Skip to content

chore: Bump the go-modules group across 1 directory with 2 updates#190

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/go-modules-c7cdfc6f77
Open

chore: Bump the go-modules group across 1 directory with 2 updates#190
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/go-modules-c7cdfc6f77

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 26, 2026

Copy link
Copy Markdown
Contributor

Bumps the go-modules group with 2 updates in the / directory: github.com/DataDog/datadog-go/v5 and github.com/DataDog/dd-trace-go/v2.

Updates github.com/DataDog/datadog-go/v5 from 5.8.3 to 5.9.0

Release notes

Sourced from github.com/DataDog/datadog-go/v5's releases.

v5.9.0

See the Changelog for the details.

Changelog

Sourced from github.com/DataDog/datadog-go/v5's changelog.

5.9.0 / 2026-06-24

  • [IMPROVEMENT] Improve aggregator performance: inline shard allocation, FNV-1a metric context hashing, and cache-line padding on shards. See #389[].
  • [IMPROVEMENT] Make externalEnv an atomic to reduce lock contention on the sampling hot path. See #380[], thanks [@​KowalskiThomas][].
  • [IMPROVEMENT] Optimize origin-detection condition check order. See #381[], thanks [@​KowalskiThomas][].
  • [BUGFIX] Fix payload length calculation for aggregated metrics to prevent datagram truncation when container ID, external env, or cardinality are set. See #368[].
  • [BUGFIX] Fix data race when reading the origin-detection container ID. See #379[], thanks [@​KowalskiThomas][].
  • [BUGFIX] Fix telemetry metrics not using the client's configured cardinality setting. See #367[].
  • [BUGFIX] Replace vulnerable logrus v1.7.0 transitive dependency (CVE-2025-65637). See #358[], thanks [@​nadavshatz][].
Commits

Updates github.com/DataDog/dd-trace-go/v2 from 2.8.2 to 2.9.0

Release notes

Sourced from github.com/DataDog/dd-trace-go/v2's releases.

v2.9.0

Summary

Application Performance Monitoring (APM)

twmb/franz-go integration

Adds a new contrib package providing tracing for the twmb/franz-go Kafka client. #4250

Trace context propagation hardening

Adds validation and explicit limits on incoming trace context headers:

  • Baggage extraction enforces per-item and total byte limits. #4720
  • dd= list-entries over 256 bytes are dropped from incoming tracestate. #4721
  • x-datadog-tags extraction uses the configurable MaxTagsHeaderLen. #4727

Service name origin signaling

Adds svc.user/svc.auto process tags so consumers can distinguish whether a service name was user-configured vs. auto-detected. #4725

Application Security Management (ASM)

RFC-1012 ASM tags, metrics, and logs consolidation

Closes remaining gaps in the RFC-1012 ASM observability consolidation effort across tags, metrics, and logs. #4708

LLM Observability

Multi-run experiments

Adds support for running LLM evaluation experiments across multiple iterations. #4660

FlushSync API

Adds an internal FlushSync capability for forcing synchronous flush of LLM Observability data — useful for tests and short-lived processes. #4695

Profiling

gzip-compressed profile uploads

The profiler now supports gzip compression mode for profile payloads. #4696 #4697

CI Visibility

Performance and reliability improvements across the board: caching for test-metadata / impacted-test decisions / CODEOWNERS lookups, hardening of Go retry edge cases and parallel-test safety, and reduced overhead in the test wrapper. See the CI Visibility section below for the full list.

What's Changed

Application Performance Monitoring (APM)

... (truncated)

Commits
  • 927a1f0 internal/version: v2.9.0
  • f2aaa67 fix modules and generate
  • 3ba1a5b internal/orchestrion/_integration: v2.9.0-rc.4
  • d221014 orchestrion/all: v2.9.0-rc.4
  • 56782dc internal/traceprof/traceproftest: v2.9.0-rc.4
  • 7a1cb9c instrumentation/internal/validationtest: v2.9.0-rc.4
  • b9c2fec contrib/hashicorp/vault: v2.9.0-rc.4
  • eb84972 internal/setup-smoke-test: v2.9.0-rc.4
  • 7884876 contrib/aws/datadog-lambda-go/test/integration_tests/hello: v2.9.0-rc.4
  • 3a923ed contrib/gorilla/mux: v2.9.0-rc.4
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore: Bump the go-modules group across 1 directory with 2 updates
2e140d6 
Bumps the go-modules group with 2 updates in the / directory: [github.com/DataDog/datadog-go/v5](https://github.com/DataDog/datadog-go) and [github.com/DataDog/dd-trace-go/v2](https://github.com/DataDog/dd-trace-go).


Updates `github.com/DataDog/datadog-go/v5` from 5.8.3 to 5.9.0
- [Release notes](https://github.com/DataDog/datadog-go/releases)
- [Changelog](https://github.com/DataDog/datadog-go/blob/master/CHANGELOG.md)
- [Commits](DataDog/datadog-go@v5.8.3...v5.9.0)

Updates `github.com/DataDog/dd-trace-go/v2` from 2.8.2 to 2.9.0
- [Release notes](https://github.com/DataDog/dd-trace-go/releases)
- [Commits](DataDog/dd-trace-go@v2.8.2...v2.9.0)

---
updated-dependencies:
- dependency-name: github.com/DataDog/datadog-go/v5
  dependency-version: 5.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/DataDog/dd-trace-go/v2
  dependency-version: 2.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jun 26, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants