chore: bump github.com/go-git/go-git/v5 from 5.4.2 to 5.10.0

[dependabot[bot]]

Bumps github.com/go-git/go-git/v5 from 5.4.2 to 5.10.0.

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.10.0

What's Changed

• PlainInitOptions.Bare and allow using InitOptions with PlainInitWithOptions by @​ThinkChaos in go-git/go-git#782
• Worktree, apply ProxyOption on Pull by @​nodivbyzero in go-git/go-git#840
• Repository: add clone --shared feature by @​enverbisevac in go-git/go-git#860
• build: Add github workflow to check commit message format by @​pjbgf in go-git/go-git#867
• Improve handling of remote errors by @​makkes in go-git/go-git#866
• build(deps): bump golang.org/x/net from 0.15.0 to 0.17.0 by @​dependabot in go-git/go-git#873
• plumbing: commitgraph, Add generation v2 support by @​zeripath in go-git/go-git#869
• plumbing: protocol/packp, Add validation for decodeLine by @​pjbgf in go-git/go-git#868
• plumbing: parse the encoding header of the commit object by @​liwenqiu in go-git/go-git#761
• plumbing: commitgraph, allow SHA256 commit-graphs by @​zeripath in go-git/go-git#853
• plumbing: commitgraph, Allow reading commit-graph chains by @​zeripath in go-git/go-git#854
• plumbing/object: Support mergetag in merge commits by @​adityasaky in go-git/go-git#847

New Contributors

• @​nodivbyzero made their first contribution in go-git/go-git#840
• @​adityasaky made their first contribution in go-git/go-git#847
• @​hezhizhen made their first contribution in go-git/go-git#836
• @​0x34d made their first contribution in go-git/go-git#855
• @​liwenqiu made their first contribution in go-git/go-git#761
• @​enverbisevac made their first contribution in go-git/go-git#860
• @​makkes made their first contribution in go-git/go-git#866

Full Changelog: https://github.com/go-git/go-git/compare/v5.9.0...v5.10.0

v5.9.0

What's Changed

• git: worktree: add Amend option to CommitOptions by @​john-cai in go-git/go-git#438
• git: worktree, reset ignored files that are part of the worktree: Fixes #819 by @​daolis in go-git/go-git#821
• plumbing: Do not swallow http message coming from VCS providers by @​matejrisek in go-git/go-git#835
• plumbing: transport, handle IPv6 while parsing endpoint. Fixes #740 by @​ninedraft in go-git/go-git#820
• *: update goproxy dependency to fix CVE-2023-37788 vulnerability by @​svghadi in go-git/go-git#832
• *: bump dependencies and Go to 1.19 by @​pjbgf in go-git/go-git#837

New Contributors

• @​svghadi made their first contribution in go-git/go-git#832
• @​daolis made their first contribution in go-git/go-git#821

Full Changelog: https://github.com/go-git/go-git/compare/v5.8.1...v5.9.0

v5.8.1

What's Changed

• *: Bump dependencies by @​pjbgf in go-git/go-git#815

Full Changelog: https://github.com/go-git/go-git/compare/v5.8.0...v5.8.1

v5.8.0

... (truncated)

Commits

• 72ce996 Merge pull request #869 from zeripath/graph-generation-2
• 24261e8 Merge pull request #873 from go-git/dependabot/go_modules/golang.org/x/net-0....
• 3ee0288 build: bump golang.org/x/net from 0.15.0 to 0.17.0
• 69b88d9 plumbing: commitgraph, Add generation v2 support
• 623c6df Merge pull request #866 from makkes/better-error-handling
• 129b709 plumbing: transport/common, Improve handling of remote errors
• e61537e Merge pull request #867 from pjbgf/commit-checker
• 1a73661 build: Add github workflow to check commit message format
• 771a3eb Merge pull request #868 from pjbgf/fix-fuzz
• 7ef7dc7 Merge pull request #860 from enverbisevac/master
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.