Bump github.com/google/trillian from 1.4.0 to 1.4.1

[dependabot]

Bumps github.com/google/trillian from 1.4.0 to 1.4.1.

Release notes

Sourced from github.com/google/trillian's releases.

v1.4.1

This release mostly contains refactoring and dependency updates, and some improvements in log operation cycle.

Improved log operation

• Add undeletetree command #2638
• Query information_schema compatible with MySQL 8 #2652
• Gracefully exit the program when lease expires #2655
• Fix MySQL world-writable config warning #2713
• Update provision tree script in k8s to use createtree #2676

Merkle refactoring

• Packages under merkle are deprecated and to be removed in the next releases [#2636, #2646, #2715].
• Use https://github.com/transparency-dev/merkle repository instead.

Minor refactoring

• Check the tile height invariant stricter #2726
• Remake dumplib into integration test #2710
• Remove unused code and data [#2709, #2711]

Some changes technically break semver, but most of this code was not intended for external use. E.g.:

• Unexport helper #2720

Dependency updates

• bitbucket.org/creachadair/shell: 0.0.6 -> 0.0.7 #2637
• cloud.google.com/go/spanner: 1.25.0 -> 1.31.0 [#2630, #2639, #2650, #2697]
• contrib.go.opencensus.io/exporter/stackdriver: 0.13.8 -> 0.13.12 [#2634, #2699, #2723]
• github.com/apache/beam: 2.32.0+incompatible -> 2.33.0+incompatible #2620
• github.com/fullstorydev/grpcurl: 1.8.2 -> 1.8.6 [#2621, #2674]
• github.com/google/go-cmp: 0.5.7 -> 0.5.8 #2729
• github.com/prometheus/client_golang: 1.11.0 -> 1.12.1 #2662
• github.com/pseudomuto/protoc-gen-doc: 1.5.0 -> 1.5.1 #2677
• github.com/transparency-dev/merkle: v0.0.1 #2734
• go.etcd.io/etcd/*/v3: 3.5.0 -> 3.5.4 [#2631, #2667, #2716]
• golang.org/x/tools: 0.1.5 -> 0.1.10 [#2615, #2618, ..., #2684]
• google.golang.org/api: 0.54.0 -> 0.77.0 [#2613, #2619, ..., #2728]
• google.golang.org/grpc: 1.40.0 -> 1.44.0 [#2617, #2635, #2643, #2661]
• google.golang.org/grpc/cmd/protoc-gen-go-grpc: 1.1.0 -> 1.2.0 #2645
• google.golang.org/protobuf: 1.27.1 -> 1.28.0 #2686
• protoc: 3.12.4 -> 3.20.1 #2731

Full Changelog: google/trillian@v1.4.0...v1.4.1

Changelog

Sourced from github.com/google/trillian's changelog.

TRILLIAN Changelog

HEAD

• countFromInformationSchema function to add support for MySQL 8.

Removals

• #2710: Unused storage/tools/dumplib was removed. The useful storage format regression test moved to integration/format.
• #2711: Unused storage/tools/hasher removed.
• #2715: Packages under merkle are deprecated and to be removed. Use https://github.com/transparency-dev/merkle instead.

Misc improvements

• #2712: Fix MySQL world-writable config warning.
• #2726: Check the tile height invariant stricter. No changes required.

Dependency updates

• #2731: Update protoc from v3.12.4 to v3.20.1

Commits

• 39951e7 Use the merkle package under the released tag (#2734)
• 70f5fbc Minor fixes to docs (#2732)
• 91360a8 Update protoc to v3.20.1 (#2731)
• fc6311a Move package comment to non-test file (#2730)
• 32257c5 Bump github.com/google/go-cmp from 0.5.7 to 0.5.8 (#2729)
• f3c5716 Bump google.golang.org/api from 0.75.0 to 0.77.0 (#2728)
• 241204c cache: Set a fixed tile height of 8 (#2726)
• 3ef1b6a Simplify log integration test (#2708)
• 8918181 Unexport helper from a public interface (#2720)
• 3d7922a Remove the inmemory Merkle tree, use external one (#2725)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)