Bump github.com/hashicorp/vault/sdk from 0.12.0 to 0.13.0

[dependabot[bot]]

Bumps github.com/hashicorp/vault/sdk from 0.12.0 to 0.13.0.

Changelog

Sourced from github.com/hashicorp/vault/sdk's changelog.

Previous versions

• v1.0.0 - v1.9.10
• v0.11.6 and earlier

1.16.2

April 24, 2024

Enterprise LTS: Vault Enterprise 1.16 is a Long-Term Support (LTS) release.

CHANGES:

• auth/jwt: Update plugin to v0.20.2 [GH-26291]
• core: Bump Go version to 1.21.9.
• secrets/azure: Update plugin to v0.17.1 [GH-26528]
• ui: Update dependencies including D3 libraries [GH-26346]

IMPROVEMENTS:

• activity (enterprise): Change minimum retention window in activity log to 48 months
• audit: timestamps across multiple audit devices for an audit entry will now match. [GH-26088]
• license utilization reporting (enterprise): Add retention months to license utilization reports.
• sdk/decompression: DecompressWithCanary will now chunk the decompression in memory to prevent loading it all at once. [GH-26464]
• ui: fixes cases where inputs did not have associated labels [GH-26263]
• ui: show banner instead of permission denied error when batch token is expired [GH-26396]

BUG FIXES:

• agent: vault.namespace no longer gets incorrectly overridden by auto_auth.namespace, if set [GH-26427]
• api: fixed a bug where LifetimeWatcher routines weren't respecting exponential backoff in the presence of unexpected errors [GH-26383]
• core (enterprise): fix bug where raft followers disagree with the seal type after returning to one seal from two. [GH-26523]
• core/seal: During a seal reload through SIGHUP, only write updated seal barrier on an active node [GH-26381]
• core/seal: allow overriding of VAULT_GCPCKMS_SEAL_KEY_RING and VAULT_GCPCKMS_SEAL_CRYPTO_KEY environment keys in seal-ha
• events (enterprise): Terminate WebSocket connection when token is revoked.
• secrets/pki: fixed validation bug which rejected ldap schemed URLs in crl_distribution_points. [GH-26477]
• storage/raft (enterprise): Fix a bug where autopilot automated upgrades could fail due to using the wrong upgrade version
• ui: fixed a bug where the replication pages did not update display when navigating between DR and performance [GH-26325]
• ui: fixes undefined start time in filename for downloaded client count attribution csv [GH-26485]

1.16.1

April 04, 2024

Please note that Vault 1.16.1 is the first Enterprise release of the Vault Enterprise 1.16 series.

BUG FIXES:

• auth/ldap: Fix login error for group search anonymous bind. [GH-26200]
• auth/ldap: Fix login error missing entity alias attribute value. [GH-26200]
• cli: fixed a bug where the Vault CLI would error out if HOME was not set. [GH-26243]
• core: Only reload seal configuration when enable_multiseal is set to true. [GH-26166]
• secret/database: Fixed race condition where database mounts may leak connections [GH-26147]

... (truncated)

Commits

• 545064c update vault auth submodules to api/v1.14.0 (#27190)
• 4ba40e4 Update vault-plugin-auth-kubernetes to v0.19.0 (#27186)
• f3bf67f Update vault-plugin-secrets-kubernetes to v0.8.0 (#27187)
• c4eb7f7 Update vault-plugin-database-elasticsearch to v0.15.0 (#27136)
• ea47d24 remove setconfig from setDefaultRetentionMonthsInConfig (#27169)
• 7794593 Update vault-plugin-auth-kerberos to v0.12.0 (#27177)
• 0b02c5d Fix ed25519 key type in ca_util (#27093)
• 20d4427 Update vault-plugin-secrets-ad to v0.18.0 (#27172)
• 27f39ff Add license file to Dockerfile as per legal requirement (#27154)
• c5a0040 [Secrets Sync] split activation modal into separate component (#26822)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)