build(deps): Bump github.com/hashicorp/vault/sdk from 0.10.0 to 0.10.1

[dependabot]

Bumps github.com/hashicorp/vault/sdk from 0.10.0 to 0.10.1.

Changelog

Sourced from github.com/hashicorp/vault/sdk's changelog.

0.10.1/0.9.7 (April 25th, 2018)

The following two items are in both 0.9.7 and 0.10.1. They only affect Enterprise, and as such 0.9.7 is an Enterprise-only release:

SECURITY:

• EGPs: A regression affecting 0.9.6 and 0.10.0 causes EGPs to not be applied correctly if an EGP is updated in a running Vault after initial write or after it is loaded on unseal. This has been fixed.

BUG FIXES:

• Fixed an upgrade issue affecting performance secondaries when migrating from a version that did not include Identity to one that did.

All other content in this release is for 0.10.1 only.

DEPRECATIONS/CHANGES:

• vault kv and Vault versions: In 0.10.1 some issues with vault kv against v1 K/V engine mounts are fixed. However, using 0.10.1 for both the server and CLI versions is required.
• Mount information visibility: Users that have access to any path within a mount can now see information about that mount, such as its type and options, via some API calls.
• Identity and Local Mounts: Local mounts would allow creating Identity entities but these would not be able to be used successfully (even locally) in replicated scenarios. We have now disallowed entities and groups from being created for local mounts in the first place.

FEATURES:

• X-Forwarded-For support: X-Forwarded-For headers can now be used to set the client IP seen by Vault. See the TCP listener configuration page for details.
• CIDR IP Binding for Tokens: Tokens now support being bound to specific CIDR(s) for usage. Currently this is implemented in Token Roles; usage can be expanded to other authentication backends over time.
• vault kv patch command: A new kv patch helper command that allows modifying only some values in existing data at a K/V path, but uses check-and-set to ensure that this modification happens safely.
• AppRole Local Secret IDs: Roles can now be configured to generate secret IDs local to the cluster. This enables performance secondaries to generate and consume secret IDs without contacting the primary.
• AES-GCM Support for PKCS#11 [BETA] (Enterprise): For supporting HSMs, AES-GCM can now be used in lieu of AES-CBC/HMAC-SHA256. This has currently only been fully tested on AWS CloudHSM.
• Auto Unseal/Seal Wrap Key Rotation Support (Enterprise): Auto Unseal

... (truncated)

Commits

• 756fdc4 Cut version 0.10.1
• 5953e49 changelog++
• 14541bd Prep for 0.10.1
• 4a8063a Merge pull request #4447 from hashicorp/identity-upgrade-nil-check
• ffbc42e Merge branch 'master-oss' into identity-upgrade-nil-check
• 60bc514 Update CHANGELOG.md
• 5bf6e8b don't check capabilities before rendering the credentials route (#4446)
• a85b30b Add identity store nil checks
• 820fea5 changelog++
• 47ca22c Website download page update (#4444)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified lines are covered by tests ✅

Comparison is base (ef5cb46) 84.88% compared to head (c405350) 84.88%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main      #20   +/-   ##
=======================================
  Coverage   84.88%   84.88%           
=======================================
  Files          15       15           
  Lines        1105     1105           
=======================================
  Hits          938      938           
  Misses        120      120           
  Partials       47       47           

Flag	Coverage Δ
unittests	84.88% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.