Update Go Dependencies - abandoned

[red-hat-konflux]

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
chainguard.dev/go-grpc-kit	require	patch	v0.17.11 -> v0.17.15
chainguard.dev/sdk	require	patch	v0.1.29 -> v0.1.47
cloud.google.com/go	indirect	minor	v0.121.4 -> v0.123.0
cloud.google.com/go/auth	indirect	minor	v0.16.3 -> v0.18.1
cloud.google.com/go/compute/metadata	indirect	minor	v0.7.0 -> v0.9.0
cloud.google.com/go/iam	indirect	patch	v1.5.2 -> v1.5.3
cloud.google.com/go/kms	indirect	minor	v1.22.0 -> v1.23.2
cloud.google.com/go/longrunning	indirect	minor	v0.6.7 -> v0.8.0
cloud.google.com/go/security	require	patch	v1.19.0 -> v1.19.2
github.com/Azure/azure-sdk-for-go/sdk/azcore	indirect	minor	v1.18.1 -> v1.21.0
github.com/Azure/azure-sdk-for-go/sdk/azidentity	indirect	minor	v1.10.1 -> v1.13.1
github.com/Azure/azure-sdk-for-go/sdk/internal	indirect	patch	v1.11.1 -> v1.11.2
github.com/AzureAD/microsoft-authentication-library-for-go	indirect	minor	v1.4.2 -> v1.6.0
github.com/ThalesGroup/crypto11	require	minor	v1.4.1 -> v1.6.0
github.com/aws/aws-sdk-go-v2/credentials	indirect	minor	v1.17.71 -> v1.19.7
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	indirect	minor	v1.16.33 -> v1.18.17
github.com/aws/aws-sdk-go-v2/internal/configsources	indirect	minor	v1.3.37 -> v1.4.17
github.com/aws/aws-sdk-go-v2/internal/ini	indirect	patch	v1.8.3 -> v1.8.4
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	indirect	minor	v1.12.4 -> v1.13.4
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	indirect	minor	v1.12.18 -> v1.13.17
github.com/chainguard-dev/clog	indirect	minor	v1.7.0 -> v1.8.0
github.com/googleapis/enterprise-certificate-proxy	indirect	patch	v0.3.6 -> v0.3.11
github.com/jhump/protoreflect	indirect	minor	v1.17.0 -> v1.18.0
github.com/letsencrypt/boulder	indirect	minor	v0.0.0-20240620165639-de9c06129bec -> v0.20260120.0
github.com/mattn/go-runewidth	indirect	patch	v0.0.16 -> v0.0.19
github.com/miekg/pkcs11	indirect	patch	v1.1.1 -> v1.1.2
github.com/prometheus/client_golang	require	minor	v1.22.0 -> v1.23.2
github.com/prometheus/procfs	indirect	minor	v0.17.0 -> v0.19.2
github.com/sagikazarmark/locafero	indirect	minor	v0.9.0 -> v0.12.0
github.com/secure-systems-lab/go-securesystemslib	indirect	minor	v0.9.0 -> v0.10.0
github.com/sigstore/sigstore	require	minor	v1.9.5 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/aws	require	minor	v1.9.5 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/azure	require	minor	v1.9.5 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/gcp	require	minor	v1.9.5 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/hashivault	require	minor	v1.9.5 -> v1.10.4
github.com/spf13/afero	indirect	minor	v1.14.0 -> v1.15.0
github.com/spf13/cast	indirect	minor	v1.9.2 -> v1.10.0
github.com/spf13/cobra	require	minor	v1.9.1 -> v1.10.2
github.com/spf13/pflag	indirect	patch	v1.0.7 -> v1.0.10
github.com/spf13/pflag	require	patch	v1.0.7 -> v1.0.10
github.com/spf13/viper	require	minor	v1.20.1 -> v1.21.0
github.com/stretchr/testify	require	minor	v1.10.0 -> v1.11.1
go.opentelemetry.io/auto/sdk	indirect	minor	v1.1.0 -> v1.2.1
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	indirect	minor	v0.62.0 -> v0.64.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	indirect	minor	v0.62.0 -> v0.64.0
go.opentelemetry.io/proto/otlp	indirect	minor	v1.7.0 -> v1.9.0
go.step.sm/crypto	require	minor	v0.67.0 -> v0.76.0
golang.org/x/crypto	indirect	minor	v0.40.0 -> v0.47.0
golang.org/x/net	indirect	minor	v0.42.0 -> v0.49.0
golang.org/x/oauth2	indirect	minor	v0.30.0 -> v0.34.0
golang.org/x/sync	indirect	minor	v0.16.0 -> v0.19.0
golang.org/x/sys	indirect	minor	v0.34.0 -> v0.40.0
golang.org/x/term	indirect	minor	v0.33.0 -> v0.39.0
golang.org/x/text	indirect	minor	v0.27.0 -> v0.33.0
golang.org/x/time	indirect	minor	v0.12.0 -> v0.14.0
google.golang.org/api	require	minor	v0.242.0 -> v0.262.0
google.golang.org/genproto	indirect	digest	7130f93 -> 8e98ce8
google.golang.org/genproto/googleapis/api	indirect	digest	7130f93 -> 8e98ce8
google.golang.org/genproto/googleapis/api	require	digest	7130f93 -> 8e98ce8
google.golang.org/genproto/googleapis/rpc	indirect	digest	7130f93 -> 8e98ce8
google.golang.org/grpc/cmd/protoc-gen-go-grpc	require	minor	v1.5.1 -> v1.6.0
sigs.k8s.io/release-utils	require	patch	v0.12.0 -> v0.12.3

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

chainguard-dev/go-grpc-kit (chainguard.dev/go-grpc-kit)

v0.17.15

Compare Source

What's Changed

• Bump google.golang.org/grpc from 1.74.2 to 1.75.0 by @​dependabot[bot] in #​461
• Bump chainguard-dev/actions from 1.4.10 to 1.4.12 by @​dependabot[bot] in #​457
• Bump the otel group with 4 updates by @​dependabot[bot] in #​462
• update otel deps by @​cpanato in #​464

Full Changelog: chainguard-dev/go-grpc-kit@v0.17.14...v0.17.15

v0.17.14

Compare Source

What's Changed

• set wait ready to true for call options by @​k4leung4 in #​453
• Bump reviewdog/action-actionlint from 1.66.0 to 1.66.1 by @​dependabot[bot] in #​456
• Bump chainguard-dev/actions from 1.4.9 to 1.4.10 by @​dependabot[bot] in #​455
• Bump google.golang.org/api from 0.246.0 to 0.247.0 by @​dependabot[bot] in #​454

Full Changelog: chainguard-dev/go-grpc-kit@v0.17.13...v0.17.14

v0.17.13

Compare Source

What's Changed

• Bump step-security/harden-runner from 2.12.2 to 2.13.0 by @​dependabot[bot] in #​435
• Bump chainguard-dev/actions from 1.4.5 to 1.4.6 by @​dependabot[bot] in #​434
• update retry to middleware v2 by @​k4leung4 in #​438
• stop using github.com/grpc-ecosystem/go-grpc-prometheus which has been archived since apr 18, 2023 by @​k4leung4 in #​437
• Bump google.golang.org/grpc from 1.73.0 to 1.74.2 by @​dependabot[bot] in #​441
• Bump google.golang.org/api from 0.241.0 to 0.243.0 by @​dependabot[bot] in #​440
• Bump chainguard-dev/actions from 1.4.6 to 1.4.7 by @​dependabot[bot] in #​439
• Bump chainguard-dev/actions from 1.4.7 to 1.4.8 by @​dependabot[bot] in #​443
• Bump reviewdog/action-actionlint from 1.65.2 to 1.66.0 by @​dependabot[bot] in #​444
• add test for serving metrics for grpc by @​k4leung4 in #​442
• add client id to grpc calls via interceptors and surface in grpc metrics by @​k4leung4 in #​436
• Bump actions/cache from 4.2.3 to 4.2.4 by @​dependabot[bot] in #​452
• Bump github.com/prometheus/client_golang from 1.22.0 to 1.23.0 in the prom group by @​dependabot[bot] in #​445
• Bump google.golang.org/api from 0.243.0 to 0.246.0 by @​dependabot[bot] in #​451
• Bump chainguard-dev/actions from 1.4.8 to 1.4.9 by @​dependabot[bot] in #​450
• Bump golang.org/x/net from 0.42.0 to 0.43.0 in the golang-org-x group by @​dependabot[bot] in #​448
• Bump google.golang.org/protobuf from 1.36.6 to 1.36.7 by @​dependabot[bot] in #​446
• Bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in #​447
• use listener directly for unit test by @​k4leung4 in #​449

Full Changelog: chainguard-dev/go-grpc-kit@v0.17.12...v0.17.13

v0.17.12

Compare Source

What's Changed

• Bump step-security/harden-runner from 2.12.0 to 2.12.1 by @​dependabot[bot] in #​420
• Bump google.golang.org/api from 0.236.0 to 0.237.0 by @​dependabot[bot] in #​419
• Bump chainguard-dev/actions from 1.1.3 to 1.2.1 by @​dependabot[bot] in #​418
• Bump chainguard-dev/actions from 1.2.1 to 1.4.4 by @​dependabot[bot] in #​429
• Bump google.golang.org/api from 0.237.0 to 0.240.0 by @​dependabot[bot] in #​428
• Bump step-security/harden-runner from 2.12.1 to 2.12.2 by @​dependabot[bot] in #​424
• Bump the otel group with 4 updates by @​dependabot[bot] in #​426
• Bump google.golang.org/api from 0.240.0 to 0.241.0 by @​dependabot[bot] in #​432
• Bump chainguard-dev/actions from 1.4.4 to 1.4.5 by @​dependabot[bot] in #​430
• Bump golang.org/x/net from 0.41.0 to 0.42.0 in the golang-org-x group by @​dependabot[bot] in #​431
• metrics: Allow histograms to go up to 3600 and then some by @​markusthoemmes in #​433

New Contributors

• @​markusthoemmes made their first contribution in #​433

Full Changelog: chainguard-dev/go-grpc-kit@v0.17.11...v0.17.12

chainguard-dev/sdk (chainguard.dev/sdk)

v0.1.47

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.46...v0.1.47

v0.1.46

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.45...v0.1.46

v0.1.45

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.44...v0.1.45

v0.1.44

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.43...v0.1.44

v0.1.43

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.42...v0.1.43

v0.1.42

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.41...v0.1.42

v0.1.41

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.40...v0.1.41

v0.1.40

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.39...v0.1.40

v0.1.39

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.38...v0.1.39

v0.1.38

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.37...v0.1.38

v0.1.37

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.36...v0.1.37

v0.1.36

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.35...v0.1.36

v0.1.35

Compare Source

v0.1.34

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.33...v0.1.34

v0.1.33

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.32...v0.1.33

v0.1.32

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.31...v0.1.32

v0.1.31

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.29...v0.1.31

v0.1.30

Compare Source

What's Changed

• Bump the go_modules group across 1 directory with 2 updates by @​dependabot in #​148

Full Changelog: chainguard-dev/sdk@v0.1.29...v0.1.30

googleapis/google-cloud-go (cloud.google.com/go)

v0.123.0

Compare Source

Features

• internal/stategen: Populate the latest googleapis commit (#​12880) (7b017a0)
• librariangen: Implement the build command (#​12817) (14734c8)

Bug Fixes

• internal/librariangen: Add link to source commit in release notes (#​12881) (1c06cc6)
• internal/librariangen: Fix CHANGES.md headers (#​12849) (baf515d)
• internal/librariangen: Remove go mod init/tidy from postprocessor (#​12832) (1fe506a)
• internal/librariangen: Test for error path with flags (#​12830) (f0da7b2)
• internal/postprocessor: Add dlp to skip-module-scan-paths (#​12857) (45a7d9b)
• librariangen: Honor original container contract (#​12846) (71c8fd3)
• librariangen: Improvements to release-init (#​12842) (0db677a)
• stategen: Specify an appropriate tag format for google-cloud-go (#​12835) (ffcff33)

v0.122.0

Compare Source

Features

• internal/librariangen: Add release-init command (#​12751) (52e84cc)

Bug Fixes

• internal/godocfx: Better support for v2 modules (#​12797) (4bc8785)
• internal/godocfx: Module detection when tidy errors (#​12801) (83d46cd)
• internal/librariangen: Fix goimports errors (#​12765) (83bdaa4)

v0.121.6

Compare Source

Bug Fixes

• internal/librariangen: Fix Dockerfile permissions for go mod tidy (#​12704) (0e70a0b)

v0.121.5

Compare Source

Bug Fixes

• internal/librariangen: Get README title from service config yaml (#​12676) (b3b8f70)
• internal/librariangen: Update source_paths to source_roots in generate-request.json (#​12691) (2adb6f9)

AzureAD/microsoft-authentication-library-for-go (github.com/AzureAD/microsoft-authentication-library-for-go)

v1.6.0

Compare Source

What's Changed

• Deprecate ROPC flow by @​Ugonnaak1 in #​584
• Added a cache lookup for AcquireTokenByCredential by @​4gust in #​590
• Fix panic in AcquireTokenSilent for public clients due to nil Credential by @​4gust in #​581
• Adding support for FMI (Federated Managed Identity) by @​4gust in #​586
• Adjust issuer validation to handle cases where instance discovery is not performed by @​Avery-Dunn in #​591

New Contributors

• @​Ugonnaak1 made their first contribution in #​584

Full Changelog: AzureAD/microsoft-authentication-library-for-go@v1.5.0...v1.6.0

v1.5.0

Compare Source

What's Changed

• Bump github.com/golang-jwt/jwt/v5 from 5.0.0 to 5.2.2 by @​dependabot[bot] in #​563
• Added a FIC test by @​4gust in #​557
• Fix CodeQL warning 'Cross-site scripting vulnerability due to user-provided value by @​fengga in #​566
• fix: support both login.partner.microsoftonline.cn and login.chinaclo… by @​Achiket123 in #​575
• Add validation for issuer returned by OIDC endpoint by @​Avery-Dunn in #​576
• #​572 - Update spelling of client by @​equalsgibson in #​573

New Contributors

• @​dependabot[bot] made their first contribution in #​563
• @​fengga made their first contribution in #​566
• @​Achiket123 made their first contribution in #​575
• @​Avery-Dunn made their first contribution in #​576
• @​equalsgibson made their first contribution in #​573

Full Changelog: AzureAD/microsoft-authentication-library-for-go@v1.4.2...v1.5.0

ThalesGroup/crypto11 (github.com/ThalesGroup/crypto11)

v1.6.0

Compare Source

What's Changed

• Update go1.25.1 by @​Nicolas-Peiffer in #​124

Full Changelog: ThalesGroup/crypto11@v1.5.0...v1.6.0

v1.5.0

Compare Source

What's Changed

• Fix findkeys error and eval byte nil or len zero by @​Nicolas-Peiffer in #​122
• Update go1.24.5 by @​Nicolas-Peiffer in #​123

Full Changelog: ThalesGroup/crypto11@v1.4.1...v1.5.0

aws/aws-sdk-go-v2 (github.com/aws/aws-sdk-go-v2/credentials)

v1.19.1

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/feature/s3/manager: v1.19.11
  • Bug Fix: Add missing ChecksumType field to UploadOutput.
• github.com/aws/aws-sdk-go-v2/service/cloudformation: v1.67.0
  • Feature: Add new warning type 'EXCLUDED_RESOURCES'
• github.com/aws/aws-sdk-go-v2/service/connectcases: v1.32.0
  • Feature: New Search All Related Items API enables searching related items across cases
• github.com/aws/aws-sdk-go-v2/service/dynamodb: v1.51.0
  • Feature: Add support for dual-stack account endpoint generation
• github.com/aws/aws-sdk-go-v2/service/guardduty: v1.64.3
  • Documentation: Updated descriptions for the Location parameter in CreateTrustedEntitySet and CreateThreatEntitySet.
• github.com/aws/aws-sdk-go-v2/service/synthetics: v1.41.0
  • Feature: Adds support to configure canaries with pre-configured blueprint code on supported runtime versions. This behavior can be controlled via the new BlueprintTypes property exposed in the CreateCanary and UpdateCanary APIs.

v1.19.0

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2: v1.40.0
  • Feature: Add support for AWS Login credentials (package credentials/logincreds) to the default credential chain.
• github.com/aws/aws-sdk-go-v2/config: v1.32.0
  • Feature: Add support for AWS Login credentials (package credentials/logincreds) to the default credential chain.
• github.com/aws/aws-sdk-go-v2/credentials: v1.19.0
  • Feature: Add support for AWS Login credentials (package credentials/logincreds) to the default credential chain.

v1.18.1

General Highlights

• Feature: Add handwritten paginators that were present in some services in the v1 SDK.
• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/cloud9: v1.18.11
  • Documentation: Update to imageId parameter behavior and dates updated.
• github.com/aws/aws-sdk-go-v2/service/dynamodb: v1.23.0
  • Documentation: Updating descriptions for several APIs.
• github.com/aws/aws-sdk-go-v2/service/kendra: v1.44.0
  • Feature: Changes for a new feature in Amazon Kendra's Query API to Collapse/Expand query results
• github.com/aws/aws-sdk-go-v2/service/rds: v1.57.0
  • Feature: This release adds support for upgrading the storage file system configuration on the DB instance using a blue/green deployment or a read replica.
• github.com/aws/aws-sdk-go-v2/service/wisdom: v1.16.0
  • Feature: This release adds an max limit of 25 recommendation ids for NotifyRecommendationsReceived API.

v1.18.0

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/iot: v1.70.0
  • Feature: Add support for dynamic payloads in IoT Device Management Commands
• github.com/aws/aws-sdk-go-v2/service/timestreaminfluxdb: v1.18.0
  • Feature: This release adds support for rebooting InfluxDB DbInstances and DbClusters

chainguard-dev/clog (github.com/chainguard-dev/clog)

v1.8.0

Compare Source

What's Changed

• docs: fix doc comments for clog.Logger by @​luhring in #​36
• gcp: Surface trace propagation functions on context by @​markusthoemmes in #​40
• [StepSecurity] Apply security best practices by @​stepsecurity-app[bot] in #​39
• Bump actions/setup-go from 5.3.0 to 5.5.0 by @​dependabot[bot] in #​37
• slogtest: demonstrate use of t.Context() by @​imjasonh in #​41
• gcp: Refactor to pass in custom writer by @​wlynch in #​52
• Bump actions/checkout from 4.2.2 to 6.0.1 by @​dependabot[bot] in #​51
• Bump step-security/harden-runner from 2.12.0 to 2.13.3 by @​dependabot[bot] in #​50
• Bump actions/setup-go from 5.5.0 to 6.1.0 by @​dependabot[bot] in #​49

New Contributors

• @​luhring made their first contribution in #​36
• @​markusthoemmes made their first contribution in #​40
• @​stepsecurity-app[bot] made their first contribution in #​39

Full Changelog: chainguard-dev/clog@v1.7.0...v1.8.0

googleapis/enterprise-certificate-proxy (github.com/googleapis/enterprise-certificate-proxy)

v0.3.11

Compare Source

What's Changed

• chore: Update version.txt to v0.3.11 by @​agrawalradhika-cell in #​176
• chore: Update logging in http_proxy to be enabled via ENABLE_ENTERPRSE_CERTIFICATE_LOGS by @​agrawalradhika-cell in #​175
• feat: Update CODEOWNERS to add Radhika and Nolan to ECP code by @​agrawalradhika-cell in #​166
• build(deps): bump golang.org/x/crypto from 0.35.0 to 0.45.0 by @​dependabot[bot] in #​161
• chore(deps): update dependency go to 1.25 by @​renovate-bot in #​144
• fix(deps): update module golang.org/x/sys to v0.40.0 by @​renovate-bot in #​145
• fix(deps): update module golang.org/x/crypto to v0.47.0 by @​renovate-bot in #​177

New Contributors

• @​dependabot[bot] made their first contribution in #​161

Full Changelog: googleapis/enterprise-certificate-proxy@0.3.10...v0.3.11

v0.3.9

Compare Source

What's Changed

• Revert "feat: Add logging for ECP such that it is enabled/disabled using ENABLE_ENTERPRISE_CERTIFICATE_LOGS flag" by @​agrawalradhika-cell in #​168
• chore: Remove logging from http_proxy to reduce noise for customers, will add them back later. by @​agrawalradhika-cell in #​169

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.8...v0.3.9

v0.3.8

Compare Source

What's Changed

• feat: Add logging for ECP such that it is enabled/disabled using ENABLE_ENTERPRISE_CERTIFICATE_LOGS flag by @​agrawalradhika-cell in #​164
• chore: Update version.txt to update version to v0.3.8 by @​agrawalradhika-cell in #​167

New Contributors

• @​agrawalradhika-cell made their first contribution in #​164

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.7...v0.3.8

v0.3.7

Compare Source

This release creates ECP Http Proxy

What's Changed

• fix: Address ImportPKCS12Cred failing tests by @​nolanleastin in #​155
• feat(http_proxy): Implement a local HTTP Proxy Server that integrates with ECP by @​nolanleastin in #​154
• build(ecp-http-proxy): build scripts generate ecp_http_proxy binary by @​nolanleastin in #​157
• feat(ecp-http-proxy): add /readyz endpoint to proxy server by @​nolanleastin in #​158
• chore: Update version.txt to 0.3.7 by @​nolanleastin in #​159

New Contributors

• @​nolanleastin made their first contribution in #​155

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.6...v0.3.7

jhump/protoreflect (github.com/jhump/protoreflect)

v1.18.0

Compare Source

This is expected to be the final release of this module with a v1.x version. (All subsequent releases are expected to be v2.x.)

The main change here is to insulate users from any future backwards-incompatible changes in bufbuild/protocompile. Previous releases (between 1.15 and 1.17, inclusive) depended on this module, but it hasn't yet released a stable v1.0 version, so it has occasionally been a turbulent dependency. More breaking changes are expected since it is expected to get a totally new compiler and API before it reaches v1.0. So anyone still using v1 of this repo should update to this new release before then to avoid being broken when that happens.

"github.com/jhump/protoreflect/desc/builder"

Changes/fixes:

• If resolving custom options and extensions resulted in a generated extension description created by the older v1 of protoc-gen-go, a nil-dereference panic could occur. This has been fixed. Instead, the legacy extension that would otherwise have caused a panic will now either be ignored or, if BuilderOptions.RequireInterpretedOptions is set to true, result in an error that not all options could be interpreted.
  • The older v1 has import path "github.com/golang/protobuf/protoc-gen-go". It was replaced in 2020 by the v2, which is at path "google.golang.org/protobuf/cmd/protoc-gen-go".

"github.com/jhump/protoreflect/desc/protoparse"

Changes/fixes:

• The internal compiler no longer comes from a separate Go module. Instead, this module now contains a fork of bufbuild/protocompile, which will maintain stability even when the upstream repo diverges with unstable/breaking changes. The only user-visible changes would be related to Editions support, thanks to unreleased changes in upstream that were included in this repo's fork. (See more below.)

Additions:

• This adds a field named AllowExperimentalEditions to the protoparse.Parser struct. When set to true, the parser will accept and return descriptors for files that use Edition 2024 (the only experimental edition at this time). It is experimental because it does not implement all of the rules and semantics of Edition 2024. But it does provide the ability to parse and compile files that include new language features in Edition 2024, such as visibility modifiers (export and local) as well as the option import modifier.

"github.com/jhump/protoreflect/desc/protoprint"

Changes/fixes:

• If resolving custom options and extensions resulted in a generated extension description created by the older v1 of protoc-gen-go, a nil-dereference panic could occur. This has been fixed. Instead, the legacy extension that would otherwise have caused a panic is ignored and will not be included in the printed output (since it would result in an invalid source file that could not be compiled).

letsencrypt/boulder (github.com/letsencrypt/boulder)

v0.20260120.0

Compare Source

What's Changed

• test: bump consul to 1.19.2 by @​jsha in #​8563
• publisher: Errf -> InfoObject by @​jsha in #​8561
• log: use Requester in revocation logs by @​jsha in #​8560
• log: audit-level messages on startup and shutdown by @​jsha in #​8562
• Remove direct db connection from admin tool by @​aarongable in #​8552
• test: allow empty $DB_ADDR for most tests by @​jsha in #​8568
• grpc: log health check failures by @​jsha in #​8546
• Make log.Errf not automatically [AUDIT] level by @​aarongable in #​8564
• Clean up usage of non-formatter log methods by @​aarongable in #​8566
• build(deps): bump actions/checkout from 4 to 6 by @​dependabot[bot] in #​8537
• Move USE_VITESS variable into entrypoint.sh by @​jsha in #​8567

Full Changelog: letsencrypt/boulder@v0.20260112.0...v0.20260120.0

v0.20260112.0

Compare Source

What's Changed

• build(deps): bump the aws group across 1 directory with 4 updates by @​dependabot[bot] in #​8544
• observer: remove redundant manual config validators by @​sheurich in #​8538
• va: Avoid creating multiple slow remote timers in doRemoteOperation by @​aaomidi in #​8516
• ct-test-srv: remove logging at startup by @​jsha in #​8551

Full Changelog: letsencrypt/boulder@v0.20260105.0...v0.20260112.0

v0.20260105.0

Compare Source

What's Changed

• lint: fix staticcheck QF issues by @​alexandear in #​8524
• fix: correct typos in test and documentation comments by @​alexandear in #​8526
• test: Refactor initSA to simplify cleanup in tests by @​alexandear in #​8525
• add bsetup notes to README by @​acaird in #​8521
• CA: Log error instead of cert upon storage failure by @​aarongable in #​8528
• web: No longer escape HTML characters in SendError by @​beautifulentropy in #​8533

New Contributors

• @​alexandear made their first contribution in #​8524
• @​acaird made their first contribution in #​8521

Full Changelog: letsencrypt/boulder@v0.20251216.0...v0.20260105.0

v0.20251216.0

Compare Source

What's Changed

• build(deps): bump the aws group across 1 directory with 4 updates by @​dependabot[bot] in #​8496
• Remove usage of subtle.ConstantTimeCompare in validation by @​aarongable in #​8519
• docker: Add build context for vtcomboserver service by @​sheurich in #​8520
• Fix wildcard authorization reuse with DNS-Account-01 by @​sheurich in #​8504
• Refactor DNS to pass full messages up to the VA by @​aarongable in #​8513
• ca/cert-checker: Support test log submissions by @​beautifulentropy in #​8522

Full Changelog: <https://github.com/letsencrypt/bould

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[red-hat-konflux]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 29 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.24 -> 1.25.1
github.com/coreos/go-oidc/v3	v3.14.1 -> v3.17.0
github.com/go-jose/go-jose/v4	v4.1.1 -> v4.1.3
github.com/grpc-ecosystem/grpc-gateway/v2	v2.27.1 -> v2.27.3
github.com/prometheus/common	v0.65.0 -> v0.66.1
github.com/spiffe/go-spiffe/v2	v2.5.0 -> v2.6.0
github.com/tink-crypto/tink-go/v2	v2.4.0 -> v2.5.0
google.golang.org/grpc	v1.73.0 -> v1.78.0
google.golang.org/protobuf	v1.36.6 -> v1.36.11
github.com/aws/aws-sdk-go-v2	v1.36.6 -> v1.41.1
github.com/aws/aws-sdk-go-v2/config	v1.29.17 -> v1.32.7
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	v2.6.37 -> v2.7.17
github.com/aws/aws-sdk-go-v2/service/kms	v1.41.0 -> v1.49.5
github.com/aws/aws-sdk-go-v2/service/sso	v1.25.6 -> v1.30.9
github.com/aws/aws-sdk-go-v2/service/ssooidc	v1.30.4 -> v1.35.13
github.com/aws/aws-sdk-go-v2/service/sts	v1.34.1 -> v1.41.6
github.com/aws/smithy-go	v1.22.4 -> v1.24.0
github.com/cenkalti/backoff/v5	v5.0.2 -> v5.0.3
github.com/go-viper/mapstructure/v2	v2.2.1 -> v2.4.0
github.com/golang-jwt/jwt/v5	v5.2.2 -> v5.3.0
github.com/google/go-containerregistry	v0.20.6 -> v0.20.7
github.com/googleapis/gax-go/v2	v2.15.0 -> v2.16.0
github.com/jellydator/ttlcache/v3	v3.3.0 -> v3.4.0
github.com/pelletier/go-toml/v2	v2.2.3 -> v2.2.4
go.opentelemetry.io/otel	v1.37.0 -> v1.39.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace	v1.36.0 -> v1.38.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc	v1.36.0 -> v1.38.0
go.opentelemetry.io/otel/metric	v1.37.0 -> v1.39.0
go.opentelemetry.io/otel/sdk	v1.37.0 -> v1.39.0
go.opentelemetry.io/otel/trace	v1.37.0 -> v1.39.0

File name: hack/tools/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 2 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.24 -> 1.24.0
google.golang.org/protobuf	v1.36.6 -> v1.36.11
google.golang.org/grpc	v1.71.1 -> v1.76.0

[red-hat-konflux]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[red-hat-konflux]

Autoclosing Skipped

This PR has been flagged for autoclosing. However, it is being skipped due to the branch being already modified. Please close/delete it manually or report a bug if you think this is in error.