fix(deps): bump the internal group across 1 directory with 2 updates

[dependabot]

Bumps the internal group with 2 updates in the /service directory: github.com/opentdf/platform/lib/ocrypto and github.com/opentdf/platform/sdk.

Updates github.com/opentdf/platform/lib/ocrypto from 0.1.9 to 0.2.0

Release notes

Sourced from github.com/opentdf/platform/lib/ocrypto's releases.

lib/ocrypto: v0.2.0

0.2.0 (2025-05-22)

⚠ BREAKING CHANGES

• core: Require go 1.23+ (#1979)

Features

• core: Adds EC withSalt options (#2126) (67b6fb8)
• core: Require go 1.23+ (#1979) (164c922)

Bug Fixes

• perfsprint lint issues (#2209) (7cf8b53)

Commits

• 7dd356a chore(main): release sdk 0.2.0 (#656)
• 6fe7d46 chore(main): release lib/fixtures 0.2.0 (#638)
• a5606f2 docs: how to run platform locally (#664)
• e890a0d chore(bump): bump sdk/go.mod (#671)
• c674f43 chore(main): release protocol/go 0.2.0 (#657)
• f9e9d72 feat(provisioning): Keycloak provisioning from custom config (#573)
• 10b81e5 chore(auth): DPoP and public fixes (#651)
• 19d9bfe fix: update dockerfile to leverage ENTRYPOINT instead of CMD (#663)
• 70474be chore(main): Enable SonarCloud analysis with collecting code coverage values ...
• 3d5d9a2 build(deps): bump JarvusInnovations/background-action from 1.0.5 to 1.0.7 (#542)
• Additional commits viewable in compare view

Updates github.com/opentdf/platform/sdk from 0.4.4 to 0.4.5

Release notes

Sourced from github.com/opentdf/platform/sdk's releases.

sdk: v0.4.5

0.4.5 (2025-05-22)

Features

• authz: authz v2 versioning implementation (#2173) (557fc21)
• core: Adds EC withSalt options (#2126) (67b6fb8)
• core: v2 ERS with proto updates (#2210) (a161ef8)
• policy: key management crud (#2110) (4c3d53d)
• sdk: add nanotdf plaintext policy (#2182) (e5c56db)
• sdk: Use ConnectRPC in the go client (#2200) (fc34ee6)

Bug Fixes

• core: Improves errors when under heavy load (#2132) (4490a14)
• deps: bump golang.org/x/oauth2 from 0.26.0 to 0.30.0 in /sdk (#2252) (9b775a2)
• deps: bump google.golang.org/grpc from 1.71.0 to 1.72.1 in /sdk (#2244) (49484e0)
• sdk: adds connection options to getPlatformConfiguration (#2286) (a3af31e)
• sdk: perfsprint lint issues (#2208) (d36a078)

Commits

• 163d3c4 chore(main): release sdk 0.4.5 (#2133)
• 29414b4 chore(deps): bump github.com/opentdf/platform/lib/ocrypto from 0.1.9 to 0.2.0...
• ed9ff59 feat(core): enhance db configuration options (#2285)
• e10c12f chore(main): release lib/ocrypto 0.2.0 (#1985)
• e12f5e9 chore(deps): bump the internal group in /service with 2 updates (#2276)
• a3af31e fix(sdk): adds connection options to getPlatformConfiguration (#2286)
• a46a8fb chore(deps): bump the internal group in /sdk with 2 updates (#2283)
• 14f71e0 chore(ci): bump actions/dependency-review-action from 4.5.0 to 4.7.1 (#2274)
• e8f6472 chore(ci): bump actions/setup-go from 5.4.0 to 5.5.0 (#2275)
• 8dbf7c1 chore(ci): bump docker/build-push-action from 6.3.0 to 6.17.0 (#2273)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Benchmark results, click to expand

Benchmark Results:

Metric	Value
Approved Decision Requests	5000
Denied Decision Requests	0
Total Time	564.098639ms

Bulk Benchmark Results

Metric	Value
Total Decrypts	100
Successful Decrypts	100
Failed Decrypts	0
Total Time	368.850985ms
Throughput	271.11 requests/second

TDF3 Benchmark Results:

Metric	Value
Total Requests	5000
Successful Requests	5000
Failed Requests	0
Concurrent Requests	50
Total Time	1m17.41891901s
Average Latency	772.026612ms
Throughput	64.58 requests/second

NANOTDF Benchmark Results:

Metric	Value
Total Requests	5000
Successful Requests	4944
Failed Requests	56
Concurrent Requests	50
Total Time	1m8.260955811s
Average Latency	679.852667ms
Throughput	72.43 requests/second

Error Summary:

Error Message	Occurrences
ReadNanoTDF error: getNanoRewrapKey: rewrapError: internal: internal error rpc error: code = Internal desc = could not perform access	56 occurrences

Standard Benchmark Metrics Skipped or Failed