chore(deps): bump the go-dependencies group with 5 updates

[dependabot]

Bumps the go-dependencies group with 5 updates:

Package	From	To
github.com/Azure/azure-sdk-for-go/sdk/azcore	1.21.0	1.21.1
github.com/aws/aws-sdk-go-v2/service/rds	1.117.1	1.118.0
github.com/aws/smithy-go	1.24.2	1.25.0
github.com/zclconf/go-cty	1.18.0	1.18.1
k8s.io/apiextensions-apiserver	0.35.3	0.35.4

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.21.0 to 1.21.1

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.21.1

1.21.1 (2026-04-16)

Bugs Fixed

• Fixed an issue in ResponseError.Error() where the request URL path was being logged unescaped.
• Redact query parameters when logging errors.
• For runtime.JoinPaths, don't add a slash between root and paths when paths starts with ? (query string).

Other Changes

• Upgraded to Go 1.25.0.
• Upgraded dependencies.

Commits

• 63e4ba1 Bump release date for azcore (#26613)
• fa03121 remove bypass local dns (#26609)
• c47f9a6 Sync eng/common directory with azure-sdk-tools for PR 15153 (#26607)
• 88b8b5b Changelog for v2.2.0 (#26567)
• 72ca19a Storage STG 101 (#26568)
• b64baf5 Sync .github directory with azure-sdk-tools repository (#26600)
• ecd64dd Prep azcore@v1.21.1 for release (#26596)
• 1d02f20 Update copilot code review instructions and migration breaking change mitigat...
• f6e9ce3 Sync eng/common directory with azure-sdk-tools for PR 14973 (#26531)
• d5a3baf Update CODEOWNERS to remove one owner from Custom Providers (#26588)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/rds from 1.117.1 to 1.118.0

Commits

• 33b8cf5 Release 2023-09-12
• 55e9134 Regenerated Clients
• 49e5eb0 Update endpoints model
• 502be38 Update API model
• a5fcf9f Upgrade to smithy core to latest (#2271)
• 7692b7d Release 2023-09-11
• 3d97b4a Regenerated Clients
• c78ce9a Update API model
• 4c98ee7 Release 2023-09-08
• 2b8aaa5 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/smithy-go from 1.24.2 to 1.25.0

Release notes

Sourced from github.com/aws/smithy-go's releases.

v1.25.0

Release (2026-04-15)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.25.0
  • Feature: Add support for endpointBdd trait

Changelog

Sourced from github.com/aws/smithy-go's changelog.

Release (2026-04-15)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.25.0
  • Feature: Add support for endpointBdd trait

Release (2026-04-02)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.24.3
  • Bug Fix: Add additional sigv4 configuration.
• github.com/aws/smithy-go/aws-http-auth: v1.1.3
  • Bug Fix: Add additional sigv4 configuration.

Release (2026-02-27)

General Highlights

• Dependency Update: Bump minimum go version to 1.24.

Release (2026-02-20)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.24.1
  • Feature: Add new middleware functions to get event stream output from middleware

Release (2025-12-01)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.24.0
  • Feature: Improve allocation footprint of the middleware stack. This should convey a ~10% reduction in allocations per SDK request.

Release (2025-11-03)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.23.2

... (truncated)

Commits

• 73bb8a7 Release 2026-04-15
• f056c6f Changelog
• ee36afc Implement BDD generator for @​endpointBdd Smithy trait (#647)
• 3dbea70 Release 2026-04-02
• f08a600 changelog
• dff9455 include getAttr as a static condition when evaluating need for fallback (#643)
• a43da41 fix binding member name (#642)
• b64db94 replace usages of SmithyGoTypes (#637)
• 3e78a2b add AGENTS.md (#638)
• c53a167 generate protocol tests (#634)
• Additional commits viewable in compare view

Updates github.com/zclconf/go-cty from 1.18.0 to 1.18.1

Changelog

Sourced from github.com/zclconf/go-cty's changelog.

1.18.1 (April 16, 2026)

• stdlib: ContainsFunc now allows its second argument to be null, to test whether the given collection contains any null elements.
• stdlib: MergeFunc no longer panics if all of its arguments are null values of the same object type with at least one attribute.

Commits

• dcb5db6 v1.18.1
• 77d87c2 stdlib: no MergeFunc crash with null values of object type
• 6854da9 stdlib: ContainsFunc allows testing for presence of null value
• ddb73de Begin development of v1.18.1
• See full diff in compare view

Updates k8s.io/apiextensions-apiserver from 0.35.3 to 0.35.4

Commits

• b0e553c Update dependencies to v0.35.4 tag
• c580382 Merge pull request #138356 from dims/update-moby-spdystream-v0.5.1-1.35
• 895a1c1 Merge pull request #138348 from dashpole/update_prop_35
• d25970d Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• eacefa7 update go.opentelemetry.io/otel to v1.41.0
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Benchstat

Base: ccc955a70f2bd9ff62adf84199fd0b03ca1373c1
Head: 94a8e9cf3f0d3d8b28a325b5ceaf454e66c45ea8

📊 2 minor regression(s) (all within 5% threshold)

Benchmark	Base	Head	Change	p-value
BenchSaveResultsUpdateUnchanged/N=1000-4	691.4m	702.1m	+1.54%	0.009
BenchSaveResultsUpdateChanged/N=1000-4	1.125	1.139	+1.19%	0.015

Full benchstat output

goos: linux
goarch: amd64
pkg: github.com/flanksource/config-db/bench
cpu: AMD EPYC 7763 64-Core Processor                
                                         │ bench-base.txt │          bench-head.txt           │
                                         │     sec/op     │   sec/op     vs base              │
BenchSaveResultsSeed/N=1000-4                 627.1m ± 6%   632.3m ± 8%       ~ (p=0.699 n=6)
BenchSaveResultsUpdateUnchanged/N=1000-4      691.4m ± 1%   702.1m ± 4%  +1.54% (p=0.009 n=6)
BenchSaveResultsUpdateChanged/N=1000-4         1.125 ± 1%    1.139 ± 1%  +1.19% (p=0.015 n=6)
geomean                                       787.2m        796.6m       +1.19%

                                         │ bench-base.txt │           bench-head.txt           │
                                         │      MB/s      │    MB/s     vs base                │
BenchSaveResultsSeed/N=1000-4                0.000 ± 0%     0.000 ± 0%       ~ (p=1.000 n=6) ¹
BenchSaveResultsUpdateUnchanged/N=1000-4     0.000 ± 0%     0.000 ± 0%       ~ (p=1.000 n=6) ¹
BenchSaveResultsUpdateChanged/N=1000-4       0.000 ± 0%     0.000 ± 0%       ~ (p=1.000 n=6) ¹
geomean                                                 ²               +0.00%               ²
¹ all samples are equal
² summaries must be >0 to compute geomean

                                         │ bench-base.txt │           bench-head.txt           │
                                         │      B/op      │     B/op      vs base              │
BenchSaveResultsSeed/N=1000-4                36.09Mi ± 0%   36.09Mi ± 0%       ~ (p=0.818 n=6)
BenchSaveResultsUpdateUnchanged/N=1000-4     25.58Mi ± 0%   25.58Mi ± 0%       ~ (p=0.589 n=6)
BenchSaveResultsUpdateChanged/N=1000-4       74.91Mi ± 0%   74.96Mi ± 0%       ~ (p=0.093 n=6)
geomean                                      41.04Mi        41.05Mi       +0.03%

                                         │ bench-base.txt │          bench-head.txt           │
                                         │   allocs/op    │  allocs/op   vs base              │
BenchSaveResultsSeed/N=1000-4                 442.0k ± 0%   442.0k ± 0%       ~ (p=0.974 n=6)
BenchSaveResultsUpdateUnchanged/N=1000-4      314.0k ± 0%   314.0k ± 0%       ~ (p=0.937 n=6)
BenchSaveResultsUpdateChanged/N=1000-4        904.6k ± 0%   904.7k ± 0%       ~ (p=0.485 n=6)
geomean                                       500.8k        500.8k       +0.00%

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	golang/​github.com/​Azure/​azure-sdk-for-go/​sdk/​azcore@​v1.21.0 ⏵ v1.21.1	+1
	golang/​github.com/​aws/​smithy-go@​v1.24.2 ⏵ v1.25.0	+1
	golang/​k8s.io/​apiextensions-apiserver@​v0.35.3 ⏵ v0.35.4
	golang/​github.com/​zclconf/​go-cty@​v1.18.0 ⏵ v1.18.1	+1
	golang/​github.com/​aws/​aws-sdk-go-v2/​service/​rds@​v1.117.1 ⏵ v1.118.0	+1

View full report