Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): Bump the all group across 1 directory with 14 updates #8

Closed
wants to merge 1 commit into from
Closed

build(deps): Bump the all group across 1 directory with 14 updates #8

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Aug 16, 2024
edited
Loading

Bumps the all group with 5 updates in the / directory:

Package From To
sigs.k8s.io/controller-runtime 0.18.4 0.19.0
github.com/cert-manager/trust-manager 0.11.0 0.12.0
github.com/container-storage-interface/spec 1.9.0 1.10.0
github.com/kubernetes-csi/csi-lib-utils 0.18.1 0.19.0
k8s.io/mount-utils 0.30.2 0.31.0

Updates sigs.k8s.io/controller-runtime from 0.18.4 to 0.19.0

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.19.0

⚠️ Deprecation Warnings

Please note that admission.Defaulter/Validator have been deprecated in favor of admission.CustomDefaulter/CustomValidator since v0.17 and will be removed with v0.20.

⚠️ Breaking Changes

✨ New Features

  • client: Add WithFieldValidation client (#2860 #2913)
  • controller & webhook: Recover panics per default & add panic metrics (#2905)
  • controllerutil: configure BlockOwnerDeletion when setting OwnerReference (#2847)
  • fake client: Add scale subresource logic (#2855)
  • predicate: Add missing generic version of ResourceVersionChangedPredicate (#2812)
  • setup-envtest: Download binaries from controller-tools releases instead of GCS (#2811)
  • setup-envtest: Publish setup-envtest binaries via release attachments (#2911)
  • workqueue: Add controller label to workqueue metrics (#2895)

🐛 Bug Fixes

  • apiutil.IsGVKNamespaced: Fix namespaced GVK check to use version (#2875)
  • cache: Fix label defaulting of byObject when namespaces are configured (#2805)
  • certwatcher: Recreate watcher if the file is unlinked and replaced (#2893)
  • manager: Fix log in AddMetricsServerExtraHandler (#2874)
  • manager: Quiet context.Canceled errors during shutdown (#2745)
  • manager: Reintroduce AddMetricsServerExtraHandler (#2813)
  • manager.Start: Prevent LeaderElector setup error from being swallowed (#2876)
  • source.Kind: String() should return correct type (#2806)

🌱 Others

  • actions: Add action to approve actions if /ok-to-test is set (#2908)
  • controller: Add dynamic watcher tests (#2881)
  • dependabot: disable go module bumps, bump all actions in a single PR (#2856)
  • verify-modules: Verify go modules are in sync with upstream k/k (#2774)

📖 Additionally, there have been 5 contributions to our documentation. (#2830, #2849, #2863, #2894, #2899, #2910)

Dependencies

Added

  • cel.dev/expr: v0.15.0
  • github.com/antlr4-go/antlr/v4: v4.13.0

... (truncated)

Commits
  • b901db1 Merge pull request #2924 from lucacome/bump-deps
  • 0c7827e Bump k8s.io deps to v1.31.0
  • 9f5afec Merge pull request #2918 from sbueringer/pr-add-skip-name-validation
  • 96e8152 Merge pull request #2921 from kubernetes-sigs/dependabot/github_actions/all-g...
  • 8f5faff 🌱 Bump actions/upload-artifact in the all-github-actions group
  • 89bebe3 Add SkipNameValidation option
  • 7857623 Merge pull request #2911 from sbueringer/pr-publish-setup-envtest
  • fdc8bd7 Merge pull request #2913 from sbueringer/pr-test-cov-field-validation
  • 7dfd3bb Fix WithFieldValidation client
  • e882354 Merge pull request #2908 from sbueringer/pr-approve-action
  • Additional commits viewable in compare view

Updates github.com/cert-manager/trust-manager from 0.11.0 to 0.12.0

Release notes

Sourced from github.com/cert-manager/trust-manager's releases.

v0.12.0

trust-manager is the easiest way to manage security-critical TLS trust bundles in Kubernetes and OpenShift clusters.

v0.12.0 includes a variety of Helm chart improvements, notably including the ability to install trust-manager without having first installed cert-manager!

Overview

Standalone trust-manager

Previously, trust-manager required that cert-manager was installed for generating the trust-manager webhook certificate. cert-manager's cainjector was used to inject this webhook cert into the Kubernetes webhook resource.

Some users wanted to be able to install trust-manager standalone, and now this is possible thanks to Helm's inbuilt support for generating certificates. We'd like to note that relying on Helm for this functionality isn't likely to be the best way to run in production - we'd strongly suggest that running with cert-manager is the way to go, since that will handle cert rotation and be much easier to administer.

Still, for any user who wants to simply run trust-manager, that's now possible:

helm upgrade trust-manager jetstack/trust-manager \
  --install \
  --namespace cert-manager \
  --wait \
  --set app.webhook.tls.helmCert.enabled=true

Other Helm Improvements

There are even more improvements to the Helm chart:

  1. Support for configuring a dual stack service for the webhook (Thanks @​M0NsTeRRR!)
  2. More configurability of trust-manager's leader-election including duration and deadline (Thanks @​jabdoa2!)

What's Changed

New Features

Refactors

New Contributors

Full Changelog: cert-manager/trust-manager@v0.11.1...v0.12.0

... (truncated)

Commits
  • db4471f Merge pull request #396 from erikgb/truststore-extract
  • 80b78be refactor: extract truststore encoding to internal package
  • cd0369c Merge pull request #394 from erikgb/move-default-password-api
  • 825c6f6 Merge pull request #393 from erikgb/better-ssa
  • a4b8e56 refactor: move default truststore passwords to API
  • 826ac78 refactor: simplify SSA patch calls
  • fb6516a Merge pull request #392 from cert-manager/self-upgrade-main
  • 81e0d17 Run 'make upgrade-klone' and 'make generate'
  • fffc462 Merge pull request #391 from cert-manager/dependabot/go_modules/all-ce8f2b5c23
  • 44b0cd5 Bump the all group with 5 updates
  • Additional commits viewable in compare view

Updates github.com/container-storage-interface/spec from 1.9.0 to 1.10.0

Release notes

Sourced from github.com/container-storage-interface/spec's releases.

v1.10.0

What's Changed

Breaking changes/Deprecations

  • None

Additions

Clarifications/Corrections/Fixes

  • None

Dependencies

New Contributors

Full Changelog: container-storage-interface/spec@v1.9.0...v1.10.0

v1.10.0-rc1

No release notes provided.

Commits
  • 21be3f8 Merge pull request #566 from saad-ali/protoBufTo133
  • 1bc2caf Bump google.golang.org/protobuf from 1.32.0 to 1.33.0
  • adb2b16 Merge pull request #564 from container-storage-interface/dependabot/go_module...
  • 811799a Bump golang.org/x/net from 0.10.0 to 0.23.0
  • 9674d35 Merge pull request #559 from container-storage-interface/dependabot/go_module...
  • 2696773 Added the SnapshotMetadata service. (#551)
  • 1f2bf8a Bump google.golang.org/grpc from 1.57.0 to 1.57.1
  • abf6346 update protoc and related (#552)
  • 886cd48 Merge pull request #555 from saad-ali/release19bump
  • 5855142 Bump master version to 1.10 for next release
  • See full diff in compare view

Updates github.com/kubernetes-csi/csi-lib-utils from 0.18.1 to 0.19.0

Release notes

Sourced from github.com/kubernetes-csi/csi-lib-utils's releases.

v0.19.0

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.19.0/CHANGELOG/CHANGELOG-0.19.md

v0.19.0-beta.0

Pre-release with Kubernetes 1.31.0-beta.0 packages.

Commits
  • 5827ba9 Merge pull request #180 from dfajmon/changelog
  • 0186303 Add changelog for v1.19.0
  • 927e34c Merge pull request #179 from dfajmon/bump-1.31
  • 0067cde update kubernetes to 1.31
  • 4b65dcd Merge commit 'c7e0f2e01019270bb4337dd201ec835d7e96587e' into bump-1.31
  • c7e0f2e Squashed 'release-tools/' changes from edd89ad5..988496a1
  • 1884850 Merge pull request #178 from dfajmon/kubernetes-bump
  • 0363106 update kubernetes deps to 1.31.0-beta
  • See full diff in compare view

Updates google.golang.org/grpc from 1.64.0 to 1.65.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.65.0

Dependencies

  • Change support policy to cover only the latest TWO releases of Go, matching the policy for Go itself. See #7249 for more information. (#7250)
  • Update x/net/http2 to address CVE-2023-45288 (#7282)

Behavior Changes

  • credentials/tls: clients and servers will now reject connections that don't support ALPN when environment variable GRPC_ENFORCE_ALPN_ENABLED is set to "true" (case insensitive). (#7184)
    • NOTE: this behavior will become the default in a future release.
  • metadata: remove String method from MD to make printing more consistent (#7373)

New Features

  • grpc: add WithMaxCallAttempts to configure gRPC's retry behavior per-channel. (#7229)

Bug Fixes

  • ringhash: properly apply endpoint weights instead of ignoring them (#7156)
  • xds: fix a bug that could cause xds-enabled servers to stop accepting new connections after handshaking errors (#7128)

Release 1.64.1

Dependencies

  • Update x/net/http2 to address CVE-2023-45288 (#7352)
  • metadata: remove String method from MD to make printing consistent (#7374)
Commits
  • 2da9769 Change version to 1.65.0 (#7306)
  • ede96b7 metadata: remove String method (#7373)
  • 64be203 grpc: Readd pick first name (#7336) (#7341)
  • 25e33a6 examples: Add CSM Observability example (#7302) (#7318)
  • 04a5f46 xds/internal/xdsclient: Emit unknown for CSM Labels if not present in CDS (#7...
  • cff5c3e stats/opentelemetry: Add e2e testing for CSM Observability (#7279) (#7316)
  • 9b970fd dns: fix constant 30s backoff for re-resolution (#7262) (#7311)
  • 6d23620 documentation: on server, use FromIncomingContext for retrieving context and...
  • 7e5898e xds: unify xDS client creation APIs meant for testing (#7268)
  • 5d7bd7a interop/xds: Interop client and server changes for CSM Observability (#7280)
  • Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.33.0 to 1.34.2

Updates k8s.io/api from 0.30.2 to 0.31.0

Commits

Updates k8s.io/apimachinery from 0.30.2 to 0.31.0

Commits
  • a8f449e Falls back to SPDY for gorilla/websocket https proxy error
  • 62791ec Merge pull request #125571 from liggitt/filter-auth-02-sar
  • cc2ba35 add field and label selectors to authorization attributes
  • ce76a8f generate
  • 35052c5 add subjectaccessreview field and label selectors
  • ab06869 Merge pull request #126105 from benluddy/cbor-framer
  • 429f4e4 Implement runtime.Framer for CBOR Sequences.
  • d7e1c53 Merge pull request #126018 from aroradaman/bump-k8s-utils
  • 07cb122 Merge pull request #125748 from benluddy/cbor-custom-marshalers
  • dd17456 bump k8s.io/utils
  • Additional commits viewable in compare view

Updates k8s.io/cli-runtime from 0.30.2 to 0.30.3

Commits

Updates k8s.io/client-go from 0.30.2 to 0.31.0

Commits
  • 02a19c3 Update dependencies to v0.31.0 tag
  • 5e3e8ea informers: add comment that Start does not block
  • f71a5cc Call non-blocking informerFactory.Start synchronously to avoid races
  • 4536e5a Merge pull request #124012 from Jefftree/le-controller
  • 93c6a5b Merge pull request #126353 from liggitt/fix-vendor
  • 6a9911a revendor dependencies
  • fe54892 Merge pull request #126243 from SergeyKanzhelev/devicePluginFailures
  • 825f52e Change PingTime to be persistent
  • f45c451 fix ordering issue in candidates
  • 18dd587 feedback: leasecandidate clients
  • Additional commits viewable in compare view

Updates k8s.io/component-base from 0.30.2 to 0.31.0

Commits
  • 6123741 Update dependencies to v0.31.0 tag
  • 6332889 Merge pull request #126344 from MikeSpreitzer/fix-120112
  • 95f30f1 [sample-apiserver] Fix: Use Correct Effective Version for kube (#125941)
  • 763ac17 Merge pull request #126353 from liggitt/fix-vendor
  • 40cf325 revendor dependencies
  • d64a96d Relax noise margin in TestOneWeightedHistogram
  • 6cc953a Merge pull request #126204 from vrutkovs/unsafeRecordQueried-atomicPointer
  • f9413de featuregate: clone queriedFeatures only when mutation is needed
  • 6f32dbe Merge pull request #125926 from MadhavJivrajani/bump-staticcheck-exclude-SA1006
  • 64c7d3f .*: fix lint errors
  • Additional commits viewable in compare view

Updates k8s.io/klog/v2 from 2.120.1 to 2.130.1

Release notes

Sourced from k8s.io/klog/v2's releases.

Prepare klog release for Kubernetes v1.31 (Take 2)

What's Changed

Full Changelog: kubernetes/klog@v2.130.0...v2.130.1

Prepare klog release for Kubernetes v1.31 (Take 1)

What's Changed

New Contributors

Full Changelog: kubernetes/klog@v2.120.1...v2.130.0

Commits
  • 75663bb Merge pull request #408 from pohly/klog-flush-sync-fix
  • 2327d4c data race: avoid unprotected access to sb.file
  • 16c7d26 Merge pull request #401 from pohly/ktesting-warning-delay
  • cd24012 ktesting: tone down warning about leaked test goroutine
  • 2ee202a Merge pull request #404 from 1978629634/fsync-freelock
  • 79575d8 Do not acquire lock for file.Sync() fsync call
  • 7af45d6 Merge pull request #406 from pohly/linter
  • d008cfe examples: fix linter warning
  • ab53041 Merge pull request #402 from pohly/linter-issues
  • ff7c070 build: fix some linter warnings
  • Additional commits viewable in compare view

Updates k8s.io/mount-utils from 0.30.2 to 0.31.0

Commits
  • 9983dfa mount-utils: treat syscall.ENODEV as corrupted mount
  • 2e19d95 Merge pull request #126018 from aroradaman/bump-k8s-utils
  • d1708ae bump k8s.io/utils
  • 330d4a0 Merge pull request #125922 from dims/update_otel_27
  • ba114f4 update OpenTelemetry dependencies and grpc
  • e87beb2 Merge pull request #125850 from dims/fix-for-typecheck-does-not-notice-compil...
  • 6402283 Fix for typecheck doesn't notice compile errors in test files
  • 1193104 Merge pull request #125759 from dims/bump-prometheus/common-v0.55.0
  • a1102a4 Bump prometheus/common to v0.55.0
  • 1069ef5 Merge pull request #125731 from dashpole/revert_otel
  • Additional commits viewable in compare view

Updates k8s.io/utils from 0.0.0-20231127182322-b307cd553661 to 0.0.0-20240711033017-18e509b52bc8

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): Bump the all group across 1 directory with 14 updates
9ebc682 
Bumps the all group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.18.4` | `0.19.0` |
| [github.com/cert-manager/trust-manager](https://github.com/cert-manager/trust-manager) | `0.11.0` | `0.12.0` |
| [github.com/container-storage-interface/spec](https://github.com/container-storage-interface/spec) | `1.9.0` | `1.10.0` |
| [github.com/kubernetes-csi/csi-lib-utils](https://github.com/kubernetes-csi/csi-lib-utils) | `0.18.1` | `0.19.0` |
| [k8s.io/mount-utils](https://github.com/kubernetes/mount-utils) | `0.30.2` | `0.31.0` |



Updates `sigs.k8s.io/controller-runtime` from 0.18.4 to 0.19.0
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](kubernetes-sigs/controller-runtime@v0.18.4...v0.19.0)

Updates `github.com/cert-manager/trust-manager` from 0.11.0 to 0.12.0
- [Release notes](https://github.com/cert-manager/trust-manager/releases)
- [Changelog](https://github.com/cert-manager/trust-manager/blob/main/RELEASE.md)
- [Commits](cert-manager/trust-manager@v0.11.0...v0.12.0)

Updates `github.com/container-storage-interface/spec` from 1.9.0 to 1.10.0
- [Release notes](https://github.com/container-storage-interface/spec/releases)
- [Commits](container-storage-interface/spec@v1.9.0...v1.10.0)

Updates `github.com/kubernetes-csi/csi-lib-utils` from 0.18.1 to 0.19.0
- [Release notes](https://github.com/kubernetes-csi/csi-lib-utils/releases)
- [Commits](kubernetes-csi/csi-lib-utils@v0.18.1...v0.19.0)

Updates `google.golang.org/grpc` from 1.64.0 to 1.65.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.64.0...v1.65.0)

Updates `google.golang.org/protobuf` from 1.33.0 to 1.34.2

Updates `k8s.io/api` from 0.30.2 to 0.31.0
- [Commits](kubernetes/api@v0.30.2...v0.31.0)

Updates `k8s.io/apimachinery` from 0.30.2 to 0.31.0
- [Commits](kubernetes/apimachinery@v0.30.2...v0.31.0)

Updates `k8s.io/cli-runtime` from 0.30.2 to 0.30.3
- [Commits](kubernetes/cli-runtime@v0.30.2...v0.30.3)

Updates `k8s.io/client-go` from 0.30.2 to 0.31.0
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.30.2...v0.31.0)

Updates `k8s.io/component-base` from 0.30.2 to 0.31.0
- [Commits](kubernetes/component-base@v0.30.2...v0.31.0)

Updates `k8s.io/klog/v2` from 2.120.1 to 2.130.1
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](kubernetes/klog@v2.120.1...v2.130.1)

Updates `k8s.io/mount-utils` from 0.30.2 to 0.31.0
- [Commits](kubernetes/mount-utils@v0.30.2...v0.31.0)

Updates `k8s.io/utils` from 0.0.0-20231127182322-b307cd553661 to 0.0.0-20240711033017-18e509b52bc8
- [Commits](https://github.com/kubernetes/utils/commits)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github.com/cert-manager/trust-manager
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github.com/container-storage-interface/spec
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github.com/kubernetes-csi/csi-lib-utils
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/cli-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: k8s.io/client-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/mount-utils
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/utils
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Aug 16, 2024
@dependabot dependabot bot mentioned this pull request Aug 16, 2024
Closed
@cert-manager-prow
Copy link

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Sep 4, 2024

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Sep 13, 2024

Superseded by #9.

@dependabot dependabot bot closed this Sep 13, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/all-1910f38973 branch September 13, 2024 01:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dco-signoff: yes dependencies Pull requests that update a dependency file go Pull requests that update Go code size/L
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants