build(deps): bump the non-majors group with 13 updates

[dependabot]

Bumps the non-majors group with 13 updates:

Package	From	To
connectrpc.com/connect	1.16.2	1.17.0
github.com/docker/cli	27.2.0+incompatible	27.3.1+incompatible
github.com/moby/buildkit	0.15.2	0.16.0
github.com/prometheus/client_golang	1.20.2	1.20.4
github.com/prometheus/common	0.57.0	0.59.1
github.com/traefik/traefik/v3	3.1.2	3.1.4
go.mongodb.org/mongo-driver	1.16.1	1.17.0
golang.org/x/crypto	0.26.0	0.27.0
golang.org/x/exp	0.0.0-20240506185415-9bf2ced13842	0.0.0-20240909161429-701f63a606c0
golang.org/x/net	0.28.0	0.29.0
k8s.io/api	0.31.0	0.31.1
k8s.io/apimachinery	0.31.0	0.31.1
k8s.io/client-go	0.31.0	0.31.1

Updates connectrpc.com/connect from 1.16.2 to 1.17.0

Release notes

Sourced from connectrpc.com/connect's releases.

v1.17.0

What's Changed

Enhancements

• Enable protoc-gen-connect-go usage with Protobuf source files that use Editions by @​jchadwick-buf in #754

Bugfixes

• Prevent incorrect propagation of protocol-specific metadata by @​emcfarlane in #748
• Fix error message about unexpected content-type by @​jhump in #775
• Calls should return "unavailable" instead of "unimplemented" or "unknown" when the transport fails to produce an HTTP response and returns io.EOF errors by @​jhump in #776

Other changes

• Now requires Go 1.21 by @​jhump in #770

New Contributors

• @​perezd made their first contribution in #739

Full Changelog: connectrpc/connect-go@v1.16.2...v1.17.0

Commits

• 847d8b4 Prepare for v1.17.0 release (#778)
• c8be9e7 Connect unary should return unavailable instead of unimplemented for io.EOF...
• 99d6b9c Fix error message about content-types (#775)
• 2a694ed Require go 1.21, test with go 1.23 (#770)
• bdde2a9 Update to latest conformance suite: v1.0.3 (#769)
• cd003a0 Update CONTRIBUTING.md: CLA -> DCO (#765)
• 829c23c Run go mod tidy as part of generate (#755)
• 193652d Enable protoc-gen-connect-go usage with editions (#754)
• e87d966 Chore upgrade linter (#751)
• aba3ff5 Restrict handler metadata headers (#748)
• Additional commits viewable in compare view

Updates github.com/docker/cli from 27.2.0+incompatible to 27.3.1+incompatible

Commits

• ce12230 Merge pull request #5462 from thaJeztah/27.x_backport_bump_compose
• 263ba95 Merge pull request #5461 from laurazard/27.x-backport-update-VERSION
• be9b9f3 Update VERSION file to v27.3.1-dev
• a4149b0 Dockerfile: update compose to v2.29.7
• 4aac415 Merge pull request #5458 from thaJeztah/27.x_bump_engine3
• 8546958 vendor: github.com/docker/docker v27.3.0
• f052003 Merge pull request #5457 from laurazard/backport-dropped-defer
• 460f1be telemetry: fix early meterprovider shutdown
• e85edf8 Merge pull request #5452 from laurazard/27.3.0-match-moby-version
• ca62759 vendor: github.com/docker/docker v27.3.0-rc2
• Additional commits viewable in compare view

Updates github.com/moby/buildkit from 0.15.2 to 0.16.0

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.16.0

Welcome to the v0.16.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• CrazyMax
• Tõnis Tiigi
• Sebastiaan van Stijn
• Akihiro Suda
• David Karlsson
• Shaun Thompson
• Talon Bowler
• Arkadiusz Drabczyk
• Craig Andrews
• Justin Chadwell
• Mitsuru Kariya
• Anthony Nandaa
• Bertrand Paquet
• Ignas Mikalajūnas
• Jonathan A. Sternberg
• Billy Owire
• Debosmit Ray
• Kai Takac
• Marat Radchenko
• a-palchikov

Notable changes

• Builtin Dockerfile frontend has been updated to v1.10.0 changelog
• Remote cache export to S3 backend can now happen with parallel requests and can be controlled with new upload_parallelism option #5270
• Remote cache export to S3 backend now supports layers larger than 5GB #5266
• History records now contain information about the number of warnings that were generated during the build #5166
• Printing check results with library now allows source mapping modifications #5295
• Unconditionally use /etc/resolv.conf rather than systemd's config in host networking mode #5207
• Certain history, graph consistency, and some syscall errors as now marked as internal and use corresponding gRPC error code #5163 #5182
• Output of errors produced by the container executor has been improved #5179
• Stack traces produced by build errors are now clearer and avoid duplicates #5180
• Build containers killed by OOMKiller are now detected and shown to the user in the error message #5260
• Runc container runtime has been updated to v1.1.14 #5300
• Pre-defined OCI annotations are now set to the BuildKit image #3554
• Fix pruning cache mounts that use uid/gid/mode/from on no-cache builds #5306
• Fix issue where --import-cache flag could be ignored for buildctl #5143
• Fix OTEL trace ID being missing from logs #5315

Dependency Changes

... (truncated)

Commits

• 0865fcc Merge pull request #5320 from crazy-max/v0.16.0-picks2
• 74116a2 fix windows area label when modifications are under the vendor folder
• 5c5dc59 vendor: github.com/docker/docker v27.2.1
• c9d08dd Merge pull request #5315 from jsternberg/trace-id-in-log
• b2b8b1c Merge pull request #5313 from tonistiigi/grpc-v1.62
• 366c355 bklog: always enable trace id if it exists
• e89d391 vendor: update grpc to v1.62.0
• a1993e8 Merge pull request #5306 from tonistiigi/cache-mount-mode-prune
• 85668ff Merge pull request #5307 from thompson-shaun/update-labeler
• 436609d Merge pull request #5302 from crazy-max/dockerfile-rootless-cache
• Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.20.2 to 1.20.4

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.20.4

• [BUGFIX] histograms: Fix a possible data race when appending exemplars vs metrics gather. #1623

v1.20.3

• [BUGFIX] histograms: Fix possible data race when appending exemplars. #1608

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

Unreleased

• [BUGFIX] histograms: Fix possible data race when appending exemplars vs metrics gather. #1623

1.20.3 / 2024-09-05

• [BUGFIX] histograms: Fix possible data race when appending exemplars. #1608

Commits

• 05fcde9 Merge pull request #1623 from krajorama/data-race-in-histogram-write
• 209f4c0 Add changelog
• 1e398cc native histogram: Fix race between Write and addExemplar
• ef2f87e Merge pull request #1620 from prometheus/arthursens/prepare-1.20.3
• 937ac63 Add changelog entry for 1.20.3
• 6e9914d Merge pull request #1608 from krajorama/index-out-of-range-native-histogram-e...
• d6b8c89 Update comments with more explanations
• 504566f Use simplified solution from #1609 for the data race
• dc8e9a4 fix: native histogram: Simplify and fix addExemplar
• dc819ce Use a trivial solution to #1605
• Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.57.0 to 0.59.1

Release notes

Sourced from github.com/prometheus/common's releases.

v0.59.1

What's Changed

• fix(utf8): Fix multiple metric name inside braces validation by @​fedetorres93 in prometheus/common#691

Full Changelog: prometheus/common@v0.59.0...v0.59.1

v0.59.0

What's Changed

• expfmt: Add WithEscapingScheme to help construct Formats by @​ywwg in prometheus/common#688
• Change the default escape method to UnderscoreEscaping by @​ywwg in prometheus/common#690

Full Changelog: prometheus/common@v0.58.0...v0.59.0

v0.58.0

What's Changed

• docs: mention new promslog package in package list in README by @​tjhop in prometheus/common#683
• Bump golang.org/x/oauth2 from 0.21.0 to 0.22.0 by @​dependabot in prometheus/common#684
• Bump golang.org/x/net from 0.27.0 to 0.28.0 by @​dependabot in prometheus/common#685
• Remove secret file existence check in Validate for headers by @​roidelapluie in prometheus/common#687

Full Changelog: prometheus/common@v0.57.0...v0.58.0

Commits

• be8a747 fix(utf8): Fix multiple metric name inside braces validation (#691)
• bf4843e Merge pull request #690 from ywwg/owilliams/default-escaping
• 01da226 Change the default escape method to UnderscoreEscaping
• 4f8e8f4 expfmt: Add WithEscapingScheme to help construct Formats (#688)
• b1880d0 Merge pull request #687 from roidelapluie/checkheader
• 334963d Change the logic for SetDirectory
• d64a747 Remove secret file existence check in Validate for headers
• 06c2425 Bump golang.org/x/net from 0.27.0 to 0.28.0 (#685)
• 4606c0a Bump golang.org/x/oauth2 from 0.21.0 to 0.22.0 (#684)
• d98411b Merge pull request #683 from tjhop/docs/promslog-README
• Additional commits viewable in compare view

Updates github.com/traefik/traefik/v3 from 3.1.2 to 3.1.4

Release notes

Sourced from github.com/traefik/traefik/v3's releases.

v3.1.4

Bug fixes:

• [metrics] Guess Datadog socket type when prefix is unix (#11102 by kevinpollet)

Documentation:

• Mention v3 in readme (#11082 by kabaluyot)

Misc:

• Merge branch v2.11 into v3.1 (#11107 by rtribotte)

v3.1.3

CVE: CVE-2024-45410 (Advisory GHSA-62c8-mh53-4cqv)

Bug fixes:

• [k8s/ingress,rules,k8s] Allow configuring rule syntax with Kubernetes Ingress annotation (#10985 by rtribotte)
• [k8s/ingress] Re-allow empty configuration for Kubernetes Ingress provider (#11008 by rtribotte)
• [middleware,metrics] Wrap capture for services used by pieces of middleware (#11058 by rtribotte)
• [plugins] Removes goexport dependency and adds _initialize (#11088 by juliens)

Documentation:

• [k8s/crd,k8s] Remove mentions about APIVersion traefik.io/v1 (#11020 by rtribotte)
• [k8s] Update quick-start-with-kubernetes.md to include required permissions (#11010 by eastmane)
• [metrics] Mention missing metrics removal in the migration guide (#10982 by rtribotte)
• [tracing] Fix tracing documentation (#11067 by mmatur)
• [tracing] OTLP doc + potential panic (#11052 by mmatur)

Misc:

• Merge v2.11 into v3.1 (#11092 by kevinpollet)
• Merge v2.11 into v3.1 (#11065 by mmatur)
• Merge v2.11 into v3.1 (#11044 by rtribotte)

Changelog

Sourced from github.com/traefik/traefik/v3's changelog.

v3.1.4 (2024-09-19)

All Commits

Bug fixes:

• [metrics] Guess Datadog socket type when prefix is unix (#11102 by kevinpollet)

Documentation:

• Mention v3 in readme (#11082 by kabaluyot)

Misc:

• Merge branch v2.11 into v3.1 (#11107 by rtribotte)

v2.11.10 (2024-09-19)

All Commits

Bug fixes:

• [http3] Bump github.com/quic-go/quic-go to v0.47.0 (#11104 by rtribotte)
• [server] Check if ACME certificate resolver is not nil (#11103 by kevinpollet)

v3.1.3 (2024-09-16)

All Commits

Bug fixes:

• [k8s/ingress,rules,k8s] Allow configuring rule syntax with Kubernetes Ingress annotation (#10985 by rtribotte)
• [k8s/ingress] Re-allow empty configuration for Kubernetes Ingress provider (#11008 by rtribotte)
• [middleware,metrics] Wrap capture for services used by pieces of middleware (#11058 by rtribotte)
• [plugins] Removes goexport dependency and adds _initialize (#11088 by juliens)

Documentation:

• [k8s/crd,k8s] Remove mentions about APIVersion traefik.io/v1 (#11020 by rtribotte)
• [k8s] Update quick-start-with-kubernetes.md to include required permissions (#11010 by eastmane)
• [metrics] Mention missing metrics removal in the migration guide (#10982 by rtribotte)
• [tracing] Fix tracing documentation (#11067 by mmatur)
• [tracing] OTLP doc + potential panic (#11052 by mmatur)

Misc:

• Merge v2.11 into v3.1 (#11092 by kevinpollet)
• Merge v2.11 into v3.1 (#11065 by mmatur)
• Merge v2.11 into v3.1 (#11044 by rtribotte)

v2.11.9 (2024-09-16)

All Commits

Bug fixes:

• [acme] Update go-acme/lego to v4.18.0 (#11060 by ldez)
• [acme] Allow handling ACME challenges with custom routers (#10981 by rtribotte)
• [logs,middleware] Make the keys of the accessLog.fields.names map case-insensitive (#11040 by SpecLad)
• [logs,middleware] Ensure proper logs for aborted streaming responses (#10819 by hood)
• [middleware,server] Cleanup Connection headers before passing the middleware chain (#11077 by kevinpollet)
• [plugins] Upgrade paerser to v0.2.1 (#11048 by mmatur)

... (truncated)

Commits

• 0be01cc Prepare release v3.1.4
• f3eba8d Guess Datadog socket type when prefix is unix
• 7e75dc0 Merge current v2.11 into v3.1
• b00f640 Prepare release v2.11.10
• ac42dd8 Check if ACME certificate resolver is not nil
• 4b5968e Bump github.com/quic-go/quic-go to v0.47.0
• bbeceba Mention v3 in readme
• 89f3b27 Prepare release v3.1.3
• 093989f Merge branch v2.11 into v3.1
• 06d7fab Prepare release v2.11.9
• Additional commits viewable in compare view

Updates go.mongodb.org/mongo-driver from 1.16.1 to 1.17.0

Release notes

Sourced from go.mongodb.org/mongo-driver's releases.

MongoDB Go Driver 1.17.0

The MongoDB Go Driver Team is pleased to release version 1.17.0 of the official MongoDB Go driver.

Release Notes

This release adds support for client authentication using OpenID Connect (MONGODB-OIDC), and for the Queryable Encryption Range Protocol. The driver now supports MongoDB 8.0. Additionally, IndexView has been extended to include methods for dropping indexes by key (i.e. DropOneWithKey and DropWithKey).

[!NOTE]

This is the last planned minor release in the 1.x series. Future driver versions will be in the 2.x series. The v1.17.x will still receive security and bug fixes for a year.

Queryable Encryption Range Protocol

Added range protocol support for Queryable Encryption.

MONGODB-OIDC

Added support OpenID Connect (OIDC) authentication for workload identities. A workload identity is an identity you assign to a software workload, such as an application, service, script, or container, to authenticate and access other services and resources.

See the documentation for more details.

---

For a full list of tickets included in this release, please see the links below:

• New Features
• Improvements
• Bugs
• Tasks

Full Changelog: v1.16.1...v1.17.0

Documentation for the Go driver can be found on pkg.go.dev and the MongoDB documentation site. BSON library documentation is also available on pkg.go.dev. Questions and inquiries can be asked on the MongoDB Developer Community. Bugs can be reported in the Go Driver project in the MongoDB JIRA where a list of current issues can be found. Your feedback on the Go driver is greatly appreciated!

Commits

• 5484657 BUMP v1.17.0
• be25b9a GODRIVER-3302 Handle malformatted message length properly. (#1758)
• 4757f44 GODRIVER-3312 Use remaining test secrets from the vault [v1] (#1811)
• 6bcc3dc Remove GCP from supplied callback example (#1809)
• b133d71 GODRIVER-2587 Implement modifyCollection for the unified test runner (#1796) ...
• c5b9705 GODRIVER-3331 Fix default authSource for SRV connections (#1795)
• 485e74d GODRIVER-2758: Add documentation examples (#1759)
• ac03e73 GODRIVER-3324 Upgrade CI Go to 1.22 and golangci-lint to 1.59.1. (#1783)
• 56e75b2 GODRIVER-3195 Sync updated QE Range tests (#1789) [v1] (#1790)
• 783cc6c GODRIVER-3290 Mention the final 1.x release in the release notes (#1788)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.26.0 to 0.27.0

Commits

• c9da6b9 all: fix printf(var) mistakes detected by latest printf checker
• b35ab4f go.mod: update golang.org/x dependencies
• bcb0f91 internal/poly1305: Port sum_amd64.s to Avo
• 7eace71 chacha20poly1305: Avo port of chacha20poly1305_amd64.s
• 620dfbc salsa20/salsa: Port salsa20_amd64.s to Avo
• 82942cf blake2b: port blake2b_amd64.s to Avo
• 0484c26 blake2b: port blake2bAVX2_amd64.s to Avo
• 38ed1bc blake2s: port blake2s_amd64.s to Avo
• 38a0b5d argon2: Avo port of blamka_amd64.s
• bf5f14f x509roots/fallback: update bundle
• Additional commits viewable in compare view

Updates golang.org/x/exp from 0.0.0-20240506185415-9bf2ced13842 to 0.0.0-20240909161429-701f63a606c0

Commits

• See full diff in compare view

Updates golang.org/x/net from 0.28.0 to 0.29.0

Commits

• 35b4aba go.mod: update golang.org/x dependencies
• 9bf379f websocket: fix printf(var) mistake detected by latest printf checker
• See full diff in compare view

Updates k8s.io/api from 0.31.0 to 0.31.1

Commits

• eb5129b Update dependencies to v0.31.1 tag
• 46f6230 Merge pull request #126761thockin/automated-cherry-pick-of-#126749
• 1857695 fix v1a3 ResourceSliceList metadata field name
• See full diff in compare view

Updates k8s.io/apimachinery from 0.31.0 to 0.31.1

Commits

• See full diff in compare view

Updates k8s.io/client-go from 0.31.0 to 0.31.1

Commits

• c5196eb Update dependencies to v0.31.1 tag
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Preview (prod backend + PR dashboard) → https://964.ns-preview.trapti.tech/