Bump github.com/hashicorp/consul from 1.22.5 to 1.22.6

[dependabot]

Bumps github.com/hashicorp/consul from 1.22.5 to 1.22.6.

Release notes

Sourced from github.com/hashicorp/consul's releases.

v1.22.6

1.22.6 (March 23, 2026)

SECURITY:

• security: upgrade envoy version to 1.35.9 and 1.34.13 [GH-23372]
• security: update google.golang.org/grpc to fix CVE-2026-33186 [GH-23379]
• security: upgrade go version to 1.25.8 [GH-23322]
• security: bump golang.org/x/* dependencies to align with consul-enterprise and address security vulnerabilities. [GH-23322]

IMPROVEMENTS:

• api-gateway: Add support to disable traffic with weight 0 in services for HTTPRoute backends, allowing explicit zero-weight backends to be excluded from traffic. [GH-23216]
• ui: Fixed Consul UI to work in non-secure environments by enabling Ember Data's UUID polyfill for crypto.randomUUID. [GH-23341]
• ui: Fixed Consul UI services page navigation by ensuring route transitions trigger the expected model hook behavior after Ember upgrade. [GH-23271]
• ui: Replaced deprecated SideNav component with AppSideNav for improved navigation structure. [GH-23289]

Changelog

Sourced from github.com/hashicorp/consul's changelog.

1.22.6 (March 23, 2026)

SECURITY:

• security: upgrade envoy version to 1.35.9 and 1.34.13 [GH-23372]
• security: update google.golang.org/grpc to fix CVE-2026-33186 [GH-23379]
• security: upgrade go version to 1.25.8 [GH-23322]
• security: bump golang.org/x/* dependencies to align with consul-enterprise and address security vulnerabilities. [GH-23322]

IMPROVEMENTS:

• api-gateway: Add support to disable traffic with weight 0 in services for HTTPRoute backends, allowing explicit zero-weight backends to be excluded from traffic. [GH-23216]
• ui: Fixed Consul UI to work in non-secure environments by enabling Ember Data's UUID polyfill for crypto.randomUUID. [GH-23341]
• ui: Fixed Consul UI services page navigation by ensuring route transitions trigger the expected model hook behavior after Ember upgrade. [GH-23271]
• ui: Replaced deprecated SideNav component with AppSideNav for improved navigation structure. [GH-23289]

Commits

• 9756668 Fix google.golang.org/grpc CVE-2026-33186 (#23380)
• 3702bda Prepare 1.22.6 march patch (#23358)
• fd43a5a Envoy version and go version upgarde (#23373)
• 87989fe Backport of add uuid pollyfill to work for non-secure ui access into release/...
• c63f816 security: bump golang.org/x/* and Go version to 1.25.8 (1.22.x) (#23323)
• 0e79a99 fixes kv page code editor's content wrapping issue (#23314) (#23316)
• 8b6f9f9 Post release changelog updates in release/1.22.x (#23292)
• 6adb65a Backport of (apigw/httproute) Add support to disable traffic with weight 0 in...
• 5efb272 Backport of migrate from deprecated hds:sidenav to hds:appsidenav into releas...
• 5dfda85 Backport of UI-a11y fix svg aria hidden issue into release/1.22.x (#23299)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)