[dependabot][prod][gomod] - (deps): Bump the prod-others group across 1 directory with 2 updates

[dependabot]

Bumps the prod-others group with 2 updates in the / directory: github.com/hashicorp/hcl/v2 and github.com/zclconf/go-cty.

Updates github.com/hashicorp/hcl/v2 from 2.20.1 to 2.21.0

Release notes

Sourced from github.com/hashicorp/hcl/v2's releases.

v2.21.0

Enhancements

• Introduce ParseTraversalPartial, which allows traversals that include the splat ([*]) index operator. (#673)
• ext/dynblock: Now accepts marked values in for_each, and will transfer those marks (as much as technically possible) to values in the generated blocks. (#679)

Bugs Fixed

• Expression evaluation will no longer panic if the splat operator is applied to an unknown value that has cty marks. (#678)

Changelog

Sourced from github.com/hashicorp/hcl/v2's changelog.

v2.21.0 (June 19, 2024)

Enhancements

• Introduce ParseTraversalPartial, which allows traversals that include the splat ([*]) index operator. (#673)
• ext/dynblock: Now accepts marked values in for_each, and will transfer those marks (as much as technically possible) to values in the generated blocks. (#679)

Bugs Fixed

• Expression evaluation will no longer panic if the splat operator is applied to an unknown value that has cty marks. (#678)

Commits

• 360ae57 prepare for v2.21.0 release
• f7e093a github: Pin action refs to latest trusted by TSCCR (#683)
• 212a40e Update CHANGELOG.md
• 318bbfe hcldec: Allow body-derived values to be marked
• 9a64c17 dynblock: Preserve marks from for_each expression into result
• bc75765 hclsyntax: Don't panic if splat operand is unknown and marked
• bf54697 github: Set up Dependabot to manage HashiCorp-owned Actions versioning
• 4521ae9 github: Pin action refs to latest trusted by TSCCR (#677)
• 1c5ae8f Update CHANGELOG.md
• f7cd61a Add additional function for parsing traversals with [*] keys (#673)
• See full diff in compare view

Updates github.com/zclconf/go-cty from 1.14.4 to 1.15.0

Changelog

Sourced from github.com/zclconf/go-cty's changelog.

1.15.0 (July 15, 2024)

• function/stdlib: The element function now accepts negative indices, extending the illusion of an infinitely-long list into the negative direction too.
• cty: The various "transform" functions were previously incorrectly propagating marks from a parent object down to attribute values when calling the caller-provided transform functions. The marks will now no longer be propagated downwards, which is consistent with the treatment of collection and tuple elements. If your transform function needs to take into account context about marks of upstream containers then you can maintain a stack of active marks in your Transformer implementation, pushing in Enter and popping in Exit. (#185)

Commits

• d4f2633 v1.15.0 release
• 0cccfb9 Update CHANGELOG.md
• 043bf38 cty: use unmarked val when Transform walks object attrs
• 7b73cce function/stdlib: element accepts negative indices
• 15a9d85 Prepare for a possible future v1.14.5 release
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 95.53%. Comparing base (248e09a) to head (e38d74e).
Report is 3 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master      #34      +/-   ##
==========================================
- Coverage   95.97%   95.53%   -0.44%     
==========================================
  Files          14       14              
  Lines         348      426      +78     
==========================================
+ Hits          334      407      +73     
- Misses          8       13       +5     
  Partials        6        6              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[yoanm]

@dependabot rebase

[dependabot]

Looks like this PR is already up-to-date with master! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[yoanm]

@dependabot recreate

[yoanm]

@dependabot rebase

[dependabot]

Superseded by #36.