feat(github-release): update aqua:getsops/sops ( 3.10.2 → 3.11.0 )

[flowbie-bot]

This PR contains the following updates:

Package	Update	Change
aqua:getsops/sops	minor	3.10.2 -> 3.11.0

---

Release Notes

getsops/sops (aqua:getsops/sops)

v3.11.0

Compare Source

Security fixes:

• Ensure temporary file for editing is only read-writable by owner.
  This was already the case for the directory containing the file (#​1903).
• Ignore encryption selection options for binary store, and warn when they are used.
  In previous versions, these could have prevented the data to be encrypted (#​1927).
• Do not print sensitive values in error messages when trying to encrypt
  complex values in DotEnv and exec-env (#​1959).

Features:

• Allow to set values from file with sops set --value-file (#​1876,
  #​1940).
• Allow to set values from stdin with sops set --value-stdin (#​1894).
• Add subcommands to create shell completion scripts (#​1892).
• Allow to provide keys as YAML lists instead of comma-separated strings (#​1880).
• Allow to configure --enable-local-keyservice and --keyservice through
  environment variables (#​1930).
• Allow to omit AZKV key version in .sops.yaml (#​1919,
  #​1947).
• Allow non-complex non-string values in DotEnv and sops exec-env (#​1933).

Improvements:

• Dependency updates (#​1845,
  #​1850, #​1854,
  #​1856, #​1861,
  #​1867, #​1870,
  #​1871, #​1872,
  #​1878, #​1882,
  #​1884, #​1888,
  #​1893, #​1908,
  #​1912, #​1917,
  #​1920, #​1923,
  #​1956, #​1958).
• Docs improvements (#​1844,
  #​1863, #​1881,
  #​1885, #​1897,
  #​1895, #​1909,
  #​1928, #​1944,
  #​1946).
• Collect age identity loading errors and only report if decryption failed
  (#​1898).
• Improve age identity loading so that age identities are loaded from all locations
  (#​1931).
• When encrypting, parse .sops.yaml creation rule keys once (#​1939).
• Replace deprecated Go dependency gopkg.in/yaml.v3 with go.yaml.in/yaml/v3 (#​1934).
• Improve float and time.Time formatting when converting to strings
  for DotEnv and INI files (#​1929).

Bugfixes:

• Fix Shamir threshold encoding for INI and ENV files (#​1899).
• Fix detection logic for destination rules to detect all conflicts (#​1936).
• Fix converting integers to strings (#​1929).
• Fix keyservice client for Unix domain sockets (#​1910).

Project changes:

• Go 1.23 is no longer support; CI now also builds with Go 1.25 (#​1945).
• CI dependency updates (#​1849,
  #​1852, #​1857,
  #​1866, #​1869,
  #​1874, #​1879,
  #​1883, #​1889,
  #​1905, #​1911,
  #​1916, #​1922,
  #​1937, #​1949,
  #​1955).
• Rust dependency updates for functional tests (#​1853,
  #​1907, #​1921,
  #​1948, #​1954).
• Update authors in main.go (#​1860).

---

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.