Bump the everything group across 1 directory with 4 updates

[dependabot]

Bumps the everything group with 3 updates in the /go/remindabot directory: github.com/IBM/sarama, github.com/segmentio/kafka-go and github.com/tillkuhn/rubin.

Updates github.com/IBM/sarama from 1.46.3 to 1.47.0

Release notes

Sourced from github.com/IBM/sarama's releases.

Version 1.47.0 (2026-02-27)

What's Changed

🎉 New Features / Improvements

• perf(admin): modernize DescribeCluster RPC handling by @​DCjanus in IBM/sarama#3390
• test: expand Java interop tests to cover all compression codecs by @​dnwe in IBM/sarama#3423

🐛 Fixes

• fix(client): add nilguards to updateBroker by @​dnwe in IBM/sarama#3393
• fix(broker): auto-close broken connections by @​DCjanus in IBM/sarama#3412
• fix: set version from IBM/sarama, not main app by @​adamdecaf in IBM/sarama#3415

🔧 Maintenance

• chore: finish up the move to atomic types by @​puellanivis in IBM/sarama#3399
• chore: tear down zk in functional tests by @​edoardocomar in IBM/sarama#3420
• chore: migrate from eapache/go-xerial-snappy to klauspost/compress/sn… by @​edoardocomar in IBM/sarama#3421
• fix(test): resolve FVT issues in Kafka v2.x interop tests by @​edoardocomar in IBM/sarama#3424
• feat: add kafka 4.1.1 constants and use in FVT by @​dnwe in IBM/sarama#3437
• chore: add Kafka 4.0.1 and replace 4.0.0 in FVT by @​edoardocomar in IBM/sarama#3439
• ci(lint): unblock Go 1.26 lint and handle gosec noise by @​DCjanus in IBM/sarama#3454

📦 Dependency updates

• chore(deps): update module golang.org/x/crypto to v0.45.0 [security] → v0.48.0 by @​renovate[bot] in #3383, #3425
• chore(deps): bump golang.org/x/crypto from 0.42.0 to 0.45.0 across /examples (consumergroup, exactly_once, sasl_scram_client, http_server, txn_producer, interceptors) by @​dependabot[bot] in #3382, #3381, #3380, #3379, #3378, #3377
• fix(deps): update module golang.org/x/sync to v0.18.0 by @​renovate[bot] in #3385
• fix(deps): update module golang.org/x/net to v0.49.0 → v0.51.0 by @​renovate[bot] and @​dependabot[bot] in #3426, #3427, #3453
• chore(deps): update golangci/golangci-lint-action action to v9 → v9.2.0 by @​renovate[bot] in #3370, #3400
• chore(deps): update dependency golangci/golangci-lint to v2.6.2 → v2.8.0 by @​renovate[bot] in #3366, #3401
• chore(deps): update docker/bake-action action to v6.10.0 by @​renovate[bot] in #3392
• chore(deps): update docker/setup-buildx-action action to v3.12.0 by @​renovate[bot] in #3416
• chore(deps): bump github.com/klauspost/compress from 1.18.1 to 1.18.4 by @​dependabot[bot] in #3397, #3430, #3442
• chore(deps): bump github.com/pierrec/lz4/v4 from 4.1.22 to 4.1.25 by @​dependabot[bot] in #3411, #3432
• chore(deps): bump the golang-x group across 1 directory with 2 updates by @​dependabot[bot] in #3405
• chore(deps): bump github.com/xdg-go/scram from 1.1.2 to 1.2.0 in /examples/sasl_scram_client by @​dependabot[bot] in #3394
• chore(deps): update dependency dominikh/go-tools to v2026 by @​renovate[bot] in #3446

New Contributors

• @​DCjanus made their first contribution in IBM/sarama#3390
• @​edoardocomar made their first contribution in IBM/sarama#3420
• @​adamdecaf made their first contribution in IBM/sarama#3415

Full Changelog: IBM/sarama@v1.46.3...v1.47.0

Commits

• c6a7ea0 chore(deps): bump github.com/klauspost/compress from 1.18.3 to 1.18.4 (#3442)
• 66eabe8 chore(deps): update dependency dominikh/go-tools to v2026 (#3446)
• e46c213 ci(gosec): suppress G117 and G704 false positives
• 7f0e26c ci(workflows): bump golangci-lint to v2.10.1
• 7a33045 chore(ci): Update registry.access.redhat.com/ubi9/ubi-minimal:9.7 Docker dige...
• 34acfaa chore(ci): bump the actions group with 2 updates (#3450)
• 4df4d82 chore(ci): bump github/codeql-action from 4.31.10 to 4.32.4 (#3451)
• d4862ce chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 in the golang-x grou...
• c1bf7ec chore: add ai-assistance guidelines to CONTRIBUTING.md (#3452)
• 0a3b6e3 chore(ci): Update registry.access.redhat.com/ubi9/ubi-minimal:9.7 Docker dige...
• Additional commits viewable in compare view

Updates github.com/segmentio/kafka-go from 0.4.49 to 0.4.50

Release notes

Sourced from github.com/segmentio/kafka-go's releases.

v0.4.50

What's Changed

• feat: support describegroups v5 by @​petedannemann in segmentio/kafka-go#1421

Full Changelog: segmentio/kafka-go@v0.4.49...v0.4.50

Commits

• 3ce2979 feat: support describegroups v5 (#1421)
• See full diff in compare view

Updates github.com/tillkuhn/rubin from 0.12.1 to 0.13.0

Release notes

Sourced from github.com/tillkuhn/rubin's releases.

v0.13.0

Changelog

• cd3c7e05a1d10153802e35466ec4480d171b20f2 Merge pull request #78 from tillkuhn/dependabot/github_actions/SonarSource/sonarqube-scan-action-7
• bb91e7cc9efea7128e21850f8e0615150fa9ea54 Merge pull request #76 from tillkuhn/dependabot/github_actions/actions/checkout-6
• bdb19d29f4dcad94e38cd30c55add507ebb309c3 Merge pull request #75 from tillkuhn/dependabot/docker/golang-6981837
• e1f5b78aab314f2803bb415638c3c03bff4bd216 Merge pull request #79 from tillkuhn/dependabot/github_actions/actions/cache-5
• d48e2b72f8444f5a3a64a58841e067a2431007d2 Merge pull request #81 from tillkuhn/dependabot/docker/distroless/static-2b7c93f
• f5d290b5f865091de361c6ccd253985c8e3bd595 add verbosity cli flag for polly
• a14632737c3a98b1a5f074492940ac728e0d131c update dependencies
• 668d4e819d3506555d48fd3ad58a5ef59c38a68a Bump distroless/static from e8a4044 to 2b7c93f
• 04289edc675a5627882900ebcf83f4a7a633736a Bump actions/cache from 4 to 5
• 9147834e0202014f9a4ec827b8cefe4b7e95f725 Bump SonarSource/sonarqube-scan-action from 6 to 7
• 4f6751cfe5d5097690fedc06ef698dac42ba1521 Bump actions/checkout from 5 to 6
• 3d36ce3ba39f369af02fef82738fc4332e264d17 Bump golang from 6bac879 to 6981837

Commits

• cd3c7e0 Merge pull request #78 from tillkuhn/dependabot/github_actions/SonarSource/so...
• bb91e7c Merge pull request #76 from tillkuhn/dependabot/github_actions/actions/checko...
• bdb19d2 Merge pull request #75 from tillkuhn/dependabot/docker/golang-6981837
• e1f5b78 Merge pull request #79 from tillkuhn/dependabot/github_actions/actions/cache-5
• d48e2b7 Merge pull request #81 from tillkuhn/dependabot/docker/distroless/static-2b7c93f
• f5d290b add verbosity cli flag for polly
• a146327 update dependencies
• 668d4e8 Bump distroless/static from e8a4044 to 2b7c93f
• 04289ed Bump actions/cache from 4 to 5
• 9147834 Bump SonarSource/sonarqube-scan-action from 6 to 7
• Additional commits viewable in compare view

Updates golang.org/x/text from 0.32.0 to 0.34.0

Commits

• 817fba9 go.mod: update golang.org/x dependencies
• 3264de9 all: clean up old Go hacks
• 74af298 all: fix tags in remaining Unicode tables
• 117e03b all: delete old Unicode tables
• 9463ea4 all: update to Unicode 17
• 7278b25 internal/export/idna: update for post-Unicode 10 idna changes
• f964ad8 internal/export/idna: delete old code
• 678d34e unicode/norm: preserve QC Maybe bit in packed forminfo
• 536231a go.mod: update golang.org/x dependencies
• See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions