[DDO-3654]: Bump github.com/go-jose/go-jose/v4 from 4.0.2 to 4.0.4 in /sherlock

[dependabot]

Bumps github.com/go-jose/go-jose/v4 from 4.0.2 to 4.0.4.

Release notes

Sourced from github.com/go-jose/go-jose/v4's releases.

Version 4.0.4

Fixed

• Reverted "Allow unmarshalling JSONWebKeySets with unsupported key types" as a breaking change. See #136 / #137.

Version 4.0.3

Changed

• Allow unmarshalling JSONWebKeySets with unsupported key types (#130)
• Document that OpaqueKeyEncrypter can't be implemented (for now) (#129)
• Dependency updates

Changelog

Sourced from github.com/go-jose/go-jose/v4's changelog.

v4.0.4

Fixed

• Reverted "Allow unmarshalling JSONWebKeySets with unsupported key types" as a breaking change. See #136 / #137.

v4.0.3

Changed

• Allow unmarshalling JSONWebKeySets with unsupported key types (#130)
• Document that OpaqueKeyEncrypter can't be implemented (for now) (#129)
• Dependency updates

Commits

• 15bc4c2 Update CHANGELOG for 4.0.4 (#138)
• f3534ca Revert #130: JSONWebKeySet: ignore unsupported key types (#137)
• ebaac64 Remove unused JWK error type (#135)
• db08515 Update CHANGELOG for 4.0.3 (#134)
• 2dcf8d0 Bump golang.org/x/crypto from 0.24.0 to 0.25.0 (#133)
• feacf31 JSONWebKeySet: ignore unsupported key types (#130)
• ab072bd doc: note OpaqueKeyEncrypter can't be implemented (#129)
• 3e78fe7 Improve error when JWK matching kid not found in JWK Set (#128)
• dc40081 Bump golang.org/x/crypto from 0.23.0 to 0.24.0 (#126)
• 696da50 Bump github.com/stretchr/testify from 1.8.2 to 1.9.0 (#124)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 69.62%. Comparing base (ca1a760) to head (75e344d).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #613   +/-   ##
=======================================
  Coverage   69.62%   69.62%           
=======================================
  Files         272      272           
  Lines       12370    12370           
=======================================
  Hits         8612     8612           
  Misses       2880     2880           
  Partials      878      878           

[jack-r-warren]

https://github.com/dependabot recreate

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud