build(deps): bump github.com/abczzz13/clientip from 0.0.6 to 0.0.7 in /prometheus

[dependabot]

Bumps github.com/abczzz13/clientip from 0.0.6 to 0.0.7.

Release notes

Sourced from github.com/abczzz13/clientip's releases.

v0.0.7

What's Changed

• test: harden extraction, parser, and metrics regression coverage by @​abczzz13 in abczzz13/clientip#21
• chore: update dependencies by @​abczzz13 in abczzz13/clientip#22
• feat!: refactor extractor API around typed sources and call options by @​abczzz13 in abczzz13/clientip#23
• feat!: refactor to config-based API with improved parsing and trust chain by @​abczzz13 in abczzz13/clientip#24

Full Changelog: v0.0.6...v0.0.7

Changelog

Sourced from github.com/abczzz13/clientip's changelog.

[0.0.7] - 2026-04-24

Added

• Resolver, ResolverConfig, PreferredFallback, and Resolution as the request-scoped API for strict and preferred client IP resolution.
• StrictResolutionFromContext and PreferredResolutionFromContext for reusing cached resolver state across middleware.
• Resolver.ResolveInputStrict and Resolver.ResolveInputPreferred for framework-agnostic request-scoped resolution.
• Input, ExtractInput, and ExtractInputAddr for framework-agnostic request handling.
• ParseRemoteAddr helper.
• ClassifyError, ResultKind, and result classification constants for coarse-grained policy handling.
• Exported SecurityEvent... constants and public SourceStaticFallback.
• Updated docs, examples, presets, and Prometheus examples around the resolver-first architecture.

Changed

• BREAKING: Resolver is now the primary documented API. Extractor remains as the strict low-level primitive.
• BREAKING: RequestInput is renamed to Input, ExtractFrom is renamed to ExtractInput, and ExtractAddrFrom is renamed to ExtractInputAddr.
• BREAKING: Overrides, ExtractWith, ExtractAddrWith, ExtractFromWith, and ExtractAddrFromWith are removed.
• BREAKING: SecurityMode is removed. Preferred behavior now lives on Resolver.ResolvePreferred.
• BREAKING: ResolverConfig now uses explicit PreferredFallback selection instead of competing fallback knobs.
• BREAKING: Preferred fallback is explicit resolver behavior with Resolution.FallbackUsed; fallback does not emit separate metrics or log events in this phase.
• BREAKING: SourceStaticFallback remains public but is resolver-result-only; it cannot be used in Config.Sources.
• Presets remain Config helpers and now document resolver-oriented usage more clearly.
• Prometheus integration on main is constructor-based: build metrics with prometheus.New() or prometheus.NewWithRegisterer(...) and assign them through Config.Metrics. The published adapter module remains pinned to root v0.0.6 until the matching adapter release is tagged.
• X-Forwarded-For chain extraction again accepts the host:port and quoted forms already supported by parseIP, while Forwarded stays strict and now rejects present-but-empty values plus empty delimiter-created elements/parameters as malformed.
• Internal orchestration now sits behind internal/engine and concrete source execution behind internal/source.

Removed

• Per-call override APIs and the old security-mode split.
• The older extraction naming built around RequestInput and ExtractFrom.

Commits

• a08fdd4 release: v0.0.7
• abb46d2 feat!: refactor to config-based API with improved parsing and trust chain (#24)
• 6b3aa9b feat!: refactor extractor API around typed sources and call options (#23)
• d9068dd chore: update dependencies (#22)
• 89b8608 test: harden extraction, parser, and metrics regression coverage (#21)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Looks like github.com/abczzz13/clientip is up-to-date now, so this is no longer needed.