ondat / trousseau

Store and access your secrets the Kubernetes native way with any external KMS.
https://trousseau.io
Apache License 2.0
178 stars 11 forks source link

Bump google.golang.org/grpc from 1.48.0 to 1.55.0 in /providers/vault #242

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps google.golang.org/grpc from 1.48.0 to 1.55.0.

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.55.0

Behavior Changes

  • xds: enable federation support by default (#6151)
  • status: status.Code and status.FromError handle wrapped errors (#6031 and #6150)

New Features

  • xds/xdsclient: support ignore_resource_deletion server feature as per gRFC A53 (#6035)
  • security/advancedtls: add min/max TLS version selection options (#6007)

Bug Fixes

  • xds: stop routing RPCs to deleted clusters (#6125)
  • client: fix race between stream creation and GOAWAY receipt, which could lead to spurious UNAVAILABLE stream errors (#6142)

Performance Improvements

Release 1.54.0

Behavior Changes

  • xds: remove support for xDS v2 transport API (#6013)

New Features

  • server: expose SetSendCompressor API to set send compressor name (#5744)
  • xdsclient: include Node proto only in the first discovery request message, to improve performance (#6078)

Bug Fixes

  • metadata: fix validation logic and properly validate metadata appended via AppendToOutgoingContext (#6001)
  • transport: do not close connections when we encounter I/O errors until after all data is consumed (#6110)
  • ringhash: ensure addresses are consistently hashed across updates (#6066)
  • xds/clusterimpl: fix a bug causing unnecessary closing and re-opening of LRS streams (#6112)
  • xds: NACK route configuration if sum of weights of weighted clusters exceeds uint32_max (#6085)

Documentation

  • resolver: update Resolver.Scheme() docstring to mention requirement of lowercase scheme names (#6014)
  • resolver: document expected error handling of UpdateState errors (#6002)
  • examples: add example for ORCA load reporting (#6114)

... (truncated)

Commits
  • 82c6376 Change version to 1.55.0 (#6211)
  • d33f68e googledirectpatph: enable ignore_resource_deletion in bootstrap (#6243) (#6246)
  • 3fc6e00 authz: Move audit package (#6218) (#6219)
  • 875c97a examples/features/observability: use observability module v1.0.0 (#6210)
  • aa8c137 authz: add audit logging APIs (#6158)
  • b91b884 gcp/observability: Have o11y module point to grpc 1.54 and opencensus 1.0.0 (...
  • eab9e20 test/kokoro: increase PSM Security test timeout to 4h (#6193)
  • d90621f remove the unnecessary call to ResetTimer and StopTimer (#6185)
  • fe72db9 testing: add helpers to start test service, and retrieve port (#6187)
  • 5a50b97 Revert "Revert "credentials/alts: defer ALTS stream creation until handshake ...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #249.