chore(deps): bump sigs.k8s.io/gateway-api from 1.2.1 to 1.5.1

[dependabot]

Bumps sigs.k8s.io/gateway-api from 1.2.1 to 1.5.1.

Release notes

Sourced from sigs.k8s.io/gateway-api's releases.

v1.5.1

Warning: The Experimental channel CRDs are too large for a standard kubectl apply. To work around this please use kubectl apply --server-side=true instead -- or, even better, use kuberc to make server-side apply the default.

Gateway API v1.5.1

Major Changes Since v1.5.0

GEP

• Updates the documentation around the ListenerConditionConflicted condition (#4669, @​davidjumani)

Conformance

• Limit HTTPRouteHTTPSListenerDetectMisdirectedRequests to h2 only (#4665, @​zirain)
• Fix conformance test not working on IPv6 (#4646, @​zirain)
• The conflicted=false condition is not required anymore in the listener status for non-conflicted listeners. (#4664, @​zhaohuabing)
• Updated the TLSRoute conformance tests to allow FINs where previously RST was asserted (#4624, @​howardjohn)

What's Changed

• fix: D'oh. Got the full-changelog URL wrong. by @​kflynn in kubernetes-sigs/gateway-api#4608
• [release-1.5] tlsroute: allow FIN or RST instead of just RST by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4624
• [release-1.5] fix SetupTimeoutConfig by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4647
• [release-1.5] fix: use JoinHostPort by @​zirain in kubernetes-sigs/gateway-api#4646
• [release-1.5] Minute clean-ups in conformance tests for CORS by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4652
• [release-1.5] fix: propagate context and fix defer leak in DumpEchoLogs by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4625
• [release-1.5] Disallow repeaded CORS filters by CEL by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4645
• [release-1.5] Add 204 as a possible cors preflight response code by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4637
• [release-1.5] fix: improve GatewayMustHaveAttachedListeners log by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4632
• [release-1.5] allow absent conflict condition for non-conflicted listeners by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4664
• [release-1.5] update ListenerConditionConflicted condition docs by @​k8s-infra-cherrypick-robot in kubernetes-sigs/gateway-api#4669
• limit HTTPRouteHTTPSListenerDetectMisdirectedRequests to h2 only (#4665) by @​zirain in kubernetes-sigs/gateway-api#4667
• Patch 1.5.1 release. by @​bexxmodd in kubernetes-sigs/gateway-api#4685

Full Changelog: kubernetes-sigs/gateway-api@v1.5.0...v1.5.1

v1.5.0

Warning: The Experimental channel CRDs are too large for a standard kubectl apply. To work around this please use kubectl apply --server-side=true instead -- or, even better, use kuberc to make server-side apply the default.

Gateway API v1.5.0

Major Changes Since v1.4.1

Breaking Changes

TLSRoute v1alpha2 and XListenerSet

TLSRoute and ListenerSet have graduated to the Standard channel as v1. In 1.5.0, TLSRoute v1alpha2 is present only in the Experimental channel; in 1.6, it will be removed from the Experimental channel too.

Additionally, note that TLSRoute's CEL validation requires Kubernetes 1.31 or higher.

... (truncated)

Changelog

Sourced from sigs.k8s.io/gateway-api's changelog.

Release Process

This details how releases of Gateway API are delivered. This process is exercised by a Release Manager.

Overview

The Gateway API project is an API project that has the following two components:

• Kubernetes Custom Resource Definitions (CRDs)
• Corresponding Go API in the form of sigs.k8s.io/gateway-api Go package

This repository is the home for both of the above components.

Versioning strategy

The versioning strategy for this project is covered in detail in the release documentation.

Releasing a monthly version

Starting point

Make sure all the changes that should be part of the monthly release are merged into main.

Tagging the monthly release

Start by tagging the main branch with a tag of the form monthly-YYYY.MM (for example, monthly-2025.11). Push this to GitHub.

Start the CI workflow

Trigger the monthly-release GitHub workflow, passing it the monthly-YYYY.MM tag just created.

CI handles the rest of the release process, including creating a draft GitHub release which includes an automatically-generated changelog and the various release artifacts. You will need to publish this release after making sure that the correct artifacts are attached to it and that the CHANGELOG is what you want.

Writing the Release Changelog

In many cases, the changelog that GitHub generates is going to be OK. However, if there are significant changes in a given monthly, it can be helpful to write a changelog that's more human-readable. Given the $TAG used for this monthly release as well as the $PREV_TAG used for the

... (truncated)

Commits

• e7677b7 Patch 1.5.1 release. (#4685)
• 8eba7b6 limit HTTPRouteHTTPSListenerDetectMisdirectedRequests to h2 only (#4665) (#4667)
• a43b54f update ListenerConditionConflicted condition docs (#4669)
• 9edc349 allow absent conflict condition for non-conflicted listeners (#4664)
• 130e6c1 [release-1.5] fix: improve GatewayMustHaveAttachedListeners log (#4632)
• e922d8e add 204 as a possible cors preflight response code (#4637)
• 582fdbb Disallow repeaded CORS filters by CEL (#4645)
• f4fad32 fix: propagate context and fix defer leak in DumpEchoLogs (#4625)
• f0cba2a Omit "simple" and replace Authorization by Cookie (#4652)
• 61f714c [release-1.5] fix: use JoinHostPort (#4646)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)