Update Go and package dependencies

Go updated to 1.18

Packages updated to the lastes versions for each.

Upgrading `github.com/prometheus/common` encountered the breaking change in
which removed the Log package (prometheus/common#306),
so the logging code has also been updated to use promlog instead.

Mitigates security issues:

GJSON before 1.6.4 allows attackers to cause a denial of service via crafted JSON.
https://nvd.nist.gov/vuln/detail/CVE-2020-35380

GJSON <1.6.5 allows attackers to cause a denial of service (remote) via crafted JSON.
https://nvd.nist.gov/vuln/detail/CVE-2020-36066

GJSON <=v1.6.5 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a crafted GET call.
https://nvd.nist.gov/vuln/detail/CVE-2020-36067

GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack.
https://nvd.nist.gov/vuln/detail/CVE-2021-42836

The x/text package before 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory. An attacker could provide a single byte to a UTF16 decoder instantiated with UseBOM or ExpectBOM to trigger an infinite loop if the String function on the Decoder is called, or the Decoder is passed to golang.org/x/text/transform.String.
https://nvd.nist.gov/vuln/detail/CVE-2020-14040

go.mod

@@ -1,17 +1,39 @@
 module github.com/mintel/gcp-quota-exporter
 
-go 1.12
+go 1.18
 
 require (
-	cloud.google.com/go v0.34.0
-	github.com/PuerkitoBio/rehttp v1.0.0
-	github.com/aybabtme/iocontrol v0.0.0-20150809002002-ad15bcfc95a0 // indirect
-	github.com/benbjohnson/clock v1.0.2 // indirect
-	github.com/dustin/go-humanize v1.0.0 // indirect
-	github.com/prometheus/client_golang v0.9.3
-	github.com/prometheus/common v0.4.1
-	github.com/tidwall/gjson v1.6.0
-	golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421
-	google.golang.org/api v0.5.0
+	cloud.google.com/go/compute v1.6.1
+	github.com/PuerkitoBio/rehttp v1.1.0
+	github.com/go-kit/log v0.2.0
+	github.com/prometheus/client_golang v1.12.2
+	github.com/prometheus/common v0.34.0
+	github.com/tidwall/gjson v1.14.0
+	golang.org/x/oauth2 v0.0.0-20220524215830-622c5d57e401
+	google.golang.org/api v0.81.0
 	gopkg.in/alecthomas/kingpin.v2 v2.2.6
 )
+
+require (
+	github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 // indirect
+	github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d // indirect
+	github.com/beorn7/perks v1.0.1 // indirect
+	github.com/cespare/xxhash/v2 v2.1.2 // indirect
+	github.com/go-logfmt/logfmt v0.5.1 // indirect
+	github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e // indirect
+	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/googleapis/gax-go/v2 v2.4.0 // indirect
+	github.com/matttproud/golang_protobuf_extensions v1.0.1 // indirect
+	github.com/prometheus/client_model v0.2.0 // indirect
+	github.com/prometheus/procfs v0.7.3 // indirect
+	github.com/tidwall/match v1.1.1 // indirect
+	github.com/tidwall/pretty v1.2.0 // indirect
+	go.opencensus.io v0.23.0 // indirect
+	golang.org/x/net v0.0.0-20220520000938-2e3eb7b945c2 // indirect
+	golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a // indirect
+	golang.org/x/text v0.3.7 // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/genproto v0.0.0-20220523171625-347a074981d8 // indirect
+	google.golang.org/grpc v1.46.2 // indirect
+	google.golang.org/protobuf v1.28.0 // indirect
+)