Bump the gomod group with 2 updates

[dependabot]

Bumps the gomod group with 2 updates: github.com/bufbuild/buf and golang.org/x/oauth2.

Updates github.com/bufbuild/buf from 1.64.0 to 1.65.0

Release notes

Sourced from github.com/bufbuild/buf's releases.

v1.65.0

• Add buf registry policy {commit,create,delete,info,label,settings} commands to manage BSR policies.
• Add LSP deprecate code action to add the deprecated option on types and symbols.
• Fix import LSP document link to not include import keyword.
• Update PROTOVALIDATE lint rule to support checking unenforceable required rules on repeated.items, map.keys and map.values.
• Add buf source edit deprecate command to deprecate types by setting the deprecate = true option.

Changelog

Sourced from github.com/bufbuild/buf's changelog.

[v1.65.0] - 2026-02-03

• Add buf registry policy {commit,create,delete,info,label,settings} commands to manage BSR policies.
• Add LSP deprecate code action to add the deprecated option on types and symbols.
• Fix import LSP document link to not include import keyword.
• Update PROTOVALIDATE lint rule to support checking unenforceable required rules on repeated.items, map.keys and map.values.
• Add buf source edit deprecate command to deprecate types by setting the deprecate = true option.

Commits

• 5155f61 Release v1.65.0 (#4316)
• 772be42 Update alpine image (#4315)
• 8452072 Add buf source edit deprecate command (#4306)
• 1596cdd Add tags to LSP diagnostics (#4311)
• 7b0cdfd Make upgrade (#4314)
• 16e09a1 Fix edge case in LSP symbol doc hover (#4310)
• 08df2b3 Update PROTOVALIDATE lint rule to check unenforceable required rules (#4309)
• 4899175 Fix import LSP document link to not include import keyword (#4308)
• 15d712b Add LSP code action for deprecating symbols (#4299)
• 2bdc217 Separate deprecated types in protostat (#4307)
• Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.34.0 to 0.35.0

Commits

• 89ff2e1 google: add safer credentials JSON loading options.
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions