This is an automated email from the ASF dual-hosted git repository.
kou pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow.git
The following commit(s) were added to refs/heads/main by this push:
new f8a4548282 MINOR: [C#] Bump Google.Protobuf from 3.19.3 to 3.24.0 in
/csharp (#37077)
f8a4548282 is described below
commit f8a45482822ed75133d385ffa5e99e74daa5e2a5
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Wed Aug 9 09:57:36 2023 +0900
MINOR: [C#] Bump Google.Protobuf from 3.19.3 to 3.24.0 in /csharp (#37077)
Bumps [Google.Protobuf](https://github.com/protocolbuffers/protobuf) from
3.19.3 to 3.24.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/protocolbuffers/protobuf/releases";>Google.Protobuf's
releases</a>.</em></p>
<blockquote>
<h2>Protocol Buffers v3.20.3</h2>
<h1>Java</h1>
<ul>
<li>Refactoring java full runtime to reuse sub-message builders and prepare
to
migrate parsing logic from parse constructor to builder.</li>
<li>Move proto wireformat parsing functionality from the private
"parsing
constructor" to the Builder class.</li>
<li>Change the Lite runtime to prefer merging from the wireformat into
mutable
messages rather than building up a new immutable object before merging. This
way results in fewer allocations and copy operations.</li>
<li>Make message-type extensions merge from wire-format instead of building
up
instances and merging afterwards. This has much better performance.</li>
<li>Fix TextFormat parser to build up recurring (but supposedly not
repeated)
sub-messages directly from text rather than building a new sub-message and
merging the fully formed message into the existing field.</li>
<li>This release addresses a <a
href="https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2";>Security
Advisory for Java users</a></li>
</ul>
<h2>Protocol Buffers v3.20.2</h2>
<h1>C++</h1>
<ul>
<li>Reduce memory consumption of MessageSet parsing</li>
<li>This release addresses a <a
href="https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-8gq9-2x98-w8hf";>Security
Advisory for C++ and Python users</a></li>
</ul>
<h2>Protocol Buffers v3.20.1</h2>
<h1>PHP</h1>
<ul>
<li>Fix building packaged PHP extension (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9727";>#9727</a>)</li>
<li>Fixed composer.json to only advertise compatibility with PHP 7.0+. (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9819";>#9819</a>)</li>
</ul>
<h1>Ruby</h1>
<ul>
<li>Disable the aarch64 build on macOS until it can be fixed. (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9816";>#9816</a>)</li>
</ul>
<h1>Other</h1>
<ul>
<li>Fix versioning issues in 3.20.0</li>
</ul>
<h2>Protocol Buffers v3.20.1-rc1</h2>
<h1>PHP</h1>
<ul>
<li>Fix building packaged PHP extension (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9727";>#9727</a>)</li>
</ul>
<h1>Other</h1>
<ul>
<li>Fix versioning issues in 3.20.0</li>
</ul>
<h2>Protocol Buffers v3.20.0</h2>
<p>2022-03-25 version 3.20.0
(C++/Java/Python/PHP/Objective-C/C#/Ruby/JavaScript)</p>
<h1>Ruby</h1>
<ul>
<li>Dropped Ruby 2.3 and 2.4 support for CI and releases. (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9311";>#9311</a>)</li>
<li>Added Ruby 3.1 support for CI and releases (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9566";>#9566</a>).</li>
<li>Message.decode/encode: Add recursion_limit option (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9218";>#9218</a>/<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9486";>#9486</a>)</li>
<li>Allocate with xrealloc()/xfree() so message allocation is visible to the
Ruby GC. In certain tests this leads to much lower memory usage due to more
frequent GC runs (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9586";>#9586</a>).</li>
<li>Fix conversion of singleton classes in Ruby (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/9342";>#9342</a>)</li>
</ul>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/093e258a71caacc053cf5ce86977ba3131361a9a";><code>093e258</code></a>
Updating version.json and repo version numbers to: 24.0</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/e48f6f75a72ae466e1012ab7e39acabdcd2f5aef";><code>e48f6f7</code></a>
Merge pull request <a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/13430";>#13430</a>
from protocolbuffers/24.x-202308011841</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/e82fc05571ad03112fa36e656a76a3128944111e";><code>e82fc05</code></a>
Updating version.json to: 24.0-dev</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/3487ae0c01af9130d2ee6436de142cfff9311aba";><code>3487ae0</code></a>
Updating version.json and repo version numbers to: 24.0-rc3</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/e916bf6bca6ee8f109f3ec6e2d25221490ed7fb5";><code>e916bf6</code></a>
Merge pull request <a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/13421";>#13421</a>
from zhangskz/update-24-x-dep</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/fce87eb250c2ecf7174ec2d92df8de058a0bcc65";><code>fce87eb</code></a>
Update protobuf repo's upb dependency to latest 24.x commit</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/64d9df70c60b02ab7c4d869973cd49cdee4c24c8";><code>64d9df7</code></a>
Merge pull request <a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/13418";>#13418</a>
from protocolbuffers/bazel6</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/ad916a91e5eff8d22ea4f9d50832911cdebb1483";><code>ad916a9</code></a>
Merge pull request <a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/13417";>#13417</a>
from mkruskal-google/bazel6</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/bc9002ec75b80c7bc170c2339d0486c002789d69";><code>bc9002e</code></a>
bazel: Get rid of exec_tools. (<a
href="https://redirect.github.com/protocolbuffers/protobuf/issues/13401";>#13401</a>)</li>
<li><a
href="https://github.com/protocolbuffers/protobuf/commit/fff490558816802c5b3d51169f797046f369453f";><code>fff4905</code></a>
Drop support for Bazel 5.</li>
<li>Additional commits viewable in <a
href="https://github.com/protocolbuffers/protobuf/compare/v3.19.3...v3.24.0";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting `@
dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@ dependabot rebase` will rebase this PR
- `@ dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `@ dependabot merge` will merge this PR after your CI passes on it
- `@ dependabot squash and merge` will squash and merge this PR after your
CI passes on it
- `@ dependabot cancel merge` will cancel a previously requested merge and
block automerging
- `@ dependabot reopen` will reopen this PR if it is closed
- `@ dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@ dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `@ dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `@ dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `@ dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Sutou Kouhei <[email protected]>
---
csharp/src/Apache.Arrow.Flight/Apache.Arrow.Flight.csproj | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/csharp/src/Apache.Arrow.Flight/Apache.Arrow.Flight.csproj
b/csharp/src/Apache.Arrow.Flight/Apache.Arrow.Flight.csproj
index ed33d88861..8d447e5bab 100644
--- a/csharp/src/Apache.Arrow.Flight/Apache.Arrow.Flight.csproj
+++ b/csharp/src/Apache.Arrow.Flight/Apache.Arrow.Flight.csproj
@@ -5,7 +5,7 @@
</PropertyGroup>
<ItemGroup>
- <PackageReference Include="Google.Protobuf" Version="3.19.3" />
+ <PackageReference Include="Google.Protobuf" Version="3.24.0" />
<PackageReference Include="Grpc.Net.Client" Version="2.55.0" />
<PackageReference Include="Grpc.Tools" Version="2.56.2"
PrivateAssets="All" />
</ItemGroup>
