chore(deps): bump xmidt-org/shared-go from 4.2.2 to 4.3.1

[dependabot[bot]]

Bumps xmidt-org/shared-go from 4.2.2 to 4.3.1.

Release notes

Sourced from xmidt-org/shared-go's releases.

v4.3.1

Changelog

Other Work

• 6a6e2837365277508a83af5aabe4f17d801a1cab: Change the conditional logic so it hopefully works. (@​schmidtw)

v4.3.0

What's Changed

• Add sbom support. by @​schmidtw in xmidt-org/shared-go#95

Dependencies Updated

• chore(deps): bump ruby/setup-ruby from 1.167.0 to 1.168.0 by @​dependabot in xmidt-org/shared-go#68
• chore(deps): bump ietf-tools/semver-action from 1.7.1 to 1.8.0 by @​dependabot in xmidt-org/shared-go#69
• chore(deps): bump ruby/setup-ruby from 1.168.0 to 1.169.0 by @​dependabot in xmidt-org/shared-go#70
• chore(deps): bump actions/upload-artifact from 4.2.0 to 4.3.0 by @​dependabot in xmidt-org/shared-go#71
• chore(deps): bump ruby/setup-ruby from 1.169.0 to 1.170.0 by @​dependabot in xmidt-org/shared-go#72
• chore(deps): bump codecov/codecov-action from 3.1.4 to 3.1.6 by @​dependabot in xmidt-org/shared-go#74
• chore(deps): bump peter-evans/create-pull-request from 5.0.2 to 6.0.0 by @​dependabot in xmidt-org/shared-go#75
• chore(deps): bump ruby/setup-ruby from 1.170.0 to 1.171.0 by @​dependabot in xmidt-org/shared-go#76
• chore(deps): bump codecov/codecov-action from 3.1.6 to 4.0.1 by @​dependabot in xmidt-org/shared-go#78
• chore(deps): bump ncipollo/release-action from 1.13.0 to 1.14.0 by @​dependabot in xmidt-org/shared-go#79
• chore(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 by @​dependabot in xmidt-org/shared-go#80
• chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 3.7.1 by @​dependabot in xmidt-org/shared-go#81
• chore(deps): bump ruby/setup-ruby from 1.171.0 to 1.172.0 by @​dependabot in xmidt-org/shared-go#82
• chore(deps): bump codecov/codecov-action from 4.0.1 to 4.0.2 by @​dependabot in xmidt-org/shared-go#83
• chore(deps): bump actions/add-to-project from 0.5.0 to 0.6.0 by @​dependabot in xmidt-org/shared-go#84
• chore(deps): bump codecov/codecov-action from 4.0.2 to 4.1.0 by @​dependabot in xmidt-org/shared-go#85
• chore(deps): bump peter-evans/create-pull-request from 6.0.0 to 6.0.1 by @​dependabot in xmidt-org/shared-go#86
• chore(deps): bump fsfe/reuse-action from 2.0.0 to 3.0.0 by @​dependabot in xmidt-org/shared-go#87
• chore(deps): bump peter-evans/create-pull-request from 6.0.1 to 6.0.2 by @​dependabot in xmidt-org/shared-go#88
• chore(deps): bump docker/login-action from 3.0.0 to 3.1.0 by @​dependabot in xmidt-org/shared-go#90
• chore(deps): bump actions/add-to-project from 0.6.0 to 0.6.1 by @​dependabot in xmidt-org/shared-go#91
• chore(deps): bump ruby/setup-ruby from 1.172.0 to 1.173.0 by @​dependabot in xmidt-org/shared-go#92
• chore(deps): bump codecov/codecov-action from 4.1.0 to 4.1.1 by @​dependabot in xmidt-org/shared-go#93
• chore(deps): bump actions/add-to-project from 0.6.1 to 1.0.0 by @​dependabot in xmidt-org/shared-go#94
• chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @​dependabot in xmidt-org/shared-go#89

Full Changelog: https://github.com/xmidt-org/shared-go/compare/v4.2.2...v4.3.0

Commits

• 6a6e283 Change the conditional logic so it hopefully works.
• c97ff2e chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (#96)
• 9288f34 Add a cleanup action.
• 05ce99e Create 2 ids.
• a146c96 if should be fi.
• 271fa37 sbom for archives and packages.
• b4b3ceb Support any artifact type & remove deprecated calls.
• 4586bd9 Use archive instead of archives.
• 5a8d656 Use sboms not sbom.
• 6bc34d3 Fix the hash url.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[guardrails[bot]]

:warning: We detected 1 security issue in this pull request:

Hard-Coded Secrets (1)

Severity | Details | Docs :-: | :-- | :-: Medium | Title: **Github Key**
https://github.com/xmidt-org/wrp-go/blob/236af73106f09636a9196bd56d070a8fd932282d/.github/workflows/ci.yml#L23 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-key) More info on how to fix Hard-Coded Secrets in [General](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr).

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.