From 0865d3a1ec82b7f55de60f02a668ab2b2b3e3427 Mon Sep 17 00:00:00 2001
From: Ryan Northey <ryan@synca.io>
Date: Tue, 4 Apr 2023 21:47:56 +0000
Subject: [PATCH] repo: Release v1.23.7

Signed-off-by: Ryan Northey <ryan@synca.io>
---
 VERSION.txt                        |   2 +-
 changelogs/1.22.10.yaml            |  28 ++++++++++++++++++++++++++++
 changelogs/current.yaml            |  14 +-------------
 docs/inventories/v1.22/objects.inv | Bin 122338 -> 122356 bytes
 docs/inventories/v1.23/objects.inv | Bin 137898 -> 137962 bytes
 docs/versions.yaml                 |   4 ++--
 6 files changed, 32 insertions(+), 16 deletions(-)
 create mode 100644 changelogs/1.22.10.yaml

diff --git a/VERSION.txt b/VERSION.txt
index f38c83099ef5..2d27ccba161d 100644
--- a/VERSION.txt
+++ b/VERSION.txt
@@ -1 +1 @@
-1.23.7-dev
+1.23.7
diff --git a/changelogs/1.22.10.yaml b/changelogs/1.22.10.yaml
new file mode 100644
index 000000000000..890888ef8553
--- /dev/null
+++ b/changelogs/1.22.10.yaml
@@ -0,0 +1,28 @@
+date: April 4, 2023
+
+behavior_changes:
+- area: http
+  change: |
+    validate upstream request header names and values. The new runtime flag ``envoy.reloadable_features.validate_upstream_headers`` can be used for revert this behavior.
+
+bug_fixes:
+- area: grpc
+  change: |
+    when Envoy was configured to use ext_authz, ext_proc, tap, ratelimit filters, and grpc access log service and an http header with non-UTF-8 data was received, Envoy would generate an invalid protobuf message and send it to the configured service. The receiving service would typically generate an error when decoding the protobuf message. For ext_authz that was configured with ``failure_mode_allow: true``, the request would have been allowed in this case. For the other services, this could have resulted in other unforseen errors such as a lack of visibility into requests (eg request not logged). Envoy will now by default sanitize the values sent in gRPC service calls to be valid UTF-8, replacing data that is not valid UTF-8 with a '!' character. This behavioral change can be temporarily reverted by setting runtime guard ``envoy.reloadable_features.service_sanitize_non_utf8_strings`` to false.
+- area: http
+  change: |
+    fixed a bug where ``x-envoy-original-path`` was not being sanitized when sent from untrusted users. This behavioral change can be temporarily reverted by setting ``envoy.reloadable_features.sanitize_original_path`` to false.
+- area: http
+  change: |
+    stop forwarding ``:method`` value which is not a valid token defined in https://www.rfc-editor.org/rfc/rfc9110#section-5.6.2.
+    Also, reject ``:method`` and ``:scheme`` headers with multiple values.
+- area: http3
+  change: |
+    reject pseudo headers violating RFC 9114. Specifically, pseudo-header fields with more than one value for the ``:method`` (non-``CONNECT``),
+    ``:scheme``, and ``:path``; or pseudo-header fields after regular header fields; or undefined pseudo-headers.
+- area: lua
+  change: |
+    lua coroutine should not execute after local reply is sent.
+- area: oauth
+  change: |
+    fixed a bug where the oauth2 filter would crash if it received a redirect URL without a state query param set.
diff --git a/changelogs/current.yaml b/changelogs/current.yaml
index 24d01b19305e..cd03b53fcfd4 100644
--- a/changelogs/current.yaml
+++ b/changelogs/current.yaml
@@ -1,16 +1,11 @@
-date: Pending
+date: April 4, 2023
 
 behavior_changes:
-# *Changes that are expected to cause an incompatibility if applicable; deployment changes are likely required*
 - area: http
   change: |
     Validate upstream request header names and values. The new runtime flag ``envoy.reloadable_features.validate_upstream_headers`` can be used for revert this behavior.
 
-minor_behavior_changes:
-# *Changes that may cause incompatibilities for some users, but should not for most*
-
 bug_fixes:
-# *Changes expected to improve the state of the world and are unlikely to have negative effects*
 - area: oauth2
   change: |
     fixed a bug where the oauth2 filter would crash if it received a redirect URL without a state query param set.
@@ -36,10 +31,3 @@ bug_fixes:
 - area: http
   change: |
     fixed a bug where ``x-envoy-original-path`` was not being sanitized when sent from untrusted users. This behavioral change can be temporarily reverted by setting ``envoy.reloadable_features.sanitize_original_path`` to false.
-
-removed_config_or_runtime:
-# *Normally occurs at the end of the* :ref:`deprecation period <deprecated>`
-
-new_features:
-
-deprecated:
diff --git a/docs/inventories/v1.22/objects.inv b/docs/inventories/v1.22/objects.inv
index 418d07e651447fd0800b39675c7c8eec4b2dc443..cc6a587fd5ef565653b6607d3fe7bcc68678e20e 100644
GIT binary patch
delta 1816
zcmV+z2j}?Wy9e~U2arPoF))EdwL}5J)qmn9d-d*dzglPYw^?~pR*vOwz7(%-Uf;xE
zm4rqG;a7L<<FVa*5?!Mx0k{}@feRM6u)rYv>Vs$$61TdE;qn$2#AGQB&mkL0&|5!f
zg0<9KY45+E*3Vf{#9<2_wji*Du=R8=7E)PJ#eqv6xFo=3_Ua$=;|?D0GzMJq4}YR0
z4+6vua8<;S3m&;3$OUN<jLjvFToPpQFurT&*obf9&=n6|5$Gy=^|K7lk*}}33BlGp
zY)xQmXl`P{I*p@_c+?R=9U-dfaADXn4?8BXW9%D~IO>E)oe<Os9eT>!7<R=s;)*ol
zO7`a2_B0b?ad{I*E_mdEAQwsPp?~6Aa79`$h$pm%if_CXX}lnw(jF?l@m8eqR;uxG
z?V;iuZ$%m}h!1EFV;*}<u*XBNCp`9qU{A>4!#t5Gk31#FQ`?FQ`L!zxKXT3YkDBz4
z`n8!#MB7`<caEBLj#_^0QeaCSwj{7goulSEM@>3Mo!B{QzH`*1bJS^_qkrZ*M@>3M
zJ*0EgeCMc1=K%4<23+%9qb6Mg#IZeK^9|sR_~ttz&39xbYm+!?!J`%gwMc))Bfbfb
zND~I}0oWCfT@mam_5F?bwmc$j8N|EquL$9ec-#@e9l=Lb&$UCSW4=|4NvjysnQL^U
z81oHdOd7_xGjWYiC&qlc7=M#?G49M<CvoJ8N3IBRmG<t&e47}PHUZ*E?{37SjtJ^V
zu9LE|j-gKY7BL|$VnU~ZaeF6xlbDbu0phQIXg}@M409BRE_vvZK$mGRZo)T+326`$
zwUXf<M9rht1hr0iaZ~=qP05R!+WATR8BF=tHYKlZY9}ZhZpq`81R=Lf#jSYUir^-_
zvnl`1rsSPXQ{UN`M;#N?G3^r4lT?<Mp4b8Ve{Mykyf)s8UlK3A6vx+g6NjyM*oweb
z`n65sur&``6WBTtcErPu2<*si7?pA0F%LW@z+?9V7lfYh&=UeZAp_4OvNtJ2r#$kM
zAW!L#R>z@ldFWdLeXA!ZI8^#^`JD%{@ldH*j~LivlOEn#OMJD;RjV3=dH?}b-iJn9
ze`wN!X8aB@Sl$Ukd@y4>>r-x$V(JCu*YRW-uU7G=Eq;dsko*dhEHI}yjl?_mBl3$B
zvPQYZ2O7U`et|;PC%3p*&C1|@W|*WX<<x?6N<rt}g!3ECzFoHa)=44SJ%OTYm_O8U
z2>o9U(iX_1^^D}_dzt)xAdpJ|H^<-af8tv9lVtLC^87tLJR2&e=Fn~zlCMgV675^V
zI%v#W&i;6_Xg{4~cI7v0Wwh<#IbR*rsl^<{kgW)H{QmH4*q<_#(CkG@<gb29WfU}!
znhL4M-S*H9x7US;SgnO~tIun@mdlJ>?*?Q{ee-qs*zER=r08g4mV@Az0}6WVf0J;z
zkji)a9N{{K;mJH<nrQz2%zxPJpJw|-yU1ngi44N#+t~uxs@`Jt-9Ce~Hu5O;%visH
z{G>o;vfUk<<?ggyBs_4pQs)*n&obj`n~Tf2!bICQ&yo=m;_{A}yz<wpuM3&2tbHRo
zCFYtsKEHmHw?W2(h?p7+@($8`f3?`hL9B$g{%*ZSg70>F+%pFGrTw@v+^Kn-?Pr?<
zhw94uFojIJg>f(r*Aw$0>Em^ApsrL5r-9T&aEvbruPYtJh2$-XpjMP30zcfF4Gib)
z9>iCVez=evrU3nz;WaNP{+Wi{5yqr4+tqT_F0!B1rR?3uAH90^v+aGGf2M_qVu~Xu
zh~9;yHAzIbqB?;RP@=@pfvjPBp9W85HHVdqZFCeQJQUx<_;8ZbNm<?jgWn4{QF@vm
z<Cv}_X?D$Q{#i80`Db@ZBA^cP=;<To4pKv^D9MF<E-Srz|I?cf;)jf*G%PQmQ4aVr
z-MJ2^0Von0c77IWuz&#Be{9qyRrJHYZQpi6C5_Bde0AWgv^*-S<I>PNeWQb(g{cIn
zzkGl9t9%v`USH~fH?zgzECo4Ke0P5@nzZB+{myXnBK>Gr&7xiRr+%r5RMj81;*mob
z(M;Z(2fe`q=bzdO^yC)g4*!xFh<4^6^`Wa;(x{xobV|IvgN$RFe?P0g7k&=KRC6?N
zPJr_s@b@T_5t*zj)3w%&`Va1L?^MIg8FPj4x1EZZ*D<G$?HopBh_##@N&X1&2t}Vc
z?Y9AoV6N1Dg_~GhXctVYG!iTW;068;fuDw$v|ZS9@!#!)aUaBd>wBmYFz)myV@ofy
z3qhnQlA9O!6StWvUJfW0v(}9h?mk$vMlm;y1zn{!AV9?jkob)=n~IGJP(cD6#5)ri
zpaKQx#jat;<9UN%4i$g>_3vG@)AquFf&%=f`5SITCZGun6sL~lg^B^9tNMqo>i+|M
GW%X9XVwBqe

delta 1798
zcmV+h2l@E)y9eUC2arPnIe|sBMFGOqf7|TU&oWG)EWgdlo3e5&fAghyee?Pz2CF1A
zDhR*2Yafs8=9B0eg#<3fUf_ZSE-Wwzzxp5=g~Y9HVz|7;1u<EQzk2t$&qfmT)(@Is
zEj3r#`|qdqb5;~_*n)>G2y7v2J>83iR8~}R;F1R}32>Rc`p5jZgU36K0hj!Pe<;a=
z0C59c6>;Q(M=l6*L7D_(bIBu@1X(<c@7g&w;+r^h#Y0yFy3)N)zP|D%1Y7g4HG!?6
zxrqtuG>$srQAY%Igs7^+g<;1$?3logv2RS`s1qJ_LQp4k=qYbw*cIQ1E7FK7*_&tE
z(@c!T<xL#9;E@Z0TqL!Jif_Rce`&!Wp3ojDzVTM1@q&0td#L!vTam_Fsm9B-hl+2!
z6=}R6KA=5}dF(O49uL8u@YoZAJt2b+^F*dR@{}M?Z7VM1*RCx5$Ti<TYSKSy{DiL7
z@%C2pouek5qn2O06xfo7EeUK==cxJ4QIpP5Cw7jS?;JJh9CcdfsQJ!Of0NEp59u5=
z-#Kd1IY2zI0oQ!js7coVacmFRd;_>6zWI(w^BtMV+9Zxz@TdhrEz+Oyh;PCp(u6^L
z0CvS=R|LCCeSagqEsscB2J!CuD?+#<9(P1=NAMBVbL|l7m~Rzh(kjMu<{BL-#(cvV
zlZG+wOkCsBi80?U#-v@0e>*eRNgTQ2kt>2+rM<f`-zLVSO@MgPyBqPSBZ4}T>!hr#
zW2h6pMNCMGn9ylp+};V_BqpRufcUE)+E05m!yLt-OCGu;&}G_-oA3={LK?(Gtz`HI
zQS+!ZL9J6>+?0QDQ}W`bc776n22=jEP04GU+6fAWTk^Oi!7Wp99V;HUBDhKKY|6j0
zDS2np)OR-KQO5*zOuK|~QI(gY*a7>0;1(&bjrZc0#EUP*@wMH=VJjZCBCwTyZId``
z&BN9NwoZf{@vtKTJF*)_WgK|S1CI&t*!{o-p(i}_gg{Toz%z;LO$yN|k31#FQ#z#8
z5omsgfNT&{YIY(9;MnAZcd8Pfs&c8S7pDvjpz^*h;_8x~F5@4F!Sc=$;wu?{+u50N
zXB1N}D8Jq&%WbvVK5g-P8Gz(hf@C2$#pxd2xgU{VOpvw2Ek4lree(+mvW~dLMP*h7
z_Z`DzLMf*UoYMq4PbQqRX!h;0-M3Dv&+bVPUBmpLjxFf_a*(z_CjDk4kKW7V;RAtO
z3b?uWeizrWpCse9laKG|;n`4sCN+n4yO6w6l00bN8g@Wq-g5TGn??KSB(osDVJo9;
z56}7PpiUR&D2A*;sN?sCXT#Ezp@e1`QX+r#TPmZKfqYa*J?^%LcDTJRM8s+>oLhZf
z+qGO~<a#$CW8a&v%g1K7ZzPpQ8?zh)zZ_7|W1ob}g;c)V=Lpv^3{TL13DZRL|7ZTg
zZvQmfFWN;eQ$%DC-rmj@z$*0?tMB$1q@R&Trf0_b4df98(vj`%*erLa?IPiUyOlb(
zuz8l5QQKTx&J`xwzIm3+jSxR~%;c57UVUB2tYYmO(J3(})baWCqr43=9z?{{Sde#+
z=Bvd%4q_#|^>^zv5^=YG+vA=w$S>{3m0?NE<7_|M95_^0)`ux%+AWNOak!qC4@n<`
zivx9~VmJ+?5Q5`&NqAl9C@v&fNd&c`6cKpb-fUnvZ}%X+di2AE<S<p|#|*D|LGjNt
z<c=^Vf7z~<t9Ft7tS)8mKK|&{v!8A6+cYgi6jKpFLG&&p{YWBzx)s%lj)1x(h7P0(
z+xs+lDyzAsWDKICAmO3-9>#~0oKDK}4jBAiz{$_k{20e{B}ubuX7kUYLC!zBQxXAn
zkVixxF~^S@QbkEF<a1f+-TR;3d=NimyrW@b0gZCNmubm$;0r*J5U%sHMS}$d$YzZ;
zDV-noZTq$p(r9FVmg1`eXPV`aRvkZv*6AA^^ejvzK>g+WyI<wAkns9a2fUdr4reLI
zq2jyyd(osN=jV5ZLl<d6yJ{Bgx<B<xRivu^xD}5a!hL4)-aP0H9t{7~UZ5wpAb0qe
z%oMaU2c8dI)spVyB&Jj1?Hy#i+5B1kz3_7#rkbOHa{`=y_kh1gnT*I}U74=6X4HRh
zk7cJCX3l~ujKA$vWV?<HeQf72Dnm@<>`3xFh({>;%xS+3SOjyW_AA`P;zGM%TBVU-
z82~TvcL>ll1fuQ2o?riNCye_b=3C!Gm4I=lM;QZpnOz7XO_3bBz;n3GRB=GDn6+-4
zu=K&2HHx`WX)Nd}wFmdrIerpnab{Dor}x!i{tn`uIl-?E^wW!7!;Z)E2EiOE{`%|R
oyJ)BFg#!fz_)qgU+=xsR6BsB?9mxw714LK#4_(#&2enDsA_l>ZP5=M^

diff --git a/docs/inventories/v1.23/objects.inv b/docs/inventories/v1.23/objects.inv
index 5535eaecfb2b5353ae1c13e2ea5836481a6297a8..f688874e2c09969085593507231ac0fe48b278c6 100644
GIT binary patch
delta 3090
zcmXYweLU0a|HrqPyKba$T68M3V`LZ~=`eF!opuNvI?f8mO@>2MZpPevBndfM4Q*~l
z({Z!Z(H6ofQaHA?k=wNpj=8@-MDD)({W||$kN4g4^}b%$#jaMGs#c;}E14VmnPSb&
z0&bkSbp~2}2G*his?+Dou|q`cP=)W~&0k`$q>=DFb|e7bhIwQ-7%`EVw<r*FBp<$g
zzra;n_dv=Chy3%lrS8-Uc|V52IibGZKOc&SdaH<??BwhAr!AhjI+y>Mg0TLBRd7+S
zY}LRn*`lPmfQSwJl0%orx|*(@J*B&4DcH<l%_s9p(}Zuq%w;?CBcc>F@~Yom_sj1w
zF0vfvf_V#q+!Xit@DbLF3bl}LbZEMiDG&AU*c^S<i-hu_Y*jbU-n%C-_Xq%f*&xI8
zf>^x^;C5@7N9h_DT3s9de)WbL!%P&>$kKDkIk%{eQ^Z;#+@5Q_3$l5_(U>izG3C2Q
zn=jAEVL;Q#i!qZP>QCflb@9P}atq*TBRr28H6znt*3kMlr_<S?8587}NUeU(qluJM
ztceokM&i_omVbX>|3PnT6AUn(xqQy=*@x-At-G?0+A-fTe;rn+;jpY4B<lVMwX}0(
zK`ptVEjNo3Larez^)M}I1;o`syN*{awY%L9fVn<OLd@=~hzS(LQae8t;OiE^aeJGb
z+gnEjoN1NjRl^3aD!213W;er0L<;RH8v0Rr0A4_>8A5#whLH1o)P<OktB3^*#OhdH
zI>5IsfKw0<{6mc_fbUn3606x{^<Cb5fS)RhAAsOXG#&tawk&?6$;!p#WFVLu5TjZb
zerV2~nf@S`WGcj5x`voTCE>I+?*V*D0o-zLl5;R=Ou#{-eT6VOz<OxG#Rv$+XlRF8
z-lPRLR7jwgK?Pmv{*ff&LmE{C`#VryIw{~dqP2?@siH}RX#vL_J^X6Vr&o{is{sB7
zt29aNN%Al=ZBQpH6%=ANA`ntkl7+TrDZtk${0c0c5^&D{2VAt|R`&h}w7_v^`u_vU
zkx9gwufRwenIx{KT@}f_7<WGwLlQq$Jil>Z+Nj%Yv4(knu-A<z`B3Xi_ILitNx}%|
za<*qGP|NgN=L8(^I$B#M8K_^EO&%n?kX^4D+s=xM877pMLA%}Z(yh3a;+yn@xM-x5
z5!8+XWTaY}4;tD}NFK&<F@uDrF33W5*e(&~Pz+)YlY}eLYy<emnJE;6E&d^c5AdCt
zUu`(l0q}eAN|M@W@@wXuR3{)gFc)0GDU%URg(!Lpz(2x-TkVCoRHQBmI8^jQA*>w8
zo3!GFN(po{RG`K&!OJw>tV-aMku#2+EIoxq0Vf6h&>2>)#+K;}9VL`^L8h{QGZSG#
zVi8lAB+C*;C%{jX@exf{+J|}pK8p#DJCKBT#8wC9UWiwH0fr;zVcX8n{gUgfxHJC{
zifNFElu%m{h98TV!9Z}1*owehL%i}D3KDOBf)kh<g;!oNOQQS;Gz7LfTf@cNY%(O{
zic<2H71wFtW>SJb8TqLHJxkmK@Yf3AIOQg1MCAx0K*a^dR7fgQj$RU&QqfQmtO;O`
z$yz`up&SkER?9QQb2BIY-&r?S6rL-XA`}NgI{?;8Ja^A5p?DnH5y6tT=4Ot`K2k(1
zvb=wv?nT*d@yryQ@+W7+%oHQQ^(({OF^<IOr@00~yEWdeGKptCqXaaFRJl{Lh)7yP
zb#y@{^gFGKh^gzS4lW3pASSoS=1$*iN?4{Kt2SGIs+?m4gt^!k!d=m3xOkGrCmL4v
z!u2~%i-@|i9wH?2%=4bW+<Vr_|Dqri`{#p!xnkMb3_|&_W;`%g+eUd61BuJ^85Uu>
z5)lirkhOxaWf8_7M9lFabNm!Hh`@9Q4F!>q?JSUDltk3swCjGgzj614UrxA&ZZHD6
zU0{W9TlD1+ki=N0`IJHX^#`_Pf_G3Ki4gJ`oBd6dB@om{8e~p+D-*(1QKVjVk$X|5
zT&6&e@=SuqAAnewFpv4PF4(|709$0+j6QUtR+7f<ZB<WE>JSuNx$A81mViETTQv@B
zT~j&r4EPb~3~Vj^KRem7azjkU6FktmsNKYj{Y%a@^n_}rlwtA!{ps9hj2cS=4@A$)
zQezEru9fk$nPG;B&pz!{r~bofemVDp`h}SU95iC2t)RncKs=BVmOck>xJh`%N8%ce
zX`DJ_JZaRURyG|;^30<Nc;L$qjZqDjfvs{D?d%Va!I4!bVP^i7`+LhhcDiR1^EHZ^
zQTZl+ZZjl(Sb%wsU~c5Sg$}!0CWwhZi4VuD6xF}9G9A5f_xZ7z9#Fa}Xv>tCz27eO
z*r}5gY62?NXX8$KZy66{)zGh{oVwWdd1^;EtCc=*ueU6-<l6^J6<}AK3c$Q_)*#b+
zcBmddh#hUe`CMhR$L3nxnosLVSTJI&$0lmS$wvx55u7sFV-rzSNg`*Tww*r3c3c<4
zI^_(U@BLEg|H!BZE#&?&lf_{L9^Q<su#RFX1dy|%aMO=U9ak93Yr0)O7$`eni>4yR
z(;Z7i1_*^q);-3BVB0~4weQ)3!)xv!TII+fa$qz1ys>t(N(e8XqknSQRQ=dl!o*RS
zz1J93qW8s1xABFshrw#F+faDq^YJM0H+NVD_QNq5EncrzFj;a-_aP#xzrtY&QEpQ>
zAFz`WXBoXAS{l5wAyNFfS|{w=5dJ%uj=CMBSpTi_@!NJ8U|5Dt7IJJQtnQ!ntdi#Y
zl354uYMrN^MqFQ2cCe92Vq?PJ?4Qr%(JZi4-HT>w#O-0y#Vhq3vARK%q&L6DX&m?S
zexE0%;|ij7uQ7h)D?4bkp%3^<%&GUC-K_C^pe>~?KF!fMyy@yCj2MfeIY#0AOrtf+
zeh%mC@P>N9cL|*s-swbfx7WM%8ZRP-^F?>VJEQMhw8uNgJ-Ni7)oI1v?uMtA^XvUj
zu7q*5+}D07_efcB$f}J<#33!e`@G_iN;XYIzrpRqEXG35H|H(U8?#m6bz$te;h;M$
zRVp78IOz^G+W22b!J&Vvq&+O<H}r4);f^0F{_=hTYMl++yZEv}_opM|FvapqkMki4
zuSgP>e(#k%i3NS~a~%`OQU-5tWQT9JU5&{n*SotNPlxVySc&-kp29_Y+t3Rl6Ekh)
zsv^lgs}4<66E5EG+LKCXkYmyB5_~9s^hEqTPvIz7cfEuH>=N9eyp(!%=Zh|-z1~~)
zX$YA=20r~ISKNmT9|UQHPV+P)owzQg{#g0j2AOqqJHj`fs(a<67xHJHh6GcO-S8F<
zzj^TTO@m$kZ;lRb>+ruD9Dic`<DzMA%uQPFE3L2KonGa>r9`b8rS&b8dA{$ctb|R=
zp{PIhWb>DR{VkVs^r*J>!MMya=j3P0yx!aTiD2;rzq-wF43>`H-$z>uxIImy&$;i~
zG1fXL4I8`_bvGi<S-<!lETCmmZT_jWs8x=V)#n#<PVlag=4adNcAaVS!$S|`j@9<9
zo%UVUTIUCTRiJ+FnS7&8<)8{%8ql?9F2YIg?<3c<4&6FFzi&=*{Z$AyDbymIC&X5%
zkAW9E^F=L`hU7HCIbvcFG1jzjJoT<v>i{MdHs*6^aS`-InpGG*R}I=)kWL-zm1ld@
zQh3B?L7!oN+b#55Z~xWOn{|4%{<m>e*a~#R&w9`78w{`K>c}a11Z&>>FP^p&<wih6
zP@rk?TvRN?IV{_={nv%xmPudiZr9D*JpjoCU0E(?*1AI0BXdMLN8irh%1HR@=;1%U
zuT>wHYYD&16!2&(%m0d}OkU4^UtpL+&w6MOx#>RS-?6yP9=Xhkz9byRy(fLHJzX}`
ze1J`D1R6-AzHs38B|zQpnwBv=Tkjk;JymgS<4Rrou5Hzw{+t+xwygxOi0h3DVqWwi
z)kUi03UXoaNUP&<yW<^qmKbOd2i%*1N+YcIsKg)Syl3q;RQpn_`{`L47}`=c$gQB4
zx9KQdcNxveipRjTB_}uD)`vAZV-;WDJv#Kcde&SqTD>M2oE&nc=9hYJSY~(`kKbr2
RX6@Um*|)VL7ugD4`X9)&^vVDL

delta 3026
zcmV;@3oZ2OwFs)U2#`JqH7z+aH(_NlfkuT!0kuW~#SVWVn3?z+1CiOxTRjVDi@()6
zqb5Bwv!~!ott2N@h=~PZ&7NiykSP^pYJpg0JCkz?3c2=Y7K*+6KBb_XP*F}SloM)m
zRl=uKlv4}k)NZaJ7!;0Gm&l}>>ddbw+D=tA#dRiTY7g?kdM0YPBNnS}kx8>W@hgh5
zRM`|u+&O>ltrB>M;$}$fiHS^_=&4^(l&H$4h~l=JZp9&{xEvnq*F`4H^vtg)%2Z`j
zOwY^|U2KL-UOIW=f@|!<ATnv5=YB;|o+_K-DOTKJR3WA|L7LG%RAn>TO$Ry)sK*7p
z*oRAG(zWo?uP9mzDx2c@(q5l92@u5<quA1+$fSRXe&<&dC91M1qTlsifMCm#q7xdz
z#31N}?Wxy<(I4TJVm2N#6KBS*+i#9Ou<Rb1qUV$R+x*)Edv9h8v_qgh6Kx0R1VM?0
z+sv}D4ubZrtX;68uoUBKX4y#xLHm}{E>Kxmf&n$NET>7JlK|+1Y*NiETWS*QGypp#
z8(Dud%N{xi+qZ~z!A?aL(+s7VWg$(%odj?vbkk{O*-Vpgrvcn)f-yC-tf)!AvjFgn
zXkN`MyJ`~XNdWYOW^m0cOKTG5X#n$-XoAfw+iMc&Spf8mW|Yk=Yittcc>wb~#Y~%7
z7S%!IzD>0Yc_v<3nyEFjY^+JRlK}37XncRoEURl0=rjO2rI}+h%MP1_ISXLUhz8os
zvdkudo&-QoXeQgtvehPGo(3>aQ;fKoWxY*8J_{h9rI>Xy%buHrd>%kPryF`R%fg$4
z`!az0l5YCVEGz9GZr@JZg?l1;i@5nVv+TA>n3DkJglN#sEK6<@=rjO2rI~m$%eH@;
zggFaf&WJ|e%(C_-fu00FPiSV~%(DL`VV(vsPg4xTnPm}9LOu&1pV3XlnPnqR!aWb*
zo>Ps-nPul4MD1I8yHHQX+j>fRTTdx(Yv1<UjX6m%31^lqI0<<gK%S-;i8ISOoP<0J
zAkXM#<IJ)bC*ht1a8Ia)<jk@lC!v3y22f9Frsd4C0uN&L?Z91_XQCyO%)^;w7fynm
z1Yjo#2II`K6ej^s1He<d2|2TD$4R)e0Pc)xRL(4GauVuE0QH1sX3i}8auVig0P~b=
zc+M;v@gQv9O56o|E*dh;c$`^Q<0RZk0C$pLPR=YlauV<~06e7{m@~_=oP>Wm3!u(u
zCg;quH78-71Tas?M(E747Z1YrEyi82FGY)@7?Lx~f}Dgp37}4>rsd4CDJP*$1E^D~
zu{pD>%t@%T0P2ipe$Fhra}wrB0P}=wkj^YibQ0`Y0QM}wM4egI<U!!RJ-G|`JJE^>
zX6DSYFDHRc0-zJJ;W@J`&Pji;vjFTY!4#cYHs~balK}7u)i|A5R_P?v(*Wuz&0L)s
z`|=QE&%)dRD7GO8cIV785f1|Pjl^A$VoQr=JI*YlaT4q#06R&rCTErzISF_g0G=k;
zmov+-oCG`z0MDov=gcxSC!wAMP)}$!=*%)cCt;ojFi(kA>C7@mCxL&S1whY;cIwPB
zP$z+&2SCq>mg~$iG7p0G&CFe(Vn3K@ea<Yia}w?(fICUBM`xBHIth3h0G?7U)R|?P
zPC}gpP-irob!Hi>lQ2&Lm?uOlc4nEclR!@cpr=H;c4is0lR(b`pl1n|?#wbu4+8hi
z(p|vv8%wcPXO@{d33Y!GK%LO+*O_IwPQsi9FsDR|c4nEflR#$y&>7Ljoms~1B+!!p
z=n2v4omuAYB+%0U=qcF_o>>O)B-pb6>{)_kJhM#VNx<g;;B&gIJhP1CNw_ZqxGxi|
z=b2^b9t7^2y1RgdeF4P+o>`{vB+y9!bV9a?XO=NM33eKQozj1;<e6n2Pr{uAaA$P8
zd1e{RlW<Q0xF>W=dS;o>lW<Q1xTguW^~@N<hj4r5@D5bbkmE-3%viOD;CgoL4mh#X
zPO^4q#ymZQ*fUUfAd1~Wn%O!tcIF|-o~5}1Qf%u`?9Z7o7!LvVOvW96V)>n5NY0E2
zIRS6t$D0sM%b9<%1rGuCtic_CVl|j#BhHLbcL=d(*6lzPD|bX=Z)VKA378W<=7eVc
z&F&_2>ue|39ZVEme!bZp$w=6E+;*v+INfkF;~tx2YVFnjt=nxjGv2I8md0NF6StRZ
zW?VLt>>|DTr*2oy%=o7z*-?4*&)j}%nemcIvitDrKXHG1&t%3kAZah&tN+yPF_0N=
zZlqmOul_T)mp5iyaFO=Ry!y}GuDO_T&P3YJ@ali*cG|>@QytRUwpagmZf85}j<jZD
zoUXW(Po17vnDLTAT6Obk|JLn2g&D69q_qjJ{)yXL1T*LCNi!O+{;B)?Ju@eMNrOzU
z{+atEFuQ-FER0#FG+oMP&ZC>`j<Wt`9j$b!K5?G6WOtNRF6%I)OZBPqge1G8tYulJ
z7hS5)oJSg&K5j@Dg85XRJ5M1peTI)P*z&1<={(xU^r<_-2*;=TJ8>BAzUbz+i+Tys
zT3A!wlufyrm!WtwN<#k-5b7$2+(yywGWo@Qxmtg*Pn-IFqaz2e%dS`yT@ecHQY`KY
zu4i!^ke38_h8#2KIKdj=cYZJXC*0F<z<-waUfkb4u&Na?$XHu$77*<Qg2_xF4o^7@
zcym+yal9z6cgrQucN`U#+-@K8sueNHa+wVS8clPF@%!yVR<$x}naqJfijJq5$np<2
z(`tXymCdGD0p7OWv}HQqv5Ej|l{q(fPVOpSrt=L7uxkPP^Uapk4QuDO<+=<phm3cv
z%;?~U>T;edubW(|>k*T2xHz?Xll@ozwr=i=W>GHk%ckyX&bRH#Vv*H1+4oYsZnC>-
zUSi<ILbG2#u%_O1CEL^;yQz1Z1);*nLcM<?tRHf`o%7qd&?&jEA2Pg?@jDsb`NxaT
z3y3(?l*jy~gn+trQ*{qVTP%ik_%x7B96Sx_`5OQGriV4J7EKt&<QOAZ(oW^|Y6SsT
zYls!yHIeeTb2~uYTHORNh%(z2O|foc@Z-ELaEC@0G|yCSpo0#h4zi5_hk9ICD*As{
z7^<IZj5N>^0%EIrj$!Udfc@Nl;DOd40p8&gi)&>KKwJ83-0opp9<SkhS2p<g%at3|
zn^9n1)ay0xqTYPoLOf?U8UDW5EO*7S%)Y*O^ZuJminc*?5ha>Nz|Jc;Tw(ma3`(lt
zf@m0gt=epNT}y);3G~ViAHM7z-VJ}kR$CgH$|peHU6RTqf6@?onFY+hHq}j4F0!8`
z)~m~RLA-`P<&uVGWffQ-Ac0h>rd*bvi6|zkM1cenO50&<ZW4^0SGGP(@dHI)u038V
z7f9@hxSqr>J6xZ{bf;4Ie*u9Nck?c+dz{mBN&#&aC@bclcy~4bG#=1%ycU1MG-7W4
zofHESo|5zYISReH_~-F2{7+W!0g3AVGJwS45)90B@M%zGg;D3joz4-*y+61YG1?&*
zX*qAo&M>eP<yz63&&7JXg6O_YS$=QFY|nI_8$M=(xS|+VQpIqW>{LOM>Ou>F)(>y4
zK4M*<dUdO(oE3|9FMu2bUoC%^{H5b1T4b-Qb`Ie*AFwax!_Yp=qFfCpPE;Tv`fkIk
z971jvST=`tCWEtHmj~eFM#+`@1+O-5rXO_3^d5A1$2slzWQ0Gx7Gu88AH?s4ile(9
z9i=$86z2oQZ)Bd#%9Hi;^x5h$!R<ISDwUXy$0~IERNrF&>-nnUWU_yDTh8G-(q{L!
zMVFb#^SlcAJF{yx9!4<JC_h6X76<ZzNr}<~lW2H=zu%Udtl$svk6np3bPU<oH7EBA
zpRK$B5f8cDb^-70VZ5XgqyoJtpLz1PGZV=kU_R%=K(mJ-D=oUvGNBJ@g6E1@x>l^?
zJ)4S&peq9E_B3AUD7rQxsIGmpPps?q>jZNU{P^*GU)yeTU`Jsq_?P|-1-WVJwXdVt
U^>Q8v3@ZB2Z~M^yKU?Ver{<T-wg3PC

diff --git a/docs/versions.yaml b/docs/versions.yaml
index 49032909c210..e18eb2e1f0dc 100644
--- a/docs/versions.yaml
+++ b/docs/versions.yaml
@@ -15,5 +15,5 @@
 "1.19": 1.19.5
 "1.20": 1.20.7
 "1.21": 1.21.6
-"1.22": 1.22.9
-"1.23": 1.23.5
+"1.22": 1.22.10
+"1.23": 1.23.6