Bump gorm.io/driver/postgres from 1.5.11 to 1.6.0

[dependabot]

Bumps gorm.io/driver/postgres from 1.5.11 to 1.6.0.

Commits

• 1ffb5a7 feat: support dynamic timestamp ScanLocation via DSN timezone (#311)
• 8385c4a feat(migrator): Add missing postgres type aliases (#312)
• 84224ec fix: fix migrator recognizing nextval('"table_id_seq"'::regclass) (#304)
• 04418c9 PG index options handle CONCURRENT option separately (#297)
• 9723eac Add varchar limit detection as per PostgreSQL limits (#302)
• dcfe4ea Bump golang.org/x/crypto to v0.31.0 to address CVE-2024-45337 (#301)
• c172125 fix concurrent issue (#295)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[lingma-agents]

升级 gorm.io/driver/postgres 依赖至 v1.6.0

变更概述

• 依赖更新

  • 将 gorm.io/driver/postgres 从 v1.5.11 升级到 v1.6.0，引入新特性及修复。
  • 新增对 PostgreSQL 动态时间戳扫描位置的支持（通过 DSN 中的 timezone 参数）。
  • 增加了缺失的 PostgreSQL 类型别名支持。
  • 修复了 migrator 识别 nextval('"table_id_seq"'::regclass) 的问题。
  • 改进了 PG 索引选项对 CONCURRENT 选项的处理方式。
  • 增强了对 PostgreSQL varchar 限制的检测。
  • 更新 golang.org/x/crypto 到 v0.31.0 以解决 CVE-2024-45337 安全漏洞。
  • 修复了并发相关的问题。

• 间接依赖更新

  • 添加了新的间接依赖项：github.com/jackc/pgservicefile、github.com/jackc/pgx/v5 和 github.com/jackc/puddle/v2，这些是新版 postgres 驱动所需的底层库。

变更文件

文件路径	变更说明
go.mod	将 gorm.io/driver/postgres 版本从 1.5.11 更新为 1.6.0，并添加了新的间接依赖项。
go.sum	更新了与 gorm.io/driver/postgres v1.6.0 相关的校验和以及新增的间接依赖项的校验和。

---

💡 小贴士

与 lingma-agents 交流的方式

📜 直接回复评论
直接回复本条评论，lingma-agents 将自动处理您的请求。例如：

• 在当前代码中添加详细的注释说明。

• 请详细介绍一下你说的 LRU 改造方案，并使用伪代码加以说明。

📜 在代码行处标记
在文件的特定位置创建评论并 @lingma-agents。例如：

• @lingma-agents 分析这个方法的性能瓶颈并提供优化建议。

• @lingma-agents 对这个方法生成优化代码。

📜 在讨论中提问
在任何讨论中 @lingma-agents 来获取帮助。例如：

• @lingma-agents 请总结上述讨论并提出解决方案。

• @lingma-agents 请根据讨论内容生成优化代码。