fix(deps): update module github.com/aquasecurity/trivy to v0.70.0 (9.4)

[elastic-renovate-prod]

This PR contains the following updates:

Package	Type	Update	Change
github.com/aquasecurity/trivy	require	minor	v0.66.0 -> v0.70.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Configuration

📅 Schedule: Branch creation - "* 1 * * 1-5" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[elastic-renovate-prod]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 17 additional dependencies were updated

Details:

Package	Change
github.com/aquasecurity/trivy-db	v0.0.0-20250731052236-c7c831e2254d -> v0.0.0-20251222105351-a833f47f8f0d
github.com/open-policy-agent/opa	v1.8.0 -> v1.15.2
k8s.io/api	v0.34.3 -> v0.35.3
k8s.io/apimachinery	v0.34.3 -> v0.35.3
k8s.io/client-go	v0.34.3 -> v0.35.1
github.com/aquasecurity/trivy-checks	v1.11.3-0.20250604022615-9a7efa7c9169 -> v1.12.2-0.20251219190323-79d27547baf5
github.com/containerd/containerd	v1.7.27 -> v1.7.30
github.com/hashicorp/go-getter	v1.7.9 -> v1.8.6
modernc.org/libc	v1.66.3 -> v1.72.0
github.com/google/go-containerregistry	v0.20.7 -> v0.21.2
helm.sh/helm/v3	v3.18.6 -> v3.20.2
k8s.io/apiextensions-apiserver	v0.33.3 -> v0.35.1
k8s.io/apiserver	v0.33.3 -> v0.35.1
k8s.io/cli-runtime	v0.33.3 -> v0.35.1
k8s.io/component-base	v0.33.3 -> v0.35.1
k8s.io/kubectl	v0.33.3 -> v0.35.1
k8s.io/utils	v0.0.0-20250820121507-0af2bda4dd1d -> v0.0.0-20251002143259-bc988d571ff4

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b renovate/9.4-trivy upstream/renovate/9.4-trivy
git merge upstream/9.4
git push upstream renovate/9.4-trivy

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b renovate/9.4-trivy upstream/renovate/9.4-trivy
git merge upstream/9.4
git push upstream renovate/9.4-trivy

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b renovate/9.4-trivy upstream/renovate/9.4-trivy
git merge upstream/9.4
git push upstream renovate/9.4-trivy

[jeniawhite]

Closing: trivy v0.70.0 imports encoding/json/v2 and encoding/json/jsontext which are only available in Go 1.27+. The current hermit-pinned Go version is 1.26.2. This upgrade requires first upgrading Go to 1.27+.