Bump the go_modules group across 12 directories with 17 updates

[dependabot]

Bumps the go_modules group with 6 updates in the /components/content-service directory:

Package	From	To
github.com/moby/moby	20.10.7+incompatible	24.0.9+incompatible
github.com/opencontainers/image-spec	1.0.1	1.0.2
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/protobuf	1.27.1	1.33.0
golang.org/x/crypto	0.0.0-20210322153248-0c34fe9e7dc2	0.17.0
gopkg.in/yaml.v3	3.0.0-20210107192922-496545a6307b	3.0.0

Bumps the go_modules group with 1 update in the /components/image-builder directory: github.com/moby/moby.
Bumps the go_modules group with 7 updates in the /components/image-builder-bob directory:

Package	From	To
github.com/opencontainers/image-spec	1.0.1	1.0.2
google.golang.org/grpc	1.39.1	1.56.3
golang.org/x/crypto	0.0.0-20210322153248-0c34fe9e7dc2	0.17.0
github.com/docker/cli	20.10.7+incompatible	20.10.9+incompatible
github.com/docker/distribution	2.7.1+incompatible	2.8.2+incompatible
github.com/containerd/containerd	1.5.5	1.6.26
github.com/hashicorp/go-retryablehttp	0.7.0	0.7.7

Bumps the go_modules group with 8 updates in the /components/image-builder-mk3 directory:

Package	From	To
github.com/opencontainers/image-spec	1.0.1	1.0.2
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/grpc	1.39.1	1.56.3
github.com/docker/cli	20.10.7+incompatible	20.10.9+incompatible
github.com/docker/distribution	2.7.1+incompatible	2.8.2+incompatible
github.com/docker/docker	20.10.7+incompatible	24.0.9+incompatible
github.com/containerd/containerd	1.5.5	1.6.26
github.com/hashicorp/go-retryablehttp	0.7.0	0.7.7

Bumps the go_modules group with 6 updates in the /components/supervisor directory:

Package	From	To
github.com/moby/moby	20.10.7+incompatible	24.0.9+incompatible
github.com/opencontainers/image-spec	1.0.1	1.0.2
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/protobuf	1.27.1	1.33.0
golang.org/x/crypto	0.0.0-20210506145944-38f3c27a63bf	0.17.0
gopkg.in/yaml.v3	3.0.0-20210107192922-496545a6307b	3.0.0

Bumps the go_modules group with 6 updates in the /components/ws-daemon directory:

Package	From	To
github.com/moby/moby	20.10.7+incompatible	24.0.9+incompatible
github.com/opencontainers/image-spec	1.0.1	1.0.2
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/protobuf	1.27.1	1.33.0
golang.org/x/crypto	0.0.0-20210322153248-0c34fe9e7dc2	0.17.0
github.com/containerd/containerd	1.5.5	1.6.26

Bumps the go_modules group with 6 updates in the /components/ws-manager directory:

Package	From	To
github.com/moby/moby	20.10.7+incompatible	24.0.9+incompatible
github.com/opencontainers/image-spec	1.0.1	1.0.2
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/protobuf	1.27.1	1.33.0
golang.org/x/crypto	0.0.0-20210322153248-0c34fe9e7dc2	0.17.0
gopkg.in/yaml.v3	3.0.0-20210107192922-496545a6307b	3.0.0

Bumps the go_modules group with 3 updates in the /dev/telepresence-hack directory: google.golang.org/protobuf, golang.org/x/crypto and gopkg.in/yaml.v3.
Bumps the go_modules group with 1 update in the /dev/version-manifest directory: gopkg.in/yaml.v3.
Bumps the go_modules group with 8 updates in the /installer directory:

Package	From	To
github.com/moby/moby	20.10.7+incompatible	24.0.9+incompatible
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/protobuf	1.27.1	1.33.0
golang.org/x/crypto	0.0.0-20210711020723-a769d52b0f97	0.17.0
github.com/cyphar/filepath-securejoin	0.2.2	0.2.4
github.com/docker/cli	20.10.7+incompatible	20.10.9+incompatible
github.com/docker/distribution	2.7.1+incompatible	2.8.2+incompatible
github.com/containerd/containerd	1.5.5	1.6.26

Bumps the go_modules group with 1 update in the /operations/workspace/deployment directory: golang.org/x/sys.
Bumps the go_modules group with 6 updates in the /test directory:

Package	From	To
github.com/moby/moby	20.10.7+incompatible	24.0.9+incompatible
github.com/opencontainers/image-spec	1.0.1	1.0.2
github.com/prometheus/client_golang	1.11.0	1.11.1
google.golang.org/protobuf	1.27.1	1.33.0
golang.org/x/crypto	0.0.0-20210322153248-0c34fe9e7dc2	0.17.0
gopkg.in/yaml.v3	3.0.0-20210107192922-496545a6307b	3.0.0

Updates github.com/moby/moby from 20.10.7+incompatible to 24.0.9+incompatible

Release notes

Sourced from github.com/moby/moby's releases.

v24.0.9

24.0.9

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 24.0.9 milestone
• moby/moby, 24.0.9 milestone

Security

This release contains security fixes for the following CVEs affecting Docker Engine and its components.

CVE	Component	Fix version	Severity
CVE-2024-21626	runc	1.1.12	High, CVSS 8.6
CVE-2024-24557	Docker Engine	24.0.9	Medium, CVSS 6.9

Important ⚠️

Note that this release of Docker Engine doesn't include fixes for the following known vulnerabilities in BuildKit:

• CVE-2024-23651
• CVE-2024-23652
• CVE-2024-23653
• CVE-2024-23650

To address these vulnerabilities, upgrade to Docker Engine v25.0.2.

For more information about the security issues addressed in this release, and the unaddressed vulnerabilities in BuildKit, refer to the blog post. For details about each vulnerability, see the relevant security advisory:

• CVE-2024-21626
• CVE-2024-24557

Packaging updates

• Upgrade runc to v1.1.12. moby/moby#47269
• Upgrade containerd to v1.7.13 (static binaries only). moby/moby#47280

v24.0.8

24.0.8

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 24.0.8 milestone
• moby/moby, 24.0.8 milestone

Bug fixes and enhancements

• Live restore: Containers with auto remove (docker run --rm) are no longer forcibly removed on engine restart. moby/moby#46857

... (truncated)

Commits

• fca702d Merge pull request from GHSA-xw73-rw38-6vjc
• f78a772 Merge pull request #47281 from thaJeztah/24.0_backport_bump_containerd_binary...
• 61afffe Merge pull request #47270 from thaJeztah/24.0_backport_bump_runc_binary_1.1.12
• b38e74c Merge pull request #47276 from thaJeztah/24.0_backport_bump_runc_1.1.12
• dac5663 update containerd binary to v1.7.13
• 20e1af3 vendor: github.com/opencontainers/runc v1.1.12
• 858919d update runc binary to v1.1.12
• 141ad39 Merge pull request #47266 from vvoland/ci-fix-makeps1-templatefail-24
• db968c6 hack/make.ps1: Fix go list pattern
• 61c51fb Merge pull request #47221 from vvoland/pkg-pools-close-noop-24
• Additional commits viewable in compare view

Updates github.com/opencontainers/image-spec from 1.0.1 to 1.0.2

Release notes

Sourced from github.com/opencontainers/image-spec's releases.

v1.0.2

This release was voted on by the maintainers and PASSED (+5 -0 #2), to mitigate the CVE-2021-41190 advisory.

This release is rebased directly on the prior tagged release (not including the commits that have occurred on main). Corresponding commits have been added to main, such that main is ready for a future next release.

Commits

• 67d2d56 version: release 1.0.2
• dcdcb7f specs-go: adding mediaType to the index and manifest structures
• 5f31485 *.md: bring mediaType out of reserved status
• See full diff in compare view

Updates github.com/prometheus/client_golang from 1.11.0 to 1.11.1

Release notes

Sourced from github.com/prometheus/client_golang's releases.

1.11.1 / 2022-02-15

• [SECURITY FIX] promhttp: Check validity of method and code label values prometheus/client_golang#987 (Addressed CVE-2022-21698)

What's Changed

• promhttp: Check validity of method and code label values by @​bwplotka and @​kakkoyun in prometheus/client_golang#987

Full Changelog: prometheus/client_golang@v1.11.0...v1.11.1

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

Unreleased

1.19.0 / 2023-02-27

The module prometheus/common v0.48.0 introduced an incompatibility when used together with client_golang (See prometheus/client_golang#1448 for more details). If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.

• [CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445 #1449
• [FEATURE] collectors: Add version collector. #1422 #1427

1.18.0 / 2023-12-22

• [FEATURE] promlint: Allow creation of custom metric validations. #1311
• [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
• [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
• [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
• [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

1.17.0 / 2023-09-27

• [CHANGE] Minimum required go version is now 1.19 (we also test client_golang against new 1.21 version). #1325
• [FEATURE] Add support for Created Timestamps in Counters, Summaries and Historams. #1313
• [ENHANCEMENT] Enable detection of a native histogram without observations. #1314

1.16.0 / 2023-06-15

• [BUGFIX] api: Switch to POST for LabelNames, Series, and QueryExemplars. #1252
• [BUGFIX] api: Fix undefined execution order in return statements. #1260
• [BUGFIX] native histograms: Fix bug in bucket key calculation. #1279
• [ENHANCEMENT] Reduce constrainLabels allocations for all metrics. #1272
• [ENHANCEMENT] promhttp: Add process start time header for scrape efficiency. #1278
• [ENHANCEMENT] promlint: Improve metricUnits runtime. #1286

1.15.1 / 2023-05-3

• [BUGFIX] Fixed promhttp.Instrument* handlers wrongly trying to attach exemplar to unsupported metrics (e.g. summary),
  causing panics. #1253

1.15.0 / 2023-04-13

• [BUGFIX] Fix issue with atomic variables on ppc64le. #1171
• [BUGFIX] Support for multiple samples within same metric. #1181
• [BUGFIX] Bump golang.org/x/text to v0.3.8 to mitigate CVE-2022-32149. #1187
• [ENHANCEMENT] Add exemplars and middleware examples. #1173
• [ENHANCEMENT] Add more context to "duplicate label names" error to enable debugging. #1177
• [ENHANCEMENT] Add constrained labels and constrained variant for all MetricVecs. #1151
• [ENHANCEMENT] Moved away from deprecated github.com/golang/protobuf package. #1183
• [ENHANCEMENT] Add possibility to dynamically get label values for http instrumentation. #1066
• [ENHANCEMENT] Add ability to Pusher to add custom headers. #1218
• [ENHANCEMENT] api: Extend and improve efficiency of json-iterator usage. #1225
• [ENHANCEMENT] Added (official) support for go 1.20. #1234

... (truncated)

Commits

• 989baa3 promhttp: Check validity of method and code label values (#962) (#987)
• See full diff in compare view

Updates google.golang.org/protobuf from 1.27.1 to 1.33.0

Updates golang.org/x/crypto from 0.0.0-20210322153248-0c34fe9e7dc2 to 0.17.0

Commits

• See full diff in compare view

Updates golang.org/x/net from 0.0.0-20210520170846-37e1c6afe023 to 0.10.0

Commits

• See full diff in compare view

Updates golang.org/x/sys from 0.0.0-20210616094352-59db8d763f22 to 0.15.0

Commits

• See full diff in compare view

Updates golang.org/x/text from 0.3.6 to 0.14.0

Commits

• 6c97a16 all: update go directive to 1.18
• f488e19 unicode/norm: fix function name on comment
• fb697c0 cmd/gotext: actually use -dir flag
• f3e69ed cmd/gotext: fix misbehaviors
• ab07ad1 all: remove repetitive words
• e503480 encoding/japanese, language: shorten very long sub-test names
• 2df65d7 all: regenerate for Unicode 15.0.0
• e3c038a all: prepare for Unicode 15.0.0
• 3a7a255 internal/export/idna: make more space for mapping index
• d61dd50 go.mod: delete repeated "indirect"
• Additional commits viewable in compare view

Updates gopkg.in/yaml.v3 from 3.0.0-20210107192922-496545a6307b to 3.0.0

Updates github.com/moby/moby from 20.10.7+incompatible to 24.0.9+incompatible

Release notes

Sourced from github.com/moby/moby's releases.

v24.0.9

24.0.9

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 24.0.9 milestone
• moby/moby, 24.0.9 milestone

Security

This release contains security fixes for the following CVEs affecting Docker Engine and its components.

CVE	Component	Fix version	Severity
CVE-2024-21626	runc	1.1.12	High, CVSS 8.6
CVE-2024-24557	Docker Engine	24.0.9	Medium, CVSS 6.9

Important ⚠️

Note that this release of Docker Engine doesn't include fixes for the following known vulnerabilities in BuildKit:

• CVE-2024-23651
• CVE-2024-23652
• CVE-2024-23653
• CVE-2024-23650

To address these vulnerabilities, upgrade to Docker Engine v25.0.2.

For more information about the security issues addressed in this release, and the unaddressed vulnerabilities in BuildKit, refer to the blog post. For details about each vulnerability, see the relevant security advisory:

• CVE-2024-21626
• CVE-2024-24557

Packaging updates

• Upgrade runc to v1.1.12. moby/moby#47269
• Upgrade containerd to v1.7.13 (static binaries only). moby/moby#47280

v24.0.8

24.0.8

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 24.0.8 milestone
• moby/moby, 24.0.8 milestone

Bug fixes and enhancements

• Live restore: Containers with auto remove (docker run --rm) are no longer forcibly removed on engine restart. moby/moby#46857

... (truncated)

Commits

• fca702d Merge pull request from GHSA-xw73-rw38-6vjc
• f78a772 Merge pull request #47281 from thaJeztah/24.0_backport_bump_containerd_binary...
• 61afffe Merge pull request #47270 from thaJeztah/24.0_backport_bump_runc_binary_1.1.12
• b38e74c Merge pull request #47276 from thaJeztah/24.0_backport_bump_runc_1.1.12
• dac5663 update containerd binary to v1.7.13
• 20e1af3 vendor: github.com/opencontainers/runc v1.1.12
• 858919d update runc binary to v1.1.12
• 141ad39 Merge pull request #47266 from vvoland/ci-fix-makeps1-templatefail-24
• db968c6 hack/make.ps1: Fix go list pattern
• 61c51fb Merge pull request #47221 from vvoland/pkg-pools-close-noop-24
• Additional commits viewable in compare view

Updates github.com/opencontainers/image-spec from 1.0.1 to 1.0.2

Release notes

Sourced from github.com/opencontainers/image-spec's releases.

v1.0.2

This release was voted on by the maintainers and PASSED (+5 -0 #2), to mitigate the CVE-2021-41190 advisory.

This release is rebased directly on the prior tagged release (not including the commits that have occurred on main). Corresponding commits have been added to main, such that main is ready for a future next release.

Commits

• 67d2d56 version: release 1.0.2
• dcdcb7f specs-go: adding mediaType to the index and manifest structures
• 5f31485 *.md: bring mediaType out of reserved status
• See full diff in compare view

Updates google.golang.org/grpc from 1.39.1 to 1.64.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.56.3

Security

• server: prohibit more than MaxConcurrentStreams handlers from running at once (CVE-2023-44487)

  In addition to this change, applications should ensure they do not leave running tasks behind related to the RPC before returning from method handlers, or should enforce appropriate limits on any such work.

Release 1.56.2

• status: To fix a panic, status.FromError now returns an error with codes.Unknown when the error implements the GRPCStatus() method, and calling GRPCStatus() returns nil. (#6374)

Release 1.56.1

• client: handle empty address lists correctly in addrConn.updateAddrs

Release 1.56.0

New Features

• client: support channel idleness using WithIdleTimeout dial option (#6263)
  • This feature is currently disabled by default, but will be enabled with a 30 minute default in the future.
• client: when using pickfirst, keep channel state in TRANSIENT_FAILURE until it becomes READY (gRFC A62) (#6306)
• xds: Add support for Custom LB Policies (gRFC A52) (#6224)
• xds: support pick_first Custom LB policy (gRFC A62) (#6314) (#6317)
• client: add support for pickfirst address shuffling (gRFC A62) (#6311)
• xds: Add support for String Matcher Header Matcher in RDS (#6313)
• xds/outlierdetection: Add Channelz Logger to Outlier Detection LB (#6145)
  • Special Thanks: @​s-matyukevich
• xds: enable RLS in xDS by default (#6343)
• orca: add support for application_utilization field and missing range checks on several metrics setters
• balancer/weightedroundrobin: add new LB policy for balancing between backends based on their load reports (gRFC A58) (#6241)
• authz: add conversion of json to RBAC Audit Logging config (#6192)
• authz: add support for stdout logger (#6230 and #6298)
• authz: support customizable audit functionality for authorization policy (#6192 #6230 #6298 #6158 #6304 and #6225)

Bug Fixes

• orca: fix a race at startup of out-of-band metric subscriptions that would cause the report interval to request 0 (#6245)
• xds/xdsresource: Fix Outlier Detection Config Handling and correctly set xDS Defaults (#6361)
• xds/outlierdetection: Fix Outlier Detection Config Handling by setting defaults in ParseConfig() (#6361)

API Changes

• orca: allow a ServerMetricsProvider to be passed to the ORCA service and ServerOption (#6223)

Release 1.55.1

• status: To fix a panic, status.FromError now returns an error with codes.Unknown when the error implements the GRPCStatus() method, and calling GRPCStatus() returns nil. (#6374)

Release 1.55.0

Behavior Changes

• xds: enable federation support by default (#6151)
• status: status.Code and status.FromError handle wrapped errors (#6031 and #6150)

... (truncated)

Commits

• 1055b48 Update version.go to 1.56.3 (#6713)
• 5efd7bd server: prohibit more than MaxConcurrentStreams handlers from running at once...
• bd1f038 Upgrade version.go to 1.56.3-dev (#6434)
• faab873 Update version.go to v1.56.2 (#6432)
• 6b0b291 status: fix panic when servers return a wrapped error with status OK (#6374) ...
• ed56401 [PSM interop] Don't fail target if sub-target already failed (#6390) (#6405)
• cd6a794 Update version.go to v1.56.2-dev (#6387)
• 5b67e5e Update version.go to v1.56.1 (#6386)
• d0f5150 client: handle empty address lists correctly in addrConn.updateAddrs (#6354) ...
• 997c1ea Change version to 1.56.1-dev (#6345)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.27.1 to 1.34.2

Updates golang.org/x/crypto from 0.0.0-20210322153248-0c34fe9e7dc2 to 0.24.0

Commits

• See full diff in compare view

Updates golang.org/x/net from 0.0.0-20210520170846-37e1c6afe023 to 0.26.0

Commits

• See full diff in compare view

Updates golang.org/x/sys from 0.0.0-20210616094352-59db8d763f22 to 0.21.0

Commits

• See full diff in compare view

Updates golang.org/x/text from 0.3.6 to 0.16.0

Commits

• 6c97a16 all: update go directive to 1.18
• f488e19 unicode/norm: fix function name on comment
• fb697c0 cmd/gotext: actually use -dir flag
• f3e69ed cmd/gotext: fix misbehaviors
• ab07ad1 all: remove repetitive words
• e503480 encoding/japanese, language: shorten very long sub-test names
• 2df65d7 all: regenerate for Unicode 15.0.0
• e3c038a all: prepare for Unicode 15.0.0
• 3a7a255 internal/export/idna: make more space for mapping index
• d61dd50 go.mod: delete repeated "indirect"
• Additional commits viewable in compare view

Updates github.com/docker/docker from 20.10.7+incompatible to 27.0.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v24.0.9

24.0.9

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 24.0.9 milestone
• moby/moby, 24.0.9 milestone

Security

This release contains security fixes for the following CVEs affecting Docker Engine and its components.

CVE	Component	Fix version	Severity
CVE-2024-21626	runc	1.1.12	High, CVSS 8.6
CVE-2024-24557	Docker Engine	24.0.9	Medium, CVSS 6.9

Important ⚠️

Note that this release of Docker Engine doesn't include fixes for the following known vulnerabilities in BuildKit:

• CVE-2024-23651
• CVE-2024-23652
• CVE-2024-23653
• CVE-2024-23650

To address these vulnerabilities, upgrade to Docker Engine v25.0.2.

For more information about the security issues addressed in this release, and the unaddressed vulnerabilities in BuildKit, refer to the blog post. For details about each vulnerability, see the relevant security advisory:

• CVE-2024-21626
• CVE-2024-24557

Packaging updates

• Upgrade runc to v1.1.12. moby/moby#47269
• Upgrade containerd to v1.7.13 (static binaries only). moby/moby#47280

v24.0.8

24.0.8

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 24.0.8 milestone
• moby/moby, 24.0.8 milestone

Bug fixes and enhancements

• Live restore: Containers with auto remove (docker run --rm) are no longer forcibly removed on engine restart. moby/moby#46857

... (truncated)

Commits

• fca702d Merge pull request from GHSA-xw73-rw38-6vjc
• f78a772 Merge pull request #47281 from thaJeztah/24.0_backport_bump_containerd_binary...
• 61afffe Merge pull request #47270 from thaJeztah/24.0_backport_bump_runc_binary_1.1.12
• b38e74c Merge pull request #47276 from thaJeztah/24.0_backport_bump_runc_1.1.12
• dac5663 update containerd binary to v1.7.13
• 20e1af3 vendor: github.com/opencontainers/runc v1.1.12
• 858919d update runc binary to v1.1.12
• 141ad39 Merge pull request #47266 from vvoland/ci-fix-makeps1-templatefail-24
• db968c6 hack/make.ps1: Fix go list pattern
• 61c51fb Merge pull request #47221 from vvoland/pkg-pools-close-noop-24
• Additional commits viewable in compare view

Updates github.com/opencontainers/image-spec from 1.0.1 to 1.0.2

Release notes

Sourced from github.com/opencontainers/image-spec's releases.

v1.0.2

This release was voted on by the maintainers and PASSED (+5 -0 #2), to mitigate the CVE-2021-41190 advisory.

This release is rebased directly on the prior tagged release (not including the commits that have occurred on main). Corresponding commits have been added to main, such that main is ready for a future next release.

Commits

• 67d2d56 version: release 1.0.2
• dcdcb7f specs-go: adding mediaType to the index and manifest structures
• 5f31485 *.md: bring mediaType out of reserved status
• See full diff in compare view

Updates google.golang.org/grpc from 1.39.1 to 1.56.3

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.56.3

Security

• server: prohibit more than MaxConcurrentStreams handlers from running at once (CVE-2023-44487)

  In addition to this change, applications should ensure they do not leave running tasks behind related to the RPC before returning from method handlers, or should enforce appropriate limits on any such work.

Release 1.56.2

• status: To fix a panic, status.FromError now returns an error with codes.Unknown when the error implements the GRPCStatus() method, and calling GRPCStatus() returns nil. (#6374)

Release 1.56.1

• client: handle empty address lists correctly in addrConn.updateAddrs

Release 1.56.0

New Features

• client: support channel idleness using WithIdleTimeout dial option (#6263)
  • This feature is currently disabled by default, but will be enabled with a 30 minute default in the future.
• client: when using pickfirst, keep channel state in TRANSIENT_FAILURE until it becomes READY (gRFC A62) (#6306)
• xds: Add support for Custom LB Policies (gRFC A52) (#6224)
• xds: support pick_first Custom LB policy (gRFC A62) (#6314) (#6317)
• client: add support for pickfirst address shuffling (gRFC A62) (#6311)
• xds: Add support for String Matcher Header Matcher in RDS (#6313)
• xds/outlierdetection: Add Channelz Logger to Outlier Detection LB (#6145)
  • Special Thanks: @​s-matyukevich
• xds: enable RLS in xDS by default (#6343)
• orca: add support for application_utilization field and missing range checks on several metrics setters
• balancer/weightedroundrobin: add new LB policy for balancing between backends based on their load reports (gRFC A58) (#6241)
• authz: add conversion of json to RBAC Audit Logging config (#6192)
• authz: add support for stdout logger (#6230 and #6298)
• authz: support customizable audit functionality for authorization policy (#6192 #6230 #6298 #6158 #6304 and #6225)

Bug Fixes

• orca: fix a race at startup of out-of-band metric subscriptions that would cause the report interval to request 0 (#6245)
• xds/xdsresource: Fix Outlier Detection Config Handling and correctly set xDS Defaults (#6361)
• xds/outlierdetection: Fix Outlier Detection Config Handling by setting defaults in ParseConfig() (#6361)

API Changes

• orca: allow a ServerMetricsProvider to be passed to the ORCA service and ServerOption (#6223)

Release 1.55.1

• status: To fix a panic, status.FromError now returns an error with codes.Unknown when the error implements the GRPCStatus() method, and calling GRPCStatus() returns nil. (#6374)

Release 1.55.0

Behavior Changes

• xds: enable federation support by default (#6151)
• status: status.Code and status.FromError handle wrapped errors (#6031 and #6150)

... (truncated)

Commits

• 1055b48 Update version.go to 1.56.3 (#6713)
• 5efd7bd server: prohibit more than MaxConcurrentStreams handlers from running at once...
• bd1f038 Upgrade version.go to 1.56.3-dev (#6434)
• faab873 Update version.go to v1.56.2 (#6432)
• 6b0b291 status: fix panic when servers return a wrapped error with status OK (#6374) ...
• ed56401 [PSM interop] Don't fail target if sub-target already failed (#6390) (#6405)
• cd6a794 Update version.go to v1.56.2-dev (#6387)
• 5b67e5e Update version.go to v1.56.1 (#6386)
• d0f5150 client: handle empty address lists correctly in addrConn.updateAddrs (#6354) ...
• 997c1ea Change version to 1.56.1-dev (#6345)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.27.1 to 1.30.0

Updates golang.org/x/crypto from 0.0.0-20210322153248-0c34fe9e7dc2 to 0.17.0

Commits

• See full diff in compare view

Updates golang.org/x/net from 0.0.0-20210525063256-abc453219eb5 to 0.10.0

Commits

• See full diff in compare view

Updates golang.org/x/sys from 0.0.0-20210616094352-59db8d763f22 to 0.15.0

Commits

• See full diff in compare view

Updates golang.org/x/text from 0.3.6 to 0.14.0

Commits

• 6c97a16 all: update go directive to 1.18
• f488e19 unicode/norm: fix function name on comment
• fb697c0 cmd/gotext: actually use -dir flag
• f3e69ed cmd/gotext: fix misbehaviors
• ab07ad1 all: remove repetitive words
• e503480 encoding/japanese, language: shorten very long sub-test names
• 2df65d7 all: regenerate for Unicode 15.0.0
• e3c038a all: prepare for Unicode 15.0.0
• 3a7a255 internal/export/idna: make more space for mapping index
• d61dd50 go.mod: delete repeated "indirect"
• Additional commits viewable in compare view

Updates github.com/docker/cli from 20.10.7+incompatible to 20.10.9+incompatible

Commits

• c2ea9bc Merge pull request #3 from moby/20.10_backport_go_1.16.8
• 44fdac1 Update Go to 1.16.8
• 893e52c Merge pull request #2 from moby/cli-GHSA-99pg-grm5-qq3v-default-authconfig-20.10
• 62eae52 Merge pull request #3236 from thaJeztah/20.10_backport_bump_go_1.16.7
• 2012fbf Update Go to 1.16.7
• 42d1c02 registry: ensure default auth config has address
• 3967b7d Merge pull request #3224 from thaJeztah/20.10_backport_bump_go_1.16.6
• 0b924e5 Update to go1.16.6
• 6288e8b change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
• 1e9575e cli/config/configfile: various test cleanups
• Additional commits viewable in compare view

Updates github.com/docker/distribution from 2.7.1+incompatible to 2.8.2+incompatible

Release notes

Sourced from github.com/docker/distribution's releases.

v2.8.2

What's Changed

• Revert registry/client: set Accept: identity header when getting layers by @​ndeloof in distribution/distribution#3783
• Parse http forbidden as denied by @​vvoland in distribution/distribution#3914
• Fix CVE-2022-28391 by bumping alpine from 3.14 to 3.16 by @​thaJeztah (#3650)
• Fix CVE-20...

  Description has been truncated