Bump go.mondoo.com/mql/v13 from 13.7.0 to 13.21.0 in the gomodupdates group

[dependabot]

Bumps the gomodupdates group with 1 update: go.mondoo.com/mql/v13.

Updates go.mondoo.com/mql/v13 from 13.7.0 to 13.21.0

Release notes

Sourced from go.mondoo.com/mql/v13's releases.

v13.21.0

What's Changed

• 🐛 os: match /usr/bin/{true,false} in kernel.module installBypass by @​tas50 in mondoohq/mql#7999
• 🎉 os-13.20.1 by @​tas50 in mondoohq/mql#8000
• ✨ os: add windows.update resource (config, installed, available) by @​czunker in mondoohq/mql#7820
• 🐛 os: strip control characters from windows package name/version for valid purl by @​czunker in mondoohq/mql#8002
• ✨ os: add kernel.module.onDisk and builtIn to detect present-but-not-loaded modules by @​tas50 in mondoohq/mql#8001
• ✨ ansible: add task-level become/no_log/ignore_errors and other security attributes by @​tas50 in mondoohq/mql#8003
• ✨ helm: recurse into vendored subcharts by @​tas50 in mondoohq/mql#8004
• ✨ helm: parse and classify OCI/HTTP/file dependency sources by @​tas50 in mondoohq/mql#8007
• ✨ bicep: tokenize variable and output expressions into a queryable tree by @​tas50 in mondoohq/mql#8006
• ✨ kustomize: classify patch format and decompose JSON6902 operations by @​tas50 in mondoohq/mql#8005
• ⚡ ms365: batch per-item Graph calls via the $batch endpoint by @​tas50 in mondoohq/mql#7738
• 🧹 bicep: introduce a brace-aware statement tokenizer (no schema change) by @​tas50 in mondoohq/mql#8009
• 🧹 azure: bump armmonitor to v0.12.0 and refactor diagnostic settings by @​tas50 in mondoohq/mql#8008
• ✨ bicep: model type, func, import, and metadata declarations by @​tas50 in mondoohq/mql#8010
• 🎉 os-13.21.0 by @​tas50 in mondoohq/mql#8014
• ✨ gcp: expose additional security-relevant fields across the provider by @​tas50 in mondoohq/mql#8012
• 🧹 helm: fix ociref_test build after newMqlHelmChart gained a parent arg by @​tas50 in mondoohq/mql#8015
• ✨ bicep: discover and parse .bicepparam parameter files by @​tas50 in mondoohq/mql#8011
• 🧹 azure: regenerate permissions.json by @​tas50 in mondoohq/mql#8016
• 🎉 helm-13.1.0 by @​tas50 in mondoohq/mql#8017
• ✨ bicep: model for-loop deployments on resources, modules, outputs, and variables by @​tas50 in mondoohq/mql#8013
• Update AWS provider deps to the latest by @​tas50 in mondoohq/mql#8018
• ✨ bicep: model nested child resources and the resource scope keyword by @​tas50 in mondoohq/mql#8019
• ✨ aws: expose AWS Backup malware scan jobs and rule scan actions by @​tas50 in mondoohq/mql#8020
• ✨ bicep: expose expression trees on resource name/location/condition and module scope by @​tas50 in mondoohq/mql#8021
• ✨ bicep: resolve expression symbol references to their declarations by @​tas50 in mondoohq/mql#8022
• ✨ bicep: resolve local module references to their target files by @​tas50 in mondoohq/mql#8023
• ✨ bicep: resolve import statements to their target file and declarations by @​tas50 in mondoohq/mql#8025
• ⭐ bicep: retype compiled ARM parameters/variables/outputs as typed resources by @​tas50 in mondoohq/mql#8026
• ✨ gcp: round-2 security resources & fields (liens, tags, DNS response policies, GKE/secret hardening) by @​tas50 in mondoohq/mql#8024
• ✨ bicep: model ARM resource condition, copy loops, and linked deployments by @​tas50 in mondoohq/mql#8027
• ✨ bicep: expose expression trees for resource property and module param values by @​tas50 in mondoohq/mql#8029
• 🎉 aws-13.29.0, gcp-13.19.0 by @​tas50 in mondoohq/mql#8028
• ✨ bicep: decompose user-defined type structure and resolve param/output types by @​tas50 in mondoohq/mql#8031
• 🎉 bicep-13.2.0 by @​tas50 in mondoohq/mql#8032
• ✨ gcp: typed vulnerability & OS-inventory resources (non-breaking) by @​tas50 in mondoohq/mql#8030
• ✨ helm: render fidelity, schema enrichment, and remote chart fetch by @​tas50 in mondoohq/mql#8033
• 🎉 helm-13.2.0 by @​tas50 in mondoohq/mql#8034
• 🐛 helm: drop reserved -f shorthand; harden provider flag attach against shorthand collisions by @​tas50 in mondoohq/mql#8035
• 🧹 github: unit tests for pure-logic helpers by @​tas50 in mondoohq/mql#8037
• 🧹 gitlab: unit tests for pure resource helpers by @​tas50 in mondoohq/mql#8036
• 🎉 helm-13.2.1 by @​tas50 in mondoohq/mql#8039
• 📃 document operator precedence by @​arlimus in mondoohq/mql#8041
• ✨ document identifier resolution in blocks by @​arlimus in mondoohq/mql#8042
• 🌙 docker.file: derived predicates and from.digest parser fix by @​tas50 in mondoohq/mql#8043
• 🐛 github: fix org.repositories truncating on GHE / GitHub App auth by @​M-gre in mondoohq/mql#8045
• 🧪 rpm: integration tests for both package code paths by @​czunker in mondoohq/mql#8046
• 🧪 deb: assert package field shape against debian testdata by @​czunker in mondoohq/mql#8047

... (truncated)

Commits

• 9d31f3e 🎉 mondoo-13.1.1 (#8111)
• 341b5a3 ✨ oci: surface public-exposure signals (PARs, public IPs, public DB endpoints...
• 2ef62bf ✨ vsphere: surface host runtime state (bootTime, inMaintenanceMode, rebootReq...
• deb874a ✨ jamf: add policy, script, and restricted software resources (#8104)
• ee344e5 ✨ oci: surface ZPR security attributes and network firewall health status (#8...
• 6ae9bab ✨ gcp: security-relevant fields across compute, functions, gke, and alloydb (...
• 971ad21 ✨ digitalocean: add typed cross-references for single-query traversal (#8103)
• 7a6f5e1 ✨ jamf: expand jamf.package fields and add typed parentPackage reference (#8101)
• 6b54065 ✨ digitalocean: add security scan resources (#8102)
• 14301c9 ✨ Add lastScoreUpdateTime to Mondoo asset resource. (#8080)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions