Bump the npm_and_yarn group across 1 directory with 3 updates

Bumps the npm_and_yarn group with 3 updates in the / directory: @grpc/grpc-js, @pulumi/pulumi and braces.

Updates @grpc/grpc-js from 1.9.6 to 1.10.9

Release notes

Sourced from @grpc/grpc-js's releases.

@grpc/grpc-js 1.10.9

Avoid buffering significantly more than grpc.max_receive_message_size per received message.

@grpc/grpc-js 1.10.8

Fix a bug that caused channels with unix: targets to not reconnect after the channel goes idle (#2750)

@grpc/grpc-js 1.10.7

Improve reporting of HTTP error codes (#2723)

Update dependency on @grpc/proto-loader to the latest version (#2732)

@grpc/grpc-js 1.10.6

Fix a bug that could cause a server to sometimes send the status early (#2708)

@grpc/grpc-js 1.10.5

Resolve exception when Error.stackTraceLimit is undefined (#2701 contributed by @davidfiala)

Call configured checkServerIdentity when grpc.ssl_target_name_override is set (#2704)

Add more information to DEADLINE_EXCEEDED error details strings (#2692)

@grpc/grpc-js 1.10.4

Fix a bug that caused server interceptors to crash when using partially-populated ResponderBuilder and ListenerBuilder objects (#2696)

Avoid sending RST_STREAM from the client when the server has already finished its side of the stream (#2695)

@grpc/grpc-js 1.10.3

Revert client reconnection changes in #2680 (#2691)

@grpc/grpc-js 1.10.2

Implement server connection idle timeouts and improve channelz performance (#2677 contributed by @AVVS)

Fix a bug that caused clients to automatically reconnect even when there were no active requests (#2680)

Modify order of server call events to more closely match pre-1.10.x behavior (#2683)

@grpc/grpc-js 1.10.1

Fix a bug causing channels using the round_robin LB policy to fail to reconnect after a connection drops (#2667)

@grpc/grpc-js-xds 1.10.1

Update dependency on @grpc/proto-loader to the latest version (#2732)

@grpc/grpc-js-xds 1.10.0

Implement gRFC A52: gRPC xDS Custom Load Balancer Configuration (#2555)

Implement gRFC A42: xDS Ring Hash LB Policy (#2568)

Note: This feature is not compatible with Node 14 or below. To disable it in those versions, set the environment variable GRPC_XDS_EXPERIMENTAL_ENABLE_RING_HASH=false.

Implement the xDS part of gRFC A62: pick_first: sticky TRANSIENT_FAILURE and address order randomization (Currently experimental, enabled by environment variable GRPC_EXPERIMENTAL_PICKFIRST_LB_CONFIG) (#2572)

@grpc/grpc-js 1.10.0

Changelog

Add server interceptors support (#2650) (details in gRFC L112)

Deprecate Server#start (#2597) (details in gRFC L107)

Add Server#unbind (#2612) (details in gRFC L109)

Add Server#drain (#2616) (details in gRFC L111)

Export type VerifyOptions (#2637 contributed by @chakhsu)

... (truncated)

Commits

674f4e3 Merge pull request from GHSA-7v5v-9h63-cj86
7ecaa2d grpc-js: Bump to 1.10.9
e64d816 grpc-js: Avoid buffering significantly more than max_receive_message_size per...
45e5fe5 Merge pull request #2750 from murgatroid99/grpc-js_idle_uds_fix
87a3541 grpc-js: Fix UDS channels not reconnecting after going idle
3105791 Merge pull request #2740 from sergiitk/backport-1.10-psm-interop-common-prod-...
fec135a Merge pull request #2729 from sergiitk/psm-interop-common-prod-tests
76fe802 Merge pull request #2739 from murgatroid99/backport-1.10-grpc-js_linkify-it_fix
d5edf49 Merge pull request #2735 from murgatroid99/grpc-js_linkify-it_fix
23c05fc Merge pull request #2732 from murgatroid99/grpc-js_proto-loader_update
Additional commits viewable in compare view

Updates @pulumi/pulumi from 3.93.0 to 3.120.0

Release notes

Sourced from @pulumi/pulumi's releases.

v3.120.0

3.120.0 (2024-06-12)

Features

[components/dotnet] Upgrade dotnet to 3.64.0 #16353

[cli/import] Add flag --json to pulumi import which would serialize the import diffs, operations, and overall output as JSON #16342

[engine] Change pulumi refresh to report diffs relative to desired state instead of relative to only output changes. Use PULUMI_ENABLE_LEGACY_REFRESH_DIFF to revert to the old behaviour.

[protobuf] Pass ProgramInfo to LanguageRuntime.About #16311

[sdk/python] Support Poetry as Python toolchain #16315

[sdk/python] Autoinstall dependencies using Poetry in GetRequiredPlugins #16315

Bug Fixes

[cli/{config,new}] Fix non-interactive flag for 'new' and 'config env' commands" #16338

[programgen/go] Fix union type resolution in Go program generation #16297

[sdk/nodejs] Only look for main in package.json if no entyrpoint was set via Pulumi.yaml #16363

[sdk/python] Make sure no resource registrations are in progress while stack transforms are being registered

Miscellaneous

[pkg] Refactor plugin.Provider to a Method(context.Context, MethodRequest) (MethodResponse, error) style interface. #16302

[programgen/nodejs] Sort dependencies in GenerateProject #16341

[sdk/nodejs] Update current nodejs version to 22.x #16378

v3.119.0

... (truncated)

Changelog

Sourced from @pulumi/pulumi's changelog.

3.120.0 (2024-06-12)

Features

[components/dotnet] Upgrade dotnet to 3.64.0 #16353

[cli/import] Add flag --json to pulumi import which would serialize the import diffs, operations, and overall output as JSON #16342

[engine] Change pulumi refresh to report diffs relative to desired state instead of relative to only output changes. Use PULUMI_ENABLE_LEGACY_REFRESH_DIFF to revert to the old behaviour.

[protobuf] Pass ProgramInfo to LanguageRuntime.About #16311

[sdk/python] Support Poetry as Python toolchain #16315

[sdk/python] Autoinstall dependencies using Poetry in GetRequiredPlugins #16315

Bug Fixes

[cli/{config,new}] Fix non-interactive flag for 'new' and 'config env' commands" #16338

[programgen/go] Fix union type resolution in Go program generation #16297

[sdk/nodejs] Only look for main in package.json if no entyrpoint was set via Pulumi.yaml #16363

[sdk/python] Make sure no resource registrations are in progress while stack transforms are being registered

Miscellaneous

[pkg] Refactor plugin.Provider to a Method(context.Context, MethodRequest) (MethodResponse, error) style interface. #16302

[programgen/nodejs] Sort dependencies in GenerateProject #16341

[sdk/nodejs] Update current nodejs version to 22.x #16378

3.119.0 (2024-06-05)

... (truncated)

Commits

29f783d Prepare for pulumi 3.120.0 release (#16376)
ee6ec15 Add explict provider test to conformance tests (#16362)
13ffd51 Only look for main in package.json if no entyrpoint was set via Pulumi.yaml (...
5a83cfe Initial work for parameterized providers (#16281)
8476c3f Pass ProgramInfo through to LanguageRuntime.About (#16311)
7c0489f Changelog and go.mod updates for v3.119.0 (#16330)
d2435e2 Freeze v3.119.0 (#16324)
f598962 Prepare for v3.119.0 release (#16323)
c376f9c [chore] Update esc to v0.9.1 (#16322)
0ebfde2 Add support for --all parameter of the stack ls command to the Automation...
Additional commits viewable in compare view

Updates braces from 3.0.2 to 3.0.3

Commits

74b2db2 3.0.3
88f1429 update eslint. lint, fix unit tests.
415d660 Snyk js braces 6838727 (#40)
190510f fix tests, skip 1 test in test/braces.expand
716eb9f readme bump
a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
98414f9 remove funding file
665ab5d update keepEscaping doc (#27)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/pulumi/pulumi-vscode-tools/network/alerts).

pulumi / pulumi-vscode-tools