build(deps): bump the production-dependencies group across 1 directory with 3 updates

[dependabot]

Bumps the production-dependencies group with 2 updates in the / directory: github.com/ncruces/go-sqlite3 and google.golang.org/grpc.

Updates github.com/ncruces/go-sqlite3 from 0.30.3 to 0.30.4

Release notes

Sourced from github.com/ncruces/go-sqlite3's releases.

v0.30.4

What's Changed

Updates:

• Litestream v0.5.5 VFS read-replicas
• wazero v0.11.0

Full Changelog: ncruces/go-sqlite3@v0.30.3...v0.30.4

Artifact attestations

Commits

• 0e55451 Deps.
• ea9a58a Remove singleflight.
• 0b46e74 Bump cross-platform-actions/action from 0.30.0 to 0.31.0
• 8dca850 Stricter floats.
• 5b78823 ScanColumn dropped.
• 1764a57 Litestream v0.5.3.
• 9837310 Fuzz time shift.
• ec8961a Bump golang.org/x/crypto from 0.45.0 to 0.46.0 (#341)
• 8c37aa2 Remove inprocess primary.
• ca93c49 Relative time, fixes.
• Additional commits viewable in compare view

Updates github.com/tetratelabs/wazero from 1.10.1 to 1.11.0

Release notes

Sourced from github.com/tetratelabs/wazero's releases.

v1.11.0

Hi wazero friends! The new release of wazero v1.11.0 has arrived.

This release is a small "break with the past" it the sense that we added one go.mod dependency to wazero: golang.org/x/sys; read the rational for why.

Behavioral changes

• 77db9681 Require Go 1.24 (#2448) @​ncruces
• fe2e7519 Use golang.org/x/sys (#2443) @​ncruces

Bug fixes

• 92864489 Update Wasm 2.0 spec tests. (#2458) @​ncruces
• 5e7c35eb Fix race condition in refCount initialization (#2447) @​jackorse

New Contributors

• @​jackorse made their first contribution in #2447

Full Changelog: wazero/wazero@v1.10.1...v1.11.0

Commits

• fe2e751 Use golang.org/x/sys (#2443)
• 9286448 Update Wasm 2.0 spec tests. (#2458)
• af80797 Add go-libtiff to users.md (#2457)
• 77db968 Change version policy to two versions. (#2448)
• 275c9a0 Simplify utimens. (#2449)
• 5e7c35e Fix race condition in refCount initialization (#2447)
• cc1ca4c Streamline build tags: remove tinygo, cgo (#2446)
• See full diff in compare view

Updates google.golang.org/grpc from 1.77.0 to 1.78.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.78.0

Behavior Changes

• client: Reject target URLs containing unbracketed colons in the hostname in Go version 1.26+. (#8716)
  • Special Thanks: @​neild

New Features

• stats/otel: Add backend service label to wrr metrics as part of A89. (#8737)
• stats/otel: Add subchannel metrics (without the disconnection reason) to eventually replace the pickfirst metrics. (#8738)
• client: Wait for all pending goroutines to complete when closing a graceful switch balancer. (#8746)
  • Special Thanks: @​twz123

Bug Fixes

• transport/client : Return status code Unknown on malformed grpc-status. (#8735)
• client: Add experimental.AcceptCompressors so callers can restrict the grpc-accept-encoding header advertised for a call. (#8718)
  • Special Thanks: @​iblancasa
• xds: Fix a bug in StringMatcher where regexes would match incorrectly when ignore_case is set to true. (#8723)
• xds/resolver:
  • Drop previous route resources and report an error when no matching virtual host is found.
  • Only log LDS/RDS configuration errors following a successful update and retain the last valid resource to prevent transient failures. (#8711)
• client:
  • Change connectivity state to CONNECTING when creating the name resolver (as part of exiting IDLE).
  • Change connectivity state to TRANSIENT_FAILURE if name resolver creation fails (as part of exiting IDLE).
  • Change connectivity state to IDLE after idle timeout expires even when current state is TRANSIENT_FAILURE.
  • Fix a bug that resulted in OnFinish call option not being invoked for RPCs where stream creation failed. (#8710)
• xdsclient: Fix a race in the xdsClient that could lead to resource-not-found errors. (#8627)

Performance Improvements

• mem: Round up to nearest 4KiB for pool allocations larger than 1MiB. (#8705)
  • Special Thanks: @​cjc25

Commits

• 9df039e Change version to 1.78.0 (#8761)
• 9b990b6 gracefulswitch: Wait for all goroutines on close (#8746)
• 6677d9a xds: Fixing a typo (#8760)
• d35cedd xds/resolver: pass route's auto_host_rewrite to LB picker (gRFC A81) (#8740)
• d931fdc client: allow overriding grpc-accept-encoding header (#8718)
• 0800ec7 xds/clusterimpl: update TestChildPolicyChangeOnConfigUpdate to use custom lb ...
• 6553ea1 stats/otel: Add subchannel metrics (A94) (#8738)
• 81a00ce grpc: Fixing spelling typo (#8756)
• e413838 client: Change connectivity state to CONNECTING when creating the name resolv...
• f9d2bdb stats/otel: Add grpc.lb.backend_service label to wrr metrics (A89) (#8737)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions