chore(deps): bump github.com/msutara/config-manager-core from 0.4.3 to 0.4.5

[dependabot]

Bumps github.com/msutara/config-manager-core from 0.4.3 to 0.4.5.

Release notes

Sourced from github.com/msutara/config-manager-core's releases.

v0.4.5 — Plugin version injection via ldflags

What's New in config-manager-core v0.4.5

Plugin Version Injection via ldflags (#87)

Plugin Version() strings are now set at build time via -ldflags -X instead of being hard-coded. The Makefile and CI release workflow automatically inject the correct version into both plugins when building the cm binary. Local dev builds default to "dev".

Changes in this repo:

• Makefile — LDFLAGS extended with -X flags for cm-plugin-update and cm-plugin-network. Version string sanitized via CLEAN_VERSION (printf + tr) to prevent shell injection from malformed git tags. VALID_ARCHS whitelist validates .deb architecture targets.
• release.yml — Semver tag format validated with strict regex (^v[0-9]+\.[0-9]+\.[0-9]+$) before build. Plugin -X flags added with single-quoted values.
• DEVELOPMENT.md — Documents the version injection pattern. New Step 6 in "Adding a New Plugin" guide reminds developers to update Makefile and release.yml when adding plugins.

Dependency Bump

• go.mod updated to cm-plugin-update v0.4.5 and cm-plugin-network v0.4.5

Downloads

Architecture	Package
ARM64 (Pi 4/5)	cm_0.4.5_arm64.deb
ARMv7 (Pi 3/Zero 2)	cm_0.4.5_armhf.deb
AMD64	cm_0.4.5_amd64.deb

Full Changelog: msutara/config-manager-core@v0.4.4...v0.4.5

v0.4.4 — Web history fix, contributor guide, CI hardening

What's new in v0.4.4

Bug Fixes

• Web dashboard: run history links now always visible on the update page, even on fresh installs or when the logs API is unavailable. Previously, navigating to the update page before running any job from web hid the history links entirely (#41, web#44)
• Security history link gated behind SecurityAvailable — no longer shows a dead link when security updates are not configured
• Fresh installs display a No runs yet empty-state card instead of a blank section

Documentation

... (truncated)

Commits

• 96b0ecd release: bump plugins to v0.4.5
• 7b19842 feat: inject plugin versions via ldflags at build time (#87)
• e0acde1 release: bump web to v0.4.4, update to v0.4.4
• 1d13950 build(deps): bump softprops/action-gh-release from 2.5.0 to 2.6.1 (#85)
• a083c76 build(deps): bump actions/upload-artifact from 4 to 7 (#72)
• 50e46db build(deps): bump DavidAnson/markdownlint-cli2-action from 19 to 22 (#71)
• 6931b09 build(deps): bump actions/download-artifact from 4 to 8 (#70)
• bba3b07 fix: add language identifiers to fenced code blocks in DEVELOPMENT.md
• 222771c docs: add DEVELOPMENT.md contributor guide and integration test
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #32.