chore: upgrade deps

[snakster]

Note

Medium Risk
Dependency bumps can introduce subtle behavior changes, especially in go-git and low-level golang.org/x/* libraries used across the codebase. Risk is moderated by the lack of application logic changes but warrants regression testing around Git and networking/crypto operations.

Overview
Updates Go module dependencies, primarily upgrading github.com/go-git/go-git/v5 (and go-billy) plus several golang.org/x/* libraries (crypto, net, sys, term, tools, exp).

Refreshes go.sum accordingly, including new transitive checksum entries (e.g., filepath-securejoin, sha1cd).

^{Reviewed by Cursor Bugbot for commit 587a5da. Bugbot is set up for automated code reviews on this repo. Configure here.}

[github-actions]

Preview of ubuntu/go tests in 587a5da

🔍 View Details on Terramate Cloud

.

[github-actions]

Preview of macos-15/go tests in 587a5da

🔍 View Details on Terramate Cloud

.

[github-actions]

## Package: benchmarks/changed
metric: time/op
ChangeDetection-4: old 1.52ms ±11%: new 1.36ms ±19%: delta: -10.44%
ChangeDetectionTFAndTG-4: old 1.43ms ±13%: new 1.21ms ±10%: delta: -15.63%
metric: alloc/op
ChangeDetection-4: old 356kB ± 0%: new 356kB ± 0%: delta: -0.01%
ChangeDetectionTFAndTG-4: old 248kB ± 1%: new 247kB ± 0%: delta: -0.47%
metric: allocs/op
ChangeDetection-4: old 2.40k ± 0%: new 2.40k ± 0%: delta: 0.00%
ChangeDetectionTFAndTG-4: old 1.69k ± 3%: new 1.66k ± 1%: delta: -1.70%

---

## Package: cloud
metric: time/op
CloudReadLines-4: old 550µs ±16%: new 525µs ±17%: delta: 0.00%
CloudReadLine-4: old 3.22ms ± 5%: new 3.30ms ±12%: delta: 0.00%
metric: alloc/op
CloudReadLines-4: old 3.12MB ± 0%: new 3.12MB ± 0%: delta: 0.00%
CloudReadLine-4: old 3.37MB ± 0%: new 3.37MB ± 0%: delta: 0.00%
metric: allocs/op
CloudReadLines-4: old 5.54k ± 0%: new 5.54k ± 0%: delta: 0.00%
CloudReadLine-4: old 60.0k ± 0%: new 60.0k ± 0%: delta: 0.00%

---

## Package: fs
metric: time/op
ListFiles-4: old 25.1µs ± 8%: new 26.5µs ± 9%: delta: 5.55%
metric: alloc/op
ListFiles-4: old 27.6kB ± 0%: new 27.6kB ± 0%: delta: 0.00%
metric: allocs/op
ListFiles-4: old 335 ± 0%: new 335 ± 0%: delta: 0.00%

---

## Package: generate
metric: time/op
Generate-4: old 668ms ±12%: new 692ms ± 9%: delta: 0.00%
GenerateRegex-4: old 407ms ±28%: new 420ms ± 6%: delta: 0.00%
metric: alloc/op
Generate-4: old 2.23GB ± 0%: new 2.23GB ± 0%: delta: 0.00%
GenerateRegex-4: old 922MB ± 0%: new 922MB ± 0%: delta: 0.01%
metric: allocs/op
Generate-4: old 25.7M ± 0%: new 25.7M ± 0%: delta: 0.00%
GenerateRegex-4: old 18.1M ± 0%: new 18.1M ± 0%: delta: 0.00%

---

## Package: hcl/ast
metric: time/op
TokensForExpressionComplex-4: old 1.00ms ±28%: new 1.04ms ±17%: delta: 0.00%
TokensForExpressionPlainStringNoNewline-4: old 448ns ±24%: new 501ns ±16%: delta: 11.74%
TokensForExpressionStringWith100Newlines-4: old 16.5µs ±14%: new 14.8µs ±24%: delta: -9.98%
TokensForExpressionObjectWith100KeysWithNumberValues-4: old 1.01ms ±19%: new 1.15ms ±18%: delta: 14.13%
TokensForExpression-4: old 973µs ±13%: new 1024µs ±30%: delta: 0.00%
metric: alloc/op
TokensForExpressionComplex-4: old 393kB ± 0%: new 393kB ± 0%: delta: 0.00%
TokensForExpressionPlainStringNoNewline-4: old 512B ± 0%: new 512B ± 0%: delta: 0.00%
TokensForExpressionStringWith100Newlines-4: old 12.5kB ± 0%: new 12.5kB ± 0%: delta: 0.00%
TokensForExpressionObjectWith100KeysWithNumberValues-4: old 393kB ± 0%: new 393kB ± 0%: delta: 0.01%
TokensForExpression-4: old 393kB ± 0%: new 393kB ± 0%: delta: 0.00%
metric: allocs/op
TokensForExpressionComplex-4: old 4.75k ± 0%: new 4.75k ± 0%: delta: 0.01%
TokensForExpressionPlainStringNoNewline-4: old 20.0 ± 0%: new 20.0 ± 0%: delta: 0.00%
TokensForExpressionStringWith100Newlines-4: old 227 ± 0%: new 227 ± 0%: delta: 0.00%
TokensForExpressionObjectWith100KeysWithNumberValues-4: old 3.09k ± 0%: new 3.09k ± 0%: delta: 0.03%
TokensForExpression-4: old 4.75k ± 0%: new 4.75k ± 0%: delta: 0.00%

---

## Package: hcl/eval
metric: time/op
PartialEvalComplex-4: old 554µs ±14%: new 276µs ± 8%: delta: -50.16%
PartialEvalSmallString-4: old 2.12µs ±19%: new 1.96µs ± 5%: delta: -7.29%
PartialEvalHugeString-4: old 1.02ms ± 5%: new 1.01ms ± 3%: delta: -1.71%
PartialEvalHugeInterpolatedString-4: old 2.43ms ±12%: new 2.35ms ± 6%: delta: -3.26%
PartialEvalObject-4: old 13.9µs ± 8%: new 13.0µs ± 2%: delta: -6.44%
metric: alloc/op
PartialEvalComplex-4: old 360kB ± 0%: new 360kB ± 0%: delta: 0.00%
PartialEvalSmallString-4: old 1.94kB ± 0%: new 1.94kB ± 0%: delta: 0.00%
PartialEvalHugeString-4: old 196kB ± 0%: new 196kB ± 0%: delta: 0.00%
PartialEvalHugeInterpolatedString-4: old 4.30MB ± 0%: new 4.30MB ± 0%: delta: 0.00%
PartialEvalObject-4: old 19.4kB ± 0%: new 19.4kB ± 0%: delta: 0.00%
metric: allocs/op
PartialEvalComplex-4: old 3.72k ± 0%: new 3.72k ± 0%: delta: 0.00%
PartialEvalSmallString-4: old 25.0 ± 0%: new 25.0 ± 0%: delta: 0.00%
PartialEvalHugeString-4: old 38.0 ± 0%: new 38.0 ± 0%: delta: 0.00%
PartialEvalHugeInterpolatedString-4: old 25.1k ± 0%: new 25.1k ± 0%: delta: 0.00%
PartialEvalObject-4: old 179 ± 0%: new 179 ± 0%: delta: 0.00%

---

## Package: ls
metric: time/op
FindDefinition/10_files-4: old 17.5µs ±16%: new 19.1µs ±10%: delta: 9.40%
FindDefinition/50_files-4: old 23.5µs ±14%: new 28.1µs ± 7%: delta: 19.56%
FindDefinition/100_files-4: old 32.1µs ± 4%: new 43.6µs ±14%: delta: 36.14%
FindDefinition/500_files-4: old 123µs ± 3%: new 158µs ±11%: delta: 28.37%
FindReferences/10_files_5_refs-4: old 98.7µs ± 4%: new 142.8µs ±14%: delta: 44.78%
FindReferences/50_files_10_refs-4: old 375µs ± 4%: new 549µs ±17%: delta: 46.48%
FindReferences/100_files_20_refs-4: old 762µs ±19%: new 1048µs ±14%: delta: 37.50%
FindReferences/500_files_50_refs-4: old 4.09ms ±13%: new 4.32ms ±13%: delta: 5.49%
Rename/10_files_5_refs-4: old 130µs ±11%: new 149µs ±14%: delta: 15.03%
Rename/50_files_10_refs-4: old 524µs ±11%: new 576µs ±14%: delta: 9.95%
Rename/100_files_20_refs-4: old 957µs ± 8%: new 1058µs ±11%: delta: 10.51%
SearchWorkspace/flat_100_files-4: old 836µs ± 5%: new 941µs ±21%: delta: 12.62%
SearchWorkspace/flat_500_files-4: old 4.29ms ±13%: new 5.12ms ±16%: delta: 19.57%
SearchWorkspace/nested_100_files_5_deep-4: old 933µs ±11%: new 966µs ±16%: delta: 0.00%
SearchWorkspace/nested_500_files_5_deep-4: old 3.78ms ±21%: new 4.75ms ±10%: delta: 25.64%
ParseFile/small_file_10_lines-4: old 28.3µs ±18%: new 29.1µs ± 9%: delta: 0.00%
ParseFile/medium_file_50_lines-4: old 121µs ±15%: new 134µs ± 9%: delta: 10.16%
ParseFile/large_file_200_lines-4: old 506µs ± 8%: new 539µs ± 5%: delta: 6.53%
ParseFile/huge_file_1000_lines-4: old 2.64ms ± 7%: new 2.55ms ±11%: delta: 0.00%
check failed: time/op=+20%
metric: alloc/op
FindDefinition/10_files-4: old 15.2kB ± 0%: new 15.2kB ± 0%: delta: 0.00%
FindDefinition/50_files-4: old 20.1kB ± 0%: new 20.1kB ± 0%: delta: 0.01%
FindDefinition/100_files-4: old 26.4kB ± 0%: new 26.4kB ± 0%: delta: 0.01%
FindDefinition/500_files-4: old 72.8kB ± 0%: new 72.8kB ± 0%: delta: 0.00%
FindReferences/10_files_5_refs-4: old 87.0kB ± 0%: new 87.0kB ± 0%: delta: 0.01%
FindReferences/50_files_10_refs-4: old 336kB ± 0%: new 336kB ± 0%: delta: 0.00%
FindReferences/100_files_20_refs-4: old 646kB ± 0%: new 646kB ± 0%: delta: 0.01%
FindReferences/500_files_50_refs-4: old 3.13MB ± 0%: new 3.13MB ± 0%: delta: 0.00%
Rename/10_files_5_refs-4: old 105kB ± 0%: new 104kB ± 0%: delta: 0.00%
Rename/50_files_10_refs-4: old 359kB ± 0%: new 359kB ± 0%: delta: 0.00%
Rename/100_files_20_refs-4: old 677kB ± 0%: new 677kB ± 0%: delta: 0.00%
SearchWorkspace/flat_100_files-4: old 628kB ± 0%: new 628kB ± 0%: delta: 0.01%
SearchWorkspace/flat_500_files-4: old 3.09MB ± 0%: new 3.09MB ± 0%: delta: 0.01%
SearchWorkspace/nested_100_files_5_deep-4: old 636kB ± 0%: new 636kB ± 0%: delta: 0.00%
SearchWorkspace/nested_500_files_5_deep-4: old 3.13MB ± 0%: new 3.13MB ± 0%: delta: 0.00%
ParseFile/small_file_10_lines-4: old 34.7kB ± 0%: new 34.7kB ± 0%: delta: 0.00%
ParseFile/medium_file_50_lines-4: old 151kB ± 0%: new 151kB ± 0%: delta: 0.00%
ParseFile/large_file_200_lines-4: old 733kB ± 0%: new 733kB ± 0%: delta: 0.00%
ParseFile/huge_file_1000_lines-4: old 4.06MB ± 0%: new 4.06MB ± 0%: delta: 0.00%
metric: allocs/op
FindDefinition/10_files-4: old 209 ± 0%: new 209 ± 0%: delta: 0.00%
FindDefinition/50_files-4: old 291 ± 0%: new 291 ± 0%: delta: 0.00%
FindDefinition/100_files-4: old 392 ± 0%: new 392 ± 0%: delta: 0.00%
FindDefinition/500_files-4: old 1.19k ± 0%: new 1.19k ± 0%: delta: 0.00%
FindReferences/10_files_5_refs-4: old 960 ± 0%: new 960 ± 0%: delta: 0.00%
FindReferences/50_files_10_refs-4: old 3.81k ± 0%: new 3.81k ± 0%: delta: 0.00%
FindReferences/100_files_20_refs-4: old 7.34k ± 0%: new 7.34k ± 0%: delta: 0.00%
FindReferences/500_files_50_refs-4: old 35.9k ± 0%: new 35.9k ± 0%: delta: 0.00%
Rename/10_files_5_refs-4: old 1.15k ± 0%: new 1.15k ± 0%: delta: 0.00%
Rename/50_files_10_refs-4: old 4.09k ± 0%: new 4.09k ± 0%: delta: 0.00%
Rename/100_files_20_refs-4: old 7.74k ± 0%: new 7.74k ± 0%: delta: 0.00%
SearchWorkspace/flat_100_files-4: old 7.13k ± 0%: new 7.13k ± 0%: delta: 0.00%
SearchWorkspace/flat_500_files-4: old 35.1k ± 0%: new 35.1k ± 0%: delta: 0.00%
SearchWorkspace/nested_100_files_5_deep-4: old 7.18k ± 0%: new 7.18k ± 0%: delta: 0.00%
SearchWorkspace/nested_500_files_5_deep-4: old 35.2k ± 0%: new 35.2k ± 0%: delta: 0.00%
ParseFile/small_file_10_lines-4: old 315 ± 0%: new 315 ± 0%: delta: 0.00%
ParseFile/medium_file_50_lines-4: old 1.39k ± 0%: new 1.39k ± 0%: delta: 0.00%
ParseFile/large_file_200_lines-4: old 5.46k ± 0%: new 5.46k ± 0%: delta: 0.00%
ParseFile/huge_file_1000_lines-4: old 26.2k ± 0%: new 26.2k ± 0%: delta: 0.00%

---

## Package: stdlib
metric: time/op
TmAllTrueLiteralList-4: old 249µs ± 8%: new 246µs ± 8%: delta: 0.00%
TmAllTrueFuncall-4: old 8.03µs ± 9%: new 8.12µs ± 7%: delta: 0.00%
TmAnyTrueLiteralList-4: old 1.90ms ± 7%: new 1.96ms ± 6%: delta: 2.81%
TmAnyTrueFuncall-4: old 8.46µs ± 6%: new 8.19µs ± 5%: delta: -3.22%
TmTernary-4: old 1.05µs ±13%: new 1.02µs ± 7%: delta: 0.00%
TmTryUnknownFunc-4: old 923ns ± 4%: new 925ns ± 4%: delta: 0.00%
TmTryUnknownVariable-4: old 902ns ± 5%: new 888ns ± 6%: delta: -1.52%
TmTryUnknownObjectKey-4: old 1.04µs ± 6%: new 1.04µs ± 6%: delta: 0.00%
SlugifyLargeList-4: old 1.05ms ± 6%: new 1.03ms ± 5%: delta: 0.00%
metric: alloc/op
TmAllTrueLiteralList-4: old 320kB ± 0%: new 320kB ± 0%: delta: 0.00%
TmAllTrueFuncall-4: old 10.4kB ± 0%: new 10.4kB ± 0%: delta: 0.00%
TmAnyTrueLiteralList-4: old 2.09MB ± 0%: new 2.09MB ± 0%: delta: 0.00%
TmAnyTrueFuncall-4: old 10.5kB ± 0%: new 10.5kB ± 0%: delta: 0.00%
TmTernary-4: old 1.18kB ± 0%: new 1.18kB ± 0%: delta: 0.00%
TmTryUnknownFunc-4: old 784B ± 0%: new 784B ± 0%: delta: 0.00%
TmTryUnknownVariable-4: old 768B ± 0%: new 768B ± 0%: delta: 0.00%
TmTryUnknownObjectKey-4: old 952B ± 0%: new 952B ± 0%: delta: 0.00%
SlugifyLargeList-4: old 614kB ± 0%: new 613kB ± 0%: delta: -0.03%
metric: allocs/op
TmAllTrueLiteralList-4: old 5.93k ± 0%: new 5.93k ± 0%: delta: 0.00%
TmAllTrueFuncall-4: old 265 ± 0%: new 265 ± 0%: delta: 0.00%
TmAnyTrueLiteralList-4: old 59.6k ± 0%: new 59.6k ± 0%: delta: 0.00%
TmAnyTrueFuncall-4: old 267 ± 0%: new 267 ± 0%: delta: 0.00%
TmTernary-4: old 27.0 ± 0%: new 27.0 ± 0%: delta: 0.00%
TmTryUnknownFunc-4: old 21.0 ± 0%: new 21.0 ± 0%: delta: 0.00%
TmTryUnknownVariable-4: old 20.0 ± 0%: new 20.0 ± 0%: delta: 0.00%
TmTryUnknownObjectKey-4: old 23.0 ± 0%: new 23.0 ± 0%: delta: 0.00%
SlugifyLargeList-4: old 18.0k ± 0%: new 18.0k ± 0%: delta: 0.00%

---

## Package: tg
metric: time/op
ModuleDiscovery-4: old 28.4ms ±11%: new 26.9ms ±11%: delta: -5.19%
metric: alloc/op
ModuleDiscovery-4: old 36.8MB ± 0%: new 36.8MB ± 0%: delta: -0.01%
metric: allocs/op
ModuleDiscovery-4: old 451k ± 0%: new 451k ± 0%: delta: -0.00%

---