deps(deps): bump the go-minor-patch group with 10 updates

[dependabot]

Bumps the go-minor-patch group with 10 updates:

Package	From	To
github.com/go-git/go-git/v5	5.13.0	5.16.3
github.com/google/uuid	1.4.0	1.6.0
github.com/rs/zerolog	1.33.0	1.34.0
github.com/spf13/cobra	1.8.1	1.10.1
github.com/spf13/pflag	1.0.5	1.0.9
github.com/spf13/viper	1.19.0	1.21.0
github.com/stretchr/testify	1.10.0	1.11.1
go.mongodb.org/mongo-driver	1.17.2	1.17.6
golang.org/x/crypto	0.31.0	0.37.0
golang.org/x/oauth2	0.21.0	0.33.0

Updates github.com/go-git/go-git/v5 from 5.13.0 to 5.16.3

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.3

What's Changed

• internal: Expand regex to fix build [5.x] by @​baloo in go-git/go-git#1644
• build: raise timeouts for windows CI tests and disable CIFuzz [5.x] by @​baloo in go-git/go-git#1646
• plumbing: support commits extra headers, support jujutsu signed commit [5.x] by @​baloo in go-git/go-git#1633

Full Changelog: go-git/go-git@v5.16.2...v5.16.3

v5.16.2

What's Changed

• utils: fix diff so subpaths work for sparse checkouts, fixes 1455 to releases/v5.x by @​kane8n in go-git/go-git#1567

Full Changelog: go-git/go-git@v5.16.1...v5.16.2

v5.16.1

What's Changed

• utils: merkletrie, Fix diff on sparse-checkout index. Fixes #1406 to releases/v5.x by @​kane8n in go-git/go-git#1561

New Contributors

• @​kane8n made their first contribution in go-git/go-git#1561

Full Changelog: go-git/go-git@v5.16.0...v5.16.1

v5.16.0

What's Changed

• [v5] plumbing: support mTLS for HTTPS protocol by @​hiddeco in go-git/go-git#1510
• v5: plumbing: transport, Reintroduce SetHostKeyCallback. Fix #1514 by @​pjbgf in go-git/go-git#1515

Full Changelog: go-git/go-git@v5.15.0...v5.16.0

v5.15.0

What's Changed

• plumbing: add cert auth support to releases/v5.x by @​Javier-varez in go-git/go-git#1482
• v5: Bump dependencies by @​pjbgf in go-git/go-git#1505

Full Changelog: go-git/go-git@v5.14.0...v5.15.0

v5.14.0

What's Changed

• v5: Bump Go and dependencies to mitigate GO-2025-3487 by @​pjbgf in go-git/go-git#1436

⚠️ Note that this version requires Go 1.23, due to the bump to golang.org/x/crypto@v0.35.0 which mitigates the CVE above. User's that can't bump to Go 1.23 will need to remain on the previous v5.13.x release.

Full Changelog: go-git/go-git@v5.13.2...v5.14.0

v5.13.2

... (truncated)

Commits

• ad9a3a5 Merge pull request #1633 from baloo/baloo/release-5.x/jj-signed-commits
• f2c3467 plumbing: support extra headers, support jujutsu signed commit [5.x]
• c12263d Merge pull request #1646 from baloo/baloo/release-5.x/fixup-windows-ci
• 111f374 build: disable fuzzing on maintenance branch
• 15d46ce build: raise timeouts for windows CI tests
• ce83ba1 Merge pull request #1644 from baloo/baloo/release-5.x/fixup-build
• b486201 internal: Expand regex to fix build
• ed8216c Merge pull request #1567 from kane8n/backport-to-v5-patricsss/fix-1455
• 4f35eba Merge pull request #1484 from patricsss/patricsss/fix-1455
• fd1a836 Merge pull request #1561 from kane8n/backport-to-v5-fix-sparse-checkout-status
• Additional commits viewable in compare view

Updates github.com/google/uuid from 1.4.0 to 1.6.0

Release notes

Sourced from github.com/google/uuid's releases.

v1.6.0

1.6.0 (2024-01-16)

Features

• add Max UUID constant (#149) (c58770e)

Bug Fixes

• fix typo in version 7 uuid documentation (#153) (016b199)
• Monotonicity in UUIDv7 (#150) (a2b2b32)

v1.5.0

1.5.0 (2023-12-12)

Features

• Validate UUID without creating new UUID (#141) (9ee7366)

Changelog

Sourced from github.com/google/uuid's changelog.

1.6.0 (2024-01-16)

Features

• add Max UUID constant (#149) (c58770e)

Bug Fixes

• fix typo in version 7 uuid documentation (#153) (016b199)
• Monotonicity in UUIDv7 (#150) (a2b2b32)

1.5.0 (2023-12-12)

Features

• Validate UUID without creating new UUID (#141) (9ee7366)

Commits

• 0f11ee6 chore(master): release 1.6.0 (#151)
• 16939da chore(tests): add strict monotonicity test case for uuid v7. (#154)
• 016b199 fix: fix typo in version 7 uuid documentation (#153)
• 1d8b6ea ci: set token permissions to github workflows (#143)
• a2b2b32 fix: Monotonicity in UUIDv7 (#150)
• c58770e feat: add Max UUID constant (#149)
• 4d47f8e chore(master): release 1.5.0 (#145)
• 9ee7366 feat: Validate UUID without creating new UUID (#141)
• b35aa6a add uuid version 6 and 7 (#139)
• See full diff in compare view

Updates github.com/rs/zerolog from 1.33.0 to 1.34.0

Commits

• db9d1be Update go versions covered by CI
• 5f4b880 Delete _config.yml
• ffb2708 Remove CNAME file
• cc4dde7 Create CONTRIBUTING.md
• 04ea0f4 Implement Close() for zerolog.FilteredLevelWriter (#715)
• 0398600 fix: reset condition in burst sampler (#711) (#712)
• 1869fa5 FormatPartValueByName for flexible custom formatting for ConsoleWriter (#541)
• 31e7995 remove unnecessary nil checks (#701)
• 582f820 Get BasicSampler(0), RandomSampler(0), and BurstSampler(0) to behave the same...
• 6abadab Bump github.com/rs/xid from 1.5.0 to 1.6.0 (#684)
• See full diff in compare view

Updates github.com/spf13/cobra from 1.8.1 to 1.10.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.1

🐛 Fix

• chore: upgrade pflags v1.0.9 by @​jpmcb in spf13/cobra#2305

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

• Bump pflag to 1.0.8 by @​tomasaschan in spf13/cobra#2303

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

• If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
• or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

More details can be found here: spf13/cobra#2303

✨ Features

• Flow context to command in SetHelpFunc by @​Frassle in spf13/cobra#2241
• The default ShellCompDirective can be customized for a command and its subcommands by @​albers in spf13/cobra#2238

🐛 Fix

• Upgrade golangci-lint to v2, address findings by @​scop in spf13/cobra#2279

🪠 Testing

• Test with Go 1.24 by @​harryzcy in spf13/cobra#2236
• chore: Rm GitHub Action PR size labeler by @​jpmcb in spf13/cobra#2256

📝 Docs

• Remove traling curlybrace by @​yedayak in spf13/cobra#2237
• Update command.go by @​styee in spf13/cobra#2248
• feat: Add security policy by @​jpmcb in spf13/cobra#2253
• Update Readme (Warp) by @​ericdachen in spf13/cobra#2267
• Add Periscope to the list of projects using Cobra by @​anishathalye in spf13/cobra#2299

New Contributors

• @​harryzcy made their first contribution in spf13/cobra#2236
• @​yedayak made their first contribution in spf13/cobra#2237
• @​Frassle made their first contribution in spf13/cobra#2241

... (truncated)

Commits

• 7da941c chore: Bump pflag to v1.0.9 (#2305)
• 51d6751 Bump pflag to 1.0.8 (#2303)
• 3f3b818 Update README.md with new logo
• dcaf42e Add Periscope to the list of projects using Cobra (#2299)
• 6dec1ae The default ShellCompDirective can be customized for a command and its subcom...
• c8289c1 chore(golangci-lint): add some exclusion presets
• 4af7b64 refactor: apply golangci-lint autofixes, work around false positives
• 75790e4 chore(golangci-lint): upgrade to v2
• db3ddb5 Adding sponsorship to README.md
• 67171d6 putting sponsorship below header
• Additional commits viewable in compare view

Updates github.com/spf13/pflag from 1.0.5 to 1.0.9

Release notes

Sourced from github.com/spf13/pflag's releases.

v1.0.9

What's Changed

• fix: Restore ParseErrorsWhitelist name for now by @​tomasaschan in spf13/pflag#446

Full Changelog: spf13/pflag@v1.0.8...v1.0.9

v1.0.8

⚠️ Breaking Change

This version, while only a patch bump, includes a (very minor) breaking change: the flag.ParseErrorsWhitelist struct and corresponding FlagSet.parseErrorsWhitelist field have been renamed to ParseErrorsAllowlist.

This should result in compilation errors in any code that uses these fields, which can be fixed by adjusting the names at call sites. There is no change in semantics or behavior of the struct or field referred to by these names. If your code compiles without errors after bumping to/past v1.0.8, you are not affected by this change.

The breaking change was reverted in v1.0.9, by means of re-introducing the old names with deprecation warnings. The plan is still to remove them in a future release, so if your code does depend on the old names, please change them to use the new names at your earliest convenience.

What's Changed

• Remove Redundant "Unknown-Flag" Error by @​vaguecoder in spf13/pflag#364
• Switching from whitelist to Allowlist terminology by @​dubrie in spf13/pflag#261
• Omit zero time.Time default from usage line by @​mologie in spf13/pflag#438
• implement CopyToGoFlagSet by @​pohly in spf13/pflag#330
• flag: Emulate stdlib behavior and do not print ErrHelp by @​tmc in spf13/pflag#407
• Print Default Values of String-to-String in Sorted Order by @​vaguecoder in spf13/pflag#365
• fix: Don't print ErrHelp in ParseAll by @​tomasaschan in spf13/pflag#443
• Reset args on re-parse even if empty by @​tomasaschan in spf13/pflag#444

New Contributors

• @​vaguecoder made their first contribution in spf13/pflag#364
• @​dubrie made their first contribution in spf13/pflag#261
• @​mologie made their first contribution in spf13/pflag#438
• @​pohly made their first contribution in spf13/pflag#330
• @​tmc made their first contribution in spf13/pflag#407
• @​tomasaschan made their first contribution in spf13/pflag#443

Full Changelog: spf13/pflag@v1.0.7...v1.0.8

v1.0.7

What's Changed

• Fix defaultIsZeroValue check for generic Value types by @​MidnightRocket in spf13/pflag#422
• feat: Use structs for errors returned by pflag. by @​eth-p in spf13/pflag#425
• Fix typos by @​co63oc in spf13/pflag#428
• fix #423 : Add helper function and some documentation to parse shorthand go test flags. by @​valdar in spf13/pflag#424
• add support equivalent to golang flag.TextVar(), also fixes the test failure as described in #368 by @​hujun-open in spf13/pflag#418
• add support for Func() and BoolFunc() #426 by @​LeGEC in spf13/pflag#429
• fix: correct argument length check in FlagSet.Parse by @​ShawnJeffersonWang in spf13/pflag#409
• fix usage message for func flags, fix arguments order by @​LeGEC in spf13/pflag#431
• Add support for time.Time flags by @​max-frank in spf13/pflag#348

New Contributors

• @​MidnightRocket made their first contribution in spf13/pflag#422

... (truncated)

Commits

• 1043857 Merge pull request #446 from spf13/fix-backwards-compat
• 7412009 fix: Restore ParseErrorsWhitelist name for now
• b9c16fa Merge pull request #444 from spf13/reset-args-even-if-empty
• 40abc49 Merge pull request #443 from spf13/silence-errhelp
• 1bf832c Use errors.Is instead of equality check
• d25dd24 Reset args on re-parse even if empty
• 094909d Merge pull request #365 from vaguecoder/str2str-sorted
• ccb49e5 Print Default Values of String-to-String in Sorted Order
• b55ffb6 fix: Don't print ErrHelp in ParseAll
• 7c651d1 Merge pull request #407 from tmc/fix-errhelp
• Additional commits viewable in compare view

Updates github.com/spf13/viper from 1.19.0 to 1.21.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.21.0

What's Changed

Enhancements 🚀

• Add support for flags pflag.BoolSlice, pflag.UintSlice and pflag.Float64Slice by @​nmvalera in spf13/viper#2015
• feat: use maintained yaml library by @​sagikazarmark in spf13/viper#2040

