Bump github.com/golang-jwt/jwt/v4 to v4.5.2

Hannes Hörlrequested to merge
hhoerl/38690-bump-golang-jwt into main

⚠️NOTE THAT THIS FORK IS MAINTAINED FOR CRITICAL BUG FIXES AFFECTING RUNNING COSTS ONLY. NO OTHER CONTRIBUTIONS WILL BE ACCEPTED. ⚠️

What critical bug this MR is fixing?

CVE-2025-30204 / https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp

How does this change help reduce cost of usage? What scale of cost reduction is it?

-

In what scenarios is this change usable with GitLab Runner's docker+machine executor?

-

Merge request reports