chore(deps): bump the production-dependencies group across 1 directory with 9 updates #343

dependabot · 2024-11-25T03:00:12Z

Bumps the production-dependencies group with 8 updates in the / directory:

Package	From	To
github.com/containers/image/v5	`5.32.2`	`5.33.0`
github.com/stretchr/testify	`1.9.0`	`1.10.0`
google.golang.org/grpc	`1.67.1`	`1.68.0`
google.golang.org/protobuf	`1.35.1`	`1.35.2`
k8s.io/api	`0.31.2`	`0.31.3`
k8s.io/client-go	`0.31.2`	`0.31.3`
k8s.io/code-generator	`0.31.2`	`0.31.3`
sigs.k8s.io/controller-runtime	`0.19.1`	`0.19.2`

Updates github.com/containers/image/v5 from 5.32.2 to 5.33.0

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.33.0

What's Changed

Merge 5.32.1 back into main by @mtrmac in containers/image#2510

Update module github.com/docker/docker to v27.1.2+incompatible by @renovate in containers/image#2516

Update module github.com/docker/cli to v27.1.2+incompatible by @renovate in containers/image#2515

pkg/blobcache: simplify test case by @kolyshkin in containers/image#2521

[CI:DOCS] Update dependency golangci/golangci-lint to v1.60.1 by @renovate in containers/image#2517

Update module github.com/vbauerster/mpb/v8 to v8.8.1 by @renovate in containers/image#2525

Introduce/use JSONFormatToInvalidSignatureError by @kolyshkin in containers/image#2518

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.8.2 by @renovate in containers/image#2528

fix(deps): update module dario.cat/mergo to v1.0.1 by @renovate in containers/image#2527

Use %w to wrap errors, enable errorlint by @kolyshkin in containers/image#2519

Add keyPaths, keyDatas to prSigstoreSigned by @mtrmac in containers/image#2524

Add support for accepting multiple Rekor public keys by @mtrmac in containers/image#2526

Release 5.32.2 by @mtrmac in containers/image#2531

[CI:DOCS] Update dependency golangci/golangci-lint to v1.60.2 by @renovate in containers/image#2533

Merge release-5.32 into main by @mtrmac in containers/image#2532

Update module github.com/vbauerster/mpb/v8 to v8.8.3 by @renovate in containers/image#2540

[CI:DOCS] Update dependency golangci/golangci-lint to v1.60.3 by @renovate in containers/image#2535

Support proxy environment for docker client by @PMExtra in containers/image#2424

Update module github.com/docker/docker to v27.2.0+incompatible by @renovate in containers/image#2543

Update module github.com/docker/cli to v27.2.0+incompatible by @renovate in containers/image#2542

Update dependency containers/automation_images to v20240821 by @renovate in containers/image#2545

Update golang.org/x/exp digest to 9b4947d by @renovate in containers/image#2549

Add a workaround for null values in the tag list by @mtrmac in containers/image#2544

Update module github.com/mattn/go-sqlite3 to v1.14.23 by @renovate in containers/image#2554

Update module golang.org/x/oauth2 to v0.23.0 by @renovate in containers/image#2555

Update module golang.org/x/term to v0.24.0 by @renovate in containers/image#2556

Update module golang.org/x/crypto to v0.27.0 by @renovate in containers/image#2561

Assorted clean ups, optimizations, and a small bug fix by @mtrmac in containers/image#2552

Update to Go 1.22 by @mtrmac in containers/image#2550

Update module github.com/sigstore/fulcio to v1.6.4 by @renovate in containers/image#2560

Refactor image deletion in OCI by @mtrmac in containers/image#2551

Update module github.com/docker/docker to v27.2.1+incompatible by @renovate in containers/image#2564

Update module github.com/docker/cli to v27.2.1+incompatible by @renovate in containers/image#2563

Update dependency golangci/golangci-lint to v1.61.0 by @renovate in containers/image#2565

storage: use PrepareStagedLayer instead of ApplyDiffWithDiffer by @giuseppe in containers/image#2570

fix(deps): update module github.com/sigstore/sigstore to v1.8.9 by @renovate in containers/image#2571

copy: Don't print "skipped: 0.0b = 0.00%" by @cgwalters in containers/image#2576

fix(deps): update module github.com/docker/docker to v27.3.0+incompatible by @renovate in containers/image#2575

fix(deps): update module github.com/docker/cli to v27.3.0+incompatible by @renovate in containers/image#2574

fix(deps): update module github.com/docker/cli to v27.3.1+incompatible by @renovate in containers/image#2577

fix(deps): update module github.com/docker/docker to v27.3.1+incompatible by @renovate in containers/image#2578

Fix an incorrect expected MIME type when validating manifests by @mtrmac in containers/image#2572

fix(deps): update module github.com/klauspost/compress to v1.17.10 by @renovate in containers/image#2580

fix(deps): update module github.com/vbatts/tar-split to v0.11.6 by @renovate in containers/image#2584

Fix: Improving error log message for missing policy.json file by @Sativarsainath-26 in containers/image#2582

fix(deps): update github.com/containers/storage digest to 4bf3f07 by @renovate in containers/image#2586

fix(deps): update golang.org/x/exp digest to 701f63a by @renovate in containers/image#2587

registry: remove ping v1 by @carlosrodfern in containers/image#2588

... (truncated)

Commits

c3a2029 Bump to c/image v5.33.0
04d69d5 Bump to c/storage v1.56.0
59417ae Merge pull request #2609 from mtrmac/copy-resolve-destination
6ba898f HACK: Only return an image ID from ReportResolvedReference for c/storage
125f862 Return a precise reference to the created image when writing to containers-st...
91d22b2 Introduce private.ImageDestination.CommitWithOptions
831269d Rename an options variable to imgOptions
ba2a4ae Merge pull request #2616 from containers/renovate/golang.org-x-exp-digest
6bcb929 fix(deps): update golang.org/x/exp digest to f66d83c
228de93 Merge pull request #2615 from containers/renovate/github.aaakk.us.kg-containers-stora...
Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.9.0 to 1.10.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.10.0

What's Changed

Functional Changes

Add PanicAssertionFunc by @fahimbagar in stretchr/testify#1337

assert: deprecate CompareType by @dolmen in stretchr/testify#1566

assert: make YAML dependency pluggable via build tags by @dolmen in stretchr/testify#1579

assert: new assertion NotElementsMatch by @hendrywiranto in stretchr/testify#1600

mock: in order mock calls by @ReyOrtiz in stretchr/testify#1637

Add assertion for NotErrorAs by @palsivertsen in stretchr/testify#1129

Record Return Arguments of a Call by @jayd3e in stretchr/testify#1636

assert.EqualExportedValues: accepts everything by @redachl in stretchr/testify#1586

Fixes

assert: make tHelper a type alias by @dolmen in stretchr/testify#1562

Do not get argument again unnecessarily in Arguments.Error() by @TomWright in stretchr/testify#820

Fix time.Time compare by @myxo in stretchr/testify#1582

assert.Regexp: handle []byte array properly by @kevinburkesegment in stretchr/testify#1587

assert: collect.FailNow() should not panic by @marshall-lee in stretchr/testify#1481

mock: simplify implementation of FunctionalOptions by @dolmen in stretchr/testify#1571

mock: caller information for unexpected method call by @spirin in stretchr/testify#1644

suite: fix test failures by @stevenh in stretchr/testify#1421

Fix issue #1662 (comparing infs should fail) by @ybrustin in stretchr/testify#1663

NotSame should fail if args are not pointers #1661 by @sikehish in stretchr/testify#1664

Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by @sikehish in stretchr/testify#1667

fix: compare functional option names for indirect calls by @arjun-1 in stretchr/testify#1626

Documantation, Build & CI

.gitignore: ignore "go test -c" binaries by @dolmen in stretchr/testify#1565

mock: improve doc by @dolmen in stretchr/testify#1570

mock: fix FunctionalOptions docs by @snirye in stretchr/testify#1433

README: link out to the excellent testifylint by @brackendawson in stretchr/testify#1568

assert: fix typo in comment by @JohnEndson in stretchr/testify#1580

Correct the EventuallyWithT and EventuallyWithTf example by @JonCrowther in stretchr/testify#1588

CI: bump softprops/action-gh-release from 1 to 2 by @dependabot in stretchr/testify#1575

mock: document more alternatives to deprecated AnythingOfTypeArgument by @dolmen in stretchr/testify#1569

assert: Correctly document EqualValues behavior by @brackendawson in stretchr/testify#1593

fix: grammar in godoc by @miparnisari in stretchr/testify#1607

.github/workflows: Run tests for Go 1.22 by @HaraldNordgren in stretchr/testify#1629

Document suite's lack of support for t.Parallel by @brackendawson in stretchr/testify#1645

assert: fix typos in comments by @alexandear in stretchr/testify#1650

mock: fix doc comment for NotBefore by @alexandear in stretchr/testify#1651

Generate better comments for require package by @Neokil in stretchr/testify#1610

README: replace Testify V2 notice with @dolmen's V2 manifesto by @hendrywiranto in stretchr/testify#1518

New Contributors

@fahimbagar made their first contribution in stretchr/testify#1337

@TomWright made their first contribution in stretchr/testify#820

@snirye made their first contribution in stretchr/testify#1433

@myxo made their first contribution in stretchr/testify#1582

@JohnEndson made their first contribution in stretchr/testify#1580

... (truncated)

Commits

89cbdd9 Merge pull request #1626 from arjun-1/fix-functional-options-diff-indirect-calls
07bac60 Merge pull request #1667 from sikehish/flaky
716de8d Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI
118fb83 NotSame should fail if args are not pointers #1661 (#1664)
7d99b2b attempt 2
05f87c0 more similar
ea7129e better fmt
a1b9c9e Merge pull request #1663 from ybrustin/master
8302de9 Merge branch 'master' into master
89352f7 Merge pull request #1518 from hendrywiranto/adjust-readme-remove-v2
Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.67.1 to 1.68.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.68.0

Known Issues

The recently added grpc.NewClient function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. This bug has been present since the introduction of NewClient. A fix is expected to be a part of grpc-go v1.69. (#7556)

Behavior Changes

stats/opentelemetry/csm: Get mesh_id local label from "CSM_MESH_ID" environment variable, rather than parsing from bootstrap file (#7740)

orca (experimental): if using an ORCA listener, it must now be registered only on a READY SubConn, and the listener will automatically be stopped when the connection is lost. (#7663)

client: ClientConn.Close() now closes transports simultaneously and waits for transports to be closed before returning. (#7666)

credentials: TLS credentials created via NewTLS that use tls.Config.GetConfigForClient will now have CipherSuites, supported TLS versions and ALPN configured automatically. These were previously only set for configs not using the GetConfigForClient option. (#7709)

Bug Fixes

transport: prevent deadlock in client transport shutdown when writing the GOAWAY frame hangs. (#7662)

mem: reuse buffers more accurately by using slice capacity instead of length (#7702)

Special Thanks: @PapaCharlie

status: Fix regression caused by #6919 in status.Details() causing it to return a wrapped type when getting proto messages generated with protoc-gen-go < v1. (#7724)

Dependencies

Bump minimum supported Go version to go1.22.7. (#7624)

Commits

acba4d3 Change version to 1.68.0 (#7743)
5363dca credentials: Apply defaults to TLS configs provided through GetConfigForClien...
056dc64 status: Fix status incompatibility introduced by #6919 and move non-regenerat...
b79fb61 mem: use slice capacity instead of length, to determine whether to pool buffe...
54841ef stats/opentelemetry/csm: Get mesh_id local label from "CSM_MESH_ID" environme...
ad81c20 pickfirstleaf: minor simplification to reconcileSubConnsLocked method (#7731)
b850ea5 transport : wait for goroutines to exit before transport closes (#7666)
00b9e14 pickfirst: New pick first policy for dualstack (#7498)
18a4eac testutils: add couple of log statements to the restartable listener type (#7716)
fdc2ec2 xdsclient: deflake TestADS_ResourcesAreRequestedAfterStreamRestart (#7720)
Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.35.1 to 1.35.2

Updates k8s.io/api from 0.31.2 to 0.31.3

Commits

b7783ab Update dependencies to v0.31.3 tag
See full diff in compare view

Updates k8s.io/apimachinery from 0.31.2 to 0.31.3

Commits

See full diff in compare view

Updates k8s.io/client-go from 0.31.2 to 0.31.3

Commits

ef98edc Update dependencies to v0.31.3 tag
See full diff in compare view

Updates k8s.io/code-generator from 0.31.2 to 0.31.3

Commits

86c3401 Update dependencies to v0.31.3 tag
See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.19.1 to 0.19.2

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.19.2

What's Changed

✨ Add EnableWatchBookmarks option to cache informers by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3018

Full Changelog: kubernetes-sigs/controller-runtime@v0.19.1...v0.19.2

Commits

bfd1cf9 [release-0.19] ✨ Add EnableWatchBookmarks option to cache informers (#3018)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 9 updates Bumps the production-dependencies group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/containers/image/v5](https://github.com/containers/image) | `5.32.2` | `5.33.0` | | [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.9.0` | `1.10.0` | | [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.67.1` | `1.68.0` | | google.golang.org/protobuf | `1.35.1` | `1.35.2` | | [k8s.io/api](https://github.com/kubernetes/api) | `0.31.2` | `0.31.3` | | [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.31.2` | `0.31.3` | | [k8s.io/code-generator](https://github.com/kubernetes/code-generator) | `0.31.2` | `0.31.3` | | [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.19.1` | `0.19.2` | Updates `github.com/containers/image/v5` from 5.32.2 to 5.33.0 - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.32.2...v5.33.0) Updates `github.com/stretchr/testify` from 1.9.0 to 1.10.0 - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.9.0...v1.10.0) Updates `google.golang.org/grpc` from 1.67.1 to 1.68.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.67.1...v1.68.0) Updates `google.golang.org/protobuf` from 1.35.1 to 1.35.2 Updates `k8s.io/api` from 0.31.2 to 0.31.3 - [Commits](kubernetes/api@v0.31.2...v0.31.3) Updates `k8s.io/apimachinery` from 0.31.2 to 0.31.3 - [Commits](kubernetes/apimachinery@v0.31.2...v0.31.3) Updates `k8s.io/client-go` from 0.31.2 to 0.31.3 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.31.2...v0.31.3) Updates `k8s.io/code-generator` from 0.31.2 to 0.31.3 - [Commits](kubernetes/code-generator@v0.31.2...v0.31.3) Updates `sigs.k8s.io/controller-runtime` from 0.19.1 to 0.19.2 - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md) - [Commits](kubernetes-sigs/controller-runtime@v0.19.1...v0.19.2) --- updated-dependencies: - dependency-name: github.com/containers/image/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: k8s.io/api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: k8s.io/apimachinery dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: k8s.io/client-go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: k8s.io/code-generator dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Nov 25, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the production-dependencies group across 1 directory with 9 updates #343

chore(deps): bump the production-dependencies group across 1 directory with 9 updates #343

dependabot bot commented on behalf of github Nov 25, 2024

chore(deps): bump the production-dependencies group across 1 directory with 9 updates #343

Are you sure you want to change the base?

chore(deps): bump the production-dependencies group across 1 directory with 9 updates #343

Conversation

dependabot bot commented on behalf of github Nov 25, 2024

v5.33.0

What's Changed

v1.10.0

What's Changed

Functional Changes

Fixes

Documantation, Build & CI

New Contributors

Release 1.68.0

Known Issues

Behavior Changes

Bug Fixes

Dependencies

v0.19.2

What's Changed