chore(deps): bump the dev-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the dev-dependencies group with 2 updates in the / directory: github.com/hashicorp/consul/api and github.com/kubernetes-csi/csi-lib-utils.

Updates github.com/hashicorp/consul/api from 1.30.0 to 1.31.0

Commits

• 8e194ac Backport of Update API Group under backendRefs into release/1.20.x (#21965)
• 730a556 Backport of docs: fix broken link into release/1.20.x (#21977)
• c3707ea Backport of sec: bump envoy patch versions into release/1.20.x (#22025)
• f8a0bd0 Backport of chore: remove staff codeowners now that it requires mandatory rev...
• b453677 Backport of Suppress redhat linux CVEs into release/1.20.x (#22029)
• edebd4d Backport of [Security] Bump net packages to resolve GO-2024-3333 into release...
• d6b9514 Backport of Bump golang.org/x/crypto from 0.22.0 to 0.31.0 in /testing/deploy...
• 3df3d08 Backport of [Security] Bump crypto libraries into release/1.20.x (#22007)
• 5c36f1a Backport of Update CODEOWNER into release/1.20.x (#22018)
• 14c1c95 Backport of Update UBI Image into release/1.20.x (#22012)
• Additional commits viewable in compare view

Updates github.com/kubernetes-csi/csi-lib-utils from 0.19.0 to 0.20.0

Release notes

Sourced from github.com/kubernetes-csi/csi-lib-utils's releases.

v0.20.0

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.20.0/CHANGELOG/CHANGELOG-0.20.md

Commits

• d002ca2 Merge pull request #187 from dfajmon/changelog-1.20.0
• 72bdf88 Add changelog v0.20.0
• 0b6c8eb Merge pull request #185 from dfajmon/bump
• 2e9063a update kubernetes to 1.32
• ffe5305 Merge pull request #184 from huww98/update-proto
• b3b303b Merge pull request #186 from rhrmo/update_release_tools
• 84707c3 release-tools: update
• 3b6b90a Squashed 'release-tools/' changes from 98f23071..04965932
• 121e34e Merge pull request #183 from TerryHowe/prow-update-master
• a4d492b protosanitizer: recurse into all fields
• Additional commits viewable in compare view

Updates golang.org/x/net from 0.26.0 to 0.32.0

Commits

• 285e1cf go.mod: update golang.org/x dependencies
• d0a1049 route: remove unused sizeof* consts on freebsd
• 6e41410 http2: fix benchmarks using common frame read/write functions
• 4be1253 route: change from syscall to x/sys/unix
• bc37675 http2: limit number of PINGs bundled with RST_STREAMs
• e9cd716 route: fix parse of zero-length sockaddrs in RIBs
• 9a51899 http2: add SETTINGS_ENABLE_CONNECT_PROTOCOL support
• 334afa0 go.mod: update golang.org/x dependencies
• d7f220d quic: add LocalAddr and RemoteAddr to quic.Conn
• 858db1a http2: surface errors occurring very early in a client conn's lifetime
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.65.0 to 1.69.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.69.0

Known Issues

• The recently added grpc.NewClient function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (#7556)

New Features

• stats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (#7874)
• xdsclient: add support to fallback to lower priority servers when higher priority ones are down (#7701)
• dns: Add support for link local IPv6 addresses (#7889)
• The new experimental pickfirst LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in RFC-8305 section 4, to attempt connections to multiple backends concurrently. The experimental pickfirst policy can be enabled by setting the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST to true. (#7725, #7742)
• balancer/pickfirst: Emit metrics from the pick_first load balancing policy (#7839)
• grpc: export MethodHandler, which is the type of an already-exported field in MethodDesc (#7796)
  • Special Thanks: @​mohdjishin

Bug Fixes

• credentials/google: set scope for application default credentials (#7887)
  • Special Thanks: @​halvards
• xds: fix edge-case issues where some clients or servers would not initialize correctly or would not receive errors when resources are invalid or unavailable if another channel or server with the same target was already in use . (#7851, #7853)
• examples: fix the debugging example, which was broken by a recent change (#7833)

Behavior Changes

• client: update retry attempt backoff to apply jitter per updates to gRFC A6. (#7869)
  • Special Thanks: @​isgj
• balancer/weightedroundrobin: use the pick_first LB policy to manage connections (#7826)

API Changes

• balancer: An internal method is added to the balancer.SubConn interface to force implementors to embed a delegate implementation. This requirement is present in the interface documentation, but wasn't enforced earlier. (#7840)

Performance Improvements

• mem: implement a ReadAll() method for more efficient io.Reader consumption (#7653)
  • Special Thanks: @​ash2k
• mem: use slice capacity instead of length to determine whether to pool buffers or directly allocate them (#7702)
  • Special Thanks: @​PapaCharlie

Documentation

• examples/csm_observability: Add xDS Credentials and switch server to be xDS enabled (#7875)

Release 1.68.2

Dependencies

• Remove the experimental stats/opentelemetry module and instead add the experimental packages it contains directly into the main google.golang.org/grpc module (#7936)

Release 1.68.1

Bug Fixes

... (truncated)

Commits

• 317271b pickfirst: Register a health listener when used as a leaf policy (#7832)
• 5565631 balancer/pickfirst: replace grpc.Dial with grpc.NewClient in tests (#7879)
• 634497b test: Split import paths for generated message and service code (#7891)
• 78aa51b pickfirst: Stop test servers without closing listeners (#7872)
• 00272e8 dns: Support link local IPv6 addresses (#7889)
• 17d08f7 scripts/gen-deps: filter out grpc modules (#7890)
• ab189b0 examples/features/csm_observability: Add xDS Credentials (#7875)
• 3ce87dd credentials/google: Add cloud-platform scope for ADC (#7887)
• 3c0586a stats/opentelemetry: Cleanup OpenTelemetry API's before stabilization (#7874)
• 4c07bca stream: add jitter to retry backoff in accordance with gRFC A6 (#7869)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.34.2 to 1.36.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependencies.