chore(deps): lock file maintenance vulnfeeds (#2816)

This PR contains the following updates: | Package | Type | Update | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---|---|---| | | | lockFileMaintenance | All locks refreshed | | | | | | [cloud.google.com/go/secretmanager](https://redirect.github.com/googleapis/google-cloud-go) | require | patch | `v1.14.1` -> `v1.14.2` | [![age](https://developer.mend.io/api/mc/badges/age/go/cloud.google.com%2fgo%2fsecretmanager/v1.14.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/cloud.google.com%2fgo%2fsecretmanager/v1.14.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/cloud.google.com%2fgo%2fsecretmanager/v1.14.1/v1.14.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/cloud.google.com%2fgo%2fsecretmanager/v1.14.1/v1.14.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | | [github.com/atombender/go-jsonschema](https://redirect.github.com/atombender/go-jsonschema) | require | minor | `v0.16.0` -> `v0.17.0` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fatombender%2fgo-jsonschema/v0.17.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fatombender%2fgo-jsonschema/v0.17.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fatombender%2fgo-jsonschema/v0.16.0/v0.17.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fatombender%2fgo-jsonschema/v0.16.0/v0.17.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | | [github.com/google/osv-scanner](https://redirect.github.com/google/osv-scanner) | require | patch | `v1.9.0` -> `v1.9.1` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fgoogle%2fosv-scanner/v1.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fgoogle%2fosv-scanner/v1.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fgoogle%2fosv-scanner/v1.9.0/v1.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fgoogle%2fosv-scanner/v1.9.0/v1.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Release Notes <details> <summary>atombender/go-jsonschema (github.com/atombender/go-jsonschema)</summary> ### [`v0.17.0`](https://redirect.github.com/omissis/go-jsonschema/releases/tag/v0.17.0) [Compare Source](https://redirect.github.com/atombender/go-jsonschema/compare/v0.16.0...v0.17.0) #### Highlights - Implement pattern validation for strings - Implement numeric validation - Introduce unmarshalling for additional properties - Update go to 1.22.8 in ci and dev - Allow CustomNameTypes to specify nillability #### What's Changed - chore(deps): update actions/checkout digest to [`1d96c77`](https://redirect.github.com/atombender/go-jsonschema/commit/1d96c77) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/219](https://redirect.github.com/omissis/go-jsonschema/pull/219) - chore(deps): update actions/checkout digest to [`0ad4b8f`](https://redirect.github.com/atombender/go-jsonschema/commit/0ad4b8f) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/221](https://redirect.github.com/omissis/go-jsonschema/pull/221) - Allow `CustomNameType`s to specify nillability by [@andrew-farries](https://redirect.github.com/andrew-farries) in [https://github.com/omissis/go-jsonschema/pull/220](https://redirect.github.com/omissis/go-jsonschema/pull/220) - chore(deps): update dependency golangci-lint to v1.58.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/222](https://redirect.github.com/omissis/go-jsonschema/pull/222) - fix(deps): update module golang.org/x/exp to v0.0.0-20240506185415-9bf2ced13842 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/223](https://redirect.github.com/omissis/go-jsonschema/pull/223) - chore(deps): update golang docker tag to v1.22.3 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/224](https://redirect.github.com/omissis/go-jsonschema/pull/224) - chore(deps): update actions/checkout digest to [`44c2b7a`](https://redirect.github.com/atombender/go-jsonschema/commit/44c2b7a) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/225](https://redirect.github.com/omissis/go-jsonschema/pull/225) - chore(deps): update dependency golangci-lint to v1.58.1 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/226](https://redirect.github.com/omissis/go-jsonschema/pull/226) - chore(deps): update actions/checkout digest to [`0ad4b8f`](https://redirect.github.com/atombender/go-jsonschema/commit/0ad4b8f) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/227](https://redirect.github.com/omissis/go-jsonschema/pull/227) - chore(deps): update dependency golangci-lint to v1.58.2 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/228](https://redirect.github.com/omissis/go-jsonschema/pull/228) - chore(deps): update actions/checkout digest to [`a5ac7e5`](https://redirect.github.com/atombender/go-jsonschema/commit/a5ac7e5) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/229](https://redirect.github.com/omissis/go-jsonschema/pull/229) - fix(deps): update golang.org/x/exp digest to [`4c93da0`](https://redirect.github.com/atombender/go-jsonschema/commit/4c93da0) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/230](https://redirect.github.com/omissis/go-jsonschema/pull/230) - chore(deps): update dependency golangci-lint to v1.59.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/232](https://redirect.github.com/omissis/go-jsonschema/pull/232) - fix(deps): update golang.org/x/exp digest to [`23cca88`](https://redirect.github.com/atombender/go-jsonschema/commit/23cca88) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/233](https://redirect.github.com/omissis/go-jsonschema/pull/233) - fix(deps): update golang.org/x/exp digest to [`404ba88`](https://redirect.github.com/atombender/go-jsonschema/commit/404ba88) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/234](https://redirect.github.com/omissis/go-jsonschema/pull/234) - fix(deps): update golang.org/x/exp digest to [`fd00a4e`](https://redirect.github.com/atombender/go-jsonschema/commit/fd00a4e) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/235](https://redirect.github.com/omissis/go-jsonschema/pull/235) - fix(deps): update golang.org/x/exp digest to [`fc45aab`](https://redirect.github.com/atombender/go-jsonschema/commit/fc45aab) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/236](https://redirect.github.com/omissis/go-jsonschema/pull/236) - chore(deps): update dependency golang to v1.22.4 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/237](https://redirect.github.com/omissis/go-jsonschema/pull/237) - docs: correct `go` version requirement by [@jamietanna](https://redirect.github.com/jamietanna) in [https://github.com/omissis/go-jsonschema/pull/240](https://redirect.github.com/omissis/go-jsonschema/pull/240) - chore(deps): update goreleaser/goreleaser-action action to v6 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/238](https://redirect.github.com/omissis/go-jsonschema/pull/238) - chore(deps): update dependency golangci-lint to v1.59.1 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/245](https://redirect.github.com/omissis/go-jsonschema/pull/245) - chore(deps): update actions/checkout digest to [`692973e`](https://redirect.github.com/atombender/go-jsonschema/commit/692973e) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/247](https://redirect.github.com/omissis/go-jsonschema/pull/247) - fix(deps): update golang.org/x/exp digest to [`7f521ea`](https://redirect.github.com/atombender/go-jsonschema/commit/7f521ea) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/248](https://redirect.github.com/omissis/go-jsonschema/pull/248) - fix(deps): update module github.com/spf13/cobra to v1.8.1 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/249](https://redirect.github.com/omissis/go-jsonschema/pull/249) - fix(deps): update golang.org/x/exp digest to [`46b0784`](https://redirect.github.com/atombender/go-jsonschema/commit/46b0784) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/252](https://redirect.github.com/omissis/go-jsonschema/pull/252) - chore(deps): update dependency golang to v1.22.5 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/253](https://redirect.github.com/omissis/go-jsonschema/pull/253) - fix(deps): update module github.com/goccy/go-yaml to v1.12.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/254](https://redirect.github.com/omissis/go-jsonschema/pull/254) - fix(deps): update golang.org/x/exp digest to [`e3f2596`](https://redirect.github.com/atombender/go-jsonschema/commit/e3f2596) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/255](https://redirect.github.com/omissis/go-jsonschema/pull/255) - fix(deps): update golang.org/x/exp digest to [`8a7402a`](https://redirect.github.com/atombender/go-jsonschema/commit/8a7402a) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/256](https://redirect.github.com/omissis/go-jsonschema/pull/256) - chore(deps): update dependency golang to v1.22.6 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/258](https://redirect.github.com/omissis/go-jsonschema/pull/258) - fix(deps): update golang.org/x/exp digest to [`0cdaa3a`](https://redirect.github.com/atombender/go-jsonschema/commit/0cdaa3a) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/260](https://redirect.github.com/omissis/go-jsonschema/pull/260) - chore(deps): update dependency golang to v1.23.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/261](https://redirect.github.com/omissis/go-jsonschema/pull/261) - chore(deps): update dependency golangci-lint to v1.60.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/262](https://redirect.github.com/omissis/go-jsonschema/pull/262) - chore(deps): update dependency golangci-lint to v1.60.1 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/263](https://redirect.github.com/omissis/go-jsonschema/pull/263) - chore(deps): update dependency shfmt to v3.9.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/265](https://redirect.github.com/omissis/go-jsonschema/pull/265) - chore(deps): update dependency golangci-lint to v1.60.2 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/266](https://redirect.github.com/omissis/go-jsonschema/pull/266) - fix(deps): update golang.org/x/exp digest to [`778ce7b`](https://redirect.github.com/atombender/go-jsonschema/commit/778ce7b) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/267](https://redirect.github.com/omissis/go-jsonschema/pull/267) - fix(deps): update golang.org/x/exp digest to [`9b4947d`](https://redirect.github.com/atombender/go-jsonschema/commit/9b4947d) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/268](https://redirect.github.com/omissis/go-jsonschema/pull/268) - chore(deps): update dependency golangci-lint to v1.60.3 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/269](https://redirect.github.com/omissis/go-jsonschema/pull/269) - fix(deps): update golang.org/x/exp digest to [`e7e105d`](https://redirect.github.com/atombender/go-jsonschema/commit/e7e105d) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/270](https://redirect.github.com/omissis/go-jsonschema/pull/270) - chore(deps): update dependency golang to v1.23.1 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/271](https://redirect.github.com/omissis/go-jsonschema/pull/271) - chore(deps): update dependency golangci-lint to v1.61.