chore(deps): bump the gomod group with 3 updates

[dependabot]

Bumps the gomod group with 3 updates: github.com/influxdata/telegraf, github.com/prometheus/common and golang.org/x/sys.

Updates github.com/influxdata/telegraf from 1.38.3 to 1.38.4

Release notes

Sourced from github.com/influxdata/telegraf's releases.

v1.38.4 [2026-05-11]

Bugfixes

• #18816 agent Log Windows service startup errors to configured logger
• #18818 agent Make sure the log-file directory exists
• #18839 agent Reset secret-counter on reload
• #18827 common.adx Make Close safe to call multiple times
• #18825 common.opcua Support byte arrays in decoding
• #18682 inputs.diskio Honor host path environment variables on Linux
• #18878 inputs.docker Lock stats cache before reading
• #18778 inputs.huebridge Repair CI after go-hue v1.2.0 upgrade
• #18875 inputs.kinesis_consumer Acquire lock before saving shard consumers
• #18820 inputs.lustre2 Expose explicit cache sample and page fields
• #18813 inputs.opcua Disable auto-reconnect to fix session flood
• #18626 inputs.upsd Enforce string type for vendor and product IDs
• #18774 outputs.graylog Reconnect transparently when TCP peer closes connection
• #18821 outputs.timestream Return errors from write factory
• #18785 secretstores.googlecloud Handle public GCP service account keys correctly

Dependency Updates

• #18843 deps Bump cloud.google.com/go/bigquery from 1.76.0 to 1.77.0
• #18754 deps Bump cloud.google.com/go/monitoring from 1.26.0 to 1.27.0
• #18844 deps Bump cloud.google.com/go/monitoring from 1.27.0 to 1.28.0
• #18770 deps Bump cloud.google.com/go/pubsub/v2 from 2.5.1 to 2.6.0
• #18751 deps Bump cloud.google.com/go/storage from 1.62.0 to 1.62.1
• #18802 deps Bump github.com/Azure/azure-kusto-go from 0.16.1 to 1.2.2
• #18766 deps Bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.21.0 to 1.21.1
• #18789 deps Bump github.com/Azure/go-ntlmssp from 0.1.0 to 0.1.1
• #18855 deps Bump github.com/ClickHouse/clickhouse-go/v2 from 2.45.0 to 2.46.0
• #18847 deps Bump github.com/IBM/nzgo/v12 from 12.0.11 to 12.0.12
• #18797 deps Bump github.com/IBM/sarama from 1.47.0 to 1.48.0
• #18854 deps Bump github.com/Masterminds/semver/v3 from 3.4.0 to 3.5.0
• #18768 deps Bump github.com/SAP/go-hdb from 1.16.5 to 1.16.6
• #18852 deps Bump github.com/SAP/go-hdb from 1.16.6 to 1.16.7
• #18762 deps Bump github.com/alitto/pond/v2 from 2.7.0 to 2.7.1
• #18853 deps Bump github.com/apache/arrow-go/v18 from 18.5.2 to 18.6.0
• #18758 deps Bump github.com/apache/iotdb-client-go from 1.3.5 to 1.3.7
• #18877 deps Bump github.com/apache/thrift from 0.22.0 to 0.23.1-0.20260429145742-d2acd3c49e58
• #18752 deps Bump github.com/aws/smithy-go from 1.24.3 to 1.25.0
• #18795 deps Bump github.com/aws/smithy-go from 1.25.0 to 1.25.1
• #18809 deps Bump github.com/bluenviron/gomavlib/v3 from 3.3.0 to 3.3.1
• #18812 deps Bump github.com/emiago/sipgo from 1.3.0 to 1.3.1
• #18845 deps Bump github.com/go-sql-driver/mysql from 1.9.3 to 1.10.0
• #18756 deps Bump github.com/hashicorp/consul/api from 1.34.0 to 1.34.1
• #18801 deps Bump github.com/hashicorp/consul/api from 1.34.1 to 1.34.2
• #18781 deps Bump github.com/jackc/pgx/v5 from 5.9.1 to 5.9.2
• #18803 deps Bump github.com/jedib0t/go-pretty/v6 from 6.7.9 to 6.7.10
• #18841 deps Bump github.com/klauspost/compress from 1.18.5 to 1.18.6

... (truncated)

Changelog

Sourced from github.com/influxdata/telegraf's changelog.

v1.38.4 [2026-05-11]

Bugfixes

• #18816 agent Log Windows service startup errors to configured logger
• #18818 agent Make sure the log-file directory exists
• #18839 agent Reset secret-counter on reload
• #18827 common.adx Make Close safe to call multiple times
• #18825 common.opcua Support byte arrays in decoding
• #18682 inputs.diskio Honor host path environment variables on Linux
• #18878 inputs.docker Lock stats cache before reading
• #18778 inputs.huebridge Repair CI after go-hue v1.2.0 upgrade
• #18875 inputs.kinesis_consumer Acquire lock before saving shard consumers
• #18820 inputs.lustre2 Expose explicit cache sample and page fields
• #18813 inputs.opcua Disable auto-reconnect to fix session flood
• #18626 inputs.upsd Enforce string type for vendor and product IDs
• #18774 outputs.graylog Reconnect transparently when TCP peer closes connection
• #18821 outputs.timestream Return errors from write factory
• #18785 secretstores.googlecloud Handle public GCP service account keys correctly

Dependency Updates

• #18843 deps Bump cloud.google.com/go/bigquery from 1.76.0 to 1.77.0
• #18754 deps Bump cloud.google.com/go/monitoring from 1.26.0 to 1.27.0
• #18844 deps Bump cloud.google.com/go/monitoring from 1.27.0 to 1.28.0
• #18770 deps Bump cloud.google.com/go/pubsub/v2 from 2.5.1 to 2.6.0
• #18751 deps Bump cloud.google.com/go/storage from 1.62.0 to 1.62.1
• #18802 deps Bump github.com/Azure/azure-kusto-go from 0.16.1 to 1.2.2
• #18766 deps Bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.21.0 to 1.21.1
• #18789 deps Bump github.com/Azure/go-ntlmssp from 0.1.0 to 0.1.1
• #18855 deps Bump github.com/ClickHouse/clickhouse-go/v2 from 2.45.0 to 2.46.0
• #18847 deps Bump github.com/IBM/nzgo/v12 from 12.0.11 to 12.0.12
• #18797 deps Bump github.com/IBM/sarama from 1.47.0 to 1.48.0
• #18854 deps Bump github.com/Masterminds/semver/v3 from 3.4.0 to 3.5.0
• #18768 deps Bump github.com/SAP/go-hdb from 1.16.5 to 1.16.6
• #18852 deps Bump github.com/SAP/go-hdb from 1.16.6 to 1.16.7
• #18762 deps Bump github.com/alitto/pond/v2 from 2.7.0 to 2.7.1
• #18853 deps Bump github.com/apache/arrow-go/v18 from 18.5.2 to 18.6.0
• #18758 deps Bump github.com/apache/iotdb-client-go from 1.3.5 to 1.3.7
• #18877 deps Bump github.com/apache/thrift from 0.22.0 to 0.23.1-0.20260429145742-d2acd3c49e58
• #18752 deps Bump github.com/aws/smithy-go from 1.24.3 to 1.25.0
• #18795 deps Bump github.com/aws/smithy-go from 1.25.0 to 1.25.1
• #18809 deps Bump github.com/bluenviron/gomavlib/v3 from 3.3.0 to 3.3.1
• #18812 deps Bump github.com/emiago/sipgo from 1.3.0 to 1.3.1
• #18845 deps Bump github.com/go-sql-driver/mysql from 1.9.3 to 1.10.0
• #18756 deps Bump github.com/hashicorp/consul/api from 1.34.0 to 1.34.1
• #18801 deps Bump github.com/hashicorp/consul/api from 1.34.1 to 1.34.2
• #18781 deps Bump github.com/jackc/pgx/v5 from 5.9.1 to 5.9.2
• #18803 deps Bump github.com/jedib0t/go-pretty/v6 from 6.7.9 to 6.7.10
• #18841 deps Bump github.com/klauspost/compress from 1.18.5 to 1.18.6

... (truncated)

Commits

• c79b06d Telegraf v1.38.4
• 303b015 Update changelog for v1.38.4
• a20d3a1 Update build_version.txt for v1.38.4
• 437c40a chore(deps): Bump github.com/apache/thrift from 0.22.0 to 0.23.1-0.2026042914...
• 0cce184 fix(inputs.docker): Lock stats cache before reading (#18878)
• 7e61261 chore(inputs.docker): Cleanup code (#18874)
• 15dae42 fix(inputs.kinesis_consumer): Acquire lock before saving shard consumers (#18...
• 0f53b6d fix(inputs.upsd): Enforce string type for vendor and product IDs (#18626)
• 1d23761 docs(inputs.kubernetes): Document required RBAC permissions (#18865)
• 0dee99f chore(inputs.docker): Convert tests to use mock server (#18869)
• Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.67.5 to 0.68.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.68.0

What's Changed

• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#873
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#874
• build(deps): bump github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1 by @​dependabot[bot] in prometheus/common#879
• build(deps): bump golang.org/x/net from 0.48.0 to 0.49.0 by @​dependabot[bot] in prometheus/common#878
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#875
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#880
• Remove logic adding unit to metrics name by @​vesari in prometheus/common#877
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#881
• Update for Go 1.26 by @​SuperQ in prometheus/common#883
• build(deps): bump golang.org/x/net from 0.49.0 to 0.51.0 by @​dependabot[bot] in prometheus/common#882
• version: Add a slog helper by @​SuperQ in prometheus/common#886
• Remove Arthur from maintainers list by @​ArthurSens in prometheus/common#885
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#895
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#896
• config: change NewOAuth2RoundTripper to accept variadic HTTPClientOption by @​alliasgher in prometheus/common#898
• config: guard against nil oauth2 credential in RoundTrip by @​alliasgher in prometheus/common#897
• build(deps): bump golang.org/x/net from 0.51.0 to 0.52.0 by @​dependabot[bot] in prometheus/common#890
• build(deps): bump go.yaml.in/yaml/v2 from 2.4.3 to 2.4.4 by @​dependabot[bot] in prometheus/common#891
• build(deps): bump golang.org/x/oauth2 from 0.34.0 to 0.36.0 by @​dependabot[bot] in prometheus/common#892
• Move interface assertions to a test file by @​msiegen in prometheus/common#839
• fix(http_config): fix client cert rotation when no CA is configured by @​machine424 in prometheus/common#908
• Remove CircleCI by @​ArthurSens in prometheus/common#910
• Fix: apply DialContextFunc to OAuth2 token-fetch transport by @​yuri-tceretian in prometheus/common#911

New Contributors

• @​alliasgher made their first contribution in prometheus/common#898
• @​msiegen made their first contribution in prometheus/common#839
• @​machine424 made their first contribution in prometheus/common#908
• @​yuri-tceretian made their first contribution in prometheus/common#911

Full Changelog: prometheus/common@v0.67.5...v0.68.0

Commits

• 1e0ae83 config: apply DialContextFunc to OAuth2 token-fetch transport (#911)
• b51d01b Remove CircleCI (#910)
• 0f3c348 Merge pull request #908 from machine424/ttlsco
• 732a9cf fix(http_config): fix client cert rotation when no CA is configured
• ce9215c Move interface assertions to a test file (#839)
• 1ba5ed7 build(deps): bump golang.org/x/oauth2 from 0.34.0 to 0.36.0 (#892)
• 8f8ada6 build(deps): bump go.yaml.in/yaml/v2 from 2.4.3 to 2.4.4 (#891)
• 5bf00a4 build(deps): bump golang.org/x/net from 0.51.0 to 0.52.0 (#890)
• a4fac5c config: guard against nil oauth2 credential in RoundTrip (#897)
• 9e28363 Merge pull request #898 from alliasgher/fix/NewOAuth2RoundTripper-exported-op...
• Additional commits viewable in compare view

Updates golang.org/x/sys from 0.43.0 to 0.45.0

Commits

• 397d5f8 unix: update to Linux kernel 7.0
• 0a387f7 cpu: detect zbc extension on riscv64
• 758f71c cpu: add LLACQ_SCREL, SCQ, DBAR_HINTS detection for loong64
• 99666ae unix: merge Linux readv/writev implementation with Darwin/OpenBSD
• e4444cb windows: add NtSetEaFile, NtQueryEaFile and NtQueryInformationFile
• 04396e8 unix: add Readv, Writev, Preadv, Pwritev for OpenBSD
• fb1facd windows: avoid uint16 overflow in NewNTUnicodeString
• 94ad893 windows: add GetIfTable2Ex, GetIpInterface{Entry,Table}, GetUnicastIpAddressT...
• 54fe89f cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows
• df7d5d7 unix: automatically remove container created by mkall.sh
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions