build(deps): bump github.com/IBM/sarama from 1.45.2 to 1.46.1

[dependabot]

Bumps github.com/IBM/sarama from 1.45.2 to 1.46.1.

Release notes

Sourced from github.com/IBM/sarama's releases.

Version 1.46.1 (2025-09-18)

[!NOTE]
The go.mod directive has been bumped to 1.24.0 as the minimum version of Go required for the module. This was necessary to continue to receive updates from some of the third party dependencies that Sarama makes use of.

What's Changed

🎉 New Features / Improvements

• feat: support more describe log dirs versions (V2-V4) by @​hindessm in IBM/sarama#3293
• feat: support V5 ListConsumerGroups protocol by @​hindessm in IBM/sarama#3292
• feat: add SASLv1 support for Kerberos by @​dnwe in IBM/sarama#3279

🐛 Fixes

• fix: add read deadline to tls write by @​bvalente in IBM/sarama#3283

📦 Dependency updates

• chore(deps): bump go directive to 1.24.0 and golang.org/x/{crypto,net,sync} by @​dependabot[bot] in IBM/sarama#3288
• chore(deps): bump the golang-x group across 6 directories with 1 update by @​dependabot[bot] in IBM/sarama#3291
• chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @​dependabot[bot] in IBM/sarama#3274

🔧 Maintenance

• chore: refactor to use modern atomic types by @​Sahil-4555 in IBM/sarama#3277
• chore: pre-commit autoupdate to latest by @​dnwe in IBM/sarama#3278
• chore: apply modernize fixes from gopls by @​dnwe in IBM/sarama#3297
• chore(config): update comments of sarama.Config.Metadata.SingleFlight by @​gunli in IBM/sarama#3296
• chore(client): update comments of client methods by @​gunli in IBM/sarama#3295

New Contributors

• @​Sahil-4555 made their first contribution in IBM/sarama#3277
• @​bvalente made their first contribution in IBM/sarama#3283
• @​gunli made their first contribution in IBM/sarama#3296

Full Changelog: IBM/sarama@v1.46.0...v1.46.1

Version 1.46.0 (2025-08-25)

[!NOTE]
This release contains significant changes. Notably Sarama will now use the ApiVersionRequest response from each broker to aid in selecting the protocol version to use. The existing Version field in sarama.Config will continue to provide a "pinning" mechanism, but can safely be set to a maximum or higher value than the remote cluster and sarama will sensibly pick compatible versions. There is also a performance improvement relating to MetadataRequests whereby Sarama will avoid having more than a single request to each broker in-flight at any given time. These new (optimal) behaviour is on by default can be opt-ed out via the Metadata.SingleFlight field in Config.

What's Changed

🎉 New Features / Improvements

• feat(protocol): negotiate API versions by @​trapped in IBM/sarama#3209
• feat: option to group metadata refreshes so only one is in-flight at a time by @​cupcicm in IBM/sarama#3225
• feat: use singleflight metadata by default by @​dnwe in IBM/sarama#3231
• feat(protocol): support CreateTopicRequest V4 by @​dnwe in IBM/sarama#3238
• feat: always send ApiVersionsRequest and fallback to v0 by @​dnwe in IBM/sarama#3234

🐛 Fixes

• fix(consumer): stuck on the batch with zero records length by @​sterligov in IBM/sarama#3221
• fix: sync response header version to clamped request header by @​trapped in IBM/sarama#3223
• fix(decoder): handle null arrays correctly by @​dnwe in IBM/sarama#3144
• fix: hardcode lz4 writer blocksize to 64kb by @​dnwe in IBM/sarama#3258

📦 Dependency updates

• chore(deps): bump the golang-x group across 1 directory with 2 updates by @​dependabot[bot] in IBM/sarama#3185
• chore(deps): bump the golang-x group across 7 directories with 2 updates by @​dependabot[bot] in IBM/sarama#3219
• fix(deps): update module golang.org/x/net to v0.43.0 by @​renovate[bot] in IBM/sarama#3244

... (truncated)

Commits

• 9bc3d14 chore(client): update comments of client methods (#3295)
• 096b846 Merge pull request #3296 from gunli/update-single-comments
• dedff7a Merge pull request #3297 from IBM/dnwe/sarama-modernize
• 5648bd9 chore: inline strsContains
• 30d5d02 chore: apply stringsseq from modernize
• 9cba592 chore: apply bloop from modernize
• 7b353e9 chore: apply fmtappendf from modernize
• 7ce5897 chore: apply mapsloop from modernize
• c85f6fb chore: apply sortslice from modernize
• bccb0fe chore: apply slicescontains from modernize
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #405.