chore(deps): bump github.com/oapi-codegen/oapi-codegen/v2 from 2.5.1 to 2.6.0 in /broker in the go-minor-patch group

[dependabot]

Bumps the go-minor-patch group in /broker with 1 update: github.com/oapi-codegen/oapi-codegen/v2.

Updates github.com/oapi-codegen/oapi-codegen/v2 from 2.5.1 to 2.6.0

Release notes

Sourced from github.com/oapi-codegen/oapi-codegen/v2's releases.

v2.6.0: 7th anniversary release 🎂

For those that aren't aware, 7 years ago to the day, oapi-codegen was born!

(Well, technically it's tonight at midnight UTC, but who's splitting hairs?)

There's nothing too special planned for today, but we thought it'd be the perfect time to cut a slice of cake a release!

🎉 Notable changes

New generated code requires oapi-codegen/runtime v1.2.0+

As part of #2256, github.com/oapi-codegen/runtime v1.2.0 is needed alongside github.com/oapi-codegen/oapi-codegen, for new generated code.

This is providing a more future-proofed means to bind parameters.

See the release notes for the runtime package, and #2256 for more information.

oapi-codegen was part of the GitHub Secure Open Source Fund

oapi-codegen was one of the projects taking part in the third GitHub Secure Open Source Fund session.

We've written up more about what we've learned, and have some more things to share with you over the coming months about lessons we've learned and improvements we've taken that we can share.

We were pretty chuffed to be selected, and it's already helped improve our security posture as a project, which is also very important for the wider ecosystem!

go directive bump in next release

Long-time users will be aware that we work very hard to try and keep our requirement for Go source compatibility, through the go directive, especially as we recommend folks use oapi-codegen as a source-tracked dependency.

For more details about this, see our Support Model docs.

In the next minor release, we'll be setting our minimum go directive to Go 1.24 (End-of-Life on 2026-02-11), as it's required for a number of dependencies of ours to be updated any higher, and a change to the module import path for Speakeasy's OpenAPI Overlay library requires us fix this centrally for our users to be able to continue updating their libraries.

[!NOTE] Nothing is changing as part of v2.6.0, this is a pre-announcement for v2.7.0.

Behind the scenes cleanup

There's also been some work behind-the-scenes to try and clean up outstanding issues (of which we know there are many!) that have been fixed, as well as Marcin's work on trying to do some more significant rework of the internals with help from Claude.

There's still, as ever, work to go with this - as we've mentioned before, sponsoring our work would be greatly appreciated, so we can continue to put in the work, considering this is a widely used and depended on project.

🚀 New features and improvements

• feat: Pass schema type/formats to runtime v1.2.0 to allow better parameter serialization (#2256) @​mromaszewicz
• feat: add Valid() method to generated enum types (#2227) @​mromaszewicz
• Support nullable slice elements and map values (#2185) @​iamtakingiteasy

... (truncated)

Commits

• efb2df3 docs: add example of using Renovate to sync files between repos
• d04991e fix: qualify external ref schema types in default response codes (#2241)
• 15fc536 fix: pass OpenAPI type/format to runtime parameter binding and styling functions
• 28d0083 Update github.com/oapi-codegen/runtime to v1.2.0
• 890e8de chore(deps): update module github.com/golangci/golangci-lint to v2.10.1 (make...
• 6f6e243 chore(deps): update github/codeql-action action to v4.32.4 (.github/workflows)
• 3f9222e chore(deps): update actions/setup-go action to v6.3.0 (.github/workflows)
• 33cd677 chore(deps): update actions/checkout action to v6 (.github/workflows)
• 109fbfa chore(deps): update release-drafter/release-drafter action to v6.2.0 (.github...
• c184310 chore(deps): update actions/upload-artifact action to v7 (.github/workflows)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions