Benoit Tigeot
037733e7d5
fix: drop containerd v1 dep to resolve govulncheck CVEs
...
containerd v1 is EOL and will never receive fixes for
GO-2026-5622, GO-2026-5338, GO-2026-5064. The only import
was for `remotes.Resolver` in the deprecated `ClientOptResolver`
stub. Changing its parameter type to `any` preserves the public
API while removing the vulnerable dependency entirely.
It should help for PR like https://github.com/helm/helm/pull/32297
Signed-off-by: Benoit Tigeot <benoit.tigeot@lifen.fr>
(cherry picked from commit a061886b72 )
3 days ago
dependabot[bot]
d3e178ba06
chore(deps): bump github.com/containerd/containerd from 1.7.32 to 1.7.33
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.7.32 to 1.7.33.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.7.32...v1.7.33 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-version: 1.7.33
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit f979836098 )
3 days ago
dependabot[bot]
1259634068
chore(deps): bump the k8s-io group with 2 updates
...
Bumps the k8s-io group with 2 updates: [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) and [k8s.io/apiserver](https://github.com/kubernetes/apiserver ).
Updates `k8s.io/apiextensions-apiserver` from 0.35.1 to 0.36.2
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.35.1...v0.36.2 )
Updates `k8s.io/apiserver` from 0.35.1 to 0.36.2
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.35.1...v0.36.2 )
---
updated-dependencies:
- dependency-name: k8s.io/apiextensions-apiserver
dependency-version: 0.36.2
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/apiserver
dependency-version: 0.36.2
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 1bf9b5fbba )
3 weeks ago
dependabot[bot]
3342dbfec8
chore(deps): bump the k8s-io group across 1 directory with 2 updates
...
Bumps the k8s-io group with 2 updates in the / directory: [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery ) and [k8s.io/kubectl](https://github.com/kubernetes/kubectl ).
Updates `k8s.io/apimachinery` from 0.35.1 to 0.36.2
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.35.1...v0.36.2 )
Updates `k8s.io/kubectl` from 0.35.1 to 0.36.2
- [Commits](https://github.com/kubernetes/kubectl/compare/v0.35.1...v0.36.2 )
---
updated-dependencies:
- dependency-name: k8s.io/apimachinery
dependency-version: 0.36.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/kubectl
dependency-version: 0.36.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 119a7d9bab )
3 weeks ago
dependabot[bot]
178e120e16
chore(deps): bump oras.land/oras-go/v2 from 2.6.0 to 2.6.1
...
Bumps [oras.land/oras-go/v2](https://github.com/oras-project/oras-go ) from 2.6.0 to 2.6.1.
- [Release notes](https://github.com/oras-project/oras-go/releases )
- [Commits](https://github.com/oras-project/oras-go/compare/v2.6.0...v2.6.1 )
---
updated-dependencies:
- dependency-name: oras.land/oras-go/v2
dependency-version: 2.6.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit acc867b88e )
1 month ago
dependabot[bot]
dcf35f8655
chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.52.0 to 0.53.0.
- [Commits](https://github.com/golang/crypto/compare/v0.52.0...v0.53.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.53.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit b920935feb )
1 month ago
dependabot[bot]
44aff8bf51
chore(deps): bump golang.org/x/term from 0.43.0 to 0.44.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.43.0 to 0.44.0.
- [Commits](https://github.com/golang/term/compare/v0.43.0...v0.44.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.44.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 5b5ef192c7 )
1 month ago
dependabot[bot]
ae2f31f5a7
chore(deps): bump golang.org/x/text from 0.37.0 to 0.38.0
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.37.0 to 0.38.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.37.0...v0.38.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-version: 0.38.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit af67af8951 )
1 month ago
Terry Howe
bec346ac98
chore: bump go to 1.26
...
Signed-off-by: Terry Howe <terrylhowe@gmail.com>
(cherry picked from commit c678c0c9c0 )
1 month ago
dependabot[bot]
58b6ccffd3
chore(deps): bump github.com/lib/pq from 1.11.2 to 1.12.3
...
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.11.2 to 1.12.3.
- [Release notes](https://github.com/lib/pq/releases )
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md )
- [Commits](https://github.com/lib/pq/compare/v1.11.2...v1.12.3 )
---
updated-dependencies:
- dependency-name: github.com/lib/pq
dependency-version: 1.12.3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 12c4d45b14 )
1 month ago
dependabot[bot]
30b9f51d80
chore(deps): bump github.com/distribution/distribution/v3
...
Bumps [github.com/distribution/distribution/v3](https://github.com/distribution/distribution ) from 3.0.0 to 3.1.1.
- [Release notes](https://github.com/distribution/distribution/releases )
- [Commits](https://github.com/distribution/distribution/compare/v3.0.0...v3.1.1 )
---
updated-dependencies:
- dependency-name: github.com/distribution/distribution/v3
dependency-version: 3.1.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit a0f97111f5 )
1 month ago
dependabot[bot]
858aa47b45
chore(deps): bump github.com/containerd/containerd from 1.7.30 to 1.7.32
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.7.30 to 1.7.32.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.7.30...v1.7.32 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-version: 1.7.32
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 995c31e20b )
1 month ago
dependabot[bot]
1af25d4693
chore(deps): bump github.com/Masterminds/semver/v3 from 3.4.0 to 3.5.0
...
Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/Masterminds/semver/releases )
- [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Masterminds/semver/compare/v3.4.0...v3.5.0 )
---
updated-dependencies:
- dependency-name: github.com/Masterminds/semver/v3
dependency-version: 3.5.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 8c17168828 )
1 month ago
dependabot[bot]
97e4bc30e5
chore(deps): bump github.com/mattn/go-shellwords from 1.0.12 to 1.0.13
...
Bumps [github.com/mattn/go-shellwords](https://github.com/mattn/go-shellwords ) from 1.0.12 to 1.0.13.
- [Commits](https://github.com/mattn/go-shellwords/compare/v1.0.12...v1.0.13 )
---
updated-dependencies:
- dependency-name: github.com/mattn/go-shellwords
dependency-version: 1.0.13
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit fe141bd537 )
1 month ago
dependabot[bot]
29bdd1bedd
chore(deps): bump golang.org/x/crypto from 0.51.0 to 0.52.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.51.0 to 0.52.0.
- [Commits](https://github.com/golang/crypto/compare/v0.51.0...v0.52.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.52.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 980836f726 )
1 month ago
Terry Howe
bad6cd478f
fix(deps): bump golang.org/x/net to v0.55.0 to address GO-2026-5026
...
Upgrades golang.org/x/net from v0.53.0 to v0.55.0 to fix CVE-2026-39821
(GO-2026-5026), where idna.ToASCII/ToUnicode incorrectly accept Punycode-
encoded labels that decode to ASCII-only labels, enabling privilege escalation
via hostname check bypass.
Coordinated x/ upgrades pulled in by the module graph:
- golang.org/x/crypto v0.50.0 => v0.51.0
- golang.org/x/sys v0.43.0 => v0.45.0
- golang.org/x/term v0.42.0 => v0.43.0
Signed-off-by: Terry Howe <terrylhowe@gmail.com>
(cherry picked from commit 1dde6c7551 )
1 month ago
dependabot[bot]
75c2e9bf37
chore(deps): bump k8s.io/klog/v2 from 2.130.1 to 2.140.0
...
Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog ) from 2.130.1 to 2.140.0.
- [Release notes](https://github.com/kubernetes/klog/releases )
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md )
- [Commits](https://github.com/kubernetes/klog/compare/v2.130.1...2.140.0 )
---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
dependency-version: 2.140.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 0162feda1d )
1 month ago
dependabot[bot]
cd4dac334c
chore(deps): bump golang.org/x/text from 0.35.0 to 0.37.0
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.35.0 to 0.37.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.35.0...v0.37.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit a664a58f43 )
1 month ago
Terry Howe
13d5fc4ae0
fix: upgrade opentelemetry packages to patch CVEs
...
Upgrade all OpenTelemetry Go packages to their latest versions:
- go.opentelemetry.io/otel: v1.36.0 -> v1.43.0
- go.opentelemetry.io/otel/trace: v1.36.0 -> v1.43.0
- go.opentelemetry.io/otel/metric: v1.36.0 -> v1.43.0
- go.opentelemetry.io/otel/sdk: v1.36.0 -> v1.43.0
- go.opentelemetry.io/otel/sdk/metric: v1.36.0 -> v1.43.0
- go.opentelemetry.io/otel/sdk/log: v0.8.0 -> v0.19.0
- go.opentelemetry.io/otel/log: v0.8.0 -> v0.19.0
- go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc: v0.8.0 -> v0.19.0
- go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp: v0.8.0 -> v0.19.0
- go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc: v1.32.0 -> v1.43.0
- go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp: v1.32.0 -> v1.43.0
- go.opentelemetry.io/otel/exporters/otlp/otlptrace: v1.34.0 -> v1.43.0
- go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc: v1.34.0 -> v1.43.0
- go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp: v1.32.0 -> v1.43.0
- go.opentelemetry.io/otel/exporters/prometheus: v0.54.0 -> v0.65.0
- go.opentelemetry.io/otel/exporters/stdout/stdoutlog: v0.8.0 -> v0.19.0
- go.opentelemetry.io/otel/exporters/stdout/stdoutmetric: v1.32.0 -> v1.43.0
- go.opentelemetry.io/otel/exporters/stdout/stdouttrace: v1.32.0 -> v1.43.0
- go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp: v0.61.0 -> v0.68.0
- go.opentelemetry.io/contrib/instrumentation/.../otelgrpc: v0.60.0 -> v0.68.0
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Signed-off-by: Terry Howe <terrylhowe@gmail.com>
3 months ago
dependabot[bot]
9c854fbd93
chore(deps): bump the k8s-io group with 7 updates
...
Bumps the k8s-io group with 7 updates:
| Package | From | To |
| --- | --- | --- |
| [k8s.io/api](https://github.com/kubernetes/api ) | `0.35.0` | `0.35.1` |
| [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) | `0.35.0` | `0.35.1` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery ) | `0.35.0` | `0.35.1` |
| [k8s.io/apiserver](https://github.com/kubernetes/apiserver ) | `0.35.0` | `0.35.1` |
| [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) | `0.35.0` | `0.35.1` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go ) | `0.35.0` | `0.35.1` |
| [k8s.io/kubectl](https://github.com/kubernetes/kubectl ) | `0.35.0` | `0.35.1` |
Updates `k8s.io/api` from 0.35.0 to 0.35.1
- [Commits](https://github.com/kubernetes/api/compare/v0.35.0...v0.35.1 )
Updates `k8s.io/apiextensions-apiserver` from 0.35.0 to 0.35.1
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.35.0...v0.35.1 )
Updates `k8s.io/apimachinery` from 0.35.0 to 0.35.1
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.35.0...v0.35.1 )
Updates `k8s.io/apiserver` from 0.35.0 to 0.35.1
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.35.0...v0.35.1 )
Updates `k8s.io/cli-runtime` from 0.35.0 to 0.35.1
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.35.0...v0.35.1 )
Updates `k8s.io/client-go` from 0.35.0 to 0.35.1
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.35.0...v0.35.1 )
Updates `k8s.io/kubectl` from 0.35.0 to 0.35.1
- [Commits](https://github.com/kubernetes/kubectl/compare/v0.35.0...v0.35.1 )
---
updated-dependencies:
- dependency-name: k8s.io/api
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apiextensions-apiserver
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apimachinery
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apiserver
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/cli-runtime
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/client-go
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/kubectl
dependency-version: 0.35.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
a692247486
chore(deps): bump golang.org/x/crypto from 0.47.0 to 0.48.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.47.0 to 0.48.0.
- [Commits](https://github.com/golang/crypto/compare/v0.47.0...v0.48.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.48.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
9f2a7f696a
chore(deps): bump golang.org/x/term from 0.39.0 to 0.40.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.39.0 to 0.40.0.
- [Commits](https://github.com/golang/term/compare/v0.39.0...v0.40.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.40.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
Joe Julian
a46e266cd0
Merge pull request #31821 from helm/dependabot/go_modules/dev-v3/golang.org/x/text-0.34.0
...
chore(deps): bump golang.org/x/text from 0.33.0 to 0.34.0
5 months ago
dependabot[bot]
79f039be71
chore(deps): bump github.com/lib/pq from 1.11.1 to 1.11.2
...
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.11.1 to 1.11.2.
- [Release notes](https://github.com/lib/pq/releases )
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md )
- [Commits](https://github.com/lib/pq/compare/v1.11.1...v1.11.2 )
---
updated-dependencies:
- dependency-name: github.com/lib/pq
dependency-version: 1.11.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
45210d597d
chore(deps): bump golang.org/x/text from 0.33.0 to 0.34.0
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.33.0 to 0.34.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.33.0...v0.34.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-version: 0.34.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
703999db84
chore(deps): bump github.com/lib/pq from 1.10.9 to 1.11.1
...
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.10.9 to 1.11.1.
- [Release notes](https://github.com/lib/pq/releases )
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md )
- [Commits](https://github.com/lib/pq/compare/v1.10.9...v1.11.1 )
---
updated-dependencies:
- dependency-name: github.com/lib/pq
dependency-version: 1.11.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
5 months ago
dependabot[bot]
a04be9699e
chore(deps): bump golang.org/x/crypto from 0.46.0 to 0.47.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.46.0 to 0.47.0.
- [Commits](https://github.com/golang/crypto/compare/v0.46.0...v0.47.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.47.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
4f5a655876
chore(deps): bump golang.org/x/text from 0.32.0 to 0.33.0
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.32.0 to 0.33.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.32.0...v0.33.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-version: 0.33.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
65c504a4ae
chore(deps): bump golang.org/x/term from 0.38.0 to 0.39.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.38.0 to 0.39.0.
- [Commits](https://github.com/golang/term/compare/v0.38.0...v0.39.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.39.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
f3b8af418e
chore(deps): bump github.com/foxcpp/go-mockdns from 1.1.0 to 1.2.0
...
Bumps [github.com/foxcpp/go-mockdns](https://github.com/foxcpp/go-mockdns ) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/foxcpp/go-mockdns/releases )
- [Commits](https://github.com/foxcpp/go-mockdns/compare/v1.1.0...v1.2.0 )
---
updated-dependencies:
- dependency-name: github.com/foxcpp/go-mockdns
dependency-version: 1.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
6 months ago
dependabot[bot]
89c2c61592
chore(deps): bump the k8s-io group with 7 updates
...
Bumps the k8s-io group with 7 updates:
| Package | From | To |
| --- | --- | --- |
| [k8s.io/api](https://github.com/kubernetes/api ) | `0.34.3` | `0.35.0` |
| [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) | `0.34.3` | `0.35.0` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery ) | `0.34.3` | `0.35.0` |
| [k8s.io/apiserver](https://github.com/kubernetes/apiserver ) | `0.34.3` | `0.35.0` |
| [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) | `0.34.3` | `0.35.0` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go ) | `0.34.3` | `0.35.0` |
| [k8s.io/kubectl](https://github.com/kubernetes/kubectl ) | `0.34.3` | `0.35.0` |
Updates `k8s.io/api` from 0.34.3 to 0.35.0
- [Commits](https://github.com/kubernetes/api/compare/v0.34.3...v0.35.0 )
Updates `k8s.io/apiextensions-apiserver` from 0.34.3 to 0.35.0
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.34.3...v0.35.0 )
Updates `k8s.io/apimachinery` from 0.34.3 to 0.35.0
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.34.3...v0.35.0 )
Updates `k8s.io/apiserver` from 0.34.3 to 0.35.0
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.34.3...v0.35.0 )
Updates `k8s.io/cli-runtime` from 0.34.3 to 0.35.0
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.34.3...v0.35.0 )
Updates `k8s.io/client-go` from 0.34.3 to 0.35.0
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.34.3...v0.35.0 )
Updates `k8s.io/kubectl` from 0.34.3 to 0.35.0
- [Commits](https://github.com/kubernetes/kubectl/compare/v0.34.3...v0.35.0 )
---
updated-dependencies:
- dependency-name: k8s.io/api
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/apiextensions-apiserver
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/apimachinery
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/apiserver
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/cli-runtime
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/client-go
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
- dependency-name: k8s.io/kubectl
dependency-version: 0.35.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: k8s-io
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
George Jenkins
0ae8e4f2cb
[dev-v3] Bump Go v1.25, `golangci-lint` v2
...
Signed-off-by: George Jenkins <gvjenkins@gmail.com>
7 months ago
George Jenkins
b49daa138d
Merge pull request #31663 from helm/dependabot/go_modules/dev-v3/github.com/BurntSushi/toml-1.6.0
...
chore(deps): bump github.com/BurntSushi/toml from 1.5.0 to 1.6.0
7 months ago
dependabot[bot]
e0d2595407
chore(deps): bump github.com/BurntSushi/toml from 1.5.0 to 1.6.0
...
Bumps [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/BurntSushi/toml/releases )
- [Commits](https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0 )
---
updated-dependencies:
- dependency-name: github.com/BurntSushi/toml
dependency-version: 1.6.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
858acb17c3
chore(deps): bump github.com/containerd/containerd from 1.7.29 to 1.7.30
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.7.29 to 1.7.30.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.7.29...v1.7.30 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-version: 1.7.30
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
582211cc45
chore(deps): bump the k8s-io group with 7 updates
...
Bumps the k8s-io group with 7 updates:
| Package | From | To |
| --- | --- | --- |
| [k8s.io/api](https://github.com/kubernetes/api ) | `0.34.2` | `0.34.3` |
| [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) | `0.34.2` | `0.34.3` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery ) | `0.34.2` | `0.34.3` |
| [k8s.io/apiserver](https://github.com/kubernetes/apiserver ) | `0.34.2` | `0.34.3` |
| [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) | `0.34.2` | `0.34.3` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go ) | `0.34.2` | `0.34.3` |
| [k8s.io/kubectl](https://github.com/kubernetes/kubectl ) | `0.34.2` | `0.34.3` |
Updates `k8s.io/api` from 0.34.2 to 0.34.3
- [Commits](https://github.com/kubernetes/api/compare/v0.34.2...v0.34.3 )
Updates `k8s.io/apiextensions-apiserver` from 0.34.2 to 0.34.3
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.34.2...v0.34.3 )
Updates `k8s.io/apimachinery` from 0.34.2 to 0.34.3
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.34.2...v0.34.3 )
Updates `k8s.io/apiserver` from 0.34.2 to 0.34.3
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.34.2...v0.34.3 )
Updates `k8s.io/cli-runtime` from 0.34.2 to 0.34.3
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.34.2...v0.34.3 )
Updates `k8s.io/client-go` from 0.34.2 to 0.34.3
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.34.2...v0.34.3 )
Updates `k8s.io/kubectl` from 0.34.2 to 0.34.3
- [Commits](https://github.com/kubernetes/kubectl/compare/v0.34.2...v0.34.3 )
---
updated-dependencies:
- dependency-name: k8s.io/api
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apiextensions-apiserver
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apimachinery
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apiserver
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/cli-runtime
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/client-go
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/kubectl
dependency-version: 0.34.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
585c25c5c5
chore(deps): bump golang.org/x/crypto from 0.45.0 to 0.46.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.45.0 to 0.46.0.
- [Commits](https://github.com/golang/crypto/compare/v0.45.0...v0.46.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.46.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
6f17d460bd
chore(deps): bump golang.org/x/text from 0.31.0 to 0.32.0
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.31.0 to 0.32.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.31.0...v0.32.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-version: 0.32.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
46ff427700
chore(deps): bump golang.org/x/term from 0.37.0 to 0.38.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.37.0 to 0.38.0.
- [Commits](https://github.com/golang/term/compare/v0.37.0...v0.38.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.38.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
28b813a7f4
chore(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.10.1 to 1.10.2.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-version: 1.10.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
7 months ago
dependabot[bot]
5dde5d67b4
chore(deps): bump github.com/rubenv/sql-migrate from 1.8.0 to 1.8.1
...
Bumps [github.com/rubenv/sql-migrate](https://github.com/rubenv/sql-migrate ) from 1.8.0 to 1.8.1.
- [Commits](https://github.com/rubenv/sql-migrate/compare/v1.8.0...v1.8.1 )
---
updated-dependencies:
- dependency-name: github.com/rubenv/sql-migrate
dependency-version: 1.8.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
Robert Sirchia
99b2202b19
Merge pull request #31537 from helm/dependabot/go_modules/dev-v3/github.com/cyphar/filepath-securejoin-0.6.1
...
chore(deps): bump github.com/cyphar/filepath-securejoin from 0.6.0 to 0.6.1
8 months ago
dependabot[bot]
362900b064
chore(deps): bump golang.org/x/crypto from 0.44.0 to 0.45.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.44.0 to 0.45.0.
- [Commits](https://github.com/golang/crypto/compare/v0.44.0...v0.45.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.45.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
ec61de556e
chore(deps): bump github.com/cyphar/filepath-securejoin
...
Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin ) from 0.6.0 to 0.6.1.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases )
- [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md )
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.6.0...v0.6.1 )
---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
dependency-version: 0.6.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
a490607e2b
chore(deps): bump the k8s-io group with 7 updates
...
Bumps the k8s-io group with 7 updates:
| Package | From | To |
| --- | --- | --- |
| [k8s.io/api](https://github.com/kubernetes/api ) | `0.34.1` | `0.34.2` |
| [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) | `0.34.1` | `0.34.2` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery ) | `0.34.1` | `0.34.2` |
| [k8s.io/apiserver](https://github.com/kubernetes/apiserver ) | `0.34.1` | `0.34.2` |
| [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) | `0.34.1` | `0.34.2` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go ) | `0.34.1` | `0.34.2` |
| [k8s.io/kubectl](https://github.com/kubernetes/kubectl ) | `0.34.1` | `0.34.2` |
Updates `k8s.io/api` from 0.34.1 to 0.34.2
- [Commits](https://github.com/kubernetes/api/compare/v0.34.1...v0.34.2 )
Updates `k8s.io/apiextensions-apiserver` from 0.34.1 to 0.34.2
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.34.1...v0.34.2 )
Updates `k8s.io/apimachinery` from 0.34.1 to 0.34.2
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.34.1...v0.34.2 )
Updates `k8s.io/apiserver` from 0.34.1 to 0.34.2
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.34.1...v0.34.2 )
Updates `k8s.io/cli-runtime` from 0.34.1 to 0.34.2
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.34.1...v0.34.2 )
Updates `k8s.io/client-go` from 0.34.1 to 0.34.2
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.34.1...v0.34.2 )
Updates `k8s.io/kubectl` from 0.34.1 to 0.34.2
- [Commits](https://github.com/kubernetes/kubectl/compare/v0.34.1...v0.34.2 )
---
updated-dependencies:
- dependency-name: k8s.io/api
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apiextensions-apiserver
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apimachinery
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/apiserver
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/cli-runtime
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/client-go
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
- dependency-name: k8s.io/kubectl
dependency-version: 0.34.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: k8s-io
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
d495a9402f
chore(deps): bump golang.org/x/crypto from 0.43.0 to 0.44.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.43.0 to 0.44.0.
- [Commits](https://github.com/golang/crypto/compare/v0.43.0...v0.44.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-version: 0.44.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
6647f847c2
chore(deps): bump golang.org/x/term from 0.36.0 to 0.37.0
...
Bumps [golang.org/x/term](https://github.com/golang/term ) from 0.36.0 to 0.37.0.
- [Commits](https://github.com/golang/term/compare/v0.36.0...v0.37.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/term
dependency-version: 0.37.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
b548118d29
chore(deps): bump github.com/containerd/containerd from 1.7.28 to 1.7.29
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.7.28 to 1.7.29.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.7.28...v1.7.29 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-version: 1.7.29
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
dependabot[bot]
6d4f8c01be
chore(deps): bump github.com/cyphar/filepath-securejoin
...
Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases )
- [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md )
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
dependency-version: 0.6.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
George Jenkins
1c0652c3fc
Merge pull request #31380 from helm/dependabot/go_modules/dev-v3/github.com/gofrs/flock-0.13.0
...
chore(deps): bump github.com/gofrs/flock from 0.12.1 to 0.13.0
9 months ago