chore(deps): update go dependencies

[red-hat-konflux]

This PR contains the following updates:

Package	Type	Update	Change
github.com/Microsoft/go-winio	indirect	patch	v0.6.1 -> v0.6.2
github.com/distribution/reference	indirect	minor	v0.5.0 -> v0.6.0
github.com/docker/go-connections	indirect	minor	v0.4.0 -> v0.6.0
github.com/fsnotify/fsnotify	indirect	minor	v1.7.0 -> v1.9.0
github.com/go-logr/logr	require	patch	v1.4.1 -> v1.4.3
github.com/go-openapi/jsonpointer	indirect	minor	v0.20.2 -> v0.22.1
github.com/go-openapi/jsonreference	indirect	minor	v0.20.4 -> v0.21.2
github.com/go-openapi/swag	indirect	minor	v0.22.9 -> v0.25.1
github.com/go-task/slim-sprig	indirect	digest	52ccab3 -> 6e46e2e
github.com/golang/groupcache	indirect	digest	41bb18b -> 2c02b82
github.com/google/certificate-transparency-go	require	minor	v1.1.7 -> v1.3.2
github.com/google/gnostic-models	indirect	minor	v0.6.8 -> v0.7.0
github.com/google/go-cmp	indirect	minor	v0.6.0 -> v0.7.0
github.com/google/pprof	indirect	digest	ff6d637 -> 9e5a51a
github.com/google/trillian	require	minor	v1.6.0 -> v1.7.2
github.com/letsencrypt/boulder	indirect	minor	v0.0.0-20240620165639-de9c06129bec -> v0.20250929.0
github.com/mailru/easyjson	indirect	minor	v0.7.7 -> v0.9.1
github.com/opencontainers/image-spec	indirect	patch	v1.1.0-rc5 -> v1.1.1
github.com/openshift/api	require	digest	0f638a8 -> 7f24529
github.com/operator-framework/api	require	minor	v0.22.0 -> v0.34.0
github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring	require	minor	v0.70.0 -> v0.85.0
github.com/prometheus/client_golang	indirect	minor	v1.18.0 -> v1.23.2
github.com/prometheus/client_model	indirect	patch	v0.6.0 -> v0.6.2
github.com/prometheus/common	indirect	minor	v0.48.0 -> v0.66.1
github.com/prometheus/procfs	indirect	minor	v0.12.0 -> v0.17.0
github.com/secure-systems-lab/go-securesystemslib	indirect	patch	v0.9.0 -> v0.9.1
github.com/sigstore/fulcio	require	minor	v1.4.4 -> v1.7.1
github.com/sigstore/sigstore	require	minor	v1.8.15 -> v1.9.5
github.com/spf13/pflag	indirect	patch	v1.0.5 -> v1.0.10
go (source)	toolchain	minor	1.22.9 -> 1.23.6
golang.org/x/crypto	indirect	minor	v0.32.0 -> v0.42.0
golang.org/x/exp	indirect	digest	ec58324 -> df92998
golang.org/x/mod	indirect	minor	v0.17.0 -> v0.28.0
golang.org/x/net	require	minor	v0.25.0 -> v0.44.0
golang.org/x/oauth2	indirect	minor	v0.26.0 -> v0.31.0
golang.org/x/sync	indirect	minor	v0.10.0 -> v0.17.0
golang.org/x/sys	indirect	minor	v0.29.0 -> v0.36.0
golang.org/x/term	indirect	minor	v0.28.0 -> v0.35.0
golang.org/x/text	indirect	minor	v0.21.0 -> v0.29.0
golang.org/x/time	indirect	minor	v0.5.0 -> v0.13.0
golang.org/x/tools	indirect	minor	v0.21.1-0.20240508182429-e35e4ccd0d2d -> v0.37.0
google.golang.org/genproto/googleapis/rpc	indirect	digest	dc85e6b -> 57b25ae
k8s.io/api	require	minor	v0.28.5 -> v0.34.1
k8s.io/apiextensions-apiserver	require	minor	v0.28.5 -> v0.34.1
k8s.io/apimachinery	require	minor	v0.28.5 -> v0.34.1
k8s.io/client-go	require	minor	v0.28.5 -> v0.34.1
k8s.io/component-base	indirect	minor	v0.28.5 -> v0.34.1
k8s.io/kube-openapi	indirect	digest	2ac9dc5 -> 589584f
k8s.io/utils	require	digest	e7106e6 -> 0af2bda
sigs.k8s.io/controller-runtime	require	minor	v0.16.3 -> v0.22.1
sigs.k8s.io/json	indirect	digest	bc3834c -> 2d32026
sigs.k8s.io/yaml	indirect	minor	v1.4.0 -> v1.6.0

