Bump github.com/microsoft/go-mssqldb from 1.9.3 to 1.9.6

[dependabot]

Bumps github.com/microsoft/go-mssqldb from 1.9.3 to 1.9.6.

Release notes

Sourced from github.com/microsoft/go-mssqldb's releases.

v1.9.6

What's Changed

• dep: upgrade golang.org/x/crypto to v0.45.0 by @​marevers in microsoft/go-mssqldb#301
• Add serverCertificate parameter for byte-comparison validation with backward compatibility by @​Copilot in microsoft/go-mssqldb#305

New Contributors

• @​marevers made their first contribution in microsoft/go-mssqldb#301

Full Changelog: microsoft/go-mssqldb@v1.9.5...v1.9.6

v1.9.4

What's Changed

• Skip Attention packet when in rollback by @​alhails in microsoft/go-mssqldb#293
• set host var in pipeline by @​shueybubbles in microsoft/go-mssqldb#291
• fix(namedpipe): Restrict package to supported platforms by @​srebhan in microsoft/go-mssqldb#298

New Contributors

• @​alhails made their first contribution in microsoft/go-mssqldb#293
• @​srebhan made their first contribution in microsoft/go-mssqldb#298

Full Changelog: microsoft/go-mssqldb@v1.9.3...v1.9.4

Changelog

Sourced from github.com/microsoft/go-mssqldb's changelog.

1.9.6

Features

• Added new serverCertificate connection parameter for byte-for-byte certificate validation, matching Microsoft.Data.SqlClient behavior. This parameter skips hostname validation, chain validation, and expiry checks, only verifying that the server's certificate exactly matches the provided file. This is useful when the server's hostname doesn't match the certificate CN/SAN. (#304)
• The existing certificate parameter maintains backward compatibility with traditional X.509 chain validation including hostname checks, expiry validation, and chain-of-trust verification.
• serverCertificate cannot be used with certificate or hostnameincertificate parameters to prevent conflicting validation methods.

Commits

• eeb19e8 Add serverCertificate parameter for byte-comparison validation with backward ...
• 232fa60 dep: upgrade golang.org/x/crypto to v0.45.0 (#301)
• 0bbbaf2 fix(sharedmemory): Restrict package to supported platforms (#299)
• f1ed1e4 feat: Shopspring decimal support (#287)
• 0997918 fix(namedpipe): Restrict package to supported platforms (#298)
• e574861 set host var in pipeline (#291)
• 819df9f Skip Attention packet when in rollback (#293)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[qltysh]

Coverage Impact

⬇️ Merging this pull request will decrease total coverage on master by 0.02%.

🚦 See full report on Qlty Cloud »

🛟 Help

• Diff Coverage: Coverage for added or modified lines of code (excludes deleted files). Learn more.

• Total Coverage: Coverage for the whole repository, calculated as the sum of all File Coverage. Learn more.

• File Coverage: Covered Lines divided by Covered Lines plus Missed Lines. (Excludes non-executable lines including blank lines and comments.)

  • Indirect Changes: Changes to File Coverage for files that were not modified in this PR. Learn more.