Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the security group across 1 directory with 21 updates #2009

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump the security group across 1 directory with 21 updates #2009

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 22, 2025

Bumps the security group with 14 updates in the / directory:

Package From To
github.com/aws/aws-sdk-go-v2 1.36.2 1.36.3
github.com/aws/aws-sdk-go-v2/config 1.29.7 1.29.9
github.com/aws/aws-sdk-go-v2/feature/s3/manager 1.17.63 1.17.66
github.com/containers/image/v5 5.34.0 5.34.2
github.com/jedib0t/go-pretty/v6 6.6.6 6.6.7
github.com/ohler55/ojg 1.26.1 1.26.2
github.com/onsi/gomega 1.36.2 1.36.3
github.com/urfave/cli/v2 2.27.5 2.27.6
helm.sh/helm/v3 3.17.1 3.17.2
k8s.io/api 0.32.2 0.32.3
k8s.io/cli-runtime 0.32.2 0.32.3
k8s.io/kubectl 0.32.2 0.32.3
sigs.k8s.io/controller-runtime 0.20.2 0.20.3
k8s.io/apiextensions-apiserver 0.32.2 0.32.3

Updates github.com/aws/aws-sdk-go-v2 from 1.36.2 to 1.36.3

Commits

Updates github.com/aws/aws-sdk-go-v2/config from 1.29.7 to 1.29.9

Commits

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.17.60 to 1.17.62

Commits

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.17.63 to 1.17.66

Commits

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.77.1 to 1.78.2

Commits

Updates github.com/containers/image/v5 from 5.34.0 to 5.34.2

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.34.2

What's Changed

Full Changelog: containers/image@v5.34.1...v5.34.2

v5.34.1

What's Changed

Full Changelog: containers/image@v5.34.0...v5.34.1

Commits
  • 558f1f8 [release-5.34] Bump to c/image v5.34.2
  • 71bd224 [release-5.34] Bump c/storage to v1.57.2
  • 79a867d Merge pull request #2743 from TomSweeneyRedHat/dev/tsweeney/v5.34.1
  • b070a2a [release-5.34] Bump to v5.34.1
  • 4524721 Merge pull request #2725 from mtrmac/byopki-release-5.34
  • 5166838 policy.json BYOPKI signature verification API
  • See full diff in compare view

Updates github.com/jedib0t/go-pretty/v6 from 6.6.6 to 6.6.7

Release notes

Sourced from github.com/jedib0t/go-pretty/v6's releases.

v6.6.7

What's Changed

Full Changelog: jedib0t/go-pretty@v6.6.6...v6.6.7

Commits

Updates github.com/ohler55/ojg from 1.26.1 to 1.26.2

Release notes

Sourced from github.com/ohler55/ojg's releases.

v1.26.2

What's Changed

New Contributors

Full Changelog: ohler55/ojg@v1.26.1...v1.26.2

Changelog

Sourced from github.com/ohler55/ojg's changelog.

[1.26.2] - 2025-03-09

Fixed

  • Index on node get fixed.

Changed

  • Updated to go v1.24
Commits

Updates github.com/onsi/gomega from 1.36.2 to 1.36.3

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.36.3

1.36.3

Maintenance

  • bump all the things [adb8b49]
  • chore: replace interface{} with any [7613216]
  • Bump google.golang.org/protobuf from 1.36.1 to 1.36.5 (#822) [9fe5259]
  • remove spurious "toolchain" from go.mod (#819) [a0e85b9]
  • Bump golang.org/x/net from 0.33.0 to 0.35.0 (#823) [604a8b1]
  • Bump activesupport from 6.0.6.1 to 6.1.7.5 in /docs (#772) [36fbc84]
  • Bump github-pages from 231 to 232 in /docs (#778) [ced70d7]
  • Bump rexml from 3.2.6 to 3.3.9 in /docs (#788) [c8b4a07]
  • Bump github.com/onsi/ginkgo/v2 from 2.22.1 to 2.22.2 (#812) [06431b9]
  • Bump webrick from 1.8.1 to 1.9.1 in /docs (#800) [b55a92d]
  • Fix typos (#813) [a1d518b]
Changelog

Sourced from github.com/onsi/gomega's changelog.

1.36.3

Maintenance

  • bump all the things [adb8b49]
  • chore: replace interface{} with any [7613216]
  • Bump google.golang.org/protobuf from 1.36.1 to 1.36.5 (#822) [9fe5259]
  • remove spurious "toolchain" from go.mod (#819) [a0e85b9]
  • Bump golang.org/x/net from 0.33.0 to 0.35.0 (#823) [604a8b1]
  • Bump activesupport from 6.0.6.1 to 6.1.7.5 in /docs (#772) [36fbc84]
  • Bump github-pages from 231 to 232 in /docs (#778) [ced70d7]
  • Bump rexml from 3.2.6 to 3.3.9 in /docs (#788) [c8b4a07]
  • Bump github.com/onsi/ginkgo/v2 from 2.22.1 to 2.22.2 (#812) [06431b9]
  • Bump webrick from 1.8.1 to 1.9.1 in /docs (#800) [b55a92d]
  • Fix typos (#813) [a1d518b]
Commits
  • 2251143 v1.36.3
  • adb8b49 bump all the things
  • 7613216 chore: replace interface{} with any
  • 9fe5259 Bump google.golang.org/protobuf from 1.36.1 to 1.36.5 (#822)
  • a0e85b9 remove spurious "toolchain" from go.mod (#819)
  • 604a8b1 Bump golang.org/x/net from 0.33.0 to 0.35.0 (#823)
  • 36fbc84 Bump activesupport from 6.0.6.1 to 6.1.7.5 in /docs (#772)
  • ced70d7 Bump github-pages from 231 to 232 in /docs (#778)
  • c8b4a07 Bump rexml from 3.2.6 to 3.3.9 in /docs (#788)
  • 06431b9 Bump github.com/onsi/ginkgo/v2 from 2.22.1 to 2.22.2 (#812)
  • Additional commits viewable in compare view

Updates github.com/urfave/cli/v2 from 2.27.5 to 2.27.6

Release notes

Sourced from github.com/urfave/cli/v2's releases.

v2.27.6

What's Changed

Full Changelog: urfave/cli@v2.27.5...v2.27.6

Commits
  • 9d76d15 Merge pull request #2070 from dearchap/issue_2069
  • 4abc9c3 Fix:(issue_2069) Add sep for string slice
  • 3b17080 Merge pull request #2015 from urfave/update_docs_v2
  • 1e15e30 Update cli.yml
  • 50bdebf Merge pull request #1986 from urfave/v2-use-usage-template-in-subcommand-help
  • ba8fc3d Use usage template in subcommand help
  • See full diff in compare view

Updates golang.org/x/crypto from 0.33.0 to 0.36.0

Commits
  • 49bf5b8 go.mod: update golang.org/x dependencies
  • 24852b6 ssh: add decode support for banners
  • bbc689c ssh: use a more straightforward return value
  • 7292932 ssh: limit the size of the internal packet queue while waiting for KEX
  • f66f74b acme/autocert: check host policy before probing the cache
  • b0784b7 x509roots/fallback: drop obsolete build constraint
  • 911360c all: bump golang.org/x/crypto dependencies of asm generators
  • 89ff08d all: upgrade go directive to at least 1.23.0 [generated]
  • e47973b all: update certs for go1.24
  • See full diff in compare view

Updates golang.org/x/sync from 0.11.0 to 0.12.0

Commits
  • b637f27 errgroup: drop support for Go versions before 1.20
  • 960bf1f all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits
  • 04218fd go.mod: update golang.org/x dependencies
  • 208db03 all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Updates helm.sh/helm/v3 from 3.17.1 to 3.17.2

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.17.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.17.2. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.17.3 is the next patch release and will be on April 09, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025

Changelog

  • Updating to 0.37.0 for x/net cc0bbbd6d6276b83880042c1ecb34087e84d41eb (Matt Farina)
  • build(deps): bump the k8s-io group with 7 updates ecb7a74f19c23f76e7c18d1ce99f88bf1926a9ae (dependabot[bot])
Commits

Updates k8s.io/api from 0.32.2 to 0.32.3

Commits

Updates k8s.io/apimachinery from 0.32.2 to 0.32.3

Commits

Updates k8s.io/cli-runtime from 0.32.2 to 0.32.3

Commits

Updates k8s.io/client-go from 0.32.2 to 0.32.3

Commits

Updates k8s.io/kubectl from 0.32.2 to 0.32.3

Commits

Updates sigs.k8s.io/controller-runtime from 0.20.2 to 0.20.3

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.20.3

What's Changed

Full Changelog: kubernetes-sigs/controller-runtime@v0.20.2...v0.20.3

Commits
  • bd9c786 Merge pull request #3147 from alvaroaleman/rev
  • c1de925 Revert "[release-0.20] ✨ Expose all Go runtime metrics (#3100)"
  • e8b6292 Merge pull request #3145 from k8s-infra-cherrypick-robot/cherry-pick-3143-to-...
  • 39fefb9 bug: Fakeclient: Fix dataraces when writing to the scheme
  • 44bed88 Merge pull request #3131 from k8s-infra-cherrypick-robot/cherry-pick-3129-to-...
  • 772ce35 Export envtest.ReadCRDFiles
  • 22815fc Merge pull request #3127 from k8s-infra-cherrypick-robot/cherry-pick-3126-to-...
  • b015843 fix: cache should list out of global cache when present and necessary
  • See full diff in compare view

Updates k8s.io/apiextensions-apiserver from 0.32.2 to 0.32.3

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the security group across 1 directory with 21 updates
fdbee7f 
Bumps the security group with 14 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.36.2` | `1.36.3` |
| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.29.7` | `1.29.9` |
| [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.17.63` | `1.17.66` |
| [github.com/containers/image/v5](https://github.com/containers/image) | `5.34.0` | `5.34.2` |
| [github.com/jedib0t/go-pretty/v6](https://github.com/jedib0t/go-pretty) | `6.6.6` | `6.6.7` |
| [github.com/ohler55/ojg](https://github.com/ohler55/ojg) | `1.26.1` | `1.26.2` |
| [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.36.2` | `1.36.3` |
| [github.com/urfave/cli/v2](https://github.com/urfave/cli) | `2.27.5` | `2.27.6` |
| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.17.1` | `3.17.2` |
| [k8s.io/api](https://github.com/kubernetes/api) | `0.32.2` | `0.32.3` |
| [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime) | `0.32.2` | `0.32.3` |
| [k8s.io/kubectl](https://github.com/kubernetes/kubectl) | `0.32.2` | `0.32.3` |
| [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.20.2` | `0.20.3` |
| [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver) | `0.32.2` | `0.32.3` |



Updates `github.com/aws/aws-sdk-go-v2` from 1.36.2 to 1.36.3
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@v1.36.2...v1.36.3)

Updates `github.com/aws/aws-sdk-go-v2/config` from 1.29.7 to 1.29.9
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@config/v1.29.7...config/v1.29.9)

Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.17.60 to 1.17.62
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@credentials/v1.17.60...credentials/v1.17.62)

Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.17.63 to 1.17.66
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@feature/s3/manager/v1.17.63...feature/s3/manager/v1.17.66)

Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.77.1 to 1.78.2
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.77.1...service/s3/v1.78.2)

Updates `github.com/containers/image/v5` from 5.34.0 to 5.34.2
- [Release notes](https://github.com/containers/image/releases)
- [Commits](containers/image@v5.34.0...v5.34.2)

Updates `github.com/jedib0t/go-pretty/v6` from 6.6.6 to 6.6.7
- [Release notes](https://github.com/jedib0t/go-pretty/releases)
- [Commits](jedib0t/go-pretty@v6.6.6...v6.6.7)

Updates `github.com/ohler55/ojg` from 1.26.1 to 1.26.2
- [Release notes](https://github.com/ohler55/ojg/releases)
- [Changelog](https://github.com/ohler55/ojg/blob/develop/CHANGELOG.md)
- [Commits](ohler55/ojg@v1.26.1...v1.26.2)

Updates `github.com/onsi/gomega` from 1.36.2 to 1.36.3
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.36.2...v1.36.3)

Updates `github.com/urfave/cli/v2` from 2.27.5 to 2.27.6
- [Release notes](https://github.com/urfave/cli/releases)
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md)
- [Commits](urfave/cli@v2.27.5...v2.27.6)

Updates `golang.org/x/crypto` from 0.33.0 to 0.36.0
- [Commits](golang/crypto@v0.33.0...v0.36.0)

Updates `golang.org/x/sync` from 0.11.0 to 0.12.0
- [Commits](golang/sync@v0.11.0...v0.12.0)

Updates `golang.org/x/term` from 0.29.0 to 0.30.0
- [Commits](golang/term@v0.29.0...v0.30.0)

Updates `helm.sh/helm/v3` from 3.17.1 to 3.17.2
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.17.1...v3.17.2)

Updates `k8s.io/api` from 0.32.2 to 0.32.3
- [Commits](kubernetes/api@v0.32.2...v0.32.3)

Updates `k8s.io/apimachinery` from 0.32.2 to 0.32.3
- [Commits](kubernetes/apimachinery@v0.32.2...v0.32.3)

Updates `k8s.io/cli-runtime` from 0.32.2 to 0.32.3
- [Commits](kubernetes/cli-runtime@v0.32.2...v0.32.3)

Updates `k8s.io/client-go` from 0.32.2 to 0.32.3
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.32.2...v0.32.3)

Updates `k8s.io/kubectl` from 0.32.2 to 0.32.3
- [Commits](kubernetes/kubectl@v0.32.2...v0.32.3)

Updates `sigs.k8s.io/controller-runtime` from 0.20.2 to 0.20.3
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](kubernetes-sigs/controller-runtime@v0.20.2...v0.20.3)

Updates `k8s.io/apiextensions-apiserver` from 0.32.2 to 0.32.3
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases)
- [Commits](kubernetes/apiextensions-apiserver@v0.32.2...v0.32.3)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/aws/aws-sdk-go-v2/config
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/aws/aws-sdk-go-v2/credentials
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: security
- dependency-name: github.com/containers/image/v5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/jedib0t/go-pretty/v6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/ohler55/ojg
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: github.com/urfave/cli/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: security
- dependency-name: golang.org/x/sync
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: security
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: security
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: k8s.io/api
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: k8s.io/cli-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: k8s.io/client-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: k8s.io/kubectl
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
- dependency-name: k8s.io/apiextensions-apiserver
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: security
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot mentioned this pull request Mar 22, 2025
Closed
@github-actions GitHub Actions
Copy link

This PR has been released (on staging) and is available for download with a embedded-cluster-smoke-test-staging-app license ID.

Online Installer:

curl "https://staging.replicated.app/embedded/embedded-cluster-smoke-test-staging-app/ci/appver-dev-fdbee7f" -H "Authorization: $EC_SMOKE_TEST_LICENSE_ID" -o embedded-cluster-smoke-test-staging-app-ci.tgz

Airgap Installer (may take a few minutes before the airgap bundle is built):

curl "https://staging.replicated.app/embedded/embedded-cluster-smoke-test-staging-app/ci-airgap/appver-dev-fdbee7f?airgap=true" -H "Authorization: $EC_SMOKE_TEST_LICENSE_ID" -o embedded-cluster-smoke-test-staging-app-ci.tgz

Happy debugging!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies go type::chore
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants