Update go modules (main) (patch)

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
cuelang.org/go	v0.11.1 → v0.11.2
github.com/CycloneDX/cyclonedx-go	v0.9.2 → v0.9.3
github.com/cucumber/godog	v0.15.0 → v0.15.1
github.com/daixiang0/gci	v0.13.5 → v0.13.7
github.com/evanphx/json-patch	v5.9.0+incompatible → v5.9.11+incompatible
github.com/evanphx/json-patch/v5	v5.9.0 → v5.9.11
github.com/gkampitakis/go-snaps	v0.5.7 → v0.5.19
github.com/go-git/go-billy/v5	v5.6.0 → v5.6.2
github.com/otiai10/copy	v1.14.0 → v1.14.1
github.com/secure-systems-lab/go-securesystemslib	v0.9.0 → v0.9.1
github.com/sirupsen/logrus	v1.9.3 → v1.9.4
github.com/spdx/tools-golang	v0.5.5 → v0.5.7
github.com/tektoncd/chains	v0.22.2 → v0.22.3
github.com/tektoncd/cli	v0.38.0 → v0.38.2
github.com/tektoncd/cli	v0.37.1 → v0.37.2
github.com/testcontainers/testcontainers-go	v0.34.0 → v0.34.1
gotest.tools/gotestsum	v1.12.1 → v1.12.3
helm.sh/helm/v3	v3.18.5 → v3.18.6
k8s.io/api	v0.34.2 → v0.34.4
k8s.io/apiextensions-apiserver	v0.34.2 → v0.34.4
k8s.io/apimachinery	v0.34.2 → v0.34.4
k8s.io/client-go	v0.34.2 → v0.34.4
k8s.io/kubernetes	v1.34.2 → v1.34.4

---

Release Notes

cue-lang/cue (cuelang.org/go)

v0.11.2

Compare Source

This release includes fixes for bugs which were uncovered and resolved in the last few weeks.

Evaluator

CL 1206279 fixes a regression in the old evaluator which could lead to "conflicting value" errors.

cmd/cue

CL 1207330 fixes a regression where cue get go stopped copying some CUE files from Go package directories.

CL 1207402 fixes a regression where cue def --inline-imports could result in invalid CUE which failed to evaluate.

Full list of changes since v0.11.1

• internal/cueversion: bump LanguageVersion for the next release by @​mvdan in 079dc4a
• internal/ci: update pinned Go for the next release by @​mvdan in b1a57a5
• internal/core/dep: fix handling sharing in non-rooted nodes by @​mpvl in 8d97e7a
• cmd/cue: add test for 3646 by @​mpvl in 815cb30
• cmd/cue: fix a regression with cue get go dropping CUE files by @​mvdan in 5b0e411
• cmd/cue: add a test case to reproduce #​3644 by @​mvdan in 801f976
• internal/core/adt: fix let issue for eval v2 by @​mpvl in a1fbeaa
• internal/core/adt: add tests for 3590 and 3591 by @​mpvl in 0ae498f

CycloneDX/cyclonedx-go (github.com/CycloneDX/cyclonedx-go)

v0.9.3

Compare Source

Changelog

Fixes

• 6636ce3: fix: .component.data was not a slice as per CycloneDX schema #​242 (@​madpah)
• 3e0f245: fix: add missing properties (@​rdghe)

Building and Packaging

• 24c8c33: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (@​dependabot[bot])
• 5fcf097: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (@​dependabot[bot])
• edea8ae: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (@​dependabot[bot])
• f32eebc: build(deps): bump gitpod/workspace-go from 4702df2 to 8985eb7 (@​dependabot[bot])
• 7fdaa7f: build(deps): bump gitpod/workspace-go from 6932342 to 4702df2 (@​dependabot[bot])
• d62ea3c: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (@​dependabot[bot])
• 4709461: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (@​dependabot[bot])

cucumber/godog (github.com/cucumber/godog)

v0.15.1

Compare Source

Added

• Step text is added to "step is undefined" error - (669 - vearutop)
• Localisation support by @​MegaGrindStone in #​665
• feat: support uint types by @​chengxilo in #​695

Changed

• Replace deprecated ::set-output - (681 - nodeg)

Fixed

• fix(errors): fix(errors): Fix expected Step argument count for steps with context.Context (679 - tigh-latte)
• fix(formatter): On concurrent execution, execute formatter at end of Scenario - (645 - tigh-latte)
• Pretty printing results now prints the line where the step is declared instead of the line where the handler is declared. (668 - spencerc)
• Update honnef.co/go/tools/cmd/staticcheck version in Makefile by @​RezaZareiii in #​670
• fix: verify dogT exists in the context before using it by @​cakoolen in #​692
• fix: change bang to being in README by @​nahomEagleLion in #​687
• Mark junit test cases as skipped if no pickle step results available by @​mrsheepuk in #​597
• Print step declaration line instead of handler declaration line by @​SpencerC in #​668

daixiang0/gci (github.com/daixiang0/gci)

v0.13.7

Compare Source

What's Changed

• fix: scrape all goos/goarch pair for stdlib by @​Zxilly in #​208
• chore: get module info from pass by @​ldez in #​221
• chore: remove analyzer by @​ldez in #​222
• feat: update standard list to go1.25 by @​ldez in #​233
• bump up version by @​daixiang0 in #​234

New Contributors

• @​Zxilly made their first contribution in #​208

Full Changelog: daixiang0/gci@v0.13.6...v0.13.7

v0.13.6

Compare Source

What's Changed

• fix: update standard list to go1.24 by @​ldez in #​227
• bump up version by @​daixiang0 in #​229

Full Changelog: daixiang0/gci@v0.13.5...v0.13.6

evanphx/json-patch (github.com/evanphx/json-patch)

v5.9.11+incompatible

Compare Source

v5.9.10+incompatible

Compare Source

gkampitakis/go-snaps (github.com/gkampitakis/go-snaps)

v0.5.19

Compare Source

What's Changed

• fix: use backticks for inline snaps when appropriate by @​gkampitakis in #​149

Full Changelog: gkampitakis/go-snaps@0.5.18...v0.5.19

v0.5.18

Compare Source

v0.5.17

Compare Source

v0.5.16

Compare Source

What's Changed

• fix: don't drop /r character when scanning by @​gkampitakis in #​139
• chore: replace vendored go-diff with upstream by @​gkampitakis in #​143
• chore: update golangci-lint to v2 by @​G-Rath in #​141
• fix: detect no_color support by @​gkampitakis in #​123
• experimenting with inline snapshot support by @​gkampitakis in #​70

Full Changelog: gkampitakis/go-snaps@v0.5.15...v0.5.16

v0.5.15

Compare Source

What's Changed

• test: explicitly return named variables by @​G-Rath in #​137
• ci: show diff after running linting by @​G-Rath in #​136
• fix: only update snapshots when actually allowed by @​G-Rath in #​135

Full Changelog: gkampitakis/go-snaps@v0.5.14...v0.5.15

v0.5.14

Compare Source

What's Changed

• feat: snaps.Clean now returns if snaps dirty and err by @​gkampitakis in #​131

Full Changelog: gkampitakis/go-snaps@v0.5.13...v0.5.14

v0.5.13

Compare Source

What's Changed

• feat: support MatchStandaloneYAML by @​gkampitakis in #​128
• chore: update go-yaml and gh-action deps by @​gkampitakis in #​129

Full Changelog: gkampitakis/go-snaps@v0.5.12...v0.5.13

v0.5.12

Compare Source

What's Changed

• feat: add UPDATE_SNAPS=always for updating and creating snaps on CI setup by @​gkampitakis in #​126

Full Changelog: gkampitakis/go-snaps@v0.5.11...v0.5.12

v0.5.11

Compare Source

What's Changed

• feat: add json format config by @​kitimark in #​121

New Contributors

• @​kitimark made their first contribution in #​121

Full Changelog: gkampitakis/go-snaps@v0.5.10...v0.5.11

v0.5.10

Compare Source

What's Changed

• fix: handle builds with trimpath enabled by @​gkampitakis in #​120

Full Changelog: gkampitakis/go-snaps@v0.5.9...v0.5.10

v0.5.9

Compare Source

What's Changed

• fix: snaps.Update should apply and on snapshot create by @​gkampitakis in #​119

Full Changelog: gkampitakis/go-snaps@v0.5.8...v0.5.9

Kudos to @​orloffv for this issue #​116

v0.5.8

Compare Source

What's Changed

• feat: implement matchYAML by @​gkampitakis in #​114
• feat: implement matchStandaloneJSON by @​gkampitakis in #​113

Full Changelog: gkampitakis/go-snaps@v0.5.7...v0.5.8

go-git/go-billy (github.com/go-git/go-billy/v5)

v5.6.2

Compare Source

What's Changed

• Enable the iofs adapter to also return other interfaces from io/fs by @​JAORMX in #​102
• build: Bump dependencies by @​pjbgf in #​103

New Contributors

• @​JAORMX made their first contribution in #​102

Full Changelog: go-git/go-billy@v5.6.1...v5.6.2

v5.6.1

Compare Source

What's Changed

• build: bump github/codeql-action from 3.26.11 to 3.27.0 by @​dependabot in #​88
• build: bump github/codeql-action from 3.27.0 to 3.27.1 by @​dependabot in #​89
• build: bump github/codeql-action from 3.27.1 to 3.27.4 by @​dependabot in #​90
• build: bump github/codeql-action from 3.27.4 to 3.27.5 by @​dependabot in #​91
• Bump dependencies and build housekeeping by @​pjbgf in #​95

Full Changelog: go-git/go-billy@v5.6.0...v5.6.1

otiai10/copy (github.com/otiai10/copy)

v1.14.1

Compare Source

secure-systems-lab/go-securesystemslib (github.com/secure-systems-lab/go-securesystemslib)

v0.9.1

Compare Source

sirupsen/logrus (github.com/sirupsen/logrus)

v1.9.4

Compare Source

Notable changes

• go.mod: update minimum supported go version to v1.17 #​1460
• go.mod: bump up dependencies #​1460
• Touch-up godoc and add "doc" links.
• README: fix links, grammar, and update examples.
• Add GNU/Hurd support #​1364
• Add WASI wasip1 support #​1388
• Remove uses of deprecated ioutil package #​1472
• CI: update actions and golangci-lint #​1459
• CI: remove appveyor, add macOS #​1460

Full Changelog: sirupsen/logrus@v1.9.3...v1.9.4

spdx/tools-golang (github.com/spdx/tools-golang)

v0.5.7

Compare Source

What's Changed

• Fail parsing if the required prefix isn't present for IDs by @​awyeth in #​275

New Contributors

• @​awyeth made their first contribution in #​275

Full Changelog: spdx/tools-golang@v0.5.6...v0.5.7

v0.5.6

Compare Source

What's Changed

• Change the colon and space separator to just a colon by @​warpkwd in #​254
• build(deps): Bump sigs.k8s.io/yaml to 1.6.0 by @​dependabot[bot] in #​259
• Resolve two issues related to ExternalDocumentRef by @​KAWAHARA-souta in #​269
• fix: Fix prefixDocumentId() to use correct prefix by @​KAWAHARA-souta in #​272

New Contributors

• @​warpkwd made their first contribution in #​254
• @​KAWAHARA-souta made their first contribution in #​269

Full Changelog: spdx/tools-golang@v0.5.5...v0.5.6

tektoncd/chains (github.com/tektoncd/chains)

v0.22.3: Tekton Chains release v0.22.3 "v0.22.3"

Compare Source

-Docs @​ v0.22.3
-Examples @​ v0.22.3

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/chains/previous/v0.22.3/release.yaml

Attestation

The Rekor UUID for this release is 108e9186e8c5677abc5f8010a0a21be4daa53325a217f4df92955848f73f226c6ed054c429fb9f82

Obtain the attestation:

REKOR_UUID=108e9186e8c5677abc5f8010a0a21be4daa53325a217f4df92955848f73f226c6ed054c429fb9f82
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/chains/previous/v0.22.3/release.yaml
REKOR_UUID=108e9186e8c5677abc5f8010a0a21be4daa53325a217f4df92955848f73f226c6ed054c429fb9f82

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.22.3@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Fixes

• 🐛 Fix nil-pointer references (#​1286 and #​1246)

Misc

• 🔨 Upgrade golang.org/x/crypto to 0.31.0 (#​1269)

Thanks

Thanks to these contributors who contributed to v0.22.3!

• ❤️ @​jkhelil
• ❤️ @​lcarva
• ❤️ @​savitaashture
• ❤️ @​tekton-robot

Extra shout-out for awesome release notes:

• 😍 @​jkhelil
• 😍 @​lcarva
• 😍 @​savitaashture
• 😍 @​tekton-robot

tektoncd/cli (github.com/tektoncd/cli)

v0.38.2

Compare Source

v0.38.2 Release 🎉

This is a bug fix release for CVEs GHSA-w32m-9786-jp63 on golang.org/x/net and GHSA-v778-237x-gjrc on golang.org/x/crypto.

ChangeLog 📋

Misc 🔨

• Bump golang.org/x/net from 0.30.0 to 0.33.0 #​2473
• Bump golang.org/x/crypto from 0.28.0 to 0.31.0 #​2447

v0.38.1

Compare Source

v0.38.1 Release 🎉

This is a bug fix release as tkn start was failing with tkn version v0.38.0 release and old(er) pipeline version. This release comes with Pipelines v0.62.3 and Triggers version v0.29.1

ChangeLog 📋

Misc 🔨

• Bump tektoncd/pipeline to v0.62.3 #​2392
• Bump github.com/tektoncd/triggers from 0.29.0 to 0.29.1 #​2394

testcontainers/testcontainers-go (github.com/testcontainers/testcontainers-go)

v0.34.1

Compare Source

gotestyourself/gotestsum (gotest.tools/gotestsum)

v1.12.3

Compare Source

What's Changed

• Bump golang.org/x/tools from 0.24.0 to 0.33.0 by @​dependabot in #​496
• Bump golang.org/x/term from 0.29.0 to 0.32.0 by @​dependabot in #​494
• feat: add the --rerun-fails-abort-on-data-race flag by @​hugodutka in #​497
• Bump golang.org/x/tools from 0.33.0 to 0.34.0 by @​dependabot in #​501

New Contributors

• @​hugodutka made their first contribution in #​497

Full Changelog: gotestyourself/gotestsum@v1.12.2...v1.12.3

v1.12.2

Compare Source

What's Changed

• Bump gotest.tools/v3 from 3.5.1 to 3.5.2 by @​dependabot in #​463
• Bump github.com/google/go-cmp from 0.6.0 to 0.7.0 by @​dependabot in #​468
• Bump github.com/fatih/color from 1.17.0 to 1.18.0 by @​dependabot in #​446
• Use event times for elapsed by @​dnephin in #​482
• feat: support for hidding skipped tests in the junit report by @​v1v in #​478

New Contributors

• @​v1v made their first contribution in #​478

Full Changelog: gotestyourself/gotestsum@v1.12.1...v1.12.2

helm/helm (helm.sh/helm/v3)

v3.18.6: Helm v3.18.6

Compare Source

Helm v3.18.6 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.18.6. The common platform binaries are here:

• MacOS amd64 (checksum / 80cad0470e38cf25731cdead7c32dfbeb887bc177bd6fa01e31b065722f8f06b)
• MacOS arm64 (checksum / 48e30d236a1f334c6acb78501be5a851eaa2a267fefeb1131b6484eb2f9f30d7)
• Linux amd64 (checksum / 3f43c0aa57243852dd542493a0f54f1396c0bc8ec7296bbb2c01e802010819ce)
• Linux arm (checksum / 13156fbe87a9db201b7d8fd0b42dee2a2e76a77388ea3bd59e3074cfa49d3619)
• Linux arm64 (checksum / 5b8e00b6709caab466cbbb0bc29ee09059b8dc9417991dd04b497530e49b1737)
• Linux i386 (checksum / d245db7c80edaf47bc42d3fab0b79d2e75d63fa49d06bc0ca599686ebdbd1422)
• Linux ppc64le (checksum / 61eac730dac2029d7acf1c53bd0b1056f78ca2c3f915da7fa3995e74c021eae8)
• Linux s390x (checksum / c6435c220b2577abea11ee9281fda8a5164583fb1f502702f6ef5c2b4347e38f)
• Linux riscv64 (checksum / cea696b01b66fad76b24d9ef28a86802b0931cbc25cec687e8469589438995eb)
• Windows amd64 (checksum / 4263320a8d70df0bb1e245534fba1b541f9889005cdb68dec9798b197c3f66b0)
• Windows arm64 (checksum / fdff469f270d8a155d9289843b92f7b00b2ca353b8ec61532e920eeb3fc2b480)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.19.0 is the next minor release and will be on September 11, 2025

Changelog

• fix(helm-lint): fmt b76a950 (Isaiah Lewis)
• fix(helm-lint): Add TLSClientConfig b79a421 (Isaiah Lewis)
• fix(helm-lint): Add HTTP/HTTPS URL support for json schema references b9180e6 (Isaiah Lewis)

kubernetes/api (k8s.io/api)

v0.34.4

Compare Source

v0.34.3

Compare Source

kubernetes/apiextensions-apiserver (k8s.io/apiextensions-apiserver)

v0.34.4

Compare Source

v0.34.3

Compare Source

kubernetes/apimachinery (k8s.io/apimachinery)

v0.34.4

Compare Source

v0.34.3

Compare Source

kubernetes/client-go (k8s.io/client-go)

v0.34.4

Compare Source

v0.34.3

Compare Source

kubernetes/kubernetes (k8s.io/kubernetes)

v1.34.4

Compare Source

See kubernetes-announce@. Additional binary downloads are linked in the CHANGELOG.

See the CHANGELOG for more details.

v1.34.3: Kubernetes v1.34.3

Compare Source

See kubernetes-announce@. Additional binary downloads are linked in the CHANGELOG.

See the CHANGELOG for more details.

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: acceptance/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 25 additional dependencies were updated

Details:

Package	Change
github.com/Azure/go-ansiterm	v0.0.0-20230124172434-306776ec8161 -> v0.0.0-20250102033503-faa5f7b0171c
github.com/ProtonMail/go-crypto	v1.1.3 -> v1.1.5
github.com/cyphar/filepath-securejoin	v0.3.1 -> v0.3.6
github.com/gkampitakis/ciinfo	v0.3.0 -> v0.3.2
github.com/go-openapi/errors	v0.22.0 -> v0.22.1
github.com/go-openapi/swag	v0.23.0 -> v0.23.1
github.com/google/certificate-transparency-go	v1.2.1 -> v1.3.1
github.com/magiconair/properties	v1.8.7 -> v1.8.9
github.com/mailru/easyjson	v0.7.7 -> v0.9.0
github.com/mitchellh/mapstructure	v1.5.0 -> v1.5.1-0.20231216201459-8508981c8b6c
github.com/moby/term	v0.5.0 -> v0.5.2
github.com/pjbgf/sha1cd	v0.3.0 -> v0.3.2
github.com/rogpeppe/go-internal	v1.13.1 -> v1.13.2-0.20241226121412-a5dc8ff20d0a
github.com/sergi/go-diff	v1.3.2-0.20230802210424-5b0b94c5c0d3 -> v1.4.0
github.com/sigstore/protobuf-specs	v0.3.2 -> v0.4.1
github.com/sigstore/timestamp-authority	v1.2.2 -> v1.2.4
github.com/spf13/pflag	v1.0.6 -> v1.0.7
github.com/tidwall/gjson	v1.17.3 -> v1.18.0
golang.org/x/crypto	v0.38.0 -> v0.40.0
golang.org/x/net	v0.40.0 -> v0.41.0
golang.org/x/sync	v0.15.0 -> v0.16.0
golang.org/x/sys	v0.33.0 -> v0.34.0
golang.org/x/term	v0.32.0 -> v0.33.0
golang.org/x/text	v0.25.0 -> v0.27.0
google.golang.org/api	v0.215.0 -> v0.228.0

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 32 additional dependencies were updated

Details:

Package	Change
cloud.google.com/go	v0.116.0 -> v0.118.3
cloud.google.com/go/auth	v0.13.0 -> v0.15.0
cloud.google.com/go/auth/oauth2adapt	v0.2.6 -> v0.2.8
cloud.google.com/go/iam	v1.2.2 -> v1.4.1
cloud.google.com/go/monitoring	v1.21.2 -> v1.24.0
cloud.google.com/go/storage	v1.49.0 -> v1.50.0
github.com/Azure/go-ansiterm	v0.0.0-20230124172434-306776ec8161 -> v0.0.0-20250102033503-faa5f7b0171c
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric	v0.48.1 -> v0.49.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping	v0.48.1 -> v0.49.0
github.com/aws/aws-sdk-go-v2/service/ecr	v1.32.2 -> v1.40.3
github.com/aws/aws-sdk-go-v2/service/ecrpublic	v1.25.4 -> v1.31.2
github.com/awslabs/amazon-ecr-credential-helper/ecr-login	v0.0.0-20240826150212-5dc58b6e29f8 -> v0.9.1
github.com/coreos/go-oidc/v3	v3.11.0 -> v3.12.0
github.com/gkampitakis/ciinfo	v0.3.0 -> v0.3.2
github.com/go-openapi/errors	v0.22.0 -> v0.22.1
github.com/go-openapi/swag	v0.23.0 -> v0.23.1
github.com/google/certificate-transparency-go	v1.2.1 -> v1.3.1
github.com/google/s2a-go	v0.1.8 -> v0.1.9
github.com/googleapis/enterprise-certificate-proxy	v0.3.4 -> v0.3.6
github.com/jmespath/go-jmespath	v0.4.0 -> v0.4.1-0.20220621161143-b0104c826a24
github.com/mailru/easyjson	v0.7.7 -> v0.9.0
github.com/mitchellh/mapstructure	v1.5.0 -> v1.5.1-0.20231216201459-8508981c8b6c
github.com/moby/term	v0.5.0 -> v0.5.2
github.com/sergi/go-diff	v1.3.2-0.20230802210424-5b0b94c5c0d3 -> v1.4.0
github.com/sigstore/fulcio	v1.6.3 -> v1.6.6
github.com/sigstore/protobuf-specs	v0.3.2 -> v0.4.1
github.com/sigstore/timestamp-authority	v1.2.2 -> v1.2.4
github.com/tidwall/gjson	v1.17.0 -> v1.18.0
go.step.sm/crypto	v0.51.2 -> v0.60.0
google.golang.org/api	v0.215.0 -> v0.228.0
google.golang.org/genproto	v0.0.0-20241118233622-e639e219e697 -> v0.0.0-20250303144028-a0af3efb3deb
sigs.k8s.io/release-utils	v0.8.4 -> v0.11.0

File name: tools/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/tektoncd/triggers	v0.29.0 -> v0.29.1