Skip to content

NO-JIRA: Bump the sigs-k8s-dependencies group across 1 directory with 6 updates #6161

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

NO-JIRA: Bump the sigs-k8s-dependencies group across 1 directory with 6 updates #6161

wants to merge 1 commit into from
+3,736 −29,467

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 16, 2025
edited
Loading

Bumps the sigs-k8s-dependencies group with 5 updates in the / directory:

Package From To
sigs.k8s.io/cluster-api-provider-aws/v2 2.8.1 2.8.2
sigs.k8s.io/cluster-api-provider-azure 1.19.2 1.19.4
sigs.k8s.io/cluster-api-provider-openstack 0.12.1 0.12.3
sigs.k8s.io/karpenter 1.2.1-0.20250212185021-45f73ec7a790 1.4.0
sigs.k8s.io/secrets-store-csi-driver 1.4.8 1.5.0

Updates sigs.k8s.io/cluster-api-provider-aws/v2 from 2.8.1 to 2.8.2

Release notes

Sourced from sigs.k8s.io/cluster-api-provider-aws/v2's releases.

v2.8.2

Release notes for Cluster API Provider AWS (CAPA) v2.8.2

Documentation

Changelog since v2.8.1

Changes by Kind

Support

  • Bump github.com/golang-jwt/jwt to 4.5.2 and 5.5.2 (#5436, @​damdo)

The images for this release are: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.8.2

Thanks to all our contributors.

Commits
  • 79ae3d0 Merge pull request #5436 from damdo/release-2.8-bump-jwt-to-v4.5.2
  • b176106 bump github.com/golang-jwt/jwt to v4.5.2 and v5.2.2
  • See full diff in compare view

Updates sigs.k8s.io/cluster-api-provider-azure from 1.19.2 to 1.19.4

Release notes

Sourced from sigs.k8s.io/cluster-api-provider-azure's releases.

v1.19.4

Changes by Kind

Bugs and Regressions

  • Upgraded aks-aso and aks-aso-clusterclass flavor templates to use the new API version. (#5626, @​alimaazamat)
  • fix AzCluster_default and AzCluster_validation webhooks (#5617, @​nawazkh)

Dependencies

Added

Nothing has changed.

Changed

Removed

Nothing has changed.

Details

kubernetes-sigs/cluster-api-provider-azure@v1.19.3...v1.19.4

v1.19.3

Changes by Kind

Bug or Regression

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

Details

kubernetes-sigs/cluster-api-provider-azure@v1.19.2...v1.19.3

Commits
  • 99a359a Merge pull request #5626 from k8s-infra-cherrypick-robot/cherry-pick-5622-to-...
  • a84c90e version bump
  • 6bcdb82 enable new AKS API version with ASO API
  • 76b44f5 Merge pull request #5623 from k8s-infra-cherrypick-robot/cherry-pick-5621-to-...
  • 569b5fa Bump cert-manager to v1.17.2
  • aa30f3c [release-1.19] fix AzCluster_default and AzCluster_validation webhooks (#5617)
  • 2d175a3 Merge pull request #5591 from k8s-infra-cherrypick-robot/cherry-pick-5584-to-...
  • fec83ae [release-1.19] NIC should be try to fix itself when it is in ProvisioningFail...
  • aaeba8c Merge pull request #5573 from k8s-infra-cherrypick-robot/cherry-pick-5556-to-...
  • 283c981 only update subnet spec if status CIDRs not empty
  • Additional commits viewable in compare view

Updates sigs.k8s.io/cluster-api-provider-openstack from 0.12.1 to 0.12.3

Release notes

Sourced from sigs.k8s.io/cluster-api-provider-openstack's releases.

v0.12.3

Changes since v0.12.2

🐛 Bug Fixes

  • fix openstackserver controller concurrency (#2503)

🌱 Others

  • Bump net to v0.38.0 (#2527)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 9 updates (#2525)
  • (deps): bump softprops/action-gh-release from 2.2.1 to 2.2.2 in the all-github-actions group (#2522)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 2 updates (#2515)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 5 updates (#2510)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 4 updates (#2496)
  • (deps): Bump the all-github-actions group with 2 updates (#2494)

Thanks to all our contributors! 😊

v0.12.2

Changes since v0.12.1

🐛 Bug Fixes

  • Do not delete bastion floating ip if set in spec (#2484)
  • OpenStackServer controller: minor log message fix (#2483)
  • Dereference the instance state in machine state reconcile calls (#2467)
  • Don't set OSMachine Ready until all config is complete (#2480)
  • Fix panic when OpenStack server is deleted by an external agent (#2477)
  • Allow modification of all ManagedSecurityGroups (#2465)

🌱 Others

  • Bumps to newer versions of go modules.
  • Bump golangci-lint to support go1.24 (#2449)

Thanks to all our contributors! 😊

Commits
  • 4f3fb0c Merge pull request #2527 from Nordix/lentzi90/net-bump-release-0.12
  • 534c1d9 Bump net to v0.38.0
  • ca294e1 Merge pull request #2525 from kubernetes-sigs/dependabot/go_modules/release-0...
  • edcd309 Update generated code
  • be7ebec 🌱(deps): Bump the all-go-mod-patch-and-minor group across 2 director...
  • 3263bfe Merge pull request #2522 from kubernetes-sigs/dependabot/github_actions/relea...
  • cf08997 🌱(deps): bump softprops/action-gh-release
  • aa11f15 Merge pull request #2515 from kubernetes-sigs/dependabot/go_modules/release-0...
  • 1210704 🌱(deps): Bump the all-go-mod-patch-and-minor group across 2 director...
  • 78802c4 Merge pull request #2510 from kubernetes-sigs/dependabot/go_modules/release-0...
  • Additional commits viewable in compare view

Updates sigs.k8s.io/karpenter from 1.2.1-0.20250212185021-45f73ec7a790 to 1.4.0

Release notes

Sourced from sigs.k8s.io/karpenter's releases.

v1.4.0

Features

Bug Fixes

Documentation

Performance Improvements

Tests

Continuous Integration

Chores

... (truncated)

Commits

Updates sigs.k8s.io/secrets-store-csi-driver from 1.4.8 to 1.5.0

Release notes

Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.

v1.5.0 - 2025-04-09

Changelog

Bug Fixes 🐞

  • b0fdeb52d108375887241e8ddd07c8a97296d061 fix: update sha generation logic
  • f0e9dccf836986666aaa7f22dbd1ad6e5210c02f fix: add unit test to show failures in current sha logic

Code Refactoring 💎

  • 9548c23ad3e8d430cb01b163a6f431240504771a refactor: cleanup unused err check

Features 🌈

  • bf7e77ef35795a6b405511938f6cb976463cb8f9 feat: add build for windows ltsc2025

Maintenance 🔧

  • a488327b740472d9b5e4d2af228b91f79b3f9657 chore: bump kind to v0.27.0
  • 515358e1f4f65c12cff0d081687fd9de23ecede5 chore: disable trivy package testing for driver-crds
  • 924b3b8302bf5a3c172c663ff85c14dcd195addf chore: bump docker golang base images to 1.23
  • 572e439668e9689e3c33071c8cb6525ae262a0ce chore: move tam7t to emeritus_approvers
  • 0b00da8f222c0e76e6cce09136f839e8cb8a7934 chore: bump github/codeql-action from 3.28.0 to 3.28.8
  • b8a1e5bea00875a7f437902b7f419cf6118f3017 chore: bump actions/setup-go from 5.2.0 to 5.3.0
  • 4aad87b2c506c3c4f670da9b59d530b46f518e13 chore: bump golang.org/x/net from 0.28.0 to 0.33.0 in /hack/tools
  • 25d77569bac10e152ac953a831e436b034625083 chore: bump gaurav-nelson/github-action-markdown-link-check
  • c3cb4ffc0b68bd2016311a3f74ea876cf26733ea chore: bump step-security/harden-runner from 2.10.2 to 2.10.3
  • 911b494b4f2c366ca98a27ec3a21f8da5e691db2 chore: bump codecov/codecov-action from 5.1.1 to 5.1.2
  • aaa4a3c875f4cbdfd846813ce2f431b70340f943 chore: bump github/codeql-action from 3.26.13 to 3.28.0
  • 5a8d6b55097564533003a6d2f7b8622a51184b51 chore: bump actions/upload-artifact from 4.4.1 to 4.5.0
  • 7c04af1d155af55ef88b090d092c26fa7b8048c0 chore: bump actions/setup-go from 5.0.2 to 5.2.0
  • a24d2fdd75c68c6febbbaeb85cfb003cb9e7b7de chore: bump golang.org/x/crypto from 0.22.0 to 0.31.0
  • 5fe63f79191efaaf40f6584b32de872d5c643d8a chore: bump codecov/codecov-action from 4.5.0 to 5.1.1
  • 658a778626e0fb91a72e1dc3c2bd8264ca6c62e3 chore: bump golang/govulncheck-action from 1.0.3 to 1.0.4
  • 041d14233cbc642caee545b148f68683cc0a9b57 chore: bump to golang 1.22 builder image in dockerfile
  • c5d2bd300190d1e790b165ae683fe73f632cacb1 chore: bump trivy to v0.57.1 to mitigate rate limit issues
  • f6bd4d8b091289af9f064e60ac11d1c78fd1e604 chore: bump step-security/harden-runner from 2.9.1 to 2.10.2
  • 88d1253a7c01e26fd6d97339e7077f9c3527f0b8 chore: bump actions/checkout from 4.1.7 to 4.2.1
  • 44e76537659cffffeabdd9838b1283f0461f43af chore: bump github/codeql-action from 3.26.6 to 3.26.13
  • cb6fd1e86f84a27442f85d1d03a625ac793089f8 chore: bumps base images
  • ef8f5eb3bf682774ea4e8df84ca9a0e9bb54c359 chore: bump actions/upload-artifact from 4.4.0 to 4.4.1
  • 2f6e7d0324bc624ac33217b82da0e22e0198423f chore: bump actions/upload-artifact from 4.3.6 to 4.4.0
  • 92c73a029323480d0f9d4940d7488f0bed552b46 chore: bump github/codeql-action from 3.26.5 to 3.26.6
  • 77109220c4c75a827c77ea78c6305c86425d9c7a chore: bump actions/dependency-review-action from 4.3.2 to 4.3.4
  • 5e1d34fba8b53b038dfbca42052dd64418a4d905 chore: bump golang/govulncheck-action from 1.0.2 to 1.0.3
  • 6fe8bd569a1fcb618e053ec6a990bd1b0281f1c1 chore: bump actions/checkout from 4.1.5 to 4.1.7
  • f09e97c906581fbe7d6f3be1c3a01208a4340282 chore: bump github/codeql-action from 3.25.8 to 3.26.5
  • dae09613725666657430641a75e5e62b6554c825 chore: bump actions/upload-artifact from 4.3.1 to 4.3.6
  • 5e3935b2f9907f0ccfcc3068e2c76c057e4b850d chore: bump step-security/harden-runner from 2.6.1 to 2.9.1
  • 0a0ed48b131766b07bd40c56b5d1876411554ff5 chore: bump kind version and k8s version in test matrix
  • 36c6a8db9939e4a730c48e97b7d032f9768d3b3e chore: bump livenessprobe to v2.13.1
  • c807dca3c4760a8b72a5591b4fd1a72557fbc27d chore: bump node-driver-registrar to v2.11.1
  • 0c90683e90a0ac55e975886037e6cfee26039aa2 chore: bump ossf/scorecard-action from 2.3.1 to 2.4.0
  • 09e9b3b15b6d9e6feed7297d8e22b386642bf5e5 chore: bump actions/setup-go from 4.0.1 to 5.0.2
  • 0363ede509e18b1b45f7caa107ffc2edb0d9ba4b chore: bump codecov/codecov-action from 4.2.0 to 4.5.0
  • 549a1dec47f62ad349a6ca86c5fed38f8d6d23b7 chore: bump github/codeql-action from 3.25.0 to 3.25.8
  • 5672b8d58221e49dc16b754479492f9eedfac11c chore: update debian-base to bookworm-v1.0.3

... (truncated)

Commits
  • b5cd347 Merge pull request #1787aramase/automated-cherry-pick-of-#1786
  • 4fddb09 release: update manifest and helm charts for v1.5.0
  • a23250a Merge pull request #1785 from aramase/aramase/c/bump_release_1.5_v1.5.0
  • 6b41ff9 chore: bump version to v1.5.0 in release-1.5
  • be10948 Merge pull request #1676 from aramase/aramase/b/sha_logic
  • b0fdeb5 fix: update sha generation logic
  • f0e9dcc fix: add unit test to show failures in current sha logic
  • 6c0fbc3 Merge pull request #1783 from aramase/aramase/c/kind_v0.27.0
  • a488327 chore: bump kind to v0.27.0
  • 1080aee Merge pull request #1777 from aramase/aramase/s/fix_cves
  • Additional commits viewable in compare view

Updates sigs.k8s.io/structured-merge-diff/v4 from 4.4.2 to 4.5.0

Commits
  • 7bf59b3 Merge pull request #274 from yongruilin/bool-comparison
  • 40c8ef9 Merge pull request #275 from yongruilin/extend-extractitems
  • a88b919 feat: Adds ExtractItems option to include key fields
  • 9e64d18 Merge pull request #272 from Jefftree/drop-vendor
  • e96ad23 chore: Removes unused test schema
  • c5a1d56 chore: omit comparison to bool constant
  • b1dac80 Remove vendor directory
  • dc61957 Merge pull request #270 from jpbetz/json-iter-bump
  • bfb8f51 Run go mod vendor
  • db46cc3 Merge pull request #269 from jpbetz/fix-ignore-fields-break
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added area/ci-tooling Indicates the PR includes changes for CI or tooling ok-to-test Indicates a non-member PR verified by an org member that is safe to test. labels May 16, 2025
@openshift-ci-robot openshift-ci-robot added the jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. label May 16, 2025
@openshift-ci-robot
Copy link

@dependabot[bot]: This pull request explicitly references no jira issue.

In response to this:

Bumps the sigs-k8s-dependencies group with 5 updates in the / directory:

Package From To
sigs.k8s.io/cluster-api-provider-aws/v2 2.8.1 2.8.2
sigs.k8s.io/cluster-api-provider-azure 1.19.2 1.19.4
sigs.k8s.io/cluster-api-provider-openstack 0.12.1 0.12.3
sigs.k8s.io/karpenter 1.2.1-0.20250212185021-45f73ec7a790 1.4.0
sigs.k8s.io/secrets-store-csi-driver 1.4.8 1.5.0

Updates sigs.k8s.io/cluster-api-provider-aws/v2 from 2.8.1 to 2.8.2

Release notes

Sourced from sigs.k8s.io/cluster-api-provider-aws/v2's releases.

v2.8.2

Release notes for Cluster API Provider AWS (CAPA) v2.8.2

Documentation

Changelog since v2.8.1

Changes by Kind

Support

  • Bump github.com/golang-jwt/jwt to 4.5.2 and 5.5.2 (#5436, @​damdo)

The images for this release are: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.8.2

Thanks to all our contributors.

Commits
  • 79ae3d0 Merge pull request #5436 from damdo/release-2.8-bump-jwt-to-v4.5.2
  • b176106 bump github.com/golang-jwt/jwt to v4.5.2 and v5.2.2
  • See full diff in compare view

Updates sigs.k8s.io/cluster-api-provider-azure from 1.19.2 to 1.19.4

Release notes

Sourced from sigs.k8s.io/cluster-api-provider-azure's releases.

v1.19.4

Changes by Kind

Bugs and Regressions

  • Upgraded aks-aso and aks-aso-clusterclass flavor templates to use the new API version. (#5626, @​alimaazamat)
  • fix AzCluster_default and AzCluster_validation webhooks (#5617, @​nawazkh)

Dependencies

Added

Nothing has changed.

Changed

Removed

Nothing has changed.

Details

kubernetes-sigs/cluster-api-provider-azure@v1.19.3...v1.19.4

v1.19.3

Changes by Kind

Bug or Regression

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

Details

kubernetes-sigs/cluster-api-provider-azure@v1.19.2...v1.19.3

Commits
  • 99a359a Merge pull request #5626 from k8s-infra-cherrypick-robot/cherry-pick-5622-to-...
  • a84c90e version bump
  • 6bcdb82 enable new AKS API version with ASO API
  • 76b44f5 Merge pull request #5623 from k8s-infra-cherrypick-robot/cherry-pick-5621-to-...
  • 569b5fa Bump cert-manager to v1.17.2
  • aa30f3c [release-1.19] fix AzCluster_default and AzCluster_validation webhooks (#5617)
  • 2d175a3 Merge pull request #5591 from k8s-infra-cherrypick-robot/cherry-pick-5584-to-...
  • fec83ae [release-1.19] NIC should be try to fix itself when it is in ProvisioningFail...
  • aaeba8c Merge pull request #5573 from k8s-infra-cherrypick-robot/cherry-pick-5556-to-...
  • 283c981 only update subnet spec if status CIDRs not empty
  • Additional commits viewable in compare view

Updates sigs.k8s.io/cluster-api-provider-openstack from 0.12.1 to 0.12.3

Release notes

Sourced from sigs.k8s.io/cluster-api-provider-openstack's releases.

v0.12.3

Changes since v0.12.2

🐛 Bug Fixes

  • fix openstackserver controller concurrency (#2503)

🌱 Others

  • Bump net to v0.38.0 (#2527)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 9 updates (#2525)
  • (deps): bump softprops/action-gh-release from 2.2.1 to 2.2.2 in the all-github-actions group (#2522)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 2 updates (#2515)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 5 updates (#2510)
  • (deps): Bump the all-go-mod-patch-and-minor group across 2 directories with 4 updates (#2496)
  • (deps): Bump the all-github-actions group with 2 updates (#2494)

Thanks to all our contributors! 😊

v0.12.2

Changes since v0.12.1

🐛 Bug Fixes

  • Do not delete bastion floating ip if set in spec (#2484)
  • OpenStackServer controller: minor log message fix (#2483)
  • Dereference the instance state in machine state reconcile calls (#2467)
  • Don't set OSMachine Ready until all config is complete (#2480)
  • Fix panic when OpenStack server is deleted by an external agent (#2477)
  • Allow modification of all ManagedSecurityGroups (#2465)

🌱 Others

  • Bumps to newer versions of go modules.
  • Bump golangci-lint to support go1.24 (#2449)

Thanks to all our contributors! 😊

Commits
  • 4f3fb0c Merge pull request #2527 from Nordix/lentzi90/net-bump-release-0.12
  • 534c1d9 Bump net to v0.38.0
  • ca294e1 Merge pull request #2525 from kubernetes-sigs/dependabot/go_modules/release-0...
  • edcd309 Update generated code
  • be7ebec 🌱(deps): Bump the all-go-mod-patch-and-minor group across 2 director...
  • 3263bfe Merge pull request #2522 from kubernetes-sigs/dependabot/github_actions/relea...
  • cf08997 🌱(deps): bump softprops/action-gh-release
  • aa11f15 Merge pull request #2515 from kubernetes-sigs/dependabot/go_modules/release-0...
  • 1210704 🌱(deps): Bump the all-go-mod-patch-and-minor group across 2 director...
  • 78802c4 Merge pull request #2510 from kubernetes-sigs/dependabot/go_modules/release-0...
  • Additional commits viewable in compare view

Updates sigs.k8s.io/karpenter from 1.2.1-0.20250212185021-45f73ec7a790 to 1.4.0

Release notes

Sourced from sigs.k8s.io/karpenter's releases.

v1.4.0

Features

Bug Fixes

Documentation

Performance Improvements

Tests

Continuous Integration

Chores

... (truncated)

Commits

Updates sigs.k8s.io/secrets-store-csi-driver from 1.4.8 to 1.5.0

Release notes

Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.

v1.5.0 - 2025-04-09

Changelog

Bug Fixes 🐞

  • b0fdeb52d108375887241e8ddd07c8a97296d061 fix: update sha generation logic
  • f0e9dccf836986666aaa7f22dbd1ad6e5210c02f fix: add unit test to show failures in current sha logic

Code Refactoring 💎

  • 9548c23ad3e8d430cb01b163a6f431240504771a refactor: cleanup unused err check

Features 🌈

  • bf7e77ef35795a6b405511938f6cb976463cb8f9 feat: add build for windows ltsc2025

Maintenance 🔧

  • a488327b740472d9b5e4d2af228b91f79b3f9657 chore: bump kind to v0.27.0
  • 515358e1f4f65c12cff0d081687fd9de23ecede5 chore: disable trivy package testing for driver-crds
  • 924b3b8302bf5a3c172c663ff85c14dcd195addf chore: bump docker golang base images to 1.23
  • 572e439668e9689e3c33071c8cb6525ae262a0ce chore: move tam7t to emeritus_approvers
  • 0b00da8f222c0e76e6cce09136f839e8cb8a7934 chore: bump github/codeql-action from 3.28.0 to 3.28.8
  • b8a1e5bea00875a7f437902b7f419cf6118f3017 chore: bump actions/setup-go from 5.2.0 to 5.3.0
  • 4aad87b2c506c3c4f670da9b59d530b46f518e13 chore: bump golang.org/x/net from 0.28.0 to 0.33.0 in /hack/tools
  • 25d77569bac10e152ac953a831e436b034625083 chore: bump gaurav-nelson/github-action-markdown-link-check
  • c3cb4ffc0b68bd2016311a3f74ea876cf26733ea chore: bump step-security/harden-runner from 2.10.2 to 2.10.3
  • 911b494b4f2c366ca98a27ec3a21f8da5e691db2 chore: bump codecov/codecov-action from 5.1.1 to 5.1.2
  • aaa4a3c875f4cbdfd846813ce2f431b70340f943 chore: bump github/codeql-action from 3.26.13 to 3.28.0
  • 5a8d6b55097564533003a6d2f7b8622a51184b51 chore: bump actions/upload-artifact from 4.4.1 to 4.5.0
  • 7c04af1d155af55ef88b090d092c26fa7b8048c0 chore: bump actions/setup-go from 5.0.2 to 5.2.0
  • a24d2fdd75c68c6febbbaeb85cfb003cb9e7b7de chore: bump golang.org/x/crypto from 0.22.0 to 0.31.0
  • 5fe63f79191efaaf40f6584b32de872d5c643d8a chore: bump codecov/codecov-action from 4.5.0 to 5.1.1
  • 658a778626e0fb91a72e1dc3c2bd8264ca6c62e3 chore: bump golang/govulncheck-action from 1.0.3 to 1.0.4
  • 041d14233cbc642caee545b148f68683cc0a9b57 chore: bump to golang 1.22 builder image in dockerfile
  • c5d2bd300190d1e790b165ae683fe73f632cacb1 chore: bump trivy to v0.57.1 to mitigate rate limit issues
  • f6bd4d8b091289af9f064e60ac11d1c78fd1e604 chore: bump step-security/harden-runner from 2.9.1 to 2.10.2
  • 88d1253a7c01e26fd6d97339e7077f9c3527f0b8 chore: bump actions/checkout from 4.1.7 to 4.2.1
  • 44e76537659cffffeabdd9838b1283f0461f43af chore: bump github/codeql-action from 3.26.6 to 3.26.13
  • cb6fd1e86f84a27442f85d1d03a625ac793089f8 chore: bumps base images
  • ef8f5eb3bf682774ea4e8df84ca9a0e9bb54c359 chore: bump actions/upload-artifact from 4.4.0 to 4.4.1
  • 2f6e7d0324bc624ac33217b82da0e22e0198423f chore: bump actions/upload-artifact from 4.3.6 to 4.4.0
  • 92c73a029323480d0f9d4940d7488f0bed552b46 chore: bump github/codeql-action from 3.26.5 to 3.26.6
  • 77109220c4c75a827c77ea78c6305c86425d9c7a chore: bump actions/dependency-review-action from 4.3.2 to 4.3.4
  • 5e1d34fba8b53b038dfbca42052dd64418a4d905 chore: bump golang/govulncheck-action from 1.0.2 to 1.0.3
  • 6fe8bd569a1fcb618e053ec6a990bd1b0281f1c1 chore: bump actions/checkout from 4.1.5 to 4.1.7
  • f09e97c906581fbe7d6f3be1c3a01208a4340282 chore: bump github/codeql-action from 3.25.8 to 3.26.5
  • dae09613725666657430641a75e5e62b6554c825 chore: bump actions/upload-artifact from 4.3.1 to 4.3.6
  • 5e3935b2f9907f0ccfcc3068e2c76c057e4b850d chore: bump step-security/harden-runner from 2.6.1 to 2.9.1
  • 0a0ed48b131766b07bd40c56b5d1876411554ff5 chore: bump kind version and k8s version in test matrix
  • 36c6a8db9939e4a730c48e97b7d032f9768d3b3e chore: bump livenessprobe to v2.13.1
  • c807dca3c4760a8b72a5591b4fd1a72557fbc27d chore: bump node-driver-registrar to v2.11.1
  • 0c90683e90a0ac55e975886037e6cfee26039aa2 chore: bump ossf/scorecard-action from 2.3.1 to 2.4.0
  • 09e9b3b15b6d9e6feed7297d8e22b386642bf5e5 chore: bump actions/setup-go from 4.0.1 to 5.0.2
  • 0363ede509e18b1b45f7caa107ffc2edb0d9ba4b chore: bump codecov/codecov-action from 4.2.0 to 4.5.0
  • 549a1dec47f62ad349a6ca86c5fed38f8d6d23b7 chore: bump github/codeql-action from 3.25.0 to 3.25.8
  • 5672b8d58221e49dc16b754479492f9eedfac11c chore: update debian-base to bookworm-v1.0.3

... (truncated)

Commits
  • b5cd347 Merge pull request #1787aramase/automated-cherry-pick-of-#1786
  • 4fddb09 release: update manifest and helm charts for v1.5.0
  • a23250a Merge pull request #1785 from aramase/aramase/c/bump_release_1.5_v1.5.0
  • 6b41ff9 chore: bump version to v1.5.0 in release-1.5
  • be10948 Merge pull request #1676 from aramase/aramase/b/sha_logic
  • b0fdeb5 fix: update sha generation logic
  • f0e9dcc fix: add unit test to show failures in current sha logic
  • 6c0fbc3 Merge pull request #1783 from aramase/aramase/c/kind_v0.27.0
  • a488327 chore: bump kind to v0.27.0
  • 1080aee Merge pull request #1777 from aramase/aramase/s/fix_cves
  • Additional commits viewable in compare view

Updates sigs.k8s.io/structured-merge-diff/v4 from 4.4.2 to 4.5.0

Commits
  • 7bf59b3 Merge pull request #274 from yongruilin/bool-comparison
  • 40c8ef9 Merge pull request #275 from yongruilin/extend-extractitems
  • a88b919 feat: Adds ExtractItems option to include key fields
  • 9e64d18 Merge pull request #272 from Jefftree/drop-vendor
  • e96ad23 chore: Removes unused test schema
  • c5a1d56 chore: omit comparison to bool constant
  • b1dac80 Remove vendor directory
  • dc61957 Merge pull request #270 from jpbetz/json-iter-bump
  • bfb8f51 Run go mod vendor
  • db46cc3 Merge pull request #269 from jpbetz/fix-ignore-fields-break
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-ci openshift-ci bot requested review from enxebre and hasueki May 16, 2025 02:04
@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented May 16, 2025

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented May 16, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign muraee for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@cwbotbot
Copy link

cwbotbot commented May 16, 2025
edited
Loading

Test Results

e2e-aws

e2e-aks

@dependabot
NO-JIRA: Bump the sigs-k8s-dependencies group across 1 directory with…
8ba3260 
… 6 updates

Bumps the sigs-k8s-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [sigs.k8s.io/cluster-api-provider-aws/v2](https://github.com/kubernetes-sigs/cluster-api-provider-aws) | `2.8.1` | `2.8.2` |
| [sigs.k8s.io/cluster-api-provider-azure](https://github.com/kubernetes-sigs/cluster-api-provider-azure) | `1.19.2` | `1.19.4` |
| [sigs.k8s.io/cluster-api-provider-openstack](https://github.com/kubernetes-sigs/cluster-api-provider-openstack) | `0.12.1` | `0.12.3` |
| [sigs.k8s.io/karpenter](https://github.com/kubernetes-sigs/karpenter) | `1.2.1-0.20250212185021-45f73ec7a790` | `1.4.0` |
| [sigs.k8s.io/secrets-store-csi-driver](https://github.com/kubernetes-sigs/secrets-store-csi-driver) | `1.4.8` | `1.5.0` |



Updates `sigs.k8s.io/cluster-api-provider-aws/v2` from 2.8.1 to 2.8.2
- [Release notes](https://github.com/kubernetes-sigs/cluster-api-provider-aws/releases)
- [Changelog](https://github.com/kubernetes-sigs/cluster-api-provider-aws/blob/main/.goreleaser.yaml)
- [Commits](kubernetes-sigs/cluster-api-provider-aws@v2.8.1...v2.8.2)

Updates `sigs.k8s.io/cluster-api-provider-azure` from 1.19.2 to 1.19.4
- [Release notes](https://github.com/kubernetes-sigs/cluster-api-provider-azure/releases)
- [Commits](kubernetes-sigs/cluster-api-provider-azure@v1.19.2...v1.19.4)

Updates `sigs.k8s.io/cluster-api-provider-openstack` from 0.12.1 to 0.12.3
- [Release notes](https://github.com/kubernetes-sigs/cluster-api-provider-openstack/releases)
- [Changelog](https://github.com/kubernetes-sigs/cluster-api-provider-openstack/blob/main/RELEASE.md)
- [Commits](kubernetes-sigs/cluster-api-provider-openstack@v0.12.1...v0.12.3)

Updates `sigs.k8s.io/karpenter` from 1.2.1-0.20250212185021-45f73ec7a790 to 1.4.0
- [Release notes](https://github.com/kubernetes-sigs/karpenter/releases)
- [Changelog](https://github.com/kubernetes-sigs/karpenter/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/karpenter/commits/v1.4.0)

Updates `sigs.k8s.io/secrets-store-csi-driver` from 1.4.8 to 1.5.0
- [Release notes](https://github.com/kubernetes-sigs/secrets-store-csi-driver/releases)
- [Changelog](https://github.com/kubernetes-sigs/secrets-store-csi-driver/blob/main/docs/RELEASE.md)
- [Commits](kubernetes-sigs/secrets-store-csi-driver@v1.4.8...v1.5.0)

Updates `sigs.k8s.io/structured-merge-diff/v4` from 4.4.2 to 4.5.0
- [Release notes](https://github.com/kubernetes-sigs/structured-merge-diff/releases)
- [Changelog](https://github.com/kubernetes-sigs/structured-merge-diff/blob/master/RELEASE.md)
- [Commits](kubernetes-sigs/structured-merge-diff@v4.4.2...v4.5.0)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/cluster-api-provider-aws/v2
  dependency-version: 2.8.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sigs-k8s-dependencies
- dependency-name: sigs.k8s.io/cluster-api-provider-azure
  dependency-version: 1.19.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sigs-k8s-dependencies
- dependency-name: sigs.k8s.io/cluster-api-provider-openstack
  dependency-version: 0.12.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sigs-k8s-dependencies
- dependency-name: sigs.k8s.io/karpenter
  dependency-version: 1.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sigs-k8s-dependencies
- dependency-name: sigs.k8s.io/secrets-store-csi-driver
  dependency-version: 1.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sigs-k8s-dependencies
- dependency-name: sigs.k8s.io/structured-merge-diff/v4
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: sigs-k8s-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/sigs-k8s-dependencies-72ae96499f branch from 9505d60 to 8ba3260 Compare May 23, 2025 01:43
@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented May 23, 2025

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/e2e-kubevirt-aws-ovn-reduced 8ba3260 link true /test e2e-kubevirt-aws-ovn-reduced
ci/prow/images 8ba3260 link true /test images
ci/prow/verify-deps 8ba3260 link true /test verify-deps
ci/prow/okd-scos-e2e-aws-ovn 8ba3260 link false /test okd-scos-e2e-aws-ovn
ci/prow/e2e-aws-upgrade-hypershift-operator 8ba3260 link true /test e2e-aws-upgrade-hypershift-operator
ci/prow/unit 8ba3260 link true /test unit
ci/prow/verify 8ba3260 link true /test verify
ci/prow/e2e-aws 8ba3260 link true /test e2e-aws
ci/prow/e2e-aks 8ba3260 link true /test e2e-aks

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@enxebre enxebre Awaiting requested review from enxebre

@hasueki hasueki Awaiting requested review from hasueki

Assignees
No one assigned
Labels
area/ci-tooling Indicates the PR includes changes for CI or tooling jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. ok-to-test Indicates a non-member PR verified by an org member that is safe to test.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@openshift-ci-robot @cwbotbot