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

Microsoft/go-winio (github.com/Microsoft/go-winio)

v0.6.2

Compare Source

What's Changed

• [etw] Add String() functions, JSON field option by @​helsaawy in microsoft#285
• enable dependency updates by @​helsaawy in microsoft#287
• Isolate tools dependencies in tools package by @​helsaawy in microsoft#293
• Update tests; run fuzzing by @​helsaawy in microsoft#294
• Add support for flushing and disconnecting named pipes by @​dgolub in microsoft#292
• Add ResolvePath tests by @​helsaawy in microsoft#276
• [lint] Fix errors from #​276 by @​helsaawy in microsoft#296
• Switch from sycall to windows by @​helsaawy in microsoft#295
• [lint] Remove deprecated tar.TypeRegA by @​helsaawy in microsoft#300
• sd.go: fix calculation of security descriptor length in SddlToSecurit… by @​dblohm7 in microsoft#299
• fix: already typo by @​testwill in microsoft#303
• pipe.go: add DialPipeAccessImpLevel by @​dblohm7 in microsoft#302
• Bug: Close hvsock handle on listen error; fix tests by @​helsaawy in microsoft#310
• fileinfo: internally fix FileBasicInfo memory alignment by @​dagood in microsoft#312
• Update go1.21 and CI by @​helsaawy in microsoft#315

New Contributors

• @​dgolub made their first contribution in microsoft#292
• @​dblohm7 made their first contribution in microsoft#299
• @​testwill made their first contribution in microsoft#303
• @​dagood made their first contribution in microsoft#312

Full Changelog: microsoft/go-winio@v0.6.1...v0.6.2

distribution/reference (github.com/distribution/reference)

v0.6.0

Compare Source

What's Changed

• remove deprecated SplitHostname by @​thaJeztah in #​5
• refactor splitDockerDomain to include more documentation by @​thaJeztah in #​7
• fix typo in readme by @​xrstf in #​10
• Exclude domain from name length check by @​ozairasim in #​9

New Contributors

• @​xrstf made their first contribution in #​10
• @​ozairasim made their first contribution in #​9

Full Changelog: distribution/reference@v0.5.0...v0.6.0

docker/go-connections (github.com/docker/go-connections)

v0.6.0

Compare Source

v0.5.0

Compare Source

fsnotify/fsnotify (github.com/fsnotify/fsnotify)

v1.9.0

Compare Source

Changes and fixes

• all: make BufferedWatcher buffered again (#​657)

• inotify: fix race when adding/removing watches while a watched path is being deleted (#​678, #​686)

• inotify: don't send empty event if a watched path is unmounted (#​655)

• inotify: don't register duplicate watches when watching both a symlink and its target; previously that would get "half-added" and removing the second would panic (#​679)

• kqueue: fix watching relative symlinks (#​681)

• kqueue: correctly mark pre-existing entries when watching a link to a dir on kqueue (#​682)

• illumos: don't send error if changed file is deleted while processing the event (#​678)

v1.8.0

Compare Source

Additions

• all: add FSNOTIFY_DEBUG to print debug logs to stderr (#​619)

Changes and fixes

• windows: fix behaviour of WatchList() to be consistent with other platforms (#​610)

• kqueue: ignore events with Ident=0 (#​590)

• kqueue: set O_CLOEXEC to prevent passing file descriptors to children (#​617)

• kqueue: emit events as "/path/dir/file" instead of "path/link/file" when watching a symlink (#​625)

• inotify: don't send event for IN_DELETE_SELF when also watching the parent (#​620)

• inotify: fix panic when calling Remove() in a goroutine (#​650)

• fen: allow watching subdirectories of watched directories (#​621)

go-logr/logr (github.com/go-logr/logr)

v1.4.3

Compare Source

Minor release.

What's Changed

• Fix slog tests for 1.25 by @​hoeppi-google in #​361
• Remove one exception from Slog testing by @​thockin in #​362

New Contributors

• @​hoeppi-google made their first contribution in #​361

Full Changelog: go-logr/logr@v1.4.2...v1.4.3

v1.4.2

Compare Source

What's Changed

• Fix lint: named but unused params by @​thockin in #​268
• Add a Go report card, fix lint by @​thockin in #​271
• funcr: Handle nested empty groups properly by @​thockin in #​274

Dependencies:

• build(deps): bump github/codeql-action from 3.22.11 to 3.22.12 by @​dependabot in #​254
• build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 by @​dependabot in #​256
• build(deps): bump actions/upload-artifact from 4.0.0 to 4.1.0 by @​dependabot in #​257
• build(deps): bump github/codeql-action from 3.23.0 to 3.23.1 by @​dependabot in #​259
• build(deps): bump actions/upload-artifact from 4.1.0 to 4.2.0 by @​dependabot in #​260
• build(deps): bump actions/upload-artifact from 4.2.0 to 4.3.0 by @​dependabot in #​263
• build(deps): bump github/codeql-action from 3.23.1 to 3.23.2 by @​dependabot in #​262
• build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by @​dependabot in #​264
• build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 by @​dependabot in #​266
• build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 by @​dependabot in #​267
• build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 by @​dependabot in #​270
• build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by @​dependabot in #​272
• build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by @​dependabot in #​275
• build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @​dependabot in #​276
• build(deps): bump github/codeql-action from 3.24.6 to 3.24.7 by @​dependabot in #​277
• build(deps): bump github/codeql-action from 3.24.7 to 3.24.9 by @​dependabot in #​278
• build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by @​dependabot in #​279
• build(deps): bump actions/upload-artifact from 4.3.1 to 4.3.2 by @​dependabot in #​280
• build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by @​dependabot in #​281
• build(deps): bump github/codeql-action from 3.24.10 to 3.25.1 by @​dependabot in #​282
• build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 by @​dependabot in #​283
• build(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 by @​dependabot in #​284
• build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by @​dependabot in #​285
• build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 by @​dependabot in #​286
• build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by @​dependabot in #​288
• build(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.3.0 by @​dependabot in #​289
• build(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.1 by @​dependabot in #​293
• build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @​dependabot in #​292
• build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @​dependabot in #​291
• build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @​dependabot in #​290
• build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @​dependabot in #​294
• build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @​dependabot in #​295

Full Changelog: go-logr/logr@v1.4.1...v1.4.2

go-openapi/jsonpointer (github.com/go-openapi/jsonpointer)

v0.22.1

Compare Source

v0.22.0

Compare Source

v0.21.2

Compare Source

v0.21.1

Compare Source

v0.21.0

Compare Source

v0.20.3

Compare Source

go-openapi/jsonreference (github.com/go-openapi/jsonreference)

v0.21.2

Compare Source

v0.21.1

Compare Source

v0.21.0

Compare Source

v0.20.5

Compare Source

go-openapi/swag (github.com/go-openapi/swag)

v0.25.1

Compare Source

v0.25.0

Compare Source

v0.24.1

Compare Source

v0.24.0

Compare Source

v0.23.1

Compare Source

v0.23.0

Compare Source

v0.22.10

Compare Source

google/certificate-transparency-go (github.com/google/certificate-transparency-go)

v1.3.2

Compare Source

Misc

• [migrillian] remove etcd support in #​1699
• Bump golangci-lint from 1.55.1 to 1.61.0 (developers should update to this version).
• Update ctclient tool to support SCT extensions field by @​liweitianux in #​1645
• Bump go to 1.23
• [ct_hammer] support HTTPS and Bearer token for Authentication.
• [preloader] support Bearer token Authentication for non temporal logs.
• [preloader] support end indexes
• [CTFE] Short cache max-age when get-entries returns fewer entries than requested by @​robstradling in #​1707
• [CTFE] Disalllow mismatching signature algorithm identifiers in #​702.
• [jsonclient] surface HTTP Do and Read errors #​1695 by @​FiloSottile

CTFE Storage Saving: Extra Data Issuance Chain Deduplication

• Suppress unnecessary duplicate key errors in the IssuanceChainStorage PostgreSQL implementation by @​robstradling in #​1678
• Only store IssuanceChain if not cached by @​robstradling in #​1679

CTFE Rate Limiting Of Non-Fresh Submissions

To protect a log from being flooded with requests for "old" certificates, optional rate limiting for "non-fresh submissions" can be configured by providing the following flags:

• non_fresh_submission_age
• non_fresh_submission_burst
• non_fresh_submission_limit

This can help to ensure that the log maintains its ability to (1) accept "fresh" submissions and (2) distribute all log entries to monitors.

• [CTFE] Configurable mechanism to rate-limit non-fresh submissions by @​robstradling in #​1698

Dependency updates

• Bump the docker-deps group across 5 directories with 3 updates (#​1705)
• Bump google.golang.org/grpc from 1.72.1 to 1.72.2 in the all-deps group (#​1704)
• Bump github.com/go-jose/go-jose/v4 in the go_modules group (#​1700)
• Bump the all-deps group with 7 updates (#​1701)
• Bump the all-deps group with 7 updates (#​1693)
• Bump the docker-deps group across 4 directories with 1 update (#​1694)
• Bump github/codeql-action from 3.28.13 to 3.28.16 in the all-deps group (#​1692)
• Bump the all-deps group across 1 directory with 7 updates (#​1688)
• Bump distroless/base-debian12 (#​1686)
• Bump golangci/golangci-lint-action from 6.5.1 to 7.0.0 in the all-deps group (#​1685)
• Bump the all-deps group with 4 updates (#​1681)
• Bump the all-deps group with 6 updates (#​1683)
• Bump the docker-deps group across 4 directories with 2 updates (#​1682)
• Bump github.com/golang-jwt/jwt/v4 in the go_modules group (#​1680)
• Bump golangci/golangci-lint-action in the all-deps group (#​1676)
• Bump the all-deps group with 2 updates (#​1677)
• Bump github/codeql-action from 3.28.10 to 3.28.11 in the all-deps group (#​1670)
• Bump the all-deps group with 8 updates (#​1672)
• Bump the docker-deps group across 4 directories with 1 update (#​1671)
• Bump the docker-deps group across 4 directories with 1 update (#​1668)
• Bump the all-deps group with 4 updates (#​1666)
• Bump golangci-lint from 1.55.1 to 1.61.0 (#​1667)
• Bump the all-deps group with 3 updates (#​1665)
• Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 in the all-deps group (#​1660)
• Bump the docker-deps group across 5 directories with 2 updates (#​1661)
• Bump golangci/golangci-lint-action in the all-deps group (#​1662)
• Bump the docker-deps group across 4 directories with 1 update (#​1656)
• Bump the all-deps group with 2 updates (#​1654)
• Bump the all-deps group with 4 updates (#​1657)
• Bump github/codeql-action from 3.28.5 to 3.28.8 in the all-deps group (#​1652)
• Bump github.com/spf13/pflag from 1.0.5 to 1.0.6 in the all-deps group (#​1651)
• Bump the all-deps group with 2 updates (#​1649)
• Bump the all-deps group with 5 updates (#​1650)
• Bump the docker-deps group across 5 directories with 3 updates (#​1648)
• Bump google.golang.org/protobuf in the all-deps group (#​1647)
• Bump golangci/golangci-lint-action in the all-deps group (#​1646)

v1.3.1

Compare Source

• Add AllLogListSignatureURL by @​AlexLaroche in #​1634
• Add TiledLogs to log list JSON by @​mcpherrinm in #​1635
• chore: relax go directive to permit 1.22.x by @​dnwe in #​1640

Dependency Update

• Bump github.com/fullstorydev/grpcurl from 1.9.1 to 1.9.2 in the all-deps group by @​dependabot in #​1627
• Bump the all-deps group with 3 updates by @​dependabot in #​1628
• Bump the docker-deps group across 5 directories with 3 updates by @​dependabot in #​1630
• Bump github/codeql-action from 3.27.5 to 3.27.6 in the all-deps group by @​dependabot in #​1629
• Bump golang.org/x/crypto from 0.30.0 to 0.31.0 in the go_modules group by @​dependabot in #​1631
• Bump the all-deps group with 2 updates by @​dependabot in #​1633
• Bump the all-deps group with 2 updates by @​dependabot in #​1632
• Bump the docker-deps group across 4 directories with 1 update by @​dependabot in #​1638
• Bump the all-deps group with 2 updates by @​dependabot in #​1637
• Bump the all-deps group across 1 directory with 2 updates by @​dependabot in #​1641
• Bump the all-deps group with 2 updates by @​dependabot in #​1643
• Bump google.golang.org/grpc from 1.69.2 to 1.69.4 in the all-deps group by @​dependabot in #​1642

v1.3.0

Compare Source

CTFE Storage Saving: Extra Data Issuance Chain Deduplication

This feature now supports PostgreSQL, in addition to the support for MySQL/MariaDB that was added in v1.2.0.

Log operators can choose to enable this feature for new PostgreSQL-based CT logs by adding new CTFE configs in the LogMultiConfig and importing the database schema. The other available options are documented in the v1.2.0 changelog entry.

This change is tested in Cloud Build tests using the postgres:17 Docker image as of the time of writing.

• Add IssuanceChainStorage PostgreSQL implementation by @​robstradling in #​1618

Misc

• [Dependabot] Update all docker images in one PR by @​mhutchinson in #​1614
• Explicitly include version tag by @​mhutchinson in #​1617
• Add empty cloudbuild_postgresql.yaml by @​roger2hk in #​1623

Dependency update

• Bump the all-deps group with 4 updates by @​dependabot in #​1609
• Bump golang from 1.23.2-bookworm to 1.23.3-bookworm in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1611
• Bump github/codeql-action from 3.27.0 to 3.27.1 in the all-deps group by @​dependabot in #​1610
• Bump golang from 1.23.2-bookworm to 1.23.3-bookworm in /trillian/examples/deployment/docker/ctfe in the all-deps group by @​dependabot in #​1612
• Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 in the go_modules group by @​dependabot in #​1613
• Bump the docker-deps group across 3 directories with 2 updates by @​dependabot in #​1616
• Bump github/codeql-action from 3.27.1 to 3.27.2 in the all-deps group by @​dependabot in #​1615
• Bump the docker-deps group across 4 directories with 2 updates by @​dependabot in #​1622
• Bump github/codeql-action from 3.27.2 to 3.27.4 in the all-deps group by @​dependabot in #​1620
• Bump the all-deps group with 4 updates by @​dependabot in #​1621
• Bump github.com/google/trillian from 1.6.1 to 1.7.0 in the all-deps group by @​dependabot in #​1624
• Bump github/codeql-action from 3.27.4 to 3.27.5 in the all-deps group by @​dependabot in #​1625

v1.2.2

Compare Source

• Recommended Go version for development: 1.22
  • Using a different version can lead to presubmits failing due to unexpected diffs.

Add TLS Support

Add TLS support for Trillian: By using --trillian_tls_ca_cert_file flag, users can provide a CA certificate, that is used to establish a secure communication with Trillian log server.

Add TLS support for ct_server: By using --tls_certificate and --tls_key flags, users can provide a service certificate and key, that enables the server to handle HTTPS requests.

• Add TLS support for CTLog server by @​fghanmi in #​1523
• Add TLS support for migrillian by @​fghanmi in #​1525
• fix TLS configuration for ct_server by @​fghanmi in #​1542
• Add Trillian TLS support for ct_server by @​fghanmi in #​1551

HTTP Idle Connection Timeout Flag

A new flag http_idle_timeout is added to set the HTTP server's idle timeout value in the ct_server binary. This controls the maximum amount of time to wait for the next request when keep-alives are enabled.

• add flag for HTTP idle connection timeout value by @​bobcallaway in #​1597

Misc

• Refactor issuance chain service by @​mhutchinson in #​1512
• Use the version in the go.mod file for vuln checks by @​mhutchinson in #​1528

Fixes

• Fix failed tests on 32-bit OS by @​roger2hk in #​1540

Dependency update

• Bump go.etcd.io/etcd/v3 from 3.5.13 to 3.5.14 by @​dependabot in #​1500
• Bump github/codeql-action from 3.25.6 to 3.25.7 by @​dependabot in #​1501
• Bump golang.org/x/net from 0.25.0 to 0.26.0 by @​dependabot in #​1503
• Group dependabot updates as much as possible by @​mhutchinson in #​1506
• Bump golang from 1.22.3-bookworm to 1.22.4-bookworm in /internal/witness/cmd/witness in the all-deps group by @​dependabot in #​1507
• Bump the all-deps group with 2 updates by @​dependabot in #​1511
• Bump golang from 1.22.3-bookworm to 1.22.4-bookworm in /trillian/examples/deployment/docker/ctfe in the all-deps group by @​dependabot in #​1510
• Bump golang from 1.22.3-bookworm to 1.22.4-bookworm in /integration in the all-deps group by @​dependabot in #​1509
• Bump golang from 1.22.3-bookworm to 1.22.4-bookworm in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1508
• Bump the all-deps group with 3 updates by @​dependabot in #​1516
• Bump golang from aec4784 to 9678844 in /internal/witness/cmd/witness in the all-deps group by @​dependabot in #​1518
• Bump alpine from 3.19 to 3.20 in /trillian/examples/deployment/docker/envsubst by @​dependabot in #​1492
• Bump golang from aec4784 to 9678844 in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1517
• Bump golang from aec4784 to 9678844 in /trillian/examples/deployment/docker/ctfe in the all-deps group by @​dependabot in #​1513
• Bump the all-deps group with 2 updates by @​dependabot in #​1515
• Bump golang from aec4784 to 9678844 in /integration in the all-deps group by @​dependabot in #​1514
• Bump alpine from 77726ef to b89d9c9 in /trillian/examples/deployment/docker/envsubst in the all-deps group by @​dependabot in #​1519
• Bump k8s.io/klog/v2 from 2.130.0 to 2.130.1 in the all-deps group by @​dependabot in #​1521
• Bump alpine from 77726ef to b89d9c9 in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1520
• Bump github/codeql-action from 3.25.10 to 3.25.11 in the all-deps group by @​dependabot in #​1526
• Bump version of go used by the vuln checker by @​mhutchinson in #​1527
• Bump the all-deps group with 3 updates by @​dependabot in #​1530
• Bump golang from 1.22.4-bookworm to 1.22.5-bookworm in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1531
• Bump golang from 1.22.4-bookworm to 1.22.5-bookworm in /internal/witness/cmd/witness in the all-deps group by @​dependabot in #​1532
• Bump the all-deps group in /trillian/examples/deployment/docker/ctfe with 2 updates by @​dependabot in #​1533
• Bump actions/upload-artifact from 4.3.3 to 4.3.4 in the all-deps group by @​dependabot in #​1534
• Bump golang from 1.22.4-bookworm to 1.22.5-bookworm in /integration in the all-deps group by @​dependabot in #​1535
• Bump the all-deps group with 2 updates by @​dependabot in #​1536
• Bump github/codeql-action from 3.25.12 to 3.25.13 in the all-deps group by @​dependabot in #​1538
• Bump the all-deps group with 3 updates by @​dependabot in #​1537
• Bump the all-deps group with 2 updates by @​dependabot in #​1543
• Bump golang from 6c27802 to af9b40f in /trillian/examples/deployment/docker/ctfe in the all-deps group by @​dependabot in #​1544
• Bump golang from 6c27802 to af9b40f in /internal/witness/cmd/witness in the all-deps group by @​dependabot in #​1548
• Bump golang from 6c27802 to af9b40f in /integration in the all-deps group by @​dependabot in #​1547
• Bump alpine from b89d9c9 to 0a4eaa0 in /trillian/examples/deployment/docker/envsubst in the all-deps group by @​dependabot in #​1546
• Bump the all-deps group in /internal/witness/cmd/feeder with 2 updates by @​dependabot in #​1545
• Bump the all-deps group with 2 updates by @​dependabot in #​1549
• Bump golang.org/x/time from 0.5.0 to 0.6.0 in the all-deps group by @​dependabot in #​1550
• Bump golang from 1.22.5-bookworm to 1.22.6-bookworm in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1552
• Bump golang from 1.22.5-bookworm to 1.22.6-bookworm in /trillian/examples/deployment/docker/ctfe in the all-deps group by @​dependabot in #​1553
• Bump golang from 1.22.5-bookworm to 1.22.6-bookworm in /integration in the all-deps group by @​dependabot in #​1554
• Bump the all-deps group with 2 updates by @​dependabot in #​1555
• Bump the all-deps group with 2 updates by @​dependabot in #​1556
• Bump golang from 1.22.5-bookworm to 1.22.6-bookworm in /internal/witness/cmd/witness in the all-deps group by @​dependabot in #​1557
• Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 in the all-deps group by @​dependabot in #​1559
• Bump github/codeql-action from 3.26.0 to 3.26.3 in the all-deps group by @​dependabot in #​1561
• Bump golang from 1.22.6-bookworm to 1.23.0-bookworm in /internal/witness/cmd/witness in the all-deps group by @​dependabot in #​1558
• Bump golang from 1.22.6-bookworm to 1.23.0-bookworm in /internal/witness/cmd/feeder in the all-deps group by @​dependabot in #​1563
• Bump golang from 1.22.6-bookworm to 1.23.0-bookworm in /trillian/examples/deployment/docker/ctfe in the all-deps group by @​dependabot in #​1560
• Bump golang from 1.22.6-bookworm to 1.23.0-bookworm in /integration in the all-deps group by @​dependabot in #​1562
• Bump go version to 1.22.6 by @​roger2hk in #​1564
• Bump github.com/prometheus/client_golang from 1.20.0 to 1.20.2 in the all-deps group by @​dependabot in #​1565
• Bump github/c

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

This PR has been generated by MintMaker (powered by Renovate Bot).