build(deps): bump the examples-ext-authz group across 1 directory with 2 updates

[dependabot]

Bumps the examples-ext-authz group with 2 updates in the /ext_authz/auth/grpc-service directory: github.com/envoyproxy/go-control-plane and google.golang.org/grpc.

Updates github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.2

Release notes

Sourced from github.com/envoyproxy/go-control-plane's releases.

xdsmatcher/v0.13.2

New releasing model

The go-control-plane repository is now released as multiple independent packages:

• github.com/envoyproxy/go-control-plane (this release), including the core components such as cache and server
• github.com/envoyproxy/go-control-plane/envoy and github.com/envoyproxy/go-control-plane/contrib for envoy API go generated files
• github.com/envoyproxy/go-control-plane/ratelimit and github.com/envoyproxy/go-control-plane/xdsmatcher as independent components for specific use-cases

What's Changed

No change for xdsmatcher

Full Changelog: envoyproxy/go-control-plane@v0.13.1...xdsmatcher/v0.13.2

v0.13.2

New releasing model

The go-control-plane repository is now released as multiple independent packages:

• github.com/envoyproxy/go-control-plane (this release), including the core components such as cache and server
• github.com/envoyproxy/go-control-plane/envoy and github.com/envoyproxy/go-control-plane/contrib for envoy API go generated files
• github.com/envoyproxy/go-control-plane/ratelimit and github.com/envoyproxy/go-control-plane/xdsmatcher as independent components for specific use-cases

What's Changed

• clean up: use only goimports with golangci-lint by @​mmorel-35 in envoyproxy/go-control-plane#1030
• build(deps): Bump github/codeql-action from 3.26.6 to 3.27.0 by @​dependabot in envoyproxy/go-control-plane#1031
• build(deps): Bump actions/checkout from 4.1.6 to 4.2.2 by @​dependabot in envoyproxy/go-control-plane#1032
• build(deps): Bump actions/upload-artifact from 4.4.0 to 4.4.3 by @​dependabot in envoyproxy/go-control-plane#1024
• build(deps): Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by @​dependabot in envoyproxy/go-control-plane#1019
• Fix panic in case the resourceType is not know by the caches by @​alandiegosantos in envoyproxy/go-control-plane#1036
• build(deps): Bump golang from 1.21 to 1.22 by @​dependabot in envoyproxy/go-control-plane#879
• build(deps): Bump google.golang.org/grpc from 1.65.0 to 1.67.1 in /examples/dyplomat by @​dependabot in envoyproxy/go-control-plane#1018
• build(deps): Bump google.golang.org/protobuf from 1.34.2 to 1.35.2 in /xdsmatcher by @​dependabot in envoyproxy/go-control-plane#1048
• build(deps): Bump github/codeql-action from 3.27.0 to 3.27.4 by @​dependabot in envoyproxy/go-control-plane#1047
• build(deps): Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /xdsmatcher by @​dependabot in envoyproxy/go-control-plane#1054
• build(deps): Bump github/codeql-action from 3.27.4 to 3.27.5 by @​dependabot in envoyproxy/go-control-plane#1053
• build(deps): Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by @​dependabot in envoyproxy/go-control-plane#1052
• build(deps): Bump github/codeql-action from 3.27.5 to 3.27.6 by @​dependabot in envoyproxy/go-control-plane#1059
• chore(deps): upgrade golang version to 1.22.8 by @​lukidzi in envoyproxy/go-control-plane#1038
• Support multi-module releases in go-control-plane by @​alecholmez in envoyproxy/go-control-plane#714
• Create releases for go-control-plane (0.13.2) and envoy API (1.32.2) by @​valerian-roche in envoyproxy/go-control-plane#1073

New Contributors

• @​alandiegosantos made their first contribution in envoyproxy/go-control-plane#1036
• @​lukidzi made their first contribution in envoyproxy/go-control-plane#1038

Full Changelog: envoyproxy/go-control-plane@v0.13.1...v0.13.2

Commits

• 2cdf9fc Create releases for go-control-plane (0.13.2) and envoy API (1.32.2) (#1073)
• 51be4de Support multi-module releases in go-control-plane (#714)
• 3d32301 Mirrored from envoyproxy/envoy @ 2fcdcf4b572de4908423b60022359fab7c4553b2
• 6b2745d Mirrored from envoyproxy/envoy @ aba0fe82f7e6a98ccd896c63a888f01722696a1a
• 77054d8 Mirrored from envoyproxy/envoy @ 640fcc0f2637c50c51bdd831de26c588debc9277
• a6641e4 Mirrored from envoyproxy/envoy @ b9c4ff2da2a91feb263eda5f39bc7e8307a669ee
• f011ad8 Mirrored from envoyproxy/envoy @ 857107b72abdf62690b7a1c69f9a3684d57f5f3e
• 7617723 Mirrored from envoyproxy/envoy @ cac9b87e9c0cd10eafc64817130c27c567395f4d
• 1a55f81 Mirrored from envoyproxy/envoy @ daaf6658d422d081d209fb1e2be3e840bef108f9
• 3f43cee Mirrored from envoyproxy/envoy @ 9d9569037798db45a1fa2454e31726053ae1e268
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.67.1 to 1.69.2

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.69.2

Bug Fixes

• stats/experimental: add type aliases for symbols (Metrics/etc) that were moved to the stats package (#7929).
• client: set user-agent string to the correct version.

Release 1.69.0

Known Issues

• The recently added grpc.NewClient function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (#7556)

New Features

• stats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (#7874)
• xdsclient: add support to fallback to lower priority servers when higher priority ones are down (#7701)
• dns: Add support for link local IPv6 addresses (#7889)
• The new experimental pickfirst LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in RFC-8305 section 4, to attempt connections to multiple backends concurrently. The experimental pickfirst policy can be enabled by setting the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST to true. (#7725, #7742)
• balancer/pickfirst: Emit metrics from the pick_first load balancing policy (#7839)
• grpc: export MethodHandler, which is the type of an already-exported field in MethodDesc (#7796)
  • Special Thanks: @​mohdjishin

Bug Fixes

• credentials/google: set scope for application default credentials (#7887)
  • Special Thanks: @​halvards
• xds: fix edge-case issues where some clients or servers would not initialize correctly or would not receive errors when resources are invalid or unavailable if another channel or server with the same target was already in use . (#7851, #7853)
• examples: fix the debugging example, which was broken by a recent change (#7833)

Behavior Changes

• client: update retry attempt backoff to apply jitter per updates to gRFC A6. (#7869)
  • Special Thanks: @​isgj
• balancer/weightedroundrobin: use the pick_first LB policy to manage connections (#7826)

API Changes

• balancer: An internal method is added to the balancer.SubConn interface to force implementors to embed a delegate implementation. This requirement is present in the interface documentation, but wasn't enforced earlier. (#7840)

Performance Improvements

• mem: implement a ReadAll() method for more efficient io.Reader consumption (#7653)
  • Special Thanks: @​ash2k
• mem: use slice capacity instead of length to determine whether to pool buffers or directly allocate them (#7702)
  • Special Thanks: @​PapaCharlie

Documentation

• examples/csm_observability: Add xDS Credentials and switch server to be xDS enabled (#7875)

Release 1.68.2

Dependencies

... (truncated)

Commits

• b615b35 Change version to 1.69.2 (#7947)
• 6b36a3e experimental/stats: re-add type aliases for migration (#7929) (#7941)
• 4535c6d Change version to 1.69.2-dev (#7928)
• b6e7c72 examples/features/csm_observability: Make CSM Observability example server li...
• 9355fbc Change version to 1.69.1 (#7927)
• 927a1e1 Change version to 1.69.1-dev (#7902)
• 97d633a Change version to 1.69.0 (#7901)
• 317271b pickfirst: Register a health listener when used as a leaf policy (#7832)
• 5565631 balancer/pickfirst: replace grpc.Dial with grpc.NewClient in tests (#7879)
• 634497b test: Split import paths for generated message and service code (#7891)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #418.