Bump the go_modules group across 1 directory with 5 updates

[dependabot[bot]]

Bumps the go_modules group with 2 updates in the / directory: github.com/cloudflare/circl and github.com/gin-gonic/gin.

Updates github.com/cloudflare/circl from 1.1.0 to 1.3.7

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.3.7

What's Changed

• build(deps): bump golang.org/x/crypto from 0.3.1-0.20221117191849-2c476679df9a to 0.17.0 by @​dependabot in cloudflare/circl#467
• kyber: remove division by q in ciphertext compression by @​bwesterb in cloudflare/circl#468
• Releasing CIRCL v1.3.7 by @​armfazh in cloudflare/circl#469

New Contributors

• @​dependabot made their first contribution in cloudflare/circl#467

Full Changelog: https://github.com/cloudflare/circl/compare/v1.3.6...v1.3.7

CIRCL v1.3.6

What's Changed

• internal: add TurboShake{128,256} by @​bwesterb in cloudflare/circl#430
• Kangaroo12 draft -10 by @​bwesterb in cloudflare/circl#431
• Add K12 as XOF by @​bwesterb in cloudflare/circl#437
• xof/k12: Fix a typo in the package documentation by @​cjpatton in cloudflare/circl#438
• Set CIRCL version for generated assembler code. by @​armfazh in cloudflare/circl#440
• Add tkn20 benchmarks by @​tanyav2 in cloudflare/circl#442
• Add partially blind RSA implementation by @​chris-wood in cloudflare/circl#445
• Update doc.go by @​nadimkobeissi in cloudflare/circl#447
• tss/rsa: key generation for threshold RSA (safe primes) by @​armfazh in cloudflare/circl#450
• Bumping Go version for CI jobs. by @​armfazh in cloudflare/circl#457
• Spelling by @​jsoref in cloudflare/circl#456
• blindrsa: updating blindrsa to be compliant with RFC9474 by @​armfazh in cloudflare/circl#464
• Releasing CIRCL v1.3.6 by @​armfazh in cloudflare/circl#465

New Contributors

• @​nadimkobeissi made their first contribution in cloudflare/circl#447
• @​jsoref made their first contribution in cloudflare/circl#456

Full Changelog: https://github.com/cloudflare/circl/compare/v1.3.3...v1.3.6

CIRCL v1.3.3

New Features

• ASCON light-weight authenticated encryption.
• Hybrid KEM for HPKE based on Kyber and X25519.
• CIRCL can be compiled both as static and dynamic linking modes.

Security

• Fixes error-handling on rand readers.

What's Changed

• Use untyped consts for Kyber params by @​tmthrgd in cloudflare/circl#398
• zk/dl: adds prefixed labels and updates nomenclature. by @​armfazh in cloudflare/circl#396
• Bumping Go version. by @​armfazh in cloudflare/circl#399
• kem: add P-256 + Kyber768Draft00 hybrid by @​bwesterb in cloudflare/circl#402

... (truncated)

Commits

• c48866b Releasing CIRCL v1.3.7
• 75ef91e kyber: remove division by q in ciphertext compression
• 899732a build(deps): bump golang.org/x/crypto
• 99f0f71 Releasing CIRCL v1.3.6
• e728d0d Apply thibmeu code review suggestions
• ceb2d90 Updating blindrsa to be compliant with RFC9474.
• 44133f7 spelling: tripped
• c2076d6 spelling: transposes
• dad2166 spelling: title
• 171c418 spelling: threshold
• Additional commits viewable in compare view

Updates github.com/gin-gonic/gin from 1.9.0 to 1.9.1

Release notes

Sourced from github.com/gin-gonic/gin's releases.

v1.9.1

Changelog

BUG FIXES

• fix Request.Context() checks #3512

SECURITY

• fix lack of escaping of filename in Content-Disposition #3556

ENHANCEMENTS

• refactor: use bytes.ReplaceAll directly #3455
• convert strings and slices using the officially recommended way #3344
• improve render code coverage #3525

DOCS

• docs: changed documentation link for trusted proxies #3575
• chore: improve linting, testing, and GitHub Actions setup #3583

Changelog

Sourced from github.com/gin-gonic/gin's changelog.

Gin v1.9.1

BUG FIXES

• fix Request.Context() checks #3512

SECURITY

• fix lack of escaping of filename in Content-Disposition #3556

ENHANCEMENTS

• refactor: use bytes.ReplaceAll directly #3455
• convert strings and slices using the officially recommended way #3344
• improve render code coverage #3525

DOCS

• docs: changed documentation link for trusted proxies #3575
• chore: improve linting, testing, and GitHub Actions setup #3583

Commits

• 4ea0e64 Ready release gin 1.9.1 (by: thinkerou) (#3630)
• bb1fc2e fix Request.Context() checks (#3512)
• 2d4bbec fix lack of escaping of filename in Content-Disposition (#3556)
• 9f5ecd4 chore(deps): bump actions/setup-go from 3 to 4 (#3543)
• 20cd6bc chore(deps): bump github.com/go-playground/validator/v10 (#3610)
• 6bdc725 Fix typos in ISSUE_TEMPLATE.md (#3616)
• 1ab2689 chore(deps): bump golang.org/x/net from 0.9.0 to 0.10.0 (#3599)
• 6a0556e improve render code coverage (#3525)
• eac2daa chore: update dependencies for various packages and libraries (#3585)
• 757a638 chore: improve linting, testing, and GitHub Actions setup (#3583)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.7.0 to 0.17.0

Commits

• 9d2ee97 ssh: implement strict KEX protocol changes
• 4e5a261 ssh: close net.Conn on all NewServerConn errors
• 152cdb1 x509roots/fallback: update bundle
• fdfe1f8 ssh: defer channel window adjustment
• b8ffc16 blake2b: drop Go 1.6, Go 1.8 compatibility
• 7e6fbd8 ssh: wrap errors from client handshake
• bda2f3f argon2: avoid clobbering BP
• 325b735 ssh/test: skip TestSSHCLIAuth on Windows
• 1eadac5 go.mod: update golang.org/x dependencies
• b2d7c26 ssh: add (*Client).DialContext method
• Additional commits viewable in compare view

Updates golang.org/x/net from 0.9.0 to 0.10.0

Commits

• daac0ce go.mod: update golang.org/x dependencies
• 82780d6 http2: don't reuse connections that are experiencing errors
• 0bfab66 ipv4, ipv6: drop redundant skip checks based on GOOS
• 938ff15 ipv4, ipv6, nettest: skip unsupported tests on wasip1
• eb1572c html: another shot at security doc
• 9001ca7 nettest: re-enable unixpacket tests on netbsd/386
• 3d5a8ee internal/socks: permit authenticating with an empty password
• See full diff in compare view

Updates google.golang.org/protobuf from 1.28.1 to 1.30.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.