Bump cloud.google.com/go/kms from 1.25.0 to 1.26.0

[dependabot]

Bumps cloud.google.com/go/kms from 1.25.0 to 1.26.0.

Release notes

Sourced from cloud.google.com/go/kms's releases.

retail 1.26.0

1.26.0 (2026-01-29)

Features

• add a user_attributes field in SearchRequest that can be used for personalization (PiperOrigin-RevId: 861314205) (d8ea738a)

• add a model_scores field in SearchResponse.results to expose model quality signals (PiperOrigin-RevId: 861314205) (d8ea738a)

kms: v1.26.0

v1.26.0 (2026-02-19)

Features

• Introduced the RetiredResource resource to track records of deleted keys and prevent the reuse of their resource names (PiperOrigin-RevId: 868670725) (d3eb851d)

• Added ListRetiredResources and GetRetiredResource RPCs to manage and view these records (PiperOrigin-RevId: 868670725) (d3eb851d)

• Added DeleteCryptoKey and DeleteCryptoKeyVersion RPCs to permanently remove resources (PiperOrigin-RevId: 868670725) (d3eb851d)

• Add KeyProjectResolutionMode to AutokeyConfig to support project-level configurations (PiperOrigin-RevId: 870858133) (d3eb851d)

• Add support for project level key usage tracking (PiperOrigin-RevId: 871667322) (d3eb851d)

• Add more post-quantum (PQ) signature algorithms to CryptoKeyVersion (PiperOrigin-RevId: 870858133) (d3eb851d)

Documentation

• Clarify supported resources for the crypto_key_backend field in ImportJob (PiperOrigin-RevId: 870858133) (d3eb851d)

• Update documentation for AutokeyAdmin service and messages to support folder and project-level configurations (PiperOrigin-RevId: 870858133) (d3eb851d)

Changelog

Sourced from cloud.google.com/go/kms's changelog.

1.26.0 (2024-02-21)

Features

• documentai: A new field schema_override is added to message ProcessOptions (#9400) (a86aa8e)
• documentai: A new message FoundationModelTuningOptions is added (7e6c208)

Commits

• 8ebb896 chore: librarian release pull request: 20251010T200657Z (#13107)
• befb302 test(internal/postprocessor): skip test that expects certain live config (#13...
• 1930511 testing(internal/godocfx): convert equality check to a diff check (#13089)
• e6b9d41 chore: migrate compute/metadata to Librarian (#13009)
• 6259aee fix(storage): skip download of file outside of target dir (#12945)
• bafd691 perf(bigtable): parallelize the exportTimeSeries function (#13004)
• 2b75879 chore: release main (#13082)
• 9157a71 chore: bump changed modules (#13083)
• a93d961 fix: upgrade gRPC service registration func (#13079)
• 75c95f3 chore: librarian generate pull request: 20251009T073841Z (#13080)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA b6c6911.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

OpenSSF Scorecard

Package	Version	Score	Details
gomod/cloud.google.com/go/kms	1.26.0	🟢 8.2	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected License 🟢 10 license file detected Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing 🟢 10 project is fuzzed Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 1 dependency not pinned by hash detected -- score normalized to 1
gomod/google.golang.org/genproto/googleapis/api	0.0.0-20260203192932-546029d2fa20	🟢 6.7	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 SAST 🟢 5 SAST tool is not run on all commits -- score normalized to 5

Scanned Files

• go.mod