Bump github.com/open-policy-agent/opa from 1.15.0 to 1.16.0 in /lambda

[dependabot]

Bumps github.com/open-policy-agent/opa from 1.15.0 to 1.16.0.

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v1.16.0

[!WARNING]

A regression has been found in the plugin manager, which may cause the service to hang on shutdown. Users are advised to wait for a patch in v1.16.1, which will be released shortly.

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

• New uri.parse and uri.is_valid built-in functions
• Data API Request/Response Metadata
• Prometheus metrics exported via OTLP
• Formatter improvements

NOTE:

In v1.15.x, OPA was dropping logs for bundle downloads, print() calls and other plugin-originated logs. Users are advised to update, v1.16.0 fixes this bug in (#8544).

New uri.parse and uri.is_valid built-in functions (#8263)

Two new built-in functions have been added: uri.parse for parsing a given URI, and uri.is_valid for verifying the structure of a given URI.

uri.parse

Parses a URI and returns an object containing its components according to RFC 3986. Empty components are omitted.

package example
test_uri if {
uri.parse("https://example.com:8080/api?q=1#top") == {
"scheme": "https",
"hostname": "example.com",
"port": "8080",
"path": "/api",
"raw_path": "/api",
"raw_query": "q=1",
"fragment": "top",
}
}

uri.is_valid

Returns true if the input can be parsed as a URI, false otherwise.

package example
deny contains "invalid URI" if {
</tr></table>

... (truncated)

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

1.16.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

• New uri.parse and uri.is_valid built-in functions
• Data API Request/Response Metadata
• Prometheus metrics exported via OTLP
• Formatter improvements

NOTE:

In v1.15.x, OPA was dropping logs for bundle downloads, print() calls and other plugin-originated logs. Users are advised to update, v1.16.0 fixes this bug in (#8544).

New uri.parse and uri.is_valid built-in functions (#8263)

Two new built-in functions have been added: uri.parse for parsing a given URI, and uri.is_valid for verifying the structure of a given URI.

uri.parse

Parses a URI and returns an object containing its components according to RFC 3986. Empty components are omitted.

package example
test_uri if {
uri.parse("https://example.com:8080/api?q=1#top") == {
"scheme": "https",
"hostname": "example.com",
"port": "8080",
"path": "/api",
"raw_path": "/api",
"raw_query": "q=1",
"fragment": "top",
}
}

uri.is_valid

Returns true if the input can be parsed as a URI, false otherwise.

package example
deny contains "invalid URI" if {
not uri.is_valid("http://[invalid")
}

... (truncated)

Commits

• f3adf61 Release v1.16.0 (#8581)
• c5a446f Add regression test for comparing objects with array keys
• 7bc92c6 workflow: update benchmarks notebook generation
• 882d5a7 build(deps): bump the dependencies group across 2 directories with 9 updates ...
• b33179c docs: Fix input value type in not undefined example (#8580)
• 3d602ca perf: Add CopyNonGround() methods for Array, Set, and Object (#8323)
• 1a8e7b1 docs(policy-reference): add aggregates examples for count and sum (#8566)
• 343ddf5 builtins: Add uri.parse and uri.is_valid built in functions (#8578)
• 6b558d3 Handle nil in comprehension
• 3705342 website: Copy button improvements (#8577)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)