Skip to content

npm: bump @bufbuild/buf from 1.45.0 to 1.69.0#88

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/main/bufbuild/buf-1.69.0
Open

npm: bump @bufbuild/buf from 1.45.0 to 1.69.0#88
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/main/bufbuild/buf-1.69.0

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Bumps @bufbuild/buf from 1.45.0 to 1.69.0.

Release notes

Sourced from @​bufbuild/buf's releases.

v1.69.0

  • Increase check plugin WASM memory limits to 1GiB.
  • Fix LSP stale diagnostics persisting after a file is closed or deleted.
  • Fix handling of unprefixed newlines in block comments.
  • Add LSP code lenses for buf.gen.yaml files: "Run buf generate" and "Check for plugin updates".
  • Add LSP warnings for lint.ignore and breaking.ignore paths in buf.yaml that do not match any file in the workspace.

v1.68.4

  • Fix duplicated extension tags across imports from compiler.

v1.68.3

  • Fix buf format error handling for edition 2024.

v1.68.2

  • Fix build failures for modules with a vendored descriptor.proto.
  • Fix LSP incorrectly reporting "edition '2024' not yet fully supported" errors.
  • Fix CEL compilation error messages in buf lint to use the structured error API instead of parsing cel-go's text output.
  • Add --debug-address flag to buf lsp serve to provide debug and profile support.

v1.68.1

  • Revert the use of the new compiler report format and properly ungate Editions 2024 features.
  • Fix absolute imports (leading-dot) marked unused in diagnostics.

v1.68.0

This release ports buf to our new Protobuf compiler, already used to power the Buf LSP. It uses a query-driven frontend and a new AST and intermediate representation, designed from the ground up to bring several improvements:

  • Better diagnostics. The new compiler produces rich, structured diagnostic reports with precise source locations. It also catches issues that protoc misses, such as duplicate repeated modifiers.
  • Editions 2024 support. Full support for Protobuf Editions 2024.
  • Faster and more memory efficient. Designed for large workspaces, the new compiler uses less memory and compiles faster than the previous implementation.

This is a seamless upgrade for buf users: no changes are required, the output has been automatically updated to a new, richer diagnostics report.

  • Use new compiler for build process and support Editions 2024 features.
  • Add LSP document links for buf.yaml deps, buf.gen.yaml remote plugins and input modules, buf.policy.yaml name and BSR plugins, and buf.lock dep names, making each a clickable link to its BSR page.
  • Add LSP code lenses for buf.yaml files to update all dependencies (buf.dep.updateAll) or check for available updates (buf.dep.checkUpdates).
  • Improve shell completions for buf flags with fixed value sets and file/directory arguments.
  • Add buf curl URL path shell completions (service and method names) via server reflection, --schema, or the local buf module.
  • Add support for Edition 2024 syntax to buf format.
  • Fix buf generate --clean deleting files from nested plugin output directories.

v1.67.0

  • Fix LSP not skipping buf.build/docs links for lint rules from check plugins and policies.
  • Fix buf dep graph --format json silently dropping dependencies when a dependency was already seen.
  • Add support for --rbs_out as a protoc_builtin plugin (requires protoc v34.0+).
  • Add relevant links from CEL LSP hover documentation to either <celbyexample.com> or <protovalidate.com>
  • Add OpenBSD and FreeBSD release binaries for amd64 and arm64.
  • Skip writing unchanged output files in buf generate to preserve modification times

... (truncated)

Changelog

Sourced from @​bufbuild/buf's changelog.

[v1.69.0] - 2026-04-29

  • Increase check plugin WASM memory limits to 1GiB.
  • Fix LSP stale diagnostics persisting after a file is closed or deleted.
  • Fix handling of unprefixed newlines in block comments.
  • Add LSP code lenses for buf.gen.yaml files: "Run buf generate" and "Check for plugin updates".
  • Add LSP warnings for lint.ignore and breaking.ignore paths in buf.yaml that do not match any file in the workspace.

[v1.68.4] - 2026-04-22

  • Fix duplicated extension tags across imports from compiler.

[v1.68.3] - 2026-04-20

  • Fix buf format error handling for edition 2024.

[v1.68.2] - 2026-04-17

  • Fix build failures for modules with a vendored descriptor.proto.
  • Fix LSP incorrectly reporting "edition '2024' not yet fully supported" errors.
  • Fix CEL compilation error messages in buf lint to use the structured error API instead of parsing cel-go's text output.
  • Add --debug-address flag to buf lsp serve to provide debug and profile support.

[v1.68.1] - 2026-04-14

  • Revert the use of the new compiler report format and properly ungate Editions 2024 features.
  • Fix absolute imports (leading-dot) marked unused in diagnostics.

[v1.68.0] - 2026-04-14

  • Use new compiler for build process and support Editions 2024 features.
  • Add LSP document links for buf.yaml deps, buf.gen.yaml remote plugins and input modules, buf.policy.yaml name and BSR plugins, and buf.lock dep names, making each a clickable link to its BSR page.
  • Add LSP code lenses for buf.yaml files to update all dependencies (buf.dep.updateAll) or check for available updates (buf.dep.checkUpdates).
  • Improve shell completions for buf flags with fixed value sets and file/directory arguments.
  • Add buf curl URL path shell completions (service and method names) via server reflection, --schema, or the local buf module.
  • Add support for Edition 2024 syntax to buf format.
  • Fix buf generate --clean deleting files from nested plugin output directories.

[v1.67.0] - 2026-04-01

  • Fix LSP not skipping buf.build/docs links for lint rules from check plugins and policies.
  • Fix buf dep graph --format json silently dropping dependencies when a dependency was already seen.
  • Add support for --rbs_out as a protoc_builtin plugin (requires protoc v34.0+).
  • Add relevant links from CEL LSP hover documentation to either <celbyexample.com> or <protovalidate.com>
  • Add OpenBSD and FreeBSD release binaries for amd64 and arm64.
  • Skip writing unchanged output files in buf generate to preserve modification times
  • Update buf beta registry plugin delete to prompt the user for deletion, matching the UX of the other deletion commands. Use --force to restore the old behavior.

... (truncated)

Commits
  • 88829eb Release v1.69.0 (#4521)
  • 4a92ff3 Upgrade protocompile to latest main (#4520)
  • 04ed9c9 Add YAML files to license header generation (#4518)
  • ddb8521 Upgrade protocompile to latest main (#4519)
  • 7e1e277 Propagate DuplicateProtoPathError as typed error from new compiler path (#4517)
  • f781a0e Reduce allocations in shake256.NewDigestForContent (#4505)
  • 5f4233e Add concurrency checks for CI workflows (#4516)
  • b10141d Add LSP code lenses for buf generate and checking for plugin updates (#4480)
  • 637ea97 Upgrade protocompile and update changelog (#4515)
  • d960fc0 Add LSP warning diagnostics for invalid buf.yaml ignore paths (#4498)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​bufbuild/buf since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
npm: bump @bufbuild/buf from 1.45.0 to 1.69.0
fa570c8 
Bumps [@bufbuild/buf](https://github.com/bufbuild/buf) from 1.45.0 to 1.69.0.
- [Release notes](https://github.com/bufbuild/buf/releases)
- [Changelog](https://github.com/bufbuild/buf/blob/main/CHANGELOG.md)
- [Commits](bufbuild/buf@v1.45.0...v1.69.0)

---
updated-dependencies:
- dependency-name: "@bufbuild/buf"
  dependency-version: 1.69.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 4, 2026
@dependabot dependabot Bot mentioned this pull request May 4, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants