0.9.4.

---
updated-dependencies:
- dependency-name: com.google.protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* manual modify

* streamline comments

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.no…
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.3.1-0.20221206200815-1e63c2f08a10 to 0.38.0.
- [Commits](https://github.com/golang/net/commits/v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant