chore(deps): update module github.com/invopop/jsonschema to v0.14.0

[renovate-bot]

This PR contains the following updates:

Package	Change	Age	Confidence
github.com/invopop/jsonschema	v0.13.0 → v0.14.0

---

Release Notes

invopop/jsonschema (github.com/invopop/jsonschema)

v0.14.0

Compare Source

What's Changed

• Upgrade to golangci-lint v2 by @​samlown in #​187
• Bump minimum Go version to 1.24 by @​samlown in #​188
• Support omitzero json tags by @​YvanGuidoin in #​161
• feat: Respect json:",string" for integer fields in generated schema by @​fengxsong in #​183
• Split jsonschema_extras only on unescaped commas by @​liorokman in #​173
• Fix nil pointer dereference in ReflectFromType with ExpandedStruct (fix #​163) by @​edznux-dd in #​186
• Replace wk8/go-ordered-map with pb33f/ordered-map by @​samlown in #​189

New Contributors

• @​YvanGuidoin made their first contribution in #​161
• @​fengxsong made their first contribution in #​183
• @​liorokman made their first contribution in #​173
• @​edznux-dd made their first contribution in #​186

Full Changelog: invopop/jsonschema@v0.13.0...v0.14.0

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[forking-renovate]

ℹ️ Artifact update notice

File name: cli/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated

Details:

Package	Change
github.com/buger/jsonparser	v1.1.1 -> v1.1.2

[dpebot]

/gcbrun

[gemini-code-assist]

Code Review

This pull request updates several dependencies in cli/go.mod, including upgrades for jsonschema and jsonparser, and a transition from wk8/go-ordered-map to pb33f/ordered-map. Feedback was provided regarding the introduction of go.yaml.in/yaml/v4 v4.0.0-rc.2 as an indirect dependency, noting potential supply chain risks and stability issues associated with its release candidate status and non-standard import path.

[gemini-code-assist]

The addition of go.yaml.in/yaml/v4 v4.0.0-rc.2 as an indirect dependency is concerning. This package uses a non-standard import path (go.yaml.in instead of the official gopkg.in) and is currently in a release candidate state. While it appears to be a dependency of pb33f/ordered-map, using an experimental and non-canonical version of a core library like YAML introduces potential supply chain risks and stability concerns. It is recommended to investigate if this dependency can be replaced with a stable, official version of the YAML package (e.g., gopkg.in/yaml.v3).

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun