chore(deps): bump github.com/xmidt-org/webpa-common/v2 from 2.3.2 to 2.4.0

[dependabot]

Bumps github.com/xmidt-org/webpa-common/v2 from 2.3.2 to 2.4.0.

Release notes

Sourced from github.com/xmidt-org/webpa-common/v2's releases.

v2.4.0

Changelog

Other Work

• dda160b37f0bd3da55263335e1d6b6eab71bb038: Add support for gauge function and metric for max devices connected to Talaria (@​chaitanyasingla-dt)
• eb65db18785e3c62abebb17c4445ae1eff4a1929: Bump github.com/aws/aws-sdk-go from 1.47.5 to 1.55.5 (#1064) (@​dependabot[bot])
• cf387f0c0ab595ba21ac1e0fdbe2f64f8747fb33: Bump github.com/go-zookeeper/zk from 1.0.3 to 1.0.4 (#1060) (@​dependabot[bot])
• 16ceaff1e57d3854bf464464b428cf250838c8c9: Bump github.com/gorilla/mux from 1.8.0 to 1.8.1 (#1051) (@​dependabot[bot])
• dbbaf0e7378e42768b35f9755325c52d013ed5a7: Bump github.com/gorilla/schema from 1.2.0 to 1.4.1 (#1058) (@​dependabot[bot])
• 4ab9c4cc9f1d4fa63cee9d6ab7720571090e4bd2: Bump github.com/gorilla/websocket from 1.5.1 to 1.5.3 (#1050) (@​dependabot[bot])
• 6cbcaa900d1d21a7285022011a7aea11628982ac: Bump github.com/hashicorp/consul/api from 1.25.1 to 1.26.1 (#1033) (@​dependabot[bot])
• ce53f46ae62039a717c86ae1d6fbf9e3f6311423: Bump github.com/miekg/dns from 1.1.56 to 1.1.62 (#1052) (@​dependabot[bot])
• ba000bd3345aad7ffc5a5bfa8afcf0cb95fd3ed4: Bump github.com/spf13/cast from 1.5.1 to 1.7.0 (#1049) (@​dependabot[bot])
• 68f0a0fbed50ae80221ec4d6cac0f33504d014ac: Bump github.com/xmidt-org/argus from 0.9.10 to 0.10.14 (#1062) (@​dependabot[bot])
• f31adfdd3b4e1253dfaea1c4d10be3d2e94b75fa: Bump github.com/xmidt-org/candlelight from 0.0.16 to 0.1.19 (#1063) (@​dependabot[bot])
• 2076526c8b3d12d37a0f96849b259602832710d0: Bump github.com/xmidt-org/themis from 0.4.14 to 0.4.18 (#1061) (@​dependabot[bot])
• d875fa8e8bc4f0547ff3b1a7bccc8a723a826af1: Bump golang.org/x/net from 0.17.0 to 0.23.0 (#1059) (@​dependabot[bot])
• c23b4e2c3701364a6c1bb68073ed88e065a0f10f: Bump google.golang.org/protobuf from 1.31.0 to 1.33.0 (#1057) (@​dependabot[bot])
• c54aeaf69d7551d8a4bf5fca624918be51921a23: Update ci.yml (@​denopink)
• 09b1917db43e5257b1c91526b5beacc5ff22196e: Update ci.yml (@​denopink)

Commits

• 5a26f6f Merge pull request #1048 from ChaitanyaSingla/max-device-metric
• bb99563 Merge branch 'main' into max-device-metric
• f31adfd Bump github.com/xmidt-org/candlelight from 0.0.16 to 0.1.19 (#1063)
• 68f0a0f Bump github.com/xmidt-org/argus from 0.9.10 to 0.10.14 (#1062)
• cf387f0 Bump github.com/go-zookeeper/zk from 1.0.3 to 1.0.4 (#1060)
• eb65db1 Bump github.com/aws/aws-sdk-go from 1.47.5 to 1.55.5 (#1064)
• 2076526 Bump github.com/xmidt-org/themis from 0.4.14 to 0.4.18 (#1061)
• 5f9022b Merge branch 'main' into max-device-metric
• 4ab9c4c Bump github.com/gorilla/websocket from 1.5.1 to 1.5.3 (#1050)
• ba000bd Bump github.com/spf13/cast from 1.5.1 to 1.7.0 (#1049)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[guardrails]

⚠️ We detected 1 security issue in this pull request:

Vulnerable Libraries (1)

Severity	Details
Critical	pkg:golang/github.com/xmidt-org/webpa-common/[email protected] upgrade to: > v2.4.0

More info on how to fix Vulnerable Libraries in Go.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 19.31%. Comparing base (1488e9a) to head (7e09e93).
Report is 5 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #428      +/-   ##
==========================================
+ Coverage   19.09%   19.31%   +0.22%     
==========================================
  Files           7        7              
  Lines         639      792     +153     
==========================================
+ Hits          122      153      +31     
- Misses        515      637     +122     
  Partials        2        2              

Flag	Coverage Δ
unittests	19.31% <ø> (+0.22%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.