build(deps): bump the aws-sdk-go-v2 group in /ecr-login with 2 updates

[dependabot]

Bumps the aws-sdk-go-v2 group in /ecr-login with 2 updates: github.com/aws/aws-sdk-go-v2/service/ecr and github.com/aws/aws-sdk-go-v2/service/ecrpublic.

Updates github.com/aws/aws-sdk-go-v2/service/ecr from 1.36.9 to 1.37.0

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/service/ecr's changelog.

Release (2023-07-13)

General Highlights

• Feature: Modify user agent syntax and introduce support for optional app identifier in UA header
• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/cognitoidentityprovider: v1.23.0
  • Feature: API model updated in Amazon Cognito
• github.com/aws/aws-sdk-go-v2/service/connect: v1.61.0
  • Feature: Add support for deleting Queues and Routing Profiles.
• github.com/aws/aws-sdk-go-v2/service/databasemigrationservice: v1.27.0
  • Feature: Enhanced PostgreSQL target endpoint settings for providing Babelfish support.
• github.com/aws/aws-sdk-go-v2/service/datasync: v1.25.0
  • Feature: Added LunCount to the response object of DescribeStorageSystemResourcesResponse, LunCount represents the number of LUNs on a storage system resource.
• github.com/aws/aws-sdk-go-v2/service/ec2: v1.104.0
  • Feature: This release adds support for the C7gn and Hpc7g instances. C7gn instances are powered by AWS Graviton3 processors and the fifth-generation AWS Nitro Cards. Hpc7g instances are powered by AWS Graviton 3E processors and provide up to 200 Gbps network bandwidth.
• github.com/aws/aws-sdk-go-v2/service/fsx: v1.30.0
  • Feature: Amazon FSx for NetApp ONTAP now supports SnapLock, an ONTAP feature that enables you to protect your files in a volume by transitioning them to a write once, read many (WORM) state.
• github.com/aws/aws-sdk-go-v2/service/iam: v1.21.1
  • Documentation: Documentation updates for AWS Identity and Access Management (IAM).
• github.com/aws/aws-sdk-go-v2/service/mediatailor: v1.25.0
  • Feature: Adds categories to MediaTailor channel assembly alerts
• github.com/aws/aws-sdk-go-v2/service/personalize: v1.25.0
  • Feature: This release provides ability to customers to change schema associated with their datasets in Amazon Personalize
• github.com/aws/aws-sdk-go-v2/service/proton: v1.22.0
  • Feature: This release adds support for deployment history for Proton provisioned resources
• github.com/aws/aws-sdk-go-v2/service/s3: v1.37.0
  • Feature: S3 Inventory now supports Object Access Control List and Object Owner as available object metadata fields in inventory reports.
• github.com/aws/aws-sdk-go-v2/service/sagemaker: v1.92.0
  • Feature: Amazon SageMaker Canvas adds WorkspeceSettings support for CanvasAppSettings
• github.com/aws/aws-sdk-go-v2/service/secretsmanager: v1.19.11
  • Documentation: Documentation updates for Secrets Manager

Release (2023-07-07)

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs: v1.22.0
  • Feature: Add CMK encryption support for CloudWatch Logs Insights query result data
• github.com/aws/aws-sdk-go-v2/service/databasemigrationservice: v1.26.0
  • Feature: Releasing DMS Serverless. Adding support for PostgreSQL 15.x as source and target endpoint. Adding support for DocDB Elastic Clusters with sharded collections, PostgreSQL datatype mapping customization and disabling hostname validation of the certificate authority in Kafka endpoint settings
• github.com/aws/aws-sdk-go-v2/service/glue: v1.54.0
  • Feature: This release enables customers to create new Apache Iceberg tables and associated metadata in Amazon S3 by using native AWS Glue CreateTable operation.
• github.com/aws/aws-sdk-go-v2/service/medialive: v1.32.0
  • Feature: This release enables the use of Thumbnails in AWS Elemental MediaLive.
• github.com/aws/aws-sdk-go-v2/service/mediatailor: v1.24.0
  • Feature: The AWS Elemental MediaTailor SDK for Channel Assembly has added support for EXT-X-CUE-OUT and EXT-X-CUE-IN tags to specify ad breaks in HLS outputs, including support for EXT-OATCLS, EXT-X-ASSET, and EXT-X-CUE-OUT-CONT accessory tags.

Release (2023-07-06)

... (truncated)

Commits

• 021db04 Release 2023-07-13
• afb7460 Regenerated Clients
• 5963c54 Update partitions file
• 8b263ec Update endpoints model
• 52bb208 Update API model
• 34540e9 Merge pull request #2154 from aws/feat-ua
• 5f1a82d Update API model
• b3e5b29 Release 2023-07-07
• 7f1fba9 Regenerated Clients
• 10508e0 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ecrpublic from 1.28.0 to 1.28.1

Commits

• 6b53348 Release 2024-10-28
• 784d2d3 Regenerated Clients
• 7258bd2 Update endpoints model
• f322198 Update API model
• b65b80a Merge pull request #2852 from RanVaknin/signature-header-parsing-fix
• 803614d Fixing changelog description and implementation to use TrimSpace
• b12c8cf adding changelog
• f0caa97 patching GetSignedRequestSignature to cover edge cases with the signature
• e058903 drop service/nimble (#2851)
• 896793a Release 2024-10-25
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/aws/aws-sdk-go-v2/service/ecr	1.37.0	🟢 5.2	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 0 Found 2/30 approved changesets -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected
gomod/github.com/aws/aws-sdk-go-v2/service/ecrpublic	1.28.1	🟢 5.2	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 0 Found 2/30 approved changesets -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected

Scanned Files

• ecr-login/go.mod