Bump knative.dev/serving from 0.15.2 to 0.39.0

[dependabot]

Bumps knative.dev/serving from 0.15.2 to 0.39.0.

Release notes

Sourced from knative.dev/serving's releases.

Knative Serving release v0.26.2

Changelog since 0.25

🚨 Breaking or Notable

• Kubernetes 1.20 is now required

💫 New Features & Changes

• Allow users to set container[*].securityContext.runAsGroup (#12003, @​dprotaso)

• A new setting, mesh-compatibility-mode, in the networking config map allows an administrator to explicitly tell Activator and Autoscaler to use Direct Pod IP (most efficient, but not compatible with mesh being enabled), Cluster IP (less efficient, but needed if mesh is enabled), or to Autodetect (the current behaviour, and the default, causes Activator and Autoscaler to first attempt Direct Pod IP communication, and then fall back to Cluster IP if it sees a mesh-related error status code). (#11999, @​julz)

🐞 Bug Fixes

• Controllers now properly shut down and relinquish their K8s leases. This fixes potential dropped traffic during upgrades. (knative/pkg#2436, @​dprotaso)

Uncategorized

• Adds more debug logs to background digest resolver (#11959, @​julz)
• Dropped the startup probe on the queue-proxy which makes the pods start ~500ms quicker on average. (#11965, @​markusthoemmes)
• Removes the ServiceName field from RevisionStatus which has been deprecated for several releases. This field was effectively equal to the revision name. (#11817, @​julz)
• User-supplied readinessProbes with a probePeriod set greater than zero are no longer silently ignored after pod startup. (#11190, @​julz)
• When enabled, queue proxy tracks the request count for each pod (disabled by default) (#11783, @​psschwei)

Dependencies

• github.com/moby/spdystream: v0.2.0
• k8s.io/controller-manager: v0.21.0

• contrib.go.opencensus.io/exporter/prometheus: v0.3.0 → v0.4.0
• github.com/NYTimes/gziphandler: 56545f4 → v1.1.1
• github.com/containerd/stargz-snapshotter/estargz: v0.6.4 → v0.7.0
• github.com/creack/pty: v1.1.9 → v1.1.11
• github.com/go-kit/kit: v0.10.0 → v0.9.0
• github.com/golang/groupcache: 8c9f03a → 41bb18b
• github.com/google/go-containerregistry/pkg/authn/k8schain: c086c7f → ce35c99
• github.com/google/go-containerregistry: b448aba → v0.6.0
• github.com/hashicorp/consul/api: v1.3.0 → v1.1.0
• github.com/hashicorp/consul/sdk: v0.3.0 → v0.1.1

... (truncated)

Commits

• 2659cc3 upgrade to latest dependencies (#14555)
• 2a46d0d upgrade to latest dependencies (#14546)
• 268701d Update net-kourier nightly (#14549)
• cfd806f Update net-certmanager nightly (#14550)
• 6b844de Update net-contour nightly (#14545)
• f69766c Bubble up KCertificate Status Message when its not ready (#14496)
• 2c0b8dc Rename auto-tls to external-domain-tls (#14482)
• 425abcb Update net-gateway-api nightly (#14531)
• 52a25fa Add security policy reference in serving (#14544)
• 9896079 Fix sec context and resources for performance jobs (#14529)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.