fix(deps): update all patch dependencies (patch)

[alaudaa-renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
cel.dev/expr	v0.19.1 -> v0.19.3			indirect	patch
github.com/antlr4-go/antlr/v4	v4.13.0 -> v4.13.1			indirect	patch
github.com/cert-manager/cert-manager	v1.16.2 -> v1.16.5			require	patch
github.com/cpuguy83/go-md2man/v2	v2.0.5 -> v2.0.7			indirect	patch
github.com/go-logr/logr	v1.4.2 -> v1.4.3			require	patch
github.com/go-openapi/jsonpointer	v0.21.1 -> v0.21.2			indirect	patch
github.com/onsi/ginkgo/v2	v2.23.3 -> v2.23.4			require	patch
github.com/prometheus/client_model	v0.6.1 -> v0.6.2			indirect	patch
github.com/prometheus/procfs	v0.16.0 -> v0.16.1			indirect	patch
github.com/rafaeljusto/redigomock/v3	v3.1.2 -> v3.1.3			require	patch
github.com/spf13/pflag	v1.0.6 -> v1.0.7			indirect	patch
github.com/stoewer/go-strcase	v1.3.0 -> v1.3.1			indirect	patch
github.com/urfave/cli/v2	v2.27.5 -> v2.27.7			require	patch
github.com/valkey-io/valkey-go	v1.0.60 -> v1.0.64			require	patch
go (source)	1.24.0 -> 1.24.6			golang	patch
google.golang.org/grpc	v1.68.1 -> v1.68.2			indirect	patch
google.golang.org/protobuf	v1.36.6 -> v1.36.7			indirect	patch

---

Release Notes

google/cel-spec (cel.dev/expr)

v0.19.2

Compare Source

What's Changed

• Correct 'worst-cast' typos by @​hudlow in https://github.com/google/cel-spec/pull/418
• Add additional type check tests by @​jnthntatum in https://github.com/google/cel-spec/pull/419
• clarify error behavior for e.exists(x, p) by @​hudlow in https://github.com/google/cel-spec/pull/427
• typo, formatting, and link fixes by @​hudlow in https://github.com/google/cel-spec/pull/422
• tests to verify parsers ignore whitespace and comments by @​hudlow in https://github.com/google/cel-spec/pull/430
• clarify Unicode handling by @​hudlow in https://github.com/google/cel-spec/pull/423
• Fix strings.format tests by @​jcking in https://github.com/google/cel-spec/pull/435

Full Changelog: google/cel-spec@v0.19.1...v0.19.2

antlr4-go/antlr (github.com/antlr4-go/antlr/v4)

v4.13.1: Release 4.13.1

Compare Source

The 4.13.1 release has:

• Some minor performance improvements
• An optional build tag -tags antlr.nomutex which allows a build without
  using mutexes, when the user knows they will not use it with multiple
  go routines. (Note, somewhat experimental)

Note that I did not remove the sort.Slices calls. They will not be experimental for long
and are implemented efficently. Please make a fork if you must use it without this
dependency. Maybe review whether you need to do so for the sake of one call.

cert-manager/cert-manager (github.com/cert-manager/cert-manager)

v1.16.5

Compare Source

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

This patch release addresses several vulnerabilities reported by the Trivy security scanner. It is built with the latest version of Go 1.23 and includes various dependency updates.

📖 Read the full cert-manager 1.16 release notes, before installing or upgrading.

Changes since v1.16.4:

Bug or Regression

• Bump Go to v1.23.8 to fix CVE-2025-22871 (#​7706, @wallrj)
• Bump github.com/golang-jwt/jwt/v5 to v5.2.2 to fix CVE-2025-30204 (#​7708, @wallrj)
• Bump golang.org/x/net to fix CVE-2025-22872 (#​7707, @wallrj)
• Bump go-jose dependency to address CVE-2025-27144 (#​7602, @SgtCoDFish)
• Bump golang.org/x/net to address CVE-2025-22870 reported by Trivy (#​7623, @SgtCoDFish)

v1.16.4

Compare Source

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

This release is primarily intended to address a breaking change in Cloudflare's API which impacted ACME DNS-01 challenges using Cloudflare.

Many thanks to the community members who reported this issue!

Changes by Kind

Bug or Regression

• ❗ Fix issuing of certificates via DNS01 challenges on Cloudflare after a breaking change to the Cloudflare API (#​7566, @​LukeCarrier)
• Bump go to 1.23.6 to address CVE-2025-22866 reported by Trivy (#​7562, @​SgtCoDFish)
• Update go to 1.23.5 (#​7533, @​tareksha)

v1.16.3

Compare Source

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

v1.16.3 is a patch release mainly focused around bumping dependencies to address reported CVEs: CVE-2024-45337 and CVE-2024-45338.

We don't believe that cert-manager is actually vulnerable; this release is instead intended to satisfy vulnerability scanners.

It also includes a bug fix to the new renewBeforePercentage field. If you were using renewBeforePercentage, see PR #​7421 for more information.

Changes

Bug

• Bump golang.org/x/net and golang.org/x/crypto to address CVE-2024-45337 and CVE-2024-45338 (#​7485, @​erikgb)
• Fix the behaviour of renewBeforePercentage to comply with its spec (#​7441, @​cert-manager-bot)

Other

• Bump go to 1.23.4 (#​7489, @​erikgb)
• Bump base images to latest available (#​7508, @​SgtCoDFish)

cpuguy83/go-md2man (github.com/cpuguy83/go-md2man/v2)

v2.0.7

Compare Source

What's Changed

• Update usage instructions and fix module path https://github.com/cpuguy83/go-md2man/pull/139
• Table rendering fix in https://github.com/cpuguy83/go-md2man/pull/141

Full Changelog: cpuguy83/go-md2man@v2.0.6...v2.0.7

v2.0.6

Compare Source

What's Changed

• Fix typo, add links, and formatting by @​grahammiln in https://github.com/cpuguy83/go-md2man/pull/128
• README change binary name in usage example by @​mikelolasagasti in https://github.com/cpuguy83/go-md2man/pull/126
• gha: update golangci-lint to v1.62.2 by @​thaJeztah in https://github.com/cpuguy83/go-md2man/pull/131
• Preserve compatibility with go <= 1.17 by @​thaJeztah in https://github.com/cpuguy83/go-md2man/pull/130
• update minimum go version to go1.12, and test in gh by @​thaJeztah in https://github.com/cpuguy83/go-md2man/pull/129

New Contributors

• @​grahammiln made their first contribution in https://github.com/cpuguy83/go-md2man/pull/128
• @​mikelolasagasti made their first contribution in https://github.com/cpuguy83/go-md2man/pull/126

Full Changelog: cpuguy83/go-md2man@v2.0.5...v2.0.6

go-logr/logr (github.com/go-logr/logr)

v1.4.3

Compare Source

Minor release.

What's Changed

• Fix slog tests for 1.25 by @​hoeppi-google in https://github.com/go-logr/logr/pull/361
• Remove one exception from Slog testing by @​thockin in https://github.com/go-logr/logr/pull/362

New Contributors

• @​hoeppi-google made their first contribution in https://github.com/go-logr/logr/pull/361

Full Changelog: go-logr/logr@v1.4.2...v1.4.3

go-openapi/jsonpointer (github.com/go-openapi/jsonpointer)

v0.21.2

Compare Source

onsi/ginkgo (github.com/onsi/ginkgo/v2)

v2.23.4

Compare Source

2.23.4

Prior to this release Ginkgo would compute the incorrect number of available CPUs when running with -p in a linux container. Thanks to @​emirot for the fix!

Features

• Add automaxprocs for using CPUQuota [2b9c428]

Fixes

• clarify gotchas about -vet flag [1f59d07]

Maintenance

• bump dependencies [2d134d5]

prometheus/client_model (github.com/prometheus/client_model)

v0.6.2

Compare Source

What's Changed

• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/899
• Bump google.golang.org/protobuf from 1.33.0 to 1.34.0 by @​dependabot in https://github.com/prometheus/client_model/pull/888
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/900
• Bump google.golang.org/protobuf from 1.34.0 to 1.34.1 by @​dependabot in https://github.com/prometheus/client_model/pull/911
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/922
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/933
• Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 by @​dependabot in https://github.com/prometheus/client_model/pull/944
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/955
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/966
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/977
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/988
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/999
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1000
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1011
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1033
• Update google.golang.org/protobuf to v1.35.1 by @​beorn7 in https://github.com/prometheus/client_model/pull/1044
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1055
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1066
• Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 by @​dependabot in https://github.com/prometheus/client_model/pull/1077
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1088
• Bump google.golang.org/protobuf from 1.35.2 to 1.36.1 by @​dependabot in https://github.com/prometheus/client_model/pull/1099
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1100
• Bump google.golang.org/protobuf from 1.36.1 to 1.36.4 by @​dependabot in https://github.com/prometheus/client_model/pull/1111
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1122
• Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by @​dependabot in https://github.com/prometheus/client_model/pull/1133
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1144
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1155
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/client_model/pull/1166
• Bump google.golang.org/protobuf from 1.36.5 to 1.36.6 by @​SuperQ in https://github.com/prometheus/client_model/pull/1199

Full Changelog: https://github.com/prometheus/client\_model/compare/v0.6.1...v0.6.2

prometheus/procfs (github.com/prometheus/procfs)

v0.16.1

Compare Source

What's Changed

• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/procfs/pull/671
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/procfs/pull/709
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/procfs/pull/710
• Update Go by @​SuperQ in https://github.com/prometheus/procfs/pull/708
• Synchronize common files from prometheus/prometheus by @​prombot in https://github.com/prometheus/procfs/pull/713
• chore: Upgrade golangci-lint to v2 by @​kakkoyun in https://github.com/prometheus/procfs/pull/715
• Use SysReadFile for thermals and skip failed zones by @​kitschysynq in https://github.com/prometheus/procfs/pull/712
• class_infiniband: continue on syscall EINVAL by @​mfuller-lambda in https://github.com/prometheus/procfs/pull/705
• build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0 by @​dependabot in https://github.com/prometheus/procfs/pull/717
• Do not collect InfiniBand counters for Broadcom RoCE NICs by @​oneoneonepig in https://github.com/prometheus/procfs/pull/687
• build(deps): bump golang.org/x/sync from 0.12.0 to 0.13.0 by @​dependabot in https://github.com/prometheus/procfs/pull/716
• infiniband: do not make assumptions about counters based on HCA name by @​dswarbrick in https://github.com/prometheus/procfs/pull/678

New Contributors

• @​kakkoyun made their first contribution in https://github.com/prometheus/procfs/pull/715
• @​kitschysynq made their first contribution in https://github.com/prometheus/procfs/pull/712
• @​mfuller-lambda made their first contribution in https://github.com/prometheus/procfs/pull/705
• @​oneoneonepig made their first contribution in https://github.com/prometheus/procfs/pull/687

Full Changelog: prometheus/procfs@v0.16.0...v0.16.1

rafaeljusto/redigomock (github.com/rafaeljusto/redigomock/v3)

v3.1.3

Compare Source

What's Changed

• Reset errors on Clear call by @​elboulangero in https://github.com/rafaeljusto/redigomock/pull/72
• Update license GPL -> MIT in .go files too by @​elboulangero in https://github.com/rafaeljusto/redigomock/pull/73
• Typo in redigomock_test by @​elboulangero in https://github.com/rafaeljusto/redigomock/pull/74

New Contributors

• @​elboulangero made their first contribution in https://github.com/rafaeljusto/redigomock/pull/72

Full Changelog: rafaeljusto/redigomock@v3.1.2...v3.1.3

spf13/pflag (github.com/spf13/pflag)

v1.0.7

Compare Source

What's Changed

• Fix defaultIsZeroValue check for generic Value types by @​MidnightRocket in https://github.com/spf13/pflag/pull/422
• feat: Use structs for errors returned by pflag. by @​eth-p in https://github.com/spf13/pflag/pull/425
• Fix typos by @​co63oc in https://github.com/spf13/pflag/pull/428
• fix #​423 : Add helper function and some documentation to parse shorthand go test flags. by @​valdar in https://github.com/spf13/pflag/pull/424
• add support equivalent to golang flag.TextVar(), also fixes the test failure as described in #​368 by @​hujun-open in https://github.com/spf13/pflag/pull/418
• add support for Func() and BoolFunc() #​426 by @​LeGEC in https://github.com/spf13/pflag/pull/429
• fix: correct argument length check in FlagSet.Parse by @​ShawnJeffersonWang in https://github.com/spf13/pflag/pull/409
• fix usage message for func flags, fix arguments order by @​LeGEC in https://github.com/spf13/pflag/pull/431
• Add support for time.Time flags by @​max-frank in https://github.com/spf13/pflag/pull/348

New Contributors

• @​MidnightRocket made their first contribution in https://github.com/spf13/pflag/pull/422
• @​eth-p made their first contribution in https://github.com/spf13/pflag/pull/425
• @​co63oc made their first contribution in https://github.com/spf13/pflag/pull/428
• @​valdar made their first contribution in https://github.com/spf13/pflag/pull/424
• @​hujun-open made their first contribution in https://github.com/spf13/pflag/pull/418
• @​LeGEC made their first contribution in https://github.com/spf13/pflag/pull/429
• @​ShawnJeffersonWang made their first contribution in https://github.com/spf13/pflag/pull/409
• @​max-frank made their first contribution in https://github.com/spf13/pflag/pull/348

Full Changelog: spf13/pflag@v1.0.6...v1.0.7

stoewer/go-strcase (github.com/stoewer/go-strcase)

v1.3.1: Release 1.3.1

Compare Source

What's Changed

• Add fix camelCase to preserve case after numbers by @​stoewer in https://github.com/stoewer/go-strcase/pull/14

urfave/cli (github.com/urfave/cli/v2)

v2.27.7

Compare Source

What's Changed

• Update dependencies in v2 series by @​meatballhat in https://github.com/urfave/cli/pull/2159

Full Changelog: urfave/cli@v2.27.6...v2.27.7

v2.27.6

Compare Source

What's Changed

• Use usage template in subcommand help by @​meatballhat in https://github.com/urfave/cli/pull/1986
• Docs: Update cli.yml by @​dearchap in https://github.com/urfave/cli/pull/2015
• Fix:(issue_2069) Add sep for string slice by @​dearchap in https://github.com/urfave/cli/pull/2070

Full Changelog: urfave/cli@v2.27.5...v2.27.6

valkey-io/valkey-go (github.com/valkey-io/valkey-go)

v1.0.64: 1.0.64

Compare Source

Changes

• feat: Add FieldValueIter to Hsetex command builder
• feat: Add CreateAndAliasIndex to om.Repository
• fix: clear placeholder pipeline errors in valkeycompat (#​61)

Contributors

We'd like to thank all the contributors who worked on this release!

@​SoulPancake, @​XHanL, @​rueian and @​zeeshan-zomato

v1.0.63: 1.0.63

Compare Source

Changes

• feat: Add XDELEX command
• feat: add XACKDEL command
• feat: add KEEPREF, DELREF, and ACKED options to XTRIM command
• feat: Add KEEPREF, DELREF, and ACKED options to XADD command
• feat: add WITHATTRIBS option to command VSIM
• feat: add DIFF, DIFF1, ANDOR, and ONE options to BITOP command
• feat: add HStrLen to valkeycompat
• feat: Add TotalNetIn, TotalNetOut, and TotalCmds fields to valkeycompat.ClientInfo
• feat: add Scanner implementation with Iter and Iter2 methods for XSCAN
• feat: allow non-blocking client initialization when ForceSingleClient is set
• perf: replace json.NewDecoder with json.Unmarshal
• perf: reduce mux size by consolidating wire, sc, mu into one struct
• perf: allocate fields for RESP2 PubSub only when necessary

Contributors

We'd like to thank all the contributors who worked on this release!

@​Aakkash-Suresh, @​Ryan2327, @​arbhalerao, @​ash2k, @​dalaoqi, @​davidlin-tv2, @​mingdaoy, @​rueian, @​sugymt and @​yhc9311

v1.0.62: 1.0.62

Compare Source

Changes

• feat: support the SendToReplicas option in the Sentinel client.
• feat: deterministic SendToReplicas routing in the Cluster client.
• perf: changed atomic.Value to atomic.Pointer in the pipe.
• docs: fix typos and spellings.

Contributors

We'd like to thank all the contributors who worked on this release!

@​PingXie, @​jsoref, @​nithinputhenveettil, @​proost and @​rueian

v1.0.61: 1.0.61

Compare Source

Changes

• feat: add the new WithOnSubscriptionHook for the Receive method.
• feat: add AsXRangeSlices and AsXReadSlices for XRANGE and XREAD commands.

Contributors

We'd like to thank all the contributors who worked on this release!

@​atharva-navani16, @​hono0130 and @​rueian

golang/go (go)

v1.24.5

grpc/grpc-go (google.golang.org/grpc)

v1.68.2: Release 1.68.2

Compare Source

Dependencies

• Remove the experimental stats/opentelemetry module and instead add the experimental packages it contains directly into the main google.golang.org/grpc module (#​7936)

protocolbuffers/protobuf-go (google.golang.org/protobuf)

v1.36.7

Compare Source

Maintenance / optimizations:

CL/683955: encoding/protowire: micro-optimize SizeVarint (-20% on Intel)
CL/674055: internal/impl: remove unnecessary atomic access for non-lazy lists
CL/674015: impl: remove unnecessary nil check from presence.Present
CL/673495: types/descriptorpb: regenerate using latest protobuf v31 release
CL/670516: cmd/protoc-gen-go: centralize presence and lazy logic into filedesc
CL/670515: internal: move usePresenceForField to internal/filedesc
CL/670275: internal/impl: clean up usePresenceForField() (no-op)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[alaudaa-renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/google/pprof	v0.0.0-20241210010833-40e02aabc2ad -> v0.0.0-20250403155104-27863c87afa6