Bump github.com/hashicorp/consul/api from 1.11.0 to 1.18.0

[dependabot]

Bumps github.com/hashicorp/consul/api from 1.11.0 to 1.18.0.

Release notes

Sourced from github.com/hashicorp/consul/api's releases.

v1.14.3

1.14.3 (December 13, 2022)

SECURITY:

• Upgrade to use Go 1.19.4. This resolves a vulnerability where restricted files can be read on Windows. CVE-2022-41720 [GH-15705]
• Upgrades golang.org/x/net to prevent a denial of service by excessive memory usage caused by HTTP2 requests. CVE-2022-41717 [GH-15737]

FEATURES:

• ui: Add field for fallback server addresses to peer token generation form [GH-15555]

IMPROVEMENTS:

• connect: ensure all vault connect CA tests use limited privilege tokens [GH-15669]

BUG FIXES:

• agent: (Enterprise Only) Ensure configIntentionsConvertToList does not compare empty strings with populated strings when filtering intentions created prior to AdminPartitions.
• connect: Fix issue where DialedDirectly configuration was not used by Consul Dataplane. [GH-15760]
• connect: Fix peering failovers ignoring local mesh gateway configuration. [GH-15690]
• connect: Fixed issue where using Vault 1.11+ as CA provider in a secondary datacenter would eventually break Intermediate CAs [GH-15661]

v1.14.2

1.14.2 (November 30, 2022)

FEATURES:

• connect: Add local_idle_timeout_ms to allow configuring the Envoy route idle timeout on local_app connect: Add IdleTimeout to service-router to allow configuring the Envoy route idle timeout [GH-14340]
• snapshot: (Enterprise Only) Add support for the snapshot agent to use an IAM role for authentication/authorization when managing snapshots in S3.

IMPROVEMENTS:

• dns: Add support for cluster peering .service and .node DNS queries. [GH-15596]

BUG FIXES:

• acl: avoid debug log spam in secondary datacenter servers due to management token not being initialized. [GH-15610]
• agent: Fixed issue where blocking queries with short waits could timeout on the client [GH-15541]
• ca: Fixed issue where using Vault as Connect CA with Vault-managed policies would error on start-up if the intermediate PKI mount existed but was empty [GH-15525]
• cli: (Enterprise Only) Fix issue where consul partition update subcommand was not registered and therefore not available through the cli.
• connect: Fixed issue where using Vault 1.11+ as CA provider would eventually break Intermediate CAs [GH-15217] [GH-15253]
• namespace: (Enterprise Only) Fix a bug that caused blocking queries during namespace replication to timeout
• peering: better represent non-passing states during peer check flattening [GH-15615]
• peering: fix the limit of replication gRPC message; set to 8MB [GH-15503]

v1.14.1

... (truncated)

Changelog

Sourced from github.com/hashicorp/consul/api's changelog.

1.14.3 (December 13, 2022)

SECURITY:

• Upgrade to use Go 1.19.4. This resolves a vulnerability where restricted files can be read on Windows. CVE-2022-41720 [GH-15705]
• Upgrades golang.org/x/net to prevent a denial of service by excessive memory usage caused by HTTP2 requests. CVE-2022-41717 [GH-15737]

FEATURES:

• ui: Add field for fallback server addresses to peer token generation form [GH-15555]

IMPROVEMENTS:

• connect: ensure all vault connect CA tests use limited privilege tokens [GH-15669]

BUG FIXES:

• agent: (Enterprise Only) Ensure configIntentionsConvertToList does not compare empty strings with populated strings when filtering intentions created prior to AdminPartitions.
• connect: Fix issue where DialedDirectly configuration was not used by Consul Dataplane. [GH-15760]
• connect: Fix peering failovers ignoring local mesh gateway configuration. [GH-15690]
• connect: Fixed issue where using Vault 1.11+ as CA provider in a secondary datacenter would eventually break Intermediate CAs [GH-15661]

1.13.5 (December 13, 2022)

SECURITY:

• Upgrade to use Go 1.18.9. This resolves a vulnerability where restricted files can be read on Windows. CVE-2022-41720 [GH-15706]
• Upgrades golang.org/x/net to prevent a denial of service by excessive memory usage caused by HTTP2 requests. CVE-2022-41717 [GH-15743]

IMPROVEMENTS:

• connect: ensure all vault connect CA tests use limited privilege tokens [GH-15669]

BUG FIXES:

• agent: (Enterprise Only) Ensure configIntentionsConvertToList does not compare empty strings with populated strings when filtering intentions created prior to AdminPartitions.
• cli: (Enterprise Only) Fix issue where consul partition update subcommand was not registered and therefore not available through the cli.
• connect: Fixed issue where using Vault 1.11+ as CA provider in a secondary datacenter would eventually break Intermediate CAs [GH-15661]

1.12.8 (December 13, 2022)

SECURITY:

• Upgrade to use Go 1.18.9. This resolves a vulnerability where restricted files can be read on Windows. CVE-2022-41720 [GH-15727]
• Upgrades golang.org/x/net to prevent a denial of service by excessive memory usage caused by HTTP2 requests. CVE-2022-41717 [GH-15746]

IMPROVEMENTS:

• connect: ensure all vault connect CA tests use limited privilege tokens [GH-15669]

... (truncated)

Commits

• 13836d5 Backport of ui: Add ServerExternalAddresses to peer token create form into re...
• 18dffc5 Backport of peering: better represent non-passing states during peer check fl...
• a445588 Backport of docs: Update acl-tokens.mdx into release/1.14.x (#15609)
• e674f36 backport of commit 9cc1010534932586620323c5ed17244f76881dfa (#15606)
• 657616a Backport of Remove log line about server mgmt token init into release/1.14.x ...
• b152669 backport of commit 6f18c57f5b7e74154144cd23ec8e57bfa3037635 (#15529)
• 7c0eec4 Add support for configuring Envoys route idle_timeout (#14340) (#15611)
• c5dd81e Backport of docs: typo on cluster peering k8s into release/1.14.x (#15604)
• 9a235cb Backport of docs: Clean up k8s cluster peering instructions into release/1.14...
• e7f8505 Backport of Add peering .service and .node DNS lookups. into release/1.14...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #77.