build(deps): bump the production-dependencies group across 1 directory with 2 updates

[dependabot]

Bumps the production-dependencies group with 2 updates in the / directory: github.com/google/cel-go and google.golang.org/grpc.

Updates github.com/google/cel-go from 0.24.1 to 0.25.0

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.25.0

Features & Enhancements

This release introduces features for richer configuration-based CEL, AI prompt generation from config files, additional documentation, and 3x performance when evaluating traced / state-tracking expressions. This release also introduces a unit test runner framwork.

#1141: Expose extension option factory as a public method

#1143: Add a new compiler tool which can be used to compile CEL expressions and policies using serialized environment

#1151: Lightweight observable evaluation

#1155: Utilities for formatting and parsing documentation strings

#1156: Support for documentation and example strings in CEL environments

#1158: Re-export interpreter.AttributePattern in package cel.

#1159: Document the standard library macros and functions

#1160: Prompt generation for AI-assisted authoring based on a CEL environment

#1117: Add LateFunctionBinding declaration and fix constant folding

#1163: Initialize stateful observers prior to evaluation

#1164: Unparse Expr values to strings

#1149: Add test runner library

#1167: REPL: Add an extension option for two var comprehensions

Fixes

Several fixes were implemented, including updating strings.format to better adhere to the specification, correcting constant folding logic alongside the late binding feature, removing a non-functional check in test code, and adding argument count validation for optFieldSelect.

#1133: Update strings.format to adhere to the specification

#1117: Add LateFunctionBinding declaration and fix constant folding

#1161: Remove non-functional optional check in test-only selection

#1168: Check arg count when validating optFieldSelect

Refactoring & Internal Improvements

General refactoring was performed across the codebase. Coverage and comments for Activation methods were improved. The test runner library was refactored to create options from flags and improve code structure.

#1145: Refactoring changes

#1150: Additional comments and coverage for Activation methods

... (truncated)

Commits

• 9d29b7f Refactoring changes to create a test runner option from passed flags, correct...
• 5f44021 Check arg count when validating optFieldSelect (#1168)
• 5de96a5 Add two var comprehensions to repl (#1167)
• 2aa9572 Add test runner library (#1149)
• 13e5296 Unparse Expr values to strings (#1164)
• 3da6139 Initial stateful observers prior to evaluation (#1163)
• 55657d8 Document optional library and increase docs coverage (#1162)
• 0f9133d Add LateFunctionBinding declaration and fix constant folding (#1117)
• 6b7ecea Remove non-functional optional test in field selection (#1161)
• 94b45f0 Prompt generation for AI-assisted authoring based on a CEL environment (#1160)
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.71.1 to 1.72.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.72.0

Dependencies

• Minimum supported Go version is now 1.23 (#8108)

API Changes

• resolver: add experimental AddressMapV2 with generics to ultimately replace AddressMap. Deprecate AddressMap for deletion (#8187)
• resolver: convert EndpointMap in place to use generics (#8189)

New Features

• xds: add grpc.xds_client.server_failure counter metric on xDS client to record connectivity errors (#8203)
• balancer/rls: allow maxAge to exceed 5 minutes if staleAge is set in the LB policy configuration (#8137)
• ringhash: implement gRFC A76 improvements. (#8159)

Bug Fixes

• xds: fix support for circuit breakers and load reporting in LOGICAL_DNS clusters (#8169, #8170)
• xds/cds: improve RPC error messages when resources are not found (#8122)
• balancer/priority: fix race that could leak balancers and goroutines during shutdown (#8095)
• stats/opentelemetry: fix trace attributes message sequence numbers to start from 0 (#8237)
• balancer/pickfirstleaf: fix panic if deprecated Address.Metadata field is set to a non-comparable value by ignoring the field (#8227)

Behavior Changes

• transport: make servers send an HTTP/2 RST_STREAM frame to cancel a stream when the deadline expires (#8071)

Documentation

• stats: clarify the expected sequence of events on a stats handler (#7885)
  • Special Thanks: @​RyanBlaney

Commits

• a43eba6 Change version to 1.72.0 (#8218)
• 48f48c1 balancer/pickfirstleaf: Avoid reading Address.Metadata (#8227) (#8259)
• fd6f585 Cherry-pick #8159 and #8243 to v1.72.x (#8255)
• 79ca174 stats/opentelemetry: fix trace attributes message sequence numbers to start f...
• 57a2605 xdsclient: fix TestServerFailureMetrics_BeforeResponseRecv test to wait for w...
• 5edab9e xdsclient: add grpc.xds_client.server_failure counter mertric (#8203)
• 78ba661 regenerate protos (#8208)
• 6819ed7 delegatingresolver: Stop calls into delegates once the parent resolver is clo...
• a51009d resolver: convert EndpointMap to use generics (#8189)
• b0d1203 resolver: create AddressMapV2 with generics to replace AddressMap (#8187)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions