Bump github.com/golangci/golangci-lint from 1.63.4 to 1.64.5 in the go-mod group

[dependabot]

Bumps the go-mod group with 1 update: github.com/golangci/golangci-lint.

Updates github.com/golangci/golangci-lint from 1.63.4 to 1.64.5

Release notes

Sourced from github.com/golangci/golangci-lint's releases.

v1.64.5

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• a43c84c5543785870617ec578d29a3d4fc58b720 build(deps): bump github.com/gostaticanalysis/forcetypeassert from 0.1.0 to 0.2.0 (#5409)
• 4be8bf8053eaef5d8c5aef0a3771c75e16a0d8b7 build(deps): bump github.com/securego/gosec/v2 from 2.22.0 to 2.22.1 (#5410)
• e352220b9c3016dbd40243ce2701fc32fa2654e9 build(deps): bump github.com/tdakkota/asciicheck from 0.3.0 to 0.4.0 (#5411)
• 0a603e49e5e9870f5f9f2035bcbe42cd9620a9d5 fix: add missing new-from-merge-base flag (#5412)

v1.64.4

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• 04aec4f787c25a737641f3d434059880d2af0f53 gci: fix section parsing (#5407)

v1.64.3

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• b8920ddc2352bf2a679c2424db16d2b36c2dbbce build(deps): bump github.com/go-critic/go-critic from 0.11.5 to 0.12.0 (#5400)
• 1a0b85b0ff9f5c90b72a5b20d34dd1620d860181 build(deps): bump github.com/mgechev/revive from 1.6.0 to 1.6.1 (#5399)
• 750e1abb31ec7883586d87e10722645a244317fb build(deps): bump github.com/nunnatsa/ginkgolinter from 0.18.4 to 0.19.0 (#5404)
• 08ae8055872f911072dd2c29b1454fc46a914245 gci: fix standard packages list for go1.24 (#5402)

v1.64.2

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

... (truncated)

Changelog

Sourced from github.com/golangci/golangci-lint's changelog.

v1.64.5

1. Bug fixes
   • Add missing flag new-from-merge-base-flag
2. Linters bug fixes
   • asciicheck: from 0.3.0 to 0.4.0
   • forcetypeassert: from 0.1.0 to 0.2.0
   • gosec: from 2.22.0 to 2.22.1

v1.64.4

1. Linters bug fixes
   • gci: fix standard packages list for go1.24

v1.64.3

1. Linters bug fixes
   • ginkgolinter: from 0.18.4 to 0.19.0
   • go-critic: from 0.11.5 to 0.12.0
   • revive: from 1.6.0 to 1.6.1
   • gci: fix standard packages list for go1.24
2. Misc.
   • Build Docker images with go1.24

v1.64.2

This is the last minor release of golangci-lint v1. The next release will be golangci-lint v2.

1. Enhancements
   • 🎉 go1.24 support
   • New issues.new-from-merge-base option
   • New run.relative-path-mode option
2. Linters new features
   • copyloopvar: from 1.1.0 to 1.2.1 (support suggested fixes)
   • exptostd: from 0.3.1 to 0.4.1 (handles golang.org/x/exp/constraints.Ordered)
   • fatcontext: from 0.5.3 to 0.7.1 (new option: check-struct-pointers)
   • perfsprint: from 0.7.1 to 0.8.1 (new options: integer-format, error-format, string-format, bool-format, and hex-format)
   • revive: from 1.5.1 to 1.6.0 (new rules: redundant-build-tag, use-errors-new. New option early-return.early-return)
3. Linters bug fixes
   • go-errorlint: from 1.7.0 to 1.7.1
   • gochecknoglobals: from 0.2.1 to 0.2.2
   • godox: from 006bad1f9d26 to 1.1.0
   • gosec: from 2.21.4 to 2.22.0
   • iface: from 1.3.0 to 1.3.1
   • nilnesserr: from 0.1.1 to 0.1.2
   • protogetter: from 0.3.8 to 0.3.9
   • sloglint: from 0.7.2 to 0.9.0
   • spancheck: fix default StartSpanMatchersSlice values
   • staticcheck: from 0.5.1 to 0.6.0

... (truncated)

Commits

• 0a603e4 fix: add missing new-from-merge-base flag (#5412)
• a43c84c build(deps): bump github.com/gostaticanalysis/forcetypeassert from 0.1.0 to 0...
• e352220 build(deps): bump github.com/tdakkota/asciicheck from 0.3.0 to 0.4.0 (#5411)
• 4be8bf8 build(deps): bump github.com/securego/gosec/v2 from 2.22.0 to 2.22.1 (#5410)
• b59bd60 docs: update GitHub Action assets (#5408)
• 04aec4f gci: fix section parsing (#5407)
• 5984eab docs: update GitHub Action assets (#5406)
• 09167d7 dev: update Docker base images (#5405)
• 750e1ab build(deps): bump github.com/nunnatsa/ginkgolinter from 0.18.4 to 0.19.0 (#5404)
• 08ae805 gci: fix standard packages list for go1.24 (#5402)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[tstirrat15]

This is bizarre.

On this branch, when running go mod tidy from the repo root, I get:

go: github.com/authzed/authzed-go/v1 tested by
	github.com/authzed/authzed-go/v1.test imports
	github.com/authzed/grpcutil imports
	github.com/grpc-ecosystem/go-grpc-middleware/auth tested by
	github.com/grpc-ecosystem/go-grpc-middleware/auth.test imports
	google.golang.org/grpc/credentials/oauth imports
	golang.org/x/oauth2/google imports
	cloud.google.com/go/compute/metadata: ambiguous import: found package cloud.google.com/go/compute/metadata in multiple modules:
	cloud.google.com/go/compute v1.6.1 (/home/tstirrat/go/pkg/mod/cloud.google.com/go/[email protected]/metadata)
	cloud.google.com/go/compute/metadata v0.6.0 (/home/tstirrat/go/pkg/mod/cloud.google.com/go/compute/[email protected])

But if I check out main and run go mod tidy it's fine. I don't see where we've changed anything meaningful with regards to those packages.

[tstirrat15]

LGTM!