Update go modules (main) (patch)

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
cuelang.org/go	v0.11.1 → v0.11.2
github.com/CycloneDX/cyclonedx-go	v0.9.2 → v0.9.3
github.com/cucumber/godog	v0.15.0 → v0.15.1
github.com/daixiang0/gci	v0.13.5 → v0.13.7
github.com/evanphx/json-patch	v5.9.0+incompatible → v5.9.11+incompatible
github.com/evanphx/json-patch/v5	v5.9.0 → v5.9.11
github.com/gkampitakis/go-snaps	v0.5.7 → v0.5.19
github.com/go-git/go-billy/v5	v5.6.0 → v5.6.2
github.com/go-git/go-git/v5	v5.13.0 → v5.13.2
github.com/otiai10/copy	v1.14.0 → v1.14.1
github.com/secure-systems-lab/go-securesystemslib	v0.9.0 → v0.9.1
github.com/sirupsen/logrus	v1.9.3 → v1.9.4
github.com/spdx/tools-golang	v0.5.5 → v0.5.7
github.com/spf13/pflag	v1.0.7 → v1.0.10
github.com/tektoncd/chains	v0.22.2 → v0.22.3
github.com/tektoncd/cli	v0.38.0 → v0.38.2
github.com/tektoncd/cli	v0.37.1 → v0.37.2
github.com/testcontainers/testcontainers-go	v0.34.0 → v0.34.1
gotest.tools/gotestsum	v1.12.1 → v1.12.3
helm.sh/helm/v3	v3.18.5 → v3.18.6
k8s.io/api	v0.34.2 → v0.34.3
k8s.io/apiextensions-apiserver	v0.34.2 → v0.34.3
k8s.io/apimachinery	v0.34.2 → v0.34.3
k8s.io/client-go	v0.34.2 → v0.34.3
k8s.io/kubernetes	v1.34.2 → v1.34.3

---

Release Notes

cue-lang/cue (cuelang.org/go)

v0.11.2

Compare Source

This release includes fixes for bugs which were uncovered and resolved in the last few weeks.

Evaluator

CL 1206279 fixes a regression in the old evaluator which could lead to "conflicting value" errors.

cmd/cue

CL 1207330 fixes a regression where cue get go stopped copying some CUE files from Go package directories.

CL 1207402 fixes a regression where cue def --inline-imports could result in invalid CUE which failed to evaluate.

Full list of changes since v0.11.1

• internal/cueversion: bump LanguageVersion for the next release by @​mvdan in 079dc4a
• internal/ci: update pinned Go for the next release by @​mvdan in b1a57a5
• internal/core/dep: fix handling sharing in non-rooted nodes by @​mpvl in 8d97e7a
• cmd/cue: add test for 3646 by @​mpvl in 815cb30
• cmd/cue: fix a regression with cue get go dropping CUE files by @​mvdan in 5b0e411
• cmd/cue: add a test case to reproduce #​3644 by @​mvdan in 801f976
• internal/core/adt: fix let issue for eval v2 by @​mpvl in a1fbeaa
• internal/core/adt: add tests for 3590 and 3591 by @​mpvl in 0ae498f

CycloneDX/cyclonedx-go (github.com/CycloneDX/cyclonedx-go)

v0.9.3

Compare Source

Changelog

Fixes

• 6636ce3: fix: .component.data was not a slice as per CycloneDX schema #​242 (@​madpah)
• 3e0f245: fix: add missing properties (@​rdghe)

Building and Packaging

• 24c8c33: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (@​dependabot[bot])
• 5fcf097: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (@​dependabot[bot])
• edea8ae: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (@​dependabot[bot])
• f32eebc: build(deps): bump gitpod/workspace-go from 4702df2 to 8985eb7 (@​dependabot[bot])
• 7fdaa7f: build(deps): bump gitpod/workspace-go from 6932342 to 4702df2 (@​dependabot[bot])
• d62ea3c: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (@​dependabot[bot])
• 4709461: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (@​dependabot[bot])

cucumber/godog (github.com/cucumber/godog)

v0.15.1

Compare Source

Added

• Step text is added to "step is undefined" error - (669 - vearutop)
• Localisation support by @​MegaGrindStone in #​665
• feat: support uint types by @​chengxilo in #​695

Changed

• Replace deprecated ::set-output - (681 - nodeg)

Fixed

• fix(errors): fix(errors): Fix expected Step argument count for steps with context.Context (679 - tigh-latte)
• fix(formatter): On concurrent execution, execute formatter at end of Scenario - (645 - tigh-latte)
• Pretty printing results now prints the line where the step is declared instead of the line where the handler is declared. (668 - spencerc)
• Update honnef.co/go/tools/cmd/staticcheck version in Makefile by @​RezaZareiii in #​670
• fix: verify dogT exists in the context before using it by @​cakoolen in #​692
• fix: change bang to being in README by @​nahomEagleLion in #​687
• Mark junit test cases as skipped if no pickle step results available by @​mrsheepuk in #​597
• Print step declaration line instead of handler declaration line by @​SpencerC in #​668

daixiang0/gci (github.com/daixiang0/gci)

v0.13.7

Compare Source

What's Changed

• fix: scrape all goos/goarch pair for stdlib by @​Zxilly in #​208
• chore: get module info from pass by @​ldez in #​221
• chore: remove analyzer by @​ldez in #​222
• feat: update standard list to go1.25 by @​ldez in #​233
• bump up version by @​daixiang0 in #​234

New Contributors

• @​Zxilly made their first contribution in #​208

Full Changelog: daixiang0/gci@v0.13.6...v0.13.7

v0.13.6

Compare Source

What's Changed

• fix: update standard list to go1.24 by @​ldez in #​227
• bump up version by @​daixiang0 in #​229

Full Changelog: daixiang0/gci@v0.13.5...v0.13.6

evanphx/json-patch (github.com/evanphx/json-patch)

v5.9.11+incompatible

Compare Source

v5.9.10+incompatible

Compare Source

gkampitakis/go-snaps (github.com/gkampitakis/go-snaps)

v0.5.19

Compare Source

What's Changed

• fix: use backticks for inline snaps when appropriate by @​gkampitakis in #​149

Full Changelog: gkampitakis/go-snaps@0.5.18...v0.5.19

v0.5.18

Compare Source

v0.5.17

Compare Source

v0.5.16

Compare Source

What's Changed

• fix: don't drop /r character when scanning by @​gkampitakis in #​139
• chore: replace vendored go-diff with upstream by @​gkampitakis in #​143
• chore: update golangci-lint to v2 by @​G-Rath in #​141
• fix: detect no_color support by @​gkampitakis in #​123
• experimenting with inline snapshot support by @​gkampitakis in #​70

Full Changelog: gkampitakis/go-snaps@v0.5.15...v0.5.16

v0.5.15

Compare Source

What's Changed

• test: explicitly return named variables by @​G-Rath in #​137
• ci: show diff after running linting by @​G-Rath in #​136
• fix: only update snapshots when actually allowed by @​G-Rath in #​135

Full Changelog: gkampitakis/go-snaps@v0.5.14...v0.5.15

v0.5.14

Compare Source

What's Changed

• feat: snaps.Clean now returns if snaps dirty and err by @​gkampitakis in #​131

Full Changelog: gkampitakis/go-snaps@v0.5.13...v0.5.14

v0.5.13

Compare Source

What's Changed

• feat: support MatchStandaloneYAML by @​gkampitakis in #​128
• chore: update go-yaml and gh-action deps by @​gkampitakis in #​129

Full Changelog: gkampitakis/go-snaps@v0.5.12...v0.5.13

v0.5.12

Compare Source

What's Changed

• feat: add UPDATE_SNAPS=always for updating and creating snaps on CI setup by @​gkampitakis in #​126

Full Changelog: gkampitakis/go-snaps@v0.5.11...v0.5.12

v0.5.11

Compare Source

What's Changed

• feat: add json format config by @​kitimark in #​121

New Contributors

• @​kitimark made their first contribution in #​121

Full Changelog: gkampitakis/go-snaps@v0.5.10...v0.5.11

v0.5.10

Compare Source

What's Changed

• fix: handle builds with trimpath enabled by @​gkampitakis in #​120

Full Changelog: gkampitakis/go-snaps@v0.5.9...v0.5.10

v0.5.9

Compare Source

What's Changed

• fix: snaps.Update should apply and on snapshot create by @​gkampitakis in #​119

Full Changelog: gkampitakis/go-snaps@v0.5.8...v0.5.9

Kudos to @​orloffv for this issue #​116

v0.5.8

Compare Source

What's Changed

• feat: implement matchYAML by @​gkampitakis in #​114
• feat: implement matchStandaloneJSON by @​gkampitakis in #​113

Full Changelog: gkampitakis/go-snaps@v0.5.7...v0.5.8

go-git/go-billy (github.com/go-git/go-billy/v5)

v5.6.2

Compare Source

What's Changed

• Enable the iofs adapter to also return other interfaces from io/fs by @​JAORMX in #​102
• build: Bump dependencies by @​pjbgf in #​103

New Contributors

• @​JAORMX made their first contribution in #​102

Full Changelog: go-git/go-billy@v5.6.1...v5.6.2

v5.6.1

Compare Source

What's Changed

• build: bump github/codeql-action from 3.26.11 to 3.27.0 by @​dependabot in #​88
• build: bump github/codeql-action from 3.27.0 to 3.27.1 by @​dependabot in #​89
• build: bump github/codeql-action from 3.27.1 to 3.27.4 by @​dependabot in #​90
• build: bump github/codeql-action from 3.27.4 to 3.27.5 by @​dependabot in #​91
• Bump dependencies and build housekeeping by @​pjbgf in #​95

Full Changelog: go-git/go-billy@v5.6.0...v5.6.1

go-git/go-git (github.com/go-git/go-git/v5)

v5.13.2

Compare Source

What's Changed

• plumbing: use the correct user agent string. Fixes #​883 by @​uragirii in #​1364
• build: bump golang.org/x/sys from 0.28.0 to 0.29.0 in the golang-org group by @​dependabot in #​1365
• build: bump the golang-org group with 2 updates by @​dependabot in #​1367
• build: bump github.com/ProtonMail/go-crypto from 1.1.3 to 1.1.4 by @​dependabot in #​1368
• build: bump github.com/go-git/go-billy/v5 from 5.6.1 to 5.6.2 by @​dependabot in #​1378
• build: bump github/codeql-action from 3.28.0 to 3.28.1 by @​dependabot in #​1376
• build: bump github.com/elazarl/goproxy from 1.2.3 to 1.4.0 by @​dependabot in #​1377
• git: worktree, fix restoring dot slash files (backported to v5). Fixes #​1176 by @​BeChris in #​1361
• build: bump github.com/pjbgf/sha1cd from 0.3.0 to 0.3.2 by @​dependabot in #​1392
• git: worktree_status, fix adding dot slash files to working tree (backported to v5). Fixes #​1150 by @​BeChris in #​1359
• build: bump github.com/ProtonMail/go-crypto from 1.1.4 to 1.1.5 by @​dependabot in #​1383

Full Changelog: go-git/go-git@v5.13.1...v5.13.2

v5.13.1

Compare Source

What's Changed

• build: bump github.com/go-git/go-billy/v5 from 5.6.0 to 5.6.1 by @​dependabot in #​1327
• build: bump github.com/elazarl/goproxy from 1.2.1 to 1.2.2 by @​dependabot in #​1329
• build: bump github.com/elazarl/goproxy from 1.2.2 to 1.2.3 by @​dependabot in #​1340
• Revert "plumbing: transport/ssh, Add support for SSH @​cert-authority." by @​pjbgf in #​1346

Full Changelog: go-git/go-git@v5.13.0...v5.13.1

otiai10/copy (github.com/otiai10/copy)

v1.14.1

Compare Source

secure-systems-lab/go-securesystemslib (github.com/secure-systems-lab/go-securesystemslib)

v0.9.1

Compare Source

sirupsen/logrus (github.com/sirupsen/logrus)

v1.9.4

Compare Source

Notable changes

• go.mod: update minimum supported go version to v1.17 #​1460
• go.mod: bump up dependencies #​1460
• Touch-up godoc and add "doc" links.
• README: fix links, grammar, and update examples.
• Add GNU/Hurd support #​1364
• Add WASI wasip1 support #​1388
• Remove uses of deprecated ioutil package #​1472
• CI: update actions and golangci-lint #​1459
• CI: remove appveyor, add macOS #​1460

Full Changelog: sirupsen/logrus@v1.9.3...v1.9.4

spdx/tools-golang (github.com/spdx/tools-golang)

v0.5.7

Compare Source

What's Changed

• Fail parsing if the required prefix isn't present for IDs by @​awyeth in #​275

New Contributors

• @​awyeth made their first contribution in #​275

Full Changelog: spdx/tools-golang@v0.5.6...v0.5.7

v0.5.6

Compare Source

What's Changed

• Change the colon and space separator to just a colon by @​warpkwd in #​254
• build(deps): Bump sigs.k8s.io/yaml to 1.6.0 by @​dependabot[bot] in #​259
• Resolve two issues related to ExternalDocumentRef by @​KAWAHARA-souta in #​269
• fix: Fix prefixDocumentId() to use correct prefix by @​KAWAHARA-souta in #​272

New Contributors

• @​warpkwd made their first contribution in #​254
• @​KAWAHARA-souta made their first contribution in #​269

Full Changelog: spdx/tools-golang@v0.5.5...v0.5.6

spf13/pflag (github.com/spf13/pflag)

v1.0.10

Compare Source

What's Changed

• fix deprecation comment for (FlagSet.)ParseErrorsWhitelist by @​thaJeztah in #​447
• remove uses of errors.Is, which requires go1.13, move go1.16/go1.21 tests to separate file by @​thaJeztah in #​448

New Contributors

• @​thaJeztah made their first contribution in #​447

Full Changelog: spf13/pflag@v1.0.9...v1.0.10

v1.0.9

Compare Source

What's Changed

• fix: Restore ParseErrorsWhitelist name for now by @​tomasaschan in #​446

Full Changelog: spf13/pflag@v1.0.8...v1.0.9

v1.0.8

Compare Source

⚠️ Breaking Change

This version, while only a patch bump, includes a (very minor) breaking change: the flag.ParseErrorsWhitelist struct and corresponding FlagSet.parseErrorsWhitelist field have been renamed to ParseErrorsAllowlist.

This should result in compilation errors in any code that uses these fields, which can be fixed by adjusting the names at call sites. There is no change in semantics or behavior of the struct or field referred to by these names. If your code compiles without errors after bumping to/past v1.0.8, you are not affected by this change.

The breaking change was reverted in v1.0.9, by means of re-introducing the old names with deprecation warnings. The plan is still to remove them in a future release, so if your code does depend on the old names, please change them to use the new names at your earliest convenience.

What's Changed

• Remove Redundant "Unknown-Flag" Error by @​vaguecoder in #​364
• Switching from whitelist to Allowlist terminology by @​dubrie in #​261
• Omit zero time.Time default from usage line by @​mologie in #​438
• implement CopyToGoFlagSet by @​pohly in #​330
• flag: Emulate stdlib behavior and do not print ErrHelp by @​tmc in #​407
• Print Default Values of String-to-String in Sorted Order by @​vaguecoder in #​365
• fix: Don't print ErrHelp in ParseAll by @​tomasaschan in #​443
• Reset args on re-parse even if empty by @​tomasaschan in #​444

New Contributors

• @​vaguecoder made their first contribution in #​364
• @​dubrie made their first contribution in #​261
• @​mologie made their first contribution in #​438
• @​pohly made their first contribution in #​330
• @​tmc made their first contribution in #​407
• @​tomasaschan made their first contribution in #​443

Full Changelog: spf13/pflag@v1.0.7...v1.0.8

tektoncd/chains (github.com/tektoncd/chains)

v0.22.3: Tekton Chains release v0.22.3 "v0.22.3"

Compare Source

-Docs @​ v0.22.3
-Examples @​ v0.22.3

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/chains/previous/v0.22.3/release.yaml

Attestation

The Rekor UUID for this release is 108e9186e8c5677abc5f8010a0a21be4daa53325a217f4df92955848f73f226c6ed054c429fb9f82

Obtain the attestation:

REKOR_UUID=108e9186e8c5677abc5f8010a0a21be4daa53325a217f4df92955848f73f226c6ed054c429fb9f82
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/chains/previous/v0.22.3/release.yaml
REKOR_UUID=108e9186e8c5677abc5f8010a0a21be4daa53325a217f4df92955848f73f226c6ed054c429fb9f82

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.22.3@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Fixes

• 🐛 Fix nil-pointer references (#​1286 and #​1246)

Misc

• 🔨 Upgrade golang.org/x/crypto to 0.31.0 (#​1269)

Thanks

Thanks to these contributors who contributed to v0.22.3!

• ❤️ @​jkhelil
• ❤️ @​lcarva
• ❤️ @​savitaashture
• ❤️ @​tekton-robot

Extra shout-out for awesome release notes:

• 😍 @​jkhelil
• 😍 @​lcarva
• 😍 @​savitaashture
• 😍 @​tekton-robot

tektoncd/cli (github.com/tektoncd/cli)

v0.38.2

Compare Source

v0.38.2 Release 🎉

This is a bug fix release for CVEs GHSA-w32m-9786-jp63 on golang.org/x/net and GHSA-v778-237x-gjrc on golang.org/x/crypto.

ChangeLog 📋

Misc 🔨

• Bump golang.org/x/net from 0.30.0 to 0.33.0 #​2473
• Bump golang.org/x/crypto from 0.28.0 to 0.31.0 #​2447

v0.38.1

Compare Source

v0.38.1 Release 🎉

This is a bug fix release as tkn start was failing with tkn version v0.38.0 release and old(er) pipeline version. This release comes with Pipelines v0.62.3 and Triggers version v0.29.1

ChangeLog 📋

Misc 🔨

• Bump tektoncd/pipeline to v0.62.3 #​2392
• Bump github.com/tektoncd/triggers from 0.29.0 to 0.29.1 #​2394

testcontainers/testcontainers-go (github.com/testcontainers/testcontainers-go)

v0.34.1

Compare Source

gotestyourself/gotestsum (gotest.tools/gotestsum)

v1.12.3

Compare Source

What's Changed

• Bump golang.org/x/tools from 0.24.0 to 0.33.0 by @​dependabot in #​496
• Bump golang.org/x/term from 0.29.0 to 0.32.0 by @​dependabot in #​494
• feat: add the --rerun-fails-abort-on-data-race flag by @​hugodutka in #​497
• Bump golang.org/x/tools from 0.33.0 to 0.34.0 by @​dependabot in #​501

New Contributors

• @​hugodutka made their first contribution in #​497

Full Changelog: gotestyourself/gotestsum@v1.12.2...v1.12.3

v1.12.2

Compare Source

What's Changed

• Bump gotest.tools/v3 from 3.5.1 to 3.5.2 by @​dependabot in #​463
• Bump github.com/google/go-cmp from 0.6.0 to 0.7.0 by @​dependabot in #​468
• Bump github.com/fatih/color from 1.17.0 to 1.18.0 by @​dependabot in #​446
• Use event times for elapsed by @​dnephin in #​482
• feat: support for hidding skipped tests in the junit report by @​v1v in #​478

New Contributors

• @​v1v made their first contribution in #​478

Full Changelog: gotestyourself/gotestsum@v1.12.1...v1.12.2

helm/helm (helm.sh/helm/v3)

v3.18.6: Helm v3.18.6

Compare Source

Helm v3.18.6 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.18.6. The common platform binaries are here:

• MacOS amd64 (checksum / 80cad0470e38cf25731cdead7c32dfbeb887bc177bd6fa01e31b065722f8f06b)
• MacOS arm64 (checksum / 48e30d236a1f334c6acb78501be5a851eaa2a267fefeb1131b6484eb2f9f30d7)
• Linux amd64 (checksum / 3f43c0aa57243852dd542493a0f54f1396c0bc8ec7296bbb2c01e802010819ce)
• Linux arm (checksum / 13156fbe87a9db201b7d8fd0b42dee2a2e76a77388ea3bd59e3074cfa49d3619)
• Linux arm64 (checksum / 5b8e00b6709caab466cbbb0bc29ee09059b8dc9417991dd04b497530e49b1737)
• Linux i386 (checksum / d245db7c80edaf47bc42d3fab0b79d2e75d63fa49d06bc0ca599686ebdbd1422)
• Linux ppc64le (checksum / 61eac730dac2029d7acf1c53bd0b1056f78ca2c3f915da7fa3995e74c021eae8)
• Linux s390x (checksum / c6435c220b2577abea11ee9281fda8a5164583fb1f502702f6ef5c2b4

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: acceptance/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 25 additional dependencies were updated

Details:

