```release-note:security
security: bump golang.org/x/crypto to fix GO-2025-4134 (CVE-2025-58181 / GHSA-j5w8-q4qc-rx2x), update related golang.org/x/* dependencies, and upgrade Go toolchain pin to 1.25.8.
```
