maint(deps): bump github.com/labstack/echo/v4 from 4.11.1 to 4.11.3 (#…

…403)

Bumps [github.com/labstack/echo/v4](https://github.com/labstack/echo)
from 4.11.1 to 4.11.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/labstack/echo/releases">github.com/labstack/echo/v4's
releases</a>.</em></p>
<blockquote>
<h2>v4.11.3</h2>
<p><strong>Security</strong></p>
<ul>
<li>'c.Attachment' and 'c.Inline' should escape filename in
'Content-Disposition' header to avoid 'Reflect File Download'
vulnerability. <a
href="https://redirect.github.com/labstack/echo/pull/2541">#2541</a></li>
</ul>
<p><strong>Enhancements</strong></p>
<ul>
<li>Tests: refactor context tests to be separate functions <a
href="https://redirect.github.com/labstack/echo/pull/2540">#2540</a></li>
<li>Proxy middleware: reuse echo request context <a
href="https://redirect.github.com/labstack/echo/pull/2537">#2537</a></li>
<li>Mark unmarshallable yaml struct tags as ignored <a
href="https://redirect.github.com/labstack/echo/pull/2536">#2536</a></li>
</ul>
<h2>v4.11.2</h2>
<p><strong>Security</strong></p>
<ul>
<li>Bump golang.org/x/net to prevent CVE-2023-39325 / CVE-2023-44487
HTTP/2 Rapid Reset Attack <a
href="https://redirect.github.com/labstack/echo/pull/2527">#2527</a></li>
<li>fix(sec): randomString bias introduced by <a
href="https://redirect.github.com/labstack/echo/issues/2490">#2490</a>
<a
href="https://redirect.github.com/labstack/echo/pull/2492">#2492</a></li>
<li>CSRF/RequestID mw: switch math/random usage to crypto/random <a
href="https://redirect.github.com/labstack/echo/pull/2490">#2490</a></li>
</ul>
<p><strong>Enhancements</strong></p>
<ul>
<li>Delete unused context in body_limit.go <a
href="https://redirect.github.com/labstack/echo/pull/2483">#2483</a></li>
<li>Use Go 1.21 in CI <a
href="https://redirect.github.com/labstack/echo/pull/2505">#2505</a></li>
<li>Fix some typos <a
href="https://redirect.github.com/labstack/echo/pull/2511">#2511</a></li>
<li>Allow CORS middleware to send Access-Control-Max-Age: 0 <a
href="https://redirect.github.com/labstack/echo/pull/2518">#2518</a></li>
<li>Bump dependancies <a
href="https://redirect.github.com/labstack/echo/pull/2522">#2522</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/labstack/echo/blob/master/CHANGELOG.md">github.com/labstack/echo/v4's
changelog</a>.</em></p>
<blockquote>
<h2>v4.11.3 - 2023-11-07</h2>
<p><strong>Security</strong></p>
<ul>
<li>'c.Attachment' and 'c.Inline' should escape filename in
'Content-Disposition' header to avoid 'Reflect File Download'
vulnerability. <a
href="https://redirect.github.com/labstack/echo/pull/2541">#2541</a></li>
</ul>
<p><strong>Enhancements</strong></p>
<ul>
<li>Tests: refactor context tests to be separate functions <a
href="https://redirect.github.com/labstack/echo/pull/2540">#2540</a></li>
<li>Proxy middleware: reuse echo request context <a
href="https://redirect.github.com/labstack/echo/pull/2537">#2537</a></li>
<li>Mark unmarshallable yaml struct tags as ignored <a
href="https://redirect.github.com/labstack/echo/pull/2536">#2536</a></li>
</ul>
<h2>v4.11.2 - 2023-10-11</h2>
<p><strong>Security</strong></p>
<ul>
<li>Bump golang.org/x/net to prevent CVE-2023-39325 / CVE-2023-44487
HTTP/2 Rapid Reset Attack <a
href="https://redirect.github.com/labstack/echo/pull/2527">#2527</a></li>
<li>fix(sec): randomString bias introduced by <a
href="https://redirect.github.com/labstack/echo/issues/2490">#2490</a>
<a
href="https://redirect.github.com/labstack/echo/pull/2492">#2492</a></li>
<li>CSRF/RequestID mw: switch math/random usage to crypto/random <a
href="https://redirect.github.com/labstack/echo/pull/2490">#2490</a></li>
</ul>
<p><strong>Enhancements</strong></p>
<ul>
<li>Delete unused context in body_limit.go <a
href="https://redirect.github.com/labstack/echo/pull/2483">#2483</a></li>
<li>Use Go 1.21 in CI <a
href="https://redirect.github.com/labstack/echo/pull/2505">#2505</a></li>
<li>Fix some typos <a
href="https://redirect.github.com/labstack/echo/pull/2511">#2511</a></li>
<li>Allow CORS middleware to send Access-Control-Max-Age: 0 <a
href="https://redirect.github.com/labstack/echo/pull/2518">#2518</a></li>
<li>Bump dependancies <a
href="https://redirect.github.com/labstack/echo/pull/2522">#2522</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/labstack/echo/commit/4b26cde851bc7a51e624c04dcc5d37be1ce0c84f"><code>4b26cde</code></a>
Changelog for v4.11.3 (<a
href="https://redirect.github.com/labstack/echo/issues/2542">#2542</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/14daeb968049b71296a80b91abd3883afd02b4d1"><code>14daeb9</code></a>
Security: c.Attachment and c.Inline should escape name in
`Content-Dispositio...</li>
<li><a
href="https://github.com/labstack/echo/commit/50ebcd8d7c17457489df7bcbbcaa3745c687fd32"><code>50ebcd8</code></a>
refactor context tests to be separate functions (<a
href="https://redirect.github.com/labstack/echo/issues/2540">#2540</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/c7d6d4373fdfbef5d6f44df0a8ef410c198420ee"><code>c7d6d43</code></a>
proxy middleware: reuse echo request context (<a
href="https://redirect.github.com/labstack/echo/issues/2537">#2537</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/69a0de84158fd7cad326599d145c2248bcc15a69"><code>69a0de8</code></a>
Mark unmarshallable yaml struct tags as ignored (<a
href="https://redirect.github.com/labstack/echo/issues/2536">#2536</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/98a523756d875bc13475bcb6237f09e771cbe321"><code>98a5237</code></a>
Changelog for v4.11.2 (<a
href="https://redirect.github.com/labstack/echo/issues/2529">#2529</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/89ae0e5f2ca6d01665255fd2e479ba98ab5ff4c8"><code>89ae0e5</code></a>
Bump dependancies (<a
href="https://redirect.github.com/labstack/echo/issues/2522">#2522</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/5780908c7cb110a8c4d56a62e32dc5cbc030a5ab"><code>5780908</code></a>
Fix CVE-2023-39325 / CVE-2023-44487 (<a
href="https://redirect.github.com/labstack/echo/issues/2527">#2527</a>)</li>
<li><a
href="https://github.com/labstack/echo/commit/4bc3e475e3137b6402933eec5e6fde641e0d2320"><code>4bc3e47</code></a>
cors middleware: allow sending <code>Access-Control-Max-Age: 0</code>
value with config....</li>
<li><a
href="https://github.com/labstack/echo/commit/3950c444b726c1de9131d4dee4c9ae708768f26c"><code>3950c44</code></a>
fix some typos (<a
href="https://redirect.github.com/labstack/echo/issues/2511">#2511</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/labstack/echo/compare/v4.11.1...v4.11.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/labstack/echo/v4&package-manager=go_modules&previous-version=4.11.1&new-version=4.11.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

go.mod

@@ -13,7 +13,7 @@ require (
 	github.com/honeycombio/libhoney-go v1.20.0
 	github.com/jmoiron/sqlx v1.3.5
 	github.com/julienschmidt/httprouter v1.3.0
-	github.com/labstack/echo/v4 v4.11.1
+	github.com/labstack/echo/v4 v4.11.3
 	github.com/stretchr/testify v1.8.4
 	goji.io/v3 v3.0.0
 	google.golang.org/grpc v1.57.0

go.sum

@@ -179,8 +179,8 @@ github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/pty v1.1.8/go.mod h1:O1sed60cT9XZ5uDucP5qwvh+TE3NnUj51EiZO/lmSfw=
 github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
-github.com/labstack/echo/v4 v4.11.1 h1:dEpLU2FLg4UVmvCGPuk/APjlH6GDpbEPti61srUUUs4=
-github.com/labstack/echo/v4 v4.11.1/go.mod h1:YuYRTSM3CHs2ybfrL8Px48bO6BAnYIN4l8wSTMP6BDQ=
+github.com/labstack/echo/v4 v4.11.3 h1:Upyu3olaqSHkCjs1EJJwQ3WId8b8b1hxbogyommKktM=
+github.com/labstack/echo/v4 v4.11.3/go.mod h1:UcGuQ8V6ZNRmSweBIJkPvGfwCMIlFmiqrPqiEBfPYws=
 github.com/labstack/gommon v0.4.0 h1:y7cvthEAEbU0yHOf4axH8ZG2NH8knB9iNSoTO8dyIk8=
 github.com/labstack/gommon v0.4.0/go.mod h1:uW6kP17uPlLJsD3ijUYn3/M5bAxtlZhMI6m3MFxTMTM=
 github.com/leodido/go-urn v1.2.4 h1:XlAE/cm/ms7TE/VMVoduSpNBoyc2dOxHs5MZSwAN63Q=