Bump github.com/apache/thrift from 0.21.0 to 0.23.0 in /sdks

[dependabot]

Bumps github.com/apache/thrift from 0.21.0 to 0.23.0.

Release notes

Sourced from github.com/apache/thrift's releases.

Version 0.23.0

Please head over to the official release download source: http://thrift.apache.org/download

The assets listed below are added by Github based on the release tag and they will therefore not match the checkums published on the Thrift project website.

Version 0.22.0

Please head over to the official release download source: http://thrift.apache.org/download

The assets listed below are added by Github based on the release tag and they will therefore not match the checkums published on the Thrift project website.

Changelog

Sourced from github.com/apache/thrift's changelog.

0.23.0

Build Process

• THRIFT-5877 - Add cpp cross tests
• THRIFT-5866 - Dockerfile to support Ubuntu 24.04 LTS (Noble Numbat)
• THRIFT-5909 - add Ruby in GitHub workflow
• THRIFT-5649 - add go in GitHub workflow / action

C glib

• THRIFT-5931 - thrift_ssl_socket_get_ssl_error() can underflow its remaining-buffer counter and write past the stack buffer
• THRIFT-5871 - Improve MAX_MESSAGE_SIZE check and friends

C++

• THRIFT-5911 - Inconsistent UUID compilation for aliased types
• THRIFT-5912 - Assertion failed: delta > 0, file ThreadManagerTests.h, line 162
• THRIFT-5880 - C++ TSocket on an IPv6-only system fails if you use a hostname of 127.0.0.1
• THRIFT-3268 - warning: token pasting of ',' and __VA_ARGS__ is a GNU extension
• THRIFT-5887 - build/cmake/ should be prepended (not appended) to CMAKE_MODULE_PATH
• THRIFT-5878 - Add UUID support for THeaderProtocol and TProtocolTap
• THRIFT-5898 - Unable to build Thrift as a shared library on Windows

Contributed

• THRIFT-5920 - Remove threadsafe warnings in thrift-maven-plugin

Delphi

• THRIFT-5939 - Replace GUID generation with stable UUID algorithm
• THRIFT-5876 - Add Delphi WinHTTP client TLS1.3 support

Go

• THRIFT-5896 - Race condition in TServerSocket.Addr() method

Java

• THRIFT-5925 - UUID implementation in JAVA is not according to the Thrift Specification
• THRIFT-5869 - Close the transport after TServerEventHandler deleteContext
• THRIFT-5863 - Make TServerTransport able to customize the max message size
• THRIFT-5774 - Add remote client's IP address to ServerContext in TServerEventHandler
• THRIFT-4280 - Add async nonblocking ssl support in java client
• THRIFT-5879 - java and kotlin cross tests fail in the GitHub action

netstd

• THRIFT-5902 - Add net10 support

... (truncated)

Commits

• e4b684f Updated CHANGES.md
• c4cbe43 Address vulnerabilities in Rack
• 68ac8e9 Enable TLS hostname verification in TNonblockingSSLSocket
• 5e4f01d Harden Node.js WebSocket server handling
• e242889 Add input validation to Swift protocol layer
• 4af8c7c Add recursion depth limit to Node.js protocol skip()
• a30c552 Enable TLS hostname verification in TSSLTransportFactory
• 0f8ec9c Fix parent class resolution in c_glib generated dispatch_call
• 276ec88 THRIFT-5929: Fix build failure on PHP 8.5 due to removed zend_exception_get_d...
• 17f2c13 Added missing 0.23.0 JIRA tickets to CHANGES.md
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 57.04%. Comparing base (efe4e94) to head (70e70f9).
⚠️ Report is 10 commits behind head on master.

Additional details and impacted files

@@             Coverage Diff              @@
##             master   #38383      +/-   ##
============================================
+ Coverage     56.98%   57.04%   +0.05%     
  Complexity     3628     3628              
============================================
  Files          1185     1184       -1     
  Lines        189433   189515      +82     
  Branches       3751     3751              
============================================
+ Hits         107952   108108     +156     
+ Misses        78024    77937      -87     
- Partials       3457     3470      +13     

Flag	Coverage Δ
go	28.67% <ø> (+0.16%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

Assigning reviewers:

R: @lostluck for label go.

Note: If you would like to opt out of this review, comment assign to next reviewer.

Available commands:

• stop reviewer notifications - opt out of the automated review tooling
• remind me after tests pass - tag the comment author after tests pass
• waiting on author - shift the attention set back to the author (any comment or push by the author will return the attention set to the reviewers)

The PR bot will only process comments in the main thread (not review comments).