chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
alpine	final	patch	3.20.1 -> 3.20.3
github.com/Masterminds/semver/v3	require	minor	v3.2.1 -> v3.3.0
github.com/Masterminds/sprig/v3	require	minor	v3.2.3 -> v3.3.0
github.com/adhocore/gronx	require	minor	v1.8.1 -> v1.19.0
github.com/aws/aws-sdk-go	require	minor	v1.54.20 -> v1.55.5
github.com/go-vela/types	require	digest	76a66e7 -> 3065db4
github.com/hashicorp/vault/api	require	minor	v1.14.0 -> v1.15.0
github.com/lestrrat-go/jwx/v2	require	patch	v2.1.0 -> v2.1.1
github.com/prometheus/client_golang	require	minor	v1.19.1 -> v1.20.4
github.com/redis/go-redis/v9	require	patch	v9.6.0 -> v9.6.1
github.com/urfave/cli/v2	require	patch	v2.27.2 -> v2.27.4
github/codeql-action	action	minor	v3.25.13 -> v3.26.8
go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin	require	minor	v0.53.0 -> v0.55.0
go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace	require	minor	v0.44.0 -> v0.55.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	require	minor	v0.53.0 -> v0.55.0
go.opentelemetry.io/otel	require	minor	v1.28.0 -> v1.30.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace	require	minor	v1.28.0 -> v1.30.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp	require	minor	v1.28.0 -> v1.30.0
go.opentelemetry.io/otel/sdk	require	minor	v1.28.0 -> v1.30.0
go.opentelemetry.io/otel/trace	require	minor	v1.28.0 -> v1.30.0
go.starlark.net	require	digest	ee8ed14 -> 42030a7
golang.org/x/crypto	require	minor	v0.25.0 -> v0.27.0
golang.org/x/oauth2	require	minor	v0.21.0 -> v0.23.0
golang.org/x/sync	require	minor	v0.7.0 -> v0.8.0
golang.org/x/time	require	minor	v0.5.0 -> v0.6.0
gorm.io/gorm	require	patch	v1.25.11 -> v1.25.12
k8s.io/apimachinery	require	minor	v0.30.3 -> v0.31.1

---

Release Notes

Masterminds/semver (github.com/Masterminds/semver/v3)

v3.3.0

Compare Source

What's Changed

• Fix: bad package in README by @​sdelicata in https://github.com/Masterminds/semver/pull/226
• Updating the GitHub Actions and versions of Go used by @​mattfarina in https://github.com/Masterminds/semver/pull/229
• Fix spelling in README by @​robinschneider in https://github.com/Masterminds/semver/pull/222
• Adding go build cache to fuzz output by @​mattfarina in https://github.com/Masterminds/semver/pull/232
• Add caching to fuzz testing by @​mattfarina in https://github.com/Masterminds/semver/pull/234
• updating github actions by @​mattfarina in https://github.com/Masterminds/semver/pull/235
• feat: nil version equality by @​KnutZuidema in https://github.com/Masterminds/semver/pull/213
• add >= and <= by @​grosser in https://github.com/Masterminds/semver/pull/238
• doc: hyphen range constraint without whitespace by @​johnnychen94 in https://github.com/Masterminds/semver/pull/216
• Removing reference to vert by @​mattfarina in https://github.com/Masterminds/semver/pull/245
• simplify StrictNewVersion by @​grosser in https://github.com/Masterminds/semver/pull/241
• Updating the testing version of Go used by @​mattfarina in https://github.com/Masterminds/semver/pull/246
• bumping min version in go.mod based on what's tested by @​mattfarina in https://github.com/Masterminds/semver/pull/248
• Updating changelog for 3.3.0 by @​mattfarina in https://github.com/Masterminds/semver/pull/249

