Skip to content

chore(deps): bump github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream from 1.5.4 to 1.7.8#2289

Open
dependabot[bot] wants to merge 1 commit into
oadp-devfrom
dependabot/go_modules/github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream-1.7.8
Open

chore(deps): bump github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream from 1.5.4 to 1.7.8#2289
dependabot[bot] wants to merge 1 commit into
oadp-devfrom
dependabot/go_modules/github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream-1.7.8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown

Bumps github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream from 1.5.4 to 1.7.8.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Summary by CodeRabbit

  • Chores
    • Updated two underlying Go dependencies to newer versions, which may improve stability and compatibility.

Bumps [github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream](https://github.com/aws/aws-sdk-go-v2) from 1.5.4 to 1.7.8.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/drs/v1.5.4...service/m2/v1.7.8)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
  dependency-version: 1.7.8
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 7, 2026
@coderabbitai

coderabbitai Bot commented Jul 7, 2026

Copy link
Copy Markdown
Contributor

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Repository: openshift/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: 945dad58-9709-4fe0-bcb8-443f5bce0e28

📥 Commits

Reviewing files that changed from the base of the PR and between 03bb3b1 and 9b5aaa4.

⛔ Files ignored due to path filters (1)
  • go.sum is excluded by !**/*.sum
📒 Files selected for processing (1)
  • go.mod

Walkthrough

Updated two indirect Go module dependency versions in go.mod: github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream bumped from v1.5.4 to v1.7.8, and github.com/aws/smithy-go bumped from v1.20.3 to v1.24.2.

Changes

Indirect dependency updates

Layer / File(s) Summary
Bump indirect module versions
go.mod
Updated versions for two indirect dependencies: eventstream (v1.5.4 → v1.7.8) and smithy-go (v1.20.3 → v1.24.2).

Estimated code review effort: 1 (Trivial) | ~2 minutes

🚥 Pre-merge checks | ✅ 14 | ❌ 1

❌ Failed checks (1 warning)

Check name Status Explanation Resolution
Description check ⚠️ Warning The description is missing the required 'Why' and 'How to test' sections from the template. Add a brief rationale for the dependency bump and a testing section with verification steps or commands.
✅ Passed checks (14 passed)
Check name Status Explanation
Title check ✅ Passed The title accurately summarizes the dependency bump reflected in the changeset.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names ✅ Passed PR only changes go.mod/go.sum dependency versions; no test files or Ginkgo titles were modified, so no unstable test names were introduced.
Test Structure And Quality ✅ Passed PR only changes go.mod/go.sum; no test files or Ginkgo blocks were modified, so the check is not applicable.
Microshift Test Compatibility ✅ Passed Only go.mod and go.sum changed; no Ginkgo tests were added or modified, so MicroShift compatibility isn’t implicated.
Single Node Openshift (Sno) Test Compatibility ✅ Passed PR only updates go.mod/go.sum dependency versions; no Ginkgo/e2e test files or specs were added or modified, so SNO compatibility review is not applicable.
Topology-Aware Scheduling Compatibility ✅ Passed Only go.mod/go.sum dependency bumps changed; no manifests, controllers, or scheduling/topology logic were modified.
Ote Binary Stdout Contract ✅ Passed PR only changes go.mod dependency versions; no Go source or process-level setup code was modified, so no new stdout writes were introduced.
Ipv6 And Disconnected Network Test Compatibility ✅ Passed PR only updates go.mod/go.sum dependency versions; no new Ginkgo e2e tests or network assumptions were added.
No-Weak-Crypto ✅ Passed Only indirect Go module versions changed in go.mod/go.sum; no MD5/SHA1/DES/RC4/3DES/Blowfish/ECB or custom crypto code was added.
Container-Privileges ✅ Passed PR only updates go.mod/go.sum; no container/K8s manifests changed and no privileged/host* fields appear in the diff.
No-Sensitive-Data-In-Logs ✅ Passed Diff only updates go.mod/go.sum dependency versions; no logging code or sensitive terms were introduced.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dependabot/go_modules/github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream-1.7.8

Comment @coderabbitai help to get the list of available commands.

@openshift-ci openshift-ci Bot added the needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. label Jul 7, 2026
@openshift-ci

openshift-ci Bot commented Jul 7, 2026

Copy link
Copy Markdown

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign kaovilai for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci

openshift-ci Bot commented Jul 7, 2026

Copy link
Copy Markdown

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants