Bump the go-mod group across 1 directory with 12 updates

[dependabot]

Bumps the go-mod group with 9 updates in the / directory:

Package	From	To
github.com/99designs/gqlgen	0.17.87	0.17.88
github.com/DIMO-Network/attestation-api	0.1.2	0.1.15
github.com/DIMO-Network/fetch-api	0.0.16	0.1.0
github.com/aarondl/sqlboiler/v4	4.19.5	4.19.7
github.com/auth0/go-jwt-middleware/v2	2.3.0	2.3.1
github.com/prometheus/client_golang	1.23.0	1.23.2
github.com/uber/h3-go/v4	4.3.0	4.4.0
golang.org/x/sync	0.19.0	0.20.0
google.golang.org/grpc	1.79.1	1.79.2

Updates github.com/99designs/gqlgen from 0.17.87 to 0.17.88

Release notes

Sourced from github.com/99designs/gqlgen's releases.

v0.17.88

What's Changed

• Add nested batch resolver tests and documentation to batchresolver example by @​dpulpeiro in 99designs/gqlgen#4043
• Fix panic in unmarshalling null to non-nullable bound type by @​deitrix in 99designs/gqlgen#4055
• Fixes a bug that causes excessive pruning by @​AdallomRoy in 99designs/gqlgen#4054
• Missing config options in gqlgen.schema.json by @​atzedus in 99designs/gqlgen#4045
• feat: support @​goField(batch: true) directive by @​dpulpeiro in 99designs/gqlgen#4040
• Remove duplicated buildField batch flag block by @​dpulpeiro in 99designs/gqlgen#4057
• feat: add incremental code generation for follow-schema layout by @​jhonDoe15 in 99designs/gqlgen#4042
• chore(deps): bump dawidd6/action-download-artifact from 14 to 15 by @​dependabot[bot] in 99designs/gqlgen#4037
• chore(deps): bump devops-actions/actionlint from 0.1.10 to 0.1.11 by @​dependabot[bot] in 99designs/gqlgen#4036
• chore(deps-dev): bump @​apollo/client from 4.1.4 to 4.1.5 in /integration by @​dependabot[bot] in 99designs/gqlgen#4035
• chore(deps-dev): bump @​graphql-codegen/client-preset from 5.2.2 to 5.2.3 in /integration by @​dependabot[bot] in 99designs/gqlgen#4034
• chore(deps): bump github.com/sosodev/duration from 1.3.1 to 1.4.0 by @​dependabot[bot] in 99designs/gqlgen#4032
• chore(deps-dev): bump @​graphql-codegen/cli from 6.1.1 to 6.1.2 in /integration by @​dependabot[bot] in 99designs/gqlgen#4033
• chore(deps-dev): bump rollup from 4.56.0 to 4.59.0 in /integration in the npm_and_yarn group across 1 directory by @​dependabot[bot] in 99designs/gqlgen#4039
• chore(deps): bump github.com/urfave/cli/v3 from 3.6.2 to 3.7.0 by @​dependabot[bot] in 99designs/gqlgen#4046
• chore(deps-dev): bump @​apollo/client from 4.1.5 to 4.1.6 in /integration by @​dependabot[bot] in 99designs/gqlgen#4048
• chore(deps): bump mikepenz/action-junit-report from 6.2.0 to 6.3.1 by @​dependabot[bot] in 99designs/gqlgen#4049
• chore(deps): bump actions/setup-go from 6.2.0 to 6.3.0 by @​dependabot[bot] in 99designs/gqlgen#4050
• chore(deps): bump dawidd6/action-download-artifact from 15 to 16 by @​dependabot[bot] in 99designs/gqlgen#4051
• chore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 by @​dependabot[bot] in 99designs/gqlgen#4052
• chore(deps-dev): bump graphql from 16.12.0 to 16.13.0 in /integration by @​dependabot[bot] in 99designs/gqlgen#4047
• chore(deps): bump immutable from 3.7.6 to 5.1.5 in /integration in the npm_and_yarn group across 1 directory by @​dependabot[bot] in 99designs/gqlgen#4058

New Contributors

• @​dpulpeiro made their first contribution in 99designs/gqlgen#4043
• @​jhonDoe15 made their first contribution in 99designs/gqlgen#4042

Full Changelog: 99designs/gqlgen@v0.17.87...v0.17.88

Commits

• 22e9739 release v0.17.88
• c978f68 feat: add incremental code generation for follow-schema layout (#4042)
• 851ce08 chore(deps): bump immutable (#4058)
• 116a7b4 Remove duplicated buildField batch flag block (#4057)
• b7531ce feat: support @​goField(batch: true) directive (#4040)
• fc937c9 Missing config options in gqlgen.schema.json (#4045)
• 2881217 Fixes a bug that causes excessive pruning (#4054)
• 44578c5 Fix panic in unmarshalling null to non-nullable bound type (#4055)
• 6c4576c chore(deps-dev): bump graphql from 16.12.0 to 16.13.0 in /integration (#4047)
• 9782be2 chore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (#4052)
• Additional commits viewable in compare view

Updates github.com/DIMO-Network/attestation-api from 0.1.2 to 0.1.15

Release notes

Sourced from github.com/DIMO-Network/attestation-api's releases.

v0.1.15

Full Changelog: DIMO-Network/attestation-api@v0.1.14...v0.1.15

v0.1.14

What's Changed

• Remove VIN vs vehicle definition match check by @​zer0stars in DIMO-Network/attestation-api#112

Full Changelog: DIMO-Network/attestation-api@v0.1.13...v0.1.14

v0.1.13

Release v0.1.13. See commit history for changes.

v0.1.11

Full Changelog: DIMO-Network/attestation-api@v0.1.10...v0.1.11

v0.1.10

Full Changelog: DIMO-Network/attestation-api@v0.1.9...v0.1.10

v0.1.9

What's Changed

• feat: add tags to attestations by @​KevinJoiner in DIMO-Network/attestation-api#96
• Bump the actions group with 2 updates by @​dependabot[bot] in DIMO-Network/attestation-api#90

Full Changelog: DIMO-Network/attestation-api@v0.1.8...v0.1.9

v0.1.8

What's Changed

• fix: fix identity tests and move to client pkg by @​KevinJoiner in DIMO-Network/attestation-api#88
• Adding new attestations to the repo by @​zer0stars in DIMO-Network/attestation-api#91
• Fix new attestations by @​KevinJoiner in DIMO-Network/attestation-api#92
• fix: response message by @​KevinJoiner in DIMO-Network/attestation-api#94

New Contributors

• @​zer0stars made their first contribution in DIMO-Network/attestation-api#91

Full Changelog: DIMO-Network/attestation-api@v0.1.7...v0.1.8

v0.1.7

What's Changed

• Remove unnecessary vin check by @​JamesReate in DIMO-Network/attestation-api#87

Full Changelog: DIMO-Network/attestation-api@v0.1.6...v0.1.7

v0.1.6

Full Changelog: DIMO-Network/attestation-api@v0.1.5...v0.1.6

v0.1.5

... (truncated)

Commits

• e3041a4 chore: update model-garage to v0.8.16
• c0e9348 Update Image Version to aa5f5b0
• aa5f5b0 Update Image Version to 0.1.14
• 6b351ef Update Image Version to 6fc2878
• 6fc2878 Merge pull request #112 from DIMO-Network/remove-vin-definition-match-check
• ad5574c Update Image Version to 0.1.13
• 9758abd Update Image Version to 38b30db
• 38b30db chore: bump model-garage to v0.8.9
• 371a1ba Remove VIN vs vehicle definition match check
• 05f16ef Update Image Version to 0.1.11
• Additional commits viewable in compare view

Updates github.com/DIMO-Network/fetch-api from 0.0.16 to 0.1.0

Release notes

Sourced from github.com/DIMO-Network/fetch-api's releases.

v0.1.0

Full Changelog: DIMO-Network/fetch-api@v0.0.24...v0.1.0

v0.0.24

Upgrade cloudevent to v0.2.2

v0.0.23

What's Changed

• Upgrade cloudevent to v0.2.1 and consolidate subpackage imports (cloudevent/did, cloudevent/types → root cloudevent package)
• Upgrade dependencies: clickhouse-go, go-ethereum, token-exchange-api, grpc
• Remove standalone parquetreader package in favor of cloudevent/parquet integration

v0.0.22

Full Changelog: DIMO-Network/fetch-api@v0.0.21...v0.0.22

v0.0.21

Release v0.0.21

• Adjust error message in raw data permission check

v0.0.20

Release v0.0.20

• Identity-api client for device DID → vehicle DID resolution
• Fetch access: GetRawData OR (GetLocationHistory AND GetNonLocationHistory)
• Helm and sample config: IDENTITY_API_URL

v0.0.19

Full Changelog: DIMO-Network/fetch-api@v0.0.18...v0.0.19

v0.0.17

Release v0.0.17

Commits

• 490ea1b Updating fetch-api
• d5294f7 Update Image Version to 0.0.24
• 54d85f7 Update Image Version to 5e18c12
• 96407e4 Update Image Version to 0.0.24
• 5e18c12 refactor: upgrade cloudevent to v0.2.2
• 03f9349 Update Image Version to 63616ee
• 63616ee Updating bucket name
• 3f619dc Update Image Version to 0.0.23
• e172f32 Update Image Version to f48f4a8
• f48f4a8 refactor: upgrade cloudevent to v0.2.1 and consolidate subpackage imports
• Additional commits viewable in compare view

Updates github.com/DIMO-Network/server-garage from 0.0.7 to 0.0.8

Release notes

Sourced from github.com/DIMO-Network/server-garage's releases.

v0.0.8

Full Changelog: DIMO-Network/server-garage@v0.0.7...v0.0.8

Commits

• dc13a15 fix: remove unused functions
• c3af723 fix: add better test for tokenclaims
• See full diff in compare view

Updates github.com/DIMO-Network/shared from 1.0.7 to 1.1.5

Release notes

Sourced from github.com/DIMO-Network/shared's releases.

v1.1.5

What's Changed

• remove default retry, fix issue when retrying not reading error body by @​JamesReate in DIMO-Network/shared#103

Full Changelog: DIMO-Network/shared@v1.1.4...v1.1.5

v1.1.4

What's Changed

• add raw gql query method by @​JamesReate in DIMO-Network/shared#102

Full Changelog: DIMO-Network/shared@v1.1.3...v1.1.4

v1.1.3

What's Changed

• fix domain rename more places by @​JamesReate in DIMO-Network/shared#101

Full Changelog: DIMO-Network/shared@v1.1.2...v1.1.3

v1.1.2

What's Changed

• rename redirect_uri to domain by @​JamesReate in DIMO-Network/shared#100

Full Changelog: DIMO-Network/shared@v1.1.1...v1.1.2

v1.1.1

What's Changed

• redirect_uri by @​JamesReate in DIMO-Network/shared#99

Full Changelog: DIMO-Network/shared@v1.1.0...v1.1.1

v1.1.0

What's Changed

• tweaks to dimo auth by @​JamesReate in DIMO-Network/shared#98

Full Changelog: DIMO-Network/shared@v1.0.9...v1.1.0

v1.0.9

What's Changed

• refactor settings, add func for vehicle jwt by @​JamesReate in DIMO-Network/shared#97

Full Changelog: DIMO-Network/shared@v1.0.8...v1.0.9

v1.0.8

... (truncated)

Commits

• b586683 remove default retry, fix issue when retrying not reading error body (#103)
• 6cff670 add raw gql query method (#102)
• e72ec4f fix domain rename more places (#101)
• c3b68a4 rename redirect_uri to domain (#100)
• f61b346 redirect_uri (#99)
• 2070741 tweaks to dimo auth (#98)
• 7375d3d refactor settings, add func for vehicle jwt (#97)
• 42a7188 add dimo auth (#96)
• See full diff in compare view

Updates github.com/DIMO-Network/token-exchange-api from 0.3.7 to 0.4.0

Release notes

Sourced from github.com/DIMO-Network/token-exchange-api's releases.

v0.4.0

What's Changed

• Feature/pr 3946 handle account sacd by @​LorranSutter in DIMO-Network/token-exchange-api#98
• Use GraphQL for vehicle SACDs by @​elffjs in DIMO-Network/token-exchange-api#106

Full Changelog: DIMO-Network/token-exchange-api@v0.3.8...v0.4.0

v0.3.8

Full Changelog: DIMO-Network/token-exchange-api@v0.3.7...v0.3.8

Commits

• 5849c65 Update Image Version to dc9a04b
• dc9a04b Chain call counts
• 05bee55 Update Image Version to f570d46
• f570d46 Use GraphQL for vehicle SACDs (#106)
• ac0994d Update Image Version to 3981ff7
• 3981ff7 Shut up the linter
• 5de034d Update Image Version to 960f823
• 960f823 Update deps
• 5ed2076 Update Image Version to ea95c0c
• ea95c0c reducing resource requests
• Additional commits viewable in compare view

Updates github.com/aarondl/sqlboiler/v4 from 4.19.5 to 4.19.7

Changelog

Sourced from github.com/aarondl/sqlboiler/v4's changelog.

[4.19.7] - 2025-12-31

Fixed

• Version number in main.go

[4.19.6] - 2025-12-31

Fixed

• Do not treat columns with partial unique indexes as unique in psql driver.

Security

• Update golang.org/x/crypto from 0.38.0 -> 0.45.0

[4.19.2-4] - 2025-06-26

Changed

• Change import paths

[4.19.1] - 2025-05-20

Fixed

• Fix performance issue in v4.19.0 by reverting the cleanup of unused imports.
• Updated minimum required Go version to 1.23.
• Updated dependencies to fix CVEs.

[4.19.0] - 2025-05-09

Added

• Add relation getters on base model structs. (thanks @​parnic)
• Added --no-relation-getters option to prevent generation relation getters on the main structs. (thanks @​parnic)
• Add Query, Exec, and Bind helpers to the global executor. (thanks @​parnic)
  • BindGP
  • QueryRowG
  • QueryRowContextG
  • ExecG
  • ExecGP
  • QueryG
  • QueryGP
  • ExecContextG
  • ExecContextP
  • ExecContextGP
  • QueryContextG
  • QueryContextP
  • QueryContextGP

... (truncated)

Commits

• 3b1f527 Bump version
• 33a326a Update changelog
• c11dae0 Merge pull request #1467 from aarondl/dependabot/go_modules/golang.org/x/cryp...
• fba535b Bump golang.org/x/crypto from 0.38.0 to 0.45.0
• 544e18d Merge pull request #1463 from shantanuraj/shantanu/fix-json-buffer-reuse
• 7f8daf0 Drop unused sliceType argument from bind
• b5b94dd Fix buffer reuse when reading types.JSON
• 8b2fd83 add TestBindJsonSlice
• b385498 Merge pull request #1462 from beonode/psql-partial-unique-index-fix
• 5f0bad9 Revert accidental autoformatting
• Additional commits viewable in compare view

Updates github.com/auth0/go-jwt-middleware/v2 from 2.3.0 to 2.3.1

Release notes

Sourced from github.com/auth0/go-jwt-middleware/v2's releases.

v2.3.1

Security

• security: CVE-2025-27144 mitigation for v2.3.1 #344 (developerkunal)

Changelog

Sourced from github.com/auth0/go-jwt-middleware/v2's changelog.

v2.3.1 (2025-11-20)

Full Changelog

Security

• security: CVE-2025-27144 mitigation for v2.3.1 #344 (developerkunal)

Commits

• 7eb36cd Release v2.3.1 (#350)
• d05e755 Bump actions/setup-go from 5 to 6 (#353)
• 56be8bb Bump actions/checkout from 4 to 5 (#352)
• af0fe16 chore(ci): Remove Semgrep GHA Workflow (#341)
• e47477b chore: upgrade Go toolchain to 1.24.9 (#349)
• 319d80e Bump golang.org/x/sync from 0.11.0 to 0.14.0 (#339)
• df5f14d Bump golang.org/x/crypto from 0.44.0 to 0.45.0 (#346)
• 57537a2 chore: update example dependencies to latest secure versions (#348)
• ac6be7a Bump codecov/codecov-action from 5.4.0 to 5.4.3 (#340)
• 283dc45 security: CVE-2025-27144 mitigation for v2.3.1 (#344)
• Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.23.0 to 1.23.2

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.23.2 - 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

• [release-1.23] Upgrade to prometheus/common@v0.66.1 by @​aknuds1 in prometheus/client_golang#1869
• [release-1.23] Cut v1.23.2 by @​aknuds1 in prometheus/client_golang#1870

Full Changelog: prometheus/client_golang@v1.23.1...v1.23.2

v1.23.1 - 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

• [release-1.23] Upgrade to prometheus/common v0.66 by @​aknuds1 in prometheus/client_golang#1866
• [release-1.23] Cut v1.23.1 by @​aknuds1 in prometheus/client_golang#1867

Full Changelog: prometheus/client_golang@v1.23.0...v1.23.1

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.23.2 / 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

1.23.1 / 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

Commits

• 8179a56 Cut v1.23.2 (#1870)
• 4142b59 Merge pull request #1869 from prometheus/arve/upgrade-common
• 4ff40f0 Cut v1.23.1 (#1867)
• 989b029 Upgrade to prometheus/common v0.66 (#1866)
• See full diff in compare view

Updates github.com/uber/h3-go/v4 from 4.3.0 to 4.4.0

Release notes

Sourced from github.com/uber/h3-go/v4's releases.

v4.4.0

What's Changed

• test: add latlng string test coverage by @​jogly in uber/h3-go#87
• docs: update h3 version in readme by @​justinhwang in uber/h3-go#90
• chore: bump coverage to 100, update readme badges by @​justinhwang in uber/h3-go#91
• chore: remove matrix from golangci-lint action, fix coveralls parallel by @​justinhwang in uber/h3-go#92
• docs: update cov badge, attempt fix logo right align by @​justinhwang in uber/h3-go#93
• docs: revert img to align, update links to avoid redirects by @​justinhwang in uber/h3-go#94
• feat: introduce CellFrom/ToString by @​justinhwang in uber/h3-go#95
• feat: breaking: introduce Vertex typedef by @​justinhwang in uber/h3-go#96
• feat: bump H3 Core to 4.4.0 by @​justinhwang in uber/h3-go#98
• feat: introduce IndexDigit by @​justinhwang in uber/h3-go#99
• feat: use generics to avoid code duplication, add DirectedEdgeFromString by @​justinhwang in uber/h3-go#100
• feat: update error codes to match H3 core by @​justinhwang in uber/h3-go#101
• chore: update Go to v1.23, fix lint by @​justinhwang in uber/h3-go#102
• feat: add IsValidIndex by @​mojixcoder in uber/h3-go#103

Full Changelog: uber/h3-go@v4.3.0...v4.4.0

Changelog

Sourced from github.com/uber/h3-go/v4's changelog.

4.4.0 (10 Dec 2025)

Breaking Changes

• #96: Vertex mode was updated to have its own typedef.

Added

• #95: Introduced CellFromString and CellToString.
• #99: Introduced IndexDigit.
• #100: Introduced DirectedEdgeFromString.
• #103: Introduced IsValidIndex.

Changed

• #100: Used generics for some internal implementations.

Updated

• #98: H3 Core was updated to v4.4.0.
• #101: Updated error codes to match H3 Core.

Commits

• 0626a15 feat: add IsValidIndex (#103)
• b0036af chore: update Go to v1.23, fix lint (#102)
• 1e8b8a3 feat: update error codes to match H3 core (#101)
• 68c58b9 feat: use generics to avoid code duplication, add DirectedEdgeFromString (#100)
• c18b8b6 feat: introduce IndexDigit (#99)
• e9534db feat: bump H3 Core to 4.4.0 (#98)
• 0617172 feat: breaking: introduce Vertex typedef (#96)
• e3ab92b feat: introduce CellFrom/ToString (#95)
• 4d04ed6 docs: revert img to align, update links to avoid redirects (#94)
• caef3cf docs: update cov badge, attempt fix logo right align (#93)
• Additional commits viewable in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits

• ec11c4a errgroup: fix a typo in the documentation
• 1a58307 all: modernize interface{} -> any
• 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
• See full diff in compare view

Updates google.golang.org/grpc from 1.79.1 to 1.79.2

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.79.2

Bug Fixes

• stats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (grpc/grpc-go#8874)

Commits

• 8902ab6 Change the version to release 1.79.2 (#8947)
• a928670 Cherry-pick #8874 to v1.79.x (#8904)
• 06df363 Change version to 1.79.2-dev (#8903)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.