build(deps): bump hashicorp/vault from 4.4.0 to 4.5.0 in /terraform

[dependabot]

Bumps hashicorp/vault from 4.4.0 to 4.5.0.

Release notes

Sourced from hashicorp/vault's releases.

v4.5.0

4.5.0 (Nov 19, 2024)

FEATURES:

• Update vault_database_secret_backend_connection to support inline TLS config for PostgreSQL (#2339)
• Update vault_database_secret_backend_connection to support skip_verification config for Cassandra (#2346)
• Update vault_approle_auth_backend_role_secret_id to support num_uses and ttl fields (#2345)
• Add support for allow_empty_principals field for the vault_ssh_secret_backend_role resource (#2354)
• Update vault_gcp_secret_impersonated_account to support setting ttl (#2318)
• Add support for connection_timeout field for the vault_ldap_auth_backend resource (#2358)
• Add support for Rootless Configuration for Static Roles to Postgres DB (#2341)
• Add support for use_annotations_as_alias_metadata field for the vault_kubernetes_auth_backend_config resource (#2226)

BUGS:

• Remove consul secret backend role from state if not found on vault: (#2321)

Changelog

Sourced from hashicorp/vault's changelog.

4.5.0 (Nov 19, 2024)

FEATURES:

• Update vault_database_secret_backend_connection to support inline TLS config for PostgreSQL (#2339)
• Update vault_database_secret_backend_connection to support skip_verification config for Cassandra (#2346)
• Update vault_approle_auth_backend_role_secret_id to support num_uses and ttl fields (#2345)
• Add support for allow_empty_principals field for the vault_ssh_secret_backend_role resource (#2354)
• Update vault_gcp_secret_impersonated_account to support setting ttl (#2318)
• Add support for connection_timeout field for the vault_ldap_auth_backend resource (#2358)
• Add support for Rootless Configuration for Static Roles to Postgres DB (#2341)
• Add support for use_annotations_as_alias_metadata field for the vault_kubernetes_auth_backend_config resource (#2226)

BUGS:

• Remove consul secret backend role from state if not found on vault: (#2321)

Commits

• c96967c Prepare for v4.5.0 release (#2364)
• 6b9160d tests: make postgres rootless tests run in CI (#2362)
• 9e0f200 Create CODEOWNERS (#2355)
• 4cfc26e Added TTL field (#2318)
• 67dfd58 fix(ldap): add connection_timeout to vault_ldap_auth_backend (#2358)
• c4d3fd9 docs: add note on ent-only feature (#2360)
• e720115 Add new fields to Postgres to enable Rootless Configuration for Static Roles ...
• d8d1353 secret/ssh: add support for allow_empty_principals on roles (#2354)
• 1351ad1 docs: fix custom ui message_base64 (#2356)
• 3418cb7 auth/kubernetes: add support for use_annotations_as_alias_metadata field (#2226)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Terraform plan in terraform in the kub1k workspace

Plan: 1 to add, 1 to change, 1 to destroy.

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
!~  update in-place
-/+ destroy and then create replacement
 <= read (data resources)

Terraform will perform the following actions:

  # module.provision_k3s.data.local_sensitive_file.kubeconfig will be read during apply
  # (depends on a resource or a module with changes pending)
 <= data "local_sensitive_file" "kubeconfig" {
+       content              = (sensitive value)
+       content_base64       = (sensitive value)
+       content_base64sha256 = (known after apply)
+       content_base64sha512 = (known after apply)
+       content_md5          = (known after apply)
+       content_sha1         = (known after apply)
+       content_sha256       = (known after apply)
+       content_sha512       = (known after apply)
+       filename             = "/github/home/.kube/config-files/kub1k.yaml"
+       id                   = (known after apply)
    }

  # module.provision_k3s.null_resource.k3s_kubeconfig must be replaced
-/+ resource "null_resource" "k3s_kubeconfig" {
!~      id       = "*******************" -> (known after apply)
!~      triggers = { # forces replacement
!~          "timestamp" = "2024-11-23T10:19:07Z" -> (known after apply)
        }
    }

  # module.provision_k3s.vault_kv_secret_v2.k3s will be updated in-place
!~  resource "vault_kv_secret_v2" "k3s" {
!~      data_json           = (sensitive value)
        id                  = "kv/data/kub1k/k3s"
        name                = "kub1k/k3s"
#        (6 unchanged attributes hidden)

#        (1 unchanged block hidden)
    }

Plan: 1 to add, 1 to change, 1 to destroy.

📝 Plan generated in Terraform Plan #101