Bump github.com/hashicorp/go-slug from 0.7.0 to 0.16.3 in the go_modules group across 1 directory

[dependabot]

Bumps the go_modules group with 1 update in the / directory: github.com/hashicorp/go-slug.

Updates github.com/hashicorp/go-slug from 0.7.0 to 0.16.3

Release notes

Sourced from github.com/hashicorp/go-slug's releases.

v0.16.3

What's Changed

• Adjust destination path check by @​NodyHub in hashicorp/go-slug#76

Note: This release may have issues when unpacking a tarball, we recommend using 0.16.4 or later.

Full Changelog: hashicorp/go-slug@v0.16.2...v0.16.3

v0.16.2

What's Changed

• Add CODEOWNERS file in .github/CODEOWNERS by @​mukeshjc in hashicorp/go-slug#72
• Deprecate unused pack/unpack option AllowSymlinkTarget by @​NodyHub in hashicorp/go-slug#74

New Contributors

• @​mukeshjc made their first contribution in hashicorp/go-slug#72
• @​NodyHub made their first contribution in hashicorp/go-slug#74

Full Changelog: hashicorp/go-slug@v0.16.1...v0.16.2

v0.16.1

• #68: Fix panic in sourcebundle package when RegistryMeta and Packages aren't the same size.

Full Changelog: hashicorp/go-slug@v0.16.0...v0.16.1

v0.16.0

• #64: Remove the .Append(...) function from the sourcebundle diagnostics API. Consumers should instead use the built-in golang append() function. This ensures type-safety as you can't attempt to insert an invalid object into the diagnostics using the built-in function.

Note: this is technically a breaking change for consumers of the sourcebundle package since it removes a method, but we had previously marked it as experimental in the v0.12.0 release and warned that its API is subject to change. The package continues to be experimental and may change further before stabilizing.

v0.15.2

sourcebundle: Fixed a bug in the PackageMeta receiver method GetCommitMessage() string that caused it to return an empty string instead of the git commit message. (#61)

v0.15.1

#59: expose registry module version deprecation data in sourcebundle

v0.15.0

#56: collect commit messages in package meta struct.

Note: this is technically a breaking change for consumers of the sourcebundle package since it removes a method, but we had previously marked it as experimental in the v0.12.0 release and warned that its API is subject to change. The package continues to be experimental and may change further before stabilizing.

v0.14.0

• #55: revise the experimental sourcebundle package fetcher and registry client interfaces to improve future extensibility.

Note: this is technically a breaking change for consumers of the sourcebundle package, but we had previously marked it as experimental in the v0.12.0 release and warned that its API is subject to change. The package continues to be experimental and may change further before stabilizing.

v0.13.4

Fixed a bug with default exclusion rules for .terraformignore which caused the .terraform/modules directory to be excluded

v0.13.3

... (truncated)

Commits

• 9a93155 Merge pull request #76 from hashicorp/nodyhub/adjust-path-check
• fbb0416 improve sanitization checks
• 53c172a Merge pull request #74 from hashicorp/nodyhub/depricate-option-allow-symlink-...
• a6204cf depricate unused pack/unpack option
• 82d53ea Merge pull request #72 from hashicorp/add-codeowners
• 1030616 Add CODEOWNERS file in .github/CODEOWNERS
• 6004eb1 Pin action refs to latest trusted by TSCCR (#69)
• 82b71b9 sourcebundle: Fix panic when RegistryMeta and Packages aren't the same size (...
• bb15d99 Pin action refs to latest trusted by TSCCR (#66)
• 18b3dde sourcebundle: remove the option to append anything into a diagnostic that wil...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.