🌱 Bump the gomod group across 2 directories with 4 updates

[dependabot]

Bumps the gomod group with 3 updates in the / directory: cloud.google.com/go/bigquery, github.com/moby/buildkit and gitlab.com/gitlab-org/api/client-go.
Bumps the gomod group with 1 update in the /tools directory: google.golang.org/protobuf.

Updates cloud.google.com/go/bigquery from 1.65.0 to 1.66.0

Release notes

Sourced from cloud.google.com/go/bigquery's releases.

bigquery: v1.66.0

1.66.0 (2025-01-20)

Features

• bigquery/storage/managedwriter: Graceful connection drains (#11463) (b29912f)

Bug Fixes

• bigquery: Update golang.org/x/net to v0.33.0 (e9b0b69)

Commits

• d357a36 chore(main): release spanner 1.66.0 (#10614)
• 54009ea feat(spanner): add support of multiplexed session support in writeAtleastOnce...
• 7797022 feat(spanner): add support of using multiplexed session with ReadOnlyTransact...
• dbf480c chore: freeze google.golang.org/grpc at v1.64.1 (#10642)
• 649c075 feat(aiplatform): add pointwise and pairwise metrics to evaluation service (#...
• 0018415 fix(storage): retry gRPC DEADLINE_EXCEEDED errors (#10635)
• baa1c40 chore(main): release bigtable 1.28.0 (#10599)
• f371928 chore(main): release pubsub 1.41.0 (#10469)
• 443e0ee chore: release main (#10595)
• 928f1a7 fix(bigtable/emulator): Sending empty row in SampleRowKeys response (#10611)
• Additional commits viewable in compare view

Updates github.com/moby/buildkit from 0.18.2 to 0.19.0

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.19.0

Welcome to the v0.19.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• Tõnis Tiigi
• CrazyMax
• Sebastiaan van Stijn
• Akihiro Suda
• Jonathan A. Sternberg
• Anthony Nandaa
• Brian Goff
• David Karlsson
• Marat Radchenko
• Shaun Thompson
• Alberto Garcia Hierro
• Daniel Githinji
• Peter Engelbert
• Steeve Chailloux
• lvyaoting

Notable Changes

• Builtin Dockerfile frontend has been updated to v1.13.0
• Attestations embedded into build results can now be generated in OCI artifact format with oci-artifact=true option #5573
• Platform specifiers that set Windows OSVersion are now supported #5614
• Add powershell.exe dir to default PATH for WCOW #5446
• Allow unix address for debug address for buildkitd #5568
• Requests that pull in Git sources now inherit proxy environment variables from buildkitd #5613
• Update Runc to v1.2.4 #5639
• Update RootlessKit to v2.3.2 #5674
• Fix possible "unknown file mode" error when transferring files on Windows #5636 #5657
• Fix possible panic from data race in history record serialization #5666
• Fix error message for invalid includepatterns #5649
• Fix invalid index.json annotations on tar=false export #5589
• Fix possible panic when walking provenance due to race condition #5606

Dependency Changes

• github.com/AdaLogics/go-fuzz-headers ced1acdcaa24 -> e8a1dd7889d6
• github.com/AdamKorcz/go-118-fuzz-build 8075edf89bb0 -> 2b5cbb29f3e2
• github.com/Microsoft/hcsshim v0.12.8 -> v0.12.9
• github.com/aws/aws-sdk-go-v2 v1.24.1 -> v1.30.3
• github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.5.4 -> v1.6.3
• github.com/aws/aws-sdk-go-v2/config v1.26.6 -> v1.27.27

... (truncated)

Commits

• 3637d1b Merge pull request #5676 from crazy-max/v0.19_backport_rootless-update
• fd911c1 Dockerfile: update RootlessKit to v2.3.2
• 3a76127 Merge pull request #5613 from WnP/git-proxy
• 4f97acf fix git http_proxy ignored
• c2c70ac Merge pull request #5643 from crazy-max/update-libcap
• 77c7489 Merge pull request #5656 from cpuguy83/platform_format_add_config_check
• e7185ac Merge pull request #5636 from jsternberg/unroll-prune-loop
• f55aa54 Merge pull request #5665 from jsternberg/clear-mode-irregular
• f101ab5 Merge pull request #5666 from tonistiigi/marshal-history-record-fix
• 45177da contenthash: clear ModeIrregular before sending to archive/tar
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.2 to 1.36.3

Updates gitlab.com/gitlab-org/api/client-go from 0.119.0 to 0.120.0

Release notes

Sourced from gitlab.com/gitlab-org/api/client-go's releases.

v0.120.0

0.120.0 (2025-01-17)

No changes.

Commits

• e881bdc Merge branch 'feat/add-member-role-to-project-member' into 'main'
• dee9099 Add MemberRole attribute to project members
• 616e996 Merge branch 'match-top-level-go' into 'main'
• 787af33 Run unit tests for top-level go file changes
• 876b02d Merge branch 'renovate/alpine-3.x' into 'main'
• d1717d5 Update alpine Docker tag to v3.21.2
• ae097ae Merge branch 'renovate/alpine-3.x' into 'main'
• 922d12b Update alpine Docker tag to v3.21.1
• See full diff in compare view

Updates google.golang.org/protobuf from 1.36.2 to 1.36.3

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
gitlab.com/gitlab-org/api/client-go	[>= 0.118.a, < 0.119]
gitlab.com/gitlab-org/api/client-go	[>= 0.117.a, < 0.118]

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[spencerschrock]

@dependabot squash and merge