Bump the minor-and-patch group across 2 directories with 5 updates

[dependabot]

Bumps the minor-and-patch group with 5 updates in the /server/go directory:

Package	From	To
github.com/aws/aws-sdk-go-v2	1.38.3	1.39.3
github.com/aws/aws-sdk-go-v2/config	1.31.6	1.31.14
github.com/aws/aws-sdk-go-v2/service/dynamodb	1.50.1	1.52.1
github.com/godaddy/asherah/go/appencryption	0.8.0	0.9.0
google.golang.org/grpc	1.75.0	1.76.0

Bumps the minor-and-patch group with 1 update in the /tests/cross-language/go directory: github.com/godaddy/asherah/go/appencryption.

Updates github.com/aws/aws-sdk-go-v2 from 1.38.3 to 1.39.3

Commits

• b9b0c65 Release 2025-10-16
• e2bc8a0 Regenerated Clients
• 8691ee3 Update API model
• 51e8a3f bump to go1.23 (#3211)
• ad2d36c Release 2025-10-15
• 19a35d6 Regenerated Clients
• 35cb02f Update endpoints model
• f673a1b Update API model
• 48421fd Release 2025-10-14
• fedcba7 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.31.6 to 1.31.14

Commits

• a0c74d2 Release 2025-10-22
• eb61154 Regenerated Clients
• e20d3e4 Update endpoints model
• 9acd5fa Update API model
• a91cc6c Speed up unit tests by removing duplicate work (#3216)
• 7cdc7c8 Release 2025-10-21
• feadc37 Regenerated Clients
• 0d16eb2 Update API model
• ff236e2 remove superfluous goDirective (#3212)
• 4718b0d ci: scope down GitHub Token permissions (#3217)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/dynamodb from 1.50.1 to 1.52.1

Commits

• 10c4487 Release 2024-03-15
• db0b1ab Regenerated Clients
• 92c0060 Update endpoints model
• e5bb86e Update API model
• 49b368e Release 2024-03-14
• 0aa6643 Regenerated Clients
• bb0d403 Update API model
• 7229e9c Merge pull request #2553 from aws/feat-deprec-iotroborunner
• 8fa1496 update changelog
• 4174347 add changelog
• Additional commits viewable in compare view

Updates github.com/godaddy/asherah/go/appencryption from 0.8.0 to 0.9.0

Release notes

Sourced from github.com/godaddy/asherah/go/appencryption's releases.

[Go] AppEncryption v0.9.0

What's Changed

Major Changes

• Added deprecation notices to aws-v1 plugin components - deprecation comments direct users to migrate to the aws-v2 alternative
• Complete AWS SDK v2 test infrastructure migration - All integration tests now use independent AWS SDK v2 utilities with improved container cleanup and regional suffix compatibility
• Enhanced AWS SDK v1 deprecation handling - Added comprehensive linter exclusions and updated deprecation comments to reflect end-of-life status (July 31, 2025)
• Upgraded Go - Updated to Go 1.23.0

Dependency Updates

• Bump github.com/aws/aws-sdk-go from 1.55.7 to 1.55.8
• Bump github.com/aws/aws-sdk-go-v2 from 1.37.1 to 1.38.3
• Bump github.com/aws/aws-sdk-go-v2/config from 1.30.2 to 1.31.6
• Bump github.com/aws/aws-sdk-go-v2/feature/dynamodb/attributevalue from 1.20.1 to 1.20.9
• Bump github.com/aws/aws-sdk-go-v2/feature/dynamodb/expression from 1.8.1 to 1.8.9
• Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.42.1 to 1.45.1
• Bump github.com/stretchr/testify from 1.10.0 to 1.11.1
• Bump github.com/docker/go-connections from 0.5.0 to 0.6.0
• Bump github.com/godaddy/asherah/go/securememory from 0.1.6 to 0.1.7

Code Quality Improvements

• Updated linting configuration - Added staticcheck exclusions for intentional AWS SDK v1 usage in backward compatibility layers
• Updated deprecation documentation - All AWS SDK v1 components now clearly communicate security urgency and migration paths
• Improved test reliability - Fixed container cleanup timing issues in integration tests
• Eliminated AWS SDK v1 dependencies from v2 infrastructure - Clean separation between v1 and v2 test utilities

Backward Compatibility

This release maintains full backward compatibility. All existing AWS SDK v1 integrations will continue to work unchanged, though users will see deprecation warnings encouraging migration to AWS SDK v2 plugins for security and long-term support.

Full Changelog: https://github.com/godladdy/asherah/compare/go/appencryption/v0.8.0...go/appencryption/v0.9.0

Commits

• 701e8f6 Merge pull request #1514 from godaddy/go-ae-bump
• a36eb2c bump version to 0.9.0
• 7de8d3b Merge pull request #1513 from godaddy/csharp-ae-bump
• 24475fb bump version to 0.8.0
• 10275fd Merge pull request #1511 from godaddy/dependabot/go_modules/server/go/minor-a...
• 7965b71 Bump the minor-and-patch group across 2 directories with 7 updates
• 3e97f4f Merge pull request #1512 from godaddy/go-server-aws-v2
• f58862d Complete AWS KMS plugin upgrade to v2
• 75b7266 Merge pull request #1508 from godaddy/dependabot/nuget/csharp/AppEncryption/A...
• 1ed3e28 Bump the minor-and-patch group with 2 updates
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.75.0 to 1.76.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.76.0

Dependencies

• Minimum supported Go version is now 1.24 (#8509)
  • Special Thanks: @​kevinGC

Bug Fixes

• client: Return status INTERNAL when a server sends zero response messages for a unary or client-streaming RPC. (#8523)
• client: Fail RPCs with status INTERNAL instead of UNKNOWN upon receiving http headers with status 1xx and END_STREAM flag set. (#8518)
  • Special Thanks: @​vinothkumarr227
• pick_first: Fix race condition that could cause pick_first to get stuck in IDLE state on backend address change. (#8615)

New Features

• credentials: Add credentials/jwt package providing file-based JWT PerRPCCredentials (A97). (#8431)
  • Special Thanks: @​dimpavloff

Performance Improvements

• client: Improve HTTP/2 header size estimate to reduce re-allocations. (#8547)
• encoding/proto: Avoid redundant message size calculation when marshaling. (#8569)
  • Special Thanks: @​rs-unity

Release 1.75.1

Bug Fixes

• transport: Fix a data race while copying headers for stats handlers in the std lib http2 server transport. (#8519)
• xdsclient:
  • Fix a data race caused while reporting load to LRS. (#8483)
  • Fix regression preventing empty node IDs when creating an LRS client. (#8483)
• server: Fix a regression preventing streams from being cancelled or timed out when blocked on flow control. (#8528)

Commits

• d96c2ef Change version to 1.76.0 (#8584)
• 79c553c Cherry pick #8610, #8615 to v1.76.x (#8621)
• 0513350 client: minor improvements to log messages (#8564)
• ebaf486 credentials: implement file-based JWT Call Credentials (part 1 for A97) (#8431)
• ca78c90 xds/resolver_test: fix flaky test ResolverBadServiceUpdate_NACKedWithoutCache...
• 83bead4 internal/buffer: set closed flag when closing channel in the Load method (#8575)
• 0f45079 encoding/proto: enable use cached size option (#8569)
• 8420f3f transport: avoid slice reallocation during header creation (#8547)
• b36320e Revert "stats/opentelemetry: record retry attempts from clientStream (#8342)"...
• c122250 stats/opentelemetry: record retry attempts from clientStream (#8342)
• Additional commits viewable in compare view

Updates github.com/godaddy/asherah/go/appencryption from 0.8.0 to 0.9.0

Release notes

Sourced from github.com/godaddy/asherah/go/appencryption's releases.

[Go] AppEncryption v0.9.0

What's Changed

Major Changes

• Added deprecation notices to aws-v1 plugin components - deprecation comments direct users to migrate to the aws-v2 alternative
• Complete AWS SDK v2 test infrastructure migration - All integration tests now use independent AWS SDK v2 utilities with improved container cleanup and regional suffix compatibility
• Enhanced AWS SDK v1 deprecation handling - Added comprehensive linter exclusions and updated deprecation comments to reflect end-of-life status (July 31, 2025)
• Upgraded Go - Updated to Go 1.23.0

Dependency Updates

• Bump github.com/aws/aws-sdk-go from 1.55.7 to 1.55.8
• Bump github.com/aws/aws-sdk-go-v2 from 1.37.1 to 1.38.3
• Bump github.com/aws/aws-sdk-go-v2/config from 1.30.2 to 1.31.6
• Bump github.com/aws/aws-sdk-go-v2/feature/dynamodb/attributevalue from 1.20.1 to 1.20.9
• Bump github.com/aws/aws-sdk-go-v2/feature/dynamodb/expression from 1.8.1 to 1.8.9
• Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.42.1 to 1.45.1
• Bump github.com/stretchr/testify from 1.10.0 to 1.11.1
• Bump github.com/docker/go-connections from 0.5.0 to 0.6.0
• Bump github.com/godaddy/asherah/go/securememory from 0.1.6 to 0.1.7

Code Quality Improvements

• Updated linting configuration - Added staticcheck exclusions for intentional AWS SDK v1 usage in backward compatibility layers
• Updated deprecation documentation - All AWS SDK v1 components now clearly communicate security urgency and migration paths
• Improved test reliability - Fixed container cleanup timing issues in integration tests
• Eliminated AWS SDK v1 dependencies from v2 infrastructure - Clean separation between v1 and v2 test utilities

Backward Compatibility

This release maintains full backward compatibility. All existing AWS SDK v1 integrations will continue to work unchanged, though users will see deprecation warnings encouraging migration to AWS SDK v2 plugins for security and long-term support.

Full Changelog: https://github.com/godladdy/asherah/compare/go/appencryption/v0.8.0...go/appencryption/v0.9.0

Commits

• 701e8f6 Merge pull request #1514 from godaddy/go-ae-bump
• a36eb2c bump version to 0.9.0
• 7de8d3b Merge pull request #1513 from godaddy/csharp-ae-bump
• 24475fb bump version to 0.8.0
• 10275fd Merge pull request #1511 from godaddy/dependabot/go_modules/server/go/minor-a...
• 7965b71 Bump the minor-and-patch group across 2 directories with 7 updates
• 3e97f4f Merge pull request #1512 from godaddy/go-server-aws-v2
• f58862d Complete AWS KMS plugin upgrade to v2
• 75b7266 Merge pull request #1508 from godaddy/dependabot/nuget/csharp/AppEncryption/A...
• 1ed3e28 Bump the minor-and-patch group with 2 updates
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: go. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.