Bump github.com/transparency-dev/merkle from 0.0.1 to 0.0.2

[dependabot]

Bumps github.com/transparency-dev/merkle from 0.0.1 to 0.0.2.

Release notes

Sourced from github.com/transparency-dev/merkle's releases.

v0.0.2

Fuzzing

• Fuzz test for compact.RangeNodes by @​hickford in transparency-dev/merkle#32
• Fuzz tests for inclusion and consistency proofs by @​hickford in transparency-dev/merkle#33
• Added generated seeds for FuzzRangeNodes by @​mhutchinson in transparency-dev/merkle#35
• ClusterFuzzLite integration and GitHub Actions by @​hickford in transparency-dev/merkle#37
• Fuzz ConsistencyProof function against reference implementation by @​hickford in transparency-dev/merkle#36
• More clusterfuzz pinning by @​AlCutter in transparency-dev/merkle#46

Repo config

• Add CODEOWNERS with default team assignment by @​AlCutter in transparency-dev/merkle#27
• Added lint configuration and fixed error by @​mhutchinson in transparency-dev/merkle#28
• Added presubmit script distilled from that in trillian by @​mhutchinson in transparency-dev/merkle#29
• Added lint as action by @​mhutchinson in transparency-dev/merkle#30
• Create scorecards.yml by @​AlCutter in transparency-dev/merkle#41
• Tighten action permissions by @​AlCutter in transparency-dev/merkle#43
• Add dependabot.yml by @​AlCutter in transparency-dev/merkle#42
• Pin GitHub actions and associated tooling to git hashes by @​AlCutter in transparency-dev/merkle#45
• Added cloud build config for merkle by @​mhutchinson in transparency-dev/merkle#53
• Update and rename scorecards.yml to scorecard.yml by @​AlCutter in transparency-dev/merkle#58

Docs

• docs: Use SVG format for images by @​pavelkalinnikov in transparency-dev/merkle#26
• docs: Data model for append-only Merkle trees by @​pavelkalinnikov in transparency-dev/merkle#25

Misc

• Format code according to go1.19rc2 by @​mhutchinson in transparency-dev/merkle#38
• Introduce CHANGELOG.md ahead of v0.0.2 release by @​phbnf in transparency-dev/merkle#57
• s/1.17/1.19 by @​phbnf in transparency-dev/merkle#59

Dependency updates

• Update to go1.17 by @​mhutchinson in transparency-dev/merkle#34
• Bump github.com/google/go-cmp from 0.5.6 to 0.5.9 by @​dependabot in transparency-dev/merkle#44
• Updates: go version, and use dependabot by @​mhutchinson in transparency-dev/merkle#47
• Bump github/codeql-action from 1.1.34 to 2.3.0 by @​dependabot in transparency-dev/merkle#52
• Bump actions/upload-artifact from 3.1.0 to 3.1.2 by @​dependabot in transparency-dev/merkle#51
• Bump golangci/golangci-lint-action from 3.3.0 to 3.4.0 by @​dependabot in transparency-dev/merkle#50
• Bump codecov/codecov-action from 2.1.0 to 3.1.3 by @​dependabot in transparency-dev/merkle#48
• Bump actions/checkout from 2.5.0 to 3.5.2 by @​dependabot in transparency-dev/merkle#49
• Bump ossf/scorecard-action from 2.0.6 to 2.1.3 by @​dependabot in transparency-dev/merkle#54
• Bump actions/setup-go from 3.3.1 to 4.0.0 by @​dependabot in transparency-dev/merkle#56
• Bump github/codeql-action from 2.3.0 to 2.3.2 by @​dependabot in transparency-dev/merkle#55

New Contributors

• @​hickford made their first contribution in transparency-dev/merkle#32
• @​dependabot made their first contribution in transparency-dev/merkle#44
• @​phbnf made their first contribution in transparency-dev/merkle#57

Full Changelog: transparency-dev/merkle@v0.0.1...v0.0.2

Changelog

Sourced from github.com/transparency-dev/merkle's changelog.

v0.0.2

• Fuzzing support
• Dependency updates, notably to go1.19

Commits

• 036047b s/1.17/1.19
• a4f4c64 Update and rename scorecards.yml to scorecard.yml
• ac29fb4 Introduce CHANGELOG.md ahead of v0.0.2 release
• ebce4b2 Bump github/codeql-action from 2.3.0 to 2.3.2 (#55)
• 3c381ee Bump actions/setup-go from 3.3.1 to 4.0.0 (#56)
• fa1a1fb Bump ossf/scorecard-action from 2.0.6 to 2.1.3 (#54)
• 99a8455 Bump actions/checkout from 2.5.0 to 3.5.2 (#49)
• 9dfffff Bump codecov/codecov-action from 2.1.0 to 3.1.3 (#48)
• 7b49306 Bump golangci/golangci-lint-action from 3.3.0 to 3.4.0 (#50)
• 23884c4 Bump actions/upload-artifact from 3.1.0 to 3.1.2 (#51)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[roger2hk]

/gcbrun