build(deps): bump google.golang.org/grpc from 1.45.0 to 1.48.0

[dependabot]

Bumps google.golang.org/grpc from 1.45.0 to 1.48.0.

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.48.0

Bug Fixes

• xds/priority: fix bug that could prevent higher priorities from receiving config updates (#5417)
• RLS load balancer: don't propagate the status code returned on control plane RPCs to data plane RPCs (#5400)

New Features

• stats: add support for multiple stats handlers in a single client or server (#5347)
• gcp/observability: add experimental OpenCensus tracing/metrics support (#5372)
• xds: enable aggregate and logical DNS clusters by default (#5380)
• credentials/google (for xds): support xdstp C2P cluster names (#5399)

Release 1.47.0

New Features

• xds: add support for RBAC metadata invert matchers (#5345)

Bug Fixes

• client: fix a context leaked if a connection to an address is lost before it is fully established (#5337)
  • Special Thanks: @​carzil
• client: fix potential panic during RPC retries (#5323)
• xds/client: fix a potential concurrent map read/write in load reporting (#5331)
• client/SubConn: do not recreate addrConn if UpdateAddresses is called with the same addresses (#5373)
• xds/eds: resources containing duplicate localities with the same priority will be rejected (#5303)
• server: return Canceled or DeadlineExceeded status code when writing headers to a stream that is already closed (#5292)
  • Special Thanks: @​idiamond-stripe

Behavior Changes

• xds/priority: start the init timer when a child switches to Connecting from non-failure states (#5334)
• server: respond with HTTP Status 405 and gRPC status INTERNAL if the method sent to server is not POST (#5364)

Documentation

• server: clarify documentation around setting and sending headers and ServerStream errors (#5302)

Release v1.46.2

Bug Fixes

• client: fix potential panic during RPC retries (#5323)
• xds: fix leak of deleted CDS resources from CSDS view (#5339)

Release 1.46.0

New Features

• server: Support setting TCP_USER_TIMEOUT on grpc.Server connections using keepalive.ServerParameters.Time (#5219)
  • Special Thanks: @​bonnefoa
• client: perform graceful switching of LB policies in the ClientConn by default (#5285)
• all: improve logging by including channelz identifier in log messages (#5192)

... (truncated)

Commits

• 6417495 Change version to 1.48.0 (#5482)
• 5770b1d xds: drop localities with zero weight at the xdsClient layer (#5476)
• 423cd8e interop: update proto to make vet happy (#5475)
• c9b16c8 transport: remove unused bufWriter.onFlush() (#5464)
• 755bf5a fix typo in the binary log (#5467)
• 15739b5 health: split imports into healthpb and healthgrpc (#5466)
• c075d20 interop client: provide new flag, --soak_min_time_ms_between_rpcs (#5421)
• 4b75005 clusterresolver: merge P(p)arseConfig functions (#5462)
• d883f3d test/xds: fail only when state changes to something other than READY and IDLE...
• c6ee1c7 xdsclient: only include nodeID in error strings, not the whole nodeProto (#5461)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

I'm going to lock this pull request because it has been closed for 120 days ⏳. This helps our maintainers find and focus on the active contributions.
If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.