build(deps): Bump the all group across 1 directory with 4 updates

[dependabot[bot]]

Bumps the all group with 4 updates in the / directory: github.com/prometheus/client_golang, sigs.k8s.io/release-utils, github.com/hashicorp/go-retryablehttp and github.com/sigstore/protobuf-specs.

Updates github.com/prometheus/client_golang from 1.19.0 to 1.19.1

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.19.1

What's Changed

• Security patches for golang.org/x/sys and google.golang.org/protobuf

New Contributors

• @​lukasauk made their first contribution in prometheus/client_golang#1494

Full Changelog: https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

Unreleased

Commits

• 6e3f4b1 Cut 1.19.1 (#1494)
• cad1bfa Merge pull request #1454 from prometheus/small-nits
• 0aa8c9f Rephrase incompatibility with common v0.48.0
• See full diff in compare view

Updates sigs.k8s.io/release-utils from 0.8.1 to 0.8.2

Release notes

Sourced from sigs.k8s.io/release-utils's releases.

v0.8.2

What's Changed

• bump golangci-lint / zeitgeist / cosign and dependencies by @​cpanato in kubernetes-sigs/release-utils#103

Full Changelog: https://github.com/kubernetes-sigs/release-utils/compare/v0.8.1...v0.8.2

Commits

• 3443b02 Merge pull request #103 from cpanato/updates
• 198beee update dependencies
• 5fb976c bump golangci-lint / zeitgeist / cosign
• See full diff in compare view

Updates github.com/hashicorp/go-retryablehttp from 0.7.5 to 0.7.6

Changelog

Sourced from github.com/hashicorp/go-retryablehttp's changelog.

0.7.6 (May 9, 2024)

ENHANCEMENTS:

• client: support a RetryPrepare function for modifying the request before retrying (#216)
• client: support HTTP-date values for Retry-After header value (#138)
• client: avoid reading entire body when the body is a *bytes.Reader (#197)

BUG FIXES:

• client: fix a broken check for invalid server certificate in go 1.20+ (#210)

Commits

• d969eaa Merge pull request #225 from hashicorp/manicminer-patch-2
• 2ad8ed4 v0.7.6
• 4077b29 Changelog for #210
• 1643719 Merge pull request #210 from tomclegg/noretry-header-cert
• eb08cce Merge branch 'main' into noretry-header-cert
• 4fb315e Merge pull request #224 from hashicorp/tooling/pr-actions
• f67cc6e deprecations, linting
• e82c700 GHA workflows for unit tests
• 834d13d update go version
• e6c9acc Merge pull request #223 from hashicorp/manicminer-patch-1
• Additional commits viewable in compare view

Updates github.com/sigstore/protobuf-specs from 0.3.1 to 0.3.2

Changelog

Sourced from github.com/sigstore/protobuf-specs's changelog.

Changelog

All notable changes to protobuf-specs will be documented in this file.

The format is based on Keep a Changelog.

All versions prior to 0.2.0 are untracked.

[Unreleased]

Added

• Added TransparencyLogInstance.checkpoint_key_id as an optional key identifier for logs that generate checkpoints (#284)

Changed

• Docs: Clarified DSSE envelope signature cardinality (#318)
• Docs: Clarifier behavior of key identifiers (#284)

Commits

• 38622d0 gen: bump JS patch version (#321)
• fcbe715 gen: bump patch versions (#319)
• b5b97ec Clairified that a DSSE envelope in a sigstore bundle MUST have exactly one si...
• 0a028ad build(deps): bump softprops/action-gh-release from 2.0.4 to 2.0.5 (#317)
• 82de901 build(deps): bump actions/checkout from 4.1.4 to 4.1.5 (#315)
• 1078af1 build(deps): bump google.golang.org/protobuf from 1.34.0 to 1.34.1 (#316)
• 2bfc122 build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.0 (#310)
• 133fc6c build(deps): bump ruby/setup-ruby from 1.175.0 to 1.175.1 (#309)
• dfae94f build(deps): bump gradle/wrapper-validation-action from 3.3.1 to 3.3.2 (#308)
• b195a55 build(deps): bump gradle/actions from 3.3.1 to 3.3.2 (#307)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions