chore(deps): Bump get.porter.sh/porter from 1.4.0 to 1.5.0 in the go-dependencies group

[dependabot]

Bumps the go-dependencies group with 1 update: get.porter.sh/porter.

Updates get.porter.sh/porter from 1.4.0 to 1.5.0

Release notes

Sourced from get.porter.sh/porter's releases.

v1.5.0

New Features

• Bundle dependency graph — visualize your bundle's dependency tree with the new porter explain --dependencies command (#3512)
• Multi-environment config — manage configs for multiple environments using named contexts; switch between dev, staging, and prod without editing config files (#3547)
• Config commands — inspect and edit your Porter config directly with porter config show and porter config edit (#3544)
• Installation ID templating — reference the installation ID in templates via {{ installation.id }} or the PORTER_INSTALLATION_ID env var (#3549)
• Persistent parameter shorthand — shorter syntax for declaring persistent parameters (#3574)
• Context-scoped secret resolution — secrets are now resolved using the selected context, preventing accidental cross-environment leakage (#3561)

Improvements

• Skip redundant builds — porter build is now a no-op when the bundle is already up-to-date (#3517)
• Exec mixin script paths — local scripts can now be referenced without the ./ prefix (#3522)
• Smaller bundles — reduced bundle image size (#3488)
• File conflict validation — Porter now detects and reports conflicts between porter.yaml file and directory entries at build time (#3539)

Internal

• Upgraded to Go 1.25
• Migrated image handling from crane and image-relocation to go-containerregistry
• Migrated from docker/docker to moby/moby
• Updated OpenTelemetry and gRPC dependencies
• CI pipelines skip on documentation-only changes

Community

• Welcome @​dgannon991 as a new maintainer!

---

All Changes

• Added myself as a maintainer (#3514)
• Update to Go 1.24.11 (#3516)
• Upgrade dependencies (#3524)
• Skip build when bundle is up-to-date (#3517)
• View bundle dependency graph (#3512)
• Allow exec mixin to run local scripts without ./ prefix (#3522)
• Replace crane with go-containerregistry remote package (#3515)
• Replace image-relocation library with go-containerregistry (#3529)
• Update otelexporter dependencies (#3526)
• Update Dockerfile syntax to docker/dockerfile:1 (#3534)
• Skip CI pipelines for documentation-only changes (#3538)
• Validate porter file/dir conflicts (#3539)
• Pass in context to cnab-go Run() (#3253)
• Optimize bundle size (#3488)
• Add porter config show/edit commands (#3544)
• Bump Go to 1.24.13 (#3548)
• Add installation.id template var and PORTER_INSTALLATION_ID env var (#3549)

... (truncated)

Commits

• a81c51a Scope secret resolution to selected context (#3561)
• bd5b820 Merge pull request #3580 from getporter/dependabot/github_actions/docker/logi...
• 1a3153d Merge branch 'main' into dependabot/github_actions/docker/login-action-4.1.0
• af90c5c Merge pull request #3581 from getporter/dependabot/go_modules/go-dependencies...
• 03372cd Chore(deps): Bump the go-dependencies group with 13 updates
• 97bf5f8 Chore(deps): Bump docker/login-action from 4.0.0 to 4.1.0
• c927849 Merge pull request #3578 from getporter/dependabot/go_modules/go-dependencies...
• 71173c3 Merge branch 'main' into dependabot/go_modules/go-dependencies-acda7f0ef0
• 0adcbe2 feat: add persistent parameter shorthand (#3574)
• 2bb4c9b Chore(deps): Bump the go-dependencies group with 3 updates
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions