Bump google.golang.org/grpc from 1.65.0 to 1.67.0

[dependabot[bot]]

Bumps google.golang.org/grpc from 1.65.0 to 1.67.0.

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.67.0

Bug Fixes

• ringhash: when used with multiple EDS priorities, fix bug that could prevent a higher priority from recovering from transient failure. (#7364)
  • Special Thanks: @​atollena

Behavior Changes

• In accordance with RFC 7540, clients and servers will now reject TLS connections that don't support ALPN. This can be disabled by setting the environment variable GRPC_ENFORCE_ALPN_ENABLED to false (case insensitive). Please file a bug if you encounter any issues with this behavior. The environment variable to revert this behavior will be removed in an upcoming release. (#7535)

Release 1.66.2

Dependencies

• Remove unintentional dependency on the testing package (#7579)
• Remove unintentional dependency on the flate package (#7595)
  • Special Thanks: @​ash2k

Bug Fixes

• client: fix a bug that prevented memory reuse after handling unary RPCs (#7571)
  • Special Thanks: @​coxley

Release 1.66.0

New Features

• metadata: stabilize ValueFromIncomingContext (#7368)
  • Special Thanks: @​KarthikReddyPuli
• client: stabilize the WaitForStateChange and GetState methods, which were previously experimental. (#7425)
• xds: Implement ADS flow control mechanism (#7458)
  • See grpc/grpc#34099 for context.
• balancer/rls: Add metrics for data cache and picker internals (#7484, #7495)
• xds: LRS load reports now include the total_issued_requests field. (#7544)

Bug Fixes

• grpc: Clients now return status code INTERNAL instead of UNIMPLEMENTED when the server uses an unsupported compressor. This is consistent with the gRPC compression spec. (#7461)
  • Special Thanks: @​Gayathri625
• transport: Fix a bug which could result in writes busy looping when the underlying conn.Write returns errors (#7394)
  • Special Thanks: @​veshij
• client: fix race that could lead to orphaned connections and associated resources. (#7390)
• xds: use locality from the connected address for load reporting with pick_first (#7378)
  • without this fix, if a priority contains multiple localities with pick_first, load was reported for the wrong locality
• client: prevent hanging during ClientConn.Close() when the network is unreachable (#7540)

Performance Improvements

• transport: double buffering is avoided when using an http connect proxy and the target server waits for client to send the first message. (#7424)
• codec: Implement a new Codec which uses buffer recycling for encoded message (#7356)
  • introduce a mem package to facilitate buffer reuse (#7432)

... (truncated)

Commits

• 6f50403 Change version to 1.67.0 (#7604)
• 3c3a025 mem: replace flate.Reader reference (#7595) (#7637)
• 3ffb98b .*: fix revive lints redefines-builtin-id (#7552)
• 5666049 vet: enforce revive linter (#7589)
• c6ad07f protoc: regenerate protos (#7590)
• 70f19ee credentials/tls: default GRPC_ENFORCE_ALPN_ENABLED to true (#7535)
• 92111dc xds: keep ads flow control local to xdsclient/transport package (#7578)
• 535bdce estats: remove dependency on testing package (#7579)
• 0f03c74 .*: fix revive lint issues unused-parameter (#7580)
• 6147c81 stats/opentelemetry: Optimize slice allocations (#7525)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Dependabot tried to add @diogopcx as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/Checkmarx/ast-cli/pulls/883/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the Checkmarx/ast-cli repository. // See: https://docs.github.com/rest/pulls/review-requests#request-reviewers-for-a-pull-request

[dependabot[bot]]

Superseded by #935.