Bump the go_modules group across 1 directory with 6 updates

[dependabot]

Bumps the go_modules group with 4 updates in the / directory: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp, github.com/emicklei/go-restful, golang.org/x/crypto and google.golang.org/protobuf.

Updates go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.34.0 to 0.44.0

Release notes

Sourced from go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp's releases.

Release v1.24.0/v0.49.0/v0.18.0/v0.4.0

This release is the last to support Go 1.20. The next release will require at least Go 1.21.

Added

• Support Go 1.22. (#5082)
• Add support for Summary metrics to go.opentelemetry.io/contrib/bridges/prometheus. (#5089)
• Add support for Exponential (native) Histograms in go.opentelemetry.io/contrib/bridges/prometheus. (#5093)

Removed

• The deprecated RequestCount constant in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is removed. (#4894)
• The deprecated RequestContentLength constant in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is removed. (#4894)
• The deprecated ResponseContentLength constant in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is removed. (#4894)
• The deprecated ServerLatency constant in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is removed. (#4894)

Fixed

• Retrieving the body bytes count in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp does not cause a data race anymore. (#5080)

New Contributors

• @​arvindbr8 made their first contribution in open-telemetry/opentelemetry-go-contrib#4897
• @​wushujames made their first contribution in open-telemetry/opentelemetry-go-contrib#5135

Full Changelog: open-telemetry/opentelemetry-go-contrib@v1.23.0...v1.24.0

Release v1.23.0/v0.48.0/v0.17.0/v0.3.0

Added

• Add client metric support to go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#4707)
• Add peer attributes to spans recorded by NewClientHandler, NewServerHandler in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#4873)
• Add support for cloud.account.id, cloud.availability_zone and cloud.region in the AWS ECS detector. (#4860)

Changed

• The fallback options in go.opentelemetry.io/contrib/exporters/autoexport now accept factory functions. (#4891)
  • WithFallbackMetricReader(metric.Reader) MetricOption is replaced with func WithFallbackMetricReader(func(context.Context) (metric.Reader, error)) MetricOption.
  • WithFallbackSpanExporter(trace.SpanExporter) SpanOption is replaced with WithFallbackSpanExporter(func(context.Context) (trace.SpanExporter, error)) SpanOption.
• The http.server.request_content_length metric in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is changed to http.server.request.size.(#4707)
• The http.server.response_content_length metric in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp is changed to http.server.response.size.(#4707)

Deprecated

• The RequestCount, RequestContentLength, ResponseContentLength, ServerLatency constants in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp are deprecated. (#4707)

... (truncated)

Changelog

Sourced from go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp's changelog.

[1.19.0/0.44.0/0.13.0] - 2023-09-12

Added

• Add gcp.gce.instance.name and gcp.gce.instance.hostname resource attributes to go.opentelemetry.io/contrib/detectors/gcp. (#4263)

Changed

• The semantic conventions used by go.opentelemetry.io/contrib/detectors/aws/ec2 have been upgraded to v1.21.0. (#4265)
• The semantic conventions used by go.opentelemetry.io/contrib/detectors/aws/ecs have been upgraded to v1.21.0. (#4265)
• The semantic conventions used by go.opentelemetry.io/contrib/detectors/aws/eks have been upgraded to v1.21.0. (#4265)
• The semantic conventions used by go.opentelemetry.io/contrib/detectors/aws/lambda have been upgraded to v1.21.0. (#4265)
• The semantic conventions used by go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-lambda-go/otellambda have been upgraded to v1.21.0. (#4265)
  • The faas.execution attribute is now faas.invocation_id.
  • The faas.id attribute is now aws.lambda.invoked_arn.
• The semantic conventions used by go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-sdk-go-v2/otelaws have been upgraded to v1.21.0. (#4265)
• The http.request.method attribute will only allow known HTTP methods from the metrics generated by go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#4277)

Removed

• The high cardinality attributes net.sock.peer.addr, net.sock.peer.port, http.user_agent, enduser.id, and http.client_ip were removed from the metrics generated by go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#4277)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/astaxie/beego/otelbeego module is removed. (#4295)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/go-kit/kit/otelkit module is removed. (#4295)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/Shopify/sarama/otelsarama module is removed. (#4295)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/bradfitz/gomemcache/memcache/otelmemcache module is removed. (#4295)
• The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/gocql/gocql/otelgocql module is removed. (#4295)

[1.18.0/0.43.0/0.12.0] - 2023-08-28

Added

• Add NewMiddleware function in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp. (#2964)
• The go.opentelemetry.io/contrib/exporters/autoexport package to provide configuration of trace exporters with useful defaults and environment variable support. (#2753, #4100, #4130, #4132, #4134)
• WithRouteTag in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp adds HTTP route attribute to metrics. (#615)
• Add WithSpanOptions option in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc. (#3768)
• Add testing support for Go 1.21. (#4233)
• Add WithFilter option to go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/mux/otelmux. (#4230)

Changed

• Change interceptors in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc to disable SENT/RECEIVED events. Use WithMessageEvents() to turn back on. (#3964)

Changed

• go.opentelemetry.io/contrib/detectors/gcp: Detect faas.instance instead of faas.id, since faas.id is being removed. (#4198)

Fixed

• AWS XRay Remote Sampling to cap quotaBalance to 1x quota in go.opentelemetry.io/contrib/samplers/aws/xray. (#3651, #3652)

... (truncated)

Commits

• fdfa6e3 Release v1.19.0/v0.44.0/v0.13.0 (#4299)
• aea7540 build(deps): bump github.com/aws/aws-sdk-go in /detectors/aws/ec2 (#4297)
• 7e88614 Remove otelbeego, otelkit, otelsarama, otelmemcache, otelgocql (#4295)
• 14f153e build(deps): bump actions/checkout from 3 to 4 (#4291)
• 01c596d dependabot updates Mon Sep 11 05:08:50 UTC 2023 (#4294)
• 50ca48f Remove high cardanility metrics from otelhttp (#4277)
• b6fc62f Update go versions used in workflow (#4278)
• 7a8f53c Add new gcp host attributes (#4263)
• aab5f49 [mux] Add request filters like otelhttp (#4230)
• 3ad5a2c Deprecate otelmemcache, otelgocql (#4164)
• Additional commits viewable in compare view

Updates github.com/emicklei/go-restful from 2.9.5+incompatible to 2.16.0+incompatible

Changelog

Sourced from github.com/emicklei/go-restful's changelog.

Change history of go-restful

[v3.12.0] - 2024-03-11

• add Flush method #529 (#538)
• fix: Improper handling of empty POST requests (#543)

[v3.11.3] - 2024-01-09

• better not have 2 tags on one commit

[v3.11.1, v3.11.2] - 2024-01-09

• fix by restoring custom JSON handler functions (Mike Beaumont #540)

[v3.11.0] - 2023-08-19

• restored behavior as <= v3.9.0 with option to change path strategy using TrimRightSlashEnabled.

[v3.10.2] - 2023-03-09 - DO NOT USE

• introduced MergePathStrategy to be able to revert behaviour of path concatenation to 3.9.0 see comment in Readme how to customize this behaviour.

[v3.10.1] - 2022-11-19 - DO NOT USE

• fix broken 3.10.0 by using path package for joining paths

[v3.10.0] - 2022-10-11 - BROKEN

• changed tokenizer to match std route match behavior; do not trimright the path (#511)
• Add MIME_ZIP (#512)
• Add MIME_ZIP and HEADER_ContentDisposition (#513)
• Changed how to get query parameter issue #510

[v3.9.0] - 2022-07-21

• add support for http.Handler implementations to work as FilterFunction, issue #504 (thanks to https://github.com/ggicci)

[v3.8.0] - 2022-06-06

• use exact matching of allowed domain entries, issue #489 (#493)
  • this changes fixes [security] Authorization Bypass Through User-Controlled Key by changing the behaviour of the AllowedDomains setting in the CORS filter. To support the previous behaviour, the CORS filter type now has a AllowedDomainFunc callback mechanism which is called when a simple domain match fails.
• add test and fix for POST without body and Content-type, issue #492 (#496)
• [Minor] Bad practice to have a mix of Receiver types. (#491)

[v3.7.2] - 2021-11-24

... (truncated)

Commits

• ac666c0 update changes
• 9266625 use exact matching of allowed domain entries, issue #489 (#493) (#503)
• d9c71e1 support multipart/form-data (#502)
• 1e8c63c add access to Route from Request, issue #459 (#462)
• 0d68a53 fix typo (#465)
• a22b51d add check for wildcard (#463)
• 8dd9eb8 update chg
• e5d3175 add options shortcut (#455)
• 1f7f1de fix link to example
• 601692b examples use v3
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.0.0-20220214200702-86341886e292 to 0.17.0

Commits

• See full diff in compare view

Updates golang.org/x/net from 0.0.0-20220127200216-cd36cc0744dd to 0.10.0

Commits

• See full diff in compare view

Updates golang.org/x/text from 0.3.7 to 0.14.0

Commits

• 6c97a16 all: update go directive to 1.18
• f488e19 unicode/norm: fix function name on comment
• fb697c0 cmd/gotext: actually use -dir flag
• f3e69ed cmd/gotext: fix misbehaviors
• ab07ad1 all: remove repetitive words
• e503480 encoding/japanese, language: shorten very long sub-test names
• 2df65d7 all: regenerate for Unicode 15.0.0
• e3c038a all: prepare for Unicode 15.0.0
• 3a7a255 internal/export/idna: make more space for mapping index
• d61dd50 go.mod: delete repeated "indirect"
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.27.1 to 1.33.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.