build(deps): bump github.com/99designs/gqlgen from 0.17.74 to 0.17.76 in /core

[dependabot]

Bumps github.com/99designs/gqlgen from 0.17.74 to 0.17.76.

Release notes

Sourced from github.com/99designs/gqlgen's releases.

v0.17.76

What's Changed

• Improve gqlgen performance by bulking name only package loads by @​AdallomRoy in 99designs/gqlgen#3743
• Fix/explicit requires with mutli entity resolver by @​parkerroan in 99designs/gqlgen#3744
• fix use_function_syntax_for_execution_context with @goEnum/@​goModel by @​adamgonen in 99designs/gqlgen#3748
• Attempt to preserve types by @​StevenACoffman in 99designs/gqlgen#3749
• Update github.com/vektah/gqlparser/v2 to v2.5.30 by @​StevenACoffman in 99designs/gqlgen#3751
• chore(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in /_examples by @​dependabot in 99designs/gqlgen#3747
• chore(deps-dev): bump vitest from 3.2.3 to 3.2.4 in /integration by @​dependabot in 99designs/gqlgen#3745
• chore(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @​dependabot in 99designs/gqlgen#3746
• chore(deps): bump the go_modules group across 3 directories with 1 update by @​dependabot in 99designs/gqlgen#3750

New Contributors

• @​adamgonen made their first contribution in 99designs/gqlgen#3748

Full Changelog: 99designs/gqlgen@v0.17.75...v0.17.76

v0.17.75

What's Changed

• Add an option to allow using appliation/json on wildcard accept header by @​git-hulk in 99designs/gqlgen#3723
• Update github.com/vektah/gqlparser/v2@v2.5.28 by @​StevenACoffman in 99designs/gqlgen#3733
• Update github.com/matryer/moq@v0.5.2 by @​StevenACoffman in 99designs/gqlgen#3734
• chore(deps): bump golang.org/x/sync from 0.14.0 to 0.15.0 in /_examples by @​dependabot in 99designs/gqlgen#3732
• chore(deps-dev): bump @​graphql-codegen/cli from 5.0.6 to 5.0.7 in /integration by @​dependabot in 99designs/gqlgen#3728
• chore(deps-dev): bump vitest from 3.1.4 to 3.2.2 in /integration by @​dependabot in 99designs/gqlgen#3730
• chore(deps): bump golang.org/x/text from 0.25.0 to 0.26.0 in /_examples by @​dependabot in 99designs/gqlgen#3731
• chore(deps): bump golang.org/x/text from 0.25.0 to 0.26.0 by @​dependabot in 99designs/gqlgen#3726
• chore(deps): bump golang.org/x/tools from 0.33.0 to 0.34.0 by @​dependabot in 99designs/gqlgen#3727
• chore(deps): bump dawidd6/action-download-artifact from 10 to 11 by @​dependabot in 99designs/gqlgen#3737
• chore(deps-dev): bump vitest from 3.2.2 to 3.2.3 in /integration by @​dependabot in 99designs/gqlgen#3736
• chore(deps): bump github.com/urfave/cli/v2 from 2.27.6 to 2.27.7 by @​dependabot in 99designs/gqlgen#3735
• chore(deps-dev): bump jest from 29.7.0 to 30.0.0 in /_examples/federation by @​dependabot in 99designs/gqlgen#3738

Full Changelog: 99designs/gqlgen@v0.17.74...v0.17.75

Commits

• a1b9849 release v0.17.76
• 47c3de5 chore(deps): bump the go_modules group across 3 directories with 1 update (#3...
• c2ce357 Update github.com/vektah/gqlparser/v2 to v2.5.30 (#3751)
• 01d4e04 Attempt to preserve types (#3749)
• af75691 fix use_function_syntax_for_execution_context with @goEnum/@​goModel (#3748)
• 74ff0f8 Fix/explicit requires with mutli entity resolver (#3744)
• be74a5b Improve gqlgen performance by bulking name only package loads (#3743)
• a31de27 chore(deps): bump github.com/go-viper/mapstructure/v2 (#3746)
• e95f3b4 chore(deps-dev): bump vitest from 3.2.3 to 3.2.4 in /integration (#3745)
• 14c8366 chore(deps): bump github.com/go-viper/mapstructure/v2 in /_examples (#3747)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[jazzberry-ai]

Bug Report

Name: Potential information leakage through error messages in HTTP handlers
Severity: Medium
Example test case: Trigger an error in one of the HTTP handlers (e.g., by providing invalid input to the addRowHandler or getRowsHandler). Observe the error message returned in the HTTP response.
Description: The HTTP handlers in http.resolvers.go use http.Error(w, err.Error(), http.StatusInternalServerError) to return errors to the client. The err.Error() method might return sensitive information about the internal implementation or database structure, potentially exposing vulnerabilities or making it easier for attackers to gain insights into the system.

_{Comments? Email us.}