build(deps): bump @grpc/grpc-js and newrelic

[dependabot]

Bumps @grpc/grpc-js to 1.10.9 and updates ancestor dependency newrelic. These dependencies need to be updated together.

Updates @grpc/grpc-js from 1.1.7 to 1.10.9

Release notes

Sourced from @​grpc/grpc-js's releases.

@​grpc/grpc-js 1.10.9

• Avoid buffering significantly more than grpc.max_receive_message_size per received message.

@​grpc/grpc-js 1.10.8

• Fix a bug that caused channels with unix: targets to not reconnect after the channel goes idle (#2750)

@​grpc/grpc-js 1.10.7

• Improve reporting of HTTP error codes (#2723)
• Update dependency on @grpc/proto-loader to the latest version (#2732)

@​grpc/grpc-js 1.10.6

• Fix a bug that could cause a server to sometimes send the status early (#2708)

@​grpc/grpc-js 1.10.5

• Resolve exception when Error.stackTraceLimit is undefined (#2701 contributed by @​davidfiala)
• Call configured checkServerIdentity when grpc.ssl_target_name_override is set (#2704)
• Add more information to DEADLINE_EXCEEDED error details strings (#2692)

@​grpc/grpc-js 1.10.4

• Fix a bug that caused server interceptors to crash when using partially-populated ResponderBuilder and ListenerBuilder objects (#2696)
• Avoid sending RST_STREAM from the client when the server has already finished its side of the stream (#2695)

@​grpc/grpc-js 1.10.3

• Revert client reconnection changes in #2680 (#2691)

@​grpc/grpc-js 1.10.2

• Implement server connection idle timeouts and improve channelz performance (#2677 contributed by @​AVVS)
• Fix a bug that caused clients to automatically reconnect even when there were no active requests (#2680)
• Modify order of server call events to more closely match pre-1.10.x behavior (#2683)

@​grpc/grpc-js 1.10.1

• Fix a bug causing channels using the round_robin LB policy to fail to reconnect after a connection drops (#2667)

@​grpc/grpc-js-xds 1.10.1

• Update dependency on @grpc/proto-loader to the latest version (#2732)

@​grpc/grpc-js-xds 1.10.0

• Implement gRFC A52: gRPC xDS Custom Load Balancer Configuration (#2555)
• Implement gRFC A42: xDS Ring Hash LB Policy (#2568)
  • Note: This feature is not compatible with Node 14 or below. To disable it in those versions, set the environment variable GRPC_XDS_EXPERIMENTAL_ENABLE_RING_HASH=false.
• Implement the xDS part of gRFC A62: pick_first: sticky TRANSIENT_FAILURE and address order randomization (Currently experimental, enabled by environment variable GRPC_EXPERIMENTAL_PICKFIRST_LB_CONFIG) (#2572)

@​grpc/grpc-js 1.10.0

Changelog

• Add server interceptors support (#2650) (details in gRFC L112)
• Deprecate Server#start (#2597) (details in gRFC L107)
• Add Server#unbind (#2612) (details in gRFC L109)
• Add Server#drain (#2616) (details in gRFC L111)
• Export type VerifyOptions (#2637 contributed by @​chakhsu)

... (truncated)

Commits

• 674f4e3 Merge pull request from GHSA-7v5v-9h63-cj86
• 7ecaa2d grpc-js: Bump to 1.10.9
• e64d816 grpc-js: Avoid buffering significantly more than max_receive_message_size per...
• 45e5fe5 Merge pull request #2750 from murgatroid99/grpc-js_idle_uds_fix
• 87a3541 grpc-js: Fix UDS channels not reconnecting after going idle
• 3105791 Merge pull request #2740 from sergiitk/backport-1.10-psm-interop-common-prod-...
• fec135a Merge pull request #2729 from sergiitk/psm-interop-common-prod-tests
• 76fe802 Merge pull request #2739 from murgatroid99/backport-1.10-grpc-js_linkify-it_fix
• d5edf49 Merge pull request #2735 from murgatroid99/grpc-js_linkify-it_fix
• 23c05fc Merge pull request #2732 from murgatroid99/grpc-js_proto-loader_update
• Additional commits viewable in compare view

