fix(deps): update module github.com/caddyserver/caddy/v2 to v2.9.1

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/caddyserver/caddy/v2	v2.8.4 -> v2.9.1

---

Release Notes

caddyserver/caddy (github.com/caddyserver/caddy/v2)

v2.9.1

Compare Source

This is a patch release fixing a few issues related to FastCGI, HTTP/3 and unix sockets, log file permissions, repeated TERM signals, and an ARI edge case. It also adds Caddyfile support for response matching in the header directive.

Thanks to everyone who reported bugs and helped with fixes!

Changelog

• 34cff4a core: Only initiate exit once (should fix #​6707)
• 50778b5 fix: disable h3 for unix domain socket (#​6769)
• 0e570e0 go.mod: Upgrade CertMagic to 0.21.6 (fix ARI handshake maintenance)
• e48b758 header: match subdirective for response matching (#​6765)
• 1f927d6 log: Only chmod if permission bits differ; make log dir (#​6761)
• 1bd567d reverseproxy: buffer requests for fastcgi by default (#​6759)

What's Changed

• reverse proxy: fastcgi buffer requests for fastcgi by default by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6759
• fix: disable h3 for unix domain socket by @​Geun-Oh in https://github.com/caddyserver/caddy/pull/6769
• log: Only chmod if permission bits differ by @​mholt in https://github.com/caddyserver/caddy/pull/6761
• header: match subdirective for response matching by @​lilnasy in https://github.com/caddyserver/caddy/pull/6765

New Contributors

• @​Geun-Oh made their first contribution in https://github.com/caddyserver/caddy/pull/6769
• @​lilnasy made their first contribution in https://github.com/caddyserver/caddy/pull/6765

Full Changelog: caddyserver/caddy@v2.9.0...v2.9.1

v2.9.0

Compare Source

Happy New Year! We're pleased to release Caddy 2.9. Aside from some minor new features, this release is mainly focused on refinements and bug fixes in many areas, including:

• Config loading
• Events
• Logging
• Placeholders
• Reverse proxy and HTTP server performance
• Matchers
• HTTP (esp. HTTP/3)
• Metrics (per-host metrics)
• Security
• TLS automation & ACME ARI

We realize there is extensive interest in Encrypted Client Hello (ECH) and post-quantum ciphers. These are slated to be supported in Go 1.24, which is scheduled for a stable release in approximately February. We did not want to force users to go through the inconvenience of installing pre-release, non-stock installations of Go, even though the RCs are quite stable and production-ready, in order to even compile Caddy, which is quite common given our plugin ecosystem. We anticipate a Caddy 2.10 release in the near future with these capabilities, built on Go 1.24.

We hope you will enjoy the 2.9 release. Thanks to all contributors, bug reporters, and helpers, and those organizations which deployed pre-release versions to production to help verify patches and features.

Changelog

• ef4e022 caddyfile: Fix comma edgecase in address parsing (#​6616)
• b116dce caddyhttp: Add {?query} placeholder (#​6714)
• c216cf5 caddyhttp: Allow matching Transfer-Encoding, add to access logs (#​6629)
• 197c564 caddyhttp: Set default ReadHeaderTimeout (1 min)
• 09b2cbc caddyhttp: Add MatchWithError to replace SetVar hack (#​6596)
• c6f2979 caddyhttp: Close http3 server gracefully (#​6213)
• 88fd5f3 caddyhttp: Use internal issuer for IPs when no APs configured
• 5c8dc34 caddytls: Allow disabling storage cleaning, avoids writing two files (#​6593)
• d7564d6 caddytls: Drop rate_limit and burst, has been deprecated (#​6611)
• d398898 cmd: Allow add-package to select version of package (#​6665)
• 66c80ca cmd: Disable go1.23 tlskyber=1 experiment
• fb72793 cmd: Reject multiple configs for fmt command (#​6717)
• b3ce260 cmd: ignore missing keys during storage export (#​6697)
• 0182fb8 core: addresses.go funcs renames (#​6622)
• e76405d core: Change ListenerFunc signature (#​6651)
• 315715e core: Implement FastAbs to avoid repeated os.Getwd calls (#​6687)
• d0e209e encode: good defaults (#​6737)
• 5ba1e06 encode: try to use sendfile when compression is not used (#​6749)
• bcaa8aa encode: write status immediate for success response for CONNECT requests (#​6738)
• 1d15652 events: Use WithLazy to prevent eager serialization of the event data (#​6671)
• 6790c0e fastcgi: check for CONTENT_LENGTH when sending requests (#​6661)
• eddbccd fastcgi: remove dir redirection when useless in php_fastcgi (#​6698)
• efd9251 fileserver: Add first_exist_fallback strategy for try_files (#​6699)
• d0123bd fileserver: Fix policy Validate() oversight (#​6727)
• 290cfea fileserver: add a test for precompressed defaults (#​6743)
• 5c2617e fileserver: good default for precompressed (#​6736)
• cc23ad6 fileserver: Add file_limit option for browse (to be experimental) (#​6648)
• 350ad38 fileserver: Fix Caddyfile parsing
• 9753c44 fileserver: fix try_policy when instantiating file matcher from CEL (#​6624)
• 05cfb12 forwardauth: Skip copying missing response headers (#​6608)
• ed1c594 go.mod: Upgrade ACMEz to v3; and upgrade CertMagic
• 3f3f8b3 go.mod: Upgrade CertMagic to v0.21.5
• 91e3413 go.mod: upgrade only some otel deps (#​6676)
• 22b9d51 go.mod: Upgrade quic-go to 0.48.2
• b129ed6 httpcaddyfile: Fixes for prefer_wildcard mode (#​6636)
• afa778a httpcaddyfile: Implement experimental force_automate option (#​6712)
• b183aec httpcaddyfile: Implement log sampling config (#​6682)
• 1d106fa metrics: add go and process collectors (#​6704)
• 388c7e8 metrics: move metrics up, outside servers (#​6606)
• 8c3dd3d requestbody: Type-based error handling for MaxBytesError (#​6701)
• 5e6024c reverseproxy: Fix log message
• 48ce47f reverseproxy: Use correct cases for websocket related headers (#​6621)
• 825fe48 reverseproxy: Allow 0 as weights for weighted_round_robin (#​6681)
• 328fb61 reverseproxy: Only handle websocket protocol (#​6740)
• 238f110 reverseproxy: Revert #​4952 - don't ignore context cancellation in stream mode
• 9c0c71e reverseproxy: Rewrite requests and responses for websocket over http2 (#​6567)
• c864b82 reverseproxy: Set Content-Length when body is fully buffered (#​6638)
• fbf0f4c reverseproxy: Sync changes from stdlib for 1xx handling (#​6656)
• 5823ecc rewrite: Don't add / in Caddyfile, do it after replacer (#​6662)
• b443190 sigtrap: always ignore SIGPIPE (#​6645)
• f2c17d1 testing: sort force-automated hosts (#​6756)
• 669fc41 tracing: Add spanID field to access logs and http.vars.span_id placeholder (#​6646)

What's Changed

• Make it possible to configure the DisableStorageCheck setting for certmagic by @​ankon in https://github.com/caddyserver/caddy/pull/6368
• caddyhttp: Add test case to corpus by @​mholt in https://github.com/caddyserver/caddy/pull/6374
• cmd: remove zealous check of Caddyfile auto-detection by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6370
• ci: upgrade to goreleaser v2 by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6376
• logging: Allow setting log file permissions by @​ririsoft in https://github.com/caddyserver/caddy/pull/6314
• Split run into a public BuildContext and a private part by @​ankon in https://github.com/caddyserver/caddy/pull/6378
• Write the header if none had been written in WriteResponse by @​ankon in https://github.com/caddyserver/caddy/pull/6380
• fix file mode configuration parsing by @​ririsoft in https://github.com/caddyserver/caddy/pull/6383
• go.mod: update tscert package by @​willnorris in https://github.com/caddyserver/caddy/pull/6384
• logging: Customizable zapcore.Core by @​kkroo in https://github.com/caddyserver/caddy/pull/6381
• logging: set file mode when the file already exist. by @​ririsoft in https://github.com/caddyserver/caddy/pull/6391
• caddyfile: Pass blocks to import for snippets by @​elee1766 in https://github.com/caddyserver/caddy/pull/6130
• reverseproxy: add Max-Age option to sticky cookie by @​JasonYuan869 in https://github.com/caddyserver/caddy/pull/6398
• fileserver: Remove newline characters from precomputed etags by @​armadi1809 in https://github.com/caddyserver/caddy/pull/6394
• fix: http.intercept.header.* placeholders by @​dunglas in https://github.com/caddyserver/caddy/pull/6429
• reverseproxy: Only log host is up status on change by @​klaxa in https://github.com/caddyserver/caddy/pull/6419
• fix: don't compress already compressed fonts by @​dunglas in https://github.com/caddyserver/caddy/pull/6432
• caddyhttp: Reject 0-RTT early data in IP matchers and set Early-Data header when proxying by @​mholt in https://github.com/caddyserver/caddy/pull/6427
• reverseproxy: Add placeholder for host in active health check headers by @​francislavoie in https://github.com/caddyserver/caddy/pull/6440
• browse: add Content-Security-Policy w/ nonce by @​steffenbusch in https://github.com/caddyserver/caddy/pull/6425
• browse: fix Content-Security-Policy warnings in Firefox by @​steffenbusch in https://github.com/caddyserver/caddy/pull/6443
• fileserver: Exclude symlink target size from total, show arrow on size by @​francislavoie in https://github.com/caddyserver/caddy/pull/6412
• reverseproxy: Fix dynamic upstreams ip version by @​armadi1809 in https://github.com/caddyserver/caddy/pull/6448
• reverseproxy: Add placeholder for networkAddr in active health check headers by @​dylanschultzie in https://github.com/caddyserver/caddy/pull/6450
• Add option to set which HTTP method to use for active health checks by @​jbro in https://github.com/caddyserver/caddy/pull/6453
• reverseproxy: Caddyfile support for health_method by @​jbro in https://github.com/caddyserver/caddy/pull/6454
• reverseproxy: add health_upstream subdirective by @​dylanschultzie in https://github.com/caddyserver/caddy/pull/6451
• ci: correct -tags nobadger on binary build by @​girlbossceo in https://github.com/caddyserver/caddy/pull/6470
• Caddyfile support for TLS handshake matchers by @​vnxme in https://github.com/caddyserver/caddy/pull/6461
• Caddyfile support for TLS connection and certificate selection policies by @​vnxme in https://github.com/caddyserver/caddy/pull/6462
• chore: update golangci config by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6479
• encode: flush already compressed data to the stream by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6471
• proxyprotocol: Update WrapListener to use ConnPolicyFunc for PROXY protocol by @​pi-prakhar in https://github.com/caddyserver/caddy/pull/6485
• fileserver: add sort options by @​lollipopkit in https://github.com/caddyserver/caddy/pull/6468
• go.mod: update quic-go package by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6498
• Runtime placeholders for selected TLS and HTTP matchers by @​vnxme in https://github.com/caddyserver/caddy/pull/6480
• replacer: {file.*} global placeholder strips trailing newline by @​steffenbusch in https://github.com/caddyserver/caddy/pull/6411
• go.mod: update update golang/x/net by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6500
• reverse_proxy: apply keep-alive setting for h2c requests by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6343
• Fix a regression in #​6480: the context may have no replacer by @​vnxme in https://github.com/caddyserver/caddy/pull/6510
• caddyhttp: Export PrivateRangesCIDR() for plugins after #​6480 by @​vnxme in https://github.com/caddyserver/caddy/pull/6514
• ignore exec.ErrDot when starting caddy in background by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6512
• ci: don't exit early on error in remote CI machine by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6519
• reverseproxy: Active health checks request body option by @​jbro in https://github.com/caddyserver/caddy/pull/6520
• reverseproxy: Change logs for write errors to warn level by @​jum in https://github.com/caddyserver/caddy/pull/6532
• cmd: Use a factory to create the caddy root command by @​elee1766 in https://github.com/caddyserver/caddy/pull/6533
• chore: Fix a typo by @​sunnyagain in https://github.com/caddyserver/caddy/pull/6534
• error: run error (msg) through replacer by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6536
• reverseproxy: allow user to define source address by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6504
• chore: build and test with Go 1.23 by @​dunglas in https://github.com/caddyserver/caddy/pull/6526
• tls: use Go default kex for the moment that include PQC by @​bwesterb in https://github.com/caddyserver/caddy/pull/6542
• ci: prepare syso files for windows embedding in release by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6406
• Performance: Prevents the zap logger from serializing the request in rewrite.go. by @​AlliBalliBaba in https://github.com/caddyserver/caddy/pull/6541
• fileserver: move sort to browse by @​lollipopkit in https://github.com/caddyserver/caddy/pull/6502
• reverse_proxy: add placeholder http.reverse_proxy.retries by @​steffenbusch in https://github.com/caddyserver/caddy/pull/6553
• fix(#​6551): Unexpected behaviour if caddyhttp.Route is provisioned twice by @​jbro in https://github.com/caddyserver/caddy/pull/6558
• caddytls: Add sni_regexp matcher by @​vnxme in https://github.com/caddyserver/caddy/pull/6569
• rewrite: Avoid panic on bad arg count for uri by @​mister-turtle in https://github.com/caddyserver/caddy/pull/6571
• perf: use zap's Check() to prevent useless allocs by @​dunglas in https://github.com/caddyserver/caddy/pull/6560
• ci: update the linter action version by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6575
• update quic-go to v0.47.0 by @​marten-seemann in https://github.com/caddyserver/caddy/pull/6582
• quic: enable qlog, controlled by QLOGDIR env by @​marten-seemann in https://github.com/caddyserver/caddy/pull/6581
• caddytls: Give a better error message when given encrypted private keys by @​francislavoie in https://github.com/caddyserver/caddy/pull/6591
• chore: Use slices package where possible by @​francislavoie in https://github.com/caddyserver/caddy/pull/6585
• caddyhttp: Optimize logs using zap's WithLazy() by @​AlliBalliBaba in https://github.com/caddyserver/caddy/pull/6590
• doc: remove docs of deprecated directives by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6566
• Implement issue #​6296 passing FDs / socket activation by @​MayCXC in https://github.com/caddyserver/caddy/pull/6573
• caddyhttp: Fix listener wrapper regression from #​6573 by @​MayCXC in https://github.com/caddyserver/caddy/pull/6599
• chore: Adjust incorrect reverse_proxy Caddyfile comment by @​francislavoie in https://github.com/caddyserver/caddy/pull/6598
• http: ReponseWriter prefer ReadFrom if available by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6565
• caddytls: Support new tls.context module by @​mholt in https://github.com/caddyserver/caddy/pull/6369
• Better errors when reloading by @​mholt in https://github.com/caddyserver/caddy/pull/6601
• caddyhttp: Escaping placeholders in CEL, add vars and vars_regexp by @​francislavoie in https://github.com/caddyserver/caddy/pull/6594
• autohttps: Implement auto_https prefer_wildcard option by @​francislavoie in https://github.com/caddyserver/caddy/pull/6146
• metrics: scope metrics to active config, add optional per-host metrics by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6531
• ci: install xcaddy to fix release flow by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6602
• caddytls: Drop rate_limit and burst, has been deprecated by @​francislavoie in https://github.com/caddyserver/caddy/pull/6611
• tests: Fix adapt test warning by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6619
• docs: expand proxy protocol docs by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6620
• caddyfile: Fix comma edgecase in address parsing by @​francislavoie in https://github.com/caddyserver/caddy/pull/6616
• reverseproxy: Use correct cases for websocket related headers by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6621
• chore: update quic-go to v0.48.0 by @​marten-seemann in https://github.com/caddyserver/caddy/pull/6627
• caddyhttp: Close http3 server gracefully by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6213
• metrics: move metrics up, outside servers by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6606
• fix: always ignore SIGPIPE by @​dunglas in https://github.com/caddyserver/caddy/pull/6645
• fileserver: fix try_policy when instantiating file matcher from CEL by @​effleurager in https://github.com/caddyserver/caddy/pull/6624
• chore: fix some function names in comment by @​davidwoood in https://github.com/caddyserver/caddy/pull/6650
• core: addresses.go funcs renames by @​MayCXC in https://github.com/caddyserver/caddy/pull/6622
• tracing: Add spanID field to access logs and http.vars.span_id placeholder by @​YifanYang6 in https://github.com/caddyserver/caddy/pull/6646
• reverseproxy: Sync changes from stdlib for 1xx handling by @​francislavoie in https://github.com/caddyserver/caddy/pull/6656
• chore: Bump quic-go to 0.48.1, fixing a panic by @​francislavoie in https://github.com/caddyserver/caddy/pull/6654
• chore: compile without nosql's support for Postgres and MySQL by @​dunglas in https://github.com/caddyserver/caddy/pull/6655
• cmd: Allow add-package to select version of package by @​Botelho31 in https://github.com/caddyserver/caddy/pull/6665
• httpcaddyfile: Fixes for prefer_wildcard mode by @​francislavoie in https://github.com/caddyserver/caddy/pull/6636
• Use WithLazy to prevent eager serialization of the event data by @​ankon in https://github.com/caddyserver/caddy/pull/6671
• forwardauth: Skip copying missing response headers by @​francislavoie in https://github.com/caddyserver/caddy/pull/6608
• caddyhttp: Add MatchWithError to replace SetVar hack by @​francislavoie in https://github.com/caddyserver/caddy/pull/6596
• go.mod: upgrade only some otel deps by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6676
• fileserver: Add file_limit option for browse by @​atakanyenel in https://github.com/caddyserver/caddy/pull/6648
• rewrite: Don't add / in Caddyfile, do it after replacer by @​francislavoie in https://github.com/caddyserver/caddy/pull/6662
• caddytls: Allow disabling storage cleaning, avoids writing two files by @​francislavoie in https://github.com/caddyserver/caddy/pull/6593
• ci: use commit sha in goreleaser-check by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6677
• reverseproxy: Allow 0 as weights for weighted_round_robin by @​suciptoid in https://github.com/caddyserver/caddy/pull/6681
• httpcaddyfile: Implement log sampling config by @​nikonhub in https://github.com/caddyserver/caddy/pull/6682
• core: Implement FastAbs to avoid repeated os.Getwd calls by @​francislavoie in https://github.com/caddyserver/caddy/pull/6687
• chore: Add provides to .deb releases by @​francislavoie in https://github.com/caddyserver/caddy/pull/6691
• chore: make FastAbs comment easier to understand by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6692
• cmd: ignore missing keys during storage export by @​santhoshTpixler in https://github.com/caddyserver/caddy/pull/6697
• perf: remove dir redirection when useless in php_fastcgi by @​dunglas in https://github.com/caddyserver/caddy/pull/6698
• requestbody: Type-based error handling for MaxBytesError by @​rishitashaw in https://github.com/caddyserver/caddy/pull/6701
• metrics: add go and process collectors by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6704
• ci: prevent jobs running on PRs from forks by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6720
• caddyhttp: Add {?query} placeholder by @​francislavoie in https://github.com/caddyserver/caddy/pull/6714
• fileserver: Add first_exist_fallback strategy for try_files by @​dunglas in https://github.com/caddyserver/caddy/pull/6699
• cmd: fmt prevents multiple files passed as args, add support for --config by @​armadi1809 in https://github.com/caddyserver/caddy/pull/6717
• fileserver: Fix policy Validate() oversight by @​francislavoie in https://github.com/caddyserver/caddy/pull/6727
• chore: bump golang.org/x/net to v0.32.0 by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6728
• reverseproxy: Rewrite requests and responses for websocket over http2 by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6567
• chore: fix some typo in HTTPLoader comment by @​jpadilla in https://github.com/caddyserver/caddy/pull/6735
• feat: good default for file_server.precompressed by @​dunglas in https://github.com/caddyserver/caddy/pull/6736
• test: add a test for precompressed defaults by @​dunglas in https://github.com/caddyserver/caddy/pull/6743
• feat: good default for encode by @​dunglas in https://github.com/caddyserver/caddy/pull/6737
• encode: write status immediate for success response for CONNECT requests by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6738
• reverseproxy: Only handle extended connect for websockets by @​bt90 in https://github.com/caddyserver/caddy/pull/6740
• core: Change getListenerFromPlugin signature by @​MayCXC in https://github.com/caddyserver/caddy/pull/6651
• reverseproxy: Set Content-Length when body is fully buffered by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6638
• fastcgi: check for CONTENT_LENGTH when sending requests by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6661
• caddyhttp: Allow matching Transfer-Encoding, add to access logs by @​francislavoie in https://github.com/caddyserver/caddy/pull/6629
• encode: try to use sendfile when compression is not used by @​WeidiDeng in https://github.com/caddyserver/caddy/pull/6749
• httpcaddyfile: Implement force_automate by @​francislavoie in https://github.com/caddyserver/caddy/pull/6712
• testing: sort force-automated hosts by @​mohammed90 in https://github.com/caddyserver/caddy/pull/6756

New Contributors

• @​ririsoft made their first contribution in https://github.com/caddyserver/caddy/pull/6314
• @​JasonYuan869 made their first contribution in https://github.com/caddyserver/caddy/pull/6398
• @​klaxa made their first contribution in https://github.com/caddyserver/caddy/pull/6419
• @​dylanschultzie made their first contribution in https://github.com/caddyserver/caddy/pull/6450
• @​jbro made their first contribution in https://github.com/caddyserver/caddy/pull/6453
• @​girlbossceo made their first contribution in https://github.com/caddyserver/caddy/pull/6470
• @​vnxme made their first contribution in https://github.com/caddyserver/caddy/pull/6461
• @​pi-prakhar made their first contribution in https://github.com/caddyserver/caddy/pull/6485
• @​lollipopkit made their first contribution in https://github.com/caddyserver/caddy/pull/6468
• @​sunnyagain made their first contribution in https://github.com/caddyserver/caddy/pull/6534
• @​AlliBalliBaba made their first contribution in https://github.com/caddyserver/caddy/pull/6541
• @​mister-turtle made their first contribution in https://github.com/caddyserver/caddy/pull/6571
• @​MayCXC made their first contribution in https://github.com/caddyserver/caddy/pull/6573
• @​effleurager made their first contribution in https://github.com/caddyserver/caddy/pull/6624
• @​davidwoood made their first contribution in https://github.com/caddyserver/caddy/pull/6650
• @​YifanYang6 made their first contribution in https://github.com/caddyserver/caddy/pull/6646
• @​Botelho31 made their first contribution in https://github.com/caddyserver/caddy/pull/6665
• @​atakanyenel made their first contribution in https://github.com/caddyserver/caddy/pull/6648
• @​suciptoid made their first contribution in https://github.com/caddyserver/caddy/pull/6681
• @​nikonhub made their first contribution in https://github.com/caddyserver/caddy/pull/6682
• @​santhoshTpixler made their first contribution in https://github.com/caddyserver/caddy/pull/6697
• @​rishitashaw made their first contribution in https://github.com/caddyserver/caddy/pull/6701
• @​jpadilla made their first contribution in https://github.com/caddyserver/caddy/pull/6735

Full Changelog: caddyserver/caddy@v2.8.4...v2.9.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 40 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.22.0 -> 1.22.10
github.com/BurntSushi/toml	v1.3.2 -> v1.4.0
github.com/Masterminds/semver/v3	v3.2.0 -> v3.3.0
github.com/Masterminds/sprig/v3	v3.2.3 -> v3.3.0
github.com/alecthomas/chroma/v2	v2.13.0 -> v2.14.0
github.com/caddyserver/certmagic	v0.21.3 -> v0.21.6
github.com/cenkalti/backoff/v4	v4.2.1 -> v4.3.0
github.com/cespare/xxhash/v2	v2.2.0 -> v2.3.0
github.com/cpuguy83/go-md2man/v2	v2.0.3 -> v2.0.4
github.com/go-logr/logr	v1.4.1 -> v1.4.2
github.com/golang/glog	v1.2.0 -> v1.2.2
github.com/google/cel-go	v0.20.1 -> v0.21.0
github.com/grpc-ecosystem/grpc-gateway/v2	v2.18.0 -> v2.22.0
github.com/huandu/xstrings	v1.3.3 -> v1.5.0
github.com/klauspost/compress	v1.17.8 -> v1.17.11
github.com/klauspost/cpuid/v2	v2.2.7 -> v2.2.9
github.com/miekg/dns	v1.1.59 -> v1.1.62
github.com/pires/go-proxyproto	v0.7.0 -> v0.7.1-0.20240628150027-b718e7ce4964
github.com/quic-go/qpack	v0.4.0 -> v0.5.1
github.com/quic-go/quic-go	v0.44.0 -> v0.48.2
github.com/shopspring/decimal	v1.2.0 -> v1.4.0
github.com/spf13/cast	v1.4.1 -> v1.7.0
github.com/spf13/cobra	v1.8.0 -> v1.8.1
github.com/tailscale/tscert	v0.0.0-20240517230440-bbccfbf48933 -> v0.0.0-20240608151842-d3f834017e53
github.com/yuin/goldmark	v1.7.1 -> v1.7.8
github.com/zeebo/blake3	v0.2.3 -> v0.2.4
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	v0.49.0 -> v0.56.0
go.opentelemetry.io/otel	v1.24.0 -> v1.31.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace	v1.21.0 -> v1.31.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc	v1.21.0 -> v1.31.0
go.opentelemetry.io/otel/metric	v1.24.0 -> v1.31.0
go.opentelemetry.io/otel/sdk	v1.21.0 -> v1.31.0
go.opentelemetry.io/otel/trace	v1.24.0 -> v1.31.0
go.opentelemetry.io/proto/otlp	v1.0.0 -> v1.3.1
go.uber.org/automaxprocs	v1.5.3 -> v1.6.0
go.uber.org/zap/exp	v0.2.0 -> v0.3.0
golang.org/x/crypto/x509roots/fallback	v0.0.0-20240507223354-67b13616a595 -> v0.0.0-20241104001025-71ed71b4faf9
golang.org/x/time	v0.5.0 -> v0.7.0
google.golang.org/genproto/googleapis/api	v0.0.0-20240506185236-b8a5c65736ae -> v0.0.0-20241007155032-5fefd90f89a9
google.golang.org/genproto/googleapis/rpc	v0.0.0-20240429193739-8cf5692501f6 -> v0.0.0-20241007155032-5fefd90f89a9
google.golang.org/grpc	v1.63.2 -> v1.67.1

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.