Bump github.com/open-policy-agent/opa from 0.53.1 to 0.54.0

[dependabot]

Bumps github.com/open-policy-agent/opa from 0.53.1 to 0.54.0.

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v0.54.0

This release focuses on bug fixes, but also includes some improvements to the SDK and commandline.

Note: This will be the last OPA release to support building with Golang 1.18. (Golang 1.21 is expected to be released in August. Keeping the support for 1.18 is blocking OPA from upgrading OpenTelemetry.)

Topdown and Rego

• Add unwrap functionality to topdown.Error (#5890) authored by @​ajith-sub reported by @​ajith-sub
• Lazy obj performance (#6009) authored by @​johanfylling reported by @​kubaj
• ast: Only realizing lazyObj when compared against other object type (6060) (authored by @​johanfylling)
• ast: Fixing issue in type-checker where partial objects couldn't have key overrides of divergent type (#5972) authored by @​johanfylling
• planner: CallDynamic regression fix (#5964) authored by @​srenatus
• fmt: Fix fmt panic in comprehension with comments (#5798) authored by @​Trolloldem reported by @​Djoust
• topdown: Format integer numbers without exponent (#6013) authored by @​kenjenkins reported by @​kenjenkins
• topdown: Fix panic in partial eval with ref head rule (#6027) authored by @​srenatus
• Fixed a bug in object.union_n where nested objects were mutated (#5975) authored by @​qshu-splunk
• Fixed the issue of the object.subset method failing to correctly compare array relationships (5968) authored by @​DCRUNNN
• topdown: Fixed caching race condition issue in http.send (#5997) authored by @​ashutosh-narkar
• Allow time formatting constants in rego time.format and time.parse_ns (#5945) authored by @​tjons

Runtime, Tooling, SDK

• Add --schema flag to opa test (#5923) authored by @​renatosc
• Add ability to specify namespace for optimized files (#5933) authored by @​ashutosh-narkar reported by @​deezkay
• Fix for the issue when OPA throws misleading error (storage_not_found_error) message while loading the delta bundle when persist property in config is true. (#5959) authored by @​yogisinha reported by @​jnethery
• cmd: Update storage when a file remove op is detected (#5986) authored by @​boranx
• cmd: Add support for watch mode in opa test (#1719) authored by @​ashutosh-narkar reported by @​Fox32
• download: Pass request to docker.Authorizer (#5902) authored by @​DerGut reported by @​carabasdaniel
• plugins/discovery: Fix discovery erasing persistence_directory config (#6042) authored by @​blacksails
• plugins/discovery: Fix persistence of discovery bundle (#6048) (authored by @​bdjgs)
• Add tracing to bundle/discovery download (#5967) authored by @​mjungsbluth
• Fallback on embedded timezone database if tzdata is not found on filesystem (6038) authored by @​charlieegan3
• extensibility: Adding hooks (plugins, discovery, sdk) (#6053) authored by @​srenatus
• sdk: allow passing in a separate Store implementation in SDK (5962) authored by @​srenatus
• config: Show "extra", unknown fields in /v1/config API result (6056) authored by @​srenatus

Miscellaneous

• Disable provenance attestations in buildx (#5877) authored by @​ashutosh-narkar reported by @​JasonMan34
• build: configure SELinux labels for Docker volumes (#6054) authored by @​zregvart reported by @​zregvart
• Dependency bumps, notably:
  • golang from 1.20.4 to 1.20.5
  • github.com/prometheus/client_golang from from 1.15.1 to v1.16.0

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

0.54.0

This release focuses on bug fixes, but also includes some improvements to the SDK and commandline.

Note: This will be the last OPA release to support building with Golang 1.18. (Golang 1.21 is expected to be released in August. Keeping the support for 1.18 is blocking OPA from upgrading OpenTelemetry.)

Topdown and Rego

• Add unwrap functionality to topdown.Error (#5890) authored by @​ajith-sub reported by @​ajith-sub
• Lazy obj performance (#6009) authored by @​johanfylling reported by @​kubaj
• ast: Only realizing lazyObj when compared against other object type (6060) (authored by @​johanfylling)
• ast: Fixing issue in type-checker where partial objects couldn't have key overrides of divergent type (#5972) authored by @​johanfylling
• planner: CallDynamic regression fix (#5964) authored by @​srenatus
• fmt: Fix fmt panic in comprehension with comments (#5798) authored by @​Trolloldem reported by @​Djoust
• topdown: Format integer numbers without exponent (#6013) authored by @​kenjenkins reported by @​kenjenkins
• topdown: Fix panic in partial eval with ref head rule (#6027) authored by @​srenatus
• Fixed a bug in object.union_n where nested objects were mutated (#5975) authored by @​qshu-splunk
• Fixed the issue of the object.subset method failing to correctly compare array relationships (5968) authored by @​DCRUNNN
• topdown: Fixed caching race condition issue in http.send (#5997) authored by @​ashutosh-narkar
• Allow time formatting constants in rego time.format and time.parse_ns (#5945) authored by @​tjons

Runtime, Tooling, SDK

• Add --schema flag to opa test (#5923) authored by @​renatosc
• Add ability to specify namespace for optimized files (#5933) authored by @​ashutosh-narkar reported by @​deezkay
• Fix for the issue when OPA throws misleading error (storage_not_found_error) message while loading the delta bundle when persist property in config is true. (#5959) authored by @​yogisinha reported by @​jnethery
• cmd: Update storage when a file remove op is detected (#5986) authored by @​boranx
• cmd: Add support for watch mode in opa test (#1719) authored by @​ashutosh-narkar reported by @​Fox32
• download: Pass request to docker.Authorizer (#5902) authored by @​DerGut reported by @​carabasdaniel
• plugins/discovery: Fix discovery erasing persistence_directory config (#6042) authored by @​blacksails
• plugins/discovery: Fix persistence of discovery bundle (#6048) (authored by @​bdjgs)
• Add tracing to bundle/discovery download (#5967) authored by @​mjungsbluth
• Fallback on embedded timezone database if tzdata is not found on filesystem (6038) authored by @​charlieegan3
• extensibility: Adding hooks (plugins, discovery, sdk) (#6053) authored by @​srenatus
• sdk: allow passing in a separate Store implementation in SDK (5962) authored by @​srenatus
• config: Show "extra", unknown fields in /v1/config API result (6056) authored by @​srenatus

Miscellaneous

• Disable provenance attestations in buildx (#5877) authored by @​ashutosh-narkar reported by @​JasonMan34
• build: configure SELinux labels for Docker volumes (#6054) authored by @​zregvart reported by @​zregvart
• Dependency bumps, notably:
  • golang from 1.20.4 to 1.20.5
  • github.com/prometheus/client_golang from from 1.15.1 to v1.16.0

Commits

• 292288c Prepare v0.54.0 release (#6065)
• 1ad3992 build: more SELinux labels for Docker volumes (#6061)
• 372293e build: use -bullseye golang image (#6063)
• a50c134 build: configure SELinux labels for Docker volumes (#6055)
• 86ec33e ast: Only realizing lazyObj when Compare() is called on other object type...
• 511018e server: extra cleanup (#6059)
• 014d430 config: fix 'Extra' oversight wrt 'nil' vs empty map
• a9cff5b build: add errors.Join workaround for go <1.20
• c9042db extensibility: add hooks (plugins, discovery, sdk)
• caa24f0 plugins/discovery: Fix discovery erasing persistence_directory config
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)