Updates newrelic from 6.14.0 to 11.19.0

Release notes

Sourced from newrelic's releases.

v11.19.0 (2024-06-06)

Features

• Added instrumentation for kafkajs (enabled through a feature flag) (#2237) (#2244) (#2236) (#2236) (#2251)

Miscellaneous chores

• Added kafkajs instrumentation and versioned tests skeleton (#2224) (fc13916)
• Added kafkajs to compatibility list (#2254) (f003ee7)
• Implemented DT header injection for message specs (#2250) (3e6bc6d)
• Removed targets for kafka versioned tests (#2235) (838bab2)
• Updated flaky when test (#2241) (4079a0a)
• Updated readme to remove no longer relevant information (#2240) (01fb53c)
• Updated versioned tests due to update in @​newrelic/security-agent V1.3.0 (#2239) (982276c)

Tests

• Migrated memcached tests to versioned tests (#2231) (0b3a928)
• Ported when and q integration tests to versioned tests (#2233) (9a4dddc)
• Updated ioredis tests to assert the host metric getting created on ioredis calls (#2230) (89df06a)
• Updated unit tests that were missing constructing specs at instrumentation source (#2252) (54ab238)

Support statement:

We recommend updating to the latest agent version as soon as it's available. If you can't upgrade to the latest version, update your agents to a version no more than 90 days old. Read more about keeping agents up to date. (https://docs.newrelic.com/docs/new-relic-solutions/new-relic-one/install-configure/update-new-relic-agent/)

See the New Relic Node.js agent EOL policy for information about agent releases and support dates. (https://docs.newrelic.com/docs/apm/agents/nodejs-agent/getting-started/nodejs-agent-eol-policy/)

v11.18.0

Features

• Added support for redis v4 legacyMode client.v4.<command> (#2200) (b2284c5)

Code refactoring

• Updated shim.recordConsume to use shim.record and added ability to invoke an after hook with callback args (#2207) (4f48fc3)

Documentation

• Updated compatibility report (#2223) (a256ca0)

Miscellaneous chores

• Removed outdated Slack reference (#2198) (8110d42)
• Removed package-lock.json (#2208) (b267695)
• Removed unused express5 feature flag (#2197) (366504b)

... (truncated)

Changelog

Sourced from newrelic's changelog.

{ "repository": "newrelic/node-newrelic", "entries": [ { "version": "11.19.0", "changes": { "security": [], "bugfixes": [], "features": [ "Added instrumentation for kafkajs" ] } }, { "version": "11.18.0", "changes": { "security": [], "bugfixes": [], "features": [ "Added support for redis v4 legacyMode client.v4.<command>" ] } }, { "version": "11.17.0", "changes": { "security": [], "bugfixes": [ "Added support for AWS API Gateway v2 payloads", "Reverted openai instrumentation update to handle broken version of 4.40.1", "Updated instrumentation to handle the different exports in 4.40.1 of openai" ], "features": [ "Added otel compliant server.address, server.port, and http.request.method to external http spans", "Added otel compliant db.system, server.address, and server.port attributes to database spans" ] } }, { "version": "11.16.0", "changes": { "security": [ "bump formidable and superagent" ], "bugfixes": [ "Fixed issue with CJS being imported as ESM" ], "features": [ "Added API ignoreApdex to ignore calculating apdex for the active transaction", "Migrated @​newrelic/superagent into agent",

... (truncated)

Commits

• 7f6d1a8 chore: release v11.19.0 (#2256)
• f003ee7 chore: Added kafkajs to compatibility list (#2254)
• 3e6bc6d chore: Implemented DT header injection for message specs (#2250)
• 26003d6 feat: Added supportability metrics `Supportability/Features/Instrumentation/k...
• 54ab238 test: Updated unit tests that were missing constructing specs at instrumentat...
• 8b1fa5d feat: Added instrumentation for kafkajs.Kafka.consumer (#2244)
• 4079a0a chore: Updated flaky when test (#2241)
• b235529 feat: Added kafkajs producer instrumentation (#2236)
• 01fb53c chore: Updated readme to remove no longer relevant information (#2240)
• 982276c chore: Updated versioned tests due to update in @​newrelic/security-agent V1.3...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.