Skip to content

chore(deps): Bump com.google.cloud:libraries-bom from 26.74.0 to 26.75.0#1179

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/maven/com.google.cloud-libraries-bom-26.75.0
Open

chore(deps): Bump com.google.cloud:libraries-bom from 26.74.0 to 26.75.0#1179
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/maven/com.google.cloud-libraries-bom-26.75.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 6, 2026

Bumps com.google.cloud:libraries-bom from 26.74.0 to 26.75.0.

Release notes

Sourced from com.google.cloud:libraries-bom's releases.

v26.75.0

GCP Libraries BOM 26.75.0

Upgrade Overview

The libraries-bom and its managed libraries have been upgraded to use Protobuf v4.33.2. All Protobuf gen code included in the managed libraries has been regenerated using protoc v33.2.

✅ Backward Compatibility

The new protobuf-java v4.33.2 runtime is fully backward-compatible with protoc gen code 3.x. You should not experience any incompatibilities from using older gen code with the new runtime. Should you experience compatibility issues, please consult the Known Incompatibilities & Mitigations. If the issue persists, please file a report via the support console or our GitHub repository

⚠️ Advisory: Vulnerability Warnings

After upgrading, you may see a new warning in your logs: Vulnerable protobuf generated type in use. This warning does not mean the Java SDK is vulnerable. It indicates that your application, or one of its other dependencies, is still using gen code < 3.21.7. For a detailed explanation and mitigation steps, please refer to the Java section in the official Protobuf v4.33.0 release notes.

Known Incompatibilities & Mitigations

While rare, the following incompatibilities may occur due to the version update:

1. Runtime Version Mismatch

  • Issue: The minimum required protobuf-java runtime version is now v4.33.2. Starting with the 4.x runtime, validations ensure the runtime version is higher than or equal to the gen code version. Using a lower version of protobuf-java will produce errors below.
  • Symptoms:
    • java.lang.NoClassDefFoundError: com/google/protobuf/RuntimeVersion$RuntimeDomain (when using 3.x versions).
    • com.google.protobuf.RuntimeVersion$ProtobufRuntimeVersionException (when using older 4.x versions).
  • Mitigation: Upgrade the version of protobuf-java to be greater than or equal to v4.33.2.

2. Class Hierarchy Changes (GeneratedMessageV3)

  • Issue: GeneratedMessageV3 is no longer a parent class of gen code.
  • Symptoms: Runtime errors will occur if attempting to cast Proto 4.x gen code to GeneratedMessageV3. For example, DeleteInstanceRequest now extends GeneratedMessage instead of GeneratedMessageV3. You will run into java.lang.ClassCastException when trying to run (GeneratedMessageV3)DeleteInstanceRequest.
  • Mitigation: Migrate usages of GeneratedMessageV3 to its parent interface, Message.

3. Descriptor Syntax APIs

  • Issue: Certain internal methods in Descriptors are no longer available.
  • Symptoms: java.lang.NoSuchMethodError when calling Syntax, getSyntax(), hasOptionalKeyword() or isSynthetic().
  • Mitigation: There are no direct alternative methods; it is suggested to stop using them.

4. Legacy Generated Code (v2.x)

  • Issue: The 4.33.x runtime is incompatible with v2.x gen code.
  • Mitigation: Migrate gen code to at least v3.0.0. Please note that 3.x support will end in March 2027; it is strongly recommended to upgrade gen code to 4.x.

New Addition

  • com.google.cloud:google-cloud-auditmanager:0.1.0

The group ID of the following artifacts is com.google.cloud.

Notable Changes

... (truncated)

Commits
  • e2e00b5 chore: release main (#7371)
  • 73c8ca6 deps: update dependency com.google.cloud:google-cloud-datastore-bom to v2.33....
  • 60506aa deps: update dependency com.google.cloud:google-cloud-nio to v0.128.11 (#7368)
  • e2074d3 build: Remove the explicit override for protobuf 4.x version. Stop releasing ...
  • 8536980 deps: update dependency com.google.cloud:google-cloud-bigtable-bom to v2.72.0...
  • 2ac09cb deps: update dependency com.google.cloud:gapic-libraries-bom to v1.77.0 (#7365)
  • aeb1fc3 deps: update dependency com.google.cloud:google-cloud-nio to v0.129.0-rc1 (#7...
  • 328a60a deps: update dependency com.google.cloud:first-party-dependencies to v3.56.0 ...
  • 771e04e deps: update dependency com.google.cloud:google-cloud-spanner-jdbc to v2.35.2...
  • 02a543e deps: update dependency com.google.cloud:google-cloud-bigquerystorage-bom to ...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): Bump com.google.cloud:libraries-bom from 26.74.0 to 26.75.0
9265a33 
Bumps [com.google.cloud:libraries-bom](https://github.com/googleapis/java-cloud-bom) from 26.74.0 to 26.75.0.
- [Release notes](https://github.com/googleapis/java-cloud-bom/releases)
- [Changelog](https://github.com/googleapis/java-cloud-bom/blob/main/release-please-config.json)
- [Commits](googleapis/java-cloud-bom@v26.74.0...v26.75.0)

---
updated-dependencies:
- dependency-name: com.google.cloud:libraries-bom
  dependency-version: 26.75.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Feb 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants