chore(deps): update go dependencies

[red-hat-konflux]

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
chainguard.dev/sdk	require	patch	v0.1.45 -> v0.1.50
cloud.google.com/go	indirect	minor	v0.121.6 -> v0.123.0
cloud.google.com/go/auth	indirect	patch	v0.18.0 -> v0.18.2
cloud.google.com/go/longrunning	indirect	minor	v0.6.7 -> v0.8.0
cloud.google.com/go/longrunning	indirect	minor	v0.7.0 -> v0.8.0
dario.cat/mergo	indirect	patch	v1.0.1 -> v1.0.2
filippo.io/edwards25519	indirect	minor	v1.1.0 -> v1.2.0
github.com/Azure/azure-sdk-for-go/sdk/azcore	indirect	minor	v1.20.0 -> v1.21.0
github.com/AzureAD/microsoft-authentication-library-for-go	indirect	minor	v1.6.0 -> v1.7.0
github.com/PaesslerAG/gval	indirect	minor	v1.0.0 -> v1.2.4
github.com/asaskevich/govalidator	require	digest	f21760c -> e113478
github.com/aws/aws-sdk-go-v2/credentials	indirect	patch	v1.19.5 -> v1.19.11
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	indirect	patch	v1.18.16 -> v1.18.19
github.com/aws/aws-sdk-go-v2/internal/configsources	indirect	patch	v1.4.16 -> v1.4.19
github.com/aws/aws-sdk-go-v2/internal/ini	indirect	patch	v1.8.4 -> v1.8.5
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	indirect	patch	v1.13.4 -> v1.13.6
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	indirect	patch	v1.13.16 -> v1.13.19
github.com/aws/aws-sdk-go-v2/service/signin	indirect	patch	v1.0.4 -> v1.0.7
github.com/chainguard-dev/clog	indirect	minor	v1.7.0 -> v1.8.0
github.com/clipperhouse/displaywidth	indirect	minor	v0.6.2 -> v0.11.0
github.com/google/certificate-transparency-go	require	patch	v1.3.2 -> v1.3.3
github.com/google/go-containerregistry	indirect	minor	v0.20.7 -> v0.21.2
github.com/googleapis/enterprise-certificate-proxy	indirect	patch	v0.3.7 -> v0.3.14
github.com/grpc-ecosystem/go-grpc-prometheus	require	digest	82c2437 -> a5446fa
github.com/jhump/protoreflect	indirect	minor	v1.17.0 -> v1.18.0
github.com/letsencrypt/boulder	indirect	minor	v0.20251110.0 -> v0.20260309.0
github.com/mattn/go-runewidth	indirect	patch	v0.0.19 -> v0.0.21
github.com/miekg/pkcs11	indirect	patch	v1.1.1 -> v1.1.2
github.com/olekukonko/errors	indirect	minor	v1.1.0 -> v1.2.0
github.com/olekukonko/ll	indirect	patch	v0.1.4-0.20260115111900-9e59c2286df0 -> v0.1.7
github.com/prometheus/procfs	indirect	minor	v0.16.1 -> v0.20.1
github.com/sagikazarmark/locafero	indirect	minor	v0.7.0 -> v0.12.0
github.com/secure-systems-lab/go-securesystemslib	indirect	minor	v0.9.1 -> v0.10.0
github.com/sigstore/sigstore	require	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/aws	require	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/azure	require	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/gcp	require	patch	v1.10.3 -> v1.10.4
github.com/sigstore/sigstore/pkg/signature/kms/hashivault	require	patch	v1.10.3 -> v1.10.4
github.com/spf13/afero	indirect	minor	v1.12.0 -> v1.15.0
github.com/spf13/cast	indirect	minor	v1.7.1 -> v1.10.0
github.com/spf13/pflag	indirect	patch	v1.0.7 -> v1.0.10
github.com/spf13/viper	require	minor	v1.20.1 -> v1.21.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	indirect	minor	v0.63.0 -> v0.67.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	indirect	minor	v0.63.0 -> v0.67.0
go.opentelemetry.io/proto/otlp	indirect	minor	v1.7.1 -> v1.10.0
go.step.sm/crypto	require	minor	v0.75.0 -> v0.76.2
golang.org/x/crypto	indirect	minor	v0.46.0 -> v0.48.0
golang.org/x/net	indirect	minor	v0.42.0 -> v0.51.0
golang.org/x/net	indirect	minor	v0.48.0 -> v0.51.0
golang.org/x/oauth2	indirect	minor	v0.34.0 -> v0.36.0
golang.org/x/sync	indirect	minor	v0.16.0 -> v0.20.0
golang.org/x/sync	indirect	minor	v0.19.0 -> v0.20.0
golang.org/x/sys	indirect	minor	v0.34.0 -> v0.42.0
golang.org/x/sys	indirect	minor	v0.39.0 -> v0.42.0
golang.org/x/term	indirect	minor	v0.38.0 -> v0.40.0
golang.org/x/text	indirect	minor	v0.27.0 -> v0.34.0
golang.org/x/text	indirect	minor	v0.32.0 -> v0.34.0
golang.org/x/time	indirect	minor	v0.14.0 -> v0.15.0
google.golang.org/api	require	minor	v0.259.0 -> v0.270.0
google.golang.org/genproto	indirect	digest	ff82c1b -> a57be14
google.golang.org/genproto/googleapis/api	indirect	digest	7130f93 -> a57be14
google.golang.org/genproto/googleapis/api	require	digest	0a764e5 -> a57be14
google.golang.org/genproto/googleapis/rpc	indirect	digest	7130f93 -> a57be14
google.golang.org/genproto/googleapis/rpc	indirect	digest	0a764e5 -> a57be14
google.golang.org/grpc/cmd/protoc-gen-go-grpc	require	minor	v1.5.1 -> v1.6.1
sigs.k8s.io/release-utils	require	patch	v0.12.2 -> v0.12.3

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

chainguard-dev/sdk (chainguard.dev/sdk)

v0.1.50

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.49...v0.1.50

v0.1.49

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.48...v0.1.49

v0.1.48

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.47...v0.1.48

v0.1.47

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.46...v0.1.47

v0.1.46

Compare Source

Full Changelog: chainguard-dev/sdk@v0.1.45...v0.1.46

googleapis/google-cloud-go (cloud.google.com/go)

v0.123.0

Compare Source

Features

• internal/stategen: Populate the latest googleapis commit (#​12880) (7b017a0)
• librariangen: Implement the build command (#​12817) (14734c8)

Bug Fixes

• internal/librariangen: Add link to source commit in release notes (#​12881) (1c06cc6)
• internal/librariangen: Fix CHANGES.md headers (#​12849) (baf515d)
• internal/librariangen: Remove go mod init/tidy from postprocessor (#​12832) (1fe506a)
• internal/librariangen: Test for error path with flags (#​12830) (f0da7b2)
• internal/postprocessor: Add dlp to skip-module-scan-paths (#​12857) (45a7d9b)
• librariangen: Honor original container contract (#​12846) (71c8fd3)
• librariangen: Improvements to release-init (#​12842) (0db677a)
• stategen: Specify an appropriate tag format for google-cloud-go (#​12835) (ffcff33)

v0.122.0

Compare Source

Features

• internal/librariangen: Add release-init command (#​12751) (52e84cc)

Bug Fixes

• internal/godocfx: Better support for v2 modules (#​12797) (4bc8785)
• internal/godocfx: Module detection when tidy errors (#​12801) (83d46cd)
• internal/librariangen: Fix goimports errors (#​12765) (83bdaa4)

imdario/mergo (dario.cat/mergo)

v1.0.2

Compare Source

What's Changed

• Drops gopkg.in/yaml.v3, only used for loading fixtures. Thanks @​trim21 for bringing to my attention (#​262) that this library is no longer maintained.

Full Changelog: darccio/mergo@v1.0.1...v1.0.2

FiloSottile/edwards25519 (filippo.io/edwards25519)

v1.2.0

Compare Source

v1.1.1

Compare Source

AzureAD/microsoft-authentication-library-for-go (github.com/AzureAD/microsoft-authentication-library-for-go)

v1.7.0: 1.7.0

Compare Source

What's Changed

• Add WithPrompt option for AuthCodeURL by @​szogoon in #​585
• Use form_post response mode for interactive authentication by @​ashok672 in #​596

New Contributors

• @​szogoon made their first contribution in #​585
• @​ashok672 made their first contribution in #​596

Full Changelog: AzureAD/microsoft-authentication-library-for-go@v1.6.0...v1.7.0

PaesslerAG/gval (github.com/PaesslerAG/gval)

v1.2.4

Compare Source

What's Changed

• Fix functions Nil arguements by @​KinyaElGrande in #​109

New Contributors

• @​KinyaElGrande made their first contribution in #​109

Full Changelog: PaesslerAG/gval@v1.2.3...v1.2.4

v1.2.3

Compare Source

What's Changed

• Apply formatting (go fmt) by @​darh in #​92
• Add support for typed map and slices with method calls by @​tw1nk in #​88
• fix unexpected func() bool expected bool by @​mei-rune in #​104
• feat: fix goroutine leakage problem caused by errCh write blocking. by @​catundercar in #​107

New Contributors

• @​tw1nk made their first contribution in #​88
• @​mei-rune made their first contribution in #​104
• @​catundercar made their first contribution in #​107

Full Changelog: PaesslerAG/gval@v1.2.2...v1.2.3

v1.2.2

Compare Source

Wrap errors instead of the error message.

v1.2.1: Allow nil arguments and catch panics in function calls

Compare Source

v1.2.0

Compare Source

Added DecimalArithmetic to gval.

v1.1.2

Compare Source

Fixed IsConst for go 1.17
Fixed scanning to much characters while parsing operators

v1.1.1

Compare Source

Fixed typed nil value issues.

v1.1.0: 1.1

Compare Source

Make ident and parentheses parsers available separately from Base()

v1.0.1

Compare Source

aws/aws-sdk-go-v2 (github.com/aws/aws-sdk-go-v2/credentials)

v1.19.11

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/feature/s3/manager: v1.19.11
  • Bug Fix: Add missing ChecksumType field to UploadOutput.
• github.com/aws/aws-sdk-go-v2/service/cloudformation: v1.67.0
  • Feature: Add new warning type 'EXCLUDED_RESOURCES'
• github.com/aws/aws-sdk-go-v2/service/connectcases: v1.32.0
  • Feature: New Search All Related Items API enables searching related items across cases
• github.com/aws/aws-sdk-go-v2/service/dynamodb: v1.51.0
  • Feature: Add support for dual-stack account endpoint generation
• github.com/aws/aws-sdk-go-v2/service/guardduty: v1.64.3
  • Documentation: Updated descriptions for the Location parameter in CreateTrustedEntitySet and CreateThreatEntitySet.
• github.com/aws/aws-sdk-go-v2/service/synthetics: v1.41.0
  • Feature: Adds support to configure canaries with pre-configured blueprint code on supported runtime versions. This behavior can be controlled via the new BlueprintTypes property exposed in the CreateCanary and UpdateCanary APIs.

chainguard-dev/clog (github.com/chainguard-dev/clog)

v1.8.0

Compare Source

What's Changed

• docs: fix doc comments for clog.Logger by @​luhring in #​36
• gcp: Surface trace propagation functions on context by @​markusthoemmes in #​40
• [StepSecurity] Apply security best practices by @​stepsecurity-app[bot] in #​39
• Bump actions/setup-go from 5.3.0 to 5.5.0 by @​dependabot[bot] in #​37
• slogtest: demonstrate use of t.Context() by @​imjasonh in #​41
• gcp: Refactor to pass in custom writer by @​wlynch in #​52
• Bump actions/checkout from 4.2.2 to 6.0.1 by @​dependabot[bot] in #​51
• Bump step-security/harden-runner from 2.12.0 to 2.13.3 by @​dependabot[bot] in #​50
• Bump actions/setup-go from 5.5.0 to 6.1.0 by @​dependabot[bot] in #​49

New Contributors

• @​luhring made their first contribution in #​36
• @​markusthoemmes made their first contribution in #​40
• @​stepsecurity-app[bot] made their first contribution in #​39

Full Changelog: chainguard-dev/clog@v1.7.0...v1.8.0

clipperhouse/displaywidth (github.com/clipperhouse/displaywidth)

v0.11.0

Compare Source

v0.10.0

Compare Source

v0.9.0

Compare Source

v0.8.0

Compare Source

What's Changed

• Upgrade uax29 for Unicode 16 support by @​clipperhouse in #​15
• SWAR ASCII optimization by @​clipperhouse in #​14
• Simpler ASCII printable length by @​clipperhouse in #​16

(The first SWAR ASCII optimization was superseded by the simpler version.)

Full Changelog: clipperhouse/displaywidth@v0.7.0...v0.8.0

v0.7.0

Compare Source

What's Changed

• Add Truncate methods by @​clipperhouse in #​13

Full Changelog: clipperhouse/displaywidth@v0.6.2...v0.7.0

google/certificate-transparency-go (github.com/google/certificate-transparency-go)

v1.3.3

Compare Source

CTFE

• set explicit http server timeouts by @​1seal in #​1755
• Regenerate protos by @​phbnf in #​1743
• Update instructions to generate protos by @​phbnf in #​1742
• ctfe: Enforce max request and header size limits by @​fghanmi in #​1720
• [CTFE] Add a /log.v3.json endpoint to help satisfy a requirement of the Chrome CT Log Policy by @​robstradling in #​1703

Tools

Log list library

• Support tiled logs in the loglist3 logfilter functions by @​robstradling in #​1762
• Add FindTiledLog* functions by @​robstradling in #​1763

Submission proxy

• Cap request body size in submission proxy by @​1seal in #​1754
• add some additional log messages around CT log compatibility by @​breadyzhang in #​1734

Other

• jsonclient: don't depend on error text from other packages in tests by @​neild in #​1741
• Parse klog flags in preloader. by @​phbnf in #​1711
• Fix incorrect leaf hash calculation for precertificates in upload command by @​Barre in #​1710

Misc

• Remove internal witness by @​roger2hk in #​1765
• Update transparency-dev slack invite link by @​taknira in #​1718

Dependency updates

• Bump golangci-lint version to v2.10.1 by @​roger2hk in #​1769
• Bump the all-deps group with 7 updates by @​dependabot[bot] in #​1768
• Bump github/codeql-action from 4.32.0 to 4.32.4 in the all-deps group by @​dependabot[bot] in #​1767
• Bump the docker-deps group across 2 directories with 2 updates by @​dependabot[bot] in #​1766
• Bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 by @​dependabot[bot] in #​1764
• Bump the docker-deps group across 5 directories with 3 updates by @​dependabot[bot] in #​1758
• Bump the all-deps group with 3 updates by @​dependabot[bot] in #​1757
• Bump golang.org/x/crypto from 0.46.0 to 0.47.0 in the all-deps group by @​dependabot[bot] in #​1756
• Bumped linter and fixed a potential race condition by @​mhutchinson in #​1753
• Bump the docker-deps group across 5 directories with 3 updates by @​dependabot[bot] in #​1750
• Bump the all-deps group with 9 updates by @​dependabot[bot] in #​1749
• Bump the all-deps group across 1 directory with 5 updates by @​dependabot[bot] in #​1748
• Bump the all-deps group with 4 updates by @​dependabot[bot] in #​1745
• Bump the docker-deps group across 4 directories with 1 update by @​dependabot[bot] in #​1744
• Bump golang.org/x/crypto from 0.43.0 to 0.45.0 by @​dependabot[bot] in #​1740
• Bump the docker-deps group across 5 directories with 3 updates by @​dependabot[bot] in #​1737
• Bump the all-deps group with 4 updates by @​dependabot[bot] in #​1736
• Bump the all-deps group with 2 updates by @​dependabot[bot] in #​1735
• Bump Go from 1.23 to 1.24 by @​roger2hk in #​1733
• Bump the docker-deps group across 4 directories with 2 updates by @​dependabot[bot] in #​1732
• Bump the all-deps group with 10 updates by @​dependabot[bot] in #​1731
• Bump the all-deps group with 3 updates by @​dependabot[bot] in #​1730
• Bump the docker-deps group across 4 directories with 2 updates by @​dependabot[bot] in #​1727
• Bump the all-deps group with 2 updates by @​dependabot[bot] in #​1726
• Bump the all-deps group with 6 updates by @​dependabot[bot] in #​1725
• Bump github/codeql-action from 3.29.2 to 3.29.5 in the all-deps group by @​dependabot[bot] in #​1723
• Bump the docker-deps group across 5 directories with 2 updates by @​dependabot[bot] in #​1722
• Bump the all-deps group with 8 updates by @​dependabot[bot] in #​1721
• Bump the all-deps group with 8 updates by @​dependabot[bot] in #​1717
• Bump the docker-deps group across 4 directories with 2 updates by @​dependabot[bot] in #​1716
• Bump github/codeql-action from 3.29.0 to 3.29.2 in the all-deps group by @​dependabot[bot] in #​1715
• add continuous mode by @​phbnf in #​1714
• Bump golangci-lint from 2.0.2 to 2.1.6 by @​roger2hk in #​1713
• Bump the all-deps group with 4 updates by @​dependabot[bot] in #​1706

google/go-containerregistry (github.com/google/go-containerregistry)

v0.21.2

Compare Source

What's Changed

• Better handle redirects to https in ping by @​jonjohnsonjr in #​2225

Full Changelog: google/go-containerregistry@v0.21.1...v0.21.2

v0.21.1

Compare Source

This release fixes a regression in crane introduced in the previous release.

What's Changed

• Add WithFileBufferedOpener for file-backed daemon image buffering by @​twdamhore in #​2214
• crane: fix case in auth response json by @​aelindeman in #​2218

New Contributors

• @​twdamhore made their first contribution in #​2214
• @​aelindeman made their first contribution in #​2218

Full Changelog: google/go-containerregistry@v0.21.0...v0.21.1

v0.21.0

Compare Source

This release updates the minimum Go version to 1.25.6.

What's Changed

• fix(mutate): don't skip dir replacements via whiteout in export by @​r4f4 in #​2191
• Improve performance of v1.NewHash by @​bmoylan in #​2194
• Bump the actions group across 1 directory with 4 updates by @​dependabot[bot] in #​2207
• Bump the root-deps group across 1 directory with 7 updates by @​dependabot[bot] in #​2195
• Fix error messages in crane_test.go by @​jammie-jelly in #​2189
• Bump go version across packages to 1.25.6 by @​Subserial in #​2211
• Join go.mod dependency updates by @​Subserial in #​2212
• Bump the go-deps group across 3 directories with 3 updates by @​dependabot[bot] in #​2213
• Disable taint gosec lints by @​Subserial in #​2215
• Update go version used in goreleaser by @​Subserial in #​2216

New Contributors

• @​r4f4 made their first contribution in #​2191
• @​jammie-jelly made their first contribution in #​2189

Full Changelog: google/go-containerregistry@v0.20.7...v0.21.0

v0.20.8

Compare Source

googleapis/enterprise-certificate-proxy (github.com/googleapis/enterprise-certificate-proxy)

v0.3.14

Compare Source

What's Changed

• chore: Update main.go to increase proxyrequesttimeout by @​agrawalradhika-cell in #​187
• chore: Increase proxy request timeout for rsync gcloud fix by @​agrawalradhika-cell in #​188
• feat: Update version.txt to 0.3.14 by @​agrawalradhika-cell in #​189

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.13...v0.3.14

v0.3.13

Compare Source

What's Changed

• feat: support non-mtls requests as well by @​sai-sunder-s in #​185
• feat: Update version.txt to 0.3.12 by @​agrawalradhika-cell in #​183
• feat: Update version.txt to 0.3.13 by @​agrawalradhika-cell in #​186

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.12...v0.3.13

v0.3.12

Compare Source

What's Changed

• chore: Update go.mod to upgrade the go version to 1.24.11 by @​agrawalradhika-cell in #​180

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.11...v0.3.12

v0.3.11

Compare Source

What's Changed

• chore: Update version.txt to v0.3.11 by @​agrawalradhika-cell in #​176
• chore: Update logging in http_proxy to be enabled via ENABLE_ENTERPRSE_CERTIFICATE_LOGS by @​agrawalradhika-cell in #​175
• feat: Update CODEOWNERS to add Radhika and Nolan to ECP code by @​agrawalradhika-cell in #​166
• build(deps): bump golang.org/x/crypto from 0.35.0 to 0.45.0 by @​dependabot[bot] in #​161
• chore(deps): update dependency go to 1.25 by @​renovate-bot in #​144
• fix(deps): update module golang.org/x/sys to v0.40.0 by @​renovate-bot in #​145
• fix(deps): update module golang.org/x/crypto to v0.47.0 by @​renovate-bot in #​177

New Contributors

• @​dependabot[bot] made their first contribution in #​161

Full Changelog: googleapis/enterprise-certificate-proxy@0.3.10...v0.3.11

v0.3.9

Compare Source

What's Changed

• Revert "feat: Add logging for ECP such that it is enabled/disabled using ENABLE_ENTERPRISE_CERTIFICATE_LOGS flag" by @​agrawalradhika-cell in #​168
• chore: Remove logging from http_proxy to reduce noise for customers, will add them back later. by @​agrawalradhika-cell in #​169

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.8...v0.3.9

v0.3.8

Compare Source

What's Changed

• feat: Add logging for ECP such that it is enabled/disabled using ENABLE_ENTERPRISE_CERTIFICATE_LOGS flag by @​agrawalradhika-cell in #​164
• chore: Update version.txt to update version to v0.3.8 by @​agrawalradhika-cell in #​167

New Contributors

• @​agrawalradhika-cell made their first contribution in #​164

Full Changelog: googleapis/enterprise-certificate-proxy@v0.3.7...v0.3.8

jhump/protoreflect (github.com/jhump/protoreflect)

v1.18.0

Compare Source

This is expected to be the final release of this module with a v1.x version. (All subsequent releases are expected to be v2.x.)

The main change here is to insulate users from any future backwards-incompatible changes in bufbuild/protocompile. Previous releases (between 1.15 and 1.17, inclusive) depended on this module, but it hasn't yet released a stable v1.0 version, so it has occasionally been a turbulent dependency. More breaking changes are expected since it is expected to get a totally new compiler and API before it reaches v1.0. So anyone still using v1 of this repo should update to this new release before then to avoid being broken when that happens.

"github.com/jhump/protoreflect/desc/builder"

Changes/fixes:

• If resolving custom options and extensions resulted in a generated extension description created by the older v1 of protoc-gen-go, a nil-dereference panic could occur. This has been fixed. Instead, the legacy extension that would otherwise have caused a panic will now either be ignored or, if BuilderOptions.RequireInterpretedOptions is set to true, result in an error that not all options could be interpreted.
  • The older v1 has import path "github.com/golang/protobuf/protoc-gen-go". It was replaced in 2020 by the v2, which is at path "google.golang.org/protobuf/cmd/protoc-gen-go".

"github.com/jhump/protoreflect/desc/protoparse"

Changes/fixes:

• The internal compiler no longer comes from a separate Go module. Instead, this module now contains a fork of bufbuild/protocompile, which will maintain stability even when the upstream repo diverges with unstable/breaking changes. The only user-visible changes would be related to Editions support, thanks to unreleased changes in upstream that were included in this repo's fork. (See more below.)

Additions:

• This adds a field named AllowExperimentalEditions to the protoparse.Parser struct. When set to true, the parser will accept and return descriptors for files that use Edition 2024 (the only experimental edition at this time). It is experimental because it does not implement all of the rules and semantics of Edition 2024. But it does provide the ability to parse and compile files that include new language features in Edition 2024, such as visibility modifiers (export and local) as well as the option import modifier.

"github.com/jhump/protoreflect/desc/protoprint"

Changes/fixes:

• If resolving custom options and extensions resulted in a generated extension description created by the older v1 of protoc-gen-go, a nil-dereference panic could occur. This has been fixed. Instead, the legacy extension that would otherwise have caused a panic is ignored and will not be included in the printed output (since it would result in an invalid source file that could not be compiled).

letsencrypt/boulder (github.com/letsencrypt/boulder)

v0.20260309.0

Compare Source

What's Changed

• sa: improve errors from SetOrderError by @​jsha in #​8656
• test: Update from go1.25.5 and go1.25.7 to go1.25.8 and go1.26.1 by @​beautifulentropy in #​8664
• features: Small comment fix for DNSAccount01Enabled by @​beautifulentropy in #​8663
• CI: Update release jobs to use go1.25.8 and go1.26.1 by @​beautifulentropy in #​8665

Full Changelog: letsencrypt/boulder@v0.20260303.0...v0.20260309.0

v0.20260303.0

Compare Source

What's Changed

• Reduce maximum allowed valid authorization lifetime by @​aarongable in #​8648
• observer: Reduce memory usage by @​beautifulentropy in #​8649
• Remove extraneous top-level struct args to IsAnyNilOrZero by @​aarongable in #​8651
• Fix miscellaneous value/pointer receiver mismatches by @​aarongable in #​8652
• test: Update challtestsrv for dns-persist-01 by @​beautifulentropy in #​8653
• Exempt ARI renewals from on-demand blocklisting by @​aarongable in #​8655

Full Changelog: letsencrypt/boulder@v0.20260225.0...v0.20260303.0

v0.20260225.0

Compare Source

What's Changed

• build: support native architecture builds on ARM hosts by @​sheurich in #​8547
• Run go fix by @​mcpherrinm in #​8636
• release: tag based on refs/remotes/origin/main. by @​jsha in #​8640
• observer: remove TCP prober by @​jsha in #​8637
• Use context.WithoutCancel instead of context.Background by @​aarongable in #​8635
• Don't modify http.DefaultTransport by @​aarongable in #​8641
• VA: properly initialize slowRemoteTimeout by @​aarongable in #​8642
• VA: ensure wildcard hostname is lowercased by @​aarongable in #​8643
• Add blocklisting for recursive on-demand domains by @​aarongable in #​8646
• Improve error handling in admin block-key and revoke-cert by @​aarongable in #​8647

Full Changelog: letsencrypt/boulder@v0.20260223.0...v0.20260225.0

[v0.20260223.0](https://redirect.github.com/letsencrypt/boulder/releases/tag/v0.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[red-hat-konflux]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 17 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.25.1 -> 1.25.6
google.golang.org/grpc	v1.78.0 -> v1.79.1
cloud.google.com/go/kms	v1.23.2 -> v1.26.0
github.com/aws/aws-sdk-go-v2	v1.41.0 -> v1.41.3
github.com/aws/aws-sdk-go-v2/config	v1.32.5 -> v1.32.7
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	v2.7.16 -> v2.7.19
github.com/aws/aws-sdk-go-v2/service/kms	v1.49.1 -> v1.49.5
github.com/aws/aws-sdk-go-v2/service/sso	v1.30.7 -> v1.30.12
github.com/aws/aws-sdk-go-v2/service/ssooidc	v1.35.12 -> v1.35.16
github.com/aws/aws-sdk-go-v2/service/sts	v1.41.5 -> v1.41.8
github.com/aws/smithy-go	v1.24.0 -> v1.24.2
github.com/googleapis/gax-go/v2	v2.16.0 -> v2.17.0
github.com/pelletier/go-toml/v2	v2.2.3 -> v2.2.4
github.com/spf13/afero	v1.12.0 -> v1.15.0
go.opentelemetry.io/otel	v1.38.0 -> v1.41.0
go.opentelemetry.io/otel/metric	v1.38.0 -> v1.41.0
go.opentelemetry.io/otel/sdk	v1.38.0 -> v1.41.0
go.opentelemetry.io/otel/trace	v1.38.0 -> v1.41.0

File name: hack/tools/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.24 -> 1.25.0

[red-hat-konflux]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum

Command failed: go get -t ./...
go: errors parsing go.mod:
go.mod:11:2: require github.com/asaskevich/govalidator: version "v0.0.0-20250122183457-e11347878e23" invalid: go.mod has post-v0 module path "github.com/asaskevich/govalidator/v11" at revision e11347878e23

[red-hat-konflux]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.