chore(deps): update aqua-packages

[mend-for-github-com[bot]]

This PR contains the following updates:

Package	Update	Change
anchore/syft	minor	v0.70.0 -> v0.71.0
aquaproj/aqua-registry	minor	v3.127.0 -> v3.130.0
goreleaser/goreleaser	patch	v1.15.1 -> v1.15.2
helm/helm	patch	v3.11.0 -> v3.11.1

---

Release Notes

anchore/syft

### [`v0.71.0`](https://togithub.com/anchore/syft/releases/tag/v0.71.0) [Compare Source](https://togithub.com/anchore/syft/compare/v0.70.0...v0.71.0) ### Changelog #### [v0.71.0](https://togithub.com/anchore/syft/tree/v0.71.0) (2023-02-09) [Full Changelog](https://togithub.com/anchore/syft/compare/v0.70.0...v0.71.0) ##### Added Features - Catalog postgres binary \[[Issue #​1456](https://togithub.com/anchore/syft/issues/1456)] \[[PR #​1536](https://togithub.com/anchore/syft/pull/1536)] \[[witchcraze](https://togithub.com/witchcraze)] - Improve Syft performance \[[Issue #​1328](https://togithub.com/anchore/syft/issues/1328)] \[[PR #​1510](https://togithub.com/anchore/syft/pull/1510)] \[[wagoodman](https://togithub.com/wagoodman)] - Export specific format versions (SPDX) \[[Issue #​1519](https://togithub.com/anchore/syft/issues/1519)] \[[PR #​1543](https://togithub.com/anchore/syft/pull/1543)] \[[kzantow](https://togithub.com/kzantow)] ##### Bug Fixes - source: when base is set, responsePath should be absolute \[[PR #​1542](https://togithub.com/anchore/syft/pull/1542)] \[[jedevc](https://togithub.com/jedevc)] - Licenses missing in most report format \[[Issue #​933](https://togithub.com/anchore/syft/issues/933)] \[[PR #​1540](https://togithub.com/anchore/syft/pull/1540)] \[[deitch](https://togithub.com/deitch)] - apk packages with simplified license show NOASSERTION \[[Issue #​1529](https://togithub.com/anchore/syft/issues/1529)] \[[PR #​1540](https://togithub.com/anchore/syft/pull/1540)] \[[deitch](https://togithub.com/deitch)]

aquaproj/aqua-registry

### [`v3.130.0`](https://togithub.com/aquaproj/aqua-registry/releases/tag/v3.130.0) [Compare Source](https://togithub.com/aquaproj/aqua-registry/compare/v3.129.0...v3.130.0) [Issues](https://togithub.com/aquaproj/aqua-registry/issues?q=is%3Aissue+milestone%3Av3.130.0) | [Pull Requests](https://togithub.com/aquaproj/aqua-registry/pulls?q=is%3Apr+milestone%3Av3.130.0) | https://github.com/aquaproj/aqua-registry/compare/v3.129.0...v3.130.0 #### 🎉 New Packages [#​9807](https://togithub.com/aquaproj/aqua-registry/issues/9807) [Byron/dua-cli](https://togithub.com/Byron/dua-cli): View disk space usage and delete unwanted data, fast [@​CrystalMethod](https://togithub.com/CrystalMethod) [#​9806](https://togithub.com/aquaproj/aqua-registry/issues/9806) [helix-editor/helix](https://togithub.com/helix-editor/helix): A post-modern modal text editor [@​sheldonhull](https://togithub.com/sheldonhull) [#​9805](https://togithub.com/aquaproj/aqua-registry/issues/9805) [owenrumney/squealer](https://togithub.com/owenrumney/squealer): Telling tales on you for leaking secrets [@​CrystalMethod](https://togithub.com/CrystalMethod) #### Fixes [#​9816](https://togithub.com/aquaproj/aqua-registry/issues/9816) arl/gitmux: follow up changes of gitmux v0.7.11 ### [`v3.129.0`](https://togithub.com/aquaproj/aqua-registry/releases/tag/v3.129.0) [Compare Source](https://togithub.com/aquaproj/aqua-registry/compare/v3.128.0...v3.129.0) [Issues](https://togithub.com/aquaproj/aqua-registry/issues?q=is%3Aissue+milestone%3Av3.129.0) | [Pull Requests](https://togithub.com/aquaproj/aqua-registry/pulls?q=is%3Apr+milestone%3Av3.129.0) | https://github.com/aquaproj/aqua-registry/compare/v3.128.0...v3.129.0 #### 🎉 New Packages [#​9763](https://togithub.com/aquaproj/aqua-registry/issues/9763) [domoritz/arrow-tools/csv2arrow](https://togithub.com/domoritz/arrow-tools): Convert CSV files to Apache Arrow. This package is part of Arrow CLI tools [@​CrystalMethod](https://togithub.com/CrystalMethod) [#​9764](https://togithub.com/aquaproj/aqua-registry/issues/9764) [domoritz/arrow-tools/csv2parquet](https://togithub.com/domoritz/arrow-tools): Convert CSV files to Apache Parquet. This package is part of Arrow CLI tools [@​CrystalMethod](https://togithub.com/CrystalMethod) [#​9765](https://togithub.com/aquaproj/aqua-registry/issues/9765) [domoritz/arrow-tools/json2arrow](https://togithub.com/domoritz/arrow-tools): Convert JSON files to Apache Arrow. This package is part of Arrow CLI tools [@​CrystalMethod](https://togithub.com/CrystalMethod) [#​9766](https://togithub.com/aquaproj/aqua-registry/issues/9766) [domoritz/arrow-tools/json2parquet](https://togithub.com/domoritz/arrow-tools): Convert JSON files to Apache Parquet. This package is part of Arrow CLI tools [@​CrystalMethod](https://togithub.com/CrystalMethod) [#​9780](https://togithub.com/aquaproj/aqua-registry/issues/9780) [juan-leon/lowcharts](https://togithub.com/juan-leon/lowcharts): Tool to draw low-resolution graphs in terminal [@​CrystalMethod](https://togithub.com/CrystalMethod) [#​9762](https://togithub.com/aquaproj/aqua-registry/issues/9762) [yamafaktory/jql](https://togithub.com/yamafaktory/jql): A JSON Query Language CLI tool [@​CrystalMethod](https://togithub.com/CrystalMethod) #### Fixes [#​9781](https://togithub.com/aquaproj/aqua-registry/issues/9781) FairwindsOps/nova: Follow up changes of nova v3.6.2 [@​CrystalMethod](https://togithub.com/CrystalMethod) ### [`v3.128.0`](https://togithub.com/aquaproj/aqua-registry/releases/tag/v3.128.0) [Compare Source](https://togithub.com/aquaproj/aqua-registry/compare/v3.127.0...v3.128.0) [Issues](https://togithub.com/aquaproj/aqua-registry/issues?q=is%3Aissue+milestone%3Av3.128.0) | [Pull Requests](https://togithub.com/aquaproj/aqua-registry/pulls?q=is%3Apr+milestone%3Av3.128.0) | https://github.com/aquaproj/aqua-registry/compare/v3.127.0...v3.128.0 #### 🎉 New Packages [#​9734](https://togithub.com/aquaproj/aqua-registry/issues/9734) [mmalcek/bafi](https://togithub.com/mmalcek/bafi): Universal JSON, BSON, YAML, CSV, XML converter with templates [@​CrystalMethod](https://togithub.com/CrystalMethod) #### Fixes [#​9750](https://togithub.com/aquaproj/aqua-registry/issues/9750) a8m/envsubst: follow up changes of envsubst v1.4.1 [#​9749](https://togithub.com/aquaproj/aqua-registry/issues/9749) kubescape/kubescape: follow up changes of kubescape v2.1.2

goreleaser/goreleaser

### [`v1.15.2`](https://togithub.com/goreleaser/goreleaser/releases/tag/v1.15.2) [Compare Source](https://togithub.com/goreleaser/goreleaser/compare/v1.15.1...v1.15.2) #### Changelog ##### Bug fixes - [`90d8324`](https://togithub.com/goreleaser/goreleaser/commit/90d8324971560dba8ef53e4a1268eba26f2e6740): fix(gitlab): correctly prepend/append/keep releases notes ([#​3765](https://togithub.com/goreleaser/goreleaser/issues/3765)) ([@​christophwitzko](https://togithub.com/christophwitzko)) - [`9b7603a`](https://togithub.com/goreleaser/goreleaser/commit/9b7603ac74c2afdf240135a1177203f747cf4d3a): fix: force specific version of go-crypto ([#​3756](https://togithub.com/goreleaser/goreleaser/issues/3756)) ([@​caarlos0](https://togithub.com/caarlos0)) ##### Build process updates - [`15bc656`](https://togithub.com/goreleaser/goreleaser/commit/15bc65618bbeb0c88b20fd48ab1776cb61040d3a): build: add another category to our changelog ([@​caarlos0](https://togithub.com/caarlos0)) - [`2bfbab9`](https://togithub.com/goreleaser/goreleaser/commit/2bfbab9885f4bd84a754477b8e8d85bb17abaa77): build: disable goreleaser twitter announce ([@​caarlos0](https://togithub.com/caarlos0)) - [`addd7c4`](https://togithub.com/goreleaser/goreleaser/commit/addd7c4ceb0a2459e72c097b58cea1ead6992c70): build: fix workflow syntax ([@​caarlos0](https://togithub.com/caarlos0)) - [`b0783c7`](https://togithub.com/goreleaser/goreleaser/commit/b0783c740111c45ae05327f1a1dc06626b870628): build: run test on any workflow change ([@​caarlos0](https://togithub.com/caarlos0)) - [`8191475`](https://togithub.com/goreleaser/goreleaser/commit/81914757da42dcc40d05ffb12be7086a22264d33): build: use go1.20 ([#​3757](https://togithub.com/goreleaser/goreleaser/issues/3757)) ([@​caarlos0](https://togithub.com/caarlos0)) ##### Other work - [`72bd87d`](https://togithub.com/goreleaser/goreleaser/commit/72bd87dc411ba6573bc9fc3c33d916345c5c91cc): docs: improve changelog ([@​caarlos0](https://togithub.com/caarlos0)) - [`92377e8`](https://togithub.com/goreleaser/goreleaser/commit/92377e8b6eb2c5867eef4a871caef03741ecdf40): docs: twitter non-free api warning ([@​caarlos0](https://togithub.com/caarlos0)) **Full Changelog**: https://github.com/goreleaser/goreleaser/compare/v1.15.1...v1.15.2 *** Find examples and commented usage of all options in our [website](https://goreleaser.com/intro/). Want to help? You can [sponsor](https://goreleaser.com/sponsors/),get a [Pro License](https://goreleaser.com/pro) or [contribute](https://goreleaser.com/contributing). Also, feel free to reach out on [Discord](https://discord.gg/RGEBtg8vQ6) and [Twitter](https://twitter.com/goreleaser)!

