Bump the go-dependencies group with 7 updates

[dependabot]

Bumps the go-dependencies group with 7 updates:

Package	From	To
github.com/prometheus/client_golang	1.22.0	1.23.0
golang.org/x/time	0.9.0	0.12.0
github.com/golang-jwt/jwt/v5	5.2.3	5.3.0
github.com/aws/aws-sdk-go-v2	1.36.5	1.37.1
github.com/aws/aws-sdk-go-v2/config	1.29.17	1.30.2
github.com/aws/aws-sdk-go-v2/credentials	1.17.70	1.18.2
github.com/aws/aws-sdk-go-v2/service/ecr	1.45.1	1.47.1

Updates github.com/prometheus/client_golang from 1.22.0 to 1.23.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.23.0 - 2025-07-30

• [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. #1812
• [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix #1766
• [FEATURE] Add exemplars for native histograms #1686
• [ENHANCEMENT] exp/api: Bubble up status code from writeResponse #1823
• [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 #1833
• [BUGFIX] exp/api: client prompt return on context cancellation #1729

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.23.0 / 2025-07-30

• [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. #1812
• [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix #1766
• [FEATURE] Add exemplars for native histograms #1686
• [ENHANCEMENT] exp/api: Bubble up status code from writeResponse #1823
• [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 #1833
• [BUGFIX] exp/api: client prompt return on context cancellation #1729

Commits

• e4b2208 Cut v1.23.0 (#1848)
• d9492af cut v1.23.0-rc.1 (#1842)
• aeae8a0 Cut v1.23.0-rc.0 (#1837)
• b157309 Update common Prometheus files (#1832)
• a704e28 build(deps): bump the github-actions group with 3 updates (#1826)
• c774311 Fix errNotImplemented reference (#1835)
• db4db7b Update runtime metrics for Go v1.23 and v1.24 (#1833)
• 99d380e Update common Prometheus files (#1831)
• f3ef320 Merge pull request #1828 from prometheus/dependabot/go_modules/exp/github.com...
• 520c91a build(deps): bump github.com/prometheus/common in /exp
• Additional commits viewable in compare view

Updates golang.org/x/time from 0.9.0 to 0.12.0

Commits

• 1616a7f rate: skip time.Now call in Sometimes.Do unless necessary
• 0c50ed8 all: upgrade go directive to at least 1.23.0 [generated]
• 66520f6 rate: simplify function advance only returns new Tokens to caller
• 2c6c5a2 rate: prevent overflows when calculating durationFromTokens
• See full diff in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.2.3 to 5.3.0

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.3.0

This release is almost identical to to v5.2.3 but now correctly indicates Go 1.21 as minimum requirement.

What's Changed

• Create CODEOWNERS by @​oxisto in golang-jwt/jwt#449
• Bump Go version to indicate correct minimum requirement by @​oxisto in golang-jwt/jwt#452

Full Changelog: golang-jwt/jwt@v5.2.3...v5.3.0

Commits

• e9547a1 Bump Go version to indicate correct minimum requirement (#452)
• 3839817 Create CODEOWNERS (#449)
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2 from 1.36.5 to 1.37.1

Commits

• 67148db Release 2025-07-30
• b21029e Regenerated Clients
• 6c2dde6 Update endpoints model
• 7b710ac Update API model
• 179df1c update CONTRIBUTING.md
• 456e51a fix changelog
• 4ce8fec Join errors when retry token is unavailable (#3121)
• 1eea3db Release 2025-07-29
• b63d556 Regenerated Clients
• 1258955 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.29.17 to 1.30.2

Commits

• 383fd26 Release 2024-07-10
• 4a055f9 Regenerated Clients
• e345795 Update endpoints model
• 52a10ac Update API model
• adab0de remove unused jmespath dependency from main module (#2707)
• 0e07cc8 Release 2024-07-09
• 5e35834 Regenerated Clients
• a2a28a1 Update endpoints model
• f548973 Update API model
• e7aad56 Release 2024-07-08
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.17.70 to 1.18.2

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/credentials's changelog.

Release (2022-11-17)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/amplify: v1.12.0
  • Feature: Adds a new value (WEB_COMPUTE) to the Platform enum that allows customers to create Amplify Apps with Server-Side Rendering support.
• github.com/aws/aws-sdk-go-v2/service/appflow: v1.19.0
  • Feature: AppFlow simplifies the preparation and cataloging of SaaS data into the AWS Glue Data Catalog where your data can be discovered and accessed by AWS analytics and ML services. AppFlow now also supports data field partitioning and file size optimization to improve query performance and reduce cost.
• github.com/aws/aws-sdk-go-v2/service/appsync: v1.16.0
  • Feature: This release introduces the APPSYNC_JS runtime, and adds support for JavaScript in AppSync functions and AppSync pipeline resolvers.
• github.com/aws/aws-sdk-go-v2/service/databasemigrationservice: v1.22.0
  • Feature: Adds support for Internet Protocol Version 6 (IPv6) on DMS Replication Instances
• github.com/aws/aws-sdk-go-v2/service/ec2: v1.71.0
  • Feature: This release adds a new optional parameter "privateIpAddress" for the CreateNatGateway API. PrivateIPAddress will allow customers to select a custom Private IPv4 address instead of having it be auto-assigned.
• github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2: v1.18.25
  • Documentation: Provides new target group attributes to turn on/off cross zone load balancing and configure target group health for Network Load Balancers and Application Load Balancers. Provides improvements to health check configuration for Network Load Balancers.
• github.com/aws/aws-sdk-go-v2/service/emrserverless: v1.4.0
  • Feature: Adds support for AWS Graviton2 based applications. You can now select CPU architecture when creating new applications or updating existing ones.
• github.com/aws/aws-sdk-go-v2/service/ivschat: v1.1.0
  • Feature: Adds LoggingConfiguration APIs for IVS Chat - a feature that allows customers to store and record sent messages in a chat room to S3 buckets, CloudWatch logs, or Kinesis firehose.
• github.com/aws/aws-sdk-go-v2/service/lambda: v1.25.0
  • Feature: Add Node 18 (nodejs18.x) support to AWS Lambda.
• github.com/aws/aws-sdk-go-v2/service/personalize: v1.22.0
  • Feature: This release provides support for creation and use of metric attributions in AWS Personalize
• github.com/aws/aws-sdk-go-v2/service/polly: v1.20.0
  • Feature: Add two new neural voices - Ola (pl-PL) and Hala (ar-AE).
• github.com/aws/aws-sdk-go-v2/service/rum: v1.8.0
  • Feature: CloudWatch RUM now supports custom events. To use custom events, create an app monitor or update an app monitor with CustomEvent Status as ENABLED.
• github.com/aws/aws-sdk-go-v2/service/s3control: v1.26.0
  • Feature: Added 34 new S3 Storage Lens metrics to support additional customer use cases.
• github.com/aws/aws-sdk-go-v2/service/secretsmanager: v1.16.7
  • Documentation: Documentation updates for Secrets Manager.
• github.com/aws/aws-sdk-go-v2/service/securityhub: v1.24.0
  • Feature: Added SourceLayerArn and SourceLayerHash field for security findings. Updated AwsLambdaFunction Resource detail
• github.com/aws/aws-sdk-go-v2/service/servicecatalogappregistry: v1.15.0
  • Feature: This release adds support for tagged resource associations, which allows you to associate a group of resources with a defined resource tag key and value to the application.
• github.com/aws/aws-sdk-go-v2/service/sts: v1.17.4
  • Documentation: Documentation updates for AWS Security Token Service.
• github.com/aws/aws-sdk-go-v2/service/textract: v1.18.0
  • Feature: This release adds support for specifying and extracting information from documents using the Signatures feature within Analyze Document API
• github.com/aws/aws-sdk-go-v2/service/workspaces: v1.27.0
  • Feature: The release introduces CreateStandbyWorkspaces, an API that allows you to create standby WorkSpaces associated with a primary WorkSpace in another Region. DescribeWorkspaces now includes related WorkSpaces properties. DescribeWorkspaceBundles and CreateWorkspaceBundle now return more bundle details.

Release (2022-11-16)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

... (truncated)

Commits

• c38daed Release 2022-11-17
• 8166439 Regenerated Clients
• 9a8dc62 Update endpoints model
• cb64cae Update API model
• 163bba0 Release 2022-11-16
• 51ff054 Regenerated Clients
• 76bd751 Update endpoints model
• 00c5ca0 Update API model
• 0b04fed Release 2022-11-15
• f9c367a Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ecr from 1.45.1 to 1.47.1

Commits

• f3ea5b8 Release 2023-11-30
• bb44374 Regenerated Clients
• 1fd796c Update SDK's smithy-go dependency to v1.18.1
• 5e061f0 Update endpoints model
• e6de9ae Update API model
• a88ff68 Release 2023-11-29
• 023df35 Regenerated Clients
• 41f99ac Update SDK's smithy-go dependency to v1.18.0
• 72478fb Update API model
• 4c4b852 feat: add Options() getter to service clients (#2398)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions