fix(deps): lock file maintenance vulnfeeds (#4077)

This PR contains the following updates:

| Package | Type | Update | Change | Age | Confidence |
|---|---|---|---|---|---|
|  |  | lockFileMaintenance | All locks refreshed |  |  |
|
[github.com/ossf/osv-schema/bindings/go](https://redirect.github.com/ossf/osv-schema)
| require | digest | `c3926b6` -> `f6ae0b6` |
[![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fossf%2fosv-schema%2fbindings%2fgo/v0.0.0-20250926044009-f6ae0b6bae32?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fossf%2fosv-schema%2fbindings%2fgo/v0.0.0-20250923052108-c3926b680ad5/v0.0.0-20250926044009-f6ae0b6bae32?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
| [pandas](https://redirect.github.com/pandas-dev/pandas) |
project.dependencies | patch | `==2.3.2` -> `==2.3.3` |
[![age](https://developer.mend.io/api/mc/badges/age/pypi/pandas/2.3.3?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/pandas/2.3.2/2.3.3?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|

🔧 This Pull Request updates lock files to use the latest dependency
versions.

---

### Release Notes

<details>
<summary>pandas-dev/pandas (pandas)</summary>

###
[`v2.3.3`](https://redirect.github.com/pandas-dev/pandas/releases/tag/v2.3.3):
Pandas 2.3.3

[Compare
Source](https://redirect.github.com/pandas-dev/pandas/compare/v2.3.2...v2.3.3)

We are pleased to announce the release of pandas 2.3.3.
This release includes some improvements and fixes to the future string
data type (preview feature for the upcoming pandas 3.0). We recommend
that all users upgrade to this version.

See the [full
whatsnew](https://pandas.pydata.org/pandas-docs/version/2.3/whatsnew/v2.3.3.html)
for a list of all the changes.
Pandas 2.3.3 supports Python 3.9 and higher, and is the first release to
support Python 3.14.

The release will be available on the conda-forge channel:

```
conda install pandas --channel conda-forge
```

Or via PyPI:

```
python3 -m pip install --upgrade pandas
```

Please report any issues with the release on the [pandas issue
tracker](https://redirect.github.com/pandas-dev/pandas/issues).

Thanks to all the contributors who made this release possible.

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "before 6am on wednesday" in timezone
Australia/Sydney, Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/google/osv.dev).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzEuOSIsInVwZGF0ZWRJblZlciI6IjQxLjEzMS45IiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImRlcGVuZGVuY2llcyJdfQ==-->

Author: renovate-bot

vulnfeeds/go.mod

@@ -12,7 +12,7 @@ require (
 	github.com/google/go-cmp v0.7.0
 	github.com/google/osv-scanner v1.9.2
 	github.com/knqyf263/go-cpe v0.0.0-20230627041855-cb0794d06872
-	github.com/ossf/osv-schema/bindings/go v0.0.0-20250923052108-c3926b680ad5
+	github.com/ossf/osv-schema/bindings/go v0.0.0-20250926044009-f6ae0b6bae32
 	github.com/sethvargo/go-retry v0.3.0
 	gopkg.in/dnaeon/go-vcr.v4 v4.0.5
 	gopkg.in/yaml.v2 v2.4.0

vulnfeeds/go.sum

@@ -153,8 +153,8 @@ github.com/muesli/termenv v0.16.0 h1:S5AlUN9dENB57rsbnkPyfdGuWIlkmzJjbFf0Tf5FWUc
 github.com/muesli/termenv v0.16.0/go.mod h1:ZRfOIKPFDYQoDFF4Olj7/QJbW60Ol/kL1pU3VfY/Cnk=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
 github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
-github.com/ossf/osv-schema/bindings/go v0.0.0-20250923052108-c3926b680ad5 h1:n95epqACGCY7dy3y0wzgIp2Y5dH083v+/LAQz9Yjnoo=
-github.com/ossf/osv-schema/bindings/go v0.0.0-20250923052108-c3926b680ad5/go.mod h1:/ypmJBpoMvgNp4g93snzyYoyIPmZfLdSiGn/Vq07Dfo=
+github.com/ossf/osv-schema/bindings/go v0.0.0-20250926044009-f6ae0b6bae32 h1:QFuqxEaRdRapDSJYMrl/5vAxYl5ZvIqtWszhuy/EeRs=
+github.com/ossf/osv-schema/bindings/go v0.0.0-20250926044009-f6ae0b6bae32/go.mod h1:/ypmJBpoMvgNp4g93snzyYoyIPmZfLdSiGn/Vq07Dfo=
 github.com/package-url/packageurl-go v0.1.3 h1:4juMED3hHiz0set3Vq3KeQ75KD1avthoXLtmE3I0PLs=
 github.com/package-url/packageurl-go v0.1.3/go.mod h1:nKAWB8E6uk1MHqiS/lQb9pYBGH2+mdJ2PJc2s50dQY0=
 github.com/pjbgf/sha1cd v0.3.2 h1:a9wb0bp1oC2TGwStyn0Umc/IGKQnEgF0vVaZ8QF8eo4=

vulnfeeds/tools/debian/debian_converter/poetry.lock

@@ -3,7 +3,7 @@ name = "debian_converter"
 requires-python = ">=3.11,<4.0"
 dependencies = [
     "markdownify==0.14.1",
-    "pandas==2.3.2",
+    "pandas==2.3.3",
     "python-dateutil==2.9.0.post0",
 ]