Package	Change
github.com/Azure/go-ansiterm	v0.0.0-20230124172434-306776ec8161 -> v0.0.0-20250102033503-faa5f7b0171c
github.com/ProtonMail/go-crypto	v1.1.3 -> v1.1.5
github.com/cyphar/filepath-securejoin	v0.3.1 -> v0.3.6
github.com/gkampitakis/ciinfo	v0.3.0 -> v0.3.2
github.com/go-openapi/errors	v0.22.0 -> v0.22.1
github.com/go-openapi/swag	v0.23.0 -> v0.23.1
github.com/google/certificate-transparency-go	v1.2.1 -> v1.3.1
github.com/magiconair/properties	v1.8.7 -> v1.8.9
github.com/mailru/easyjson	v0.7.7 -> v0.9.0
github.com/mitchellh/mapstructure	v1.5.0 -> v1.5.1-0.20231216201459-8508981c8b6c
github.com/moby/term	v0.5.0 -> v0.5.2
github.com/pjbgf/sha1cd	v0.3.0 -> v0.3.2
github.com/rogpeppe/go-internal	v1.13.1 -> v1.13.2-0.20241226121412-a5dc8ff20d0a
github.com/sergi/go-diff	v1.3.2-0.20230802210424-5b0b94c5c0d3 -> v1.4.0
github.com/sigstore/protobuf-specs	v0.3.2 -> v0.4.1
github.com/sigstore/timestamp-authority	v1.2.2 -> v1.2.4
github.com/spf13/pflag	v1.0.6 -> v1.0.7
github.com/tidwall/gjson	v1.17.3 -> v1.18.0
golang.org/x/crypto	v0.38.0 -> v0.40.0
golang.org/x/net	v0.40.0 -> v0.41.0
golang.org/x/sync	v0.15.0 -> v0.16.0
golang.org/x/sys	v0.33.0 -> v0.34.0
golang.org/x/term	v0.32.0 -> v0.33.0
golang.org/x/text	v0.25.0 -> v0.27.0
google.golang.org/api	v0.215.0 -> v0.228.0

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 32 additional dependencies were updated

Details:

Package	Change
cloud.google.com/go	v0.116.0 -> v0.118.3
cloud.google.com/go/auth	v0.13.0 -> v0.15.0
cloud.google.com/go/auth/oauth2adapt	v0.2.6 -> v0.2.8
cloud.google.com/go/iam	v1.2.2 -> v1.4.1
cloud.google.com/go/monitoring	v1.21.2 -> v1.24.0
cloud.google.com/go/storage	v1.49.0 -> v1.50.0
github.com/Azure/go-ansiterm	v0.0.0-20230124172434-306776ec8161 -> v0.0.0-20250102033503-faa5f7b0171c
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric	v0.48.1 -> v0.49.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping	v0.48.1 -> v0.49.0
github.com/aws/aws-sdk-go-v2/service/ecr	v1.32.2 -> v1.40.3
github.com/aws/aws-sdk-go-v2/service/ecrpublic	v1.25.4 -> v1.31.2
github.com/awslabs/amazon-ecr-credential-helper/ecr-login	v0.0.0-20240826150212-5dc58b6e29f8 -> v0.9.1
github.com/coreos/go-oidc/v3	v3.11.0 -> v3.12.0
github.com/gkampitakis/ciinfo	v0.3.0 -> v0.3.2
github.com/go-openapi/errors	v0.22.0 -> v0.22.1
github.com/go-openapi/swag	v0.23.0 -> v0.23.1
github.com/google/certificate-transparency-go	v1.2.1 -> v1.3.1
github.com/google/s2a-go	v0.1.8 -> v0.1.9
github.com/googleapis/enterprise-certificate-proxy	v0.3.4 -> v0.3.6
github.com/jmespath/go-jmespath	v0.4.0 -> v0.4.1-0.20220621161143-b0104c826a24
github.com/mailru/easyjson	v0.7.7 -> v0.9.0
github.com/mitchellh/mapstructure	v1.5.0 -> v1.5.1-0.20231216201459-8508981c8b6c
github.com/moby/term	v0.5.0 -> v0.5.2
github.com/sergi/go-diff	v1.3.2-0.20230802210424-5b0b94c5c0d3 -> v1.4.0
github.com/sigstore/fulcio	v1.6.3 -> v1.6.6
github.com/sigstore/protobuf-specs	v0.3.2 -> v0.4.1
github.com/sigstore/timestamp-authority	v1.2.2 -> v1.2.4
github.com/tidwall/gjson	v1.17.0 -> v1.18.0
go.step.sm/crypto	v0.51.2 -> v0.60.0
google.golang.org/api	v0.215.0 -> v0.228.0
google.golang.org/genproto	v0.0.0-20241118233622-e639e219e697 -> v0.0.0-20250303144028-a0af3efb3deb
sigs.k8s.io/release-utils	v0.8.4 -> v0.11.0

File name: tools/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/tektoncd/triggers	v0.29.0 -> v0.29.1