Bump the all-go-mod-patch-and-minor group across 1 directory with 5 updates

[dependabot]

Bumps the all-go-mod-patch-and-minor group with 4 updates in the / directory: github.com/go-resty/resty/v2, github.com/prometheus/client_golang, github.com/Azure/azure-sdk-for-go/sdk/azcore and go.uber.org/zap.

Updates github.com/go-resty/resty/v2 from 2.16.5 to 2.17.0

Release notes

Sourced from github.com/go-resty/resty/v2's releases.

v2.17.0

Release Notes

Bug Fixes

• Fix off-by-one error in key/value resolution by @​mbsulliv in go-resty/resty#975
• Fix/missing content length header on empty post req by @​Libero-Dev in go-resty/resty#1003

Backport

• backport: potential wrong total time in trace info from PR #1017 by @​git-hulk in go-resty/resty#1018
• backport: negative trace substraction when using SetTimeout by @​nicolasbeauvais in go-resty/resty#1065

Release Updates

• For v2.17.0 release by @​jeevatkm in go-resty/resty#1066

New Contributors

• @​mbsulliv made their first contribution in go-resty/resty#975
• @​Libero-Dev made their first contribution in go-resty/resty#1003

Full Changelog: go-resty/resty@v2.16.5...v2.17.0

Commits

• d4c3576 Merge pull request #1066 from go-resty/for-v2.17.0-release
• 6452271 chore: update readme for release v2.17.0
• 2eab959 ci: update go version 1.23.0
• 795d6c2 chore: update go.mod package versions
• b10a1aa backport: negative trace substraction when using SetTimeout (#1065)
• 2b771ba backport: potential worng total time in trace info for invalid request from P...
• 39c56b9 fix: enforce content length header when body is nil and client specifies SetC...
• 47780b1 fix: off-by-one error in key/value resolution (#975)
• See full diff in compare view

Updates github.com/prometheus/client_golang from 1.22.0 to 1.23.2

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.23.2 - 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

• [release-1.23] Upgrade to prometheus/common@v0.66.1 by @​aknuds1 in prometheus/client_golang#1869
• [release-1.23] Cut v1.23.2 by @​aknuds1 in prometheus/client_golang#1870

Full Changelog: prometheus/client_golang@v1.23.1...v1.23.2

v1.23.1 - 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

• [release-1.23] Upgrade to prometheus/common v0.66 by @​aknuds1 in prometheus/client_golang#1866
• [release-1.23] Cut v1.23.1 by @​aknuds1 in prometheus/client_golang#1867

Full Changelog: prometheus/client_golang@v1.23.0...v1.23.1

v1.23.0 - 2025-07-30

• [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. #1812
• [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix #1766
• [FEATURE] Add exemplars for native histograms #1686
• [ENHANCEMENT] exp/api: Bubble up status code from writeResponse #1823
• [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 #1833
• [BUGFIX] exp/api: client prompt return on context cancellation #1729

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.23.2 / 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

1.23.1 / 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

1.23.0 / 2025-07-30

• [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. #1812
• [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix #1766
• [FEATURE] Add exemplars for native histograms #1686
• [ENHANCEMENT] exp/api: Bubble up status code from writeResponse #1823
• [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 #1833
• [BUGFIX] exp/api: client prompt return on context cancellation #1729

Commits

• 8179a56 Cut v1.23.2 (#1870)
• 4142b59 Merge pull request #1869 from prometheus/arve/upgrade-common
• 4ff40f0 Cut v1.23.1 (#1867)
• 989b029 Upgrade to prometheus/common v0.66 (#1866)
• e4b2208 Cut v1.23.0 (#1848)
• d9492af cut v1.23.0-rc.1 (#1842)
• aeae8a0 Cut v1.23.0-rc.0 (#1837)
• b157309 Update common Prometheus files (#1832)
• a704e28 build(deps): bump the github-actions group with 3 updates (#1826)
• c774311 Fix errNotImplemented reference (#1835)
• Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.18.0 to 1.20.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.20.0

1.20.0 (2025-11-06)

Features Added

• Added runtime.FetcherForNextLinkOptions.HTTPVerb to specify the HTTP verb when fetching the next page via next link. Defaults to http.MethodGet.

Bugs Fixed

• Fixed potential panic when decoding base64 strings.
• Fixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.

sdk/azcore/v1.19.1

1.19.1 (2025-09-11)

Bugs Fixed

• Fixed resource identifier parsing for provider-specific resource hierarchies containing "resourceGroups" segments.

Other Changes

• Improved error fall-back for improperly authored long-running operations.
• Upgraded dependencies.

sdk/azcore/v1.19.0

1.19.0 (2025-08-21)

Features Added

• Added runtime.APIVersionLocationPath to be set by clients that set the API version in the path.

sdk/azcore/v1.18.2

1.18.2 (2025-07-31)

Bugs Fixed

• Fixed a case in which BearerTokenPolicy didn't ensure an authentication error is non-retriable

Commits

• 466795e Prep azcore@v1.20.0 (#25563)
• 6fce238 [azsystemevents] Remove gopls (#25555)
• c0ac8ea Sync eng/common directory with azure-sdk-tools for PR 12476 (#25549)
• 047fb66 [Release] sdk/resourcemanager/containerregistry/armcontainerregistry/2.0.0 (#...
• 908cfea [azsystemevents] Fixing build.go to work properly with tsp-client as the orch...
• c30fd4c cosmos: Allow the Query Pipeline to return an alternative query to execute in...
• 1b44564 fixed resource type validation in ParseResourceType and correlated tests (#25...
• e566eec Sync eng/common directory with azure-sdk-tools for PR 12531 (#25545)
• 053de1a Increment package version after release of data/azcosmos (#25544)
• 8e673bb release pr (#25543)
• Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.9.0 to 1.10.1

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azidentity's releases.

sdk/messaging/azservicebus/v1.10.0

1.10.0 (2025-08-05)

Features Added

• Allow a user to settle and renew message locks with only a lock token, so long as they are not using Service Bus sessions. This makes it possible to settle a message in a completely separate process or service. See ExampleReceiver_CompleteMessage_settleWithLockToken for an example. (PR#24966)

Commits

• a98a0db Prepare azidentity v1.10.1 for release (#24746)
• 8aa9f8b [Release] sdk/resourcemanager/avs/armavs/2.1.0 (#24709)
• 01782ab Fix typo in azidentity troubleshooting guide (#24748)
• 6ba8640 remove reprecated service (#24744)
• 18ff882 [keyvault] upgrade to 7.6 (#24733)
• 214f119 Add in a simple service bus troubleshooting guide. (#24741)
• bb804de [Release] sdk/resourcemanager/containerservice/armcontainerservice/7.0.0-beta...
• 542616a Support 1es canary template validation for unified pipeline (#24731)
• 6d7f1b2 [Release] sdk/resourcemanager/mongodbatlas/armmongodbatlas/0.1.0 (#24590)
• 466a17b upgrade dependency (#24736)
• Additional commits viewable in compare view

Updates go.uber.org/zap from 1.27.0 to 1.27.1

Release notes

Sourced from go.uber.org/zap's releases.

v1.27.1

Enhancements:

• #1501[]: prevent Object from panicking on nils
• #1511[]: Fix a race condition in WithLazy.

Thanks to @​rabbbit, @​alshopov, @​jquirke, @​arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Changelog

Sourced from go.uber.org/zap's changelog.

1.27.1 (19 Nov 2025)

Enhancements:

• #1501[]: prevent Object from panicking on nils
• #1511[]: Fix a race condition in WithLazy.

Thanks to @​rabbbit, @​alshopov, @​jquirke, @​arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Commits

• 7b755a3 release 1.27.1 (#1521)
• d6b395b Update lazy logger not to materialize unless it's being written to (#1519)
• 4b9cea0 ci: Test with Go 1.24, Go 1.25 (#1508)
• 7c80d7b Fix race condition in WithLazy implementation (#1426) (#1511)
• 07077a6 Prevent zap.Object from panicing on nils (#1501)
• a6afd05 Fix lint check name (#1502)
• 6d48253 chore: fix typo (#1482)
• 32f2ec1 Fix the field test for bool type (#1480)
• fe16eb5 Upgrade grpc in zapgrc test package & bump go version (#1478)
• 5f00c34 test(AtomicLevel): demonstrate Handler is not vulnerable to XSS (#1477)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud