Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 5.27.3 to 5.28.2. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/protocolbuffers/protobuf/commit/9fff46d7327c699ef970769d5c9fd0e44df08fc7"><code>9fff46d</code></a> Updating version.json and repo version numbers to: 28.2</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/ce60d012b947c717a43488d5d53e7fe38e075e01"><code>ce60d01</code></a> Merge pull request <a href="https://redirect.github.com/protocolbuffers/protobuf/issues/18385">#18385</a> from protocolbuffers/cp-lp-28</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/ac9fb5b4c71b0dd80985b27684e265d1f03abf46"><code>ac9fb5b</code></a> Add recursion check when parsing unknown fields in Java.</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/9a5f5fe752a20cbac2e722b06949ac985abdd534"><code>9a5f5fe</code></a> Internal change</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/50a7745a4ac5c34e14a83a050af5d093615fff85"><code>50a7745</code></a> Internal change</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/5b0e54384a7468e71369582cdb7e3babe20a7d9b"><code>5b0e543</code></a> Fix cord handling in DynamicMessage and oneofs. (<a href="https://redirect.github.com/protocolbuffers/protobuf/issues/18373">#18373</a>)</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/421fc16d686f4c096ee625314b11025a5148079e"><code>421fc16</code></a> Merge pull request <a href="https://redirect.github.com/protocolbuffers/protobuf/issues/18343">#18343</a> from protocolbuffers/revert-18339-bazel-rules2</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/607bfdd5e488f69dde2bc349d870576deb8f0cb6"><code>607bfdd</code></a> Revert "Cherry-pick changes related to new Bazel rules"</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/106f4a6aa66fe5bbdf382e747ff599c5433dd009"><code>106f4a6</code></a> Merge pull request <a href="https://redirect.github.com/protocolbuffers/protobuf/issues/18339">#18339</a> from protocolbuffers/bazel-rules2</li> <li><a href="https://github.com/protocolbuffers/protobuf/commit/c2f34d654943f2d75a549763d9d5ad086b56da3f"><code>c2f34d6</code></a> Automated rollback of commit 76794bf3adceefcd69a2eb5785635a084fbe2e32.</li> <li>Additional commits viewable in <a href="https://github.com/protocolbuffers/protobuf/compare/v5.27.3...v5.28.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=protobuf&package-manager=pip&previous-version=5.27.3&new-version=5.28.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>