fix(deps): update tool deps

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/golangci/golangci-lint	v1.62.2 -> v1.63.1
github.com/google/osv-scanner	v1.9.1 -> v1.9.2

---

Release Notes

golangci/golangci-lint (github.com/golangci/golangci-lint)

v1.63.1

Compare Source

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• afa0e27 fix: filter files (#​5272)
• ffb15ca gci: fix cgo (#​5274)

v1.63.0

Compare Source

google/osv-scanner (github.com/google/osv-scanner)

v1.9.2

Compare Source

Changelog

Fixes:

• Bug #​1327 Parsing crash on malformed pnpm lockfile.
• Bug #​1377 Warn if a vulnerability is ignored multiple times in the same config.
• Bug #​1394 Guided remediation: handle extraneous/missing packages in package-lock.json more leniently.
• Bug #​1443 Go call analysis now works with Go version up to v1.23.4.
• Bug #​1436 Only fetch Maven snapshots and releases when enabled.
• Bug #​1456 Remove redundant calls from PreFetch.

New Contributors

• @​ivmeta made their first contribution in https://github.com/google/osv-scanner/pull/1327
• @​janniclas made their first contribution in https://github.com/google/osv-scanner/pull/1398

Full Changelog: google/osv-scanner@v1.9.1...v1.9.2

---

Configuration

📅 Schedule: Branch creation - "before 5am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: internal/tools/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 42 additional dependencies were updated

Details:

Package	Change
cloud.google.com/go/compute/metadata	v0.5.1 -> v0.5.2
deps.dev/util/maven	v0.0.0-20241010035105-b3ba03369df1 -> v0.0.0-20241218001045-3890182485f3
deps.dev/util/resolve	v0.0.0-20241010035105-b3ba03369df1 -> v0.0.0-20241218001045-3890182485f3
github.com/4meepo/tagalign	v1.3.4 -> v1.4.1
github.com/Antonboom/nilnil	v1.0.0 -> v1.0.1
github.com/alecthomas/go-check-sumtype	v0.2.0 -> v0.3.1
github.com/ashanbrown/makezero	v1.1.1 -> v1.2.0
github.com/bombsimon/wsl/v4	v4.4.1 -> v4.5.0
github.com/butuzov/ireturn	v0.3.0 -> v0.3.1
github.com/butuzov/mirror	v1.2.0 -> v1.3.0
github.com/charmbracelet/bubbletea	v1.1.1 -> v1.2.2
github.com/charmbracelet/lipgloss	v0.13.0 -> v1.0.0
github.com/charmbracelet/x/ansi	v0.2.3 -> v0.4.5
github.com/charmbracelet/x/term	v0.2.0 -> v0.2.1
github.com/ckaznocha/intrange	v0.2.1 -> v0.3.0
github.com/curioswitch/go-reassign	v0.2.0 -> v0.3.0
github.com/go-git/go-billy/v5	v5.5.0 -> v5.6.0
github.com/go-xmlfmt/xmlfmt	v1.1.2 -> v1.1.3
github.com/golangci/gofmt	v0.0.0-20240816233607-d8596aa466a9 -> v0.0.0-20241223200906-057b0627d9b9
github.com/jedib0t/go-pretty/v6	v6.6.0 -> v6.6.2
github.com/jjti/go-spancheck	v0.6.2 -> v0.6.4
github.com/julz/importas	v0.1.0 -> v0.2.0
github.com/ldez/gomoddirectives	v0.2.4 -> v0.6.0
github.com/nunnatsa/ginkgolinter	v0.18.3 -> v0.18.4
github.com/raeperd/recvcheck	v0.1.2 -> v0.2.0
github.com/sanposhiho/wastedassign/v2	v2.0.7 -> v2.1.0
github.com/sashamelentyev/usestdlibvars	v1.27.0 -> v1.28.0
github.com/stbenjam/no-sprintf-host-port	v0.1.1 -> v0.2.0
github.com/tdakkota/asciicheck	v0.2.0 -> v0.3.0
github.com/tetafro/godot	v1.4.18 -> v1.4.20
github.com/timakin/bodyclose	v0.0.0-20240125160201-f835fa56326a -> v0.0.0-20241017074812-ed6a65f985e3
github.com/tomarrell/wrapcheck/v2	v2.9.0 -> v2.10.0
github.com/ultraware/funlen	v0.1.0 -> v0.2.0
github.com/ultraware/whitespace	v0.1.1 -> v0.2.0
github.com/uudashr/gocognit	v1.1.3 -> v1.2.0
github.com/uudashr/iface	v1.2.1 -> v1.3.0
golang.org/x/crypto	v0.30.0 -> v0.31.0
golang.org/x/exp	v0.0.0-20241009180824-f66d83c29e7c -> v0.0.0-20241108190413-2d47ceb2692f
golang.org/x/net	v0.32.0 -> v0.33.0
google.golang.org/genproto/googleapis/api	v0.0.0-20241007155032-5fefd90f89a9 -> v0.0.0-20241015192408-796eee8c2d53
google.golang.org/genproto/googleapis/rpc	v0.0.0-20241007155032-5fefd90f89a9 -> v0.0.0-20241015192408-796eee8c2d53
google.golang.org/grpc	v1.68.1 -> v1.69.0