Bump the go-modules group with 12 updates

[dependabot]

Bumps the go-modules group with 12 updates:

Package	From	To
github.com/onsi/gomega	1.27.10	1.30.0
github.com/paketo-buildpacks/occam	0.17.0	0.18.0
github.com/containerd/containerd	1.7.7	1.7.11
github.com/google/uuid	1.3.1	1.5.0
github.com/klauspost/compress	1.16.4	1.17.4
github.com/opencontainers/runc	1.1.9	1.1.10
github.com/testcontainers/testcontainers-go	0.26.0	0.27.0
golang.org/x/mod	0.13.0	0.14.0
golang.org/x/net	0.17.0	0.19.0
golang.org/x/tools	0.14.0	0.16.1
google.golang.org/grpc	1.58.3	1.60.1
google.golang.org/protobuf	1.31.0	1.32.0

Updates github.com/onsi/gomega from 1.27.10 to 1.30.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.30.0

1.30.0

Features

• BeTrueBecause and BeFalseBecause allow for better failure messages [4da4c7f]

Maintenance

• Bump actions/checkout from 3 to 4 (#694) [6ca6e97]
• doc: fix type on gleak go doc [f1b8343]

v1.29.0

1.29.0

Features

• MatchError can now take an optional func(error) bool + description [2b39142]

v1.28.1

1.28.1

Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0 [635d196]
• Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 [14f8859]
• Bump golang.org/x/net from 0.14.0 to 0.17.0 [d8a6508]
• #703 doc(matchers): HaveEach() doc comment updated [2705bdb]
• Minor typos (#699) [375648c]

v1.28.0

1.28.0

Features

• Add VerifyHost handler to ghttp (#698) [0b03b36]

Fixes

• Read Body for Newer Responses in HaveHTTPBodyMatcher (#686) [18d6673]

Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 (#693) [55a33f3]
• Typo in matchers.go (#691) [de68e8f]
• Bump commonmarker from 0.23.9 to 0.23.10 in /docs (#690) [ab17f5e]
• chore: update test matrix for Go 1.21 (#689) [5069017]
• Bump golang.org/x/net from 0.12.0 to 0.14.0 (#688) [babe25f]

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.30.0

Features

• BeTrueBecause and BeFalseBecause allow for better failure messages [4da4c7f]

Maintenance

• Bump actions/checkout from 3 to 4 (#694) [6ca6e97]
• doc: fix type on gleak go doc [f1b8343]

1.29.0

Features

• MatchError can now take an optional func(error) bool + description [2b39142]

1.28.1

Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0 [635d196]
• Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 [14f8859]
• Bump golang.org/x/net from 0.14.0 to 0.17.0 [d8a6508]
• #703 doc(matchers): HaveEach() doc comment updated [2705bdb]
• Minor typos (#699) [375648c]

1.28.0

Features

• Add VerifyHost handler to ghttp (#698) [0b03b36]

Fixes

• Read Body for Newer Responses in HaveHTTPBodyMatcher (#686) [18d6673]

Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 (#693) [55a33f3]
• Typo in matchers.go (#691) [de68e8f]
• Bump commonmarker from 0.23.9 to 0.23.10 in /docs (#690) [ab17f5e]
• chore: update test matrix for Go 1.21 (#689) [5069017]
• Bump golang.org/x/net from 0.12.0 to 0.14.0 (#688) [babe25f]

Commits

• f804ac6 v1.30.0
• 4da4c7f BeTrueBecause and BeFalseBecause allow for better failure messages
• 6ca6e97 Bump actions/checkout from 3 to 4 (#694)
• f1b8343 doc: fix type on gleak go doc
• b94b195 v1.29.0
• 2b39142 MatchError can now take an optional func(error) bool + description
• ab6045c v1.28.1
• 635d196 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0
• 14f8859 Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
• d8a6508 Bump golang.org/x/net from 0.14.0 to 0.17.0
• Additional commits viewable in compare view

Updates github.com/paketo-buildpacks/occam from 0.17.0 to 0.18.0

Release notes

Sourced from github.com/paketo-buildpacks/occam's releases.

v0.18.0

What's Changed

• Move paketo-buildpacks/jam matchers to occam by @​pbusko in paketo-buildpacks/occam#235
• Bump github.com/docker/docker from 23.0.5+incompatible to 24.0.4+incompatible by @​dependabot in paketo-buildpacks/occam#237
• Bump github.com/onsi/gomega from 1.27.8 to 1.27.9 by @​dependabot in paketo-buildpacks/occam#239
• Bump github.com/onsi/gomega from 1.27.9 to 1.27.10 by @​dependabot in paketo-buildpacks/occam#240
• Bump github.com/docker/docker from 24.0.4+incompatible to 24.0.5+incompatible by @​dependabot in paketo-buildpacks/occam#241
• Bump github.com/testcontainers/testcontainers-go from 0.21.0 to 0.22.0 by @​dependabot in paketo-buildpacks/occam#243
• Bump github.com/testcontainers/testcontainers-go from 0.22.0 to 0.23.0 by @​dependabot in paketo-buildpacks/occam#244
• Bump github.com/docker/docker from 24.0.5+incompatible to 24.0.6+incompatible by @​dependabot in paketo-buildpacks/occam#246
• Bump github.com/testcontainers/testcontainers-go from 0.23.0 to 0.24.0 by @​dependabot in paketo-buildpacks/occam#247
• Bump github.com/testcontainers/testcontainers-go from 0.24.0 to 0.24.1 by @​dependabot in paketo-buildpacks/occam#248
• Bump github.com/onsi/gomega from 1.27.10 to 1.28.0 by @​dependabot in paketo-buildpacks/occam#249
• Bump github.com/testcontainers/testcontainers-go from 0.24.1 to 0.25.0 by @​dependabot in paketo-buildpacks/occam#250
• Updates github-config by @​paketo-bot in paketo-buildpacks/occam#251
• Bump golang.org/x/net from 0.15.0 to 0.17.0 by @​dependabot in paketo-buildpacks/occam#252
• Bump github.com/onsi/gomega from 1.28.0 to 1.28.1 by @​dependabot in paketo-buildpacks/occam#253
• Bump github.com/paketo-buildpacks/packit/v2 from 2.11.0 to 2.12.0 by @​dependabot in paketo-buildpacks/occam#254
• Bump google.golang.org/grpc from 1.57.0 to 1.57.1 by @​dependabot in paketo-buildpacks/occam#255
• Bump github.com/onsi/gomega from 1.28.1 to 1.29.0 by @​dependabot in paketo-buildpacks/occam#256
• Updates github-config by @​paketo-bot in paketo-buildpacks/occam#257
• Bump github.com/docker/docker from 24.0.6+incompatible to 24.0.7+incompatible by @​dependabot in paketo-buildpacks/occam#259
• Bump github.com/testcontainers/testcontainers-go from 0.25.0 to 0.26.0 by @​dependabot in paketo-buildpacks/occam#258
• Bump github.com/onsi/gomega from 1.29.0 to 1.30.0 by @​dependabot in paketo-buildpacks/occam#261
• Updates github-config by @​paketo-bot in paketo-buildpacks/occam#260
• Add --run-image for pack build by @​c0d1ngm0nk3y in paketo-buildpacks/occam#263
• Allow additional build args for pack build by @​c0d1ngm0nk3y in paketo-buildpacks/occam#264

New Contributors

• @​pbusko made their first contribution in paketo-buildpacks/occam#235

Full Changelog: paketo-buildpacks/occam@v0.17.0...v0.18.0

Commits

• c8831be Allow additional build args for pack build
• 4ecd687 Add --run-image for pack build
• 074e587 Updating github-config
• cccc92d Bump github.com/onsi/gomega from 1.29.0 to 1.30.0
• e5f5004 Bump github.com/testcontainers/testcontainers-go from 0.25.0 to 0.26.0
• 482fd30 Bump github.com/docker/docker
• bf2459b Updating github-config
• b48a7c6 Bump github.com/onsi/gomega from 1.28.1 to 1.29.0
• ad9e77e Bump google.golang.org/grpc from 1.57.0 to 1.57.1
• 23abb3b Bump github.com/paketo-buildpacks/packit/v2 from 2.11.0 to 2.12.0
• Additional commits viewable in compare view

Updates github.com/containerd/containerd from 1.7.7 to 1.7.11

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.11

Welcome to the v1.7.11 release of containerd!

The eleventh patch release for containerd 1.7 contains various fixes and updates including one security issue.

Notable Updates

• Fix Windows default path overwrite issue (#9440)
• Update push to always inherit distribution sources from parent (#9452)
• Update shim to use net dial for gRPC shim sockets (#9458)
• Fix otel version incompatibility (#9483)
• Fix Windows snapshotter blocking snapshot GC on remove failure (#9482)
• Mask /sys/devices/virtual/powercap path in runtime spec and deny in default apparmor profile (GHSA-7ww5-4wqc-m92c)

Deprecation Warnings

• Emit deprecation warning for AUFS snapshotter (#9436)
• Emit deprecation warning for v1 runtime (#9450)
• Emit deprecation warning for deprecated CRI configs (#9469)
• Emit deprecation warning for CRI v1alpha1 usage (#9479)
• Emit deprecation warning for CRIU config in CRI (#9481)

See the changelog for complete list of changes

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

• Samuel Karp
• Derek McGowan
• Phil Estes
• Bjorn Neergaard
• Danny Canter
• Sebastiaan van Stijn
• ruiwen-zhao
• Akihiro Suda
• Amit Barve
• Charity Kathure
• Maksym Pavlenko
• Milas Bowman
• Paweł Gronowski
• Wei Fu

Changes

• [release/1.7] Prepare release notes for v1.7.11 (#9491)

... (truncated)

Commits

• 64b8a81 Merge pull request #9491 from dmcgowan/prepare-1.7.11
• ea5a477 Merge pull request #9352 from thaJeztah/1.7_update_golang_1.20.11
• 67d356c Merge pull request from GHSA-7ww5-4wqc-m92c
• dfae68b Prepare release notes for v1.7.11
• de6d8a8 Merge pull request #9482 from ambarve/sn_cleanup_1.7
• ed7c689 Don't block snapshot garbage collection on Remove failures
• 467de56 Merge pull request #9481 from ruiwen-zhao/cri-u
• d94f8ff Merge pull request #9483 from dmcgowan/backport-1.7-fix-otel-http
• 1fdefdd Add warning for CRIU config usage
• 8e06899 Merge pull request #9479 from ruiwen-zhao/cri-api-warning
• Additional commits viewable in compare view

Updates github.com/google/uuid from 1.3.1 to 1.5.0

Release notes

Sourced from github.com/google/uuid's releases.

v1.5.0

1.5.0 (2023-12-12)

Features

• Validate UUID without creating new UUID (#141) (9ee7366)

v1.4.0

1.4.0 (2023-10-26)

Features

• UUIDs slice type with Strings() convenience method (#133) (cd5fbbd)

Fixes

• Clarify that Parse's job is to parse but not necessarily validate strings. (Documents current behavior)

Changelog

Sourced from github.com/google/uuid's changelog.

1.5.0 (2023-12-12)

Features

• Validate UUID without creating new UUID (#141) (9ee7366)

1.4.0 (2023-10-26)

Features

• UUIDs slice type with Strings() convenience method (#133) (cd5fbbd)

Fixes

• Clarify that Parse's job is to parse but not necessarily validate strings. (Documents current behavior)

Commits

• 4d47f8e chore(master): release 1.5.0 (#145)
• 9ee7366 feat: Validate UUID without creating new UUID (#141)
• b35aa6a add uuid version 6 and 7 (#139)
• 8de8764 chore(master): release 1.4.0 (#134)
• 7c22e97 Clarify the documentation of Parse to state its job is to parse, not validate...
• cd5fbbd feat: UUIDs slice type with Strings() convenience method (#133)
• 47f5b39 docs: fix a typo in CONTRIBUTING.md (#130)
• 542ddab chore(tests): add Fuzz tests (#128)
• 06716f6 chore(tests): Add json.Unmarshal test with empty value cases (#116)
• See full diff in compare view

Updates github.com/klauspost/compress from 1.16.4 to 1.17.4

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.17.4

What's Changed

• huff0: Speed up symbol counting by @​greatroar in klauspost/compress#887
• huff0: Remove byteReader by @​greatroar in klauspost/compress#886
• gzhttp: Allow overriding decompression on transport by @​klauspost in klauspost/compress#892
• gzhttp: Clamp compression level by @​klauspost in klauspost/compress#890
• gzip: Error out if reserved bits are set by @​klauspost in klauspost/compress#891

New Contributors

• @​teikjun made their first contribution in klauspost/compress#889

Full Changelog: klauspost/compress@v1.17.3...v1.17.4

v1.17.3

What's Changed

• fse: Fix max header size by @​klauspost in klauspost/compress#881
• zstd: Improve better/best compression by @​klauspost in klauspost/compress#877
• gzhttp: Fix missing content type on Close by @​klauspost in klauspost/compress#883

Full Changelog: klauspost/compress@v1.17.2...v1.17.3

v1.17.2

What's Changed

• zstd: Fix corrupted output in "best" by @​klauspost in klauspost/compress#876

Full Changelog: klauspost/compress@v1.17.1...v1.17.2

v1.17.1

What's Changed

• s2: Fix S2 "best" dictionary wrong encoding by @​klauspost in klauspost/compress#871
• flate: Reduce allocations in decompressor and minor code improvements by @​fakefloordiv in klauspost/compress#869
• s2: Fix EstimateBlockSize on 6&7 length input by @​klauspost in klauspost/compress#867
• tests: Fuzzing Coverage Expansion by @​viktoriia-lsg in klauspost/compress#866
• tests: Set FSE decompress fuzzer max limit by @​klauspost in klauspost/compress#868
• tests: Fuzzing Coverage Expansion (#2) by @​viktoriia-lsg in klauspost/compress#870

New Contributors

• @​viktoriia-lsg made their first contribution in klauspost/compress#866
• @​fakefloordiv made their first contribution in klauspost/compress#869

Full Changelog: klauspost/compress@v1.17.0...v1.17.1

v1.17.0

What's Changed

• Add dictionary builder by @​klauspost in klauspost/compress#853
• Add xerial snappy read/writer by @​klauspost in klauspost/compress#838

... (truncated)

Commits

• 98ff542 gzhttp: Allow overriding decompression on transport (#892)
• c63a492 gzip: Error out if reserved bits are set (#891)
• c4e922d gzhttp: Clamp compression level (#890)
• bb3065b docs: fix a small typo in README.md (#889)
• e7c8ed1 huff0: Remove byteReader (#886)
• 8f7526c huff0: Speed up symbol counting (#887)
• 80ba129 gzhttp: Fix missing content type on Close (#883)
• 6a59dbb zstd: Improve better/best compression (#877)
• 847c1b4 fse: Fix max header size (#881)
• dc4151f Update go.mod
• Additional commits viewable in compare view

Updates github.com/opencontainers/runc from 1.1.9 to 1.1.10

Changelog

Sourced from github.com/opencontainers/runc's changelog.

[1.1.10] - 2023-10-31

Śruba, przykręcona we śnie, nie zmieni sytuacji, jaka panuje na jawie.

Added

• Support for hugetlb.<pagesize>.rsvd limiting and accounting. Fixes the issue of postres failing when hugepage limits are set. (#3859, #4077)

Fixed

• Fixed permissions of a newly created directories to not depend on the value of umask in tmpcopyup feature implementation. (#3991, #4060)
• libcontainer: cgroup v1 GetStats now ignores missing kmem.limit_in_bytes (fixes the compatibility with Linux kernel 6.1+). (#4028)
• Fix a semi-arbitrary cgroup write bug when given a malicious hugetlb configuration. This issue is not a security issue because it requires a malicious config.json, which is outside of our threat model. (#4103)
• Various CI fixes. (#4081, #4055)

Commits

• 18a0cb0 VERSION: release 1.1.10
• 7b469c9 Merge pull request from GHSA-5g49-rx9x-qfc6
• b426e9b libct/cgroups.OpenFile: clean "file" argument
• e1adc7f Merge pull request #4077 from kolyshkin/1.1-4073
• 8214e63 libct/cg: support hugetlb rsvd
• f8be700 [1.1] tests/int/helpers: add get_cgroup_path
• 5ba0e01 merge #4081 into opencontainers/runc:release-1.1
• 1f66027 ci/gha: fix downloading Release.key
• 42acc58 Merge pull request #4060 from kolyshkin/1.1-4056
• 5a5b2cc Fix directory perms vs umask for tmpcopyup
• Additional commits viewable in compare view

Updates github.com/testcontainers/testcontainers-go from 0.26.0 to 0.27.0

Release notes

Sourced from github.com/testcontainers/testcontainers-go's releases.

v0.27.0

What's Changed

⚠️ Breaking Changes

Building images with FromDockerfile

The ImageBuildInfo interface now includes a new method: BuildOptions, which is used to configure the build process. This method returns the image build options when building a Docker image from a Dockerfile, and it will apply some defaults and finally call the new BuildOptionsModifier method from the FromDockerfile struct, if set. This way it's possible to access Docker's types.ImageBuildOptions type and modify it before the build process starts.

• feat: support customizing the Docker build command (#1931) @​mdelapenya

Executing commands using the Executable interface

It now includes an Options method that needs to be implemented. This method will allow configuring the exec options added in this PR for the WithStartupCommand functional option. If your code is implementing Executable, you can embed the ExecOptions struct in your own struct in order to satisfy the interface. Please take a look at the RabbitMQ test types to see examples on how to do it.

• feat: support for executing commands in a container with user, workDir and env (#1914) @​mdelapenya

🔒 Security

• chore(deps): bump golang.org/x/crypto to 0.17.0 in /modules (#2006) @​mdelapenya

🚀 Features

• Add neo4j license agreement customization options (#2036) @​danielorbach
• feat: support configuring Ryuk verbose mode at config level (#2038) @​mdelapenya
• feat: create networks with random names (#1993) @​mdelapenya
• feat: add module to support Microsoft SQL Server (#1969) @​agosmou
• feat: exec multiplexed to return stderr (#1933) @​gutocondela
• feat: support for custom registry prefixes at the configuration level (#1928) @​mdelapenya
• Add username and password functions to mongodb (#1910) @​ugrkm
• feat: Allow the container working directory to be specified (#1899) @​fhke
• feat: expose a WithNetwork functional option (#1887) @​mdelapenya

🐛 Bug Fixes

• fix: remove docker.io from Ryuk image name (#2046) @​mdelapenya
• fix: fallback matching of registry authentication config (#1927) @​sermio-te
• fix(modules.kafka): Switch to MaxInt for 32-bit support (#1923) @​powersj
• fix(reaper): fix race condition when reusing reapers (#1904) @​lefinal
• Fix - respect ContainerCustomizer in neo4j module (#1903) @​fhke

📖 Documentation

• Add more content on how to use Exec function (#1970) @​danvergara
• docs: include MongoDB's username and password options into the docs (#1930) @​mdelapenya
• docs: add some Vault module examples (#1825) @​kuisathaverat

... (truncated)

Commits

• 8d0f53a chore: use new version (v0.27.0) in modules and examples
• c3a1834 chore: do not read config but instead pass the hub prefix to the prependHub m...
• 1bac302 fix: remove docker.io from Ryuk image name (#2046)
• 61a37cb adds gotestsum to install tools (#2043)
• 1c45958 Add neo4j license agreement customization options (#2036)
• 974afd9 chore: bump Ryuk to 0.6.0 (#2040)
• cb51b9b chore(deps): bump github.com/containerd/containerd from 1.7.7 to 1.7.11 (#2011)
• 9f68760 feat: support configuring Ryuk verbose mode at config level (#2038)
• 5faf6f4 chore: lookup exposed ports in the image from Config, not from ContainerConfi...
• a9f0ac8 chore(deps): bump golang.org/x/crypto to 0.17.0 in /modules (#2006)
• Additional commits viewable in compare view

Updates golang.org/x/mod from 0.13.0 to 0.14.0

Commits

• 6e58e47 modfile: improve directory path detection and error text consistency
• See full diff in compare view

Updates golang.org/x/net from 0.17.0 to 0.19.0

Commits

• a8e0109 go.mod: update golang.org/x dependencies
• 13e88dd quic: rename listener{_test}.go to endpoint{_test}.go
• e26b9a4 quic: rename Listener to Endpoint
• 399218d quic: implement stream flush
• d87f99b quic: idle timeouts, handshake timeouts, and keepalive
• 7b5abfa quic: basic qlog support
• fbaf412 go.mod: update golang.org/x dependencies
• cc6f4d1 http2: remove ancient build-tagged files for unsupported Go versions
• a720b30 http2: allocate buffer pools using pointers to arrays
• a7ef1a2 internal/quic/cmd/interop: don't t.Log after test finishes
• Additional commits viewable in compare view

Updates golang.org/x/tools from 0.14.0 to 0.16.1

Release notes

Sourced from golang.org/x/tools's releases.

gopls/v0.14.2

This release contains just one change: an upgrade of x/telemetrygolang/go#63832

Previously, when the telemetry mode was "off" (the default), counter data would not be uploaded, but would be written to the os.UserConfigDir()/go/telemetry/local directory of the local file system. We heard from a few users that, as a matter of policy within their organization, they need a way to prevent even this local data from being written. With this release, running gotelemetry off will stop gopls from writing this local counter data. Note that the os.UserConfigDir()/go/telemetry/mode file must be written to record the "off" state.

The new default telemetry mode is "local", which behaves the same way as "off" did before. In "local" mode, counter data is written to the local file system, but not uploaded. Local data can be inspected with the gotelemetry view command.

See golang/go#63832 for more details. Thanks again for helping us support transparent telemetry in gopls. As described in the v0.14.0 release notes, we are confident that this data will help us produce a better, faster, more reliable product. In fact this is already happening.

gopls/v0.14.1

This release contains just two changes:

• A workaround for a regression affecting some users of GOPACKAGESDRIVER: golang/go#63751, for example those using gopls with an older version of Bazel. When the go/packages driver is missing compiler or architecture information, gopls now assumes a default value rather than failing to load package information.
• A fix for a minor bug in the new "remove unused parameter" refactoring: golang/go#63755. Notably, this bug was discovered via an automated report from someone who had opted in to Go telemetry.

Commits

• 2acb2e6 gopls/internal/test/marker: minor clean up of marker test doc
• 28b92af internal/typeparams: eliminate remainining compatibility shims
• ee35f8e gopls/internal/lsp/source: hovering over broken packages is not an error
• 67611a1 internal/typeparams: eliminate type aliases
• 23c86e8 internal/typeparams: delete const Enabled=true and simplify
• e46688f gopls/internal/analysis/fillstruct: don't panic with invalid fields
• 8bd7553 gopls/internal/util/goversion: warn about EOL for Go 1.18
• bc9cd15 gopls/internal/settings: remove MemoryMode option
• bbc30f1 gopls/protocol: Allow AnnotatedTextEdits
• f40889d gopls/internal/analysis/stubmethods: fix OOB panic in fromValueSpec
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.58.3 to 1.60.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release v1.60.1

Bug Fixes

• server: fix two bugs that could lead to panics at shutdown when using NumStreamWorkers (experimental feature).

Release 1.60.0

Security

• credentials/tls: if not set, set TLS MinVersion to 1.2 and CipherSuites according to supported suites not forbidden by RFC7540.
  • This is a behavior change to bring us into better alignment with RFC 7540.

API Changes

• resolver: remove deprecated and experimental ClientConn.NewServiceConfig (#6784)
• client: remove deprecated grpc.WithServiceConfig DialOption (#6800)

Bug Fixes

• client: fix race that could cause a deadlock while entering idle mode and receiving a name resolver update (#6804)
• client: always enable TCP keepalives with OS defaults (#6834)
• credentials/alts: fix a bug preventing ALTS from connecting to the metadata server if the default scheme is overridden (#6686)
  • Special Thanks: @​mjamaloney

Behavior Changes

• server: Do not return from Stop() or GracefulStop() until all resources are released (#6489)
  • Special Thanks: @​fho

Documentation

• codes: clarify that only codes defined by this package are valid and that users should not cast other values to codes.Code (#6701)

Commits

• dbbcf59 Update version.go to 1.60.1 (#6865)
• 6e384cf Cherry-pick #6856 to v1.60.x release branch (#6864)
• 6430548 Change version to 1.60.1-dev (#6793)
• 297d8dd Cherry-pick #6841 to v1.60.x release branch (#6847)
• 3580447 Change version to 1.60.0 (#6792)
• 71e67a9 Cherry-pick #6834 to v1.60.x release branch (#6839)
• cb6581d Cherry-pick #6804 and dependencies to v1.60.x release branch (#6838)
• dd39cdb credentials: if not set, restrict to TLS v1.2+ and CipherSuites per RFC7540 (...
• 8645f95 resolver: remove ClientConn.NewServiceConfig (#6784)
• 8b17a4d vet: various cleanups (#6780)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.31.0 to 1.32.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #358.