chore(deps): update go dependencies

[red-hat-konflux]

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
cloud.google.com/go	indirect	minor	v0.121.6 -> v0.123.0
cloud.google.com/go/auth	indirect	patch	v0.18.0 -> v0.18.1
cloud.google.com/go/longrunning	indirect	minor	v0.7.0 -> v0.8.0
github.com/AliyunContainerService/ack-ram-tool/pkg/credentials/provider	indirect	minor	v0.18.1 -> v0.20.0
github.com/AliyunContainerService/ack-ram-tool/pkg/ecsmetadata	indirect	patch	v0.0.9 -> v0.0.10
github.com/Azure/azure-sdk-for-go/sdk/azcore	indirect	minor	v1.20.0 -> v1.21.0
github.com/ThalesIgnite/crypto11	indirect	minor	v1.2.5 -> v1.6.0
github.com/alibabacloud-go/openapi-util	indirect	patch	v0.1.1 -> v0.1.2
github.com/alibabacloud-go/tea	indirect	minor	v1.3.9 -> v1.4.0
github.com/aliyun/credentials-go	indirect	patch	v1.4.6 -> v1.4.11
github.com/aws/aws-sdk-go-v2/credentials	indirect	patch	v1.19.5 -> v1.19.7
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	indirect	patch	v1.18.16 -> v1.18.17
github.com/aws/aws-sdk-go-v2/internal/configsources	indirect	patch	v1.4.16 -> v1.4.17
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	indirect	patch	v1.13.16 -> v1.13.17
github.com/aws/aws-sdk-go-v2/service/signin	indirect	patch	v1.0.4 -> v1.0.5
github.com/awslabs/amazon-ecr-credential-helper/ecr-login	indirect	minor	v0.9.1 -> v0.11.0
github.com/buildkite/go-pipeline	indirect	minor	v0.14.0 -> v0.16.0
github.com/buildkite/roko	indirect	minor	v1.3.1 -> v1.4.0
github.com/cloudflare/circl	indirect	patch	v1.6.1 -> v1.6.3
github.com/containerd/stargz-snapshotter/estargz	indirect	patch	v0.18.1 -> v0.18.2
github.com/cyphar/filepath-securejoin	indirect	minor	v0.4.1 -> v0.6.1
github.com/digitorus/pkcs7	indirect	digest	3a137a8 -> ffadbf3
github.com/docker/docker-credential-helpers	indirect	patch	v0.9.3 -> v0.9.5
github.com/go-git/gcfg	indirect	digest	3a3c614 -> 0429aa6
github.com/go-openapi/analysis	indirect	minor	v0.23.0 -> v0.24.2
github.com/go-openapi/errors	indirect	patch	v0.22.1 -> v0.22.6
github.com/go-openapi/jsonpointer	indirect	minor	v0.21.1 -> v0.22.4
github.com/go-openapi/jsonreference	indirect	patch	v0.21.0 -> v0.21.4
github.com/go-openapi/loads	indirect	minor	v0.22.0 -> v0.23.2
github.com/go-openapi/runtime	require	minor	v0.28.0 -> v0.29.2
github.com/go-openapi/spec	indirect	minor	v0.21.0 -> v0.22.3
github.com/go-openapi/strfmt	require	minor	v0.23.0 -> v0.25.0
github.com/go-openapi/swag	require	minor	v0.23.1 -> v0.25.4
github.com/go-openapi/validate	indirect	minor	v0.24.0 -> v0.25.1
github.com/google/gnostic-models	indirect	patch	v0.7.0 -> v0.7.1
github.com/google/go-querystring	indirect	minor	v1.1.0 -> v1.2.0
github.com/googleapis/enterprise-certificate-proxy	indirect	patch	v0.3.7 -> v0.3.11
github.com/in-toto/in-toto-golang	require	minor	v0.9.0 -> v0.10.0
github.com/kevinburke/ssh_config	indirect	minor	v1.2.0 -> v1.4.0
github.com/klauspost/compress	indirect	patch	v1.18.1 -> v1.18.3
github.com/mailru/easyjson	indirect	patch	v0.9.0 -> v0.9.1
github.com/miekg/pkcs11	indirect	patch	v1.1.1 -> v1.1.2
github.com/pjbgf/sha1cd	indirect	minor	v0.3.2 -> v0.5.0
github.com/sagikazarmark/locafero	indirect	minor	v0.9.0 -> v0.12.0
github.com/secure-systems-lab/go-securesystemslib	require	minor	v0.9.1 -> v0.10.0
github.com/sigstore/rekor	require	minor	v1.3.10 -> v1.5.0
github.com/sigstore/sigstore	require	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/aws	indirect	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/azure	indirect	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/gcp	indirect	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/hashivault	indirect	patch	v1.10.3 -> v1.10.4
github.com/sigstore/timestamp-authority	indirect	patch	v1.2.8 -> v1.2.9
github.com/sirupsen/logrus	indirect	patch	v1.9.3 -> v1.9.4
github.com/skeema/knownhosts	indirect	patch	v1.3.1 -> v1.3.2
github.com/spf13/afero	indirect	minor	v1.14.0 -> v1.15.0
github.com/spf13/cast	indirect	minor	v1.9.2 -> v1.10.0
github.com/spf13/viper	indirect	minor	v1.20.1 -> v1.21.0
gitlab.com/gitlab-org/api/client-go	indirect	minor	v0.133.0 -> v0.161.1
go.mongodb.org/mongo-driver	indirect	patch	v1.17.4 -> v1.17.9
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	indirect	minor	v0.63.0 -> v0.65.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	indirect	minor	v0.63.0 -> v0.65.0
go.step.sm/crypto	indirect	minor	v0.75.0 -> v0.76.0
golang.org/x/crypto	require	minor	v0.46.0 -> v0.47.0
golang.org/x/exp	indirect	digest	b7579e2 -> 716be56
golang.org/x/mod	indirect	minor	v0.30.0 -> v0.32.0
golang.org/x/net	indirect	minor	v0.48.0 -> v0.49.0
golang.org/x/sys	indirect	minor	v0.39.0 -> v0.40.0
golang.org/x/term	indirect	minor	v0.38.0 -> v0.39.0
golang.org/x/text	indirect	minor	v0.32.0 -> v0.33.0
google.golang.org/api	indirect	minor	v0.259.0 -> v0.265.0
google.golang.org/genproto	indirect	digest	ff82c1b -> 546029d
google.golang.org/genproto/googleapis/api	indirect	digest	0a764e5 -> 546029d
google.golang.org/genproto/googleapis/rpc	indirect	digest	0a764e5 -> 546029d
k8s.io/api	indirect	minor	v0.32.3 -> v0.35.0
k8s.io/apimachinery	indirect	minor	v0.32.3 -> v0.35.0
k8s.io/client-go	indirect	minor	v0.32.3 -> v0.35.0
k8s.io/kube-openapi	indirect	digest	9bd5c66 -> a19766b
k8s.io/utils	indirect	digest	0af2bda -> 914a6e7
sigs.k8s.io/json	indirect	digest	cfa47c3 -> 2d32026
sigs.k8s.io/release-utils	indirect	patch	v0.12.2 -> v0.12.3
sigs.k8s.io/yaml	indirect	minor	v1.5.0 -> v1.6.0

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

googleapis/google-cloud-go (cloud.google.com/go)

v0.123.0

Compare Source

Features

• internal/stategen: Populate the latest googleapis commit (#​12880) (7b017a0)
• librariangen: Implement the build command (#​12817) (14734c8)

Bug Fixes

• internal/librariangen: Add link to source commit in release notes (#​12881) (1c06cc6)
• internal/librariangen: Fix CHANGES.md headers (#​12849) (baf515d)
• internal/librariangen: Remove go mod init/tidy from postprocessor (#​12832) (1fe506a)
• internal/librariangen: Test for error path with flags (#​12830) (f0da7b2)
• internal/postprocessor: Add dlp to skip-module-scan-paths (#​12857) (45a7d9b)
• librariangen: Honor original container contract (#​12846) (71c8fd3)
• librariangen: Improvements to release-init (#​12842) (0db677a)
• stategen: Specify an appropriate tag format for google-cloud-go (#​12835) (ffcff33)

v0.122.0

Compare Source

Features

• internal/librariangen: Add release-init command (#​12751) (52e84cc)

Bug Fixes

• internal/godocfx: Better support for v2 modules (#​12797) (4bc8785)
• internal/godocfx: Module detection when tidy errors (#​12801) (83d46cd)
• internal/librariangen: Fix goimports errors (#​12765) (83bdaa4)

AliyunContainerService/ack-ram-tool (github.com/AliyunContainerService/ack-ram-tool/pkg/credentials/provider)

v0.19.0

Compare Source

Changelog

• b7d1201 build(deps): bump aiohttp in /examples/rrsa/python3-sdk (#​371)
• df9a429 build(deps): bump aiohttp in /examples/rrsa/oss-python3-sdk (#​372)
• de1d60d build(deps): bump golang.org/x/net from 0.17.0 to 0.23.0 in /ci/ossutil (#​375)
• fa3c332 build(deps): bump golang.org/x/net from 0.20.0 to 0.23.0 (#​379)
• cab5499 build(deps): bump golang.org/x/net (#​378)
• 1f5f1c3 build(deps): bump golang.org/x/net in /examples/rrsa/oss-go-sdk (#​377)
• 93e8662 build(deps): bump golang.org/x/net in /examples/rrsa/go-sdk (#​376)
• ee8bc7e build(deps): bump golang.org/x/net in /examples/rrsa/log-go-sdk (#​374)
• cdefc58 build(deps): bump golang.org/x/net (#​373)
• 8370bed examples: add terraform-demo/rrsa-auth
• e57121e build(deps): bump golangci/golangci-lint-action from 4 to 5 (#​391)
• b9a606d build(deps): bump peaceiris/actions-gh-pages from 3.9.3 to 4.0.0 (#​390)
• 236f1cd build(deps): bump @​docusaurus/core from 3.2.0 to 3.2.1 in /website (#​383)
• 0c42f81 build(deps-dev): bump @​docusaurus/types from 3.2.0 to 3.3.2 in /website (#​394)
• bae4513 build(deps): bump @​docusaurus/preset-classic in /website (#​393)
• 2a72d8f build(deps-dev): bump @​docusaurus/module-type-aliases in /website (#​392)
• 89a7662 website: fix ci
• df703b7 --- (#​403)
• a8f537a --- (#​404)
• 50e3b5a build(deps): bump urllib3 in /examples/rrsa/python3-sdk (#​408)
• aa7940e build(deps): bump braces from 3.0.2 to 3.0.3 in /website (#​410)
• bff84b3 build(deps): bump urllib3 in /examples/rrsa/oss-python3-sdk (#​409)
• 09ae2f0 build(deps): bump certifi in /examples/rrsa/python3-sdk (#​422)
• 8530d45 build(deps): bump securego/gosec from 2.19.0 to 2.20.0 (#​395)
• 09d4aca build(deps): bump golangci/golangci-lint-action from 5 to 6 (#​396)
• b9b1c38 build(deps): bump alpine from 3.19.1 to 3.20.1 (#​421)
• 86681c6 build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0 (#​400)
• c100019 rrsa: rename policy name of kritis from ack-xxx to ack-addon-policy-xxx
• 183a0ed examples: fix typo
• c20b751 examples/rrsa: add example for oss nodejs sdk
• eb5a45e examples/rrsa/oss-nodejs-sdk: use node:20-alpine3.19 as base image
• 635b9c7 fix typo and remove needless codes
• ffda29f clean up
• efa1ea2 chore: support change endpoint via env
• 4fe3652 support new env: ALIBABA_CLOUD_STS_ENDPOINT, ALIBABA_CLOUD_STS_HTTP_SCHEME
• 9a728c7 add Policy and TokenDuration to the OIDCProviderOptions
• 7aba8ed add ExternalId, Policy and TokenDuration to the RoleArnProviderOptions
• 9a7325d chore: go mod vendor
• d849fc9 build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#​418)

ThalesIgnite/crypto11 (github.com/ThalesIgnite/crypto11)

v1.6.0

Compare Source

What's Changed

• Update go1.25.1 by @​Nicolas-Peiffer in ThalesGroup#124

Full Changelog: ThalesGroup/crypto11@v1.5.0...v1.6.0

v1.5.0

Compare Source

What's Changed

• Fix findkeys error and eval byte nil or len zero by @​Nicolas-Peiffer in ThalesGroup#122
• Update go1.24.5 by @​Nicolas-Peiffer in ThalesGroup#123

Full Changelog: ThalesGroup/crypto11@v1.4.1...v1.5.0

v1.4.1

Compare Source

What's Changed

• update to go 1.23.6
• fix: underlying library context is reused through reference counting by @​ek-1n574 in ThalesGroup#114

New Contributors

• @​ek-1n574 made their first contribution in ThalesGroup#114

Full Changelog: ThalesGroup/crypto11@v1.4.0...v1.4.1

v1.4.0

Compare Source

What's Changed

• upgrade to go1.23.6 by @​Nicolas-Peiffer in ThalesGroup#116

New Contributors

• @​Nicolas-Peiffer made their first contribution in ThalesGroup#116

Full Changelog: ThalesGroup/crypto11@v1.3.0...v1.4.0

v1.3.0

Compare Source

What's Changed

• feature: optimized aes cbc support by @​IceManGreen in ThalesGroup#107
• RSA support for asymmetric decryption by @​IceManGreen in ThalesGroup#115

New Contributors

• @​IceManGreen made their first contribution in ThalesGroup#107

Full Changelog: ThalesGroup/crypto11@v1.2.1...v1.3.0

alibabacloud-go/openapi-util (github.com/alibabacloud-go/openapi-util)

v0.1.2

Compare Source

alibabacloud-go/tea (github.com/alibabacloud-go/tea)

v1.4.0

Compare Source

What's Changed

• fix: improve DNS robustness and refine timeout logic by @​yndu13 in #​156

Full Changelog: alibabacloud-go/tea@v1.3.14...v1.4.0

v1.3.14

Compare Source

Full Changelog: alibabacloud-go/tea@v1.3.13...v1.3.14

v1.3.13

Compare Source

v1.3.12

Compare Source

v1.3.11

Compare Source

v1.3.10

Compare Source

• add ctx

aliyun/credentials-go (github.com/aliyun/credentials-go)

v1.4.11

Compare Source

What's Changed

• fix: improve OAuth token handling for ChainableRamRoleArn and refresh… by @​yndu13 in #​153

Full Changelog: aliyun/credentials-go@v1.4.10...v1.4.11

v1.4.10

Compare Source

What's Changed

• Update doc by @​CodeSpaceiiii in #​145
• Some issues in document optimization by @​CodeSpaceiiii in #​146
• Add contents: read permission to GitHub Actions workflow by @​Copilot in #​149
• feat: support External credentials provider by @​CodeSpaceiiii in #​150
• feat: support timeout for external credentials by @​yndu13 in #​151

New Contributors

• @​CodeSpaceiiii made their first contribution in #​145

Full Changelog: aliyun/credentials-go@v1.4.9...v1.4.10

v1.4.9

Compare Source

What's Changed

• fix: resolve concurrent config file writing by @​yndu13 in #​137
• Fix Windows compilation by abstracting file locking mechanism by @​Copilot in #​143
• Bump 1.4.9 by @​PanPanZou in #​144

New Contributors

• @​Copilot made their first contribution in #​143
• @​PanPanZou made their first contribution in #​144

Full Changelog: aliyun/credentials-go@v1.4.8...v1.4.9

v1.4.8

Compare Source

What's Changed

• feat: support OAuth credentials provider by @​yndu13 in #​136

Full Changelog: aliyun/credentials-go@v1.4.7...v1.4.8

v1.4.7

Compare Source

What's Changed

• feat: support CloudSSO credentials provider by @​yndu13 in #​135

Full Changelog: aliyun/credentials-go@v1.4.6...v1.4.7

awslabs/amazon-ecr-credential-helper (github.com/awslabs/amazon-ecr-credential-helper/ecr-login)

v0.11.0: Amazon ECR Credential Helper - Release v0.11.0

Compare Source

• Add support for AWS EUSC partition (#​1034).
• Upgrade dependencies.

Assets

• release.tar.gz (SHA256)
• release-novendor.tar.gz (SHA256)
• linux-amd64/docker-credential-ecr-login (SHA256)
• linux-arm64/docker-credential-ecr-login (SHA256)
• darwin-amd64/docker-credential-ecr-login (SHA256)
• darwin-arm64/docker-credential-ecr-login (SHA256)
• windows-amd64/docker-credential-ecr-login.exe (SHA256)
• windows-arm64/docker-credential-ecr-login.exe (SHA256)

v0.10.1: Amazon ECR Credential Helper - Release v0.10.1

Compare Source

• Drop golang 1.22 support.
• Upgrade dependencies.

Assets

• release.tar.gz (SHA256)
• release-novendor.tar.gz (SHA256)
• linux-amd64/docker-credential-ecr-login (SHA256)
• linux-arm64/docker-credential-ecr-login (SHA256)
• darwin-amd64/docker-credential-ecr-login (SHA256)
• darwin-arm64/docker-credential-ecr-login (SHA256)
• windows-amd64/docker-credential-ecr-login.exe (SHA256)
• windows-arm64/docker-credential-ecr-login.exe (SHA256)

v0.10.0: Amazon ECR Credential Helper - Release v0.10.0

Compare Source

• Enhancement - Updated ECR pattern for ECR dual-stack endpoints for IPv6 support. (#​967)

Assets

• release.tar.gz (SHA256)
• release-novendor.tar.gz (SHA256)
• linux-amd64/docker-credential-ecr-login (SHA256)
• linux-arm64/docker-credential-ecr-login (SHA256)
• darwin-amd64/docker-credential-ecr-login (SHA256)
• darwin-arm64/docker-credential-ecr-login (SHA256)
• windows-amd64/docker-credential-ecr-login.exe (SHA256)
• windows-arm64/docker-credential-ecr-login.exe (SHA256)

buildkite/go-pipeline (github.com/buildkite/go-pipeline)

v0.16.0

Compare Source

What's Changed

• Support pipeline secrets syntax by @​matthewborden in #​69

Full Changelog: buildkite/go-pipeline@v0.15.0...v0.16.0

v0.15.0

Compare Source

[!WARNING]
The API for verifying step signatures has been changed. Instead of constructing a CommandStepWithInvariants and using Verify directly, use the new function VerifyStep.

What's Changed

• Add VerifyStep, un-export CommandStepWithInvariants by @​DrJosh9000 in #​68

Full Changelog: buildkite/go-pipeline@v0.14.0...v0.15.0

buildkite/roko (github.com/buildkite/roko)

v1.4.0

Compare Source

What's Changed

• Publicise retrierOpt by @​moskyb in #​23

Full Changelog: buildkite/roko@v1.3.1...v1.4.0

cloudflare/circl (github.com/cloudflare/circl)

v1.6.3: CIRCL v1.6.3

Compare Source

CIRCL v1.6.3

Fix a bug on ecc/p384 scalar multiplication.

What's Changed

• sign/mldsa: Check opts for nil value by @​armfazh in #​582
• ecc/p384: Point addition must handle point doubling case. by @​armfazh in #​583
• Release CIRCL v1.6.3 by @​armfazh in #​584

Full Changelog: cloudflare/circl@v1.6.2...v1.6.3

v1.6.2: CIRCL v1.6.2

Compare Source

CIRCL v1.6.2

• New SLH-DSA, improvements in ML-DSA for arm64.
• Tested compilation on WASM.

What's Changed

• Optimize pairing product computation by moving exponentiations to G1. by @​dfaranha in #​547
• sign: Adding SLH-DSA signature by @​armfazh in #​512
• Update code generators to CIRCL v1.6.1. by @​armfazh in #​548
• ML-DSA: Add preliminary Wycheproof test vectors by @​bwesterb in #​552
• go fmt by @​bwesterb in #​554
• gz-compressing test vectors, use of HexBytes and ReadGzip functions. by @​armfazh in #​555
• group: Removes use of elliptic Marshal and Unmarshal functions. by @​armfazh in #​556
• Support encoding/decoding ML-DSA private keys (as long as they contain seeds) by @​bwesterb in #​559
• Update to golangci-lint v2 by @​bwesterb in #​560
• Preparation for ARM64 Implementation of poly operations for dilithium package. by @​elementrics in #​562
• prepare power2Round for custom implementations in assembly by @​elementrics in #​564
• ARM64 implementation for poly.PackLe16 by @​elementrics in #​563
• add arm64 version of polyMulBy2toD by @​elementrics in #​565
• add arm64 version of polySub by @​elementrics in #​566
• group: add byteLen method for short groups and RandomScalar uses rand.Int by @​armfazh in #​568
• add arm64 version of poly.Add/Sub by @​elementrics in #​572
• group: Adding cryptobyte marshaling to scalars by @​armfazh in #​569
• Bumping up to Go1.25 by @​armfazh in #​574
• ci: Including WASM compilation. by @​armfazh in #​577
• Revert to using package-declared HPKE errors for shortkem instead of standard library errors by @​harshiniwho in #​578
• Release v1.6.2 by @​armfazh in #​579

New Contributors

• @​dfaranha made their first contribution in #​547
• @​elementrics made their first contribution in #​562
• @​harshiniwho made their first contribution in #​578

Full Changelog: cloudflare/circl@v1.6.1...v1.6.2

containerd/stargz-snapshotter (github.com/containerd/stargz-snapshotter/estargz)

v0.18.2

Compare Source

Notable Changes

• Fixed restart failure when kubeconfig-based authentication is enabled (#​2217)
• Fixed the filesystem to display ".." and "." entries in directories (#​2188)
• Allowed asynchronous prefetch via configurable threshold (#​2216), thanks to @​wswsmao
• Allowed configuring the global request timeout duration (#​2215), thanks to @​wswsmao
• Allowed optionally adding log file access information on first access (#​2205), thanks to @​wswsmao
• Fixed ctr-remote's "-t" flag's not defined error when optimizing an image (#​2186), thanks to @​bettermultiply
• Fixed ctr-remote's "--reuse" flag being ignored when "--no-optimize" is set (#​2206), thanks to @​wswsmao
• Fixed passthrough mode to ensure closing fds (#​2226), thanks to @​luochenglcs
• Fixed incorrect variable assign in the estargz lib (#​2222), thanks to @​bettermultiply
• Fixed errors in k3s CI (#​2207), thanks to @​wswsmao

cyphar/filepath-securejoin (github.com/cyphar/filepath-securejoin)

v0.6.1

Compare Source

This is our first release of github.com/cyphar/filepath-securejoin,
containing a full implementation with a coverage of 93.5% (the only missing
cases are the error cases, which are hard to mocktest at the moment).

v0.6.0

Compare Source

This is our first release of github.com/cyphar/filepath-securejoin,
containing a full implementation with a coverage of 93.5% (the only missing
cases are the error cases, which are hard to mocktest at the moment).

v0.5.2

Compare Source

This is our first release of github.com/cyphar/filepath-securejoin,
containing a full implementation with a coverage of 93.5% (the only missing
cases are the error cases, which are hard to mocktest at the moment).

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[red-hat-konflux]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum

Command failed: go get -t ./...
go: errors parsing go.mod:
go.mod:124:2: require github.com/go-git/gcfg: version "v1.5.1-0.20251120220033-0429aa6c8f39" invalid: go.mod has post-v1 module path "github.com/go-git/gcfg/v2" at revision 0429aa6c8f39