build(deps): bump the go-mod group with 9 updates

[dependabot]

Bumps the go-mod group with 9 updates:

Package	From	To
github.com/authzed/authzed-go	0.15.0	0.16.0
github.com/authzed/spicedb	1.35.3	1.37.0
github.com/hamba/avro/v2	2.25.2	2.26.0
github.com/jzelinskie/cobrautil/v2	2.0.0-20240816002907-ef0e64d7f25b	2.0.0-20240819150235-f7fe73942d0f
github.com/schollz/progressbar/v3	3.15.0	3.16.0
golang.org/x/exp	0.0.0-20240506185415-9bf2ced13842	0.0.0-20240904232852-e7e105dedf7e
golang.org/x/mod	0.20.0	0.21.0
google.golang.org/genproto/googleapis/rpc	0.0.0-20240814211410-ddb44dafa142	0.0.0-20240903143218-8af14fe29dc1
google.golang.org/grpc	1.66.2	1.67.1

Updates github.com/authzed/authzed-go from 0.15.0 to 0.16.0

Release notes

Sourced from github.com/authzed/authzed-go's releases.

v0.16.0

This release brings ImportBulk and ExportBulk into the PermissionsService.

What's Changed

• Bump github.com/golangci/golangci-lint from 1.60.1 to 1.60.3 in the go-mod group by @​dependabot in authzed/authzed-go#234
• Bump the go-mod-magefiles group in /magefiles with 2 updates by @​dependabot in authzed/authzed-go#233
• Bump github.com/bufbuild/buf from 1.38.0 to 1.39.0 in /magefiles in the go-mod-magefiles group by @​dependabot in authzed/authzed-go#236
• Bump google.golang.org/grpc from 1.65.0 to 1.66.0 in the go-mod group by @​dependabot in authzed/authzed-go#235
• Take security patch in 1.22.7 by @​tstirrat15 in authzed/authzed-go#238
• Bump the go-mod group with 3 updates by @​dependabot in authzed/authzed-go#241
• Add a test, add to README, add test running by @​tstirrat15 in authzed/authzed-go#245
• Bump to API Version 1.37 by @​tstirrat15 in authzed/authzed-go#242

New Contributors

• @​tstirrat15 made their first contribution in authzed/authzed-go#238

Full Changelog: authzed/authzed-go@v0.15.0...v0.16.0

Commits

• baaa202 Merge pull request #242 from authzed/prerelease-of-1.37-api-version
• 73640f4 Regen with v1.37.0
• 6518ffb Reference v1.37.0 tag
• 2bef414 Commit new protofiles
• 0676603 Bump to prerelease version
• 0ea975c Remove golangci-lint
• a5385a7 Add a pre-commit for the repo
• 565e8c2 Add pre-commit config for yamllint
• a35ee9d Use v2 of buf.gen.yaml
• 89e4ea5 Merge pull request #245 from authzed/add-documentation-of-insecure-client
• Additional commits viewable in compare view

Updates github.com/authzed/spicedb from 1.35.3 to 1.37.0

Release notes

Sourced from github.com/authzed/spicedb's releases.

v1.37.0

What's Changed

• Bump to most recent version of goreleaser by @​tstirrat15 in authzed/spicedb#2067
• Add support for secondary dispatching on LR2 by @​josephschorr in authzed/spicedb#2069
• README: rework sections: zanzibar, contrib, users by @​jzelinskie in authzed/spicedb#2060
• Stop using yaml anchors in release action configuration by @​tstirrat15 in authzed/spicedb#2071
• make bulk export service functions use read-only datastore by @​vroldanbet in authzed/spicedb#2072
• Fix serve-devtools command and flags by @​tstirrat15 in authzed/spicedb#2073
• Register common flags with helper by @​tstirrat15 in authzed/spicedb#2074
• fixes memory leak via HTTP Gateway by @​vroldanbet in authzed/spicedb#2075
• Enable LRv2 by default and update the steelthread tests by @​josephschorr in authzed/spicedb#2079
• Remove duplicate and redundant code by @​cuishuang in authzed/spicedb#2080

New Contributors

• @​cuishuang made their first contribution in authzed/spicedb#2080

Full Changelog: authzed/spicedb@v1.36.3...v1.37.0

v1.36.2

This fixes a small issue with the spicedb datastore head command but is otherwise the same as https://github.com/authzed/spicedb/releases/tag/v1.36.0

Full Changelog: authzed/spicedb@v1.36.0...v1.36.2

Docker Images

This release is available at authzed/spicedb:v1.36.2, quay.io/authzed/spicedb:v1.36.2, ghcr.io/authzed/spicedb:v1.36.2

v1.36.0

Highlights

🔐  Added relationship integrity: protects authorization data in an underlying SpiceDB datastore from inadvertent modification. :clipboard: Reorganized spicedb serve flags into logically-related flagsets :speedboat: Ensure cursored LRv2 calls are dispatched to LRv2

Features

• Relationship integrity by @​josephschorr in #1980
• Implement non-experimental bulk import and export by @​tstirrat15 in #2065

Enhancements

• Ensure cursored LRv2 calls are dispatched to LRv2 by @​josephschorr in #2040
• Ensure the validationfile loader passes the full caveats to the typesystem by @​josephschorr in #2042
• Check data structure improvements by @​josephschorr in #2037
• Reorganize serve flags into flagsets by @​tstirrat15 in #2023
• Add a default connect timeout for watch in CRDB driver by @​josephschorr in #2041
• Have diffexpr handle the case of adding to a single child expression by @​josephschorr in #2038
• Add configurable max buffer size for watch change tracker by @​josephschorr in #2044
• Add continuous checkpointing to Datastore Features by @​vroldanbet in #2064
• Add analyzer to enforce usage of VT versions of marshalling and unmarshalling by @​tstirrat15 in #2043
• Make the max size exceeded error public by @​josephschorr in #2049
• Add goreleaser configuration to push Windows package to Chocolatey by @​josephschorr in #1879

... (truncated)

Commits

• 0d882c7 Merge pull request #2080 from cuishuang/main
• 6d9495c Remove duplicate and redundant code
• 89dcca1 Merge pull request #2079 from josephschorr/enable-lr2-default
• 320dae5 Enable LRv2 by default and update the steelthread tests
• 7f6f270 Merge pull request #2075 from authzed/http-otel-leak
• 6e09243 fixes memory leak via HTTP Gateway
• c0ba134 Merge pull request #2074 from authzed/register-common-flags
• aef7490 Use new registration function
• e5323c5 Add utility to register common flags
• 09492d7 Merge pull request #2073 from authzed/fix-serve-devtools-command
• Additional commits viewable in compare view

Updates github.com/hamba/avro/v2 from 2.25.2 to 2.26.0

Release notes

Sourced from github.com/hamba/avro/v2's releases.

v2.26.0

What's Changed

• Feat: add schema custom props as Gen template parameters by @​redaLaanait in hamba/avro#445
• feat: use verbose schema for encoders by @​vdorokhin in hamba/avro#446
• Fix: record MarshalJSON in case of default record with nullable field by @​redaLaanait in hamba/avro#451
• Fix: decode in the case of field missing in both writer binary and reader struct. by @​redaLaanait in hamba/avro#452

New Contributors

• @​vdorokhin made their first contribution in hamba/avro#446

Full Changelog: hamba/avro@v2.25.2...v2.26.0

Commits

• 571d881 fix: decode in the case of field missing in both writer binary and reader str...
• 84f98c7 fix: record MarshalJSON in case of default record with nullable field (#451)
• a6c674d feat: use verbose schema for encoders (#446)
• 6edc7d3 feat: add schema custom props as gen template parameters (#445)
• See full diff in compare view

Updates github.com/jzelinskie/cobrautil/v2 from 2.0.0-20240816002907-ef0e64d7f25b to 2.0.0-20240819150235-f7fe73942d0f

Commits

• See full diff in compare view

Updates github.com/schollz/progressbar/v3 from 3.15.0 to 3.16.0

Release notes

Sourced from github.com/schollz/progressbar/v3's releases.

v3.16.0

What's Changed

• feat: make progressbar could update according to an interval or updat… by @​chengxilo in schollz/progressbar#199

Full Changelog: schollz/progressbar@v3.15.0...v3.16.0

Commits

• f1b3580 Merge pull request #199 from chengxilo/update-spinner
• 3d93361 feat: update the test.Now the actual is what the output would be like in the ...
• efe17f0 fix:according to renderProgressBar, only update spinner when ignore length.
• fbe274c fix:check whether the progressbar is visible before start the spinner change ...
• 12ba16a import virtualterm for testing.
• 5ad50c6 feat: make progressbar could update according to an interval or update each t...
• See full diff in compare view

Updates golang.org/x/exp from 0.0.0-20240506185415-9bf2ced13842 to 0.0.0-20240904232852-e7e105dedf7e

Commits

• See full diff in compare view

Updates golang.org/x/mod from 0.20.0 to 0.21.0

Commits

• 46a3137 zip: set GIT_DIR in test when using bare repositories
• 3afcd4e go.mod: set go version to 1.22.0
• b1d336c go.mod: update required go version to go1.22
• See full diff in compare view

Updates google.golang.org/genproto/googleapis/rpc from 0.0.0-20240814211410-ddb44dafa142 to 0.0.0-20240903143218-8af14fe29dc1

Commits

• See full diff in compare view

Updates google.golang.org/grpc from 1.66.2 to 1.67.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.67.1

Bug Fixes

• transport: Fix a bug causing stream failures due to miscalculation of the flow control window in both clients and servers. (#7667)
• xds/server: Fix xDS Server memory leak. (#7681)

Release 1.67.0

Bug Fixes

• ringhash: when used with multiple EDS priorities, fix bug that could prevent a higher priority from recovering from transient failure. (#7364)
  • Special Thanks: @​atollena

Behavior Changes

• In accordance with RFC 7540, clients and servers will now reject TLS connections that don't support ALPN. This can be disabled by setting the environment variable GRPC_ENFORCE_ALPN_ENABLED to false (case insensitive). Please file a bug if you encounter any issues with this behavior. The environment variable to revert this behavior will be removed in an upcoming release. (#7535)

Commits

• 3f95b38 Update version to 1.67.1 (#7682)
• 4f6c5f2 xds/server: Fix xDS Server leak (#7664) (#7681)
• 935f8cb transport: Fix reporting of bytes read while reading headers (#7660) (#7667)
• 02bbb65 Change version to 1.67.1-dev (#7605)
• 6f50403 Change version to 1.67.0 (#7604)
• 3c3a025 mem: replace flate.Reader reference (#7595) (#7637)
• 3ffb98b .*: fix revive lints redefines-builtin-id (#7552)
• 5666049 vet: enforce revive linter (#7589)
• c6ad07f protoc: regenerate protos (#7590)
• 70f19ee credentials/tls: default GRPC_ENFORCE_ALPN_ENABLED to true (#7535)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions