Bump the prod-dependencies group with 11 updates #1089

dependabot · 2023-10-30T22:14:37Z

Bumps the prod-dependencies group with 11 updates:

Package	From	To
github.com/docker/cli	`24.0.6+incompatible`	`24.0.7+incompatible`
github.com/go-logr/logr	`1.2.4`	`1.3.0`
github.com/google/go-containerregistry	`0.15.2`	`0.16.1`
github.com/onsi/ginkgo/v2	`2.12.1`	`2.13.0`
github.com/onsi/gomega	`1.27.10`	`1.29.0`
github.com/operator-framework/api	`0.17.7`	`0.18.0`
github.com/spf13/viper	`1.16.0`	`1.17.0`
k8s.io/api	`0.27.7`	`0.28.3`
k8s.io/client-go	`0.27.7`	`0.28.3`
sigs.k8s.io/controller-runtime	`0.15.0`	`0.16.3`
sigs.k8s.io/yaml	`1.3.0`	`1.4.0`

Updates github.com/docker/cli from 24.0.6+incompatible to 24.0.7+incompatible

Commits

afdd53b Merge pull request #4629 from thaJeztah/24.0_update_engine
12c309f Merge pull request #4628 from thaJeztah/24.0_backport_bump_compress
f427198 vendor: github.com/docker/docker v24.0.6
1777018 vendor: github.com/klauspost/compress v1.17.2
cde0441 vendor: github.com/klauspost/compress v1.16.5
d9f94d5 Merge pull request #4618 from thaJeztah/24.0_backport_cli-issue-502
54d83fb Add docker ps status descriptions
30a185e Merge pull request #4609 from thaJeztah/24.0_backport_x_net
d43c48d vendor: golang.org/x/net v0.17.0
1919679 vendor: golang.org/x/crypto v0.14.0
Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.2.4 to 1.3.0

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.3.0

This release adds support for slog in a new, self-contained logr/slogr package. Implementers of a logr.LogSink are encouraged, but not required, to extend their implementation to improve the quality of log output coming from a slog API call.

Breaking change: the call depth for LogSink.Enabled when called via Logger.Enabled was fixed to be the same as for other call paths. Implementers of a LogSink who have worked around this bug will need to remove their workarounds.

Security best practices were improved. Only Go versions >= 1.18 are supported by this release.

What's Changed

Fix golangci-lint fails by @thockin in go-logr/logr#173

Add minimal permissions to workflows by @pnacht in go-logr/logr#177

Add a security policy by @pnacht in go-logr/logr#178

Update security email by @thockin in go-logr/logr#181

docs: explain relationship between Logger{} and Discard() by @pohly in go-logr/logr#182

Add the OpenSSF Scorecard workflow by @pnacht in go-logr/logr#186

README: show of OpenSSF Scorecard badge by @pohly in go-logr/logr#187

Hash-pin workflow Actions by @pnacht in go-logr/logr#189

Bump go versions to 1.18+ by @thockin in go-logr/logr#203

slogr: add glue code for logging to slog.Handler and with slog.Logger by @pohly in go-logr/logr#205

slogr: restore original backend when converting back and forth by @pohly in go-logr/logr#210

slogr: add SlogSink by @pohly in go-logr/logr#211

Use same call depth for Enabled, Info, Error by @thockin in go-logr/logr#218

test: eliminate helper func by @thockin in go-logr/logr#219

docs: interoperability with slog by @pohly in go-logr/logr#222

build(deps): bump actions/setup-go from 3.5.0 to 4.0.1 by @dependabot in go-logr/logr#190

build(deps): bump github/codeql-action from 2.20.1 to 2.20.3 by @dependabot in go-logr/logr#191

build(deps): bump github/codeql-action from 2.20.3 to 2.20.4 by @dependabot in go-logr/logr#192

build(deps): bump github/codeql-action from 2.20.4 to 2.21.0 by @dependabot in go-logr/logr#193

build(deps): bump github/codeql-action from 2.21.0 to 2.21.2 by @dependabot in go-logr/logr#194

build(deps): bump github/codeql-action from 2.21.2 to 2.21.3 by @dependabot in go-logr/logr#207

build(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by @dependabot in go-logr/logr#206

build(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 by @dependabot in go-logr/logr#209

build(deps): bump github/codeql-action from 2.21.3 to 2.21.4 by @dependabot in go-logr/logr#208

build(deps): bump actions/checkout from 3.5.3 to 3.6.0 by @dependabot in go-logr/logr#214

build(deps): bump github/codeql-action from 2.21.4 to 2.21.5 by @dependabot in go-logr/logr#217

build(deps): bump actions/checkout from 3.6.0 to 4.0.0 by @dependabot in go-logr/logr#220

build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @dependabot in go-logr/logr#221

build(deps): bump github/codeql-action from 2.21.5 to 2.21.7 by @dependabot in go-logr/logr#223

build(deps): bump github/codeql-action from 2.21.7 to 2.21.8 by @dependabot in go-logr/logr#224

build(deps): bump actions/checkout from 4.0.0 to 4.1.0 by @dependabot in go-logr/logr#225

build(deps): bump github/codeql-action from 2.21.8 to 2.21.9 by @dependabot in go-logr/logr#226

build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 by @dependabot in go-logr/logr#227

build(deps): bump github/codeql-action from 2.21.9 to 2.22.0 by @dependabot in go-logr/logr#228

build(deps): bump github/codeql-action from 2.22.0 to 2.22.3 by @dependabot in go-logr/logr#229

build(deps): bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in go-logr/logr#231

build(deps): bump github/codeql-action from 2.22.3 to 2.22.4 by @dependabot in go-logr/logr#230

New Contributors

... (truncated)

Commits

8adefbe docs: interoperability with slog
ebabbb9 build(deps): bump github/codeql-action from 2.22.3 to 2.22.4
9c361f0 build(deps): bump actions/checkout from 4.1.0 to 4.1.1
d9b2b78 Merge pull request #229 from go-logr/dependabot/github_actions/github/codeql-...
91cec29 build(deps): bump github/codeql-action from 2.22.0 to 2.22.3
2ea8628 Merge pull request #228 from go-logr/dependabot/github_actions/github/codeql-...
37a4f55 Merge pull request #227 from go-logr/dependabot/github_actions/ossf/scorecard...
ecf310c build(deps): bump github/codeql-action from 2.21.9 to 2.22.0
d73e05e build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
1d1c415 Merge pull request #226 from go-logr/dependabot/github_actions/github/codeql-...
Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.15.2 to 0.16.1

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.16.1

Release is broken due to goreleaser error, 0.16.1 has the fix

What's Changed

bump deps using ./hack/bump-deps.sh by @imjasonh in google/go-containerregistry#1702

Allow crane to export schema 1 images by @jonjohnsonjr in google/go-containerregistry#1704

fixed a goroutine leak by @ktarplee in google/go-containerregistry#1705

retry HTTP 522 errors by default by @imjasonh in google/go-containerregistry#1707

Limit size of manifest by @AdamKorcz in google/go-containerregistry#1711

Add crane auth token by @jonjohnsonjr in google/go-containerregistry#1709

Bump codecov/codecov-action from 3.1.3 to 3.1.4 by @dependabot in google/go-containerregistry#1710

Pass scopes through crane auth token by @jonjohnsonjr in google/go-containerregistry#1713

fix: add bounds checking to addendum layer mutations to prevent panic by @aaron-prindle in google/go-containerregistry#1715

Surface better error messages in crane index by @jonjohnsonjr in google/go-containerregistry#1722

crane: add missing name option in crane index commands by @HubertZhang in google/go-containerregistry#1723

crane: Respect cmd.OutOrStdout by @kyleconroy in google/go-containerregistry#1728

Make ErrSchema1 checkable via errors.Is() by @Laitr0n in google/go-containerregistry#1721

Don't load into daemon if the image already exists by @jonjohnsonjr in google/go-containerregistry#1724

add --blobs-to-disk to 'crane registry serve' by @imjasonh in google/go-containerregistry#1731

Correct crane registry help text by @jonjohnsonjr in google/go-containerregistry#1732

Allow concurrent blob Sets, use RWMutex by @mattmoor in google/go-containerregistry#1733

Use RWLock, limit scope of locking, write digest first by @mattmoor in google/go-containerregistry#1734

Let the filesystem handle atomicity by @mattmoor in google/go-containerregistry#1735

Don't try cross-origin mounting against dockerhub by @jonjohnsonjr in google/go-containerregistry#1743

Drop localhost to support crane registry serve in a container by @mattmoor in google/go-containerregistry#1746

Return OCI Index content-type for referrers response by @jdolitsky in google/go-containerregistry#1762

New Contributors

@AdamKorcz made their first contribution in google/go-containerregistry#1711

@HubertZhang made their first contribution in google/go-containerregistry#1723

@kyleconroy made their first contribution in google/go-containerregistry#1728

@Laitr0n made their first contribution in google/go-containerregistry#1721

Full Changelog: google/go-containerregistry@v0.15.2...v0.16.1

Container Images

https://gcr.io/go-containerregistry/crane:v0.16.1 https://gcr.io/go-containerregistry/gcrane:v0.16.1

For example:
docker pull gcr.io/go-containerregistry/crane:v0.16.1
docker pull gcr.io/go-containerregistry/gcrane:v0.16.1
v0.16.0

Release is broken due to goreleaser error, 0.16.1 has the fix

Commits

a54d642 fix: pin to goreleaser v1.18 to unblock release (#1763)
ea19b57 Return OCI Index content-type for referrers response (#1762)
b850480 Drop localhost to support crane registry serve in a container (#1746)
fe268b7 Don't try cross-origin mounting against dockerhub (#1743)
2472cbb Let the filesystem handle atomicity (#1735)
db818dc Use RWLock, limit scope of locking, write digest first (#1734)
44a6e2e Allow concurrent blob Sets, use RWMutex (#1733)
9010ce1 Correct crane registry help text (#1732)
03ad2ac add --blobs-to-disk to 'crane registry serve' (#1731)
4e4b03a Don't load into daemon if the image already exists (#1724)
Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.13.0

2.13.0

Features

Add PreviewSpect() to enable programmatic preview access to the suite report (fixes #1225)

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.13.0

Features

Add PreviewSpect() to enable programmatic preview access to the suite report (fixes #1225)

Commits

52065f1 v2.13.0
2c4ed32 remove errant fmt.Println from integration suite
6c84b35 Preview now works alongside run and in parallel
e1d0b38 Add PreviewSpecs() to enable programmatic preview access to the suite report
See full diff in compare view

Updates github.com/onsi/gomega from 1.27.10 to 1.29.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.29.0

1.29.0

Features

MatchError can now take an optional func(error) bool + description [2b39142]

v1.28.1

1.28.1

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0 [635d196]

Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 [14f8859]

Bump golang.org/x/net from 0.14.0 to 0.17.0 [d8a6508]

#703 doc(matchers): HaveEach() doc comment updated [2705bdb]

Minor typos (#699) [375648c]

v1.28.0

1.28.0

Features

Add VerifyHost handler to ghttp (#698) [0b03b36]

Fixes

Read Body for Newer Responses in HaveHTTPBodyMatcher (#686) [18d6673]

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 (#693) [55a33f3]

Typo in matchers.go (#691) [de68e8f]

Bump commonmarker from 0.23.9 to 0.23.10 in /docs (#690) [ab17f5e]

chore: update test matrix for Go 1.21 (#689) [5069017]

Bump golang.org/x/net from 0.12.0 to 0.14.0 (#688) [babe25f]

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.29.0

Features

MatchError can now take an optional func(error) bool + description [2b39142]

1.28.1

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0 [635d196]

Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 [14f8859]

Bump golang.org/x/net from 0.14.0 to 0.17.0 [d8a6508]

#703 doc(matchers): HaveEach() doc comment updated [2705bdb]

Minor typos (#699) [375648c]

1.28.0

Features

Add VerifyHost handler to ghttp (#698) [0b03b36]

Fixes

Read Body for Newer Responses in HaveHTTPBodyMatcher (#686) [18d6673]

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 (#693) [55a33f3]

Typo in matchers.go (#691) [de68e8f]

Bump commonmarker from 0.23.9 to 0.23.10 in /docs (#690) [ab17f5e]

chore: update test matrix for Go 1.21 (#689) [5069017]

Bump golang.org/x/net from 0.12.0 to 0.14.0 (#688) [babe25f]

Commits

b94b195 v1.29.0
2b39142 MatchError can now take an optional func(error) bool + description
ab6045c v1.28.1
635d196 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0
14f8859 Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
d8a6508 Bump golang.org/x/net from 0.14.0 to 0.17.0
2705bdb #703 doc(matchers): HaveEach() doc comment updated
375648c Minor typos (#699)
85681d4 v1.28.0
0b03b36 Add VerifyHost handler to ghttp (#698)
Additional commits viewable in compare view

Updates github.com/operator-framework/api from 0.17.7 to 0.18.0

Release notes

Sourced from github.com/operator-framework/api's releases.

v0.18.0

What's Changed

OCPBUGS-17157: operators/v1alpha1: expose CSV copied logic by @stevekuznetsov in operator-framework/api#289

OCPBUGS-17157: CatalogSource: add configurations for gRPC server memory footprint by @stevekuznetsov in operator-framework/api#288

[chore] Update github.com/emicklei/go-restful/v3 to v3.10.2 by @tmshort in operator-framework/api#290

OCPBUGS-17791: CatalogSource: update GoDoc by @stevekuznetsov in operator-framework/api#291

catalogsource: allow configuring gRPC server to use well-known opm by @stevekuznetsov in operator-framework/api#293

catalogsource: update dir name by @stevekuznetsov in operator-framework/api#294

CatalogSource: require fields when extracting FBC by @stevekuznetsov in operator-framework/api#295

Add config for packageserver wakeup interval by @tmshort in operator-framework/api#298

build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 by @dependabot in operator-framework/api#299

Bump k8s dependencies by @awgreene in operator-framework/api#301

New Contributors

@stevekuznetsov made their first contribution in operator-framework/api#289

@tmshort made their first contribution in operator-framework/api#290

Full Changelog: operator-framework/api@v0.17.7...v0.18.0

Commits

071829b Bump k8s dependencies to v0.27.7
d52e6b2 build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 (#299)
7961b02 Add config for packageserver wakeup interval (#298)
28c6773 CatalogSource: require fields when extracting FBC (#295)
bb012a3 catalogsource: update dir name (#294)
039d150 catalogsource: allow configuring gRPC server to use well-known opm (#293)
44b1863 CatalogSource: update GoDoc (#291)
775e6c6 [chore] Update github.com/emicklei/go-restful/v3 to v3.10.2 (#290)
704ae94 CatalogSource: add configurations for gRPC server memory footprint (#288)
409ec70 operators/v1alpha1: expose CSV copied logic (#289)
See full diff in compare view

Updates github.com/spf13/viper from 1.16.0 to 1.17.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.17.0

Major changes

Highlighting some of the changes for better visibility.

Please share your feedback in the Discussion forum. Thanks! ❤️

Minimum Go version: 1.19

Viper now requires Go 1.19

This change ensures we can stay up to date with modern practices and dependencies.

log/slog support [BREAKING]

Viper v1.11.0 added an experimental Logger interface to allow custom implementations (besides jwalterweatherman).

In addition, it also exposed an experimental WithLogger function allowing to set a custom logger.

This release deprecates that interface in favor of log/slog released in Go 1.21.

[!WARNING] WithLogger accepts an *slog.Logger from now on.

To preserve backwards compatibility with older Go versions, prior to Go 1.21 Viper accepts a *golang.org/x/exp/slog.Logger.

The experimental flag is removed.

New finder implementation [BREAKING]

As of this release, Viper uses a new library to look for files, called locafero.

The new library is better covered by tests and has been built from scratch as a general purpose file finder library.

The implementation is experimental and is hidden behind a finder build tag.

[!WARNING] The io/fs based implementation (that used to be hidden behind a finder build tag) has been removed.

What's Changed

Exciting New Features 🎉

Add NATS support by @hooksie1 in spf13/viper#1590

Add slog support by @sagikazarmark in spf13/viper#1627

Enhancements 🚀

chore: add local development environment using nix by @sagikazarmark in spf13/viper#1572

feat: add func GetEnvPrefix by @baruchiro in spf13/viper#1565

Improve dev env by @sagikazarmark in spf13/viper#1575

fix: code optimization by @testwill in spf13/viper#1557

test: remove not needed testutil.Setenv by @alexandear in spf13/viper#1610

new finder library based on afero by @sagikazarmark in spf13/viper#1625

... (truncated)

Commits

f62f86a refactor: make use of strings.Cut
94632fa chore: Use pip3 explicitly to install yamllint
3f6cadc chore: Fix copy-paste error for yamllint target
287507c docs: add set subset KV example
f1cb226 chore(deps): update crypt
c292b55 test: refactor asserts
3d006fe refactor: replace interface{} with any
8a6dc5d build(deps): bump github/codeql-action from 2.21.8 to 2.21.9
96c5c00 chore: remove deprecated build tags
44911d2 build(deps): bump github/codeql-action from 2.21.7 to 2.21.8
Additional commits viewable in compare view

Updates k8s.io/api from 0.27.7 to 0.28.3

Commits

59c6b15 Update dependencies to v0.28.3 tag
579c82b Merge pull request #121128 from MadhavJivrajani/bump-x-net-128
f72d479 .: bump golang.org/x/net to v0.17.0
546e425 Merge pull request #120329liggitt/automated-cherry-pick-of-#120327
7315e44 Revert to json-patch 4.12.0
962dfd4 Merge pull request #120208mimowo/automated-cherry-pick-of-#120204
37b4561 Mark Job onPodConditions as optional in pod failure policy
ac59949 Merge remote-tracking branch 'origin/master' into release-1.28
e32cee6 Merge pull request #119876 from marosset/revert-118895
b582191 Revert "Merge pull request #118895 from RyanAoh/kep-1860"
Additional commits viewable in compare view

Updates k8s.io/client-go from 0.27.7 to 0.28.3

Commits

9d454d6 Update dependencies to v0.28.3 tag
fb42861 Merge pull request #121128 from MadhavJivrajani/bump-x-net-128
a013666 .: bump golang.org/x/net to v0.17.0
745513a Merge pull request #120359Jefftree/automated-cherry-pick-of-#119870
29a840d Merge pull request #120329liggitt/automated-cherry-pick-of-#120327
805102c Revert to json-patch 4.12.0
fe76ecc Merge remote-tracking branch 'origin/master' into release-1.28
a715d8b Merge pull request #119876 from marosset/revert-118895
3163e5a Revert "Merge pull request #118895 from RyanAoh/kep-1860"
43a6d93 Fallback to legacy discovery on a wider range of conditions in aggregator
Additional commits viewable in compare view

Updates sigs.k8s.io/controller-runtime from 0.15.0 to 0.16.3

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.16.3

What's Changed

🐛Update dependency go-restful to 3.11.0 by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2516

🐛 Correctly identify if patch call was made on status by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2515

🐛 Handle unstructured status update with fake client by @troy0820 in kubernetes-sigs/controller-runtime#2523

✨ Cache: Allow defining options that apply to all namespaces that themselves have no explicit config by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2539

🐛 bump golang.org/x/net to v0.17.0 by @joelanford in kubernetes-sigs/controller-runtime#2541

🌱 Bump k8s to 1.28.3 by @varshaprasad96 in kubernetes-sigs/controller-runtime#2552

Full Changelog: kubernetes-sigs/controller-runtime@v0.16.2...v0.16.3

v0.16.2

What's Changed

🐛 Add corev1, coordinationv1 scheme for leader election when LeaderElection manager option is true by @troy0820 in kubernetes-sigs/controller-runtime#2466

🐛 Use http client from leaderElectionConfig by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2468

🐛 Default namespace only for namespaced object by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2482

🐛 Do not update anything but status when using subresource client by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2483

🐛 Fix status subresource getting updated on Update when it is empty by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2485

🐛 Fix returning object after status update by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2490

🐛 Return NoResourceMatchError when appropriate for backwards compatibility. by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2492

Full Changelog: kubernetes-sigs/controller-runtime@v0.16.1...v0.16.2

v0.16.1

What's Changed

🐛 Refactor tests to drop hard otel dependency by @howardjohn in kubernetes-sigs/controller-runtime#2465

🌱 Bump k8s.io/apiserver from 0.28.0 to 0.28.1 by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2459

Full Changelog: kubernetes-sigs/controller-runtime@v0.16.0...v0.16.1

v0.16.0

Highlights

Granular cache configuration (#2421)

New cache option to fail on missing informer on cache reads (#2406)

Secure metrics serving (#2407)

Upgrade to Kubernetes 1.28 libraries (#2393, #2405, #2449)

Changes since v0.15

⚠️ Breaking Changes

Bump k8s.io/* dependencies to v1.28.0 by @sbueringer (#2393, #2405, #2449)

Allow configuring more granular cache filtering by @alvaroaleman (#2421)

Introduce Metrics Options & secure metrics serving by @sbueringer (#2407)

Return an error if the continue list option is set for the cache reader by @shuheiktgw (#2439)

Remove deprecated manager, webhook and cluster options by @sbueringer (#2422)

Remove deprecated MultiNamespacedCacheBuilder, NewFakeClientWithScheme, controllerutil.Object, envtest.Environment.KubeAPIServerFlags & zap.Options.DestWritter by @sbueringer (#2423)

controller builder: return error when multiple reconcilers are set by @sbueringer (#2415)

... (truncated)

Commits

5f8d96b Merge pull request #2552 from varshaprasad96/bump/k8s-1.28.3
5572514 [fix]: Bump k8s to 1.28.3
7c1e2d9 Merge pull request #2541 from joelanford/0.16-golang-x-net
5201923 🐛 bump golang.org/x/net to v0.17.0
8b5b1a2 Merge pull request #2539 from k8s-infra-cherrypick-robot/cherry-pick-2528-to-...
b9c691d sparkles: Cache: Allow defining options that apply to all namespaces that the...
8361246 Merge pull request #2523 from troy0820/troy0820/cherry-pick-to-release-0.16
f7b7450 🐛 Handle unstructured status update with fake client (#2495)
2d6b699 [release-0.16] 🐛 Correctly identify if patch call was made on status (#2515)
da31104 Merge pull request #2516 from k8s-infra-cherrypick-robot/cherry-pick-2507-to-...
Additional commits viewable in compare view

Updates sigs.k8s.io/yaml from 1.3.0 to 1.4.0

Release notes

Sourced from sigs.k8s.io/yaml's releases.

v1.4.0

Adds a goyaml.v2 subpackage containing a fork of gopkg.in/yaml.v2 at v2.4.0

Adds a goyaml.v3 subpackage containing a fork of gopkg.in/yaml.v3 at v3.0.1

Adds an Encoder#CompactSeqIndent() encoder option to sigs.k8.io/goyaml.v3 to allow opting into indentation compatible with gopkg.in/yaml.v2

Commits

c3772b5 Merge pull request #97 from liggitt/owners
604031b Update owners
eead467 Merge pull request #76 from natasha41575/go-yaml-fork
f2c0229 add test demonstrating consistency between yaml.v2 and yaml.v3
20d25fa update LICENSE, owners, and readmes
a7b5665 exclude forked libs from golint
b6d8b45 fix leading newline issue
330e1e5 make sequence style configurable
70ebea7 change import paths to forked yaml libs
b96582b fork go-yaml v2 and v3
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

openshift-ci · 2023-10-30T22:14:50Z

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a redhat-openshift-ecosystem member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

openshift-ci · 2023-10-30T22:15:07Z

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign bcrochet for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

dcibot · 2023-10-30T22:42:53Z

FAILURE https://www.distributed-ci.io/jobs/4b8e7cd7-af9f-4bee-9c54-1f0d67d68ec9/jobStates
from Bump the prod-dependencies group with 11 updates #1089

dcibot · 2023-10-31T16:38:03Z

FAILURE https://www.distributed-ci.io/jobs/bf76a453-4ea7-4b7a-a9ed-74de8ef6bec7/jobStates
from Bump the prod-dependencies group with 11 updates #1089

Bumps the prod-dependencies group with 11 updates: | Package | From | To | | --- | --- | --- | | [github.com/docker/cli](https://github.com/docker/cli) | `24.0.6+incompatible` | `24.0.7+incompatible` | | [github.com/go-logr/logr](https://github.com/go-logr/logr) | `1.2.4` | `1.3.0` | | [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.15.2` | `0.16.1` | | [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) | `2.12.1` | `2.13.0` | | [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.27.10` | `1.29.0` | | [github.com/operator-framework/api](https://github.com/operator-framework/api) | `0.17.7` | `0.18.0` | | [github.com/spf13/viper](https://github.com/spf13/viper) | `1.16.0` | `1.17.0` | | [k8s.io/api](https://github.com/kubernetes/api) | `0.27.7` | `0.28.3` | | [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.27.7` | `0.28.3` | | [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.15.0` | `0.16.3` | | [sigs.k8s.io/yaml](https://github.com/kubernetes-sigs/yaml) | `1.3.0` | `1.4.0` | Updates `github.com/docker/cli` from 24.0.6+incompatible to 24.0.7+incompatible - [Commits](docker/cli@v24.0.6...v24.0.7) Updates `github.com/go-logr/logr` from 1.2.4 to 1.3.0 - [Release notes](https://github.com/go-logr/logr/releases) - [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md) - [Commits](go-logr/logr@v1.2.4...v1.3.0) Updates `github.com/google/go-containerregistry` from 0.15.2 to 0.16.1 - [Release notes](https://github.com/google/go-containerregistry/releases) - [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml) - [Commits](google/go-containerregistry@v0.15.2...v0.16.1) Updates `github.com/onsi/ginkgo/v2` from 2.12.1 to 2.13.0 - [Release notes](https://github.com/onsi/ginkgo/releases) - [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md) - [Commits](onsi/ginkgo@v2.12.1...v2.13.0) Updates `github.com/onsi/gomega` from 1.27.10 to 1.29.0 - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.27.10...v1.29.0) Updates `github.com/operator-framework/api` from 0.17.7 to 0.18.0 - [Release notes](https://github.com/operator-framework/api/releases) - [Changelog](https://github.com/operator-framework/api/blob/master/RELEASE.md) - [Commits](operator-framework/api@v0.17.7...v0.18.0) Updates `github.com/spf13/viper` from 1.16.0 to 1.17.0 - [Release notes](https://github.com/spf13/viper/releases) - [Commits](spf13/viper@v1.16.0...v1.17.0) Updates `k8s.io/api` from 0.27.7 to 0.28.3 - [Commits](kubernetes/api@v0.27.7...v0.28.3) Updates `k8s.io/client-go` from 0.27.7 to 0.28.3 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.27.7...v0.28.3) Updates `sigs.k8s.io/controller-runtime` from 0.15.0 to 0.16.3 - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md) - [Commits](kubernetes-sigs/controller-runtime@v0.15.0...v0.16.3) Updates `sigs.k8s.io/yaml` from 1.3.0 to 1.4.0 - [Release notes](https://github.com/kubernetes-sigs/yaml/releases) - [Changelog](https://github.com/kubernetes-sigs/yaml/blob/master/RELEASE.md) - [Commits](kubernetes-sigs/yaml@v1.3.0...v1.4.0) --- updated-dependencies: - dependency-name: github.com/docker/cli dependency-type: direct:production update-type: version-update:semver-patch dependency-group: prod-dependencies - dependency-name: github.com/go-logr/logr dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: github.com/google/go-containerregistry dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: github.com/onsi/ginkgo/v2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: github.com/operator-framework/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: github.com/spf13/viper dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: k8s.io/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: k8s.io/client-go dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies - dependency-name: sigs.k8s.io/yaml dependency-type: direct:production update-type: version-update:semver-minor dependency-group: prod-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dcibot · 2023-10-31T20:30:59Z

FAILURE https://www.distributed-ci.io/jobs/e83a3ee8-dc10-4e71-813c-19a6af74d2ec/jobStates
from Bump the prod-dependencies group with 11 updates #1089

dependabot · 2023-11-06T22:53:33Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Oct 30, 2023

openshift-ci bot added the needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. label Oct 30, 2023

openshift-ci bot requested review from bcrochet and komish October 30, 2023 22:15

dependabot bot force-pushed the dependabot/go_modules/prod-dependencies-7db8269cbc branch from 3c2fad4 to 7bf8756 Compare October 31, 2023 16:12

dependabot bot force-pushed the dependabot/go_modules/prod-dependencies-7db8269cbc branch from 7bf8756 to 836c7c4 Compare October 31, 2023 20:25

dependabot bot closed this Nov 6, 2023

dependabot bot deleted the dependabot/go_modules/prod-dependencies-7db8269cbc branch November 6, 2023 22:53

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the prod-dependencies group with 11 updates #1089

Bump the prod-dependencies group with 11 updates #1089

dependabot bot commented on behalf of github Oct 30, 2023 •

edited

Loading

openshift-ci bot commented Oct 30, 2023

openshift-ci bot commented Oct 30, 2023

dcibot commented Oct 30, 2023

dcibot commented Oct 31, 2023

dcibot commented Oct 31, 2023

dependabot bot commented on behalf of github Nov 6, 2023

Bump the prod-dependencies group with 11 updates #1089

Bump the prod-dependencies group with 11 updates #1089

Conversation

dependabot bot commented on behalf of github Oct 30, 2023 • edited Loading

v1.3.0

What's Changed

New Contributors

v0.16.1

What's Changed

New Contributors

Container Images

v0.16.0

v2.13.0

2.13.0

Features

2.13.0

Features

v1.29.0

1.29.0

Features

v1.28.1

1.28.1

Maintenance

v1.28.0

1.28.0

Features

Fixes

Maintenance

1.29.0

Features

1.28.1

Maintenance

1.28.0

Features

Fixes

Maintenance

v0.18.0

What's Changed

New Contributors

v1.17.0

Major changes

Minimum Go version: 1.19

log/slog support [BREAKING]

New finder implementation [BREAKING]

What's Changed

Exciting New Features 🎉

Enhancements 🚀

v0.16.3

What's Changed

v0.16.2

What's Changed

v0.16.1

What's Changed

v0.16.0

Highlights

Changes since v0.15

⚠️ Breaking Changes

v1.4.0

openshift-ci bot commented Oct 30, 2023

openshift-ci bot commented Oct 30, 2023

dcibot commented Oct 30, 2023

dcibot commented Oct 31, 2023

dcibot commented Oct 31, 2023

dependabot bot commented on behalf of github Nov 6, 2023

dependabot bot commented on behalf of github Oct 30, 2023 •

edited

Loading

`log/slog` support [BREAKING]