Skip to content

Bump the minor-and-patch-dependencies group with 3 updates#3489

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/gradle/minor-and-patch-dependencies-766906a788
Closed

Bump the minor-and-patch-dependencies group with 3 updates#3489
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/gradle/minor-and-patch-dependencies-766906a788

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 12, 2026

Copy link
Copy Markdown
Contributor

Bumps the minor-and-patch-dependencies group with 3 updates: io.netty:netty-codec-http, io.netty:netty-codec-http2 and com.azure:azure-cosmos.

Updates io.netty:netty-codec-http from 4.1.132.Final to 4.2.12.Final

Release notes

Sourced from io.netty:netty-codec-http's releases.

netty-4.2.12.Final

What's Changed

Full Changelog: netty/netty@netty-4.2.11.Final...netty-4.2.12.Final

netty-4.2.11.Final

Security

What's Changed

... (truncated)

Commits
  • 67ce541 [maven-release-plugin] prepare release netty-4.2.12.Final
  • 7074624 Revert "Eliminate redundant bounds checks in CompositeByteBuf accessors" (#16...
  • c3b0a43 [maven-release-plugin] prepare for next development iteration
  • c94a818 [maven-release-plugin] prepare release netty-4.2.11.Final
  • 3b76df1 Merge commit from fork
  • aae944a Auto-port 4.2: Limit the number of Continuation frames per HTTP2 Headers (#16...
  • 6001499 Eliminate redundant bounds checks in CompositeByteBuf accessors (#16525)
  • a7fbb6f JdkZlibDecoder: accumulate decompressed output before firing channelRead (#16...
  • 7937553 Enforce io.netty.maxDirectMemory accounting on all Java versions (#16489)
  • 893ea2e Allocate less in QueryStringDecoder.addParam for typical use case (#16527)
  • Additional commits viewable in compare view

Updates io.netty:netty-codec-http2 from 4.1.132.Final to 4.2.12.Final

Release notes

Sourced from io.netty:netty-codec-http2's releases.

netty-4.2.12.Final

What's Changed

Full Changelog: netty/netty@netty-4.2.11.Final...netty-4.2.12.Final

netty-4.2.11.Final

Security

What's Changed

... (truncated)

Commits
  • 67ce541 [maven-release-plugin] prepare release netty-4.2.12.Final
  • 7074624 Revert "Eliminate redundant bounds checks in CompositeByteBuf accessors" (#16...
  • c3b0a43 [maven-release-plugin] prepare for next development iteration
  • c94a818 [maven-release-plugin] prepare release netty-4.2.11.Final
  • 3b76df1 Merge commit from fork
  • aae944a Auto-port 4.2: Limit the number of Continuation frames per HTTP2 Headers (#16...
  • 6001499 Eliminate redundant bounds checks in CompositeByteBuf accessors (#16525)
  • a7fbb6f JdkZlibDecoder: accumulate decompressed output before firing channelRead (#16...
  • 7937553 Enforce io.netty.maxDirectMemory accounting on all Java versions (#16489)
  • 893ea2e Allocate less in QueryStringDecoder.addParam for typical use case (#16527)
  • Additional commits viewable in compare view

Updates io.netty:netty-codec-http2 from 4.1.132.Final to 4.2.12.Final

Release notes

Sourced from io.netty:netty-codec-http2's releases.

netty-4.2.12.Final

What's Changed

Full Changelog: netty/netty@netty-4.2.11.Final...netty-4.2.12.Final

netty-4.2.11.Final

Security

What's Changed

... (truncated)

Commits
  • 67ce541 [maven-release-plugin] prepare release netty-4.2.12.Final
  • 7074624 Revert "Eliminate redundant bounds checks in CompositeByteBuf accessors" (#16...
  • c3b0a43 [maven-release-plugin] prepare for next development iteration
  • c94a818 [maven-release-plugin] prepare release netty-4.2.11.Final
  • 3b76df1 Merge commit from fork
  • aae944a Auto-port 4.2: Limit the number of Continuation frames per HTTP2 Headers (#16...
  • 6001499 Eliminate redundant bounds checks in CompositeByteBuf accessors (#16525)
  • a7fbb6f JdkZlibDecoder: accumulate decompressed output before firing channelRead (#16...
  • 7937553 Enforce io.netty.maxDirectMemory accounting on all Java versions (#16489)
  • 893ea2e Allocate less in QueryStringDecoder.addParam for typical use case (#16527)
  • Additional commits viewable in compare view

Updates com.azure:azure-cosmos from 4.79.0 to 4.79.1

Release notes

Sourced from com.azure:azure-cosmos's releases.

com.azure+azure-cosmos_4.79.1

4.79.1 (2026-04-06)

Bugs Fixed

  • Fixing an NPE caused due to boxed Boolean conversion. - See PR 48656
Commits
  • a8a49e9 Release azure-cosmos 4.79.1 (#48700)
  • 0be98b6 Temporarily Disabling Immutable Storage with Versioning Tests During Diagnost...
  • beeb599 fix: reset metrics registry per benchmark cycle (#48695)
  • 966398c Set default service version to 2025-07-01 for keyvault secrets (#48690)
  • 0ce561c [Key Vault Certificates] Remove preview service version from GA library (#48678)
  • 56dab13 Sync eng/common directory with azure-sdk-tools for PR 14922 (#48696)
  • 26c01ac March 2026 Patches Merge-back (#48665)
  • dec14b8 Sync eng/common directory with azure-sdk-tools for PR 14890 (#48686)
  • 432a587 Clean up azure-identity README (#48685)
  • 9336a4b [EventHubs] Migrate to TypeSpec (#48673)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-and-patch-dependencies group with 3 updates: [io.netty:netty-codec-http](https://github.com/netty/netty), [io.netty:netty-codec-http2](https://github.com/netty/netty) and [com.azure:azure-cosmos](https://github.com/Azure/azure-sdk-for-java).


Updates `io.netty:netty-codec-http` from 4.1.132.Final to 4.2.12.Final
- [Release notes](https://github.com/netty/netty/releases)
- [Commits](netty/netty@netty-4.1.132.Final...netty-4.2.12.Final)

Updates `io.netty:netty-codec-http2` from 4.1.132.Final to 4.2.12.Final
- [Release notes](https://github.com/netty/netty/releases)
- [Commits](netty/netty@netty-4.1.132.Final...netty-4.2.12.Final)

Updates `io.netty:netty-codec-http2` from 4.1.132.Final to 4.2.12.Final
- [Release notes](https://github.com/netty/netty/releases)
- [Commits](netty/netty@netty-4.1.132.Final...netty-4.2.12.Final)

Updates `com.azure:azure-cosmos` from 4.79.0 to 4.79.1
- [Release notes](https://github.com/Azure/azure-sdk-for-java/releases)
- [Commits](Azure/azure-sdk-for-java@com.azure+azure-cosmos_4.79.0...com.azure+azure-cosmos_4.79.1)

---
updated-dependencies:
- dependency-name: io.netty:netty-codec-http
  dependency-version: 4.2.12.Final
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch-dependencies
- dependency-name: io.netty:netty-codec-http2
  dependency-version: 4.2.12.Final
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch-dependencies
- dependency-name: io.netty:netty-codec-http2
  dependency-version: 4.2.12.Final
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch-dependencies
- dependency-name: com.azure:azure-cosmos
  dependency-version: 4.79.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Apr 12, 2026
@feeblefakie feeblefakie requested review from a team, KodaiD, Torch3333, brfrn169, feeblefakie and komamitsu and removed request for a team April 12, 2026 16:04
@Torch3333

Copy link
Copy Markdown
Contributor

@dependabot show com.azure:azure-storage-blob ignore conditions

@dependabot @github

dependabot Bot commented on behalf of github Apr 13, 2026

Copy link
Copy Markdown
Contributor Author
Ignore Conditions
Dependency Ignore Condition
com.azure:azure-storage-blob [> 12.32.0]

@Torch3333

Copy link
Copy Markdown
Contributor

@dependabot unignore com.azure:azure-storage-blob

@dependabot @github

dependabot Bot commented on behalf of github Apr 13, 2026

Copy link
Copy Markdown
Contributor Author

OK, I will stop ignoring the com.azure:azure-storage-blob dependency.

@Torch3333

Copy link
Copy Markdown
Contributor

@dependabot show io.netty ignore conditions

@dependabot @github

dependabot Bot commented on behalf of github Apr 13, 2026

Copy link
Copy Markdown
Contributor Author

No ignore conditions found for the dependency io.netty

@dependabot @github

dependabot Bot commented on behalf of github Apr 13, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Apr 13, 2026
@dependabot dependabot Bot deleted the dependabot/gradle/minor-and-patch-dependencies-766906a788 branch April 13, 2026 02:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant