Bump the dependencies group across 1 directory with 3 updates

[dependabot]

Bumps the dependencies group with 3 updates in the / directory: github.com/pressly/goose/v3, github.com/prysmaticlabs/prysm/v5 and golang.org/x/time.

Updates github.com/pressly/goose/v3 from 3.23.1 to 3.24.0

Release notes

Sourced from github.com/pressly/goose/v3's releases.

v3.24.0

What's Changed

• Add support for loading environment variables from .env files, enabled by default. by @​rwwwx in pressly/goose#864
  • The default file name is .env, but can be changed with the -env=<filename> flag.
  • To disable this feature, set -env=none.
• fix: CVE-2024-45338 in golang.org/x/net bump to v0.33.0 by @​k2589 in pressly/goose#880

New Contributors

• @​rwwwx made their first contribution in pressly/goose#864

Full Changelog: pressly/goose@v3.23.1...v3.24.0

Changelog

Sourced from github.com/pressly/goose/v3's changelog.

[v3.24.0]

• Add support for loading environment variables from .env files, enabled by default.
  • The default file name is .env, but can be changed with the -env=<filename> flag.
  • To disable this feature, set -env=none.

Commits

• bfb3550 Release v3.24.0
• 125950c fix: CVE-2024-45338 in golang.org/x/net bump to v0.33.0 (#880)
• ca6f0b8 build(deps): bump the gomod group across 1 directory with 4 updates (#876)
• 483081e feat: add -env flag and allow disabling with "none"
• a47577b feat: load environment variables from .env file (#864)
• 28642f8 chore: bump changelog
• 63b735e build: upgrade deps in testing module
• See full diff in compare view

Updates github.com/prysmaticlabs/prysm/v5 from 5.1.2 to 5.2.0

Release notes

Sourced from github.com/prysmaticlabs/prysm/v5's releases.

v5.2.0

v5.2.0

[!IMPORTANT] This release is mandatory for all validator clients using mev-boost with a gas limit increase. Without upgrading to this release, validator clients will default to using local execution blocks when the gas limit starts to increase.

Updating to this release is highly recommended, especially for users running v5.1.1 or v5.1.2.

This release has several fixes and new features. In this release, we have enabled QUIC protocol by default, which uses port 13000 for --p2p-quic-port. This may be a breaking change if you're using port 13000 already. This release has some improvements for raising the gas limit, but there are known issues with the proposer settings file provided gas limit not being respected for mev-boost outsourced blocks. Signalling an increase for the gas limit works perfectly for local block production as of this release. See pumpthegas.org for more info on raising the gas limit on L1.

Notable features:

• Prysm can reuse blobs from the EL via engine_getBlobsV1, potentially saving bandwidth.
• QUIC is enabled by default. This is a UDP based networking protocol with default port 13000.

Added

• Electra EIP6110: Queue deposit pr.
• Add Bellatrix tests for light client functions.
• Add Discovery Rebooter Feature.
• Added GetBlockAttestationsV2 endpoint.
• Light client support: Consensus types for Electra.
• Added SubmitPoolAttesterSlashingV2 endpoint.
• Added SubmitAggregateAndProofsRequestV2 endpoint.
• Updated the beacon-chain/monitor package to Electra. PR
• Added ListAttestationsV2 endpoint.
• Add ability to rollback node's internal state during processing.
• Change how unsafe protobuf state is created to prevent unnecessary copies.
• Added benchmarks for process slots for Capella, Deneb, Electra.
• Add helper to cast bytes to string without allocating memory.
• Added GetAggregatedAttestationV2 endpoint.
• Added SubmitAttestationsV2 endpoint.
• Validator REST mode Electra block support.
• Added validator index label to validator_statuses metric.
• Added Validator REST mode use of Attestation V2 endpoints and Electra attestations.
• PeerDAS: Added proto for DataColumnIdentifier, DataColumnSidecar, DataColumnSidecarsByRangeRequest and MetadataV2.
• Better attestation packing for Electra. PR
• P2P: Add logs when a peer is (dis)connected. Add the reason of the disconnection when we initiate it.
• Added a Prometheus error counter metric for HTTP requests to track beacon node requests.
• Added a Prometheus error counter metric for SSE requests.
• Save light client updates and bootstraps in DB.
• Added more comprehensive tests for BlockToLightClientHeader. PR

Changed

• Electra EIP6110: Queue deposit requests changes from consensus spec pr #3818
• reversed the boolean return on BatchVerifyDepositsSignatures, from need verification, to all keys successfully verified
• Fix engine_exchangeCapabilities implementation.
• Updated the default scrape-interval in Client-stats to 2 minutes to accommodate Beaconcha.in API rate limits.

... (truncated)

Changelog

Sourced from github.com/prysmaticlabs/prysm/v5's changelog.

v5.2.0

Updating to this release is highly recommended, especially for users running v5.1.1 or v5.1.2. This release is mandatory for all validator clients using mev-boost with a gas limit increase. Without upgrading to this release, validator clients will default to using local execution blocks when the gas limit starts to increase.

This release has several fixes and new features. In this release, we have enabled QUIC protocol by default, which uses port 13000 for --p2p-quic-port. This may be a breaking change if you're using port 13000 already. This release has some improvements for raising the gas limit, but there are known issues with the proposer settings file provided gas limit not being respected for mev-boost outsourced blocks. Signalling an increase for the gas limit works perfectly for local block production as of this release. See pumpthegas.org for more info on raising the gas limit on L1.

Notable features:

• Prysm can reuse blobs from the EL via engine_getBlobsV1, potentially saving bandwidth.
• QUIC is enabled by default. This is a UDP based networking protocol with default port 13000.

Added

• Electra EIP6110: Queue deposit pr.
• Add Bellatrix tests for light client functions.
• Add Discovery Rebooter Feature.
• Added GetBlockAttestationsV2 endpoint.
• Light client support: Consensus types for Electra.
• Added SubmitPoolAttesterSlashingV2 endpoint.
• Added SubmitAggregateAndProofsRequestV2 endpoint.
• Updated the beacon-chain/monitor package to Electra. PR
• Added ListAttestationsV2 endpoint.
• Add ability to rollback node's internal state during processing.
• Change how unsafe protobuf state is created to prevent unnecessary copies.
• Added benchmarks for process slots for Capella, Deneb, Electra.
• Add helper to cast bytes to string without allocating memory.
• Added GetAggregatedAttestationV2 endpoint.
• Added SubmitAttestationsV2 endpoint.
• Validator REST mode Electra block support.
• Added validator index label to validator_statuses metric.
• Added Validator REST mode use of Attestation V2 endpoints and Electra attestations.
• PeerDAS: Added proto for DataColumnIdentifier, DataColumnSidecar, DataColumnSidecarsByRangeRequest and MetadataV2.
• Better attestation packing for Electra. PR
• P2P: Add logs when a peer is (dis)connected. Add the reason of the disconnection when we initiate it.
• Added a Prometheus error counter metric for HTTP requests to track beacon node requests.
• Added a Prometheus error counter metric for SSE requests.
• Save light client updates and bootstraps in DB.
• Added more comprehensive tests for BlockToLightClientHeader. PR
• Added light client feature flag check to RPC handlers. PR
• Light client: Add better error handling. PR

Changed

... (truncated)

Commits

• ac1717f Revert "Change Max Payload Size (#14692)" (#14716)
• 6e6012b Bugfix: Apply eip7549 to slashing pool (#14691)
• 008f157 Update Quic-go to the latest version (#14710)
• 7afb8c3 move light client rpc helpers tests to core (#14695)
• e925d35 Fix proposer boost test (#14701)
• 1f2d8cf searchForPeers: Replace batchSize by batchPeriod. (#14704)
• 63bc965 Revert "Proposer checks gas limit before accepting builder's bid" (#14706)
• a0791d7 fix segmentation fault in E2E when light-client feature flag is enabled (#14699)
• 0d810a1 startDB: Add log when checkpoint sync. (#14690)
• 92bbf63 Check kzg commitment for beacon-api propose block (#14702)
• Additional commits viewable in compare view

Updates golang.org/x/time from 0.8.0 to 0.9.0

Commits

• 1ce61fe rate: make function comment match function name
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions