[release_v1]: Bump the all-modules group in /sda-download with 8 updates

[dependabot]

Bumps the all-modules group in /sda-download with 8 updates:

Package	From	To
github.com/aws/aws-sdk-go	1.55.5	1.55.6
github.com/dgraph-io/ristretto	0.1.1	0.2.0
github.com/lestrrat-go/jwx/v2	2.1.1	2.1.4
github.com/neicnordic/crypt4gh	1.12.0	1.14.0
github.com/stretchr/testify	1.9.0	1.10.0
golang.org/x/crypto	0.26.0	0.33.0
google.golang.org/grpc	1.65.0	1.70.0
google.golang.org/protobuf	1.34.2	1.35.2

Updates github.com/aws/aws-sdk-go from 1.55.5 to 1.55.6

Release notes

Sourced from github.com/aws/aws-sdk-go's releases.

Release v1.55.6 (2025-01-15)

SDK Bugs

• Fix broken printf for go1.24

Commits

• e1db430 release v1.55.6 (2025-01-15) (#5341)
• 5ab6103 changelog
• 394e0e3 Merge pull request #5340 from djedward/main
• 19d98e3 Fix improper use of Printf-style functions
• 7112c0a Merge pull request #5325 from ashishdhingra/user/ashdhin/IssueTemplateRegress...
• 8d6a0f9 chore: Modified bug issue template to add checkbox to report potential regres...
• 02c1f72 Update PULL_REQUEST_TEMPLATE.md
• See full diff in compare view

Updates github.com/dgraph-io/ristretto from 0.1.1 to 0.2.0

Release notes

Sourced from github.com/dgraph-io/ristretto's releases.

v0.2.0

What's Changed

*`docs(readme): Use new Wait method by @​angadn in dgraph-io/ristretto#327

• docs: format example on readme by @​rfyiamcool in dgraph-io/ristretto#339
• Fix flakes in TestDropUpdates by @​evanj in dgraph-io/ristretto#334
• docs(Cache): document Wait, clarify Get by @​evanj in dgraph-io/ristretto#333
• chore: fix typo error by @​proost in dgraph-io/ristretto#341
• fix: support compilation to wasip1 by @​achille-roussel in dgraph-io/ristretto#344
• remove glog dependency by @​jhawk28 in dgraph-io/ristretto#350
• add config for cleanup ticker duration by @​singhvikash11 in dgraph-io/ristretto#342
• fix(OnEvict): Set missing Expiration field on evicted items by @​0x1ee7 in dgraph-io/ristretto#345
• uint32 -> uint64 in slice methods by @​mocurin in dgraph-io/ristretto#323
• fix: cleanupTicker not being stopped by @​IlyaFloppy in dgraph-io/ristretto#343

Full Changelog: hypermodeinc/ristretto@v0.1.1...v0.2.0

Changelog

Sourced from github.com/dgraph-io/ristretto's changelog.

[v0.2.0] - 2024-10-06

Added

• fix: support compilation to wasip1 by @​achille-roussel
• add config for cleanup ticker duration by @​singhvikash11

Fixed

• docs(readme): Use new Wait method by @​angadn
• docs: format example on readme by @​rfyiamcool
• Fix flakes in TestDropUpdates by @​evanj
• docs(Cache): document Wait, clarify Get by @​evanj
• chore: fix typo error by @​proost
• remove glog dependency by @​jhawk28
• fix(OnEvict): Set missing Expiration field on evicted items by @​0x1ee7
• uint32 -> uint64 in slice methods by @​mocurin
• fix: cleanupTicker not being stopped by @​IlyaFloppy

Full Changelog: hypermodeinc/ristretto@v0.1.1...v0.2.0

Commits

• 1854617 minor repo cleanup (#352)
• 9144662 stop cleanupTicker while closing cache (#343)
• c00b352 uint32 to uint64 in slice methods (#323)
• e6d62cb chore(ci): separate out coverage report workflow (#353)
• f0e7027 set missing Expiration field on evicted items (#345)
• e8dc5b0 add config for cleanup ticker duration (#342)
• c5789d6 update golangci config and cleanup repo (#351)
• bdcf5e9 remove glog dependency (#350)
• 3f6b44a fix: support compilation to wasip1 (#344)
• c73d585 chore: fix typo error (#341)
• Additional commits viewable in compare view

Updates github.com/lestrrat-go/jwx/v2 from 2.1.1 to 2.1.4

Release notes

Sourced from github.com/lestrrat-go/jwx/v2's releases.

v2.1.4

What's Changed

• Bump pozil/auto-assign-issue from 2.0.0 to 2.0.1 by @​dependabot in lestrrat-go/jwx#1237
• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by @​dependabot in lestrrat-go/jwx#1243
• Bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 by @​dependabot in lestrrat-go/jwx#1268
• Bump pozil/auto-assign-issue from 2.0.1 to 2.1.2 by @​dependabot in lestrrat-go/jwx#1260
• Bump golang.org/x/crypto from 0.29.0 to 0.32.0 by @​dependabot in lestrrat-go/jwx#1262
• Bump actions/stale from 9.0.0 to 9.1.0 by @​dependabot in lestrrat-go/jwx#1271
• [v2] Fixes to work with go1.24 by @​lestrrat in lestrrat-go/jwx#1298
• autodoc updates by @​github-actions in lestrrat-go/jwx#1301
• Bump pozil/auto-assign-issue from 2.1.2 to 2.2.0 by @​dependabot in lestrrat-go/jwx#1276
• Develop v2 actions cache by @​lestrrat in lestrrat-go/jwx#1302
• Bump golangci/golangci-lint-action from 6.2.0 to 6.5.0 by @​dependabot in lestrrat-go/jwx#1289
• Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by @​dependabot in lestrrat-go/jwx#1291

Full Changelog: lestrrat-go/jwx@v2.1.3...v2.1.4

v2.1.3

What's Changed

• Remove non-applicable comment by @​lestrrat in lestrrat-go/jwx#1223
• Bump golang.org/x/crypto from 0.28.0 to 0.29.0 by @​dependabot in lestrrat-go/jwx#1232
• Change random big value to math.MaxInt by @​lestrrat in lestrrat-go/jwx#1242

Full Changelog: lestrrat-go/jwx@v2.1.2...v2.1.3

v2.1.2

What's Changed

• Bump golang.org/x/crypto from 0.25.0 to 0.26.0 by @​dependabot in lestrrat-go/jwx#1168
• Fix document of how to parse PEM via CLI by @​kg0r0 in lestrrat-go/jwx#1174
• Wrap the errors from functions called within ParseRequest by @​lestrrat in lestrrat-go/jwx#1176
• V2 modernize workflows by @​lestrrat in lestrrat-go/jwx#1182
• Dependabot fixes for v2 by @​lestrrat in lestrrat-go/jwx#1183
• Use variable by @​lestrrat in lestrrat-go/jwx#1186
• Bump golang.org/x/crypto from 0.26.0 to 0.27.0 by @​dependabot in lestrrat-go/jwx#1177
• Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by @​dependabot in lestrrat-go/jwx#1199
• Bump golang.org/x/crypto from 0.27.0 to 0.28.0 by @​dependabot in lestrrat-go/jwx#1208
• update comments to include iat by @​cscochris in lestrrat-go/jwx#1216

New Contributors

• @​kg0r0 made their first contribution in lestrrat-go/jwx#1174
• @​cscochris made their first contribution in lestrrat-go/jwx#1216

Full Changelog: lestrrat-go/jwx@v2.1.1...v2.1.2

Changelog

Sourced from github.com/lestrrat-go/jwx/v2's changelog.

v2.1.4 Feb 25 2025

• Update code to work with go1.24
• Update tests to work with recent latchset/jose
• Fix build pipeline to work with latest golangci-lint

v2.1.3 24 Nov 2024

• [jwe] Test has been fixed to work under 32-bit systems.

v2.1.2 25 Oct 2024

• [jwt] jwt.ParseRequest now uses %w to embed errors returned from jwt.ParseHeader, jwt.ParseCookie, and jwt.ParseForm, allowing users to correctly call errors.Is(err, jwt.ErrTokenExpired) and the like. Previously the error returned from jwt.ParseRequest showed in human readable format what the problem was, but it was not programmatically possible to determine the error type using errors.Is (#1175)

Commits

• de34730 Merge branch 'develop/v2' into v2
• b062940 Update Changes
• 70941e8 Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 (#1291)
• f02092e Bump golangci/golangci-lint-action from 6.2.0 to 6.5.0 (#1289)
• f3738cb Develop v2 actions cache (#1302)
• 66b0d7e Bump pozil/auto-assign-issue from 2.1.2 to 2.2.0 (#1276)
• 15393b1 autodoc updates (#1301)
• a3cd476 [v2] Fixes to work with go1.24 (#1298)
• dc437b4 Bump actions/stale from 9.0.0 to 9.1.0 (#1271)
• 8337eaa Bump golang.org/x/crypto from 0.29.0 to 0.32.0 (#1262)
• Additional commits viewable in compare view

Updates github.com/neicnordic/crypt4gh from 1.12.0 to 1.14.0

Release notes

Sourced from github.com/neicnordic/crypt4gh's releases.

v1.14.0

Changelog

• 2ae276982f6a2db300fe8265552d126086a22ca5 Merge pull request #188 from neicnordic/Feature/go_version_1.24

v1.13.0

Changelog

• d38ba1d66aabdc38f84ba949deb7b1b5a4f4e8fe remove debugging stuff

Commits

• 2ae2769 Merge pull request #188 from neicnordic/Feature/go_version_1.24
• cd1397d Bump version
• 0db135f Update Go to version 1.24
• 04547f7 Bump goreleaser/goreleaser-action from 6.1.0 to 6.2.1
• 5bdde6c Bump golangci/golangci-lint-action from 6.2.0 to 6.5.0
• ba24a8f update version
• 756fef7 Bump the all-modules group with 2 updates
• b52bb41 Merge pull request #182 from neicnordic/dependabot/github_actions/codecov/cod...
• 0058403 Bump codecov/codecov-action from 5.1.2 to 5.3.1
• 7b0648a Merge pull request #181 from neicnordic/dependabot/github_actions/golangci/go...
• Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.9.0 to 1.10.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.10.0

What's Changed

Functional Changes

• Add PanicAssertionFunc by @​fahimbagar in stretchr/testify#1337
• assert: deprecate CompareType by @​dolmen in stretchr/testify#1566
• assert: make YAML dependency pluggable via build tags by @​dolmen in stretchr/testify#1579
• assert: new assertion NotElementsMatch by @​hendrywiranto in stretchr/testify#1600
• mock: in order mock calls by @​ReyOrtiz in stretchr/testify#1637
• Add assertion for NotErrorAs by @​palsivertsen in stretchr/testify#1129
• Record Return Arguments of a Call by @​jayd3e in stretchr/testify#1636
• assert.EqualExportedValues: accepts everything by @​redachl in stretchr/testify#1586

Fixes

• assert: make tHelper a type alias by @​dolmen in stretchr/testify#1562
• Do not get argument again unnecessarily in Arguments.Error() by @​TomWright in stretchr/testify#820
• Fix time.Time compare by @​myxo in stretchr/testify#1582
• assert.Regexp: handle []byte array properly by @​kevinburkesegment in stretchr/testify#1587
• assert: collect.FailNow() should not panic by @​marshall-lee in stretchr/testify#1481
• mock: simplify implementation of FunctionalOptions by @​dolmen in stretchr/testify#1571
• mock: caller information for unexpected method call by @​spirin in stretchr/testify#1644
• suite: fix test failures by @​stevenh in stretchr/testify#1421
• Fix issue #1662 (comparing infs should fail) by @​ybrustin in stretchr/testify#1663
• NotSame should fail if args are not pointers #1661 by @​sikehish in stretchr/testify#1664
• Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by @​sikehish in stretchr/testify#1667
• fix: compare functional option names for indirect calls by @​arjun-1 in stretchr/testify#1626

Documantation, Build & CI

• .gitignore: ignore "go test -c" binaries by @​dolmen in stretchr/testify#1565
• mock: improve doc by @​dolmen in stretchr/testify#1570
• mock: fix FunctionalOptions docs by @​snirye in stretchr/testify#1433
• README: link out to the excellent testifylint by @​brackendawson in stretchr/testify#1568
• assert: fix typo in comment by @​JohnEndson in stretchr/testify#1580
• Correct the EventuallyWithT and EventuallyWithTf example by @​JonCrowther in stretchr/testify#1588
• CI: bump softprops/action-gh-release from 1 to 2 by @​dependabot in stretchr/testify#1575
• mock: document more alternatives to deprecated AnythingOfTypeArgument by @​dolmen in stretchr/testify#1569
• assert: Correctly document EqualValues behavior by @​brackendawson in stretchr/testify#1593
• fix: grammar in godoc by @​miparnisari in stretchr/testify#1607
• .github/workflows: Run tests for Go 1.22 by @​HaraldNordgren in stretchr/testify#1629
• Document suite's lack of support for t.Parallel by @​brackendawson in stretchr/testify#1645
• assert: fix typos in comments by @​alexandear in stretchr/testify#1650
• mock: fix doc comment for NotBefore by @​alexandear in stretchr/testify#1651
• Generate better comments for require package by @​Neokil in stretchr/testify#1610
• README: replace Testify V2 notice with @​dolmen's V2 manifesto by @​hendrywiranto in stretchr/testify#1518

New Contributors

• @​fahimbagar made their first contribution in stretchr/testify#1337
• @​TomWright made their first contribution in stretchr/testify#820
• @​snirye made their first contribution in stretchr/testify#1433
• @​myxo made their first contribution in stretchr/testify#1582
• @​JohnEndson made their first contribution in stretchr/testify#1580

... (truncated)

Commits

• 89cbdd9 Merge pull request #1626 from arjun-1/fix-functional-options-diff-indirect-calls
• 07bac60 Merge pull request #1667 from sikehish/flaky
• 716de8d Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI
• 118fb83 NotSame should fail if args are not pointers #1661 (#1664)
• 7d99b2b attempt 2
• 05f87c0 more similar
• ea7129e better fmt
• a1b9c9e Merge pull request #1663 from ybrustin/master
• 8302de9 Merge branch 'master' into master
• 89352f7 Merge pull request #1518 from hendrywiranto/adjust-readme-remove-v2
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.26.0 to 0.33.0

Commits

• 9290511 go.mod: update golang.org/x dependencies
• fa5273e x509roots/fallback: update bundle
• a8ea4be ssh: add ServerConfig.PreAuthConnCallback, ServerPreAuthConn (banner) interface
• 71d3a4c acme: support challenges that require the ACME client to send a non-empty JSO...
• 8929309 go.mod: update golang.org/x dependencies
• 4a75ba5 all: make function and struct comments match the names
• b4f1988 ssh: make the public key cache a 1-entry FIFO cache
• 7042ebc openpgp/clearsign: just use rand.Reader in tests
• 3e90321 go.mod: update golang.org/x dependencies
• 8c4e668 x509roots/fallback: update bundle
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.65.0 to 1.70.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.70.0

Behavior Changes

• client: reject service configs containing an invalid retryPolicy in accordance with gRFCs A21 and A6. (#7905)
  • Note that this is a potential breaking change for some users using an invalid configuration, but continuing to allow this behavior would violate our cross-language compatibility requirements.

New Features

• xdsclient: fallback to a secondary management server (if specified in the bootstrap configuration) when the primary is down is enabled by default. Can be disabled by setting the environment variable GRPC_EXPERIMENTAL_XDS_FALLBACK to false. (#7949)
• experimental/credentials: experimental transport credentials are added which don't enforce ALPN. (#7980)
  • These credentials will be removed in an upcoming grpc-go release. Users must not rely on these credentials directly. Instead, they should either vendor a specific version of gRPC or copy the relevant credentials into their own codebase if absolutely necessary.

Bug Fixes

• xds: fix a possible deadlock that happens when both the client application and the xDS management server (responsible for configuring the client) are using the xds:/// scheme in their target URIs. (#8011)

Performance

• server: for unary requests, free raw request message data as soon as parsing is finished instead of waiting until the method handler returns. (#7998)
  • Special Thanks: @​lqs

Documentation

• examples/features/gracefulstop: add example to demonstrate server graceful stop. (#7865)

Release 1.69.4

Bug Fixes

• rbac: fix support for :path header matchers, which would previously never successfully match (#7965).

Documentation

• examples/features/csm_observability: update example client and server to use the helloworld service instead of echo service (#7945).

Release 1.69.3 was accidentally tagged on the master branch and will be deleted. Please update to 1.69.4 instead.

Release 1.69.2

Bug Fixes

• stats/experimental: add type aliases for symbols (Metrics/etc) that were moved to the stats package (#7929).
• client: set user-agent string to the correct version.

Release 1.69.0

Known Issues

• The recently added grpc.NewClient function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (#7556)

New Features

• stats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (#7874)
• xdsclient: add support to fallback to lower priority servers when higher priority ones are down (#7701)
• dns: Add support for link local IPv6 addresses (#7889)
• The new experimental pickfirst LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in RFC-8305 section 4, to attempt connections to multiple backends concurrently. The experimental pickfirst policy can be enabled by setting the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST to true. (#7725, #7742)

... (truncated)

Commits

• 98a0092 Change version to 1.70.0 (#7984)
• bf380de Cherrypick #7998, #8011, #8010 into 1.70.x (#8028)
• 54b3eb9 experimental/credentials: Add credentials that don't enforce ALPN (#7980) (#8...
• 62b9185 clustetresolver: Copy endpoints.Addresses slice from DNS updates to avoid dat...
• 724f450 examples/features/csm_observability: use helloworld client and server instead...
• e8d5feb rbac: add method name to :path in headers (#7965)
• e912015 cleanup: Fix usages of non-constant format strings (#7959)
• 681334a cleanup: replace dial with newclient (#7943)
• 063d352 internal/resolver: introduce a new resolver to handle target URI and proxy ad...
• 10c7e13 outlierdetection: Support health listener for ejection updates (#7908)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.34.2 to 1.35.2

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml