chore(deps): update dependency golangci/golangci-lint to v2.12.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
golangci/golangci-lint	uses-with	minor	v2.11.4 → v2.12.0

---

Release Notes

golangci/golangci-lint (golangci/golangci-lint)

v2.12.0

Compare Source

Released on 2026-05-01

1. New linters
   • Add clickhouselint linter https://github.com/ClickHouse/clickhouse-go-linter
2. Linters new features or changes
   • dupl: from f665c8d to c99c5cf (extended detection)
   • funcorder: from 0.5.0 to 0.6.0 (new option: function)
   • goconst: add an option to ignore strings from tests
   • goconst: from 1.8.2 to 1.10.0 (extended detection)
   • gomodguard_v2: from 1.4.1 to 2.1.0 (major version with new configuration)
   • gosec: from 619ce21 to 2.26.1 (new checks: G124, G708, G709, G710)
   • govet: add inline analyzer
   • makezero: from 2.1.0 to 2.2.1 (support slice type aliases)
   • paralleltest: expose checkcleanup option
   • sloglint: from 0.11.1 to 0.12.0 (new options: allowed-keys, custom-funcs)
   • wsl_v5: from 5.6.0 to 5.8.0 (new option: cuddle-max-statements; new checks: after-decl, after-defer, after-expr, after-go, cuddle-group)
3. Linters bug fixes
   • forbidigo: from 2.3.0 to 2.3.1
   • godot: from 1.5.4 to 1.5.6
   • govet-modernize: from 0.43.0 to 0.44.0
   • ireturn: from 0.4.0 to 0.4.1
   • rowserrcheck: from 1.1.1 to c5f79b8
4. Misc.
   • Decrease cache entropy
   • Embed the JSON schema in the binary
   • Filter env vars when cloning the repository with the custom command

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[claude]

Claude finished @renovate[bot]'s task in 1m 2s —— View job

---

Code Review: golangci-lint v2.11.4 → v2.12.0

• Gather context (PR details, changed files)
• Review the CI workflow change
• Check for any issues with the new linter version
• Post review feedback

---

Summary

This is a routine Renovate dependency bump — a single-line change in .github/workflows/ci.yml:31, updating the version parameter from v2.11.4 to v2.12.0. The golangci-lint-action itself remains pinned to a specific commit SHA (1e7e51e...), which is correct security practice.

Impact Analysis

I cross-checked the v2.12.0 release notes against the project's enabled linters in .golangci.yml:

v2.12.0 change	Project impact
govet new inline analyzer	No impact — project only enables shadow under govet.enable; new analyzers aren't auto-enabled
gosec new checks (G124, G708–G710)	No impact — gosec is explicitly disabled with a comment
goconst extended detection	No impact — goconst not in enabled linters
dupl, funcorder, gomodguard_v2, makezero, paralleltest, sloglint, wsl_v5 updates	No impact — none are enabled
Bug fixes (forbidigo, godot, ireturn, rowserrcheck)	No impact — none are enabled

None of the linters enabled in this project (copyloopvar, dupword, errcheck, errname, errorlint, gocritic, govet[shadow], ineffassign, intrange, misspell, modernize, nilerr, perfsprint, staticcheck, unconvert, unused) have notable behavioral changes in v2.12.0.

Verdict

Safe to merge. This is a low-risk update with no expected lint regressions. Pending CI green, this can be automerged as configured.