fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Confidence
actions/github-script	action	minor	v7.0.1 -> v7.1.0
alpine	final	patch	3.22.1 -> 3.22.2
codecov/codecov-action	action	patch	v5.5.0 -> v5.5.1
docker/login-action	action	minor	v3.5.0 -> v3.6.0
github.com/gin-gonic/gin	require	minor	v1.10.1 -> v1.11.0
github.com/hashicorp/vault/api	require	minor	v1.20.0 -> v1.22.0
github.com/lestrrat-go/jwx/v3	require	patch	v3.0.10 -> v3.0.12
github.com/prometheus/client_golang	require	patch	v1.23.0 -> v1.23.2
github.com/redis/go-redis/v9	require	minor	v9.12.1 -> v9.16.0
github.com/spf13/afero	require	minor	v1.14.0 -> v1.15.0
github.com/urfave/cli/v3	require	minor	v3.4.1 -> v3.5.0
github/codeql-action	action	minor	v3.29.11 -> v3.31.2
go.opentelemetry.io/contrib/instrumentation/github.com/gin-gonic/gin/otelgin	require	minor	v0.62.0 -> v0.63.0
go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace	require	minor	v0.62.0 -> v0.63.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	require	minor	v0.62.0 -> v0.63.0
go.opentelemetry.io/otel	require	minor	v1.37.0 -> v1.38.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace	require	minor	v1.37.0 -> v1.38.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp	require	minor	v1.37.0 -> v1.38.0
go.opentelemetry.io/otel/sdk	require	minor	v1.37.0 -> v1.38.0
go.opentelemetry.io/otel/trace	require	minor	v1.37.0 -> v1.38.0
go.starlark.net	require	digest	2a4f369 -> 7849196
golang.org/x/crypto	require	minor	v0.41.0 -> v0.43.0
golang.org/x/oauth2	require	minor	v0.30.0 -> v0.32.0
golang.org/x/sync	require	minor	v0.16.0 -> v0.17.0
golang.org/x/time	require	minor	v0.12.0 -> v0.14.0
gorm.io/gorm	require	minor	v1.30.2 -> v1.31.1
k8s.io/apimachinery	require	patch	v0.34.0 -> v0.34.1

---

Release Notes

actions/github-script (actions/github-script)

v7.1.0

Compare Source

What's Changed

• Upgrade husky to v9 by @​benelan in #​482
• Add workflow file for publishing releases to immutable action package by @​Jcambass in #​485
• Upgrade IA Publish by @​Jcambass in #​486
• Fix workflow status badges by @​joshmgross in #​497
• Update usage of actions/upload-artifact by @​joshmgross in #​512
• Clear up package name confusion by @​joshmgross in #​514
• Update dependencies with npm audit fix by @​joshmgross in #​515
• Specify that the used script is JavaScript by @​timotk in #​478
• chore: Add Dependabot for NPM and Actions by @​nschonni in #​472
• Define permissions in workflows and update actions by @​joshmgross in #​531
• chore: Add Dependabot for .github/actions/install-dependencies by @​nschonni in #​532
• chore: Remove .vscode settings by @​nschonni in #​533
• ci: Use github/setup-licensed by @​nschonni in #​473
• make octokit instance available as octokit on top of github, to make it easier to seamlessly copy examples from GitHub rest api or octokit documentations by @​iamstarkov in #​508
• Remove octokit README updates for v7 by @​joshmgross in #​557
• docs: add "exec" usage examples by @​neilime in #​546
• Bump ruby/setup-ruby from 1.213.0 to 1.222.0 by @​dependabot[bot] in #​563
• Bump ruby/setup-ruby from 1.222.0 to 1.229.0 by @​dependabot[bot] in #​575
• Clearly document passing inputs to the script by @​joshmgross in #​603
• Update README.md by @​nebuk89 in #​610

New Contributors

• @​benelan made their first contribution in #​482
• @​Jcambass made their first contribution in #​485
• @​timotk made their first contribution in #​478
• @​iamstarkov made their first contribution in #​508
• @​neilime made their first contribution in #​546
• @​nebuk89 made their first contribution in #​610

Full Changelog: actions/github-script@v7...v7.1.0

codecov/codecov-action (codecov/codecov-action)

v5.5.1

Compare Source

What's Changed

• fix: overwrite pr number on fork by @​thomasrockhu-codecov in #​1871
• build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @​app/dependabot in #​1868
• build(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by @​app/dependabot in #​1867
• fix: update to use local app/ dir by @​thomasrockhu-codecov in #​1872
• docs: fix typo in README by @​datalater in #​1866
• Document a codecov-cli version reference example by @​webknjaz in #​1774
• build(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by @​app/dependabot in #​1861
• build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @​app/dependabot in #​1833

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1

docker/login-action (docker/login-action)

v3.6.0

Compare Source

• Add registry-auth input for raw authentication to registries by @​crazy-max in #​887
• Bump @​aws-sdk/client-ecr to 3.890.0 in #​882 #​890
• Bump @​aws-sdk/client-ecr-public to 3.890.0 in #​882 #​890
• Bump @​docker/actions-toolkit from 0.62.1 to 0.63.0 in #​883
• Bump brace-expansion from 1.1.11 to 1.1.12 in #​880
• Bump undici from 5.28.4 to 5.29.0 in #​879
• Bump tmp from 0.2.3 to 0.2.4 in #​881

Full Changelog: docker/login-action@v3.5.0...v3.6.0

gin-gonic/gin (github.com/gin-gonic/gin)

v1.11.0

Compare Source

Features

• feat(gin): Experimental support for HTTP/3 using quic-go/quic-go (#​3210)
• feat(form): add array collection format in form binding (#​3986), add custom string slice for form tag unmarshal (#​3970)
• feat(binding): add BindPlain (#​3904)
• feat(fs): Export, test and document OnlyFilesFS (#​3939)
• feat(binding): add support for unixMilli and unixMicro (#​4190)
• feat(form): Support default values for collections in form binding (#​4048)
• feat(context): GetXxx added support for more go native types (#​3633)

Enhancements

• perf(context): optimize getMapFromFormData performance (#​4339)
• refactor(tree): replace string(/) with "/" in node.insertChild (#​4354)
• refactor(render): remove headers parameter from writeHeader (#​4353)
• refactor(context): simplify "GetType()" functions (#​4080)
• refactor(slice): simplify SliceValidationError Error method (#​3910)
• refactor(context):Avoid using filepath.Dir twice in SaveUploadedFile (#​4181)
• refactor(context): refactor context handling and improve test robustness (#​4066)
• refactor(binding): use strings.Cut to replace strings.Index (#​3522)
• refactor(context): add an optional permission parameter to SaveUploadedFile (#​4068)
• refactor(context): verify URL is Non-nil in initQueryCache() (#​3969)
• refactor(context): YAML judgment logic in Negotiate (#​3966)
• tree: replace the self-defined 'min' to official one (#​3975)
• context: Remove redundant filepath.Dir usage (#​4181)

Bug Fixes

• fix: prevent middleware re-entry issue in HandleContext (#​3987)
• fix(binding): prevent duplicate decoding and add validation in decodeToml (#​4193)
• fix(gin): Do not panic when handling method not allowed on empty tree (#​4003)
• fix(gin): data race warning for gin mode (#​1580)
• fix(context): verify URL is Non-nil in initQueryCache() (#​3969)
• fix(context): YAML judgment logic in Negotiate (#​3966)
• fix(context): check handler is nil (#​3413)
• fix(readme): fix broken link to English documentation (#​4222)
• fix(tree): Keep panic infos consistent when wildcard type build faild (#​4077)

Build process updates / CI

• ci: integrate Trivy vulnerability scanning into CI workflow (#​4359)
• ci: support Go 1.25 in CI/CD (#​4341)
• build(deps): upgrade github.com/bytedance/sonic from v1.13.2 to v1.14.0 (#​4342)
• ci: add Go version 1.24 to GitHub Actions (#​4154)
• build: update Gin minimum Go version to 1.21 (#​3960)
• ci(lint): enable new linters (testifylint, usestdlibvars, perfsprint, etc.) (#​4010, #​4091, #​4090)
• ci(lint): update workflows and improve test request consistency (#​4126)

Dependency updates

• chore(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#​4346, #​4356)
• chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (#​4347)
• chore(deps): bump actions/setup-go from 5 to 6 (#​4351)
• chore(deps): bump github.com/quic-go/quic-go from 0.53.0 to 0.54.0 (#​4328)
• chore(deps): bump golang.org/x/net from 0.33.0 to 0.38.0 (#​4178, #​4221)
• chore(deps): bump github.com/go-playground/validator/v10 from 10.20.0 to 10.22.1 (#​4052)

Documentation updates

• docs(changelog): update release notes for Gin v1.10.1 (#​4360)
• docs: Fixing English grammar mistakes and awkward sentence structure in doc/doc.md (#​4207)
• docs: update documentation and release notes for Gin v1.10.0 (#​3953)
• docs: fix typo in Gin Quick Start (#​3997)
• docs: fix comment and link issues (#​4205, #​3938)
• docs: fix route group example code (#​4020)
• docs(readme): add Portuguese documentation (#​4078)
• docs(context): fix some function names in comment (#​4079)

---

hashicorp/vault (github.com/hashicorp/vault/api)

v1.21.0

Compare Source

lestrrat-go/jwx (github.com/lestrrat-go/jwx/v3)

v3.0.12

Compare Source

What's Changed

• Change go.mod version requirements to go 1.24.0 and introduce toolchain directive by @​henrymcconville in #​1465
• Use go.mod for go version in Bazel module by @​henrymcconville in #​1466
• Enable legacy signers by default, and explicitly populate new signer instances by @​lestrrat in #​1460
• autodoc updates by @​github-actions[bot] in #​1475
• Fix godoclint issues by @​babakks in #​1469
• Bump actions/cache from 4.2.4 to 4.3.0 by @​dependabot[bot] in #​1463
• Bump actions/stale from 10.0.0 to 10.1.0 by @​dependabot[bot] in #​1468
• Bump github.com/segmentio/asm from 1.2.0 to 1.2.1 by @​dependabot[bot] in #​1462
• Bump github/codeql-action from 3 to 4 by @​dependabot[bot] in #​1472
• Bump golang.org/x/crypto from 0.42.0 to 0.43.0 by @​dependabot[bot] in #​1474
• revive godoclint by @​lestrrat in #​1478
• [jwe] Add option to explicitly clear per-recipient headers ("header") for flattened JSON serialization by @​lestrrat in #​1477
• autodoc updates by @​github-actions[bot] in #​1480

New Contributors

• @​henrymcconville made their first contribution in #​1465
• @​babakks made their first contribution in #​1469

Full Changelog: lestrrat-go/jwx@v3.0.11...v3.0.12

v3.0.11

Compare Source

What's Changed

• Bump actions/cache from 4.2.3 to 4.2.4 by @​dependabot[bot] in #​1438
• Bump golang.org/x/crypto from 0.40.0 to 0.41.0 by @​dependabot[bot] in #​1436
• [jwe] Work with non X25519 ECDH encryption by @​lestrrat in #​1442
• Bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in #​1440
• Separate out signature generation / verification into its own framework by @​lestrrat in #​1439
• Bump github.com/lestrrat-go/httprc/v3 from 3.0.0 to 3.0.1 by @​dependabot[bot] in #​1443
• Bump actions/stale from 9.1.0 to 10.0.0 by @​dependabot[bot] in #​1451
• Bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @​dependabot[bot] in #​1447
• Bump golang.org/x/crypto from 0.41.0 to 0.42.0 by @​dependabot[bot] in #​1456
• Bump actions/setup-go from 5.5.0 to 6.0.0 by @​dependabot[bot] in #​1449
• Warh40k fix/connection leak by @​lestrrat in #​1458
• Allow shutting down jwk cache by @​adam-bates in #​1457

New Contributors

• @​adam-bates made their first contribution in #​1457

Full Changelog: lestrrat-go/jwx@v3.0.10...v3.0.11

prometheus/client_golang (github.com/prometheus/client_golang)

v1.23.2: - 2025-09-05

Compare Source

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

All Changes

• [release-1.23] Upgrade to prometheus/common@​v0.66.1 by @​aknuds1 in #​1869
• [release-1.23] Cut v1.23.2 by @​aknuds1 in #​1870

Full Changelog: prometheus/client_golang@v1.23.1...v1.23.2

v1.23.1: - 2025-09-04

Compare Source

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

All Changes

• [release-1.23] Upgrade to prometheus/common v0.66 by @​aknuds1 in #​1866
• [release-1.23] Cut v1.23.1 by @​aknuds1 in #​1867

Full Changelog: prometheus/client_golang@v1.23.0...v1.23.1

redis/go-redis (github.com/redis/go-redis/v9)

v9.16.0: 9.16.0

Compare Source

🚀 Highlights

Maintenance Notifications Support

This release introduces comprehensive support for Redis maintenance notifications, enabling applications to handle server maintenance events gracefully. The new maintnotifications package provides:

• RESP3 Push Notifications: Full support for Redis RESP3 protocol push notifications
• Connection Handoff: Automatic connection migration during server maintenance with configurable retry policies and circuit breakers
• Graceful Degradation: Configurable timeout relaxation during maintenance windows to prevent false failures
• Event-Driven Architecture: Background workers with on-demand scaling for efficient handoff processing

For detailed usage examples and configuration options, see the maintenance notifications documentation.

✨ New Features

• Trace Filtering: Add support for filtering traces for specific commands, including pipeline operations and dial operations (#​3519, #​3550)
  • New TraceCmdFilter option to selectively trace commands
  • Reduces overhead by excluding high-frequency or low-value commands from traces

🐛 Bug Fixes

• Pipeline Error Handling: Fix issue where pipeline repeatedly sets the same error (#​3525)
• Connection Pool: Ensure re-authentication does not interfere with connection handoff operations (#​3547)

🔧 Improvements

• Hash Commands: Update hash command implementations (#​3523)
• OpenTelemetry: Use metric.WithAttributeSet to avoid unnecessary attribute copying in redisotel (#​3552)

📚 Documentation

• Cluster Client: Add explanation for why MaxRetries is disabled for ClusterClient (#​3551)

🧪 Testing & Infrastructure

• E2E Testing: Upgrade E2E testing framework with improved reliability and coverage (#​3541)
• Release Process: Improved resiliency of the release process (#​3530)

📦 Dependencies

• Bump rojopolis/spellcheck-github-actions from 0.51.0 to 0.52.0 (#​3520)
• Bump github/codeql-action from 3 to 4 (#​3544)

👥 Contributors

We'd like to thank all the contributors who worked on this release!

@​ndyakov, @​htemelski-redis, @​Sovietaced, @​Udhayarajan, @​boekkooi-impossiblecloud, @​Pika-Gopher, @​cxljs, @​huiyifyj, @​omid-h70

---

Full Changelog: redis/go-redis@v9.14.0...v9.16.0

v9.15.1: Retract v9.15.0 and v9.15.1

v9.14.1: 9.14.1

Compare Source

Changes

• fix(otel): Add support for filtering traces for certain commands (#​3519)
• fix(pool): remove conn from idleConns if present (#​3546)

Contributors

We'd like to thank all the contributors who worked on this release!

@​Sovietaced, @​ndyakov

v9.14.0: 9.14.0

Compare Source

Highlights

• Added batch process method to the pipeline (#​3510)

Changes

🚀 New Features

• Added batch process method to the pipeline (#​3510)

🐛 Bug Fixes

• fix: SetErr on Cmd if the command cannot be queued correctly in multi/exec (#​3509)

🧰 Maintenance

• Updates release drafter config to exclude dependabot (#​3511)
• chore(deps): bump actions/setup-go from 5 to 6 (#​3504)

Contributors

We'd like to thank all the contributors who worked on this release!

@​elena-kolevska, @​htemelski-redis and @​ndyakov

v9.13.0: 9.13.0

Compare Source

Highlights

• Pipeliner expose queued commands (#​3496)
• Ensure that JSON.GET returns Nil response (#​3470)
• Fixes on Read and Write buffer sizes and UniversalOptions

Changes

• Pipeliner expose queued commands (#​3496)
• fix(test): fix a timing issue in pubsub test (#​3498)
• Allow users to enable read-write splitting in failover mode. (#​3482)
• Set the read/write buffer size of the sentinel client to 4KiB (#​3476)

🚀 New Features

• fix(otel): register wait metrics (#​3499)
• Support subscriptions against cluster slave nodes (#​3480)
• Add wait metrics to otel (#​3493)
• Clean failing timeout implementation (#​3472)

🐛 Bug Fixes

• Do not assume that all non-IP hosts are loopbacks (#​3085)
• Ensure that JSON.GET returns Nil response (#​3470)

🧰 Maintenance

• fix(otel): register wait metrics (#​3499)
• fix(make test): Add default env in makefile (#​3491)
• Update the introduction to running tests in README.md (#​3495)
• test: Add comprehensive edge case tests for IncrByFloat command (#​3477)
• Set the default read/write buffer size of Redis connection to 32KiB (#​3483)
• Bumps test image to 8.2.1-pre (#​3478)
• fix UniversalOptions miss ReadBufferSize and WriteBufferSize options (#​3485)
• chore(deps): bump actions/checkout from 4 to 5 (#​3484)
• Removes dry run for stale issues policy (#​3471)
• Update otel metrics URL (#​3474)

Contributors

We'd like to thank all the contributors who worked on this release!

@​LINKIWI, @​cxljs, @​cybersmeashish, @​elena-kolevska, @​htemelski-redis, @​mwhooker, @​ndyakov, @​ofekshenawa, @​suever

spf13/afero (github.com/spf13/afero)

v1.15.0

Compare Source

What's Changed

• Bump golangci/golangci-lint-action from 6.5.1 to 6.5.2 by @​dependabot[bot] in #​479
• Lint by @​sagikazarmark in #​492
• build(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by @​dependabot[bot] in #​494
• build(deps): bump actions/dependency-review-action from 4.5.0 to 4.6.0 by @​dependabot[bot] in #​493
• Bump actions/setup-go from 5.3.0 to 5.4.0 by @​dependabot[bot] in #​480
• build(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by @​dependabot[bot] in #​496
• support aliyun oss storage with third-party link by @​messikiller in #​491
• build(deps): bump github/codeql-action from 3.28.16 to 3.28.17 by @​dependabot[bot] in #​497
• chore: update x/test by @​sagikazarmark in #​502
• build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by @​dependabot[bot] in #​503
• build(deps): bump actions/dependency-review-action from 4.6.0 to 4.7.1 by @​dependabot[bot] in #​505
• build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by @​dependabot[bot] in #​506
• fix(gcsfs): update object not exist check logic by @​ahkui in #​485
• build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @​dependabot[bot] in #​508
• build(deps): bump github/codeql-action from 3.28.18 to 3.29.4 by @​dependabot[bot] in #​519
• build(deps): bump github/codeql-action from 3.29.4 to 3.29.7 by @​dependabot[bot] in #​524
• build(deps): bump github/codeql-action from 3.29.7 to 3.30.1 by @​dependabot[bot] in #​537
• build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by @​dependabot[bot] in #​536
• build(deps): bump actions/dependency-review-action from 4.7.1 to 4.7.3 by @​dependabot[bot] in #​533
• build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in #​527
• chore: update deps by @​sagikazarmark in #​538
• fix: spelling errors (excpected -> expected, iself -> itself) by @​MarkRosemaker in #​523

New Contributors

• @​messikiller made their first contribution in #​491
• @​ahkui made their first contribution in #​485
• @​MarkRosemaker made their first contribution in #​523

Full Changelog: spf13/afero@v1.14.0...v1.15.0

urfave/cli (github.com/urfave/cli/v3)

v3.5.0

Compare Source

What's Changed

• Update mkdocs reqs by @​meatballhat in #​2190
• Allow the user to stop processing flags after seeing N args by @​adrian-thurston in #​2163
• chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by @​dependabot[bot] in #​2194
• chore(deps): bump mkdocs-material from 9.6.16 to 9.6.18 in the python-packages group by @​dependabot[bot] in #​2195
• chore(deps): bump actions/setup-go from 5 to 6 by @​dependabot[bot] in #​2198
• chore(deps): bump actions/setup-node from 4 to 5 by @​dependabot[bot] in #​2199
• chore(deps): bump actions/setup-python from 5 to 6 by @​dependabot[bot] in #​2200
• chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @​dependabot[bot] in #​2197
• chore(deps): bump mkdocs-material from 9.6.18 to 9.6.19 in the python-packages group by @​dependabot[bot] in #​2201
• chore(deps): bump mkdocs-material from 9.6.19 to 9.6.20 in the python-packages group by @​dependabot[bot] in #​2202
• feat: add name of argument into error message when parsing fails by @​oprudkyi in #​2203
• chore(deps): bump mkdocs-material from 9.6.20 to 9.6.21 in the python-packages group by @​dependabot[bot] in #​2204
• add space between arguments usage by @​dimfu in #​2207
• chore(deps): bump mkdocs-material from 9.6.21 to 9.6.22 in the python-packages group by @​dependabot[bot] in #​2213
• Fix: Make DefaultText behaviour consistent by @​dearchap in #​2214

New Contributors

• @​adrian-thurston made their first contribution in #​2163
• @​oprudkyi made their first contribution in #​2203
• @​dimfu made their first contribution in #​2207

Full Changelog: urfave/cli@v3.4.1...v3.5.0

github/codeql-action (github/codeql-action)

v3.31.2

Compare Source

v3.31.1

Compare Source

v3.31.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.31.0 - 24 Oct 2025

• Bump minimum CodeQL bundle version to 2.17.6. #​3223
• When SARIF files are uploaded by the analyze or upload-sarif actions, the CodeQL Action automatically performs post-processing steps to prepare the data for the upload. Previously, these post-processing steps were only performed before an upload took place. We are now changing this so that the post-processing steps will always be performed, even when the SARIF files are not uploaded. This does not change anything for the upload-sarif action. For analyze, this may affect Advanced Setup for CodeQL users who specify a value other than always for the upload input. #​3222

See the full CHANGELOG.md for more information.

v3.30.9

[Compare Source](https://redirect.github.com/github/codeql-action

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 18 additional dependencies were updated

Details:

Package	Change
github.com/bytedance/sonic	v1.13.3 -> v1.14.0
github.com/bytedance/sonic/loader	v0.2.4 -> v0.3.0
github.com/cenkalti/backoff/v5	v5.0.2 -> v5.0.3
github.com/cloudwego/base64x	v0.1.5 -> v0.1.6
github.com/gabriel-vasile/mimetype	v1.4.9 -> v1.4.10
github.com/go-jose/go-jose/v4	v4.1.0 -> v4.1.1
github.com/go-playground/validator/v10	v10.26.0 -> v10.27.0
github.com/grpc-ecosystem/grpc-gateway/v2	v2.27.1 -> v2.27.2
github.com/klauspost/cpuid/v2	v2.2.11 -> v2.3.0
github.com/lestrrat-go/httprc/v3	v3.0.0 -> v3.0.1
github.com/prometheus/common	v0.65.0 -> v0.66.1
github.com/segmentio/asm	v1.2.0 -> v1.2.1
go.opentelemetry.io/otel/metric	v1.37.0 -> v1.38.0
go.opentelemetry.io/proto/otlp	v1.7.0 -> v1.7.1
golang.org/x/arch	v0.18.0 -> v0.20.0
golang.org/x/net	v0.42.0 -> v0.45.0
golang.org/x/sys	v0.35.0 -> v0.37.0
golang.org/x/text	v0.28.0 -> v0.30.0

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 56.81%. Comparing base (d62d7ec) to head (418cdb5).

❌ Your project check has failed because the head coverage (56.81%) is below the target coverage (90.00%). You can increase the head coverage or adjust the target coverage.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1345   +/-   ##
=======================================
  Coverage   56.81%   56.81%           
=======================================
  Files         647      647           
  Lines       36738    36738           
=======================================
  Hits        20873    20873           
  Misses      15210    15210           
  Partials      655      655           

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.