chore(deps): Bump the go-dependencies group with 3 updates

[dependabot]

Bumps the go-dependencies group with 3 updates: github.com/cnabio/cnab-go, github.com/magefile/mage and go.opentelemetry.io/otel.

Updates github.com/cnabio/cnab-go from 0.26.1 to 0.26.2

Release notes

Sourced from github.com/cnabio/cnab-go's releases.

v0.26.2

What's Changed

• Bump github.com/docker/cli from 29.0.2+incompatible to 29.1.5+incompatible in the go-dependencies group by @​dependabot[bot] in cnabio/cnab-go#388
• Bump the go-dependencies group with 3 updates by @​dependabot[bot] in cnabio/cnab-go#389
• Bump github.com/docker/cli from 29.2.0+incompatible to 29.2.1+incompatible in the go-dependencies group by @​dependabot[bot] in cnabio/cnab-go#390
• Bump the go-dependencies group with 3 updates by @​dependabot[bot] in cnabio/cnab-go#391
• Bump the go-dependencies group with 3 updates by @​dependabot[bot] in cnabio/cnab-go#392
• Bump go.opentelemetry.io/otel/sdk from 1.36.0 to 1.40.0 by @​dependabot[bot] in cnabio/cnab-go#393
• Removed final docker/docker reference by @​dgannon991 in cnabio/cnab-go#394

Full Changelog: cnabio/cnab-go@v0.26.1...v0.26.2

Commits

• f3e0de8 Merge pull request #394 from dgannon991/chore/remove-docker-docker
• e8849de Removed final docker/docker reference
• 78d6be0 Merge pull request #393 from cnabio/dependabot/go_modules/go.opentelemetry.io...
• 5bacdd9 Bump go.opentelemetry.io/otel/sdk from 1.36.0 to 1.40.0
• 9a3cf3b Merge pull request #392 from cnabio/dependabot/go_modules/go-dependencies-2ac...
• 8ccdccf Bump the go-dependencies group with 3 updates
• 7d3fc32 Merge pull request #391 from cnabio/dependabot/go_modules/go-dependencies-1e2...
• 6850266 Bump the go-dependencies group with 3 updates
• 9e895a9 Merge pull request #390 from cnabio/dependabot/go_modules/go-dependencies-81a...
• 089d68d Bump github.com/docker/cli in the go-dependencies group
• Additional commits viewable in compare view

Updates github.com/magefile/mage from 1.15.0 to 1.16.0

Release notes

Sourced from github.com/magefile/mage's releases.

v1.16.0 Optional Arguments!

What's Changed

• feat: support trailing line comment for mage:import by @​anuraaga in magefile/mage#480
• Update documentation to include Windows Magefile Cache by @​WilliamRoyNelson in magefile/mage#484
• Comment typo: parse.go by @​szTheory in magefile/mage#485
• ci: Extend go-version with 1.21.x by @​michalbiesek in magefile/mage#479
• Correct test input code to support older go versions by @​perrito666 in magefile/mage#490
• getFunction() ignoring receiver on imports by @​na4ma4 in magefile/mage#509
• This adds a test to bug 508 by @​perrito666 in magefile/mage#516
• chore(docs): updated README and site to include installation using go install command by @​egor-denysenko in magefile/mage#499
• add the ability to call targets with float64 args by @​natefinch in magefile/mage#525
• Add support for optional arguments by @​natefinch in magefile/mage#538

New Contributors

• @​anuraaga made their first contribution in magefile/mage#480
• @​WilliamRoyNelson made their first contribution in magefile/mage#484
• @​szTheory made their first contribution in magefile/mage#485
• @​michalbiesek made their first contribution in magefile/mage#479
• @​na4ma4 made their first contribution in magefile/mage#509
• @​egor-denysenko made their first contribution in magefile/mage#499

Full Changelog: magefile/mage@v1.15.0...v1.16.0

Commits

• 69e6f82 Add support for optional arguments (#538)
• 78acbaf add the ability to call targets with float64 args (#525)
• bdc92f6 chore(docs): updated README and site to include installation using go install...
• 32e0107 This adds a test to bug 508 (#516)
• 0800736 fix default selector ignoring Receiver and returning first matching function ...
• 2385abb Correct test input code to support older go versions (#490)
• 0fddccb ci: Extend go-version with 1.21.x (#479)
• 2edffd1 Comment typo: parse.go (#485)
• c97c205 Update documentation to include Windows Magefile Cache (#484)
• 9f54e0f feat: support trailing line comment for mage:import (#480)
• See full diff in compare view

Updates go.opentelemetry.io/otel from 1.40.0 to 1.41.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

• Support testing of [Go 1.26]. (#7902)

Fixed

• Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)
• Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)
• Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)
• Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

• 4575a97 Release 1.41.0/0.63.0/0.17.0/0.0.15 (#7977)
• 66fc10d fix: add error handling for insecure HTTP endpoints with TLS client configura...
• 76e6eec chore(deps): update github/codeql-action action to v4.32.5 (#7980)
• 0d50f90 Revert "Generate semconv/v1.40.0" (#7978)
• c38a4a5 Generate semconv/v1.40.0 (#7929)
• 0f1a224 chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (#7899)
• c79ebf4 chore(deps): update module github.com/daixiang0/gci to v0.14.0 (#7973)
• f758157 chore(deps): update module github.com/sonatard/noctx to v0.5.0 (#7968)
• 92a1164 fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...
• 3cd7c27 chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (#7969)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions