build(deps): bump github.com/go-authgate/sdk-go from 0.10.0 to 0.12.0

[dependabot]

Bumps github.com/go-authgate/sdk-go from 0.10.0 to 0.12.0.

Release notes

Sourced from github.com/go-authgate/sdk-go's releases.

v0.12.0

Changelog

Bug fixes

• 506ff28e68b10f348fb937c9d734b20ea72245a6: fix: authenticate confidential clients and harden token handling (#33) (@​appleboy)

Refactor

• 81b51e244f1ce5f069d6e2a0ac18a1ffb6d25706: refactor: simplify control flow across sdk packages (#30) (@​appleboy)
• 7fcdb3cde0b80754262e81bd2e2d86baf8f00f64: refactor(oauth): use error-code constants at all sites (#31) (@​appleboy)
• 4407ea621e8f2f14cb8629dfb80cb4d1e536099e: refactor(middleware): split token scope once for required-scope checks (#32) (@​appleboy)

Documentation updates

• f8b8b28fd70f30799933e0592878f7e1146a71ea: docs(jwksauth): document UID across remaining godoc and test comments (@​appleboy)

Others

• a90443e6226c4f401f40ed9917af2b19cd2f1747: fix(discovery,middleware): coalesce concurrent discovery fetches via singleflight with per-caller cancellation; route scope errors through the error handler (#16) (@​appleboy)

v0.11.0

Changelog

Features

• 9ab6750cc763c07bc47677c2c0cce48e43df20e8: feat(jwksauth): add UID server-attested claim (#29) (@​appleboy)

Enhancements

• f09e2f2d8a6998396dda405bf114cc3a11a4c9f0: chore(deps): bump go-httpretry to v0.12.0 and go to 1.25.9 (@​appleboy)
• 0a964c073017776cca9f63fa96c337c2e154f9e1: chore(deps): bump go directive to 1.25.10 (@​appleboy)
• 54c2ed13fc38d1515c8df2941d4d5b0af81c0953: chore(deps): bump golang.org/x/sys to v0.44.0 (@​appleboy)

Build process updates

• a3baec000a8f4f6b6d54eecf46a3ea0941ddeb51: ci: enable check-latest for setup-go to pick up new patches (@​appleboy)

Commits

• 506ff28 fix: authenticate confidential clients and harden token handling (#33)
• a90443e fix(discovery,middleware): coalesce concurrent discovery fetches via singlefl...
• 4407ea6 refactor(middleware): split token scope once for required-scope checks (#32)
• 7fcdb3c refactor(oauth): use error-code constants at all sites (#31)
• 81b51e2 refactor: simplify control flow across sdk packages (#30)
• f8b8b28 docs(jwksauth): document UID across remaining godoc and test comments
• 9ab6750 feat(jwksauth): add UID server-attested claim (#29)
• 54c2ed1 chore(deps): bump golang.org/x/sys to v0.44.0
• a3baec0 ci: enable check-latest for setup-go to pick up new patches
• 0a964c0 chore(deps): bump go directive to 1.25.10
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)