chore(deps): bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0

[dependabot]

Bumps github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0.

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.5.0

What's Changed

• *: add collision resistent SHA1 implementation by @​pjbgf in go-git/go-git#618
• *: replace go-homedir with os.UserHomeDir by @​mvdan in go-git/go-git#535
• Remote: add RemoteURL to {Fetch,Pull,Push}Options by @​noerw in go-git/go-git#375
• Remote: Push, add support to push commits per hashes by @​tjamet in go-git/go-git#325
• Remote: Push, add ForceWithLease Push Option by @​john-cai in go-git/go-git#404
• Remote: PushOptions add push-options by @​S-Bohn in go-git/go-git#399
• Remote: Push, add atomic to push options by @​john-cai in go-git/go-git#406
• Remote: add FollowTags option for pushes by @​john-cai in go-git/go-git#385
• Worktree: use syscall.Timespec.Unix by @​tklauser in go-git/go-git#437
• Worktree: Checkout, simplified sparse checkout by @​john-cai in go-git/go-git#410
• Repository: don't crash accessing invalid pathinfo by @​muesli in go-git/go-git#443
• storage: filesystem, switch from os.SEEK_* to io.Seek* by @​abhinav in go-git/go-git#421
• config: add branch description support by @​ninedraft in go-git/go-git#409
• revision: fix endless looping in revision parser by @​michenriksen in go-git/go-git#475
• pumbling: optimise zlib reader and consolidate sync.Pools by @​pjbgf in go-git/go-git#608
• pumbling: parse optimisations by @​pjbgf in go-git/go-git#602
• plumbing: object, rename calculation uses too much memory by @​jfontan in go-git/go-git#503
• plumbing: protocol/pakp and server, include the contents of GO_GIT_USER_AGENT_EXTRA. Fixes #529 by @​stewing in go-git/go-git#531
• plumbing: protocol/pakp, avoid duplicate encoding when overriding a Capability value. by @​tylerchr in go-git/go-git#521
• plumbing: protocol/pakp, update agent by @​caarlos0 in go-git/go-git#453
• plumbing: protocol/pakp: Actions should have type Action by @​abhinav in go-git/go-git#420
• plumbing: protocol/pakp: allow unsupported multi_ack capability by @​pjbgf in go-git/go-git#613
• plumbing: transport/ssh, auto-populate HostKeyAlgorithms. Fixes #411 by @​evanelias in go-git/go-git#548
• pumbling: format/packfile, resolve external reference delta by @​ga-paul-t in go-git/go-git#392
• plumbing: format/packfile, prevent large objects from being read into memory completely by @​zeripath in go-git/go-git#330
• plumbing: format/index, support v3 index by @​john-cai in go-git/go-git#407
• plumbing: format/gitignore, Read .git/info/exclude file too. by @​enisdenjo in go-git/go-git#402
• plumbing: format/gitattributes, Avoid index out of range by @​To1ne in go-git/go-git#598
• plumbing: format/config, Branch name with hash can be cloned. Fixes #309 by @​dowy in go-git/go-git#354
• go.mod: update github.com/xanzy/ssh-agent to v0.3.1 by @​tklauser in go-git/go-git#403
• go.mod: update dependencies to remove supply chain CVEs by @​pjbgf in go-git/go-git#620
• examples: added "tag find if head is tagged" by @​snebel29 in go-git/go-git#374
• examples: remote fix typo by @​nep-0 in go-git/go-git#408

Full Changelog: go-git/go-git@v5.4.2...v5.5.0

Commits

• 3e07c50 Merge pull request #620 from fluxcd/update-deps
• f2d68c4 build: bump git workflow to Go 1.19
• 6629ba6 Update dependencies
• b80af01 Update test.yml
• 5132549 Merge pull request #622 from go-git/test-1.19
• 67fb0c0 .github: update go version
• 0966a00 Merge pull request #618 from fluxcd/collision_detection
• 7c37589 sha1: Add collision resistent implementation
• c798d4a Merge pull request #503 from jfontan/fix/similarity-matrix-too-big
• acd6c65 Merge pull request #354 from dowy/issue/chore(deps): bump golang.org/x/oauth2 from 0.16.0 to 0.17.0 #309-clone-branch-with-hash-in-name
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vbehar]

see go-git/go-git#624

[dependabot]

Superseded by #182.