Bump github.com/labstack/echo/v4 from 4.11.1 to 4.12.0

[dependabot[bot]]

Bumps github.com/labstack/echo/v4 from 4.11.1 to 4.12.0.

Release notes

Sourced from github.com/labstack/echo/v4's releases.

v4.12.0 - 2024-04-15

Security

• Update golang.org/x/net dep because of GO-2024-2687 by @​aldas in labstack/echo#2625

Enhancements

• binder: make binding to Map work better with string destinations by @​aldas in labstack/echo#2554
• README.md: add Encore as sponsor by @​marcuskohlberg in labstack/echo#2579
• Reorder paragraphs in README.md by @​aldas in labstack/echo#2581
• CI: upgrade actions/checkout to v4 by @​aldas in labstack/echo#2584
• Remove default charset from 'application/json' Content-Type header by @​doortts in labstack/echo#2568
• CI: Use Go 1.22 by @​aldas in labstack/echo#2588
• binder: allow binding to a nil map by @​georgmu in labstack/echo#2574
• Add Skipper Unit Test In BasicBasicAuthConfig and Add More Detail Explanation regarding BasicAuthValidator by @​RyoKusnadi in labstack/echo#2461
• fix some typos by @​teslaedison in labstack/echo#2603
• fix: some typos by @​pomadev in labstack/echo#2596
• Allow ResponseWriters to unwrap writers when flushing/hijacking by @​aldas in labstack/echo#2595
• Add SPDX licence comments to files. by @​aldas in labstack/echo#2604
• Upgrade deps by @​aldas in labstack/echo#2605
• Change type definition blocks to single declarations. This helps copy… by @​aldas in labstack/echo#2606
• Fix Real IP logic by @​cl-bvl in labstack/echo#2550
• Default binder can use UnmarshalParams(params []string) error inter… by @​aldas in labstack/echo#2607
• Default binder can bind pointer to slice as struct field. For example *[]string by @​aldas in labstack/echo#2608
• Remove maxparam dependence from Context by @​aldas in labstack/echo#2611
• When route is registered with empty path it is normalized to /. by @​aldas in labstack/echo#2616
• proxy middleware should use httputil.ReverseProxy for SSE requests by @​aldas in labstack/echo#2624

New Contributors

• @​marcuskohlberg made their first contribution in labstack/echo#2579
• @​doortts made their first contribution in labstack/echo#2568
• @​georgmu made their first contribution in labstack/echo#2574
• @​RyoKusnadi made their first contribution in labstack/echo#2461
• @​teslaedison made their first contribution in labstack/echo#2603
• @​pomadev made their first contribution in labstack/echo#2596
• @​cl-bvl made their first contribution in labstack/echo#2550

Full Changelog: https://github.com/labstack/echo/compare/v4.11.4...v4.12.0

v4.11.4 upgrade dependencies

Security

• Upgrade golang.org/x/crypto to v0.17.0 to fix vulnerability issue #2562

Enhancements

• Update deps and mark Go version to 1.18 as this is what golang.org/x/* use #2563

... (truncated)

Changelog

Sourced from github.com/labstack/echo/v4's changelog.

v4.12.0 - 2024-04-15

Security

• Update golang.org/x/net dep because of GO-2024-2687 by @​aldas in labstack/echo#2625

Enhancements

• binder: make binding to Map work better with string destinations by @​aldas in labstack/echo#2554
• README.md: add Encore as sponsor by @​marcuskohlberg in labstack/echo#2579
• Reorder paragraphs in README.md by @​aldas in labstack/echo#2581
• CI: upgrade actions/checkout to v4 by @​aldas in labstack/echo#2584
• Remove default charset from 'application/json' Content-Type header by @​doortts in labstack/echo#2568
• CI: Use Go 1.22 by @​aldas in labstack/echo#2588
• binder: allow binding to a nil map by @​georgmu in labstack/echo#2574
• Add Skipper Unit Test In BasicBasicAuthConfig and Add More Detail Explanation regarding BasicAuthValidator by @​RyoKusnadi in labstack/echo#2461
• fix some typos by @​teslaedison in labstack/echo#2603
• fix: some typos by @​pomadev in labstack/echo#2596
• Allow ResponseWriters to unwrap writers when flushing/hijacking by @​aldas in labstack/echo#2595
• Add SPDX licence comments to files. by @​aldas in labstack/echo#2604
• Upgrade deps by @​aldas in labstack/echo#2605
• Change type definition blocks to single declarations. This helps copy… by @​aldas in labstack/echo#2606
• Fix Real IP logic by @​cl-bvl in labstack/echo#2550
• Default binder can use UnmarshalParams(params []string) error inter… by @​aldas in labstack/echo#2607
• Default binder can bind pointer to slice as struct field. For example *[]string by @​aldas in labstack/echo#2608
• Remove maxparam dependence from Context by @​aldas in labstack/echo#2611
• When route is registered with empty path it is normalized to /. by @​aldas in labstack/echo#2616
• proxy middleware should use httputil.ReverseProxy for SSE requests by @​aldas in labstack/echo#2624

v4.11.4 - 2023-12-20

Security

• Upgrade golang.org/x/crypto to v0.17.0 to fix vulnerability issue #2562

Enhancements

• Update deps and mark Go version to 1.18 as this is what golang.org/x/* use #2563
• Request logger: add example for Slog https://pkg.go.dev/log/slog #2543

v4.11.3 - 2023-11-07

Security

• 'c.Attachment' and 'c.Inline' should escape filename in 'Content-Disposition' header to avoid 'Reflect File Download' vulnerability. #2541

Enhancements

... (truncated)

Commits

• 88c379f Changelog for v4.12.0 (#2626)
• e0f2a02 proxy middleware should use http proxy for SSE requests (#2624)
• 3062025 Update golang.org/x/* deps (#2625)
• 447c92d When route is registered with empty path it is normalized to /. Make sure t...
• d549290 Remove maxparam dependence from Context (#2611)
• 011acb4 default binder can bind pointer to slice as struct field. For example `*[]str...
• c57fcb3 Default binder can use UnmarshalParams(params []string) error interface to ...
• a3b0ba2 Fix Real IP logic (#2550)
• 3598f29 Change type definition blocks to single declarations. This helps copy/pasting...
• 5f7bedf update makefile
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)