chore(deps): bump github.com/pb33f/libopenapi from 0.16.13 to 0.18.3

[dependabot]

Bumps github.com/pb33f/libopenapi from 0.16.13 to 0.18.3.

Release notes

Sourced from github.com/pb33f/libopenapi's releases.

v0.18.3

This fixes vacuum rules that lookup operations in the index where:

The original spec (root.yaml) has an external reference to a file in a different directory ./paths/mypath.yaml In that location, there is a relative reference to a path-item in a nearby file, e.g. ./components.yaml#/path-item What was previously happening in [2] is that the ./components.yaml was being resolved in ./components.yaml (the parent directory) instead of ./paths/components.yaml (the right directory). This resulted in a failure to evaluate path item references and unexpected linting failures.

This changes adjusts the lookup to search through the index's nodeMap to find the location of the YAML $ref node value that's been evaluated. Once we find it, we lookup the associated index of that file and do a seek in that specific index.

We also fix a race condition with resolving the specification asyncronously -- if we are going to an external ref we must do it sequentially as otherwise an index might be added multiple times during an async FindComponent call. This latent bug was exposed as we tested this.

@​ThomasRooney

v0.18.1

Fixes a small off by one error in the resolver.

Also adds extension support to server variables that was missing, courtesy of @​geffersonFerraz

v0.18.0

Fixes some memory issues with string allocations. Utility functions were causing a surge of memory when run repeatedly.

Also upgrades the rolodex to use the real name of the root file, instead of 'root.yaml'

Fixes an error that was hard-coded into the License object. Also adds Extensions to License and Contact objects.

No breaking changes, no signature changes.,

@​lobocv

v0.17.0

Support for go 1.23 and the new range over function https://tip.golang.org/wiki/RangefuncExperiment feature.

A selection of new methods have been added to the orderedmap package.

• FromOldest()
• FromNewest()
• KeysFromNewest()
• ValuesFromNewest()
• KeysFromOldest()
• ValuesFromOldest()

This allows the range method to be used to iterate ordered maps.

Previously

for pair := orderedmap.First(schema.Properties.Value); pair != nil; pair = pair.Next() {
    buildProps(pair.Key(), pair.Value(), props, 0)
}

... (truncated)

Commits

• 4b93cff chore: adjust line size test in windows based on CI runner
• 8cc9037 chore: fix race condition
• 5bde18a chore: fix snapshot
• a9d0af4 chore: add test
• 71d4143 chore: pass existing tests
• 9d2e1b8 fix: a parameter in the rolodex should be evaluated using the index that the ...
• 4d074c3 import for context was wrong.
• 8e9d97c Fixed off by one error
• efe5523 Update datamodel/low/v3/server_test.go
• 24aa1c8 feat: add server variable extensions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #213.