New Contributors

• @​sdelicata made their first contribution in https://github.com/Masterminds/semver/pull/226
• @​robinschneider made their first contribution in https://github.com/Masterminds/semver/pull/222
• @​KnutZuidema made their first contribution in https://github.com/Masterminds/semver/pull/213
• @​grosser made their first contribution in https://github.com/Masterminds/semver/pull/238
• @​johnnychen94 made their first contribution in https://github.com/Masterminds/semver/pull/216

Full Changelog: Masterminds/semver@v3.2.1...v3.3.0

Masterminds/sprig (github.com/Masterminds/sprig/v3)

v3.3.0

Compare Source

What's Changed

• Updating the Go versions used in testing by @​mattfarina in https://github.com/Masterminds/sprig/pull/405
• Change intial to initial. by @​chrishalbert in https://github.com/Masterminds/sprig/pull/391
• Updating dependencies by @​mattfarina in https://github.com/Masterminds/sprig/pull/404
• correct value by @​jheyduk in https://github.com/Masterminds/sprig/pull/376
• Updating location of mergo by @​mattfarina in https://github.com/Masterminds/sprig/pull/406
• feature: added sha512sum function by @​itzik-elayev in https://github.com/Masterminds/sprig/pull/400
• docs: Add missing link to url functions by @​carlpett in https://github.com/Masterminds/sprig/pull/375
• Update doc.go by @​chey in https://github.com/Masterminds/sprig/pull/369
• Update mathf.md by @​zzhu41 in https://github.com/Masterminds/sprig/pull/290
• Removing duplicate documentation by @​mattfarina in https://github.com/Masterminds/sprig/pull/407
• Updating the changelog for the 3.3.0 release by @​mattfarina in https://github.com/Masterminds/sprig/pull/408

New Contributors

• @​chrishalbert made their first contribution in https://github.com/Masterminds/sprig/pull/391
• @​jheyduk made their first contribution in https://github.com/Masterminds/sprig/pull/376
• @​itzik-elayev made their first contribution in https://github.com/Masterminds/sprig/pull/400
• @​carlpett made their first contribution in https://github.com/Masterminds/sprig/pull/375
• @​chey made their first contribution in https://github.com/Masterminds/sprig/pull/369
• @​zzhu41 made their first contribution in https://github.com/Masterminds/sprig/pull/290

Full Changelog: Masterminds/sprig@v3.2.3...v3.3.0

adhocore/gronx (github.com/adhocore/gronx)

v1.19.0

Compare Source

What's Changed

• fix: goroutine leak for tasker by @​rfyiamcool in https://github.com/adhocore/gronx/pull/38
• feat: optimize struct field align, add tasker Running check by @​adhocore in https://github.com/adhocore/gronx/pull/43

Full Changelog: adhocore/gronx@v1.8.1...v1.19.0

aws/aws-sdk-go (github.com/aws/aws-sdk-go)

v1.55.5

Compare Source

===

Service Client Updates

• service/appstream: Updates service API and documentation
  • Added support for Red Hat Enterprise Linux 8 on Amazon AppStream 2.0
• service/autoscaling: Updates service API and documentation
  • Increase the length limit for VPCZoneIdentifier from 2047 to 5000
• service/codepipeline: Updates service API, documentation, and paginators
  • AWS CodePipeline V2 type pipelines now support stage level conditions to enable development teams to safely release changes that meet quality and compliance requirements.
• service/elasticache: Updates service documentation
  • Doc only update for changes to deletion API.
• service/elasticloadbalancing: Updates service API
• service/eventbridge: Updates service API
• service/logs: Updates service API
  • Add v2 smoke tests and smithy smokeTests trait for SDK testing.
• service/models.lex.v2: Updates service API and documentation
• service/rolesanywhere: Updates service API and documentation
• service/tnb: Updates service API and documentation
• service/workspaces: Updates service documentation
  • Removing multi-session as it isn't supported for pools

v1.55.4

Compare Source

===

Service Client Updates

• service/elasticache: Updates service documentation
  • Renaming full service name as it appears in developer documentation.
• service/memorydb: Updates service API and documentation

v1.55.3

Compare Source

===

Service Client Updates

• service/application-autoscaling: Updates service API
• service/application-signals: Updates service API and documentation
• service/bedrock-runtime: Updates service API and documentation
• service/codecommit: Updates service API and documentation
  • CreateRepository API now throws OperationNotAllowedException when the account has been restricted from creating a repository.
• service/datazone: Updates service API and documentation
• service/ec2: Updates service API and documentation
  • EC2 Fleet now supports using custom identifiers to reference Amazon Machine Images (AMI) in launch requests that are configured to choose from a diversified list of instance types.
• service/ecr: Updates service API, documentation, paginators, and examples
  • API and documentation updates for Amazon ECR, adding support for creating, updating, describing and deleting ECR Repository Creation Template.
• service/eks: Updates service API and documentation
• service/elasticloadbalancingv2: Updates service API, documentation, and examples
• service/network-firewall: Updates service API and documentation
• service/outposts: Updates service API and documentation
• service/states: Updates service API and documentation
  • This release adds support to customer managed KMS key encryption in AWS Step Functions.

SDK Bugs

• Remove broken integration test.
  • Remove integration test broken by cloudsearch service.

v1.55.2

Compare Source

===

Service Client Updates

• service/cleanrooms: Updates service API and documentation
• service/dynamodb: Updates service API, documentation, waiters, paginators, and examples
  • DynamoDB doc only update for July
• service/iotsitewise: Updates service API and documentation
• service/mediapackagev2: Updates service API
• service/medical-imaging: Updates service API and documentation
• service/pinpoint-sms-voice-v2: Updates service API and documentation

SDK Bugs

• Add missing bool error matching.
  • This enables waiters defined to match on presence/absence of errors.

v1.55.1

Compare Source

===

Service Client Updates

• service/appsync: Updates service API and paginators
• service/cleanrooms: Updates service API, documentation, and paginators
• service/cleanroomsml: Updates service API, documentation, and waiters
• service/connect: Updates service API and documentation
• service/connect-contact-lens: Updates service API and documentation
• service/datazone: Updates service API and documentation
• service/entityresolution: Updates service API and documentation

v1.55.0

Compare Source

===

Service Client Updates

• service/datazone: Updates service API, documentation, and paginators
• service/ivs: Updates service API and documentation
• service/redshift-serverless: Updates service API and documentation

SDK Features

• service/mobile: Remove Mobile
  • This change removes the Mobile service, which has been deprecated.

SDK Bugs

• Apply sensitive struct tag to lists/maps with sensitive members.
  • This change propagates existing sensitive protection to lists/maps.

hashicorp/vault (github.com/hashicorp/vault/api)

v1.15.0

Compare Source

1.15.0

September 27, 2023

SECURITY:

• secrets/transit: fix a regression that was honoring nonces provided in non-convergent modes during encryption. [GH-22852]

CHANGES:

• auth/alicloud: Update plugin to v0.16.0 [GH-22646]
• auth/azure: Update plugin to v0.16.0 [GH-22277]
• auth/azure: Update plugin to v0.16.1 [GH-22795]
• auth/azure: Update plugin to v0.16.2 [GH-23060]
• auth/cf: Update plugin to v0.15.1 [GH-22758]
• auth/gcp: Update plugin to v0.16.1 [GH-22612]
• auth/jwt: Update plugin to v0.17.0 [GH-22678]
• auth/kerberos: Update plugin to v0.10.1 [GH-22797]
• auth/kubernetes: Update plugin to v0.17.0 [GH-22709]
• auth/kubernetes: Update plugin to v0.17.1 [GH-22879]
• auth/ldap: Normalize HTTP response codes when invalid credentials are provided [GH-21282]
• auth/oci: Update plugin to v0.14.2 [GH-22805]
• core (enterprise): Ensure Role Governing Policies are only applied down the namespace hierarchy
• core/namespace (enterprise): Introduce the concept of high-privilege namespace (administrative namespace),
  which will have access to some system backend paths that were previously only accessible in the root namespace. [GH-21215]
• core: Bump Go version to 1.21.1.
• database/couchbase: Update plugin to v0.9.3 [GH-22854]
• database/couchbase: Update plugin to v0.9.4 [GH-22871]
• database/elasticsearch: Update plugin to v0.13.3 [GH-22696]
• database/mongodbatlas: Update plugin to v0.10.1 [GH-22655]
• database/redis-elasticache: Update plugin to v0.2.2 [GH-22584]
• database/redis-elasticache: Update plugin to v0.2.3 [GH-22598]
• database/redis: Update plugin to v0.2.2 [GH-22654]
• database/snowflake: Update plugin to v0.9.0 [GH-22516]
• events: Log level for processing an event dropped from info to debug. [GH-22997]
• events: data_path will include full data path of secret, including name. [GH-22487]
• replication (enterprise): Switch to non-deprecated gRPC field for resolver target host
• sdk/logical/events: EventSender interface method is now SendEvent instead of Send. [GH-22487]
• secrets/ad: Update plugin to v0.16.1 [GH-22856]
• secrets/alicloud: Update plugin to v0.15.1 [GH-22533]
• secrets/azure: Update plugin to v0.16.2 [GH-22799]
• secrets/azure: Update plugin to v0.16.3 [GH-22824]
• secrets/gcp: Update plugin to v0.17.0 [GH-22746]
• secrets/gcpkms: Update plugin to v0.15.1 [GH-22757]
• secrets/keymgmt: Update plugin to v0.9.3
• secrets/kubernetes: Update plugin to v0.6.0 [GH-22823]
• secrets/kv: Update plugin to v0.16.1 [GH-22716]
• secrets/mongodbatlas: Update plugin to v0.10.1 [GH-22748]
• secrets/openldap: Update plugin to v0.11.2 [GH-22734]
• secrets/terraform: Update plugin to v0.7.3 [GH-22907]
• secrets/transform (enterprise): Enforce a transformation role's max_ttl setting on encode requests, a warning will be returned if max_ttl was applied.
• storage/aerospike: Aerospike storage shouldn't be used on 32-bit architectures and is now unsupported on them. [GH-20825]
• telemetry: Replace vault.rollback.attempt.{MOUNT_POINT} and vault.route.rollback.{MOUNT_POINT} metrics with vault.rollback.attempt and vault.route.rollback metrics by default. Added a telemetry configuration add_mount_point_rollback_metrics which, when set to true, causes vault to emit the metrics with mount points in their names. [GH-22400]

FEATURES:

• Certificate Issuance External Policy Service (CIEPS) (enterprise): Allow highly-customizable operator control of certificate validation and generation through the PKI Secrets Engine.
• Copyable KV v2 paths in UI: KV v2 secret paths are copyable for use in CLI commands or API calls [GH-22551]
• Dashboard UI: Dashboard is now available in the UI as the new landing page. [GH-21057]
• Database Static Role Advanced TTL Management: Adds the ability to rotate
• Event System: Add subscribe capability and subscribe_event_types to policies for events. [GH-22474]
  static roles on a defined schedule. [GH-22484]
• GCP IAM Support: Adds support for IAM-based authentication to MySQL and PostgreSQL backends using Google Cloud SQL. [GH-22445]
• Improved KV V2 UI: Updated and restructured secret engine for KV (version 2 only) [GH-22559]
• Merkle Tree Corruption Detection (enterprise): Add a new endpoint to check merkle tree corruption.
• Plugin Containers: Vault supports registering, managing, and running plugins inside a container on Linux. [GH-22712]
• SAML Auth Method (enterprise): Enable users to authenticate with Vault using their identity in a SAML Identity Provider.
• Seal High Availability Beta (enterprise): operators can try out configuring more than one automatic seal for resilience against seal provider outages. Not for production use at this time.
• Secrets Sync (enterprise): Add the ability to synchronize KVv2 secret with external secrets manager solutions.
• UI LDAP secrets engine: Add LDAP secrets engine to the UI. [GH-20790]

IMPROVEMENTS:

• Bump github.com/hashicorp/go-plugin version v1.4.9 -> v1.4.10 [GH-20966]
• api: add support for cloning a Client's tls.Config. [GH-21424]
• api: adding a new api sys method for replication status [GH-20995]
• audit: add core audit events experiment [GH-21628]
• auth/aws: Added support for signed GET requests for authenticating to vault using the aws iam method. [GH-10961]
• auth/azure: Add support for azure workload identity authentication (see issue
  #​18257). Update go-kms-wrapping dependency to include PR
  #​155 [GH-22994]
• auth/azure: Added Azure API configurable retry options [GH-23059]
• auth/cert: Adds support for requiring hexadecimal-encoded non-string certificate extension values [GH-21830]
• auth/ldap: improved login speed by adding concurrency to LDAP token group searches [GH-22659]
• auto-auth/azure: Added Azure Workload Identity Federation support to auto-auth (for Vault Agent and Vault Proxy). [GH-22264]
• auto-auth: added support for LDAP auto-auth [GH-21641]
• aws/auth: Adds a new config field use_sts_region_from_client which allows for using dynamic regional sts endpoints based on Authorization header when using IAM-based authentication. [GH-21960]
• command/server: add -dev-tls-san flag to configure subject alternative names for the certificate generated when using -dev-tls. [GH-22657]
• core (ent) : Add field that allows lease-count namespace quotas to be inherited by child namespaces.
• core : Add field that allows rate-limit namespace quotas to be inherited by child namespaces. [GH-22452]
• core/fips: Add RPM, DEB packages of FIPS 140-2 and HSM+FIPS 140-2 Vault Enterprise.
• core/quotas: Add configuration to allow skipping of expensive role calculations [GH-22651]
• core: Add a new periodic metric to track the number of available policies, vault.policy.configured.count. [GH-21010]
• core: Fix OpenAPI representation and -output-policy recognition of some non-standard sudo paths [GH-21772]
• core: Fix regexes for sys/raw/ and sys/leases/lookup/ to match prevailing conventions [GH-21760]
• core: Log rollback manager failures during unmount, remount to prevent replication failures on secondary clusters. [GH-22235]
• core: Use a worker pool for the rollback manager. Add new metrics for the rollback manager to track the queued tasks. [GH-22567]
• core: add a listener configuration "chroot_namespace" that forces requests to use a namespace hierarchy [GH-22304]
• core: add a listener configuration "chroot_namespace" that forces requests to use a namespace hierarchy
• core: remove unnecessary *BarrierView field from backendEntry struct [GH-20933]
• core: use Go stdlib functionalities instead of explicit byte/string conversions [GH-21854]
• docs: Clarify when a entity is created [GH-22233]
• eventbus: updated go-eventlogger library to allow removal of nodes referenced by pipelines (used for subscriptions) [GH-21623]
• events: Allow subscriptions to multiple namespaces [GH-22540]
• events: Enabled by default [GH-22815]
• events: WebSocket subscriptions add support for boolean filter expressions [GH-22835]
• framework: Make it an error for CreateOperation to be defined without an ExistenceCheck, thereby fixing misleading x-vault-createSupported in OpenAPI [GH-18492]
• kmip (enterprise): Add namespace lock and unlock support [GH-21925]
• openapi: Better mount points for kv-v1 and kv-v2 in openapi.json [GH-21563]
• openapi: Fix generated types for duration strings [GH-20841]
• openapi: Fix generation of correct fields in some rarer cases [GH-21942]
• openapi: Fix response definitions for list operations [GH-21934]
• openapi: List operations are now given first-class representation in the OpenAPI document, rather than sometimes being overlaid with a read operation at the same path [GH-21723]
• plugins: Containerized plugins can be configured to still work when running with systemd's PrivateTmp=true setting. [GH-23215]
• replication (enterprise): Avoid logging warning if request is forwarded from a performance standby and not a performance secondary
• replication (enterprise): Make reindex less disruptive by allowing writes during the flush phase.
• sdk/framework: Adds replication state helper for backends to check for read-only storage [GH-21743]
• secrets/database: Improves error logging for static role rotations by including the database and role names. [GH-22253]
• secrets/db: Remove the service_account_json parameter when reading DB connection details [GH-23256]
• secrets/pki: Add a parameter to allow ExtKeyUsage field usage from a role within ACME. [GH-21702]
• secrets/transform (enterprise): Switch to pgx PostgreSQL driver for better timeout handling
• secrets/transit: Add support to create CSRs from keys in transit engine and import/export x509 certificates [GH-21081]
• storage/dynamodb: Added three permit pool metrics for the DynamoDB backend, pending_permits, active_permits, and pool_size. [GH-21742]
• storage/etcd: Make etcd parameter MaxCallSendMsgSize configurable [GH-12666]
• storage/raft: Cap the minimum dead_server_last_contact_threshold to 1m. [GH-22040]
• sys/metrics (enterprise): Adds a gauge metric that tracks whether enterprise builtin secret plugins are enabled. [GH-21681]
• ui: Add API Explorer link to Sidebar, under Tools. [GH-21578]
• ui: Add pagination to PKI roles, keys, issuers, and certificates list pages [GH-23193]
• ui: Added allowed_domains_template field for CA type role in SSH engine [GH-23119]
• ui: Adds mount configuration details to Kubernetes secrets engine configuration view [GH-22926]
• ui: Adds tidy_revoked_certs to PKI tidy status page [GH-23232]
• ui: Adds warning before downloading KV v2 secret values [GH-23260]
• ui: Display minus icon for empty MaskedInput value. Show MaskedInput for KV secrets without values [GH-22039]
• ui: JSON diff view available in "Create New Version" form for KV v2 [GH-22593]
• ui: KV View Secret card will link to list view if input ends in "/" [GH-22502]
• ui: Move access to KV V2 version diff view to toolbar in Version History [GH-23200]
• ui: Update pki mount configuration details to match the new mount configuration details pattern [GH-23166]
• ui: add example modal to policy form [GH-21583]
• ui: adds allowed_user_ids field to create role form and user_ids to generate certificates form in pki [GH-22191]
• ui: display CertificateCard instead of MaskedInput for certificates in PKI [GH-22160]
• ui: enables create and update KV secret workflow when control group present [GH-22471]
• ui: implement hashicorp design system alert component [GH-21375]
• ui: update detail views that render ttl durations to display full unit instead of letter (i.e. 'days' instead of 'd') [GH-20697]
• ui: update unseal and DR operation token flow components [GH-21871]
• ui: upgrade Ember to 4.12 [GH-22122]

DEPRECATIONS:

• auth/centrify: Centrify plugin is deprecated as of 1.15, slated for removal in 1.17 [GH-23050]

BUG FIXES:

• activity (enterprise): Fix misattribution of entities to no or child namespace auth methods [GH-18809]
• agent: Environment variable VAULT_CACERT_BYTES now works for Vault Agent templates. [GH-22322]
• agent: Fix "generate-config" command documentation URL [GH-21466]
• api/client: Fix deadlock in client.CloneWithHeaders when used alongside other client methods. [GH-22410]
• api: Fix breakage with UNIX domain socket addresses introduced by newest Go versions as a security fix. [GH-22523]
• audit: Prevent panic due to nil pointer receiver for audit header formatting. [GH-22694]
• auth/azure: Fix intermittent 401s by preventing performance secondary clusters from rotating root credentials. [GH-21800]
• auth/token, sys: Fix path-help being unavailable for some list-only endpoints [GH-18571]
• auth/token: Fix parsing of auth/token/create fields to avoid incorrect warnings about ignored parameters [GH-18556]
• awsutil: Update awsutil to v0.2.3 to fix a regression where Vault no longer
  respects AWS_ROLE_ARN, AWS_WEB_IDENTITY_TOKEN_FILE, and AWS_ROLE_SESSION_NAME. [GH-21951]
• cli: Avoid printing "Success" message when -field flag is provided during a vault write. [GH-21546]
• cli: Fix the CLI failing to return wrapping information for KV PUT and PATCH operations when format is set to table. [GH-22818]
• core (enterprise): Fix sentinel policy check logic so that sentinel
  policies are not used when Sentinel feature isn't licensed.
• core (enterprise): Remove MFA Configuration for namespace when deleting namespace
• core/managed-keys (enterprise): Allow certain symmetric PKCS#11 managed key mechanisms (AES CBC with and without padding) to operate without an HMAC.
• core/metrics: vault.raft_storage.bolt.write.time should be a counter not a summary [GH-22468]
• core/quotas (enterprise): Fix a case where we were applying login roles to lease count quotas in a non-login context.
  Also fix a related potential deadlock. [GH-21110]
• core/quotas: Only perform ResolveRoleOperation for role-based quotas and lease creation. [GH-22597]
• core/quotas: Reduce overhead for role calculation when using cloud auth methods. [[Add validate and testing actions pipeline #2

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 53.04%. Comparing base (f856ee0) to head (8481ab5).
Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1163   +/-   ##
=======================================
  Coverage   53.04%   53.04%           
=======================================
  Files         559      559           
  Lines       19742    19742           
=======================================
  Hits        10473    10473           
  Misses       8700     8700           
  Partials      569      569           

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 26 additional dependencies were updated

Details:

Package	Change
github.com/bytedance/sonic	v1.11.9 -> v1.12.2
github.com/bytedance/sonic/loader	v0.1.1 -> v0.2.0
github.com/gabriel-vasile/mimetype	v1.4.4 -> v1.4.5
github.com/go-playground/validator/v10	v10.22.0 -> v10.22.1
github.com/grpc-ecosystem/grpc-gateway/v2	v2.21.0 -> v2.22.0
github.com/huandu/xstrings	v1.3.3 -> v1.5.0
github.com/lestrrat-go/httprc	v1.0.5 -> v1.0.6
github.com/mitchellh/copystructure	v1.0.0 -> v1.2.0
github.com/mitchellh/reflectwalk	v1.0.1 -> v1.0.2
github.com/pelletier/go-toml/v2	v2.2.2 -> v2.2.3
github.com/prometheus/client_model	v0.5.0 -> v0.6.1
github.com/prometheus/common	v0.48.0 -> v0.55.0
github.com/prometheus/procfs	v0.12.0 -> v0.15.1
github.com/shopspring/decimal	v1.2.0 -> v1.4.0
github.com/spf13/cast	v1.3.1 -> v1.7.0
github.com/xrash/smetrics	v0.0.0-20240312152122-5f08fbb34913 -> v0.0.0-20240521201337-686a1a2994c1
go.opentelemetry.io/otel/metric	v1.28.0 -> v1.30.0
golang.org/x/arch	v0.8.0 -> v0.10.0
golang.org/x/net	v0.27.0 -> v0.29.0
golang.org/x/sys	v0.22.0 -> v0.25.0
golang.org/x/text	v0.16.0 -> v0.18.0
google.golang.org/genproto/googleapis/api	v0.0.0-20240730163845-b1a4ccb954bf -> v0.0.0-20240903143218-8af14fe29dc1
google.golang.org/genproto/googleapis/rpc	v0.0.0-20240730163845-b1a4ccb954bf -> v0.0.0-20240903143218-8af14fe29dc1
google.golang.org/grpc	v1.65.0 -> v1.66.1
k8s.io/klog/v2	v2.120.1 -> v2.130.1
k8s.io/utils	v0.0.0-20230726121419-3b25d923346b -> v0.0.0-20240711033017-18e509b52bc8