chore(deps): bump github.com/spf13/afero from 1.14.0 to 1.15.0

[dependabot]

Bumps github.com/spf13/afero from 1.14.0 to 1.15.0.

Release notes

Sourced from github.com/spf13/afero's releases.

v1.15.0

What's Changed

• Bump golangci/golangci-lint-action from 6.5.1 to 6.5.2 by @​dependabot[bot] in spf13/afero#479
• Lint by @​sagikazarmark in spf13/afero#492
• build(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by @​dependabot[bot] in spf13/afero#494
• build(deps): bump actions/dependency-review-action from 4.5.0 to 4.6.0 by @​dependabot[bot] in spf13/afero#493
• Bump actions/setup-go from 5.3.0 to 5.4.0 by @​dependabot[bot] in spf13/afero#480
• build(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by @​dependabot[bot] in spf13/afero#496
• support aliyun oss storage with third-party link by @​messikiller in spf13/afero#491
• build(deps): bump github/codeql-action from 3.28.16 to 3.28.17 by @​dependabot[bot] in spf13/afero#497
• chore: update x/test by @​sagikazarmark in spf13/afero#502
• build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by @​dependabot[bot] in spf13/afero#503
• build(deps): bump actions/dependency-review-action from 4.6.0 to 4.7.1 by @​dependabot[bot] in spf13/afero#505
• build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by @​dependabot[bot] in spf13/afero#506
• fix(gcsfs): update object not exist check logic by @​ahkui in spf13/afero#485
• build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @​dependabot[bot] in spf13/afero#508
• build(deps): bump github/codeql-action from 3.28.18 to 3.29.4 by @​dependabot[bot] in spf13/afero#519
• build(deps): bump github/codeql-action from 3.29.4 to 3.29.7 by @​dependabot[bot] in spf13/afero#524
• build(deps): bump github/codeql-action from 3.29.7 to 3.30.1 by @​dependabot[bot] in spf13/afero#537
• build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by @​dependabot[bot] in spf13/afero#536
• build(deps): bump actions/dependency-review-action from 4.7.1 to 4.7.3 by @​dependabot[bot] in spf13/afero#533
• build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in spf13/afero#527
• chore: update deps by @​sagikazarmark in spf13/afero#538
• fix: spelling errors (excpected -> expected, iself -> itself) by @​MarkRosemaker in spf13/afero#523

New Contributors

• @​messikiller made their first contribution in spf13/afero#491
• @​ahkui made their first contribution in spf13/afero#485
• @​MarkRosemaker made their first contribution in spf13/afero#523

Full Changelog: spf13/afero@v1.14.0...v1.15.0

Commits

• 399bb34 Merge pull request #523 from MarkRosemaker/fix-spelling
• 9b67716 Merge pull request #538 from spf13/deps
• f5f4f7b chore: update deps
• c245c4f ci: update ci
• 85c4956 Merge pull request #527 from spf13/dependabot/github_actions/actions/checkout...
• 41206fd build(deps): bump actions/checkout from 4.2.2 to 5.0.0
• a583fad Merge pull request #533 from spf13/dependabot/github_actions/actions/dependen...
• 673c03e Merge pull request #536 from spf13/dependabot/github_actions/actions/setup-go...
• ac849f6 Merge pull request #537 from spf13/dependabot/github_actions/github/codeql-ac...
• 9596fe8 build(deps): bump github/codeql-action from 3.29.7 to 3.30.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/spf13/afero	1.15.0	🟢 5.7	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Maintained 🟢 10 29 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 1 Found 1/8 approved changesets -- score normalized to 1 Pinned-Dependencies 🟢 10 all dependencies are pinned CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities 🟢 9 1 existing vulnerabilities detected Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected CI-Tests 🟢 10 12 out of 12 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 44 contributing companies or organizations

Scanned Files

• go.mod

[vdice]

@dependabot rebase

[dependabot]

Looks like github.com/spf13/afero is up-to-date now, so this is no longer needed.