chore(deps): bump the dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the dependencies group with 5 updates in the / directory:

Package	From	To
github.com/grpc-ecosystem/grpc-gateway/v2	2.24.0	2.25.1
github.com/jackc/pgx/v5	5.7.1	5.7.2
github.com/pressly/goose/v3	3.23.1	3.24.0
google.golang.org/protobuf	1.36.0	1.36.1
modernc.org/sqlite	1.34.3	1.34.4

Updates github.com/grpc-ecosystem/grpc-gateway/v2 from 2.24.0 to 2.25.1

Release notes

Sourced from github.com/grpc-ecosystem/grpc-gateway/v2's releases.

v2.25.1

Support the new Opaque API in openapiv2 generated files

This release contains breaking changes from v2.25.0, in that the previously deprecated EnumDescriptor and Descriptor methods on the struct types in the openapiv2 options package have been removed. This seems to be a requirement to generate the new Hybrid API. Please open an issue if you were depending on these functions and we'll see what we can do about it.

What's Changed

• protoc-gen-openapiv2: generate hybrid files by @​johanbrandhorst in grpc-ecosystem/grpc-gateway#5088

Full Changelog: grpc-ecosystem/grpc-gateway@v2.25.0...v2.25.1

v2.25.0

What's Changed

• Extend google.protobuf.EnumOptions for Schema by @​hown3d in grpc-ecosystem/grpc-gateway#4931
• fix(deps): Relax the minimum required go version by @​nhhagen in grpc-ecosystem/grpc-gateway#5022
• Correctly expand path variables for Update Methods. by @​nullaus in grpc-ecosystem/grpc-gateway#5041
• Use org_golang_x_tools as module extension by @​mering in grpc-ecosystem/grpc-gateway#5043
• fix: update to protobuf 1.36.0 and exclude synthetic oneofs during populateFieldValueFromPath by @​aerialls in grpc-ecosystem/grpc-gateway#5072

New Contributors

• @​hown3d made their first contribution in grpc-ecosystem/grpc-gateway#4931
• @​nhhagen made their first contribution in grpc-ecosystem/grpc-gateway#5022
• @​nullaus made their first contribution in grpc-ecosystem/grpc-gateway#5041
• @​mering made their first contribution in grpc-ecosystem/grpc-gateway#5043
• @​aerialls made their first contribution in grpc-ecosystem/grpc-gateway#5072

Full Changelog: grpc-ecosystem/grpc-gateway@v2.24.0...v2.25.0

Commits

• c89fdf7 protoc-gen-openapiv2: generate hybrid files (#5088)
• bb4c906 Update gorelease base
• a74e741 fix(deps): update google.golang.org/genproto/googleapis/rpc digest to 6b3ec00...
• e9a2074 chore(deps): update googleapis digest to 5e258e3 (#5087)
• bdc7a7a fix(deps): update google.golang.org/genproto/googleapis/api digest to 6b3ec00...
• 937be39 fix(deps): update google.golang.org/genproto/googleapis/rpc digest to 9240e9c...
• df4d666 chore(deps): update googleapis digest to d55dd1d (#5084)
• e6af5c6 chore(deps): update dependency rules_proto to v7.1.0 (#5079)
• e062b12 fix: update to protobuf 1.36.0 and exclude synthetic oneofs during populateFi...
• 50d84d5 chore(deps): update googleapis digest to 09d4103 (#5083)
• Additional commits viewable in compare view

Updates github.com/jackc/pgx/v5 from 5.7.1 to 5.7.2

Changelog

Sourced from github.com/jackc/pgx/v5's changelog.

5.7.2 (December 21, 2024)

• Fix prepared statement already exists on batch prepare failure
• Add commit query to tx options (Lucas Hild)
• Fix pgtype.Timestamp json unmarshal (Shean de Montigny-Desautels)
• Add message body size limits in frontend and backend (zene)
• Add xid8 type
• Ensure planning encodes and scans cannot infinitely recurse
• Implement pgtype.UUID.String() (Konstantin Grachev)
• Switch from ExecParams to Exec in ValidateConnectTargetSessionAttrs functions (Alexander Rumyantsev)
• Update golang.org/x/crypto

Commits

• 24fbe35 Create changelog for v5.7.2
• 3a1593b Merge pull request #2198 from alexandear/fix-nilness
• 9d851d7 Fix integration benchmarks
• dacffdc Merge pull request #2196 from alexandear/docs-improve-links
• bc7c840 Merge pull request #2195 from LucasHild/master
• 0436851 Handle errors in generate_certs
• 2532927 Improve links in README
• ad87d47 Merge pull request #2194 from alexandear/refactor/pgconn-tests
• 7cf7bc6 Simplify pgconn tests by using T.TempDir
• 3e6c719 Merge pull request #2189 from pankona/update-crypto
• Additional commits viewable in compare view

Updates github.com/pressly/goose/v3 from 3.23.1 to 3.24.0

Release notes

Sourced from github.com/pressly/goose/v3's releases.

v3.24.0

What's Changed

• Add support for loading environment variables from .env files, enabled by default. by @​rwwwx in pressly/goose#864
  • The default file name is .env, but can be changed with the -env=<filename> flag.
  • To disable this feature, set -env=none.
• fix: CVE-2024-45338 in golang.org/x/net bump to v0.33.0 by @​k2589 in pressly/goose#880

New Contributors

• @​rwwwx made their first contribution in pressly/goose#864

Full Changelog: pressly/goose@v3.23.1...v3.24.0

Changelog

Sourced from github.com/pressly/goose/v3's changelog.

[v3.24.0]

• Add support for loading environment variables from .env files, enabled by default.
  • The default file name is .env, but can be changed with the -env=<filename> flag.
  • To disable this feature, set -env=none.

Commits

• bfb3550 Release v3.24.0
• 125950c fix: CVE-2024-45338 in golang.org/x/net bump to v0.33.0 (#880)
• ca6f0b8 build(deps): bump the gomod group across 1 directory with 4 updates (#876)
• 483081e feat: add -env flag and allow disabling with "none"
• a47577b feat: load environment variables from .env file (#864)
• 28642f8 chore: bump changelog
• 63b735e build: upgrade deps in testing module
• See full diff in compare view

Updates google.golang.org/protobuf from 1.36.0 to 1.36.1

Updates modernc.org/sqlite from 1.34.3 to 1.34.4

Commits

• d3e8a66 retract v1.34.3
• 1fcc86e fix accidentaly broken openbsd/amd64 build
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions