chore: bump io.opentelemetry.instrumentation:opentelemetry-instrumentation-annotations from 2.23.0 to 2.24.0

[dependabot]

Bumps io.opentelemetry.instrumentation:opentelemetry-instrumentation-annotations from 2.23.0 to 2.24.0.

Release notes

Sourced from io.opentelemetry.instrumentation:opentelemetry-instrumentation-annotations's releases.

Version 2.24.0

This release targets the OpenTelemetry SDK 1.58.0.

Note that many artifacts have the -alpha suffix attached to their version number, reflecting that they are still alpha quality and will continue to have breaking changes. Please see the VERSIONING.md for more details.

⚠️ Breaking Changes

• Remove support for previously deprecated property otel.instrumentation.logback-appender.experimental.capture-logstash-attributes (#15722)
• Remove deprecated methods from HTTP library instrumentations (#15802)

🚫 Deprecations

• JMX Metrics: Deprecated addClassPathRules and addCustomRules methods in JmxTelemetryBuilder, and moved non-public classes to an internal package (#15658)
• Deprecated setMessagingReceiveInstrumentationEnabled in favor of setMessagingReceiveTelemetryEnabled to match config property name (#15668)
• Deprecated database client attribute getter methods getDbSystem() and getResponseStatus() in favor of getDbSystemName() and getResponseStatusCode() to align with stable semantic conventions (#15696)
• Deprecated setCapturedRequestParameters() in Servlet library instrumentation in favor of Experimental.setCapturedRequestParameters() as request parameter capture is experimental (#15826)
• Deprecated getHttpClient(), setHttpClientTransport(), and setSslContextFactory() in Jetty client instrumentation in favor of new builder-style methods newHttpClient(), newHttpClient(SslContextFactory), and newHttpClient(HttpClientTransport, SslContextFactory) (#15827)
• Deprecate Netty experimental method that is still in public API (#15828)
• Deprecated newHttpClient() in favor of wrap() in Java HTTP Client instrumentation for consistency with naming conventions across library instrumentations (#15829)
• Deprecated new* methods in favor of create* methods across multiple instrumentation libraries for consistency (e.g., newHttpClient() → createHttpClient(), newInterceptor() → createInterceptor()) (#15832)
• Deprecated methods in SqlStatementInfo and MultiQuery in favor of methods using stable semantic convention terminology: getFullStatement() → getQueryText(), getOperation() → getOperationName(), and getStatements() → getQueryTexts() (#15833)
• Deprecated database getter methods in favor of methods using stable semantic convention terminology: getResponseStatusCode() → getDbResponseStatusCode(), getBatchSize() → getDbOperationBatchSize(), and getQueryParameters() → getDbQueryParameters() (#15859)

📈 Enhancements

• Spring Boot starter: add support for otel.instrumentation.logback-appender.experimental.capture-template (#15649)
• Spring Boot Starter: Support Spring Boot 4 RestClient (#15684)
• Improve support for experimental declarative configuration (#15656, #15688, #15697, #15698, #15704, #15707, #15713, #15714, #15722, #15727, #15732, #15733, #15734, #15735, #15740, #15741, #15742, #15752, #15756, #15787, #15791, #15792, #15841, #15856)
• AWS Bedrock: support model IDs with regional prefixes (e.g., us., global.) for inference profiles (#15751)
• Redis: Improve sanitization for ACL command (#15797)
• Ktor and Netty library instrumentations: Add setSpanNameExtractorCustomizer (#15825)
• Support more of stable database semconv under opt-in flag (#15836, #15854)
• Move SpanStatusExtractor.extract() before OperationListener.onEnd() in Instrumenter (#15844)

🛠️ Bug fixes

• Servlet library instrumentation: fix capturing enduser.id (#15858)
• Fix agent startup failing on read-only filesystem (#15682)

🙇 Thank you

This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:

@​breedx-splk @​brunobat @​copilot-pull-request-reviewer @​gaeljw @​igreenfield @​jack-berg @​jaydeluca

... (truncated)

Changelog

Sourced from io.opentelemetry.instrumentation:opentelemetry-instrumentation-annotations's changelog.

Version 2.24.0 (2026-01-17)

⚠️ Breaking Changes

• Remove support for previously deprecated property otel.instrumentation.logback-appender.experimental.capture-logstash-attributes (#15722)
• Remove deprecated methods from HTTP library instrumentations (#15802)

🚫 Deprecations

• JMX Metrics: Deprecated addClassPathRules and addCustomRules methods in JmxTelemetryBuilder, and moved non-public classes to an internal package (#15658)
• Deprecated setMessagingReceiveInstrumentationEnabled in favor of setMessagingReceiveTelemetryEnabled to match config property name (#15668)
• Deprecated database client attribute getter methods getDbSystem() and getResponseStatus() in favor of getDbSystemName() and getResponseStatusCode() to align with stable semantic conventions (#15696)
• Deprecated setCapturedRequestParameters() in Servlet library instrumentation in favor of Experimental.setCapturedRequestParameters() as request parameter capture is experimental (#15826)
• Deprecated getHttpClient(), setHttpClientTransport(), and setSslContextFactory() in Jetty client instrumentation in favor of new builder-style methods newHttpClient(), newHttpClient(SslContextFactory), and newHttpClient(HttpClientTransport, SslContextFactory) (#15827)
• Deprecate Netty experimental method that is still in public API (#15828)
• Deprecated newHttpClient() in favor of wrap() in Java HTTP Client instrumentation for consistency with naming conventions across library instrumentations (#15829)
• Deprecated new* methods in favor of create* methods across multiple instrumentation libraries for consistency (e.g., newHttpClient() → createHttpClient(), newInterceptor() → createInterceptor()) (#15832)
• Deprecated methods in SqlStatementInfo and MultiQuery in favor of methods using stable semantic convention terminology: getFullStatement() → getQueryText(), getOperation() → getOperationName(), and getStatements() → getQueryTexts() (#15833)
• Deprecated database getter methods in favor of methods using stable semantic convention terminology: getResponseStatusCode() → getDbResponseStatusCode(), getBatchSize() → getDbOperationBatchSize(), and getQueryParameters() → getDbQueryParameters() (#15859)

📈 Enhancements

• Spring Boot starter: add support for

... (truncated)

Commits

• 960ce5c [release/v2.24.x] Prepare release 2.24.0 (#15885)
• 5fafe97 Update changelog for upcoming release (#15882)
• 675afce Rename a method to 'wrap' (#15829)
• 79a251c fix(deps): update byte buddy packages to v1.18.4 (#15874)
• 110f554 Fix handling added and removed files in auto license update (#15876)
• 96fb784 Update VERSIONING.md (#15872)
• 3632253 chore(deps): update gradle to v9.3.0 (#15878)
• 41840eb fix(deps): update dependency org.owasp:dependency-check-gradle to v12.2.0 (#1...
• 16422e8 fix(deps): update gradle develocity packages to v4.3.1 (#15873)
• bde4e9c Update remaining HTTP library instrumentation javadoc (#15866)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)