chore(deps): bump sigs.k8s.io/gateway-api from 1.4.1 to 1.5.0

[dependabot]

Bumps sigs.k8s.io/gateway-api from 1.4.1 to 1.5.0.

Release notes

Sourced from sigs.k8s.io/gateway-api's releases.

v1.5.0

Warning: The Experimental channel CRDs are too large for a standard kubectl apply. To work around this please use kubectl apply --server-side=true instead -- or, even better, use kuberc to make server-side apply the default.

Gateway API v1.5.0

Major Changes Since v1.4.1

Breaking Changes

TLSRoute v1alpha2 and XListenerSet

Since TLSRoute and ListenerSet have graduated to the Standard channel, TLSRoute v1alpha2 and XListenerSet are no longer included in the Experimental channel.

Additionally, note that TLSRoute's CEL validation requires Kubernetes 1.31 or higher.

Upgrades and ValidatingAdmissionPolicy

Gateway API 1.5 introduces a validating admission policy (VAP) called safe-upgrades.gateway.networking.k8s.io to guard against two specific concerns:

• It prevents installing Experimental CRDs once you've installed Standard CRDs.
• It prevents downgrading to a version prior to 1.5 after you've installed Gateway API 1.5.

These actions can't be known to be safe without detailed knowledge about your application and users. If you need to perform them, delete the safe-upgrades.gateway.networking.k8s.io VAP first.

New Features

In this release, the following major features are moving to the Standard channel and are now considered generally available:

• Gateway Client Certificate validation (GEP-91, GEP-3567)
• Certificate selection for Gateway TLS origination (GEP-3155)
• ListenerSet support (GEP-1713)
• HTTPRoute CORS filter (GEP-1767)
• TLSRoute v1 (GEP-2643)

Additionally, the ReferenceGrant resource is moving to v1.

Experimental

• Gateway/HTTPRoute level authentication (GEP-1494)

Full Changelog

... (truncated)

Commits

• 3797b63 chore: Update CHANGELOG, version numbers, and approval link for 1.5.0 GA (#4607)
• 95af031 CHANGELOG and version number updates for 1.5.0-rc.3 (#4605)
• b54d6c6 [release-1.5] safe-upgrade: allow installing experimental when no current CRD...
• 488006c chore: Update for 1.5.0-rc.2 (#4600)
• b51d537 conformance: tune and allow configuring polling interval (#4599)
• 14fdd82 [release-1.5] TLSRoute: Add conformance tests for connection rejection (#4593)
• 48bfa99 [release-1.5] fix: enable safe-upgrades VAP to permit upgrades of experimenta...
• af52d52 [release-1.5] Update CEL validation of allowOrigins (#4595)
• 64f7573 fix: Update listener set programmed conditions (#4589)
• 3740ae5 Add missing IgnoreWhitespace: true (#4590)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)