chore: (go.mod): bump the gomod group across 1 directory with 10 updates

[dependabot]

Bumps the gomod group with 10 updates in the / directory:

Package	From	To
github.com/aws/aws-sdk-go-v2	1.40.0	1.41.6
github.com/aws/aws-sdk-go-v2/config	1.32.2	1.32.16
github.com/aws/aws-sdk-go-v2/service/autoscaling	1.62.1	1.66.1
github.com/aws/aws-sdk-go-v2/service/ec2	1.275.0	1.299.0
github.com/aws/aws-sdk-go-v2/service/sqs	1.42.17	1.42.26
github.com/bradleyfalzon/ghinstallation/v2	2.17.0	2.18.0
github.com/prometheus/common	0.67.4	0.67.5
github.com/spf13/cobra	1.10.1	1.10.2
go.etcd.io/etcd/client/v3	3.6.6	3.6.10
go.uber.org/zap	1.27.1	1.28.0

Updates github.com/aws/aws-sdk-go-v2 from 1.40.0 to 1.41.6

Commits

• 9bc9c51 Release 2026-04-17
• 2b41455 Regenerated Clients
• 2327a1b Update endpoints model
• 9225797 Update API model
• 7b6f675 Bump smithy-go to 1.25 (again) (#3390)
• c8b6a97 Release 2026-04-16
• 4a05c2b Regenerated Clients
• 6cd4cc9 Update endpoints model
• 3153bed Update API model
• fe3cef6 Make AccountIDEndpointRouting aware of bdd endpoints (#3387)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.32.2 to 1.32.16

Commits

• 9bc9c51 Release 2026-04-17
• 2b41455 Regenerated Clients
• 2327a1b Update endpoints model
• 9225797 Update API model
• 7b6f675 Bump smithy-go to 1.25 (again) (#3390)
• c8b6a97 Release 2026-04-16
• 4a05c2b Regenerated Clients
• 6cd4cc9 Update endpoints model
• 3153bed Update API model
• fe3cef6 Make AccountIDEndpointRouting aware of bdd endpoints (#3387)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/autoscaling from 1.62.1 to 1.66.1

Commits

• 896793a Release 2024-10-25
• 6984687 Regenerated Clients
• a978642 Update endpoints model
• c69f1ce Update API model
• dbab935 deprecate service/nimble (#2850)
• 63c2a37 Update presign post URL resolution to use the exact result from EndpointResol...
• 866d441 Release 2024-10-24
• c6e68a6 Regenerated Clients
• 4cb6c27 Update endpoints model
• 08f35b9 Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ec2 from 1.275.0 to 1.299.0

Commits

• 18fee87 Release 2026-04-22
• 0ce157c Regenerated Clients
• 68cdb4a Update API model
• f399972 Bump Smithy from 1.67.0 to 1.69.0 (#3394)
• 3c19a9b Release 2026-04-21
• 1dfac3e Regenerated Clients
• d842df6 Update API model
• ffeb52a bump to latest smithy-go codegen (#3393)
• e839880 Release 2026-04-20
• 4c898c8 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/sqs from 1.42.17 to 1.42.26

Commits

• 9bc9c51 Release 2026-04-17
• 2b41455 Regenerated Clients
• 2327a1b Update endpoints model
• 9225797 Update API model
• 7b6f675 Bump smithy-go to 1.25 (again) (#3390)
• c8b6a97 Release 2026-04-16
• 4a05c2b Regenerated Clients
• 6cd4cc9 Update endpoints model
• 3153bed Update API model
• fe3cef6 Make AccountIDEndpointRouting aware of bdd endpoints (#3387)
• Additional commits viewable in compare view

Updates github.com/bradleyfalzon/ghinstallation/v2 from 2.17.0 to 2.18.0

Release notes

Sourced from github.com/bradleyfalzon/ghinstallation/v2's releases.

v2.18.0

What's Changed

• Bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in bradleyfalzon/ghinstallation#165
• bump github.com/google/go-github to v83 and ci updates by @​cpanato in bradleyfalzon/ghinstallation#184
• Update google/go-github to v84 by @​asvoboda in bradleyfalzon/ghinstallation#185
• Bump actions/checkout from 5.0.0 to 6.0.2 by @​dependabot[bot] in bradleyfalzon/ghinstallation#180
• Bump golangci/golangci-lint-action from 8.0.0 to 9.2.0 by @​dependabot[bot] in bradleyfalzon/ghinstallation#176

Full Changelog: bradleyfalzon/ghinstallation@v2.17.0...v2.18.0

Commits

• 1237274 Bump golangci/golangci-lint-action from 8.0.0 to 9.2.0
• c9c5e67 Bump actions/checkout from 5.0.0 to 6.0.2
• f5640e5 Update google/go-github to v84
• 6e26acb drop deprecated go versions
• 0e0f2d4 fix lints
• bc61e9f apply best practices to ci
• ee71ad0 bump golangci-lint to v2.10
• 4ec07cc add go 1.25 and 1.26 to tests
• 8f035f2 bump github.com/google/go-github to v83
• a2705da Bump actions/checkout from 4.2.2 to 5.0.0
• See full diff in compare view

Updates github.com/prometheus/common from 0.67.4 to 0.67.5

Release notes

Sourced from github.com/prometheus/common's releases.

v0.67.5

What's Changed

• build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.34.0 by @​dependabot[bot] in prometheus/common#871
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#866
• build(deps): bump golang.org/x/net from 0.46.0 to 0.48.0 by @​dependabot[bot] in prometheus/common#872
• build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 by @​dependabot[bot] in prometheus/common#870

Full Changelog: prometheus/common@v0.67.4...v0.67.5

Commits

• 934ff37 build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 (#870)
• 1e29804 build(deps): bump golang.org/x/net from 0.46.0 to 0.48.0 (#872)
• 0bd1c40 Synchronize common files from prometheus/prometheus (#866)
• b644201 build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.34.0 (#871)
• See full diff in compare view

Updates github.com/spf13/cobra from 1.10.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Updates go.etcd.io/etcd/client/v3 from 3.6.6 to 3.6.10

Release notes

Sourced from go.etcd.io/etcd/client/v3's releases.

v3.6.10

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux

ETCD_VER=v3.6.10
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version
start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)

ETCD_VER=v3.6.10
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64
</tr></table>

... (truncated)

Commits

• db8d13a version: bump up to 3.6.10
• 83bb20d Merge pull request #21549 from etcd-io/cherry-pick-36/allow-non-admin-user-to...
• c99cf0c etcdserver: allow non-admin to fetch member list and alarms
• 8a1830c Merge pull request #21530 from k8s-infra-cherrypick-robot/cherry-pick-21528-t...
• e841e10 Merge pull request #21531 from ahrtr/20260327_dep
• f2173cd Bump golang.org/x/image to v0.38.0 to resolve GO-2026-4815
• e0f7af4 Fix etcdctl endpoint command with option --cluster when auth is enabled
• 85651fa version: bump up to 3.6.9
• d2fd011 Merge pull request #21501 from ivanvc/release-3.6-grpc-go-1.79.3
• 2a8cd59 Merge pull request #21497 from fuweid/3.6-weifu-donotreview
• Additional commits viewable in compare view

Updates go.uber.org/zap from 1.27.1 to 1.28.0

Release notes

Sourced from go.uber.org/zap's releases.

v1.28.0

Enhancements:

• #1534[]: Add zapcore.CheckPreWriteHook and CheckedEntry.Before method for transforming entries before they are written to any Cores.

#1534: uber-go/zap#1534

Changelog

Sourced from go.uber.org/zap's changelog.

1.28.0 (27 Apr 2026)

Enhancements:

• #1534[]: Add zapcore.CheckPreWriteHook and CheckedEntry.Before method for transforming entries before they are written to any Cores.

Commits

• 5b81b37 release v1.28.0 (#1547)
• 0ab0d5a zapcore: Add PreWriteHook for transforming entries before write (#1534)
• d278c59 [chore] CI: test on Go 1.26 (#1535)
• 16fb16b chore(dep): replace archived gopkg.in/yaml.v3 with officially maintained go.y...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions