build(deps): Bump @grafana/runtime from 11.2.2 to 11.3.0

[dependabot[bot]]

Bumps @grafana/runtime from 11.2.2 to 11.3.0.

Release notes

Sourced from @​grafana/runtime's releases.

11.3.0

Download page What's new highlights

Features and enhancements

• Alerting: Add manage permissions UI logic for Contact Points #92885, @​tomratcliffe
• Alerting: Allow linking to silence form with __alert_rule_uid__ value preset #93526, @​tomratcliffe
• Alerting: Hide query name when using simplified mode in the alert rule #93779, @​soniaAguilarPeiron
• Alerting: Limit and clean up old alert rules versions #89754, @​igloo12
• Alerting: Style nits for the simple query mode #93930, @​soniaAguilarPeiron
• Alerting: Update texts in annotations step #93977, @​soniaAguilarPeiron
• Alerting: Use useProduceNewAlertmanagerConfiguration for contact points #88456, @​gillesdemey
• Auth: Attach external session info to Grafana session #93849, @​mgyongyosi
• Auth: Replace jmespath/go-jmespath with jmespath-community/go-jmespath #94203, @​mgyongyosi
• CloudMigrations: Add support for migration of Library Elements (Panels) resources #93898, @​macabu
• Cloudwatch: Update grafana-aws-sdk #94155, @​iwysiu
• Explore Logs: Preinstall for onprem Grafana instances #94221, @​svennergr
• ExploreMetrics: Ensure compatibility with Incremental Querying #94355, @​NWRichmond
• FieldConfig: Add support for Actions #92874, @​adela-almasan
• Plugin Extensions: Require meta-data to be defined in plugin.json during development mode #93429, @​leventebalogh
• Reporting: Display template variables in the PDF (Enterprise)
• Tempo: Add deprecation notice for Aggregate By #94050, @​joey-grafana

Bug fixes

• Alerting/Chore: Fix TimeRangeInput not working across multiple months #93622, @​tomratcliffe
• Alerting: Fix default value for input in simple condition #94248, @​soniaAguilarPeiron
• Alerting: Fix eval interval not being saved when creating a new group #93821, @​tomratcliffe
• Alerting: Fix incorrect permission on POST external rule groups endpoint [CVE-2024-8118] #93940, @​alexweav
• Alerting: Fix panics when attempting to create an Alertmanager after failing #94023, @​santihernandezc
• DashboardScene: Fixes url issue with subpath when exiting edit mode #93962, @​torkelo
• Dashboards: Enable scenes by default #93818, @​ivanortegaalba
• Dashboards: Fixes view & edit keyboard shortcuts when grafana is behind a subpath #93955, @​torkelo
• ElasticSearch: Fix errorsource in newInstanceSettings #93859, @​iwysiu
• Reporting: Fix reports on multi-org instance (Enterprise)
• SubMenu: Fix expanding sub menu items on touch devices #93208, @​yincongcyincong

11.2.3

Download page What's new highlights

Bug fixes

• Alerting: Fix incorrect permission on POST external rule groups endpoint [CVE-2024-8118] #93947, @​alexweav
• AzureMonitor: Fix App Insights portal URL for multi-resource trace queries #94475, @​aangelisc
• Canvas: Allow API calls to grafana origin #94129, @​adela-almasan
• Folders: Correctly show new folder button under root folder #94712, @​IevaVasiljeva
• OrgSync: Do not set default Organization for a user to a non-existent Organization #94549, @​mgyongyosi
• Plugins: Skip install errors if dependency plugin already exists #94717, @​wbrowne

... (truncated)

Changelog

Sourced from @​grafana/runtime's changelog.

11.3.0 (2024-10-22)

Features and enhancements

• Alerting: Add manage permissions UI logic for Contact Points #92885, @​tomratcliffe
• Alerting: Allow linking to silence form with __alert_rule_uid__ value preset #93526, @​tomratcliffe
• Alerting: Hide query name when using simplified mode in the alert rule #93779, @​soniaAguilarPeiron
• Alerting: Limit and clean up old alert rules versions #89754, @​igloo12
• Alerting: Style nits for the simple query mode #93930, @​soniaAguilarPeiron
• Alerting: Update texts in annotations step #93977, @​soniaAguilarPeiron
• Alerting: Use useProduceNewAlertmanagerConfiguration for contact points #88456, @​gillesdemey
• Auth: Attach external session info to Grafana session #93849, @​mgyongyosi
• Auth: Replace jmespath/go-jmespath with jmespath-community/go-jmespath #94203, @​mgyongyosi
• CloudMigrations: Add support for migration of Library Elements (Panels) resources #93898, @​macabu
• Cloudwatch: Update grafana-aws-sdk #94155, @​iwysiu
• Explore Logs: Preinstall for onprem Grafana instances #94221, @​svennergr
• ExploreMetrics: Ensure compatibility with Incremental Querying #94355, @​NWRichmond
• FieldConfig: Add support for Actions #92874, @​adela-almasan
• Plugin Extensions: Require meta-data to be defined in plugin.json during development mode #93429, @​leventebalogh
• Reporting: Display template variables in the PDF (Enterprise)
• Tempo: Add deprecation notice for Aggregate By #94050, @​joey-grafana

Bug fixes

• Alerting/Chore: Fix TimeRangeInput not working across multiple months #93622, @​tomratcliffe
• Alerting: Fix default value for input in simple condition #94248, @​soniaAguilarPeiron
• Alerting: Fix eval interval not being saved when creating a new group #93821, @​tomratcliffe
• Alerting: Fix incorrect permission on POST external rule groups endpoint [CVE-2024-8118] #93940, @​alexweav
• Alerting: Fix panics when attempting to create an Alertmanager after failing #94023, @​santihernandezc
• DashboardScene: Fixes url issue with subpath when exiting edit mode #93962, @​torkelo
• Dashboards: Enable scenes by default #93818, @​ivanortegaalba
• Dashboards: Fixes view & edit keyboard shortcuts when grafana is behind a subpath #93955, @​torkelo
• ElasticSearch: Fix errorsource in newInstanceSettings #93859, @​iwysiu
• Reporting: Fix reports on multi-org instance (Enterprise)
• SubMenu: Fix expanding sub menu items on touch devices #93208, @​yincongcyincong

11.2.3 (2024-10-22)

Bug fixes

• Alerting: Fix incorrect permission on POST external rule groups endpoint [CVE-2024-8118] #93947, @​alexweav
• AzureMonitor: Fix App Insights portal URL for multi-resource trace queries #94475, @​aangelisc
• Canvas: Allow API calls to grafana origin #94129, @​adela-almasan
• Folders: Correctly show new folder button under root folder #94712, @​IevaVasiljeva
• OrgSync: Do not set default Organization for a user to a non-existent Organization #94549, @​mgyongyosi
• Plugins: Skip install errors if dependency plugin already exists #94717, @​wbrowne
• ServerSideExpressions: Disable SQL Expressions to prevent RCE and LFI vulnerability #94959, @​samjewell

... (truncated)

Commits

• 45835f7 Update dependency @​types/lodash to v4.17.10
• 0db65d2 Plugins: Add Subresource Integrity checks (#93024)
• 6096f46 Plugin Extensions: Require meta-data to be defined in plugin.json during de...
• 012d627 Fix: Prevent import errors caused by Rollup 4 (#93903)
• f22bee8 Build: Migrate packages to rollup v4 (#93731)
• db697a3 Update dependency @​rollup/plugin-node-resolve to v15.3.0 (#93677)
• 5193318 Update dependency @​types/lodash to v4.17.9
• 1a13e7f Update dependency @​types/systemjs to v6.15.1
• 07f11e9 Update dependency @​rollup/plugin-node-resolve to v15.2.4
• 08b2805 Update dependency esbuild to v0.24.0 (#87650)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)