build(deps): bump the go-modules group with 15 updates

[dependabot]

Bumps the go-modules group with 15 updates:

Package	From	To
github.com/go-openapi/testify/v2	2.0.2	2.2.0
github.com/greenbone/opensight-golang-libraries	1.23.0	1.24.0
github.com/bytedance/sonic	1.14.2	1.15.0
github.com/bytedance/sonic/loader	0.4.0	0.5.0
github.com/go-openapi/spec	0.22.2	0.22.3
github.com/go-playground/validator/v10	10.29.0	10.30.1
github.com/go-resty/resty/v2	2.17.0	2.17.1
github.com/goccy/go-yaml	1.19.0	1.19.2
github.com/quic-go/quic-go	0.57.1	0.59.0
golang.org/x/crypto	0.46.0	0.47.0
golang.org/x/mod	0.31.0	0.32.0
golang.org/x/net	0.48.0	0.49.0
golang.org/x/sys	0.39.0	0.40.0
golang.org/x/text	0.32.0	0.33.0
golang.org/x/tools	0.40.0	0.41.0

Updates github.com/go-openapi/testify/v2 from 2.0.2 to 2.2.0

Release notes

Sourced from github.com/go-openapi/testify/v2's releases.

v2.2.0

2.2.0 - 2026-01-24

Introducing generics

Full Changelog: go-openapi/testify@v2.1.8...v2.2.0

1 commits in this release.

---

Miscellaneous tasks

• ci: updated shared workflows by @​fredbi in #44 ...

---

People who contributed to this release

• @​fredbi

---

testify license terms

Module-specific release notes

codegen

codegen/v2.2.0 - 2026-01-24

Introducing generics

---

Miscellaneous tasks

... (truncated)

Commits

• 07e033c ci: updated shared workflows (#44)
• dcebb17 doc: updated contributors file
• c1b4e75 chore: prepare release v2.2.0
• 61643e6 chore: regenerated code, tidy deps (#41)
• 178304f test(condition): fixed flaky test (#40)
• a860545 doc: reviewed and fix documentation (#39)
• 9791cfa docs: more documentation, scrubbed existing docs (#37)
• 6fd3bdf Merge pull request #36 from fredbi/test/refact-test
• 5ea42d8 test: updated benchmarks reflection-based vs generics
• debbdcb fix: aligned edge case behavior of EqualValues with Equal
• Additional commits viewable in compare view

Updates github.com/greenbone/opensight-golang-libraries from 1.23.0 to 1.24.0

Release notes

Sourced from github.com/greenbone/opensight-golang-libraries's releases.

opensight-golang-libraries 1.24.0

1.24.0 - 2025-12-18

Bug Fixes

• notifications - cache token to avoid auth failure on repeated calls (#273) 1c5385d

Commits

• 578bab4 Automatic release to 1.24.0
• 1c5385d fix: notifications - cache token to avoid auth failure on repeated calls (#273)
• 236ac1c build(deps): bump the go-dev-dependencies group with 19 updates
• ddfc347 build(deps): bump github.com/klauspost/compress
• 56c44a1 Automatic adjustments after release [skip ci]
• See full diff in compare view

Updates github.com/bytedance/sonic from 1.14.2 to 1.15.0

Release notes

Sourced from github.com/bytedance/sonic's releases.

v1.15.0

What's Changed

• chore: benchmark with msgpack by @​liuq19 in bytedance/sonic#881
• opt: ast node set by @​liuq19 in bytedance/sonic#883
• chore: update Go CI by @​AsterDY in bytedance/sonic#886
• feat: support Go 1.26 by @​AsterDY in bytedance/sonic#898
• chore: update go mod by @​AsterDY in bytedance/sonic#899

Full Changelog: bytedance/sonic@v1.14.2...v1.15.0

Commits

• afa2fce chore: update go mod (#899)
• 97eeff6 feat: support Go 1.26 (#898)
• 3afe8f2 chore: update Go CI (#886)
• 388df2d opt: ast node set (#883)
• 8a732a3 chore: benchmark with msgpack (#881)
• See full diff in compare view

Updates github.com/bytedance/sonic/loader from 0.4.0 to 0.5.0

Commits

• 97eeff6 feat: support Go 1.26 (#898)
• 3afe8f2 chore: update Go CI (#886)
• 388df2d opt: ast node set (#883)
• 8a732a3 chore: benchmark with msgpack (#881)
• 3fbf6d5 chore: update loader version to 0.4.0 (#878)
• See full diff in compare view

Updates github.com/go-openapi/spec from 0.22.2 to 0.22.3

Release notes

Sourced from github.com/go-openapi/spec's releases.

v0.22.3

0.22.3 - 2025-12-24

Full Changelog: go-openapi/spec@v0.22.2...v0.22.3

1 commits in this release.

---

Fixed bugs

• fix: fixed key escaping in OrderedItems marshaling by @​fredbi in #246 ...

---

People who contributed to this release

• @​fredbi

---

spec license terms

Commits

• 3b2ff60 fix: fixed key escaping in OrderedItems marshaling
• 90efd45 doc: updated contributors file
• e64b092 doc: announced new discord channel
• 32a252c build(deps): bump the development-dependencies group with 7 updates
• 1beb4f3 doc: fixed wrong links in docs
• b3b30bf ci: remove redundant release workflow
• ddeeaf8 doc: updated contributors file
• See full diff in compare view

Updates github.com/go-playground/validator/v10 from 10.29.0 to 10.30.1

Release notes

Sourced from github.com/go-playground/validator/v10's releases.

Release 10.30.1

What's Changed

• Feat: uds_exists validator by @​barash-asenov in go-playground/validator#1482
• fix: Revert min limit of e164 regex by @​zemzale in go-playground/validator#1516
• Fix 1513 update ISO 3166-2 codes by @​xyz27900 in go-playground/validator#1514

New Contributors

• @​barash-asenov made their first contribution in go-playground/validator#1482
• @​xyz27900 made their first contribution in go-playground/validator#1514

Full Changelog: go-playground/validator@v10.30.0...v10.30.1

Release 10.30.0

What's Changed

• Bump golang.org/x/crypto from 0.45.0 to 0.46.0 by @​dependabot[bot] in go-playground/validator#1504
• Bump github.com/gabriel-vasile/mimetype from 1.4.11 to 1.4.12 by @​dependabot[bot] in go-playground/validator#1505
• docs: document omitzero by @​minoritea in go-playground/validator#1509
• fix: add missing translations for alpha validators by @​shindonghwi in go-playground/validator#1510
• fix: resolve panic when using aliases with OR operator by @​shindonghwi in go-playground/validator#1507
• fix: resolve panic when using cross-field validators with ValidateMap by @​shindonghwi in go-playground/validator#1508

New Contributors

• @​minoritea made their first contribution in go-playground/validator#1509
• @​shindonghwi made their first contribution in go-playground/validator#1510

Full Changelog: go-playground/validator@v10.29.0...v10.30.0

Commits

• 5010f83 Fix 1513 update ISO 3166-2 codes (#1514)
• e8627a1 fix: Revert min limit of e164 regex (#1516)
• 65b1bcc Feat: uds_exists validator (#1482)
• e9b900c fix: resolve panic when using cross-field validators with ValidateMap (#1508)
• 7aba81c fix: resolve panic when using aliases with OR operator (#1507)
• 4d600be fix: add missing translations for alpha validators (#1510)
• b0e4ba2 docs: document omitzero (#1509)
• 79fba72 Bump github.com/gabriel-vasile/mimetype from 1.4.11 to 1.4.12 (#1505)
• c3c9084 Bump golang.org/x/crypto from 0.45.0 to 0.46.0 (#1504)
• See full diff in compare view

Updates github.com/go-resty/resty/v2 from 2.17.0 to 2.17.1

Release notes

Sourced from github.com/go-resty/resty/v2's releases.

v2.17.1

Release Notes

Bug Fixes

• fix: content type request header on http.NoBody type #1074 by @​jeevatkm in go-resty/resty#1079

Full Changelog: go-resty/resty@v2.17.0...v2.17.1

Commits

• 52f3f39 Merge pull request #1079 from go-resty/fix-cnt-type-hdr-on-emptybody
• 16e2701 release: v2.17.1 readme update
• 203bf14 fix: content type request header on http.NoBody type #1074
• 061e449 chore: version bump to v2.17.1
• See full diff in compare view

Updates github.com/goccy/go-yaml from 1.19.0 to 1.19.2

Release notes

Sourced from github.com/goccy/go-yaml's releases.

1.19.2

What's Changed

• Fix anchor reference regression in nested structures by @​linyows in goccy/go-yaml#839

New Contributors

• @​linyows made their first contribution in goccy/go-yaml#839

Full Changelog: goccy/go-yaml@v1.19.1...v1.19.2

1.19.1

What's Changed

• Fix decoding of integer keys of map type by @​goccy in goccy/go-yaml#829
• Support line comment for flow sequence or flow map by @​goccy in goccy/go-yaml#834

Full Changelog: goccy/go-yaml@v1.19.0...v1.19.1

Commits

• 92bc79c Fix anchor reference regression in nested structures (#839)
• b0ab069 Support line comment for flow sequence or flow map (#834)
• 9e98b0c Fix decoding of integer keys of map type (#829)
• See full diff in compare view

Updates github.com/quic-go/quic-go from 0.57.1 to 0.59.0

Release notes

Sourced from github.com/quic-go/quic-go's releases.

v0.59.0

This release adds a couple of new features:

• Adds an API to peek stream data on ReceiveStream and Stream: #5501
• Adds an API to peek the next varint on a stream: #5502
• Reworks the API exposed by the HTTP/3 package for WebTransport: #5509, #5512. Regular HTTP/3 use cases should not be affected by these changes.
• Adds support for HTTP request trailers (trailers sent by the client): #5507

Breaking Changes

• Removes the deprecated ClientHelloInfo: #5497
• Removes the deprecated ConnectionTracingID and ConnectionTracingKey: #5521
• http3: the qlogger is now closed after all streams have been handled: #5524
• The ConnectionState now reports both the local and the remote status of the QUIC Datagram and Reliable Stream Reset extensions: #5533

Other Notable Fixes

• Fixes an infinite loop of PING-only packets caused by a bug in the PTO queueing logic: #5538 and #5539
• http3: Fixes a race condition between new request streams and GOAWAY: #5522
• qlog: Fixes a race condition between RecordEvent and Close: #5523

Changelog

• remove deprecated ClientHelloInfo by @​marten-seemann in quic-go/quic-go#5497
• expose SetReliableBoundary method on the Stream by @​marten-seemann in quic-go/quic-go#5498
• simplify ReceiveStream.Read implementation by @​marten-seemann in quic-go/quic-go#5500
• ci: use codecov-action instead of codecov/test-results-action by @​Copilot in quic-go/quic-go#5504
• http3: add support for request trailers by @​marten-seemann in quic-go/quic-go#5507
• http3: remove stream hijacking API by @​marten-seemann in quic-go/quic-go#5508
• http3: remove Hijacker, add Settingser interface by @​marten-seemann in quic-go/quic-go#5509
• implement a stream peeking API by @​marten-seemann in quic-go/quic-go#5501
• ci: fix Codecov upload by untracking integrationtests before removal by @​marten-seemann in quic-go/quic-go#5511
• quicvarint: implement function to peek the next varint by @​marten-seemann in quic-go/quic-go#5502
• http3: implement new API to allow fine-grained control of connections by @​marten-seemann in quic-go/quic-go#5512
• remove deprecated ConnectionTracingID and ConnectionTracingKey by @​marten-seemann in quic-go/quic-go#5521
• http3: fix race between new streams and GOAWAY by @​marten-seemann in quic-go/quic-go#5522
• qlogwriter: fix race between RecordEvent and Close by @​marten-seemann in quic-go/quic-go#5523
• polish the security policy by @​marten-seemann in quic-go/quic-go#5526
• http3: close qlogger after all streams have been handled by @​marten-seemann in quic-go/quic-go#5524
• fix flaky TestHTTP3Qlog by @​marten-seemann in quic-go/quic-go#5532
• expose local and remote settings in ConnectionState by @​marten-seemann in quic-go/quic-go#5533
• ackhandler: fix qlogging of outstanding packet count by @​marten-seemann in quic-go/quic-go#5538
• ackhandler: fix counting of packets queued for PTO probing by @​marten-seemann in quic-go/quic-go#5539

Full Changelog: quic-go/quic-go@v0.58.0...v0.59.0

v0.58.1

This patch release backports fixes for a bug in the PTO queueing logic that could lead to an infinite loop of PING packets.

... (truncated)

Commits

• 7659dd8 ackhandler: fix counting of packets queued for PTO probing (#5539)
• bd4aea9 ackhandler: fix qlogging of outstanding packet count (#5538)
• 76b3e07 ackhandler: remove unused declaredLost field in the packet (#5537)
• 2020668 expose local and remote settings in ConnectionState (#5533)
• d082d9f fix flaky TestHTTP3Qlog (#5532)
• c5f15f2 http3: close qlogger after all streams have been handled (#5524)
• f6dbf89 polish the security policy (#5526)
• 29cb6ff qlogwriter: fix race between RecordEvent and Close (#5523)
• e8a6e37 http3: fix race between new streams and GOAWAY (#5522)
• 29b1a15 remove deprecated ConnectionTracingID and ConnectionTracingKey (#5521)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.46.0 to 0.47.0

Commits

• 506e022 go.mod: update golang.org/x dependencies
• 7dacc38 chacha20poly1305: error out in fips140=only mode
• See full diff in compare view

Updates golang.org/x/mod from 0.31.0 to 0.32.0

Commits

• 4c04067 go.mod: update golang.org/x dependencies
• See full diff in compare view

Updates golang.org/x/net from 0.48.0 to 0.49.0

Commits

• d977772 go.mod: update golang.org/x dependencies
• eea413e internal/http3: use go1.25 synctest.Test instead of go1.24 synctest.Run
• 9ace223 websocket: add missing call to resp.Body.Close
• 7d3dbb0 http2: buffer the most recently received PRIORITY_UPDATE frame
• See full diff in compare view

Updates golang.org/x/sys from 0.39.0 to 0.40.0

Commits

• 2f44229 sys/cpu: add symbolic constants for remaining cpuid bits
• e5770d2 sys/cpu: use symbolic names for masks
• 714a44c sys/cpu: modify x86 port to match what internal/cpu does
• See full diff in compare view

Updates golang.org/x/text from 0.32.0 to 0.33.0

Commits

• 536231a go.mod: update golang.org/x dependencies
• See full diff in compare view

Updates golang.org/x/tools from 0.40.0 to 0.41.0

Commits

• 2ad2b30 go.mod: update golang.org/x dependencies
• 5832cce internal/diff/lcs: introduce line diffs
• 67c4257 gopls/internal/golang: Definition: fix Windows bug wrt //go:embed
• 12c1f04 gopls/completion: check Selection invariant
• 6d87185 internal/server: add vulncheck scanning after vulncheck prompt
• 0c3a1fe go/ast/inspector: FindByPos returns the first innermost node
• ca281cf go/analysis/passes/ctrlflow: add noreturn funcs from popular pkgs
• 09c21a9 gopls/internal/analysis/unusedfunc: remove warnings for unused enum consts
• 03cb455 internal/modindex: suppress missing modcacheindex message
• 15d13e8 gopls/internal/util/typesutil: refine EnclosingSignature bug.Report
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Conventional Commits Report

😢 No conventional commits found.

👉 Learn more about the conventional commits usage at Greenbone.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 19.47%. Comparing base (8cb3f57) to head (6942c0a).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #170   +/-   ##
=======================================
  Coverage   19.47%   19.47%           
=======================================
  Files          51       51           
  Lines        2305     2305           
=======================================
  Hits          449      449           
  Misses       1816     1816           
  Partials       40       40           

Flag	Coverage Δ
postgres-tests	45.77% <ø> (ø)
unit-tests	12.12% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.