Bump github.com/hashicorp/consul-template from 0.41.1 to 0.41.3

[dependabot]

Bumps github.com/hashicorp/consul-template from 0.41.1 to 0.41.3.

Release notes

Sourced from github.com/hashicorp/consul-template's releases.

v0.41.3

0.41.3 (November 4, 2025)

IMPROVEMENTS:

• Distinguish templates with identical contents but different destinations or sources GH-2096
• upgrade go version to latest patch (1.25.3) to fix CVE-2025-47910 GH-2103

BUG FIXES:

• fix(config): handle empty regex matches in ParseTemplateConfig - fixes SECVULN-14566 GH-2099

v0.41.2

No release notes provided.

Changelog

Sourced from github.com/hashicorp/consul-template's changelog.

0.41.3

IMPROVEMENTS:

• Distinguish templates with identical contents but different destinations or sources GH-2096
• upgrade go version to latest patch (1.25.3) to fix CVE-2025-47910 GH-2103

BUG FIXES:

• fix(config): handle empty regex matches in ParseTemplateConfig - fixes SECVULN-14566 GH-2099

0.41.2 (September 19, 2025)

IMPROVEMENTS:

• Enhance File Sandbox Security GH-2083
• update: go version to 1.25 GH-2089

0.41.0 (June 5, 2025)

IMPROVEMENTS:

• feat: Pre-compute Sprig template functions during package init GH-2052
• update: go version to 1.24.3 GH-2063
• security: go-jose/v4 to v4.1.0 to fix CVE-2025-27144 GH-2063
• update: github.com/hashicorp/consul/api to v1.32.1 GH-2063
• update: github.com/hashicorp/vault/api to v1.16.0 GH-2063

BUG FIXES:

• fix: timeout issues for list.peerings GH-2042
• fix: use 3.21 instead of latest for alpine in Dockerfile GH-2064

0.40.0 (February 14, 2025)

IMPROVEMENTS:

• Bump github.com/hashicorp/go-retryablehttp from v0.7.2 to v0.7.7 due to CVE GH-1967
• Bump golang.org/x/net to v0.34.0 from v0.24.0 GH-2017
• Bump golang.org/x/crypto to v0.32.0 from v0.22.0 GH-2017
• Bump golang.org/x/sys to v0.29.0 from v0.20.0 GH-2017
• Bump golang.org/x/text to v0.21.0 from v0.14.0 GH-2017
• Add support for the Vault KV subkeys API path GH-2016

REPO MAINTENANCE:

• Update code owner file GH-2006

BUG FIXES:

• Add quiescence run flag to avoid render loops among multiple templates GH-2010

0.39.1 (July 16, 2024)

IMPROVEMENTS:

• Enhance pkiCert template to return full CA chain [GH-1962]

0.39.0 (June 20, 2024)

... (truncated)

Commits

• b822301 update changelog and version.go for 0.41.3 release (#2106)
• 8c1d731 upgrade to latest patch (#2103)
• 0d10368 fix dirty commits (#2102)
• 265a257 Merge pull request #2099 from hashicorp/santosh/SECVULN-14566
• 876e3ed fix(config): handle empty regex matches in ParseTemplateConfig - fixes SECVUL...
• 5b62e5a template: distinguish templates with identical contents but different destina...
• 950f719 Merge pull request #2095 from hashicorp/suppress-cve
• c4cd232 Update CHANGELOG.md
• 0fbb640 Update security-scan.hcl
• 198abaf Merge pull request #2094 from hashicorp/sanikachavan5/prepare-release-0.41.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)