Bump com.azure:azure-cosmos from 4.52.0 to 4.53.1

[dependabot]

Bumps com.azure:azure-cosmos from 4.52.0 to 4.53.1.

Release notes

Sourced from com.azure:azure-cosmos's releases.

azure-cosmos_4.53.1

4.53.1 (2023-12-06)

Bugs Fixed

• Fixed high number of PKRangeFeed calls when using BulkExecution without SparkConnector - See PR 37920

Other Changes

• Changed to DEBUG log level in WebExceptionRetryPolicy for non-handled exception scenario and retry scenario - See PR 37918

azure-cosmos_4.53.0

4.53.0 (2023-12-01)

Bugs Fixed

• Fixed a bug resulting in CosmosDiagnosticsContext.getStatusCode() always returning 0 for readMany operations. - See PR 37394
• Fixed an issue where PartitionKeyRange request will not do cross region retry. - See PR 37403
• Fixed an issue where Session consistency was not honored when the consistency level on the CosmosClientBuilder.consistencyLevel was not explicitly set to ConsistencyLevel.SESSION but the default account consistency level is session. If not enforcing session consistency is the intended behavior, you can set the CosmsoClientBuilder.consistencyLevel to ConsistencyLevel.EVENTUAL. - See PR 37377
• Fixed an issue where client level EndToEndOperationLatencyPolicyConfig.availabilityStrategy is not being applied for query - See PR 37511
• Fixed an issue where operation is not cancelled based on CosmosEndToEndOperationLatencyPolicyConfig.endToEndOperationTimeout when 429 happens - See PR 37764
• Fixed an issue where CosmosEndToEndOperationLatencyPolicyConfig.endToEndOperationTimeout is not applied for ReadMany - See PR 37764
• Fixed an issue with OFFSET and LIMIT query clause returning partial query results when used with DISTINCT - See PR 37860

Other Changes

• Modified the event payload when diagnostic details are traced (vis Open telemetry traces). The diagnostics can exceed the max. attribute size of 8KB. This PR will split the diagnostics and trace them in multiple events (ordered by SequenceNumber attribute) to ensure the full diagnostics message is available in logged events. - See PR 37376
• Added sessionRetryCfg to the diagnostic string and modified proactiveInit key name to proactiveInitCfg in the diagnostic string. - See PR 36711
• Modified 429 retry backoff time when retryAfter is not being returned from server. For 429/3200, SDK will retry immediately, for others SDK will backoff 100ms - See PR 37764

Commits

• 0ab6b40 azure-cosmos release 4.53.1, spark 4.24.1 (#37944)
• 41243ba Cosmos Spark - switching to reflection instead of bridge-approach to avoid Se...
• 753adcb [Automation] Generate SDK based on TypeSpec 0.11.3 (#37938)
• bee18c7 Increment package versions for communication releases (#37936)
• 5df120e Support Eclipse Foundation as well as Adoptium in Set-JavaVersion.ps1 (#37935)
• a731f97 [Patch-Release-POST] Merge released patch versions back to main branch, Part ...
• 05ec851 Update patch_release_client.txt (#37929)
• 23ee515 datalake async forgotten test files (#37914)
• 2b02072 Changed MS bot identifier to MS Teams app identifier. (#37463)
• fc8e083 Fixed a bug resulting in high number of PartitionKeyRange ReadFeed requests w...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Release notes

Upgraded the Cosmos DB client lib to fix security issues. CVE-2023-34062

[brfrn169]

Upgraded the gRPC lib, too. It looks like it doesn't break the backward compatibility.