chore(deps): bump the dev-dependencies group with 5 updates

[dependabot]

Bumps the dev-dependencies group with 5 updates:

Package	From	To
github.com/miekg/dns	1.1.56	1.1.57
github.com/prometheus/client_golang	1.17.0	1.18.0
github.com/spf13/viper	1.17.0	1.18.2
k8s.io/apimachinery	0.28.3	0.29.0
k8s.io/client-go	0.28.3	0.29.0

Updates github.com/miekg/dns from 1.1.56 to 1.1.57

Commits

• 836bea2 Release 1.1.57
• 257e89e feat: add support for ReuseAddr (#1510)
• 3d593a6 Swap closing order in inAxfr and inIxfr (#1511)
• 5d3f81b Remove slurpRemainder TODO from (*ZoneParser).Next (#1508)
• a16092f Use strings.Builder in endingToString (#1506)
• 3996b17 Avoid using a goto loop in unpackDataOpt (#1505)
• 1c418a3 Use cloneSlice in unpackDataA and unpackDataAAAA (#1504)
• 6836ba8 Eliminate tmp buffer from packOctetString (#1503)
• 9657fe6 Cleanup IsRRSet (#1502)
• 02e9e72 Avoid using strings.Split (#1501)
• Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.17.0 to 1.18.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.18.0

What's Changed

• [FEATURE] promlint: Allow creation of custom metric validations. #1311
• [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
• [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
• [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
• [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

New Contributors

• @​srenatus made their first contribution in prometheus/client_golang#1350
• @​jadolg made their first contribution in prometheus/client_golang#1342
• @​manas-rust made their first contribution in prometheus/client_golang#1383
• @​bluekeyes made their first contribution in prometheus/client_golang#1378
• @​tsipo made their first contribution in prometheus/client_golang#1387

Full Changelog: prometheus/client_golang@v1.17.0...v1.18.0

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.18.0 / 2023-12-22

• [FEATURE] promlint: Allow creation of custom metric validations. #1311
• [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
• [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
• [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
• [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

Commits

• 53be91d Revert "change api http.client to interface"
• 1a2d072 Add 1.18 changelog
• 239b123 Merge pull request #1387 from tsipo/main
• 3f8bd73 Merge pull request #1370 from prometheus/dependabot/go_modules/tutorial/whats...
• 5e55b31 Bump google.golang.org/grpc from 1.53.0 to 1.56.3 in /tutorial/whatsup
• e96fb18 Merge pull request #1401 from prometheus/dependabot/go_modules/golang.org/x/s...
• 2a8fc90 Bump golang.org/x/sys from 0.13.0 to 0.15.0
• 24d59e9 change client to interface, allow override by other implementations (e.g. git...
• 80d3f0b Normalize empty help values in CollectAndCompare (#1378)
• 3f80cd1 Add example of NewConstMetricWithCreatedTimestamp (#1375)
• Additional commits viewable in compare view

Updates github.com/spf13/viper from 1.17.0 to 1.18.2

Release notes

Sourced from github.com/spf13/viper's releases.

v1.18.2

tl;dr Skip 1.18.0 and 1.18.1 and upgrade to this version instead.

This release fixes a regression that appears in rare circumstances when using Unmarshal or UnmarshalExact to decode values onto pointers with multiple indirection (eg. pointer to a pointer, etc). The change was introduced in 1.18.0 as a means to resolve a long-standing bug when decoding environment variables to structs.

The feature is now disabled by default and can be enabled using the viper_bind_struct build tag. It's also considered experimental at this point, so breaking changes may be introduced in the future.

What's Changed

Bug Fixes 🐛

• feat!: hide struct binding behind a feature flag by @​sagikazarmark in spf13/viper#1715

Full Changelog: spf13/viper@v1.18.1...v1.18.2

v1.18.1

What's Changed

Bug Fixes 🐛

• Merge missing struct keys inside UnmarshalExact by @​krakowski in spf13/viper#1704

Full Changelog: spf13/viper@v1.18.0...v1.18.1

v1.18.0

Major changes

Highlighting some of the changes for better visibility.

Please share your feedback in the Discussion forum. Thanks! ❤️

AutomaticEnv works with Unmarshal

Previously, environment variables that weren't bound manually or had no defaults could not be mapped by Unmarshal. (The problem is explained in details in this issue: #761)

#1429 introduced a solution that solves that issue.

What's Changed

Enhancements 🚀

• chore: rename files according to enabled build tags by @​alexandear in spf13/viper#1642
• test: replace ifs with asserts to simplify tests by @​alexandear in spf13/viper#1656
• ci: enable test shuffle and fix tests by @​alexandear in spf13/viper#1643
• fix: gocritic lint issues by @​alexandear in spf13/viper#1696

Bug Fixes 🐛

• Implement viper.BindStruct for automatic unmarshalling from environment variables by @​krakowski in spf13/viper#1429
• fix isPathShadowedInFlatMap type cast bug by @​linuxsong in spf13/viper#1585

Dependency Updates ⬆️

• build(deps): bump github/codeql-action from 2.21.9 to 2.22.3 by @​dependabot in spf13/viper#1661
• build(deps): bump golang.org/x/net from 0.15.0 to 0.17.0 by @​dependabot in spf13/viper#1659

... (truncated)

Commits

• ab3a50c fix!: hide struct binding behind a feature flag
• 9154b90 build(deps): bump actions/setup-go from 4.1.0 to 5.0.0
• 08e4a00 build(deps): bump github/codeql-action from 2.22.8 to 2.22.9
• fb6eb1e fix: merge missing struct keys inside UnmarshalExact
• f5fcb4a chore: update crypt
• f736363 fix isPathShadowedInFlatMap type cast bug (#1585)
• 36a3868 Review changes
• f0c4ccd fix: gocritic lint issues
• 3a23b80 ci: enable test shuffle; fix tests
• 73dfb94 feat: make Unmarshal work with AutomaticEnv
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.28.3 to 0.29.0

Commits

• 3c8c1f2 update go.mod
• 12dc3f8 Merge pull request #113374 from ahmedtd/kep-3257-projected-types
• 03a1b4b LRUExpireCache: Allow removing multiple keys under lock
• bc0a03b Merge pull request #119762 from AxeZhan/PollUntilContextCancel
• 16d50e6 Merge pull request #121552 from pohly/klog-update
• 6b13b03 dependencies: klog v2.110.1
• 96ae302 Merge pull request #121575 from apelisse/update-smd
• 458fd90 Merge pull request #120707 from Jefftree/csa-openapiv3
• 850727f Merge pull request #120592 from AxeZhan/validation_sets
• 8dbf841 managedfields: Allow duplicates for built-in updates associative lists
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.28.3 to 0.29.0

Commits

• fb8b734 Update dependencies to v0.29.0 tag
• 288368e update go.mod
• 86d49e7 Merge pull request #113374 from ahmedtd/kep-3257-projected-types
• 59c256a Regenerate for ClusterTrustBundlePEM projected volume API
• ac369c3 Define ClusterTrustBundlePEM projected volume
• 66e57f7 Merge pull request #121552 from pohly/klog-update
• 8b96b9b dependencies: klog v2.110.1
• c13269d Merge pull request #116516 from aojea/servicecidr
• 7523a34 Merge pull request #121575 from apelisse/update-smd
• 965bc8d Merge pull request #121104 from carlory/kep-3751-api-changes
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.