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/273](https://redirect.github.com/omissis/go-jsonschema/pull/273) - chore: update deps [`2024091`](https://redirect.github.com/atombender/go-jsonschema/commit/20240914) by [@omissis](https://redirect.github.com/omissis) in [https://github.com/omissis/go-jsonschema/pull/274](https://redirect.github.com/omissis/go-jsonschema/pull/274) - Add pattern, support reference constraints on primitives, and add number/integer constraints by [@nolag](https://redirect.github.com/nolag) in [https://github.com/omissis/go-jsonschema/pull/264](https://redirect.github.com/omissis/go-jsonschema/pull/264) - fix(deps): update module github.com/stretchr/testify to v1 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/277](https://redirect.github.com/omissis/go-jsonschema/pull/277) - chore(deps): update dependency go to v1.23.2 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/286](https://redirect.github.com/omissis/go-jsonschema/pull/286) - chore(deps): update dependency golang to v1.23.2 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/287](https://redirect.github.com/omissis/go-jsonschema/pull/287) - fix(deps): update golang.org/x/exp digest to [`225e2ab`](https://redirect.github.com/atombender/go-jsonschema/commit/225e2ab) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/289](https://redirect.github.com/omissis/go-jsonschema/pull/289) - chore(deps): update actions/checkout digest to [`eef6144`](https://redirect.github.com/atombender/go-jsonschema/commit/eef6144) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/290](https://redirect.github.com/omissis/go-jsonschema/pull/290) - fix(deps): update golang.org/x/exp digest to [`f66d83c`](https://redirect.github.com/atombender/go-jsonschema/commit/f66d83c) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/292](https://redirect.github.com/omissis/go-jsonschema/pull/292) - chore(deps): update dependency shfmt to v3.10.0 by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/294](https://redirect.github.com/omissis/go-jsonschema/pull/294) - chore(deps): update actions/checkout digest to [`11bd719`](https://redirect.github.com/atombender/go-jsonschema/commit/11bd719) by [@renovate](https://redirect.github.com/renovate) in [https://github.com/omissis/go-jsonschema/pull/298](https://redirect.github.com/omissis/go-jsonschema/pull/298) - Additional Properties do not get unmarshalled by [@omissis](https://redirect.github.com/omissis) in [https://github.com/omissis/go-jsonschema/pull/278](https://redirect.github.com/omissis/go-jsonschema/pull/278) - update go to 1.22.8 by [@omissis](https://redirect.github.com/omissis) in [https://github.com/omissis/go-jsonschema/pull/299](https://redirect.github.com/omissis/go-jsonschema/pull/299) #### New Contributors - [@andrew-farries](https://redirect.github.com/andrew-farries) made their first contribution in [https://github.com/omissis/go-jsonschema/pull/220](https://redirect.github.com/omissis/go-jsonschema/pull/220) - [@jamietanna](https://redirect.github.com/jamietanna) made their first contribution in [https://github.com/omissis/go-jsonschema/pull/240](https://redirect.github.com/omissis/go-jsonschema/pull/240) - [@nolag](https://redirect.github.com/nolag) made their first contribution in [https://github.com/omissis/go-jsonschema/pull/264](https://redirect.github.com/omissis/go-jsonschema/pull/264) **Full Changelog**: omissis/go-jsonschema@v0.16.0...v0.17.0 </details> <details> <summary>google/osv-scanner (github.com/google/osv-scanner)</summary> ### [`v1.9.1`](https://redirect.github.com/google/osv-scanner/blob/HEAD/CHANGELOG.md#v191) [Compare Source](https://redirect.github.com/google/osv-scanner/compare/v1.9.0...v1.9.1) ##### Features: - [Feature #1295](https://redirect.github.com/google/osv-scanner/pull/1295) Support offline database in fix subcommand. - [Feature #1342](https://redirect.github.com/google/osv-scanner/pull/1342) Add `--experimental-offline-vulnerabilities` and `--experimental-no-resolve` flags. - [Feature #1045](https://redirect.github.com/google/osv-scanner/pull/1045) Support private registries for Maven. - [Feature #1226](https://redirect.github.com/google/osv-scanner/pull/1226) Support support `vulnerabilities.ignore` in package overrides. ##### Fixes: - [Bug #604](https://redirect.github.com/google/osv-scanner/pull/604) Use correct path separator in SARIF output when on Windows. - [Bug #330](https://redirect.github.com/google/osv-scanner/pull/330) Warn about and ignore duplicate entries in SBOMs. - [Bug #1325](https://redirect.github.com/google/osv-scanner/pull/1325) Set CharsetReader and Entity when reading pom.xml. - [Bug #1310](https://redirect.github.com/google/osv-scanner/pull/1310) Update spdx license ids. - [Bug #1288](https://redirect.github.com/google/osv-scanner/pull/1288) Sort sbom packages by PURL. - [Bug #1285](https://redirect.github.com/google/osv-scanner/pull/1285) Improve handling if `docker` exits with a non-zero code when trying to scan images ##### API Changes: - Deprecate auxillary public packages: As part of the V2 update described above, we have started deprecating some of the auxillary packages which are not commonly used to give us more room to make better API designs. These include: - `config` - `depsdev` - `grouper` - `spdx` </details> --- ### Configuration 📅 **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev).  Co-authored-by: Holly Gong <[email protected]>
google · Nov 1, 2024 · 40dbb9d · 40dbb9d
1 parent 5711fbf
commit 40dbb9d
Show file tree

Hide file tree

Showing 2 changed files with 42 additions and 42 deletions.
diff --git a/vulnfeeds/go.mod b/vulnfeeds/go.mod
@@ -4,23 +4,23 @@ go 1.23.1
 
 require (
 	cloud.google.com/go/logging v1.12.0
-	cloud.google.com/go/secretmanager v1.14.1
+	cloud.google.com/go/secretmanager v1.14.2
 	github.com/aquasecurity/go-pep440-version v0.0.0-20210121094942-22b2f8951d46
-	github.com/atombender/go-jsonschema v0.16.0
+	github.com/atombender/go-jsonschema v0.17.0
 	github.com/go-git/go-git/v5 v5.12.0
 	github.com/google/go-cmp v0.6.0
-	github.com/google/osv-scanner v1.9.0
+	github.com/google/osv-scanner v1.9.1
 	github.com/knqyf263/go-cpe v0.0.0-20230627041855-cb0794d06872
 	github.com/sethvargo/go-retry v0.3.0
 	golang.org/x/exp v0.0.0-20241009180824-f66d83c29e7c
 	gopkg.in/yaml.v2 v2.4.0
 )
 
 require (
-	cloud.google.com/go v0.115.1 // indirect
-	cloud.google.com/go/auth v0.9.3 // indirect
+	cloud.google.com/go v0.116.0 // indirect
+	cloud.google.com/go/auth v0.9.9 // indirect
 	cloud.google.com/go/auth/oauth2adapt v0.2.4 // indirect
-	cloud.google.com/go/compute/metadata v0.5.1 // indirect
+	cloud.google.com/go/compute/metadata v0.5.2 // indirect
 	cloud.google.com/go/iam v1.2.1 // indirect
 	cloud.google.com/go/longrunning v0.6.1 // indirect
 	dario.cat/mergo v1.0.0 // indirect
@@ -60,14 +60,14 @@ require (
 	golang.org/x/sync v0.8.0 // indirect
 	golang.org/x/sys v0.26.0 // indirect
 	golang.org/x/text v0.19.0 // indirect
-	golang.org/x/time v0.6.0 // indirect
+	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.26.0 // indirect
-	golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028 // indirect
-	google.golang.org/api v0.197.0 // indirect
-	google.golang.org/genproto v0.0.0-20240903143218-8af14fe29dc1 // indirect
-	google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect
-	google.golang.org/grpc v1.67.0 // indirect
-	google.golang.org/protobuf v1.34.2 // indirect
+	golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da // indirect
+	google.golang.org/api v0.203.0 // indirect
+	google.golang.org/genproto v0.0.0-20241015192408-796eee8c2d53 // indirect
+	google.golang.org/genproto/googleapis/api v0.0.0-20241007155032-5fefd90f89a9 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 // indirect
+	google.golang.org/grpc v1.67.1 // indirect
+	google.golang.org/protobuf v1.35.1 // indirect
 	gopkg.in/warnings.v0 v0.1.2 // indirect
 )
diff --git a/vulnfeeds/go.sum b/vulnfeeds/go.sum
@@ -1,20 +1,20 @@
 cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-cloud.google.com/go v0.115.1 h1:Jo0SM9cQnSkYfp44+v+NQXHpcHqlnRJk2qxh6yvxxxQ=
-cloud.google.com/go v0.115.1/go.mod h1:DuujITeaufu3gL68/lOFIirVNJwQeyf5UXyi+Wbgknc=
-cloud.google.com/go/auth v0.9.3 h1:VOEUIAADkkLtyfr3BLa3R8Ed/j6w1jTBmARx+wb5w5U=
-cloud.google.com/go/auth v0.9.3/go.mod h1:7z6VY+7h3KUdRov5F1i8NDP5ZzWKYmEPO842BgCsmTk=
+cloud.google.com/go v0.116.0 h1:B3fRrSDkLRt5qSHWe40ERJvhvnQwdZiHu0bJOpldweE=
+cloud.google.com/go v0.116.0/go.mod h1:cEPSRWPzZEswwdr9BxE6ChEn01dWlTaF05LiC2Xs70U=
+cloud.google.com/go/auth v0.9.9 h1:BmtbpNQozo8ZwW2t7QJjnrQtdganSdmqeIBxHxNkEZQ=
+cloud.google.com/go/auth v0.9.9/go.mod h1:xxA5AqpDrvS+Gkmo9RqrGGRh6WSNKKOXhY3zNOr38tI=
 cloud.google.com/go/auth/oauth2adapt v0.2.4 h1:0GWE/FUsXhf6C+jAkWgYm7X9tK8cuEIfy19DBn6B6bY=
 cloud.google.com/go/auth/oauth2adapt v0.2.4/go.mod h1:jC/jOpwFP6JBxhB3P5Rr0a9HLMC/Pe3eaL4NmdvqPtc=
-cloud.google.com/go/compute/metadata v0.5.1 h1:NM6oZeZNlYjiwYje+sYFjEpP0Q0zCan1bmQW/KmIrGs=
-cloud.google.com/go/compute/metadata v0.5.1/go.mod h1:C66sj2AluDcIqakBq/M8lw8/ybHgOZqin2obFxa/E5k=
+cloud.google.com/go/compute/metadata v0.5.2 h1:UxK4uu/Tn+I3p2dYWTfiX4wva7aYlKixAHn3fyqngqo=
+cloud.google.com/go/compute/metadata v0.5.2/go.mod h1:C66sj2AluDcIqakBq/M8lw8/ybHgOZqin2obFxa/E5k=
 cloud.google.com/go/iam v1.2.1 h1:QFct02HRb7H12J/3utj0qf5tobFh9V4vR6h9eX5EBRU=
 cloud.google.com/go/iam v1.2.1/go.mod h1:3VUIJDPpwT6p/amXRC5GY8fCCh70lxPygguVtI0Z4/g=
 cloud.google.com/go/logging v1.12.0 h1:ex1igYcGFd4S/RZWOCU51StlIEuey5bjqwH9ZYjHibk=
 cloud.google.com/go/logging v1.12.0/go.mod h1:wwYBt5HlYP1InnrtYI0wtwttpVU1rifnMT7RejksUAM=
 cloud.google.com/go/longrunning v0.6.1 h1:lOLTFxYpr8hcRtcwWir5ITh1PAKUD/sG2lKrTSYjyMc=
 cloud.google.com/go/longrunning v0.6.1/go.mod h1:nHISoOZpBcmlwbJmiVk5oDRz0qG/ZxPynEGs1iZ79s0=
-cloud.google.com/go/secretmanager v1.14.1 h1:xlWSIg8rtBn5qCr2f3XtQP19+5COyf/ll49SEvi/0vM=
-cloud.google.com/go/secretmanager v1.14.1/go.mod h1:L+gO+u2JA9CCyXpSR8gDH0o8EV7i/f0jdBOrUXcIV0U=
+cloud.google.com/go/secretmanager v1.14.2 h1:2XscWCfy//l/qF96YE18/oUaNJynAx749Jg3u0CjQr8=
+cloud.google.com/go/secretmanager v1.14.2/go.mod h1:Q18wAPMM6RXLC/zVpWTlqq2IBSbbm7pKBlM3lCKsmjw=
 dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
 dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
@@ -31,8 +31,8 @@ github.com/aquasecurity/go-version v0.0.0-20210121072130-637058cfe492 h1:rcEG5HI
 github.com/aquasecurity/go-version v0.0.0-20210121072130-637058cfe492/go.mod h1:9Beu8XsUNNfzml7WBf3QmyPToP1wm1Gj/Vc5UJKqTzU=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 h1:0CwZNZbxp69SHPdPJAN/hZIm0C4OItdklCFmMRWYpio=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
-github.com/atombender/go-jsonschema v0.16.0 h1:1C6jMVzAQ4RZCBwGQYMEVZvjSBdKUw/7arkhHPS0ldg=
-github.com/atombender/go-jsonschema v0.16.0/go.mod h1:qvHiMeC+Obu1QJTtD+rZGogD+Nn4QCztDJ0UNF8dBfs=
+github.com/atombender/go-jsonschema v0.17.0 h1:eUK5Q6I0hWtCi2Pfvj6o5xWWBAyswBLlkFNrTJX1SzI=
+github.com/atombender/go-jsonschema v0.17.0/go.mod h1:tOo4w4JBlhCKojSlTwdv8gIqTwHUGbmJ7TTc+03+/uo=
 github.com/bwesterb/go-ristretto v1.2.3/go.mod h1:fUIoIZaG73pV5biE2Blr2xEzDoMj7NFEuV9ekS419A0=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
@@ -95,8 +95,8 @@ github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
-github.com/google/osv-scanner v1.9.0 h1:srb17XR4Q6EVojAPDMQwkBVR5jMx0fGw2DFzTn4IUiI=
-github.com/google/osv-scanner v1.9.0/go.mod h1:AFmX40ZQOGpkCpqbDAtIjtVP4FMlA0OTWAxRBH1G7/I=
+github.com/google/osv-scanner v1.9.1 h1:L/j81YXO+DuhBd+v2eYwpDTfmUpMLryItSv7SXA1Db4=
+github.com/google/osv-scanner v1.9.1/go.mod h1:VNJG6+N9l6Y1dcaGgK/a7D4g9hnxakn0DBKGH0Aw+mQ=
 github.com/google/s2a-go v0.1.8 h1:zZDs9gcbt9ZPLV0ndSyQk6Kacx2g/X+SKYovpnz3SMM=
 github.com/google/s2a-go v0.1.8/go.mod h1:6iNWHTpQ+nfNRN5E00MSdfDwVesa8hhS32PhPO8deJA=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
@@ -248,8 +248,8 @@ golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.19.0 h1:kTxAhCbGbxhK0IwgSKiMO5awPoDQ0RpfiVYBfK860YM=
 golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
-golang.org/x/time v0.6.0 h1:eTDhh4ZXt5Qf0augr54TN6suAUudPcawVZeIAPU7D4U=
-golang.org/x/time v0.6.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
+golang.org/x/time v0.7.0 h1:ntUhktv3OPE6TgYxXWv9vKvUSJyIFJlyohwbkEwPrKQ=
+golang.org/x/time v0.7.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
@@ -263,28 +263,28 @@ golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028 h1:+cNy6SZtPcJQH3LJVLOSmiC7MMxXNOb3PU/VUEz+EhU=
-golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
-google.golang.org/api v0.197.0 h1:x6CwqQLsFiA5JKAiGyGBjc2bNtHtLddhJCE2IKuhhcQ=
-google.golang.org/api v0.197.0/go.mod h1:AuOuo20GoQ331nq7DquGHlU6d+2wN2fZ8O0ta60nRNw=
+golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da h1:noIWHXmPHxILtqtCOPIhSt0ABwskkZKjD3bXGnZGpNY=
+golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
+google.golang.org/api v0.203.0 h1:SrEeuwU3S11Wlscsn+LA1kb/Y5xT8uggJSkIhD08NAU=
+google.golang.org/api v0.203.0/go.mod h1:BuOVyCSYEPwJb3npWvDnNmFI92f3GeRnHNkETneT3SI=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
-google.golang.org/genproto v0.0.0-20240903143218-8af14fe29dc1 h1:BulPr26Jqjnd4eYDVe+YvyR7Yc2vJGkO5/0UxD0/jZU=
-google.golang.org/genproto v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:hL97c3SYopEHblzpxRL4lSs523++l8DYxGM1FQiYmb4=
-google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1 h1:hjSy6tcFQZ171igDaN5QHOw2n6vx40juYbC/x67CEhc=
-google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:qpvKtACPCQhAdu3PyQgV4l3LMXZEtft7y8QcarRsp9I=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 h1:pPJltXNxVzT4pK9yD8vR9X75DaWYYmLGMsEvBfFQZzQ=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
+google.golang.org/genproto v0.0.0-20241015192408-796eee8c2d53 h1:Df6WuGvthPzc+JiQ/G+m+sNX24kc0aTBqoDN/0yyykE=
+google.golang.org/genproto v0.0.0-20241015192408-796eee8c2d53/go.mod h1:fheguH3Am2dGp1LfXkrvwqC/KlFq8F0nLq3LryOMrrE=
+google.golang.org/genproto/googleapis/api v0.0.0-20241007155032-5fefd90f89a9 h1:T6rh4haD3GVYsgEfWExoCZA2o2FmbNyKpTuAxbEFPTg=
+google.golang.org/genproto/googleapis/api v0.0.0-20241007155032-5fefd90f89a9/go.mod h1:wp2WsuBYj6j8wUdo3ToZsdxxixbvQNAHqVJrTgi5E5M=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 h1:X58yt85/IXCx0Y3ZwN6sEIKZzQtDEYaBWrDvErdXrRE=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53/go.mod h1:GX3210XPVPUjJbTUbvwI8f2IpZDMZuPJWDzDuebbviI=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
 google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
 google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.67.0 h1:IdH9y6PF5MPSdAntIcpjQ+tXO41pcQsfZV2RxtQgVcw=
-google.golang.org/grpc v1.67.0/go.mod h1:1gLDyUQU7CTLJI90u3nXZ9ekeghjeM7pTDZlqFNg2AA=
+google.golang.org/grpc v1.67.1 h1:zWnc1Vrcno+lHZCOofnIMvycFcc0QRGIzm9dhnDX68E=
+google.golang.org/grpc v1.67.1/go.mod h1:1gLDyUQU7CTLJI90u3nXZ9ekeghjeM7pTDZlqFNg2AA=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -294,8 +294,8 @@ google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
-google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
-google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=
+google.golang.org/protobuf v1.35.1 h1:m3LfL6/Ca+fqnjnlqQXNpFPABW1UD7mjh8KO2mKFytA=
+google.golang.org/protobuf v1.35.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=