fix(deps): update module golang.org/x/net to v0.17.0 [security] - autoclosed

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
golang.org/x/net	require	minor	v0.12.0 -> v0.17.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

GitHub Vulnerability Alerts

CVE-2023-44487

swift-nio-http2 is vulnerable to a denial-of-service vulnerability in which a malicious client can create and then reset a large number of HTTP/2 streams in a short period of time. This causes swift-nio-http2 to commit to a large amount of expensive work which it then throws away, including creating entirely new Channels to serve the traffic. This can easily overwhelm an EventLoop and prevent it from making forward progress.

swift-nio-http2 1.28 contains a remediation for this issue that applies reset counter using a sliding window. This constrains the number of stream resets that may occur in a given window of time. Clients violating this limit will have their connections torn down. This allows clients to continue to cancel streams for legitimate reasons, while constraining malicious actors.

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (cdcd992) 50.44437% compared to head (6cd4ad1) 50.44860%.
Report is 1 commits behind head on master.

Additional details and impacted files

@@                 Coverage Diff                 @@
##              master       #1448         +/-   ##
===================================================
+ Coverage   50.44437%   50.44860%   +0.00422%     
===================================================
  Files            356         354          -2     
  Lines          24304       24298          -6     
  Branches         271         271                 
===================================================
- Hits           12260       12258          -2     
+ Misses         10863       10859          -4     
  Partials        1181        1181                 

Flag	Coverage Δ
packages	90.62003% <ø> (ø)
solidity	93.04770% <ø> (ø)
terraform-provider-helmproxy	16.98113% <ø> (ø)
terraform-provider-iap	18.68687% <ø> (ø)
terraform-provider-kubeproxy	22.83737% <ø> (-0.53033%)	⬇️
tfcore	29.83607% <ø> (+0.38623%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

see 2 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: contrib/tfcore/go.sum

Command failed: docker run --rm --name=renovate_a_sidecar --label=renovate_a_child --memory=3584m -v "/tmp/worker/524149/80fae7/repos/github/synapsecns/sanguine":"/tmp/worker/524149/80fae7/repos/github/synapsecns/sanguine" -v "/tmp/worker/524149/80fae7/cache":"/tmp/worker/524149/80fae7/cache" -e GOPATH -e GOPROXY -e GOSUMDB -e GOFLAGS -e CGO_ENABLED -e GIT_CONFIG_KEY_0 -e GIT_CONFIG_VALUE_0 -e GIT_CONFIG_KEY_1 -e GIT_CONFIG_VALUE_1 -e GIT_CONFIG_KEY_2 -e GIT_CONFIG_VALUE_2 -e GIT_CONFIG_COUNT -e CONTAINERBASE_CACHE_DIR -w "/tmp/worker/524149/80fae7/repos/github/synapsecns/sanguine/contrib/tfcore" ghcr.io/containerbase/sidecar:9.23.4 bash -l -c "install-tool golang 1.21.3 && go get -d -t ./... && go mod tidy && go mod tidy"
go: downloading github.com/gartnera/gcloud v0.0.15
go: downloading github.com/gorilla/websocket v1.5.0
go: downloading golang.org/x/oauth2 v0.0.0-20221014153046-6fdb5e3db783
go: downloading golang.org/x/sync v0.3.0
go: downloading github.com/augustoroman/hexdump v0.0.0-20190827031536-6506f4163e93
go: downloading github.com/stretchr/testify v1.8.4
go: downloading github.com/hashicorp/terraform-plugin-go v0.14.2
go: downloading github.com/hashicorp/terraform-plugin-sdk/v2 v2.24.1
go: downloading github.com/phayes/freeport v0.0.0-20220201140144-74d24b5ae9f5
go: downloading cloud.google.com/go/bigtable v1.10.1
go: downloading github.com/GoogleCloudPlatform/declarative-resource-client-library v0.0.0-20211027225138-ef28ca390518
go: downloading cloud.google.com/go v0.110.0
go: downloading github.com/apparentlymart/go-cidr v1.1.0
go: downloading github.com/davecgh/go-spew v1.1.1
go: downloading github.com/gammazero/workerpool v0.0.0-20181230203049-86a96b5d5d92
go: downloading github.com/hashicorp/errwrap v1.1.0
go: downloading github.com/hashicorp/go-cleanhttp v0.5.2
go: downloading github.com/hashicorp/go-version v1.6.0
go: downloading github.com/hashicorp/terraform-provider-google/v4 v4.2.0
go: downloading github.com/mitchellh/go-homedir v1.1.0
go: downloading github.com/mitchellh/hashstructure v1.1.0
go: downloading golang.org/x/mod v0.10.0
go: downloading golang.org/x/net v0.17.0
go: downloading golang.org/x/tools v0.9.3
go: downloading google.golang.org/api v0.86.0
go: downloading google.golang.org/grpc v1.55.0
go: downloading github.com/docker/cli v20.10.17+incompatible
go: downloading github.com/kirsle/configdir v0.0.0-20170128060238-e45d2f54772f
go: downloading github.com/spf13/cobra v1.6.1
go: downloading github.com/hashicorp/go-cty v1.4.1-0.20200414143053-d3edf31b6320
go: downloading github.com/google/go-cmp v0.5.9
go: downloading github.com/hashicorp/go-multierror v1.1.1
go: downloading github.com/hashicorp/terraform-plugin-log v0.7.0
go: downloading github.com/mitchellh/copystructure v1.2.0
go: downloading github.com/mitchellh/go-testing-interface v1.14.1
go: downloading github.com/mitchellh/mapstructure v1.5.0
go: downloading github.com/vmihailenco/msgpack/v4 v4.3.12
go: downloading github.com/vmihailenco/msgpack v4.0.4+incompatible
go: downloading cloud.google.com/go/iam v0.13.0
go: downloading cloud.google.com/go/longrunning v0.4.1
go: downloading github.com/golang/protobuf v1.5.3
go: downloading github.com/googleapis/gax-go/v2 v2.8.0
go: downloading google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1
go: downloading bitbucket.org/creachadair/stringset v0.0.8
go: downloading github.com/cenkalti/backoff v2.2.1+incompatible
go: downloading github.com/golang/glog v1.1.0
go: downloading github.com/kylelemons/godebug v1.1.0
go: downloading github.com/mohae/deepcopy v0.0.0-20170929034955-c48cc78d4826
go: downloading github.com/gammazero/deque v0.0.0-20180920172122-f6adf94963e4
go: downloading github.com/hashicorp/go-uuid v1.0.3
go: downloading github.com/hashicorp/logutils v1.0.0
go: downloading github.com/hashicorp/go-hclog v1.4.0
go: downloading github.com/hashicorp/terraform-exec v0.17.3
go: downloading github.com/hashicorp/terraform-json v0.14.0
go: downloading github.com/mitchellh/reflectwalk v1.0.2
go: downloading cloud.google.com/go/compute/metadata v0.2.3
go: downloading cloud.google.com/go/compute v1.19.0
go: downloading google.golang.org/appengine v1.6.7
go: downloading github.com/inconshreveable/mousetrap v1.1.0
go: downloading github.com/spf13/pflag v1.0.5
go: downloading github.com/pmezard/go-difflib v1.0.0
go: downloading gopkg.in/yaml.v3 v3.0.1
go: downloading github.com/pkg/errors v0.9.1
go: downloading github.com/sirupsen/logrus v1.9.0
go: downloading golang.org/x/text v0.13.0
go: downloading github.com/vmihailenco/tagparser v0.1.2
go: downloading go.opencensus.io v0.24.0
go: downloading golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2
go: downloading google.golang.org/protobuf v1.30.0
go: downloading golang.org/x/sys v0.13.0
go: downloading github.com/fatih/color v1.13.0
go: downloading github.com/mattn/go-colorable v0.1.13
go: downloading github.com/mattn/go-isatty v0.0.19
go: downloading github.com/hashicorp/hcl/v2 v2.15.0
go: downloading github.com/zclconf/go-cty v1.12.1
go: downloading github.com/hashicorp/hc-install v0.4.0
go: downloading github.com/hashicorp/go-plugin v1.4.8
go: downloading github.com/google/uuid v1.3.1
go: downloading github.com/docker/docker-credential-helpers v0.7.0
go: downloading github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da
go: downloading github.com/googleapis/enterprise-certificate-proxy v0.2.3
go: downloading github.com/agext/levenshtein v1.2.3
go: downloading github.com/apparentlymart/go-textseg/v13 v13.0.0
go: downloading github.com/mitchellh/go-wordwrap v1.0.1
go: downloading github.com/hashicorp/go-checkpoint v0.5.0
go: downloading github.com/hashicorp/yamux v0.1.1
go: downloading github.com/oklog/run v1.1.0
go: downloading golang.org/x/crypto v0.14.0
go: downloading github.com/hashicorp/terraform-registry-address v0.1.0
go: downloading github.com/hashicorp/terraform-svchost v0.0.0-20200729002733-f050f53b9734
go: upgraded golang.org/x/crypto v0.11.0 => v0.14.0
go: upgraded golang.org/x/sys v0.10.0 => v0.13.0
go: upgraded golang.org/x/text v0.11.0 => v0.13.0
go: downloading gotest.tools/v3 v3.4.0
go: downloading github.com/dnaeon/go-vcr v1.2.0
go: downloading github.com/apparentlymart/go-dump v0.0.0-20190214190832-042adf3cf4a0
go: downloading gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c
go: downloading github.com/google/btree v1.1.2
go: downloading rsc.io/binaryregexp v0.2.0
go: downloading gopkg.in/yaml.v2 v2.4.0
go: downloading github.com/kr/pretty v0.3.1
go: downloading github.com/go-test/deep v1.0.3
go: downloading github.com/jhump/protoreflect v1.14.1
go: downloading github.com/go-git/go-git/v5 v5.8.1
go: downloading github.com/kr/text v0.2.0
go: downloading github.com/rogpeppe/go-internal v1.10.0
go: downloading dario.cat/mergo v1.0.0
go: downloading github.com/ProtonMail/go-crypto v0.0.0-20230717121422-5aa5874ade95
go: downloading github.com/go-git/go-billy/v5 v5.4.1
go: downloading github.com/sergi/go-diff v1.3.1
go: downloading github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376
go: downloading github.com/pjbgf/sha1cd v0.3.0
go: downloading github.com/emirpasic/gods v1.18.1
go: downloading github.com/acomagu/bufpipe v1.0.4
go: downloading github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99
go: downloading gopkg.in/warnings.v0 v0.1.2
go: downloading github.com/kevinburke/ssh_config v1.2.0
go: downloading github.com/skeema/knownhosts v1.2.0
go: downloading github.com/xanzy/ssh-agent v0.3.3
go: downloading github.com/cloudflare/circl v1.3.3
go: downloading github.com/Microsoft/go-winio v0.6.1
go: github.com/synapsecns/sanguine/contrib/tfcore/generated/tunnel imports
	github.com/gartnera/gcloud/auth imports
	github.com/docker/cli/cli/config/configfile tested by
	github.com/docker/cli/cli/config/configfile.test imports
	gotest.tools/v3/assert: gotest.tools/[email protected]: Get "https://proxy.golang.org/gotest.tools/v3/@v/v3.4.0.zip": EOF
go: github.com/synapsecns/sanguine/contrib/tfcore/generated/tunnel imports
	github.com/gartnera/gcloud/auth imports
	github.com/docker/cli/cli/config/configfile tested by
	github.com/docker/cli/cli/config/configfile.test imports
	gotest.tools/v3/assert/cmp: gotest.tools/[email protected]: Get "https://proxy.golang.org/gotest.tools/v3/@v/v3.4.0.zip": EOF
go: github.com/synapsecns/sanguine/contrib/tfcore/generated/tunnel imports
	github.com/gartnera/gcloud/auth imports
	github.com/docker/cli/cli/config/configfile tested by
	github.com/docker/cli/cli/config/configfile.test imports
	gotest.tools/v3/fs: gotest.tools/[email protected]: Get "https://proxy.golang.org/gotest.tools/v3/@v/v3.4.0.zip": EOF
go: github.com/synapsecns/sanguine/contrib/tfcore/generated/tunnel imports
	github.com/gartnera/gcloud/auth imports
	github.com/docker/cli/cli/config/configfile tested by
	github.com/docker/cli/cli/config/configfile.test imports
	gotest.tools/v3/golden: gotest.tools/[email protected]: Get "https://proxy.golang.org/gotest.tools/v3/@v/v3.4.0.zip": EOF

[coderabbitai]

Important

Review Skipped

Reviews are disabled for bot users.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository.

To trigger a single review, invoke the @coderabbitai review command.

---

Tips

Chat with CodeRabbit Bot (@coderabbitai)

• If you reply to a review comment from CodeRabbit, the bot will automatically respond.
• To engage with CodeRabbit bot directly around the specific lines of code in the PR, mention @coderabbitai in your review comment
• Note: Review comments are made on code diffs or files, not on the PR overview.
• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai help to get help.

Note: For conversation with the bot, please use the review comments on code diffs or files.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• The JSON schema for the configuration file is available here.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.json