build(deps): bump github.com/xmidt-org/themis from 0.4.20 to 0.4.22

[dependabot]

Bumps github.com/xmidt-org/themis from 0.4.20 to 0.4.22.

Release notes

Sourced from github.com/xmidt-org/themis's releases.

v0.4.22

Changelog

Other Work

• 9e63a674e18746024e9211481cf6759a9865eb0c: added user-agent and the sallust default fields to the request logger (@​johnabass)

v0.4.21

Changelog

Other Work

• 7497e40effb0e210dbdf3345a58c8e564c324790: added a Logger to the token Request (@​johnabass)
• 5a666126b1a6a47f0aaf5605c269e5db7f6d8872: added basic TLS logging to all servers (@​johnabass)
• f8584d91b05efeda4f2cb71464dc629fd81982f1: fixed the TLS logic (@​johnabass)
• 97777d19a626c9607c92945dc1461e8fc7fa6ebb: fixed the logging configuration (@​johnabass)
• 0ac3ec9931b4f92c5c81a436e0cbf65d0d6834c4: log the raw binary certificate in DER format (@​johnabass)
• f0b0516f15865d8b895bdd538d7937c41081815c: patch: get tls ConnectionState directly from request (@​denopink)
• 253876742a7bacd4526782d72c6ef99a23158399: use TLS from the http.Request (@​johnabass)
• 322c5ffc3a9734e82add628e90c4096c391f15ac: wire the logger from the server into the Request (@​johnabass)

Commits

• bf64eaa Merge pull request #259 from xmidt-org/feature/log-security-requested-items
• 9e63a67 added user-agent and the sallust default fields to the request logger
• 5486f7a Merge pull request #258 from xmidt-org/feature/raw-cert-logging
• 0ac3ec9 log the raw binary certificate in DER format
• bbf8c2b Merge pull request #214 from xmidt-org/hotfix/allow-invalid-certs
• 3edd0ed Merge branch 'main' into hotfix/allow-invalid-certs
• 9044834 Merge pull request #257 from xmidt-org/feature/cert-logging
• 5a66612 added basic TLS logging to all servers
• 97777d1 fixed the logging configuration
• 759cd45 chore: brought themis up-to-date with dependencies
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[guardrails]

⚠️ We detected 2 security issues in this pull request:

Vulnerable Libraries (2)

Severity	Details
Medium	pkg:golang/golang.org/x/[email protected] upgrade to: > v0.0.0-20241108190413-2d47ceb2692f
High	pkg:golang/github.com/xmidt-org/[email protected] upgrade to: > v0.4.22

More info on how to fix Vulnerable Libraries in Go.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

[dependabot]

Superseded by #1077.