chore(deps): update module github.com/securego/gosec/v2 to v2.22.0 (#6141)

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [github.com/securego/gosec/v2](https://redirect.github.com/securego/gosec) | `v2.21.4` -> `v2.22.0` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fsecurego%2fgosec%2fv2/v2.22.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fsecurego%2fgosec%2fv2/v2.22.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fsecurego%2fgosec%2fv2/v2.21.4/v2.22.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fsecurego%2fgosec%2fv2/v2.21.4/v2.22.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>securego/gosec (github.com/securego/gosec/v2)</summary> ### [`v2.22.0`](https://redirect.github.com/securego/gosec/releases/tag/v2.22.0) [Compare Source](https://redirect.github.com/securego/gosec/compare/v2.21.4...v2.22.0) #### Changelog - [`e0cca6f`](e0cca6fe95) Update what message for G104 ([#1282](https://redirect.github.com/securego/gosec/issues/1282)) - [`534689b`](534689b08f) chore(deps): update module github.com/onsi/ginkgo/v2 to v2.22.2 ([#1281](https://redirect.github.com/securego/gosec/issues/1281)) - [`eb95db1`](eb95db1c76) chore(deps): update all dependencies ([#1280](https://redirect.github.com/securego/gosec/issues/1280)) - [`6c6da40`](6c6da403f0) chore(deps): update all dependencies ([#1279](https://redirect.github.com/securego/gosec/issues/1279)) - [`b12f51f`](b12f51f7d6) Simplify sortIssues implementation ([#1277](https://redirect.github.com/securego/gosec/issues/1277)) - [`54c2185`](54c2185ae6) Enable testifylint and fix up lint issues ([#1276](https://redirect.github.com/securego/gosec/issues/1276)) - [`36c81ed`](36c81ed69b) Refactor AppendError to check for build.NoGoError ([#1273](https://redirect.github.com/securego/gosec/issues/1273)) - [`9a2d74f`](9a2d74ffe0) chore(deps): update module golang.org/x/net to v0.33.0 \[security] ([#1275](https://redirect.github.com/securego/gosec/issues/1275)) - [`4c5ad91`](4c5ad914f3) Update README.md ([#1274](https://redirect.github.com/securego/gosec/issues/1274)) - [`e21b4d4`](e21b4d42cf) Rule documentation updates ([#1272](https://redirect.github.com/securego/gosec/issues/1272)) - [`92de0ee`](92de0ee7a2) Replace old golang.org links with new go.dev ([#1271](https://redirect.github.com/securego/gosec/issues/1271)) - [`4fda076`](4fda076e5d) Refactor AppendError to use strings.Contains ([#1270](https://redirect.github.com/securego/gosec/issues/1270)) - [`b01f49e`](b01f49e366) Simplify Analyzer.ignore by reducing nesting ([#1269](https://redirect.github.com/securego/gosec/issues/1269)) - [`b62cc33`](b62cc3316d) Improve capitalization in AI API flags descriptions ([#1267](https://redirect.github.com/securego/gosec/issues/1267)) - [`bc77d16`](bc77d16301) Remove unused golint dependency ([#1266](https://redirect.github.com/securego/gosec/issues/1266)) - [`ef1a35f`](ef1a35faf9) Simplify tests by using GinkgoT().TempDir() ([#1265](https://redirect.github.com/securego/gosec/issues/1265)) - [`09b9143`](09b914371e) Documentation on adding new rules and analyzers ([#1262](https://redirect.github.com/securego/gosec/issues/1262)) - [`1bd92a8`](1bd92a8e30) chore(deps): update all dependencies ([#1268](https://redirect.github.com/securego/gosec/issues/1268)) - [`ca55eca`](ca55eca3de) Update to go 1.22.10 and 1.23.4 versions ([#1264](https://redirect.github.com/securego/gosec/issues/1264)) - [`329cad8`](329cad89ee) chore(deps): update module golang.org/x/crypto to v0.31.0 \[security] ([#1263](https://redirect.github.com/securego/gosec/issues/1263)) - [`08beb25`](08beb25d41) chore(deps): update all dependencies ([#1261](https://redirect.github.com/securego/gosec/issues/1261)) - [`d566be2`](d566be274e) chore(deps): update module github.com/onsi/gomega to v1.36.0 ([#1259](https://redirect.github.com/securego/gosec/issues/1259)) - [`8c602d0`](8c602d0bc4) fix: revive.redefines-builtin-id lint warnings ([#1257](https://redirect.github.com/securego/gosec/issues/1257)) - [`399e835`](399e835157) Fix typos in comments and fields - [`229cf63`](229cf63a09) Remove the decryption funtions/methods from G407 check - [`699cb55`](699cb55eb3) Upate go to version 1.23.3 and 1.22.9 - [`9b13cd5`](9b13cd5ab4) Fix G115 false positive when going from parsed uint to larger int - [`08ea2a5`](08ea2a57db) chore(deps): update all dependencies - [`4415613`](44156135bf) chore(deps): update all dependencies - [`3274716`](3274716ce3) chore(deps): update all dependencies - [`1fb6a46`](1fb6a46eed) chore(deps): update all dependencies - [`d2c92ed`](d2c92ed7b3) chore(deps): update all dependencies - [`4fd9872`](4fd98728a7) Update go version to 1.23.2 and 1.22.8 - [`1501618`](1501618b90) chore(deps): update module google.golang.org/api to v0.201.0 - [`7d33bc1`](7d33bc1991) chore(deps): update all dependencies - [`bd8b4b4`](bd8b4b4ece) chore(deps): update all dependencies - [`1216c9b`](1216c9b96b) Fix the cosign step to authenticate with the container registry - [`50d1b4a`](50d1b4ae6b) chore(deps): update module google.golang.org/api to v0.199.0 - [`c0ba7c7`](c0ba7c7a74) Update the gosec to v2.21.4 in the Github action - [`a3299ce`](a3299ce10c) Add the version into goreleaser config </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/open-telemetry/opentelemetry-go).  Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-08-10 22:31:50 +02:00 · 2025-01-09 16:30:46 +01:00
parent cc34299917
commit fe33778892
2 changed files with 9 additions and 9 deletions
--- a/internal/tools/go.mod
+++ b/internal/tools/go.mod
@@ -166,7 +166,7 @@ require (
 	github.com/santhosh-tekuri/jsonschema/v6 v6.0.1 // indirect
 	github.com/sashamelentyev/interfacebloat v1.1.0 // indirect
 	github.com/sashamelentyev/usestdlibvars v1.28.0 // indirect
-	github.com/securego/gosec/v2 v2.21.4 // indirect
+	github.com/securego/gosec/v2 v2.22.0 // indirect
 	github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3 // indirect
 	github.com/shazow/go-diff v0.0.0-20160112020656-b6b7b6733b8c // indirect
 	github.com/sirupsen/logrus v1.9.3 // indirect
--- a/internal/tools/go.sum
+++ b/internal/tools/go.sum
@@ -194,8 +194,8 @@ github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 h1:5iH8iuqE5apketRbSFBy+X1V0o+l+8NF1avt4HWl7cA=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
+github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad h1:a6HEuzUHeKH6hwfN/ZoQgRgVIWFJljSWa/zetS2WTvg=
+github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/gordonklaus/ineffassign v0.1.0 h1:y2Gd/9I7MdY1oEIt+n+rowjBNDcLQq3RsH5hwJd0f9s=
@@ -320,10 +320,10 @@ github.com/nunnatsa/ginkgolinter v0.18.4 h1:zmX4KUR+6fk/vhUFt8DOP6KwznekhkmVSzzV
 github.com/nunnatsa/ginkgolinter v0.18.4/go.mod h1:AMEane4QQ6JwFz5GgjI5xLUM9S/CylO+UyM97fN2iBI=
 github.com/olekukonko/tablewriter v0.0.5 h1:P2Ga83D34wi1o9J6Wh1mRuqd4mF/x/lgBS7N7AbDhec=
 github.com/olekukonko/tablewriter v0.0.5/go.mod h1:hPp6KlRPjbx+hW8ykQs1w3UBbZlj6HuIJcUGPhkA7kY=
-github.com/onsi/ginkgo/v2 v2.20.2 h1:7NVCeyIWROIAheY21RLS+3j2bb52W0W82tkberYytp4=
-github.com/onsi/ginkgo/v2 v2.20.2/go.mod h1:K9gyxPIlb+aIvnZ8bd9Ak+YP18w3APlR+5coaZoE2ag=
-github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
-github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
+github.com/onsi/ginkgo/v2 v2.22.2 h1:/3X8Panh8/WwhU/3Ssa6rCKqPLuAkVY2I0RoyDLySlU=
+github.com/onsi/ginkgo/v2 v2.22.2/go.mod h1:oeMosUL+8LtarXBHu/c0bx2D/K9zyQ6uX3cTyztHwsk=
+github.com/onsi/gomega v1.36.2 h1:koNYke6TVk6ZmnyHrCXba/T/MoLBXFjeC1PtvYgw0A8=
+github.com/onsi/gomega v1.36.2/go.mod h1:DdwyADRjrc825LhMEkD76cHR5+pUnjhUN8GlHlRPHzY=
 github.com/otiai10/copy v1.2.0/go.mod h1:rrF5dJ5F0t/EWSYODDu4j9/vEeYHMkc8jt0zJChqQWw=
 github.com/otiai10/copy v1.14.0 h1:dCI/t1iTdYGtkvCuBG2BgR6KZa83PTclw4U5n2wAllU=
 github.com/otiai10/copy v1.14.0/go.mod h1:ECfuL02W+/FkTWZWgQqXPWZgW9oeKCSQ5qVfSc4qc4w=
@@ -386,8 +386,8 @@ github.com/sashamelentyev/interfacebloat v1.1.0 h1:xdRdJp0irL086OyW1H/RTZTr1h/tM
 github.com/sashamelentyev/interfacebloat v1.1.0/go.mod h1:+Y9yU5YdTkrNvoX0xHc84dxiN1iBi9+G8zZIhPVoNjQ=
 github.com/sashamelentyev/usestdlibvars v1.28.0 h1:jZnudE2zKCtYlGzLVreNp5pmCdOxXUzwsMDBkR21cyQ=
 github.com/sashamelentyev/usestdlibvars v1.28.0/go.mod h1:9nl0jgOfHKWNFS43Ojw0i7aRoS4j6EBye3YBhmAIRF8=
-github.com/securego/gosec/v2 v2.21.4 h1:Le8MSj0PDmOnHJgUATjD96PaXRvCpKC+DGJvwyy0Mlk=
-github.com/securego/gosec/v2 v2.21.4/go.mod h1:Jtb/MwRQfRxCXyCm1rfM1BEiiiTfUOdyzzAhlr6lUTA=
+github.com/securego/gosec/v2 v2.22.0 h1:bV/Ii5YSQtbobXuIFBXrfr91l5N4qslEdFHE9E0I/10=
+github.com/securego/gosec/v2 v2.22.0/go.mod h1:sR5n3LzZ/52rn4xxRBJk38iPe/hjiA0CkVcyiAHNCrM=
 github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3 h1:n661drycOFuPLCN3Uc8sB6B/s6Z4t2xvBgU1htSHuq8=
 github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3/go.mod h1:A0bzQcvG0E7Rwjx0REVgAGH58e96+X0MeOfepqsbeW4=
 github.com/shazow/go-diff v0.0.0-20160112020656-b6b7b6733b8c h1:W65qqJCIOVP4jpqPQ0YvHYKwcMEMVWIzWC5iNQQfBTU=