helm/helm

### [`v3.11.1`](https://togithub.com/helm/helm/releases/tag/v3.11.1): Helm v3.11.1 [Compare Source](https://togithub.com/helm/helm/compare/v3.11.0...v3.11.1) Helm v3.11.1 is a security (patch) release. Users are strongly recommended to update to this release. The template function `getHostByName` can be used to disclose information. More details are available in the [CVE](https://togithub.com/helm/helm/security/advisories/GHSA-pwcw-6f5g-gxf8). This release introduces a breaking changes to Helm: - When using the `helm` client for the `template`, `install`, and `upgrade` commands there is a new flag. `--enable-dns` needs to be set for the `getHostByName` template function to attempt to lookup an IP address for a given hostname. If the flag is not set the template function will return an empty string and skip looping up an IP address for the host. - The Helm SDK has added the `EnableDNS` property to the install action, the upgrade action, and the `Engine`. This property must be set to true for the in order for the `getHostByName` template function to attempt to lookup an IP address. The default for both of these cases is false. [Philipp Stehle](https://togithub.com/phil9909) at SAP disclosed the vulnerability to the Helm project. #### Installation and Upgrading Download Helm v3.11.1. The common platform binaries are here: - [MacOS amd64](https://get.helm.sh/helm-v3.11.1-darwin-amd64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-darwin-amd64.tar.gz.sha256sum) / 2548a90e5cc957ccc5016b47060665a9d2cd4d5b4d61dcc32f5de3144d103826) - [MacOS arm64](https://get.helm.sh/helm-v3.11.1-darwin-arm64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-darwin-arm64.tar.gz.sha256sum) / 43d0198a7a2ea2639caafa81bb0596c97bee2d4e40df50b36202343eb4d5c46b) - [Linux amd64](https://get.helm.sh/helm-v3.11.1-linux-amd64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-linux-amd64.tar.gz.sha256sum) / 0b1be96b66fab4770526f136f5f1a385a47c41923d33aab0dcb500e0f6c1bf7c) - [Linux arm](https://get.helm.sh/helm-v3.11.1-linux-arm.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-linux-arm.tar.gz.sha256sum) / 77b797134ea9a121f2ede9d159a43a8b3895a9ff92cc24b71b77fb726d9eba6d) - [Linux arm64](https://get.helm.sh/helm-v3.11.1-linux-arm64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-linux-arm64.tar.gz.sha256sum) / 919173e8fb7a3b54d76af9feb92e49e86d5a80c5185020bae8c393fa0f0de1e8) - [Linux i386](https://get.helm.sh/helm-v3.11.1-linux-386.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-linux-386.tar.gz.sha256sum) / 1581a4ce9d0014c49a3b2c6421f048d5c600e8cceced636eb4559073c335af0b) - [Linux ppc64le](https://get.helm.sh/helm-v3.11.1-linux-ppc64le.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-linux-ppc64le.tar.gz.sha256sum) / 6ab8f2e253c115b17eda1e10e96d1637047efd315e9807bcb1d0d0bcad278ab7) - [Linux s390x](https://get.helm.sh/helm-v3.11.1-linux-s390x.tar.gz) ([checksum](https://get.helm.sh/helm-v3.11.1-linux-s390x.tar.gz.sha256sum) / ab133e6b709c8107dc4f8f62838947350adb8e23d76b8c2c592ff4c09bc956ef) - [Windows amd64](https://get.helm.sh/helm-v3.11.1-windows-amd64.zip) ([checksum](https://get.helm.sh/helm-v3.11.1-windows-amd64.zip.sha256sum) / bc37d5d283e57c5dfa94f92ff704c8e273599ff8df3f8132cef5ca73f6a23d0a) This release was signed with ` 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E ` and can be found at [@​mattfarina](https://togithub.com/mattfarina) [keybase account](https://keybase.io/mattfarina). Please use the attached signatures for verifying this release using `gpg`. The [Quickstart Guide](https://helm.sh/docs/intro/quickstart/) will get you going from there. For **upgrade instructions** or detailed installation notes, check the [install guide](https://helm.sh/docs/intro/install/). You can also use a [script to install](https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3) on any system with `bash`. #### What's Next - 3.11.1 is the next patch/bug fix release and will be on March 08, 2023. - 3.12.0 is the next feature release and be on May 10, 2023.

---

Configuration

📅 Schedule: Branch creation - "before 3am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• [ ] If you want to rebase/retry this PR, check this box