chore(deps): update all dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
actions/cache	action	patch	v4.0.0 -> v4.0.2
actions/dependency-review-action	action	minor	v4.0.0 -> v4.2.5
github.com/golang/protobuf	require	patch	v1.5.3 -> v1.5.4
github.com/golangci/golangci-lint	require	minor	v1.55.2 -> v1.57.2
github/codeql-action	action	minor	v3.23.1 -> v3.24.10
step-security/harden-runner	action	minor	v2.6.1 -> v2.7.0

---

Release Notes

actions/cache (actions/cache)

v4.0.2

Compare Source

v4.0.1

Compare Source

What's Changed

• Update README.md by @​yacaovsnc in https://github.com/actions/cache/pull/1304
• Update examples by @​yacaovsnc in https://github.com/actions/cache/pull/1305
• Update actions/cache publish flow by @​bethanyj28 in https://github.com/actions/cache/pull/1340
• Update @​actions/cache by @​bethanyj28 in https://github.com/actions/cache/pull/1341

New Contributors

• @​yacaovsnc made their first contribution in https://github.com/actions/cache/pull/1304

Full Changelog: actions/cache@v4...v4.0.1

actions/dependency-review-action (actions/dependency-review-action)

v4.2.5: 4.2.5

Compare Source

What's Changed

• Fixed a bug where some configuration options in external files were not being properly picked up -- https://github.com/actions/dependency-review-action/pull/722
• Bump eslint from 8.56.0 to 8.57.0

Full Changelog: actions/dependency-review-action@v4.2.4...v4.2.5

v4.2.4

Compare Source

What's Changed

Fixed a bug in the output of OpenSSF cards for GitHub Actions.

New Contributors

• @​sporkmonger made their first contribution in https://github.com/actions/dependency-review-action/pull/721

Full Changelog: actions/dependency-review-action@v4.2.3...v4.2.4

v4.2.3: 4.2.3

Compare Source

What's Changed

• Set comment as output by @​jsoref in https://github.com/actions/dependency-review-action/pull/698
• Add support for calculating OpenSSF Scorecards by @​jhutchings1 in https://github.com/actions/dependency-review-action/pull/709
• Add outputs for the changes data by @​laughedelic in https://github.com/actions/dependency-review-action/pull/707

New Contributors

• @​jhutchings1 made their first contribution in https://github.com/actions/dependency-review-action/pull/709
• @​laughedelic made their first contribution in https://github.com/actions/dependency-review-action/pull/707

Full Changelog: actions/dependency-review-action@v4.1.3...v4.2.3

v4.1.3: 4.1.3

Compare Source

Fixes a bug in 4.1.2 that would introduce comments in every pull request, regardless of the user's configuration (see https://github.com/actions/dependency-review-action/issues/697).

Full Changelog: actions/dependency-review-action@v4.1.2...v4.1.3

v4.1.2: 4.1.2

Compare Source

What's Changed

• Expose dependency comment content by @​jsoref in https://github.com/actions/dependency-review-action/pull/696

Full Changelog: actions/dependency-review-action@v4.1.1...v4.1.2

v4.1.1: 4.1.1

Compare Source

What's Changed

• Bump undici to fix GHSA-wqq4-5wpv-mx2g
• Bump @​types/node from 20.11.17 to 20.11.19 by @​dependabot in https://github.com/actions/dependency-review-action/pull/693

Full Changelog: actions/dependency-review-action@v4.1.0...v4.1.1

v4.1.0: 4.1.0

Compare Source

What's Changed

• Add warn-only by @​tgrall in https://github.com/actions/dependency-review-action/pull/432

Added a new configuration option (warn-only, boolean) that makes the action always succeed while still displaying found vulnerabilities in the log.

• Create stale.yaml by @​jonjanego in https://github.com/actions/dependency-review-action/pull/671
• Use manual codeql config by @​juxtin in https://github.com/actions/dependency-review-action/pull/678
• Multiple dependency updates (see the changelog below for more information)

New Contributors

• @​jonjanego made their first contribution in https://github.com/actions/dependency-review-action/pull/671
• @​tgrall made their first contribution in https://github.com/actions/dependency-review-action/pull/432

Full Changelog: actions/dependency-review-action@v4...v4.1.0

golang/protobuf (github.com/golang/protobuf)

v1.5.4

Compare Source

Notable changes

• update descriptor.proto to latest version

golangci/golangci-lint (github.com/golangci/golangci-lint)

v1.57.2

Compare Source

v1.57.1

Compare Source

Changelog

• 87b6bf1 build(deps): bump github.com/golangci/plugin-module-register from 0.1.0 to 0.1.1 (#​4549)
• 921d535 build(deps): bump github.com/pelletier/go-toml/v2 from 2.1.1 to 2.2.0 (#​4548)
• cd890db fix: filter invalid issues before other processors (#​4552)

v1.57.0

Compare Source

v1.56.2

Compare Source

1. updated linters
   • go-critic: from 0.11.0 to 0.11.1
   • gosec: from 2.18.2 to 2.19.0
   • testifylint: from 1.1.1 to 1.1.2
   • usestdlibvars: from 1.24.0 to 1.25.0
   • wsl: from 4.2.0 to 4.2.1
2. misc.
   • Fix missing version in Docker image
3. Documentation
   • Explain the limitation of new-from-rev and new-from-patch

v1.56.1

Compare Source

1. updated linters
   • errcheck: from 1.6.3 to 1.7.0
   • govet: disable loopclosure with go1.22
   • revive: from 1.3.6 to 1.3.7
   • testifylint: from 1.1.0 to 1.1.1

v1.56.0

Compare Source

1. new linters
   • spancheck: https://github.com/jjti/go-spancheck
2. updated linters
   • depguard: from 2.1.0 to 2.2.0
   • exhaustive: from 0.11.0 to 0.12.0
   • exhaustruct: from 3.1.0 to 3.2.0
   • gci: from 0.11.2 to 0.12.1
   • ginkgolinter: from 0.14.1 to 0.15.2
   • go-check-sumtype: from 0.1.3 to 0.1.4
   • go-critic: from 0.9.0 to 0.11.0
   • go-errorlint: from 1.4.5 to 1.4.8
   • go-spancheck: from 0.4.2 to 0.5.2
   • goconst: from 1.6.0 to 1.7.0
   • godot: from 1.4.15 to 1.4.16
   • gofumpt: from 0.5.0 to 0.6.0
   • inamedparam: from 0.1.2 to 0.1.3
   • ineffassign: from 0.0.0-20230610083614-0e73809eb601 to 0.1.0
   • ireturn: from 0.2.2 to 0.3.0
   • misspell: add mode option
   • musttag: from v0.7.2 to v0.8.0
   • paralleltest: from 1.0.8 to 1.0.9
   • perfsprint: from 0.2.0 to 0.6.0
   • protogetter: from 0.2.3 to 0.3.4
   • revive: from 1.3.4 to 1.3.6
   • sloglint: add static-msg option
   • sloglint: from 0.1.2 to 0.4.0
   • testifylint: from 0.2.3 to 1.1.0
   • unparam: from 2022122-7455f1af531d to 2024010-c549a3470d14
   • whitespace: update after moving to the analysis package
   • wsl: from 3.4.0 to 4.2.0
   • zerologlint: from 0.1.3 to 0.1.5
3. misc.
   • 🎉 go1.22 support
   • Implement stats per linter with a flag
   • Make versioning inside Docker image consistent with binaries
   • Parse Go RC version
4. Documentation
   • Fix noctx description
   • Add missing fields to .golangci.reference.yml
   • Improve .golangci.reference.yml defaults
   • typecheck: improve FAQ
   • exhaustruct: note that struct regular expressions are expected to match the entire package/name/structname
   • wrapcheck: adjust ignoreSigs to new defaults

Important

testifylint has breaking changes about enabling/disabling checks:

• If you were using the option enable with a filtered list of checks, you should either add disable-all: true (1) or use disable field (2).

Example (1)

  testifylint:
    disable-all: true
    enable:
      - bool-compare
      - compares
      - empty
      - error-is-as
      - error-nil
      - expected-actual
      - go-require
      - float-compare
      - len
      - nil-compare
      - require-error

- suite-dont-use-pkg

      - suite-extra-assert-call
      - suite-thelper
```

```yml

Example (2)

  testifylint:
    disable:
      - suite-dont-use-pkg
```

github/codeql-action (github/codeql-action)

v3.24.10

Compare Source

v3.24.9

Compare Source

v3.24.8

Compare Source

v3.24.7

Compare Source

v3.24.6

Compare Source

v3.24.5

Compare Source

v3.24.4

Compare Source

v3.24.3

Compare Source

v3.24.2

Compare Source

v3.24.1

Compare Source

v3.24.0

Compare Source

v3.23.2

Compare Source

step-security/harden-runner (step-security/harden-runner)

v2.7.0

Compare Source

What's Changed

Release 2.7.0 by @​varunsh-coder and @​h0x0er in https://github.com/step-security/harden-runner/pull/376
This release:

1. Updates the node runtime to node20
2. Adds capability to inspect outbound HTTPS traffic on GitHub-hosted and self-hosted VM runners

Full Changelog: step-security/harden-runner@v2...v2.7.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.