build(deps): bump the all-updates group with 4 updates

[dependabot]

Bumps the all-updates group with 4 updates: github.com/DeRuina/timberjack, github.com/KimMachineGun/automemlimit, github.com/klauspost/compress and go.step.sm/crypto.

Updates github.com/DeRuina/timberjack from 1.3.8 to 1.3.9

Release notes

Sourced from github.com/DeRuina/timberjack's releases.

v1.3.9

1.3.9 (2025-10-21)

Features

• Make FileMode for newly created files configurable (#59) (82320e6)

Changelog

Sourced from github.com/DeRuina/timberjack's changelog.

1.3.9 (2025-10-21)

Features

• Make FileMode for newly created files configurable (#59) (82320e6)

Commits

• a9a5ae1 docs: CHANGELOG new release
• 82320e6 feat: make FileMode for newly created files configurable (#59)
• 9f8e913 ci(deps): bump actions/setup-go from 5 to 6 (#57)
• 598a4d6 ci: staticcheck (Go 1.22 compatible)
• c56b7ff ci(deps): bump actions/checkout from 4 to 5 (#56)
• 0fe1399 ci: Pull request template
• 5989466 ci: Update issue templates
• cd654ac ci: Update issue templates
• 1d37a3d ci: Revise security policy and reporting instructions
• 3f32dd3 ci: Remove versioning strategy from dependabot config
• Additional commits viewable in compare view

Updates github.com/KimMachineGun/automemlimit from 0.7.4 to 0.7.5

Release notes

Sourced from github.com/KimMachineGun/automemlimit's releases.

v0.7.5

What's Changed

• fix(memlimit): respect parent cgroup limits in v2 (KimMachineGun/automemlimit#31) by @​KimMachineGun in KimMachineGun/automemlimit@6d12049

Full Changelog: KimMachineGun/automemlimit@v0.7.4...v0.7.5

Commits

• 6d12049 fix(memlimit): respect parent cgroup limits in v2 (#31)
• See full diff in compare view

Updates github.com/klauspost/compress from 1.18.0 to 1.18.1

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.18.1

What's Changed

• zstd: Fix incorrect buffer size in dictionary encodes by @​klauspost in klauspost/compress#1059
• s2: check for cap, not len of buffer in EncodeBetter/Best by @​vdarulis in klauspost/compress#1080
• zstd: Add simple zstd EncodeTo/DecodeTo functions by @​klauspost in klauspost/compress#1079
• zlib: Avoiding extra allocation in zlib.reader.Reset by @​travelpolicy in klauspost/compress#1086
• gzhttp: remove redundant err check in zstdReader by @​ryanfowler in klauspost/compress#1090
• Run modernize. Deprecate Go 1.22 by @​klauspost in klauspost/compress#1095
• flate: Simplify matchlen by @​klauspost in klauspost/compress#1101
• flate: Add examples by @​klauspost in klauspost/compress#1102
• flate: Use exact sizes for huffman tables by @​klauspost in klauspost/compress#1103
• flate: Faster load+store by @​klauspost in klauspost/compress#1104
• Add notice to S2 about MinLZ by @​klauspost in klauspost/compress#1065

New Contributors

• @​wooffie made their first contribution in klauspost/compress#1069
• @​vdarulis made their first contribution in klauspost/compress#1080
• @​travelpolicy made their first contribution in klauspost/compress#1086
• @​ryanfowler made their first contribution in klauspost/compress#1090

Full Changelog: klauspost/compress@v1.18.0...v1.18.1

Commits

• d10b525 build(deps): bump the github-actions group with 2 updates (#1105)
• 3c0d308 flate: Faster load+st0re (#1104)
• 6e2f5d5 flate: Use exact sizes for huffman tables (#1103)
• bda824b flate: Add examples (#1102)
• f44517c flate: Simplify matchlen (#1101)
• 54cb7a5 build(deps): bump the github-actions group with 3 updates (#1096)
• c43fcbb Run modernize. Deprecate Go 1.22 (#1095)
• 86a9489 gzhttp: remove redundant err check in zstdReader (#1090)
• ad4a030 build(deps): bump github/codeql-action in the github-actions group (#1087)
• 1a8c0e4 Avoiding extra allocation in Reset (#1086)
• Additional commits viewable in compare view

Updates go.step.sm/crypto from 0.72.0 to 0.73.0

Release notes

Sourced from go.step.sm/crypto's releases.

Release v0.73.0

What's Changed

• Add support for AES128 and AES256 YubiKey management keys by @​hslatman in smallstep/crypto#884

Dependencies

• chore(deps): Bump github.com/aws/aws-sdk-go-v2/config from 1.31.12 to 1.31.13 by @​dependabot[bot] in smallstep/crypto#875
• chore(deps): Bump google.golang.org/api from 0.251.0 to 0.252.0 by @​dependabot[bot] in smallstep/crypto#877
• chore(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.12.0 to 1.13.0 by @​dependabot[bot] in smallstep/crypto#879
• chore(deps): Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.45.6 to 1.46.0 by @​dependabot[bot] in smallstep/crypto#878
• chore(deps): Bump cloud.google.com/go/kms from 1.23.1 to 1.23.2 by @​dependabot[bot] in smallstep/crypto#876
• chore(deps): Bump github.com/aws/aws-sdk-go-v2/config from 1.31.13 to 1.31.15 by @​dependabot[bot] in smallstep/crypto#882
• chore(deps): Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.46.0 to 1.46.2 by @​dependabot[bot] in smallstep/crypto#880
• chore(deps): Bump google.golang.org/api from 0.252.0 to 0.253.0 by @​dependabot[bot] in smallstep/crypto#881

Full Changelog: smallstep/crypto@v0.72.0...v0.73.0

Commits

• 6338f90 Merge pull request #884 from smallstep/herman/yubikey-support-aes-management-...
• 4180afc Add support for AES128 and AES256 YubiKey management keys
• 7b18d04 Merge pull request #881 from smallstep/dependabot/go_modules/google.golang.or...
• e150037 chore(deps): Bump google.golang.org/api from 0.252.0 to 0.253.0
• ed54b1c Merge pull request #880 from smallstep/dependabot/go_modules/github.com/aws/a...
• f087d6a chore(deps): Bump github.com/aws/aws-sdk-go-v2/service/kms
• 491b2ea Merge pull request #882 from smallstep/dependabot/go_modules/github.com/aws/a...
• 8f594b8 chore(deps): Bump github.com/aws/aws-sdk-go-v2/config
• 0a9f529 Merge pull request #876 from smallstep/dependabot/go_modules/cloud.google.com...
• e0a6efe chore(deps): Bump cloud.google.com/go/kms from 1.23.1 to 1.23.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions