Bump github.com/klauspost/compress from 1.17.9 to 1.17.10

[dependabot]

Bumps github.com/klauspost/compress from 1.17.9 to 1.17.10.

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.17.10

What's Changed

• gzhttp: Add TransportAlwaysDecompress option. by @​klauspost in klauspost/compress#978
• s2: Add EncodeBuffer buffer recycling callback by @​klauspost in klauspost/compress#982
• zstd: Improve memory usage on small streaming encodes by @​klauspost in klauspost/compress#1007
• gzhttp: Add supported decompress request body by @​mirecl in klauspost/compress#1002
• flate: read data written with partial flush by @​vajexal in klauspost/compress#996
• ci: Upgrade Go & other by @​klauspost in klauspost/compress#1008
• docs: Small typofix in comment by @​Jille in klauspost/compress#976
• build(deps): bump the github-actions group with 2 updates by @​dependabot in klauspost/compress#979
• docs: Fix URL typo when installing builddict by @​Wikidepia in klauspost/compress#980
• build(deps): bump the github-actions group with 2 updates by @​dependabot in klauspost/compress#985
• Fix typos by @​deining in klauspost/compress#986
• build(deps): bump github/codeql-action from 3.25.15 to 3.26.6 in the github-actions group by @​dependabot in klauspost/compress#997

New Contributors

• @​Wikidepia made their first contribution in klauspost/compress#980
• @​deining made their first contribution in klauspost/compress#986
• @​vajexal made their first contribution in klauspost/compress#996
• @​mirecl made their first contribution in klauspost/compress#1002

Full Changelog: klauspost/compress@v1.17.9...v1.17.10

Commits

• 2a46d6b Update README.md
• 4dafca9 ci: Upgrade Go & other (#1008)
• 26519f8 zstd: Improve memory usage on small streaming encodes (#1007)
• 51aa0ec [gzhttp] Add supported decompress request body (#1002)
• 13c1244 build(deps): bump github/codeql-action in the github-actions group (#997)
• 62905e4 read data written with partial flush (#996)
• 3868468 Fix typos (#986)
• 8b81499 build(deps): bump the github-actions group with 2 updates (#985)
• d76f801 s2: Add EncodeBuffer buffer recycling callback (#982)
• cfab8bd docs: Fix URL typo when installing builddict (#980)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.

See the Details below.

License Issues

go.mod

Package	Version	License	Issue Type
github.com/klauspost/compress	1.17.10	Null	Unknown License

Allowed Licenses: Apache-2.0, BSD-2-Clause, BSD-2-Clause-FreeBSD, BSD-3-Clause, MIT, ISC, Python-2.0, PostgreSQL, X11, Zlib

Excluded from license check: pkg:golang/github.com/hashicorp/go-retryablehttp, pkg:golang/github.com/hashicorp/errwrap, pkg:golang/github.com/hashicorp/go-cleanhttp, pkg:golang/github.com/hashicorp/go-multierror

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/klauspost/compress	1.17.10	🟢 6.8	Details Check Score Reason Maintained 🟢 10 13 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/24 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 9 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo SAST 🟢 10 SAST tool is run on all commits Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Fuzzing 🟢 10 project is fuzzed Packaging 🟢 10 packaging workflow detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected

Scanned Manifest Files

go.mod

• github.com/klauspost/compress@1.17.10
• github.com/klauspost/compress@1.17.9

[dependabot]

Looks like github.com/klauspost/compress is up-to-date now, so this is no longer needed.