Bump the github-dependencies group with 4 updates

[dependabot]

Bumps the github-dependencies group with 4 updates: github.com/container-storage-interface/spec, google.golang.org/grpc, github.com/google/cel-go and github.com/prometheus/common.

Updates github.com/container-storage-interface/spec from 1.8.0 to 1.9.0

Release notes

Sourced from github.com/container-storage-interface/spec's releases.

v1.9.0

Breaking changes/Deprecations:

• None

Additions:

• spec ([PR #544](container-storage-interface/spec#544)): [Alpha] Introduce new ControllerModifyVolume RPC and a mutable_parameters field under existing CreateVolumeRequest RPC to enable modification of volume properties (e.g. IOPS, etc.) after volume creation.

Clarifications/Corrections/Fixes:

• spec ([PR #548](container-storage-interface/spec#548)): fix typo

Dependencies:

• spec ([PR #550](container-storage-interface/spec#550)): Updates genproto to use the isolated submodule to reduce overall dependency count and avoids future issues with ambiguous imports.

Full Changelog: container-storage-interface/spec@v1.8.0...v1.9.0

v1.9.0-rc1

No release notes provided.

Commits

• 80d5310 Merge pull request #550 from liggitt/genproto
• b0bb6fb Bump google.golang.org/genproto to use isolated rpc submodule
• 9ff6982 Merge pull request #544 from sunnylovestiramisu/kep-3751
• c918b7f Modify wording based on comments on August 3rd
• 3e57adf Modify wording based on comments on July 25th
• 6eaead6 Modify wording based on comments on July 24th
• c6f94f6 Spec ModifyVolume for QoS kep-3751
• 98031ee Merge pull request #548 from sunnylovestiramisu/fixErrorCode
• fea044c Fix Error Code NOT_FOUND Typo
• b01039c Bump master version to 1.9 for next release
• See full diff in compare view

Updates google.golang.org/grpc from 1.58.3 to 1.59.0

Commits

• 7765221 Change version to 1.59.0 (#6695)
• e88f12e server: prohibit more than MaxConcurrentStreams handlers from running at once...
• be7919c transport: Pass Header metadata to tap handle. (#6652)
• e3f1514 Reapply "status: fix/improve status handling (#6662)" (#6673) (#6688)
• 696faa9 client: add a test for NewSubConn / StateListener / cc.Close racing (#6678)
• 318c717 readme: fix badges (#6687)
• 39972fd github: add code coverage with codecov.io (#6676)
• 93dbc05 xds: move virtual host matcher test to the xdsresource package (#6680)
• 2c00469 github: update actions/setup-go and actions/checkout (#6675)
• 1f73ed5 Replace the gRFC pull request with the permanent link. (#6674)
• Additional commits viewable in compare view

Updates github.com/google/cel-go from 0.16.1 to 0.18.1

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.18.1

What's Changed

• Add support for a relative offset within ast.SourceInfo by #836
• Fix last optional element to be retained as an optional index while folding #841
• Fix deprecation notice for string format validation #840
• Update cel-spec and enable wrappers conformance tests #842
• refactor: remove lexer and parser pools #838

New Contributors

• @​TulgaCG made their first contribution in google/cel-go#835
• @​aimuz made their first contribution in google/cel-go#838

Full Changelog: google/cel-go@v0.18.0...v0.18.1

Release v0.18.0

Features

The latest release of CEL introduces validators (#775) and optimizers (#804, #827) and migrates the core CEL internals off of the protobuf expression and type representations (#789).

• String format validator #775
• Create a Function that Reverses a String #796
• Introduce pre-order / post-order visitor pattern #813
• Add Libraries() function to Env #822
• Static optimizer for constant folding #804
• Inlining optimizer #827
• FindStructTypeFields support for types.Provider #814

Breaking Changes

The following PR changes the API signature of the checker.AstNode method Expr to return an ast.Expr.

• Migrate the checker.Coster to the ast.Expr #798

Fixes

• Nil safety checks for cel.Ast #784
• Fix cost estimates to propagate result sizes #787
• Catch invalid literals created from expression factories #810
• Ensure stable ordering of overload candidates #817
• Clarify replace with/by empty string #820
• Fix functional exemptions for homogeneous literal checks #832
• Fix logical operator folding that only involve literals #833
• Upgrade go-genproto to latest #831

New Contributors

• @​bboogler made their first contribution in google/cel-go#796

... (truncated)

Commits

• 5840875 refactor: remove lexer and parser pools (#838)
• f719bfa Update cel-spec and enable wrappers conformance tests (#842)
• 2de55a4 Fix deprecaation notice for string format validation (#840)
• 89b799e Fix last optional element to be retained as an optional index while folding (...
• ea648d7 Add support for a relative offset within ast.SourceInfo (#836)
• 92e92b5 Fix typo in the README.md (#835)
• 5db3640 Inlining optimizer (#827)
• 8943046 Upgrade go-genproto to latest (#831)
• 4eebcf3 Fix logical operator folding that only involve literals (#833)
• bfccebd Fix functional exemptions for homogeneous literal checks (#832)
• Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.44.0 to 0.45.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.45.0

What's Changed

• Adding support for file based configuration of basic auth username in http client config by @​wasim-nihal in prometheus/common#511
• Bump golang.org/x/net from 0.10.0 to 0.12.0 by @​dependabot in prometheus/common#507
• Add read-only token permissions by @​pnacht in prometheus/common#490
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#495
• Update client_golang by @​SuperQ in prometheus/common#513
• Bump golang.org/x/oauth2 from 0.8.0 to 0.12.0 by @​dependabot in prometheus/common#514
• Bump github.com/aws/aws-sdk-go from 1.44.266 to 1.45.18 in /sigv4 by @​dependabot in prometheus/common#515
• Bump github.com/prometheus/client_golang from 1.15.1 to 1.17.0 in /sigv4 by @​dependabot in prometheus/common#516
• Bump github.com/stretchr/testify from 1.8.2 to 1.8.4 in /sigv4 by @​dependabot in prometheus/common#493
• Update golang_protobuf_extensions to v2 by @​Neo2308 in prometheus/common#509
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#518
• Bump github.com/aws/aws-sdk-go from 1.45.18 to 1.45.19 in /sigv4 by @​dependabot in prometheus/common#519
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#520
• Bump golang.org/x/net from 0.15.0 to 0.17.0 in /sigv4 by @​dependabot in prometheus/common#525
• Bump golang.org/x/net from 0.15.0 to 0.17.0 by @​dependabot in prometheus/common#524

New Contributors

• @​wasim-nihal made their first contribution in prometheus/common#511
• @​pnacht made their first contribution in prometheus/common#490
• @​Neo2308 made their first contribution in prometheus/common#509

Full Changelog: prometheus/common@v0.44.0...v0.45.0

Commits

• c59927e Merge pull request #524 from prometheus/dependabot/go_modules/golang.org/x/ne...
• 1f9b004 Bump golang.org/x/net from 0.15.0 to 0.17.0
• 16f9480 Merge pull request #525 from prometheus/dependabot/go_modules/sigv4/golang.or...
• ff99062 Bump golang.org/x/net from 0.15.0 to 0.17.0 in /sigv4
• 7043ea0 Merge pull request #520 from prometheus/repo_sync
• b6914dd Update common Prometheus files
• f4e05c0 Merge pull request #519 from prometheus/dependabot/go_modules/sigv4/github.co...
• eb60b9b Bump github.com/aws/aws-sdk-go from 1.45.18 to 1.45.19 in /sigv4
• ac62eb7 Merge pull request #518 from prometheus/repo_sync
• 777f9cc Update common Prometheus files
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.