build(deps): bump github.com/hashicorp/vault/sdk from 0.12.0 to 0.13.0

[dependabot[bot]]

Bumps github.com/hashicorp/vault/sdk from 0.12.0 to 0.13.0.

Changelog

Sourced from github.com/hashicorp/vault/sdk's changelog.

Previous versions

• v1.0.0 - v1.9.10
• v0.11.6 and earlier

1.16.2

April 24, 2024

Enterprise LTS: Vault Enterprise 1.16 is a Long-Term Support (LTS) release.

CHANGES:

• auth/jwt: Update plugin to v0.20.2 [GH-26291]
• core: Bump Go version to 1.21.9.
• secrets/azure: Update plugin to v0.17.1 [GH-26528]
• ui: Update dependencies including D3 libraries [GH-26346]

IMPROVEMENTS:

• activity (enterprise): Change minimum retention window in activity log to 48 months
• audit: timestamps across multiple audit devices for an audit entry will now match. [GH-26088]
• license utilization reporting (enterprise): Add retention months to license utilization reports.
• sdk/decompression: DecompressWithCanary will now chunk the decompression in memory to prevent loading it all at once. [GH-26464]
• ui: fixes cases where inputs did not have associated labels [GH-26263]
• ui: show banner instead of permission denied error when batch token is expired [GH-26396]

BUG FIXES:

• agent: vault.namespace no longer gets incorrectly overridden by auto_auth.namespace, if set [GH-26427]
• api: fixed a bug where LifetimeWatcher routines weren't respecting exponential backoff in the presence of unexpected errors [GH-26383]
• core (enterprise): fix bug where raft followers disagree with the seal type after returning to one seal from two. [GH-26523]
• core/seal: During a seal reload through SIGHUP, only write updated seal barrier on an active node [GH-26381]
• core/seal: allow overriding of VAULT_GCPCKMS_SEAL_KEY_RING and VAULT_GCPCKMS_SEAL_CRYPTO_KEY environment keys in seal-ha
• events (enterprise): Terminate WebSocket connection when token is revoked.
• secrets/pki: fixed validation bug which rejected ldap schemed URLs in crl_distribution_points. [GH-26477]
• storage/raft (enterprise): Fix a bug where autopilot automated upgrades could fail due to using the wrong upgrade version
• ui: fixed a bug where the replication pages did not update display when navigating between DR and performance [GH-26325]
• ui: fixes undefined start time in filename for downloaded client count attribution csv [GH-26485]

1.16.1

April 04, 2024

Please note that Vault 1.16.1 is the first Enterprise release of the Vault Enterprise 1.16 series.

BUG FIXES:

• auth/ldap: Fix login error for group search anonymous bind. [GH-26200]
• auth/ldap: Fix login error missing entity alias attribute value. [GH-26200]
• cli: fixed a bug where the Vault CLI would error out if HOME was not set. [GH-26243]
• core: Only reload seal configuration when enable_multiseal is set to true. [GH-26166]
• secret/database: Fixed race condition where database mounts may leak connections [GH-26147]

... (truncated)

Commits

• 545064c update vault auth submodules to api/v1.14.0 (#27190)
• 4ba40e4 Update vault-plugin-auth-kubernetes to v0.19.0 (#27186)
• f3bf67f Update vault-plugin-secrets-kubernetes to v0.8.0 (#27187)
• c4eb7f7 Update vault-plugin-database-elasticsearch to v0.15.0 (#27136)
• ea47d24 remove setconfig from setDefaultRetentionMonthsInConfig (#27169)
• 7794593 Update vault-plugin-auth-kerberos to v0.12.0 (#27177)
• 0b02c5d Fix ed25519 key type in ca_util (#27093)
• 20d4427 Update vault-plugin-secrets-ad to v0.18.0 (#27172)
• 27f39ff Add license file to Dockerfile as per legal requirement (#27154)
• c5a0040 [Secrets Sync] split activation modal into separate component (#26822)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[dependabot[bot]]

Superseded by #111.