Sourced from protobuf-java's releases.

Protocol Buffers v3.20.3

Java

• Refactoring java full runtime to reuse sub-message builders and prepare to migrate parsing logic from parse constructor to builder.
• Move proto wireformat parsing functionality from the private "parsing constructor" to the Builder class.
• Change the Lite runtime to prefer merging from the wireformat into mutable messages rather than building up a new immutable object before merging. This way results in fewer allocations and copy operations.
• Make message-type extensions merge from wire-format instead of building up instances and merging afterwards. This has much better performance.
• Fix TextFormat parser to build up recurring (but supposedly not repeated) sub-messages directly from text rather than building a new sub-message and merging the fully formed message into the existing field.
• This release addresses a Security Advisory for Java users

Protocol Buffers v3.20.2

C++

• Reduce memory consumption of MessageSet parsing
• This release addresses a Security Advisory for C++ and Python users

Protocol Buffers v3.20.1

PHP

• Fix building packaged PHP extension (#9727)
• Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)

Ruby

• Disable the aarch64 build on macOS until it can be fixed. (#9816)

Other

• Fix versioning issues in 3.20.0

Protocol Buffers v3.20.1-rc1

#PHP

• Fix building packaged PHP extension (#9727)

#Other

• Fix versioning issues in 3.20.0

Protocol Buffers v3.20.0

2022-03-25 version 3.20.0 (C++/Java/Python/PHP/Objective-C/C#/Ruby/JavaScript)

Ruby

• Dropped Ruby 2.3 and 2.4 support for CI and releases. (#9311)
• Added Ruby 3.1 support for CI and releases (#9566).
• Message.decode/encode: Add recursion_limit option (#9218/#9486)
• Allocate with xrealloc()/xfree() so message allocation is visible to the Ruby GC. In certain tests this leads to much lower memory usage due to more frequent GC runs (#9586).
• Fix conversion of singleton classes in Ruby (#9342)

... (truncated)

• aea4a27 Updating changelog
• a474c5b Updating version.json and repo version numbers to: 21.11
• c0bc0cf Merge pull request #11196 from ericsalo/21.x
• 9d17e97 sync with current 21.x upb
• d024e3b Merge pull request #11118 from protocolbuffers/deannagarcia-patch-12
• 9b37daf Add "public" modifier to Kotlin generated code
• 782c772 Merge pull request #11105 from protocolbuffers/21.x-202211301621
• 06776db Update version.json to: 21.11-dev
• 9832e78 Merge pull request #11088 from protocolbuffers/21.x-202211291338
• 74dae8f Updating changelog
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)