maintain: bump the go-dependencies group with 22 updates

[dependabot]

Bumps the go-dependencies group with 22 updates:

Package	From	To
github.com/aws/aws-sdk-go-v2	1.39.5	1.40.0
github.com/aws/aws-sdk-go-v2/config	1.31.16	1.32.2
github.com/aws/aws-sdk-go-v2/service/cloudformation	1.68.2	1.71.1
github.com/charmbracelet/fang	0.4.3	0.4.4
github.com/aws/aws-sdk-go-v2/credentials	1.18.20	1.19.2
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	1.18.12	1.18.14
github.com/aws/aws-sdk-go-v2/internal/configsources	1.4.12	1.4.14
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	2.7.12	2.7.14
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	1.13.2	1.13.3
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	1.13.12	1.13.14
github.com/aws/aws-sdk-go-v2/service/sso	1.30.0	1.30.5
github.com/aws/aws-sdk-go-v2/service/ssooidc	1.35.4	1.35.10
github.com/aws/aws-sdk-go-v2/service/sts	1.39.0	1.41.2
github.com/aws/smithy-go	1.23.1	1.23.2
github.com/charmbracelet/colorprofile	0.3.2	0.3.3
github.com/charmbracelet/ultraviolet	0.0.0-20250915111650-81d4262876ef	0.0.0-20251106190538-99ea45596692
github.com/charmbracelet/x/ansi	0.10.2	0.11.0
github.com/mattn/go-runewidth	0.0.17	0.0.19
golang.org/x/crypto	0.43.0	0.45.0
golang.org/x/sync	0.17.0	0.18.0
golang.org/x/sys	0.37.0	0.38.0
golang.org/x/text	0.30.0	0.31.0

Updates github.com/aws/aws-sdk-go-v2 from 1.39.5 to 1.40.0

Commits

• 466d9d5 Release 2025-11-19.2
• ca4b05e Regenerated Clients
• d780944 add logincreds provider (#3230)
• 115ff14 Release 2025-11-19
• 964750d Regenerated Clients
• 5b181c4 Update API model
• 1e2c145 Release 2025-11-18
• 163dcfe Regenerated Clients
• 38b8afe Update endpoints model
• 0252675 Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.31.16 to 1.32.2

Commits

• 0cbb5aa Release 2024-10-08
• 54c1dd6 Regenerated Clients
• 2cde144 Update endpoints model
• 67fbd35 Update API model
• aa04330 Allow non-nil but empty headers (#2826)
• 5a4e5bb add feature tracking for cbor protocol (#2821)
• 183987c add annotations to deprecated services and introduce codegen integration for ...
• b737dc9 Release 2024-10-07
• 7279a51 Regenerated Clients
• a1b1f5a Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/cloudformation from 1.68.2 to 1.71.1

Commits

• 5a96470 Release 2024-12-19
• 653aa80 Regenerated Clients
• d02b239 Update endpoints model
• 698d709 Update API model
• 885de40 Fix improper use of Printf-style functions (#2934)
• 858298a Release 2024-12-18
• f58264a Regenerated Clients
• df31082 Update endpoints model
• 346690e Update API model
• 4515454 Release 2024-12-17
• Additional commits viewable in compare view

Updates github.com/charmbracelet/fang from 0.4.3 to 0.4.4

Commits

• cfdeb11 chore: update dependencies
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.18.20 to 1.19.2

Commits

• 31c2f3f Release 2025-01-09
• ed70e6b Regenerated Clients
• 5aef5b0 Update partitions file
• 6e21e3f Update endpoints model
• 9017824 Update API model
• ebb7c02 retry net.ErrClosed by default (#2949)
• 19d2a28 Release 2025-01-08
• e153a59 Regenerated Clients
• 349cb94 Update endpoints model
• 740de30 Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/feature/ec2/imds from 1.18.12 to 1.18.14

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/feature/ec2/imds's changelog.

Release (2023-02-20)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2: v1.17.5
  • Bug Fix: fix int overflow bug on 32 bit architecture
• github.com/aws/aws-sdk-go-v2/service/auditmanager: v1.24.0
  • Feature: This release introduces a ServiceQuotaExceededException to the UpdateAssessmentFrameworkShare API operation.
• github.com/aws/aws-sdk-go-v2/service/connect: v1.47.0
  • Feature: Reasons for failed diff has been approved by SDK Reviewer

Release (2023-02-17)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/apprunner: v1.17.0
  • Feature: This release supports removing MaxSize limit for AutoScalingConfiguration.
• github.com/aws/aws-sdk-go-v2/service/glue: v1.43.0
  • Feature: Release of Delta Lake Data Lake Format for Glue Studio Service

Release (2023-02-16)

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/emr: v1.23.0
  • Feature: This release provides customers the ability to define a timeout period for procuring capacity during a resize operation for Instance Fleet clusters. Customers can specify this timeout using the ResizeSpecifications parameter supported by RunJobFlow, ModifyInstanceFleet and AddInstanceFleet APIs.
• github.com/aws/aws-sdk-go-v2/service/grafana: v1.12.0
  • Feature: With this release Amazon Managed Grafana now supports inbound Network Access Control that helps you to restrict user access to your Grafana workspaces
• github.com/aws/aws-sdk-go-v2/service/ivs: v1.20.3
  • Documentation: Doc-only update. Updated text description in DeleteChannel, Stream, and StreamSummary.
• github.com/aws/aws-sdk-go-v2/service/wafv2: v1.25.1
  • Documentation: Added a notice for account takeover prevention (ATP). The interface incorrectly lets you to configure ATP response inspection in regional web ACLs in Region US East (N. Virginia), without returning an error. ATP response inspection is only available in web ACLs that protect CloudFront distributions.

Release (2023-02-15)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/accessanalyzer: v1.19.3
  • Announcement: When receiving an error response in restJson-based services, an incorrect error type may have been returned based on the content of the response. This has been fixed via PR #2012 tracked in issue #1910.
  • Bug Fix: Correct error type parsing for restJson services.
• github.com/aws/aws-sdk-go-v2/service/account: v1.9.1
  • Announcement: When receiving an error response in restJson-based services, an incorrect error type may have been returned based on the content of the response. This has been fixed via PR #2012 tracked in issue #1910.
  • Bug Fix: Correct error type parsing for restJson services.
• github.com/aws/aws-sdk-go-v2/service/acm: v1.17.3
  • Announcement: When receiving an error response in restJson-based services, an incorrect error type may have been returned based on the content of the response. This has been fixed via PR #2012 tracked in issue #1910.

... (truncated)

Commits

• b1af56e Release 2023-02-20
• 4f504d9 Regenerated Clients
• c6191ff Update API model
• 8e6fa27 Merge pull request #2026 from aws/firstissue
• 9af2842 Don't skip anonymous (embedded) fields with named tags (#2022)
• 1ca1e18 add changelog entry
• b19c337 fix int overflow on 32 bit architecture
• 50d82a9 Release 2023-02-17
• 19dc375 Regenerated Clients
• 8fe3523 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/internal/configsources from 1.4.12 to 1.4.14

Commits

• 466d9d5 Release 2025-11-19.2
• ca4b05e Regenerated Clients
• d780944 add logincreds provider (#3230)
• 115ff14 Release 2025-11-19
• 964750d Regenerated Clients
• 5b181c4 Update API model
• 1e2c145 Release 2025-11-18
• 163dcfe Regenerated Clients
• 38b8afe Update endpoints model
• 0252675 Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 from 2.7.12 to 2.7.14

Commits

• 466d9d5 Release 2025-11-19.2
• ca4b05e Regenerated Clients
• d780944 add logincreds provider (#3230)
• 115ff14 Release 2025-11-19
• 964750d Regenerated Clients
• 5b181c4 Update API model
• 1e2c145 Release 2025-11-18
• 163dcfe Regenerated Clients
• 38b8afe Update endpoints model
• 0252675 Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding from 1.13.2 to 1.13.3

Commits

• 728f21f Release 2024-05-16
• 3dbd5ca Regenerated Clients
• c87adfd Update endpoints model
• e209d02 Update API model
• ef4a9a0 internal: capture user-agent in metrics (#2644)
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/service/internal/presigned-url from 1.13.12 to 1.13.14

Commits

• 7655449 Release 2022-10-21
• dcae829 Regenerated Clients
• b82766b Update API model
• 1c05fb6 Implements IsCredentialsProvider for checking if a provider matches a target ...
• 0fab39a Merge pull request #1888 from aws/isvita/issues-1787
• 56eb993 added changelog file
• cde8cbc Release 2022-10-20
• d7765f9 Regenerated Clients
• b9dab7e Update endpoints model
• 93ed3ee Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/sso from 1.30.0 to 1.30.5

Commits

• a2b751d Release 2024-09-03
• e22c249 Regenerated Clients
• ff0cf6f Update API model
• 3120376 refactoring of buildQuery to accept a list of maintained headers to l… (#2773)
• 4ed838e Merge pull request #2768 from bhavya2109sharma/presignedurl-requestpayer-change
• d4bd42f Merge branch 'main' into presignedurl-requestpayer-change
• 0353706 Added Changelog
• 97e2d3f Release 2024-08-30
• 4cca52b Regenerated Clients
• c8a5146 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ssooidc from 1.35.4 to 1.35.10

Commits

• aacca0a Release 2025-11-04
• f2f7085 Regenerated Clients
• 98ac357 Update endpoints model
• 545573f Update API model
• 0c4b1ae upgrade to smithy-go v1.23.2 to track allocation improvements (#3222)
• bae1d68 Release 2025-11-03
• 67d7b9c Regenerated Clients
• 74be9b9 Update API model
• 3242971 Release 2025-10-31
• 2db47dc Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.39.0 to 1.41.2

Commits

• 70eb57a Release 2024-11-06
• cd2c6b1 Regenerated Clients
• 2b2a737 Update API model
• 8c9892f bump smithy-go codegen to latest (#2890)
• 82897be fix potential for user-agent lang value mismatch in tests (#2888)
• 061540b Cloudfront - add expire time in signed cookie. (#2862)
• aa3bd1f fix makefile to not spam releases for feature/dynamodb/attributevalue (#2885)
• eb96051 Release 2024-11-01
• 7f2d000 Regenerated Clients
• 8542f2f Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/smithy-go from 1.23.1 to 1.23.2

Changelog

Sourced from github.com/aws/smithy-go's changelog.

Release (2025-11-03)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.23.2
  • Bug Fix: Adjust the initial sizes of each middleware phase to avoid some unnecessary reallocation.
  • Bug Fix: Avoid unnecessary allocation overhead from the metrics system when not in use.

Release (2025-10-15)

General Highlights

• Dependency Update: Bump minimum go version to 1.23.
• Dependency Update: Updated to the latest SDK module versions

Release (2025-09-18)

Module Highlights

• github.com/aws/smithy-go/aws-http-auth: v1.1.0
  • Feature: Added support for SIG4/SIGV4A querystring authentication.

Release (2025-08-27)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.23.0
  • Feature: Sort map keys in JSON Document types.

Release (2025-07-24)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.22.5
  • Feature: Add HTTP interceptors.

Release (2025-06-16)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.22.4
  • Bug Fix: Fix CBOR serd empty check for string and enum fields
  • Bug Fix: Fix HTTP metrics data race.
  • Bug Fix: Replace usages of deprecated ioutil package.

... (truncated)

Commits

• 299f404 Release 2025-11-03
• 8d4c6fb adjust initial caps on middleware steps (#611)
• 5cc76d9 don't re-instantiate nop instruments everywhere (#610)
• 29d3973 remove httptrace metrics overhead w/ nop metrics (#609)
• 7993c1f ci: scope down GitHub Token permissions (#607)
• See full diff in compare view

Updates github.com/charmbracelet/colorprofile from 0.3.2 to 0.3.3

Release notes

Sourced from github.com/charmbracelet/colorprofile's releases.

v0.3.3

Changelog

New!

• 08c61d2e1491954272c7fcf2fef236cabff84d5a: feat: enhance tc support detection (#60) (@​aymanbagabas)

Other stuff

• 1c12d76645302e11c376785de409bb88d41da336: ci: sync dependabot config (#54) (@​charmcli)
• 88232a34a974ec59e18f7e6038cf09e513782c72: ci: sync dependabot config (#57) (@​charmcli)

---

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

Commits

• 79165a0 chore: bump x/ansi to v0.10.3 and go-runewidth to v0.0.19
• 8a69a4a chore(deps): bump github.com/charmbracelet/x/term in the all group (#61)
• 08c61d2 feat: enhance tc support detection (#60)
• d8ad23b chore(deps): bump golang.org/x/sys in the all group (#59)
• 65c127e chore(deps): bump github.com/charmbracelet/x/ansi in the all group (#58)
• 88232a3 ci: sync dependabot config (#57)
• 18faf52 chore(deps): bump github.com/lucasb-eyer/go-colorful in the all group (#56)
• f652533 chore(deps): bump golang.org/x/sys in the all group (#55)
• 1c12d76 ci: sync dependabot config (#54)
• See full diff in compare view

Updates github.com/charmbracelet/ultraviolet from 0.0.0-20250915111650-81d4262876ef to 0.0.0-20251106190538-99ea45596692

Commits

• See full diff in compare view

Updates github.com/charmbracelet/x/ansi from 0.10.2 to 0.11.0

Commits

• 54469c2 refactor: rename SlowBlink to Blink
• d69ba38 refactor(ansi): rename constants to use prefixed typing convention (#629)
• 4274504 chore(deps): bump the all group with 2 updates (#628)
• dc9e594 fix(vt): always use grapheme width using ansi.GraphemeWidth
• 98a8eba chore(vt): bump dependencies
• 681bf55 chore(deps): bump golang.org/x/sys in /termios in the all group (#622)
• 175a161 chore(deps): bump the all group in /xpty with 2 updates (#616)
• 6394631 chore(deps): bump github.com/bits-and-blooms/bitset (#624)
• 56dea98 chore(deps): bump golang.org/x/sys in /windows in the all group (#619)
• 035cb92 fix(termios): lint: add doc.go for package documentation
• Additional commits viewable in compare view

Updates github.com/mattn/go-runewidth from 0.0.17 to 0.0.19

Commits

• 7770d04 Merge pull request #78 from josharian/josh/optimize-intable
• f53b71c Merge pull request #86 from mattn/fix-github-actions
• a09d510 Merge branch 'master' into fix-github-actions
• 778f900 Merge pull request #83 from clipperhouse/benchmark-allocs
• bfbd30c fix test.yaml
• 61f04f3 Merge pull request #82 from clipperhouse/graphemes-string-width
• db39519 Rename
• b3b19f2 Rename
• c42e215 Update version & benchmarks
• 09c88ec Lose transitive dependency
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.43.0 to 0.45.0

Commits

• 4e0068c go.mod: update golang.org/x dependencies
• e79546e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs
• f91f7a7 ssh/agent: prevent panic on malformed constraint
• 2df4153 acme/autocert: let automatic renewal work with short lifetime certs
• bcf6a84 acme: pass context to request
• b4f2b62 ssh: fix error message on unsupported cipher
• 79ec3a5 ssh: allow to bind to a hostname in remote forwarding
• 122a78f go.mod: update golang.org/x dependencies
• c0531f9 all: eliminate vet diagnostics
• 0997000 all: fix some comments
• Additional commits viewable in compare view

Updates golang.org/x/sync from 0.17.0 to 0.18.0

Commits

• 1966f53 errgroup: fix some typos in comment
• See full diff in compare view

Updates golang.org/x/sys from 0.37.0 to 0.38.0

Commits

• 15129aa cpu: also use MRS instruction in getmmfr1
• ed38ca2 unix: add SizeofNhmsg and SizeofNexthopGrp
• 3675c4c cpu: use MRS instruction to read arm64 system registers
• 2a15272 unix: add consts for ELF handling
• 6239615 cpu: add HPDS, LOR, PAN detection for arm64
• ea436ef windows: add iphlpapi routing functions
• 28c5bda unix: add SetMemPolicy and its mode/flag values
• b731f78 unix/linux: switch to ubuntu 25.04, Go 1.25.1
• See full diff in compare view

Updates golang.org/x/text from 0.30.0 to 0.31.0

Commits

• e7ff6b3 go.mod: update golang.org/x dependencies
• fbf012b all: use reflect.TypeFor instead of reflect.TypeOf
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions