v1.5.2

Repo magagement

• Fix Token-Permissions code scanning alert by @roger2hk in #2973
• Update and rename scorecards.yml to scorecard.yml by @AlCutter in #2986
• Enable all lint checks in trillian repo by @mhutchinson in #2979

Cleanups

• remove left over bazel BUILD file by @malt3 in #2906
• Remove use of rand.Seed by @AlCutter in #2918
• Remove deprecated use of math/rand.Read by @mhutchinson in #2958
• Fixed all lint errcheck in number of TLDs by @mhutchinson in #2978

Claimant model

• More precise wording in SumDB claimant model by @mhutchinson in #2928
• Prototype tooling for Claimant Models by @mhutchinson in #2974

Misc

• Prepare CHANGELOG.md for v1.5.2 release by @phbnf #2997

Dependency updates

• Bump google.golang.org/api from 0.104.0 to 0.105.0 by @dependabot in #2878
• Bump ossf/scorecard-action from 2.0.6 to 2.1.1 by @dependabot in #2879
• Bump github/codeql-action from 2.1.36 to 2.1.37 by @dependabot in #2880
• Bump actions/setup-go from 3.4.0 to 3.5.0 by @dependabot in #2881
• Bump ossf/scorecard-action from 2.1.1 to 2.1.2 by @dependabot in #2882
• Bump github.com/cockroachdb/cockroach-go/v2 from 2.2.19 to 2.2.20 by @dependabot in #2883
• Bump nick-fields/retry from 2.8.2 to 2.8.3 by @dependabot in #2884
• Bump golang.org/x/crypto from 0.4.0 to 0.5.0 by @dependabot in #2886
• Bump actions/upload-artifact from 3.1.1 to 3.1.2 by @dependabot in #2889
• Bump actions/checkout from 3.2.0 to 3.3.0 by @dependabot in #2890
• Bump google.golang.org/api from 0.105.0 to 0.106.0 by @dependabot in #2885
• Bump golang.org/x/tools from 0.4.0 to 0.5.0 by @dependabot in #2888
• Bump google.golang.org/api from 0.106.0 to 0.107.0 by @dependabot in #2891
• Bump github/codeql-action from 2.1.37 to 2.1.38 by @dependabot in #2893
• Bump google.golang.org/grpc from 1.51.0 to 1.52.0 by @dependabot in #2892
• Bump Go version from 1.17 to 1.19 by @roger2hk in #2894
• Bump go.etcd.io/etcd/v3 from 3.5.6 to 3.5.7 by @dependabot in #2898
• Bump google.golang.org/api from 0.107.0 to 0.108.0 by @dependabot in #2896
• Bump k8s.io/klog/v2 from 2.80.1 to 2.90.0 by @dependabot in #2901
• Bump golangci/golangci-lint-action from 3.3.1 to 3.4.0 by @dependabot in #2902
• Bump github/codeql-action from 2.1.38 to 2.1.39 by @dependabot in #2903
• Bump github/codeql-action from 2.1.39 to 2.2.1 by @dependabot in #2905
• Bump google.golang.org/grpc from 1.52.0 to 1.52.3 by @dependabot in #2904
• Bump github/codeql-action from 2.2.1 to 2.2.2 by @dependabot in #2908
• Bump google.golang.org/api from 0.108.0 to 0.109.0 by @dependabot in #2907
• Bump golang.org/x/tools from 0.5.0 to 0.6.0 by @dependabot in #2914
• Bump github/codeql-action from 2.2.2 to 2.2.4 by @dependabot in #2915
• Bump google.golang.org/api from 0.109.0 to 0.110.0 by @dependabot in #2913
• Bump golang.org/x/crypto from 0.5.0 to 0.6.0 by @dependabot in #2910
• bump golang.org/x/net from 0.6.0 to 0.7.0 by @dependabot in #2917
• Bump github/codeql-action from 2.2.4 to 2.2.5 by @dependabot in #2921
• Bump github.com/google/go-licenses from 0.0.0-20210329231322-ce1d9163b77d to 1.6.0 by @dependabot in #2920
• Bump golang.org/x/crypto from 0.6.0 to 0.7.0 by @dependabot in #2926
• Bump k8s.io/klog/v2 from 2.90.0 to 2.90.1 by @dependabot in #2925
• Bump github.com/cockroachdb/cockroach-go/v2 from 2.2.20 to 2.3.0 by @dependabot in #2927
• Bump google.golang.org/api from 0.110.0 to 0.111.0 by @dependabot in #2924
• Bump golang.org/x/tools from 0.6.0 to 0.7.0 by @dependabot in #2932
• Bump github/codeql-action from 2.2.5 to 2.2.6 by @dependabot in #2934
• Bump github.com/cockroachdb/cockroach-go/v2 from 2.3.0 to 2.3.2 by @dependabot in #2930
• Bump google.golang.org/protobuf from 1.28.1 to 1.29.1 by @dependabot in #2935
• Bump google.golang.org/grpc/cmd/protoc-gen-go-grpc from 1.2.0 to 1.3.0 by @dependabot in #2923
• Bump actions/checkout from 3.3.0 to 3.4.0 by @dependabot in #2942
• Bump github.com/cockroachdb/cockroach-go/v2 from 2.3.2 to 2.3.3 by @dependabot in #2938
• Bump github/codeql-action from 2.2.6 to 2.2.7 by @dependabot in #2943
• Bump github.com/grpc-ecosystem/go-grpc-middleware from 1.3.0 to 1.4.0 by @dependabot in #2941
• Bump actions/setup-go from 3.5.0 to 4.0.0 by @dependabot in #2944
• Pin all usages of golangci-lint to same rule version by @mhutchinson in #2945
• Bump google.golang.org/grpc from 1.53.0 to 1.54.0 by @dependabot in #2946
• Bump github/codeql-action from 2.2.7 to 2.2.9 by @dependabot in #2948
• Bump actions/checkout from 3.4.0 to 3.5.0 by @dependabot in #2947
• Bump ossf/scorecard-action from 2.1.2 to 2.1.3 by @dependabot in #2949
• Bump github/codeql-action from 2.2.9 to 2.2.11 by @dependabot in #2956
• Bump golang.org/x/sys from 0.6.0 to 0.7.0 by @dependabot in #2953
• Bump golang.org/x/crypto from 0.7.0 to 0.8.0 by @dependabot in #2955
• Bump golang.org/x/tools from 0.7.0 to 0.8.0 by @dependabot in #2954
• Update linter to 1.51.1 by @mhutchinson in #2959
• Bump contrib.go.opencensus.io/exporter/stackdriver to v0.13.14 by @samuelattwood in #2950
• Bumped etcd deps from v3.5.7 to v3.5.8 by @mhutchinson in #2966
• Bump google.golang.org/protobuf from 1.29.1 to 1.30.0 by @dependabot in #2939
• Bump github.com/prometheus/client_golang from 1.14.0 to 1.15.0 by @dependabot in #2961
• Bump cloud.google.com/go/spanner from 1.42.0 to 1.45.1-0.20230421054906-c65254ce3c22 by @dependabot in #2957
• Bump github.com/apache/beam/sdks/v2 from 2.0.0-20211012030016-ef4364519c94 to 2.47.0-RC1 by @dependabot in #2968
• Pin the version of cockroach for tests to a specific version by @mhutchinson in #2971
• Bump google.golang.org/api from 0.114.0 to 0.119.0 by @dependabot in #2975
• Bump github/codeql-action from 2.2.12 to 2.3.0 by @dependabot in #2977
• Bump cloud.google.com/go/spanner from 1.45.1-0.20230421054906-c65254ce3c22 to 1.45.1 by @dependabot in #2976
• Bump github.com/lib/pq from 1.10.7 to 1.10.8 by @dependabot in #2967
• Bump github/codeql-action from 2.2.11 to 2.2.12 by @dependabot in #2970
• Bump actions/checkout from 3.5.0 to 3.5.2 by @dependabot in #2969
• Bump github/codeql-action from 2.3.0 to 2.3.2 by @dependabot in #2985
• Bump k8s.io/klog/v2 from 2.90.1 to 2.100.1 by @dependabot in #2984
• Bump github.com/lib/pq from 1.10.8 to 1.10.9 by @dependabot in #2981
• Bump google.golang.org/api from 0.119.0 to 0.120.0 by @dependabot in #2983
• Bump github.com/go-sql-driver/mysql from 1.7.0 to 1.7.1 by @dependabot in #2982
• Bump github.com/transparency-dev/merkle from 0.0.1 to 0.0.2 by @dependabot in #2990
• Bump github/codeql-action from 2.3.2 to 2.3.3 by @dependabot in #2996
• Bump google.golang.org/api from 0.120.0 to 0.121.0 by @dependabot in #2995
• Bump github.com/prometheus/client_golang from 1.15.0 to 1.15.1 by @dependabot in #2988
• Bump golang.org/x/sync from 0.1.0 to 0.2.0 by @dependabot in #2993
• Bump github.com/apache/beam/sdks/v2 from 2.47.0-RC1 to 2.47.0-RC3 by @dependabot in #2992

New Contributors

• @malt3 made their first contribution in #2906
• @samuelattwood made their first contribution in #2950

Full Changelog: v1.5.1...v1.5.2