Bump github.com/gorilla/sessions from 1.2.2 to 1.3.0

[dependabot]

Bumps github.com/gorilla/sessions from 1.2.2 to 1.3.0.

Release notes

Sourced from github.com/gorilla/sessions's releases.

v1.3.0

The maintainers of this repo merged a PR into main with the net/http.Cookie field Partitioned which is a field only available in go 1.23. As a result all usage of the main branch will not work unless users are on 1.23 which at the time of writing is currently unreleased. This broke the install for a number of users so the intent of this release is to push out a couple of features and bugfixes with the go 1.23 specific changes removed.

Releases should be used exclusively until go 1.23 is released.

What's Changed

• Improve File System Path Handling by @​moloch-- in gorilla/sessions#274
• #272: feat: Add support for paritioned attribute in cookies as per chrome 3rd party cookie phaseout by @​kashishbehl in gorilla/sessions#273
• fix no default samesite by @​bharat-rajani in gorilla/sessions#276
• Fix gorillatoolkit link in README.md by @​mbacalan in gorilla/sessions#278

New Contributors

• @​moloch-- made their first contribution in gorilla/sessions#274
• @​kashishbehl made their first contribution in gorilla/sessions#273
• @​bharat-rajani made their first contribution in gorilla/sessions#276
• @​mbacalan made their first contribution in gorilla/sessions#278

Full Changelog: gorilla/sessions@v1.2.2...v1.3.0

Commits

• 19d52f4 fix(cookie): Remove partitioned field
• c373b3e Fix gorillatoolkit link in README.md (#278)
• ef99c78 fix(cookie): Add default samesite (#276)
• bdabf0a #272: feat: Add support for paritioned attribute in cookies as per chrome 3rd...
• e308bfd Fix path traversal (#274)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #404.