Bug Fixes 🐛

• fix(config): get config type from v.configType or config file ext by @​GuillaumeBAECHLER in spf13/viper#2003
• fix: config type check when loading any config by @​sagikazarmark in spf13/viper#2007

Dependency Updates ⬆️

• Update dependencies by @​sagikazarmark in spf13/viper#1993
• build(deps): bump github.com/spf13/cast from 1.7.1 to 1.8.0 by @​dependabot[bot] in spf13/viper#2017
• build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.3 to 2.2.4 by @​dependabot[bot] in spf13/viper#2013
• build(deps): bump github.com/sagikazarmark/locafero from 0.8.0 to 0.9.0 by @​dependabot[bot] in spf13/viper#2008
• build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in /remote by @​dependabot[bot] in spf13/viper#2016
• build(deps): bump github.com/spf13/cast from 1.8.0 to 1.9.2 by @​dependabot[bot] in spf13/viper#2020
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @​dependabot[bot] in spf13/viper#2028
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 by @​dependabot[bot] in spf13/viper#2035
• build(deps): bump github.com/spf13/pflag from 1.0.6 to 1.0.7 by @​dependabot[bot] in spf13/viper#2036
• build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0 by @​dependabot[bot] in spf13/viper#2012
• build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @​dependabot[bot] in spf13/viper#2052
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in /remote by @​dependabot[bot] in spf13/viper#2048
• build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10 by @​dependabot[bot] in spf13/viper#2056
• chore: update dependencies by @​sagikazarmark in spf13/viper#2057

Other Changes

• Update update guide with mapstructure package replacement. by @​aldas in spf13/viper#2004
• refactor: use the built-in max/min to simplify the code by @​yingshanghuangqiao in spf13/viper#2029

New Contributors

• @​GuillaumeBAECHLER made their first contribution in spf13/viper#2003
• @​aldas made their first contribution in spf13/viper#2004
• @​nmvalera made their first contribution in spf13/viper#2015
• @​yingshanghuangqiao made their first contribution in spf13/viper#2029
• @​ccoVeille made their first contribution in spf13/viper#2046
• @​spacez320 made their first contribution in spf13/viper#2050

Full Changelog: spf13/viper@v1.20.0...v1.21.0

v1.20.1

What's Changed

Bug Fixes 🐛

• Backport config type fixes to 1.20.x by @​sagikazarmark in spf13/viper#2005

Full Changelog: spf13/viper@v1.20.0...v1.20.1

v1.20.0

... (truncated)

Commits

• 394040c ci: build on go 1.25
• 812f548 chore: update dependencies
• d5271ef ci: update stale workflow
• dff303b feat: add a stale issue scheduled action
• 1287976 build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10
• 38932cd build(deps): bump github.com/go-viper/mapstructure/v2 in /remote
• 6d014be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
• b74c7ee build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0
• acd05e1 fix: linting issues
• ae5a8e2 ci: upgrade golangci-lint
• Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.10.0 to 1.11.1

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.11.1

This release fixes #1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.

What's Changed

• Backport #1786 to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by @​brackendawson in stretchr/testify#1788

Full Changelog: stretchr/testify@v1.11.0...v1.11.1

v1.11.0

What's Changed

Functional Changes

v1.11.0 Includes a number of performance improvements.

• Call stack perf change for CallerInfo by @​mikeauclair in stretchr/testify#1614
• Lazily render mock diff output on successful match by @​mikeauclair in stretchr/testify#1615
• assert: check early in Eventually, EventuallyWithT, and Never by @​cszczepaniak in stretchr/testify#1427
• assert: add IsNotType by @​bartventer in stretchr/testify#1730
• assert.JSONEq: shortcut if same strings by @​dolmen in stretchr/testify#1754
• assert.YAMLEq: shortcut if same strings by @​dolmen in stretchr/testify#1755
• assert: faster and simpler isEmpty using reflect.Value.IsZero by @​dolmen in stretchr/testify#1761
• suite: faster methods filtering (internal refactor) by @​dolmen in stretchr/testify#1758

Fixes

• assert.ErrorAs: log target type by @​craig65535 in stretchr/testify#1345
• Fix failure message formatting for Positive and Negative asserts in stretchr/testify#1062
• Improve ErrorIs message when error is nil but an error was expected by @​tsioftas in stretchr/testify#1681
• fix Subset/NotSubset when calling with mixed input types by @​siliconbrain in stretchr/testify#1729
• Improve ErrorAs failure message when error is nil by @​ccoVeille in stretchr/testify#1734
• mock.AssertNumberOfCalls: improve error msg by @​3scalation in stretchr/testify#1743

Documentation, Build & CI

• docs: Fix typo in README by @​alexandear in stretchr/testify#1688
• Replace deprecated io/ioutil with io and os by @​alexandear in stretchr/testify#1684
• Document consequences of calling t.FailNow() by @​greg0ire in stretchr/testify#1710
• chore: update docs for Unset #1621 by @​techfg in stretchr/testify#1709
• README: apply gofmt to examples by @​alexandear in stretchr/testify#1687
• refactor: use %q and %T to simplify fmt.Sprintf by @​alexandear in stretchr/testify#1674
• Propose Christophe Colombier (ccoVeille) as approver by @​brackendawson in stretchr/testify#1716
• Update documentation for the Error function in assert or require package by @​architagr in stretchr/testify#1675
• assert: remove deprecated build constraints by @​alexandear in stretchr/testify#1671
• assert: apply gofumpt to internal test suite by @​ccoVeille in stretchr/testify#1739
• CI: fix shebang in .ci.*.sh scripts by @​dolmen in stretchr/testify#1746
• assert,require: enable parallel testing on (almost) all top tests by @​dolmen in stretchr/testify#1747
• suite.Passed: add one more status test report by @​Ararsa-Derese in stretchr/testify#1706
• Add Helper() method in internal mocks and assert.CollectT by @​dolmen in stretchr/testify#1423
• assert.Same/NotSame: improve usage of Sprintf by @​ccoVeille in stretchr/testify#1742
• mock: enable parallel testing on internal testsuite by @​dolmen in stretchr/testify#1756
• suite: cleanup use of 'testing' internals at runtime by @​dolmen in stretchr/testify#1751
• assert: check test failure message for Empty and NotEmpty by @​ccoVeille in stretchr/testify#1745

... (truncated)

Commits

• 2a57335 Merge pull request #1788 from brackendawson/1785-backport-1.11
• af8c912 Backport #1786 to release/1.11
• b7801fb Merge pull request #1778 from stretchr/dependabot/github_actions/actions/chec...
• 69831f3 build(deps): bump actions/checkout from 4 to 5
• a53be35 Improve captureTestingT helper
• aafb604 mock: improve formatting of error message
• 7218e03 improve error msg
• 929a212 Merge pull request #1758 from stretchr/dolmen/suite-faster-method-filtering
• bc7459e suite: faster filtering of methods (-testify.m)
• 7d37b5c suite: refactor methodFilter
• Additional commits viewable in compare view

Updates go.mongodb.org/mongo-driver from 1.17.2 to 1.17.6

Release notes

Sourced from go.mongodb.org/mongo-driver's releases.

MongoDB Go Driver 1.17.6

The MongoDB Go Driver Team is pleased to release version 1.17.6 of the official MongoDB Go Driver.

[!NOTE] Due to a bug in the Go Driver release automation, there is no 1.17.5 release.

Release Highlights

This release makes various maintainability improvements to the Go Driver development and release automation.

What's Changed

📝 Other Changes

• GODRIVER-3560 Use lambda-specific arn for FaaS by @​prestonvasquez in mongodb/mongo-go-driver#2093
• Use a pinned Go version for golangci-lint. by @​matthewdale in mongodb/mongo-go-driver#2151
• Disable merge-up from release/1.17 by @​alcaeus in mongodb/mongo-go-driver#2202

Full Changelog: mongodb/mongo-go-driver@v1.17.4...v1.17.6

For a full list of tickets included in this release, please see the list of fixed issues.

Documentation for the Go Driver can be found on pkg.go.dev and the MongoDB documentation site. BSON library documentation is also available on pkg.go.dev. For issues with, questions about, or feedback for the Go Driver, please look into our support channels, including StackOverflow. Bugs can be reported in the Go Driver project in the MongoDB JIRA where a list of current issues can be found. Your feedback on the Go Driver is greatly appreciated!

MongoDB Go Driver 1.17.4

The MongoDB Go Driver Team is pleased to release version 1.17.4 of the official MongoDB Go Driver.

Release Notes

This release resolves two bugs in the Go Driver: it removes a buggy and unnecessary connection liveness check that could run unexpectedly or fail intermittently when maxIdleTimeMS was set, and it fixes an issue where regular expressions were marshaled to invalid JSON due to improper character escaping, ensuring all generated JSON is now valid.

---

For a full list of tickets included in this release, please see the list of fixed issues.

Full Changelog: v1.17.3...v1.17.4

Documentation for the Go Driver can be found on pkg.go.dev and the MongoDB documentation site. BSON library documentation is also available on pkg.go.dev. Questions and inquiries can be asked on the MongoDB Developer Community. Bugs can be reported in the Go Driver project in the MongoDB JIRA where a list of current issues can be found. Your feedback on the Go Driver is greatly appreciated!

What's Changed

• Add GitHub Actions workflow for merge ups by @​alcaeus in mongodb/mongo-go-driver#1962
• Use different credentials for merge-up PRs by @​alcaeus in mongodb/mongo-go-driver#1968
• GODRIVER-3476 Escape for Regex Options. by @​qingyang-hu in mongodb/mongo-go-driver#1929
• Ignore unmaintained branches when merging up by @​alcaeus in mongodb/mongo-go-driver#2062
• GODRIVER-3549 Fix timeouts in CSE custom endpoint test (#2028) (#2031) by @​prestonvasquez in mongodb/mongo-go-driver#2061
• GODRIVER-3516 Remove isAlive by @​linfeip in mongodb/mongo-go-driver#2060
• GODRIVER-3560 Assume ec2 role explicitly in CI by @​prestonvasquez in mongodb/mongo-go-driver#2080
• GODRIVER-3524 Sync updates to reflect showExpandedEvents omissions by @​prestonvasquez in mongodb/mongo-go-driver#2084

... (truncated)

Commits

• d2fa0ab BUMP v1.17.6
• f1d540b BUMP v1.17.5
• b879028 GODRIVER-3654 Don't test v1 branches against latest server. (#2188)
• 21f47d4 Allow ignore-for-release label to satisfy label checker (#2203)
• 8708ca8 Disable merge-up from release/1.17 (#2202)
• 0b2794f GODRIVER-3612 Add an internal-only NewSessionWithLSID API (v1) (#2183)
• 747a8d0 Consider HTTP 429 a succcessful response in the Markdown link check. (#2191)
• 8c336ff Pin drivers-evergreen-tools to rev 98f6b0e in v1. (#2184)
• 106cff3 Retry Markdown link checks on HTTP 429 (v1) (#2186)
• d406474 GODRIVER-3564: Add config and workflows for release note labels (#2148)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.31.0 to 0.37.0

Commits

• 959f8f3 go.mod: update golang.org/x dependencies
• 769bcd6 ssh: use the configured rand in kex init
• d0a798f cryptobyte: fix typo 'octects' into 'octets' for asn1.go
• acbcbef acme: remove unnecessary []byte conversion
• 376eb14 x509roots: support constrained roots
• b369b72 crypto/internal/poly1305: implement function update in assembly on loong64
• 6b853fb ssh/knownhosts: check more than one key
• 49bf5b8 go.mod: update golang.org/x dependencies
• 24852b6 ssh: add decode support for banners
• bbc689c ssh: use a more straightforward return value
• Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.21.0 to 0.33.0

Commits

• f28b0b5 all: fix some comments
• fd15e0f x/oauth2: populate RetrieveError from DeviceAuth
• 792c877 oauth2: use strings.Builder instead of bytes.Buffer
• 014cf77 all: upgrade go directive to at least 1.24.0 [generated]
• 3c76ce5 endpoints: correct Naver OAuth2 endpoint URLs
• cf14319 oauth2: fix expiration time window check
• 32d34ef internal: include clientID in auth style cache key
• 2d34e30 oauth2: replace a magic number with AuthStyleUnknown
• 696f7b3 all: modernize with doc links and any
• 471209b oauth2: drop dependency on go-cmp
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific depend...

Description has been truncated

[privateip]

@dependabot rebase

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml