build(deps): bump org.apache.dubbo:dubbo-bom from 3.3.5 to 3.3.6

[dependabot]

Bumps org.apache.dubbo:dubbo-bom from 3.3.5 to 3.3.6.

Release notes

Sourced from org.apache.dubbo:dubbo-bom's releases.

dubbo-3.3.6

Highlights

Apache Dubbo 3.3.6 introduces several important enhancements and stability improvements. This release adds new reactive and routing features, strengthens HTTP/2 support, and enhances configuration and metrics capabilities. It also includes a range of bug fixes and dependency upgrades to improve overall reliability and security.

---

What's Changed

Feature

• Add Affinity Router by @​wcy666103 in apache/dubbo#14787
• Support for Mutiny Reactive by @​MoritzArena in apache/dubbo#15537
• Add dubbo-spring6-security plugin by splitting dubbo-spring-security by @​zrlw in apache/dubbo#15494
• Add HTTP/2 server connection preface process by @​zrlw in apache/dubbo#15535
• Add http2 client connection preface process by @​zrlw in apache/dubbo#15436
• Support Preferred Network Interface via Spring Environment and Fix Early Host Resolution by @​fu-cheng1 in apache/dubbo#15604
• Add support for Zookeeper-based config center and metadata reporting in demo by @​lingyufei in apache/dubbo#15646
• Support method-level TPS in DefaultTPSLimiter by @​lingyufei in apache/dubbo#15679

Bugfix

• Fix nan problem by @​songxiaosheng in apache/dubbo#15586
• Fix concurrency issue of ConsumerConfigurationListener by @​zrlw in apache/dubbo#15707
• Fixed issue with unsupported message.proto file name by @​nichanghao in apache/dubbo#15655
• Fix uninitialized non-static final fields (potential NPE) in dubbo-remoting by @​zrlw in apache/dubbo#15602
• Fix mistaken deletion of reconnect interval by @​oxsean in apache/dubbo#15613
• Fix RpcServiceContext.localInvoke type inconsistency by @​huangtaojava in apache/dubbo#15536
• Fix MergedAnnotation null issue in Spring 5.x by @​jkoChen in apache/dubbo#15581
• Fix StreamObserver call sequence issue (onCompleted without onNext) by @​RainYuY in apache/dubbo#15466
• Fix NetUtils to ignore link-local addresses by @​cyclinder in apache/dubbo#14793
• Fix issue where WrapperTest failed due to missing parent method names by @​Hussain-Safwan in apache/dubbo#15683
• Fix Zookeeper download URL and timeout handling by @​zrlw in apache/dubbo#15697
• Fix Mutiny race condition issue by @​MoritzArena in apache/dubbo#15662

Code Enhancement

• End “read/write” combination early to improve performance by @​frozenNoob in apache/dubbo#15666
• Remove redundant tests and deprecated author tags by @​RainYuY in apache/dubbo#15654
• Add multi-JDK testing to PR workflow by @​WangzJi in apache/dubbo#15542
• Cache marked type to optimize SerializeSecurityConfigurator by @​zrlw in apache/dubbo#15500
• Replace ConcurrentHashMap#computeIfAbsent to avoid potential deadlock by @​zrlw in apache/dubbo#15456
• Improve test stability (e.g., AbortPolicyWithReportTest, MetricsSupportTest) by @​zrlw
• Cleanup redundant version declarations and deprecated mirror settings by @​zrlw in apache/dubbo#15667
• Optimize TriRpcStatus by adding HTTP status code to its description by @​zrlw in apache/dubbo#15708

Dependency Upgrade

• grpc.version: 1.72.0 → 1.73.0 (#15418, #15550)
• protobuf-java: 3.25.5 → 3.25.8 (#15424)
• netty4_version: 4.2.1.Final → 4.2.2.Final (#15443)
• io.micrometer:micrometer-bom: 1.15.0 → 1.15.1 (#15462)
• io.micrometer:micrometer-tracing-bom: 1.5.0 → 1.5.1 (#15461)

... (truncated)

Commits

• f158588 Prepare 3.3.6 release (#15722)
• aa3262f Add dubbo package to serialize allow list for SpringXmlConfigTest to avoid Il...
• a7b641f [3.3] Optimize TriRpcStatus by adding http status code to its description (#1...
• 2170f0f fix thread safety issue of ConsumerConfigurationListener (#15707)
• 5c0bd7f fixed the issue that the file name of message.proto is not supported (#15655)
• 8f2b4de End the 'read/write' combination operation early to improve performance (#15666)
• f6b78d2 remove some not running test case. (#15654)
• 8202597 Fix zookeeper download url (#15697)
• bc543b6 Support method level TPS in DefaultTPSLimiter (#15679)
• 956a47b Fixed flaky test: org.apache.dubbo.common.bytecode.WrapperTest.est_getMethodN...
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.