build(deps): bump github.com/eclipse/paho.mqtt.golang from 1.5.0 to 1.5.1

[dependabot]

Bumps github.com/eclipse/paho.mqtt.golang from 1.5.0 to 1.5.1.

Release notes

Sourced from github.com/eclipse/paho.mqtt.golang's releases.

v1.5.1

This is a minor release incorporating changes made in the 14 months since v1.5.0 (including updating dependencies, and raising the Go version to 1.24). The changes are relatively minor but address a potential security issue, possible panic, enable users to better monitor the connection status, and incorporate a few optimisations.

Thanks to those who have provided fixes/enhancements included in this release!

Special thanks to Paul Gerste at Sonar for reporting issue #730 via the Eclipse security team (fix was implemented in PR #714 in May, github issue created just prior to this release). This issue arose where a topic > 65535 bytes was passed to the Publish function, due to the way the data was encoded the topic could leak into the message body. Please see issue #730 for further details.

What's Changed

• Updating go dependencies from pub and sub into the containers before building by @​JefJrFigueiredo in eclipse-paho/paho.mqtt.golang#691
• Optimize TCP connection logic by @​geekeryy in eclipse-paho/paho.mqtt.golang#713
• Fields over 65535 bytes not encoded correctly by @​MattBrittan in eclipse-paho/paho.mqtt.golang#714
• Reduce slice allocations in route dispatch by @​alespour in eclipse-paho/paho.mqtt.golang#710
• Add a ConnectionNotificationHandler by @​RangelReale in eclipse-paho/paho.mqtt.golang#727
• Potential panic when using manual ACK by @​MattBrittan in eclipse-paho/paho.mqtt.golang#729

Full Changelog: eclipse-paho/paho.mqtt.golang@v1.5.0...v1.5.1

Commits

• b305237 Update dependencies in docker examples
• 35ee03d Potential panic when using manual ACK
• 433bd22 address data race in test
• 4debe3a Potential panic when using manual ACK
• 601453b Resolve issues in fvt_client_test
• 439e2ab Dependency update (also rise Go version to 1.24)
• d276593 ConnectionNotificationHandler - generic callback for all types of connection ...
• 8a350a9 notifications
• 5620c5e notifications
• 45048cc notifications
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)