Bump the dependencies group across 1 directory with 12 updates

[dependabot]

Bumps the dependencies group with 8 updates in the / directory:

Package	From	To
github.com/aws/aws-sdk-go-v2	1.39.0	1.40.0
github.com/aws/aws-sdk-go-v2/config	1.31.8	1.32.1
github.com/aws/aws-sdk-go-v2/service/secretsmanager	1.39.4	1.40.1
github.com/aws/aws-sdk-go-v2/service/ssm	1.64.4	1.67.3
google.golang.org/grpc	1.75.1	1.77.0
k8s.io/api	0.34.1	0.34.2
k8s.io/client-go	0.34.1	0.34.2
sigs.k8s.io/secrets-store-csi-driver	1.5.3	1.5.4

Updates github.com/aws/aws-sdk-go-v2 from 1.39.0 to 1.40.0

Commits

• 466d9d5 Release 2025-11-19.2
• ca4b05e Regenerated Clients
• d780944 add logincreds provider (#3230)
• 115ff14 Release 2025-11-19
• 964750d Regenerated Clients
• 5b181c4 Update API model
• 1e2c145 Release 2025-11-18
• 163dcfe Regenerated Clients
• 38b8afe Update endpoints model
• 0252675 Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.31.8 to 1.32.1

Commits

• b737dc9 Release 2024-10-07
• 7279a51 Regenerated Clients
• a1b1f5a Update endpoints model
• 4853c41 Update API model
• 99e2be8 Allow empty values on prefix headers (#2816)
• 18e6b6e remove autoscaling smoke tests (#2817)
• 8200000 remove private metrics collection APIs (#2818)
• 7a76a2a Release 2024-10-04
• e35b8be Regenerated Clients
• 6e95871 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.18.12 to 1.19.1

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/credentials's changelog.

Release (2023-07-28)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/sqs: v1.23.4
  • Documentation: Documentation changes related to SQS APIs.

Release (2023-07-27)

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/autoscaling: v1.29.0
  • Feature: This release updates validation for instance types used in the AllowedInstanceTypes and ExcludedInstanceTypes parameters of the InstanceRequirements property of a MixedInstancesPolicy.
• github.com/aws/aws-sdk-go-v2/service/ebs: v1.17.0
  • Feature: SDK and documentation updates for Amazon Elastic Block Store API
• github.com/aws/aws-sdk-go-v2/service/ec2: v1.108.0
  • Feature: SDK and documentation updates for Amazon Elastic Block Store APIs
• github.com/aws/aws-sdk-go-v2/service/eks: v1.28.0
  • Feature: Add multiple customer error code to handle customer caused failure when managing EKS node groups
• github.com/aws/aws-sdk-go-v2/service/sagemaker: v1.95.0
  • Feature: Expose ProfilerConfig attribute in SageMaker Search API response.

Release (2023-07-26)

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/entityresolution: v1.0.0
  • Release: New AWS service client module
  • Feature: AWS Entity Resolution can effectively match a source record from a customer relationship management (CRM) system with a source record from a marketing system containing campaign information.
• github.com/aws/aws-sdk-go-v2/service/glue: v1.58.0
  • Feature: Release Glue Studio Snowflake Connector Node for SDK/CLI
• github.com/aws/aws-sdk-go-v2/service/healthlake: v1.16.4
  • Documentation: Updating the HealthLake service documentation.
• github.com/aws/aws-sdk-go-v2/service/managedblockchainquery: v1.0.0
  • Release: New AWS service client module
  • Feature: Amazon Managed Blockchain (AMB) Query provides serverless access to standardized, multi-blockchain datasets with developer-friendly APIs.
• github.com/aws/aws-sdk-go-v2/service/mediaconvert: v1.39.1
  • Documentation: This release includes general updates to user documentation.
• github.com/aws/aws-sdk-go-v2/service/omics: v1.5.2
  • Documentation: The service is renaming as a part of AWS Health.
• github.com/aws/aws-sdk-go-v2/service/opensearchserverless: v1.3.0
  • Feature: This release adds new collection type VectorSearch.
• github.com/aws/aws-sdk-go-v2/service/polly: v1.27.0
  • Feature: Amazon Polly adds 1 new voice - Lisa (nl-BE)
• github.com/aws/aws-sdk-go-v2/service/route53: v1.28.5
  • Documentation: Update that corrects the documents for received feedback.

Release (2023-07-25)

General Highlights

... (truncated)

Commits

• a5d5009 Release 2023-07-28
• ff82299 Regenerated Clients
• fc5a86f Update API model
• 62ffb94 fix v4.go PresignHTTP doc (#2212)
• b4d8d26 Release 2023-07-27
• ad52106 Regenerated Clients
• f335bcf Update API model
• d5a9934 Release 2023-07-26
• 247060d Regenerated Clients
• 61540ee Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/secretsmanager from 1.39.4 to 1.40.1

Commits

• e155bb7 Release 2023-10-06
• 9d342ba Regenerated Clients
• 1df9914 Update SDK's smithy-go dependency to v1.15.0
• 32ada3a Update API model
• 12ba4ac Release 2023-10-05
• be8a8e0 Regenerated Clients
• dc38adb Update endpoints model
• a52086e Update API model
• 1ed22c1 Release 2023-10-04
• e007bcd Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ssm from 1.64.4 to 1.67.3

Commits

• ab56437 Release 2025-11-11
• 3dcd1d8 Regenerated Clients
• 51e8881 Update API model
• 1ed4f27 add MAINTAINERS.md
• a5136d5 host label
• 0bf4293 Feat ep region validation (#3225)
• 7f09d56 Release 2025-11-10
• f7d3676 Regenerated Clients
• f077cda Update API model
• a432037 Release 2025-11-07
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.38.4 to 1.41.1

Commits

• fe7486f Release 2025-06-17
• 1b6cafd Regenerated Clients
• 8db1137 Update API model
• 3c5cc0e Bump smithy go version (#3115)
• 6746486 Release 2025-06-16
• f536b0d Regenerated Clients
• b014b35 Update API model
• 5c12a3b correct smithy go bumping to correct commit in its main branch (#3112)
• b65321f Bump codegen for CBOR empty check (#3111)
• e6c02cd Release 2025-06-12
• Additional commits viewable in compare view

Updates github.com/aws/smithy-go from 1.23.0 to 1.23.2

Changelog

Sourced from github.com/aws/smithy-go's changelog.

Release (2025-11-03)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.23.2
  • Bug Fix: Adjust the initial sizes of each middleware phase to avoid some unnecessary reallocation.
  • Bug Fix: Avoid unnecessary allocation overhead from the metrics system when not in use.

Release (2025-10-15)

General Highlights

• Dependency Update: Bump minimum go version to 1.23.
• Dependency Update: Updated to the latest SDK module versions

Release (2025-09-18)

Module Highlights

• github.com/aws/smithy-go/aws-http-auth: v1.1.0
  • Feature: Added support for SIG4/SIGV4A querystring authentication.

Release (2025-08-27)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.23.0
  • Feature: Sort map keys in JSON Document types.

Release (2025-07-24)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.22.5
  • Feature: Add HTTP interceptors.

Release (2025-06-16)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.22.4
  • Bug Fix: Fix CBOR serd empty check for string and enum fields
  • Bug Fix: Fix HTTP metrics data race.
  • Bug Fix: Replace usages of deprecated ioutil package.

... (truncated)

Commits

• 299f404 Release 2025-11-03
• 8d4c6fb adjust initial caps on middleware steps (#611)
• 5cc76d9 don't re-instantiate nop instruments everywhere (#610)
• 29d3973 remove httptrace metrics overhead w/ nop metrics (#609)
• 7993c1f ci: scope down GitHub Token permissions (#607)
• 695755c Release 2025-10-15
• 4355cab changelog
• 40bb509 bump to go1.23 (#606)
• 0ccf069 Update Smithy to 1.62.0 (#605)
• 04e063a Release 2025-09-18
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.75.1 to 1.77.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.77.0

API Changes

• mem: Replace the Reader interface with a struct for better performance and maintainability. (#8669)

Behavior Changes

• balancer/pickfirst: Remove support for the old pick_first LB policy via the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST=false. The new pick_first has been the default since v1.71.0. (#8672)

Bug Fixes

• xdsclient: Fix a race condition in the ADS stream implementation that could result in resource-not-found errors, causing the gRPC client channel to move to TransientFailure. (#8605)
• client: Ignore HTTP status header for gRPC streams. (#8548)
• client: Set a read deadline when closing a transport to prevent it from blocking indefinitely on a broken connection. (#8534)
  • Special Thanks: @​jgold2-stripe
• client: Fix a bug where default port 443 was not automatically added to addresses without a specified port when sent to a proxy.
  • Setting environment variable GRPC_EXPERIMENTAL_ENABLE_DEFAULT_PORT_FOR_PROXY_TARGET=false disables this change; please file a bug if any problems are encountered as we will remove this option soon. (#8613)
• balancer/pickfirst: Fix a bug where duplicate addresses were not being ignored as intended. (#8611)
• server: Fix a bug that caused overcounting of channelz metrics for successful and failed streams. (#8573)
  • Special Thanks: @​hugehoo
• balancer/pickfirst: When configured, shuffle addresses in resolver updates that lack endpoints. Since gRPC automatically adds endpoints to resolver updates, this bug only affects custom LB policies that delegate to pick_first but don't set endpoints. (#8610)
• mem: Clear large buffers before re-using. (#8670)

Performance Improvements

• transport: Reduce heap allocations to reduce time spent in garbage collection. (#8624, #8630, #8639, #8668)
• transport: Avoid copies when reading and writing Data frames. (#8657, #8667)
• mem: Avoid clearing newly allocated buffers. (#8670)

New Features

• outlierdetection: Add metrics specified in gRFC A91. (#8644)
  • Special Thanks: @​davinci26, @​PardhuKonakanchi
• stats/opentelemetry: Add support for optional label grpc.lb.backend_service in per-call metrics (#8637)
• xds: Add support for JWT Call Credentials as specified in gRFC A97. Set environment variable GRPC_EXPERIMENTAL_XDS_BOOTSTRAP_CALL_CREDS=true to enable this feature. (#8536)
  • Special Thanks: @​dimpavloff
• experimental/stats: Add support for up/down counters. (#8581)

Release 1.76.0

Dependencies

• Minimum supported Go version is now 1.24 (#8509)
  • Special Thanks: @​kevinGC

Bug Fixes

• client: Return status INTERNAL when a server sends zero response messages for a unary or client-streaming RPC. (#8523)
• client: Fail RPCs with status INTERNAL instead of UNKNOWN upon receiving http headers with status 1xx and END_STREAM flag set. (#8518)
  • Special Thanks: @​vinothkumarr227
• pick_first: Fix race condition that could cause pick_first to get stuck in IDLE state on backend address change. (#8615)

... (truncated)

Commits

• 805b1f8 Change version to 1.77.0 (#8677)
• ea7b66e Cherrypick #8702 to v1.77.x (#8709)
• cadae08 Cherry-pick #8536 to v1.77.x (#8691)
• 4288cfc Cherrypick #8657 and #8667 to v1.77.x (#8690)
• f959da6 transport: Reduce heap allocations (#8668)
• 0d49384 deps: update all dependencies (#8673)
• e3e142d pickfirst: Remove old pickfirst (#8672)
• 254ab10 documentation: fix typos in benchmark and auth docs (#8674)
• 2d56bda mem: Remove Reader interface and export the concrete struct (#8669)
• 8ab0c82 mem: Avoid clearing new buffers and clear buffers from simpleBufferPools (#8670)
• Additional commits viewable in compare view

Updates k8s.io/api from 0.34.1 to 0.34.2

Commits

• e28454b Update dependencies to v0.34.2 tag
• See full diff in compare view

Updates k8s.io/apimachinery from 0.34.1 to 0.34.2

Commits

• See full diff in compare view

Updates k8s.io/client-go from 0.34.1 to 0.34.2

Commits

• 54601aa Update dependencies to v0.34.2 tag
• 1bb1ad2 Merge pull request #134589liggitt/automated-cherry-pick-of-#134588
• 2505205 Remove invalid SAN certificate construction
• 7ffba0f Merge pull request #134004DerekFrank/automated-cherry-pick-of-#133573
• 145cb8f gofmt and review feedback
• ddcdc12 fix: Update unit test to catch actual nil Labels case and fix functionality t...
• See full diff in compare view

Updates sigs.k8s.io/secrets-store-csi-driver from 1.5.3 to 1.5.4

Release notes

Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.

v1.5.4 - 2025-10-01

Changelog

Continuous Integration 💜

• 96dbbdca4902e666c0ea759de472eeb5cac6b6d6 ci: resolve azure e2e test flakes with rbac, windows vm size
• 0071011123636211b371ee795de743df76394bd9 ci: update azure scripts to use rbac for keyvault permissions

Maintenance 🔧

• 8d332394c4e79d957e060b6ebc26be1b34fe57b2 chore: bump version to v1.5.4 in release-1.5
• 66659025b3b6667c4e443da3e2648678f2958469 chore: bump kubectl to v1.34.1 in driver-crds
• 321f0f48275125936d4f557929c225d3110429cd chore: update debian-base to bookworm-v1.0.6
• 893cf34fbff1c6fe99b1e0b4aa0a96d2b31cbd93 chore: update to go 1.24.7

Commits

• 08a11d8 Merge pull request #1932aramase/automated-cherry-pick-of-#1931
• b6e080b release: update manifest and helm charts for v1.5.4
• 0954529 Merge pull request #1928 from aramase/aramase/c/bump_release_1.5_v1.5.4
• 008de7b Merge pull request #1930aramase/automated-cherry-pick-of-#1929
• 96dbbdc ci: resolve azure e2e test flakes with rbac, windows vm size
• 8d33239 chore: bump version to v1.5.4 in release-1.5
• c22f7bb Merge pull request #1920aramase/automated-cherry-pick-of-#1915
• 6665902 chore: bump kubectl to v1.34.1 in driver-crds
• 321f0f4 chore: update debian-base to bookworm-v1.0.6
• 893cf34 chore: update to go 1.24.7
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 60.10%. Comparing base (6dbe3b9) to head (c3f83c8).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #548   +/-   ##
=======================================
  Coverage   60.10%   60.10%           
=======================================
  Files          11       11           
  Lines         762      762           
=======================================
  Hits          458      458           
  Misses        287      287           
  Partials       17       17           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.