build(deps): bump the low-risk group with 5 updates

[dependabot]

Bumps the low-risk group with 5 updates:

Package	From	To
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azsecrets	1.4.0	1.5.0
github.com/aws/aws-sdk-go-v2	1.41.7	1.41.9
github.com/aws/aws-sdk-go-v2/config	1.32.18	1.32.20
github.com/aws/aws-sdk-go-v2/service/secretsmanager	1.41.7	1.41.9
github.com/aws/aws-sdk-go-v2/service/ssm	1.68.6	1.68.8

Updates github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azsecrets from 1.4.0 to 1.5.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azsecrets's releases.

sdk/storage/azdatalake/v1.5.0

1.5.0 (2026-05-15)

Features Added

• Includes all features from 1.5.0-beta.1

sdk/security/keyvault/azadmin/v1.5.0

1.5.0 (2026-05-25)

Other Changes

• Upgraded to API service version 2025-07-01

sdk/security/keyvault/azkeys/v1.5.0

1.5.0 (2026-05-25)

Other Changes

• Upgraded to API service version 2025-07-01

sdk/security/keyvault/azcertificates/v1.5.0

1.5.0 (2026-05-26)

Features Added

• Includes all changes from 1.5.0-beta.1.

sdk/security/keyvault/azsecrets/v1.5.0

1.5.0 (2026-05-26)

Features Added

• Includes all changes from 1.5.0-beta.1.

sdk/data/azcosmos/v1.5.0-beta.6

1.5.0-beta.6 (2026-05-15)

Features Added

• Adds PriorityLevel and ThroughputBucket options at the client and per-request level for item, query, change-feed, batch, and read-many operations. See PR 26750
• Added client-level partition key range cache and container properties cache, reducing redundant metadata round-trips for ReadMany and query operations. See PR 26723
• Added operation diagnostics on responses and DiagnosticsFromError for retrieving diagnostics from failed operations. See PR 26548

Breaking Changes

• Removed ChangeFeedResponse.PopulateCompositeContinuationToken(). The method is no longer needed: GetChangeFeed now populates ChangeFeedResponse.ContinuationToken directly with the multi-range composite token. Callers who built single-range tokens manually can use GetCompositeContinuationToken() instead. See PR 26792.

Bugs Fixed

• Fixed GetChangeFeed to survive partition splits: customer-supplied FeedRanges are now overlap-matched against the routing map, 410/Gone triggers a cache refresh and bounded retry, split parents expand into per-child queue entries (inheriting the parent's ETag), and the continuation token persists multi-range state across calls. Continuation tokens are guarded against cross-container reuse. See PR 26768.
• Fixed V2 partition key routing: the top 2 bits of the first EPK byte are now masked to stay within the partition key range space [0x00, 0x3F]. Previously, items whose V2 hash started with a byte >= 0x40 could fail routing in ReadMany because the EPK lexicographically exceeded the "FF" range sentinel. See PR 26723
• Fixed error handling for partition key range calls which would previously cause panics on any error. See PR 26723
• Fixed partition key range cache to use change-feed pagination when fetching ranges, preventing incomplete range sets on containers with many partitions. The incremental refresh path now accumulates all pages before merging, correctly handling cascading splits across multiple change-feed pages. See PR 26777

Commits

• f4ab3aa Remove arm/ClientOptions.AuxiliaryTenants (#20573)
• a554ef0 Remove azcore multitenant auth API (#20572)
• 0a42300 PutBlobFromURL/UploadBlobFromURL API (#20558)
• be3f449 Fix azcore changelog entry (#20569)
• 380d05a Fix regression - base name overrides in CI (#20563)
• 4bdfb89 Modified challenge policy test (#20554)
• 5ab558f Added support for copy source authorization to append block from url (#20557)
• d2534f7 [Azquery][Readme] Edit pass (#20382)
• e9c77a5 Bump credscan to 2.3.12.23 (#20562)
• dd74ea3 Transaction Validation - Blob Client (#20550)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2 from 1.41.7 to 1.41.9

Commits

• 5841d3a Release 2026-05-29
• 16ac80d Regenerated Clients
• 167926f Update endpoints model
• a0fce13 Update API model
• 223c005 update to smithy-go v1.26.0 (#3426)
• 74c5011 Release 2026-05-28
• 7d82651 Regenerated Clients
• 79c63d9 Update endpoints model
• b15b3b8 Update API model
• 090e469 Feat tmv2 parity (#3424)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.32.18 to 1.32.20

Commits

• 5841d3a Release 2026-05-29
• 16ac80d Regenerated Clients
• 167926f Update endpoints model
• a0fce13 Update API model
• 223c005 update to smithy-go v1.26.0 (#3426)
• 74c5011 Release 2026-05-28
• 7d82651 Regenerated Clients
• 79c63d9 Update endpoints model
• b15b3b8 Update API model
• 090e469 Feat tmv2 parity (#3424)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/secretsmanager from 1.41.7 to 1.41.9

Commits

• 5841d3a Release 2026-05-29
• 16ac80d Regenerated Clients
• 167926f Update endpoints model
• a0fce13 Update API model
• 223c005 update to smithy-go v1.26.0 (#3426)
• 74c5011 Release 2026-05-28
• 7d82651 Regenerated Clients
• 79c63d9 Update endpoints model
• b15b3b8 Update API model
• 090e469 Feat tmv2 parity (#3424)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ssm from 1.68.6 to 1.68.8

Commits

• 5841d3a Release 2026-05-29
• 16ac80d Regenerated Clients
• 167926f Update endpoints model
• a0fce13 Update API model
• 223c005 update to smithy-go v1.26.0 (#3426)
• 74c5011 Release 2026-05-28
• 7d82651 Regenerated Clients
• 79c63d9 Update endpoints model
• b15b3b8 Update API model
• 090e469 Feat tmv2 parity (#3424)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Assignees

The following users could not be added as assignees: elvenspellmaker. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Please fix the above issues or remove invalid values from dependabot.yml.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud