build(deps): bump the go-production-dependencies group across 1 directory with 3 updates

[dependabot]

Bumps the go-production-dependencies group with 3 updates in the /src/checkout directory: github.com/IBM/sarama, github.com/open-feature/go-sdk and google.golang.org/protobuf.

Updates github.com/IBM/sarama from 1.46.0 to 1.46.1

Release notes

Sourced from github.com/IBM/sarama's releases.

Version 1.46.1 (2025-09-18)

[!NOTE]
The go.mod directive has been bumped to 1.24.0 as the minimum version of Go required for the module. This was necessary to continue to receive updates from some of the third party dependencies that Sarama makes use of.

What's Changed

🎉 New Features / Improvements

• feat: support more describe log dirs versions (V2-V4) by @​hindessm in IBM/sarama#3293
• feat: support V5 ListConsumerGroups protocol by @​hindessm in IBM/sarama#3292
• feat: add SASLv1 support for Kerberos by @​dnwe in IBM/sarama#3279

🐛 Fixes

• fix: add read deadline to tls write by @​bvalente in IBM/sarama#3283

📦 Dependency updates

• chore(deps): bump go directive to 1.24.0 and golang.org/x/{crypto,net,sync} by @​dependabot[bot] in IBM/sarama#3288
• chore(deps): bump the golang-x group across 6 directories with 1 update by @​dependabot[bot] in IBM/sarama#3291
• chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @​dependabot[bot] in IBM/sarama#3274

🔧 Maintenance

• chore: refactor to use modern atomic types by @​Sahil-4555 in IBM/sarama#3277
• chore: pre-commit autoupdate to latest by @​dnwe in IBM/sarama#3278
• chore: apply modernize fixes from gopls by @​dnwe in IBM/sarama#3297
• chore(config): update comments of sarama.Config.Metadata.SingleFlight by @​gunli in IBM/sarama#3296
• chore(client): update comments of client methods by @​gunli in IBM/sarama#3295

New Contributors

• @​Sahil-4555 made their first contribution in IBM/sarama#3277
• @​bvalente made their first contribution in IBM/sarama#3283
• @​gunli made their first contribution in IBM/sarama#3296

Full Changelog: IBM/sarama@v1.46.0...v1.46.1

Commits

• 9bc3d14 chore(client): update comments of client methods (#3295)
• 096b846 Merge pull request #3296 from gunli/update-single-comments
• dedff7a Merge pull request #3297 from IBM/dnwe/sarama-modernize
• 5648bd9 chore: inline strsContains
• 30d5d02 chore: apply stringsseq from modernize
• 9cba592 chore: apply bloop from modernize
• 7b353e9 chore: apply fmtappendf from modernize
• 7ce5897 chore: apply mapsloop from modernize
• c85f6fb chore: apply sortslice from modernize
• bccb0fe chore: apply slicescontains from modernize
• Additional commits viewable in compare view

Updates github.com/open-feature/go-sdk from 1.15.1 to 1.16.0

Release notes

Sourced from github.com/open-feature/go-sdk's releases.

v1.16.0

1.16.0 (2025-09-24)

🐛 Bug Fixes

• implement requirement 1.6.2 (#400) (a9c3adc)
• remove Status method from provider (#395) (b9cc78b)

✨ New Features

• expose generic resolution/evaluation details structs (#403) (343f691)

🧹 Chore

• add 1m timeout to tests (#399) (66e1173)
• config: migrate config renovate.json (9bd5e64)
• config: migrate renovate config (#426) (9bd5e64)
• deps: update actions/cache digest to 0400d5f (#427) (c466ed2)
• deps: update actions/checkout digest to 08eba0b (#428) (5c8d047)
• deps: update amannn/action-semantic-pull-request digest to e32d7e6 (#429) (b79da65)
• deps: update codecov/codecov-action action to v5.5.0 (#423) (9c2c904)
• deps: update goreleaser/goreleaser-action digest to e435ccd (#430) (c92e733)
• deps: update marocchino/sticky-pull-request-comment digest to 7737449 (#431) (53a89f3)
• deps: update module github.com/cucumber/godog to v0.15.1 (#422) (2b96419)
• deps: update module go.uber.org/mock to v0.6.0 (#424) (50ff997)
• deps: update module golang.org/x/text to v0.28.0 (#425) (720be5f)
• deps: update module golang.org/x/text to v0.29.0 (#434) (3d2b707)
• deps: update test-harness digest to 89c9af6 (#432) (6879af3)
• deps: update test-harness digest to cc576c1 (#391) (9908b97)
• enable all staticcheck linter checks (#405) (ce1a0f7)
• enable gofumpt and gci (#392) (d9cd757)
• enable intrange and copyloopvar linters (#404) (569e99a)
• upgrade go from 1.23 to 1.24 (#420) (c617b2d)
• upgrade golangci-lint to the latest version (#406) (137156b)
• upgrade golangci-lint version to latest (137156b)

📚 Documentation

• move nolint directive to beginning of block (#396) (bf2d408)

🔄 Refactoring

• Deprecate GetApiInstance & Add Direct NewDefaultClient implementations (#421) (9c5d833)
• use slices package instead of append (#402) (63bf987)

Changelog

Sourced from github.com/open-feature/go-sdk's changelog.

1.16.0 (2025-09-24)

🐛 Bug Fixes

• implement requirement 1.6.2 (#400) (a9c3adc)
• remove Status method from provider (#395) (b9cc78b)

✨ New Features

• expose generic resolution/evaluation details structs (#403) (343f691)

🧹 Chore

• add 1m timeout to tests (#399) (66e1173)
• config: migrate config renovate.json (9bd5e64)
• config: migrate renovate config (#426) (9bd5e64)
• deps: update actions/cache digest to 0400d5f (#427) (c466ed2)
• deps: update actions/checkout digest to 08eba0b (#428) (5c8d047)
• deps: update amannn/action-semantic-pull-request digest to e32d7e6 (#429) (b79da65)
• deps: update codecov/codecov-action action to v5.5.0 (#423) (9c2c904)
• deps: update goreleaser/goreleaser-action digest to e435ccd (#430) (c92e733)
• deps: update marocchino/sticky-pull-request-comment digest to 7737449 (#431) (53a89f3)
• deps: update module github.com/cucumber/godog to v0.15.1 (#422) (2b96419)
• deps: update module go.uber.org/mock to v0.6.0 (#424) (50ff997)
• deps: update module golang.org/x/text to v0.28.0 (#425) (720be5f)
• deps: update module golang.org/x/text to v0.29.0 (#434) (3d2b707)
• deps: update test-harness digest to 89c9af6 (#432) (6879af3)
• deps: update test-harness digest to cc576c1 (#391) (9908b97)
• enable all staticcheck linter checks (#405) (ce1a0f7)
• enable gofumpt and gci (#392) (d9cd757)
• enable intrange and copyloopvar linters (#404) (569e99a)
• upgrade go from 1.23 to 1.24 (#420) (c617b2d)
• upgrade golangci-lint to the latest version (#406) (137156b)
• upgrade golangci-lint version to latest (137156b)

📚 Documentation

• move nolint directive to beginning of block (#396) (bf2d408)

🔄 Refactoring

• Deprecate GetApiInstance & Add Direct NewDefaultClient implementations (#421) (9c5d833)
• use slices package instead of append (#402) (63bf987)

Commits

• 40fe27e chore(main): release 1.16.0 (#394)
• 9c5d833 refactor: Deprecate GetApiInstance & Add Direct NewDefaultClient implementati...
• 3d2b707 chore(deps): update module golang.org/x/text to v0.29.0 (#434)
• 3190e7b ci: bump golangci-lint to v2.4.0 (#433)
• 53a89f3 chore(deps): update marocchino/sticky-pull-request-comment digest to 7737449 ...
• c92e733 chore(deps): update goreleaser/goreleaser-action digest to e435ccd (#430)
• b79da65 chore(deps): update amannn/action-semantic-pull-request digest to e32d7e6 (#429)
• 5c8d047 chore(deps): update actions/checkout digest to 08eba0b (#428)
• c466ed2 chore(deps): update actions/cache digest to 0400d5f (#427)
• 6879af3 chore(deps): update test-harness digest to 89c9af6 (#432)
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.9 to 1.36.10

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.