Skip to content

build(deps): bump github.com/nats-io/nats-server/v2 from 2.14.2 to 2.14.3#3063

Merged
rhafer merged 1 commit into
mainfrom
dependabot/go_modules/github.com/nats-io/nats-server/v2-2.14.3
Jul 7, 2026
Merged

build(deps): bump github.com/nats-io/nats-server/v2 from 2.14.2 to 2.14.3#3063
rhafer merged 1 commit into
mainfrom
dependabot/go_modules/github.com/nats-io/nats-server/v2-2.14.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 2, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/nats-io/nats-server/v2 from 2.14.2 to 2.14.3.

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.14.3

Changelog

Refer to the 2.14 Upgrade Guide for backwards compatibility notes with 2.12.x. Please note that the 2.13.x version was skipped.

Go Version

Dependencies

  • golang.org/x/crypto v0.53.0 (#8297)
  • golang.org/x/sys v0.46.0 (#8297)
  • github.com/nats-io/jwt/v2 v2.8.2
  • github.com/nats-io/nkeys v0.4.16

Improved

General

  • Per-connection log lines that could be noisy in normal operation have been demoted to debug level (#8289)
  • Writer options are now applied consistently when using the s2_fast compression mode (#8047)

JetStream

  • Stream and consumer assignment handling has been refactored for more consistent migration and info behavior (#8262)
  • Meta, stream and consumer write errors are now registered more consistently for health and recovery handling (#8293)

Removed

Monitoring

  • JSONP callback support has been removed from monitoring endpoints

Fixed

General

  • Long-running reconnect and OCSP loops no longer retain unused timers, reducing memory pressure over time (#8204)
  • Inherited JWT default permissions are now refreshed when account claims are updated (#8276)
  • External auth configuration is now cleared correctly when account claims are updated (#8275)
  • PROXY protocol detection, TLS sniffing with allow_non_tls and PROXY v1 address-family parsing have been fixed (#8302)
  • A race in gateway CONNECT handling has been fixed (#8306)
  • Trusted proxy tracking no longer leaks closed clients during concurrent updates (#8307)
  • Service import replies can now be delivered across cluster routes (#8317)
  • Message tracing now works correctly with service imports and exports
  • Several panic, fatal and data race conditions in authentication, routing, monitoring and clustered request handling have been fixed
  • NoAuthUser now checks connection restrictions
  • Leaf connections no longer bypass Nats-Trace-Dest publish permission checks
  • CONNZ and SUBSZ pagination now guard against Offset and Limit integer overflow panics

... (truncated)

Commits
  • 9b17a58 Release v2.14.3
  • 2be2525 Release v2.14.3-RC.2
  • 563d55f Cherry-picks for v2.14.3-RC.2 (#126)
  • e242ca0 NRG: Don't campaign with an uncommitted membership change about ourselves
  • 0e4d935 NRG: Exclude uncommitted membership change from snapshot
  • 0ab7302 NRG: Remove redundant known peer tracking
  • 6eb7d76 NRG: Truncated uncommitted membership change leaves stale state
  • 8157b56 [TEST] Campaign early on NRG tests
  • 712b3d2 [FIXED] Nil pointer panic when resolver dir parent is not traversable
  • f11c26b [FIXED] Skipped messages set last time to now
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/nats-io/nats-server/v2](https://github.com/nats-io/nats-server) from 2.14.2 to 2.14.3.
- [Release notes](https://github.com/nats-io/nats-server/releases)
- [Changelog](https://github.com/nats-io/nats-server/blob/main/RELEASES.md)
- [Commits](nats-io/nats-server@v2.14.2...v2.14.3)

---
updated-dependencies:
- dependency-name: github.com/nats-io/nats-server/v2
  dependency-version: 2.14.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 2, 2026
@codacy-production

codacy-production Bot commented Jul 2, 2026

Copy link
Copy Markdown

Up to standards βœ…

🟒 Issues 0 issues

Results:
0 new issues

View in Codacy

🟒 Metrics 0 complexity · 0 duplication

Metric Results
Complexity 0
Duplication 0

View in Codacy

🟒 Coverage βˆ… diff coverage Β· +0.00% coverage variation

Metric Results
Coverage variation βœ… +0.00% coverage variation (-1.00%)
Diff coverage βœ… βˆ… diff coverage

View coverage diff in Codacy

Coverage variation details
Coverable lines Covered lines Coverage
Common ancestor commit (85be8e7) 82472 19096 23.15%
Head commit (b8ec664) 82472 (+0) 19098 (+2) 23.16% (+0.00%)

Coverage variation is the difference between the coverage for the head and common ancestor commits of the pull request branch: <coverage of head commit> - <coverage of common ancestor commit>

Diff coverage details
Coverable lines Covered lines Diff coverage
Pull request (#3063) 0 0 βˆ… (not applicable)

Diff coverage is the percentage of lines that are covered by tests out of the coverable lines that the pull request added or modified: <covered lines added or modified>/<coverable lines added or modified> * 100%

NEW Get contextual insights on your PRs based on Codacy's metrics, along with PR and Jira context, without leaving GitHub. Enable AI reviewer
TIP This summary will be updated as you push new changes.

@rhafer
rhafer merged commit 6f838a2 into main Jul 7, 2026
66 of 67 checks passed
@rhafer
rhafer deleted the dependabot/go_modules/github.com/nats-io/nats-server/v2-2.14.3 branch July 7, 2026 10:32
@openclouders openclouders mentioned this pull request Jul 6, 2026
1 task
sdwilsh pushed a commit to sdwilsh/ansible-playbooks that referenced this pull request Jul 15, 2026
##### [\`7.3.0\`](https://github.com/opencloud-eu/opencloud/blob/HEAD/CHANGELOG.md#730---2026-07-14)

##### πŸ› Bug Fixes

- fix(proxy): honor access token cache ttl \[[#3056](opencloud-eu/opencloud#3056)]
- chore(idp): update axios \[[#3094](opencloud-eu/opencloud#3094)]
- fix: make the collaboration service events optional \[[#3001](opencloud-eu/opencloud#3001)]
- Revert "fix: disallow thumbnails for tiff and jpeg2000 images" \[[#2973](opencloud-eu/opencloud#2973)]
- bump reva \[[#2950](opencloud-eu/opencloud#2950)]
- change error level for trashing items interaction with search \[[#2951](opencloud-eu/opencloud#2951)]
- fix: Send SSE events for SpaceEnabled/Disabled to affected users \[[#2871](opencloud-eu/opencloud#2871)]

##### πŸ“š Documentation

- update collaboration readme \[[#3076](opencloud-eu/opencloud#3076)]
- fix: fix typo in proxy service documentation \[[#3089](opencloud-eu/opencloud#3089)]
- roling release template \[[#2972](opencloud-eu/opencloud#2972)]
- enhance: fix typos in webfinger service description \[[#2958](opencloud-eu/opencloud#2958)]

##### βœ… Tests

- \[full-ci] gherkin steps refactoring. cleaning code \[[#3100](opencloud-eu/opencloud#3100)]
- \[decomposed] more cli command tests \[[#3087](opencloud-eu/opencloud#3087)]
- test(apiSpaces): a space admin can delete a space with no manager \[[#3040](opencloud-eu/opencloud#3040)]
- Update tests for [opencloud-eu/reva#655](opencloud-eu/reva#655) \[[#2889](opencloud-eu/opencloud#2889)]
- api-test: deleting space \[[#2970](opencloud-eu/opencloud#2970)]

##### πŸ“ˆ Enhancement

- feat: add disableSponsorLink web config option \[[#3093](opencloud-eu/opencloud#3093)]
- feat(graph): add MS Graph colon-syntax path lookup middleware \[[#2688](opencloud-eu/opencloud#2688)]
- feat: adjust theme chrome colors and logos \[[#2599](opencloud-eu/opencloud#2599)]
- add tls support for all nats connections \[[#2063](opencloud-eu/opencloud#2063)]
- feat: add more roles \[[#2928](opencloud-eu/opencloud#2928)]
- next to main \[[#2924](opencloud-eu/opencloud#2924)]
- feat: add core apps env variable to override the default core apps \[[#2930](opencloud-eu/opencloud#2930)]

##### πŸ“¦οΈ Dependencies

- build(deps): bump golang.org/x/image from 0.43.0 to 0.44.0 \[[#3112](opencloud-eu/opencloud#3112)]
- build(deps): bump golang.org/x/text from 0.39.0 to 0.40.0 \[[#3101](opencloud-eu/opencloud#3101)]
- \[full-ci] chore: bump web to v7.2.0 \[[#3121](opencloud-eu/opencloud#3121)]
- build(deps): bump golang.org/x/term from 0.44.0 to 0.45.0 \[[#3103](opencloud-eu/opencloud#3103)]
- build(deps): bump github.com/coreos/go-oidc/v3 from 3.19.0 to 3.20.0 \[[#3102](opencloud-eu/opencloud#3102)]
- build(deps): bump golang.org/x/text from 0.38.0 to 0.39.0 \[[#3085](opencloud-eu/opencloud#3085)]
- build(deps): bump github.com/go-chi/chi/v5 from 5.3.0 to 5.3.1 \[[#3073](opencloud-eu/opencloud#3073)]
- build(deps): bump github.com/nats-io/nats-server/v2 from 2.14.2 to 2.14.3 \[[#3063](opencloud-eu/opencloud#3063)]
- build(deps): bump github.com/gookit/config/v2 from 2.2.8 to 2.2.9 \[[#3075](opencloud-eu/opencloud#3075)]
- build(deps): bump github.com/open-policy-agent/opa from 1.18.1 to 1.18.2 \[[#3061](opencloud-eu/opencloud#3061)]
- build(deps): bump github.com/kovidgoyal/imaging from 1.8.21 to 1.8.22 \[[#3060](opencloud-eu/opencloud#3060)]
- build(deps): bump github.com/libregraph/lico from 0.66.0 to 0.67.0 \[[#3028](opencloud-eu/opencloud#3028)]
- chore: bump web to v7.2.0-beta.3 \[[#2953](opencloud-eu/opencloud#2953)]
- chore: bump reva to latest main \[[#2943](opencloud-eu/opencloud#2943)]
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant