Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the all group across 1 directory with 7 updates #2233

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 20, 2024

Bumps the all group with 6 updates in the / directory:

Package From To
cuelang.org/go 0.11.0 0.11.1
github.com/enterprise-contract/enterprise-contract-controller/api 0.1.69 0.1.71
github.com/secure-systems-lab/go-securesystemslib 0.8.0 0.9.0
golang.org/x/net 0.32.0 0.33.0
k8s.io/apimachinery 0.31.0 0.32.0
k8s.io/client-go 0.31.0 0.32.0

Updates cuelang.org/go from 0.11.0 to 0.11.1

Updates github.com/enterprise-contract/enterprise-contract-controller/api from 0.1.69 to 0.1.71

Release notes

Sourced from github.com/enterprise-contract/enterprise-contract-controller/api's releases.

API Release api/v0.1.71

What's Changed

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.70...api/v0.1.71

API Release api/v0.1.70

What's Changed

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.69...api/v0.1.70

Commits
  • 329c08e Merge pull request #444 from enterprise-contract/dependabot/github_actions/ac...
  • af991b8 Merge pull request #447 from enterprise-contract/dependabot/go_modules/github...
  • 693b7c3 Merge pull request #446 from enterprise-contract/dependabot/github_actions/gi...
  • be767a4 Merge pull request #445 from enterprise-contract/dependabot/github_actions/so...
  • fab4cd2 Bump github.com/onsi/gomega from 1.36.0 to 1.36.1
  • 70e3185 Bump github/codeql-action from 3.27.6 to 3.27.9
  • baff260 Bump softprops/action-gh-release from 2.1.0 to 2.2.0
  • b64d282 Bump actions/setup-go from 5.1.0 to 5.2.0
  • 9550e2c Merge pull request #443 from enterprise-contract/dependabot/github_actions/gi...
  • ae4d528 Merge pull request #442 from enterprise-contract/dependabot/github_actions/co...
  • Additional commits viewable in compare view

Updates github.com/secure-systems-lab/go-securesystemslib from 0.8.0 to 0.9.0

Commits
  • 7d19192 Merge pull request #103 from secure-systems-lab/dependabot/go_modules/golang....
  • 21102fa chore(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0
  • 1fb13ff Merge pull request #102 from secure-systems-lab/dependabot/github_actions/act...
  • 4e1c22d chore(deps): bump actions/setup-go from 5.1.0 to 5.2.0
  • 847cabc Merge pull request #101 from secure-systems-lab/dependabot/go_modules/golang....
  • 06fac2f chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.30.0
  • c1aadb2 Merge pull request #100 from secure-systems-lab/dependabot/go_modules/github....
  • 8fef2d7 chore(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0
  • c65f6c8 Merge pull request #99 from secure-systems-lab/dependabot/go_modules/golang.o...
  • 35b687d chore(deps): bump golang.org/x/crypto from 0.27.0 to 0.29.0
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.32.0 to 0.33.0

Commits
  • dfc720d go.mod: update golang.org/x dependencies
  • 8e66b04 html: use strings.EqualFold instead of lowering ourselves
  • b935f7b html: avoid endless loop on error token
  • 9af49ef route: remove unused sizeof* consts
  • 6705db9 quic: clean up crypto streams when dropping packet protection keys
  • 4ef7588 quic: handle ACK frame in packet which drops number space
  • 552d8ac Revert "route: change from syscall to x/sys/unix"
  • 13a7c01 Revert "route: remove unused sizeof* consts on freebsd"
  • See full diff in compare view

Updates k8s.io/apimachinery from 0.31.0 to 0.32.0

Commits
  • 59e9003 Merge remote-tracking branch 'origin/master' into release-1.32
  • 639247c Drop use of winreadlinkvolume godebug option
  • 220d7c3 Merge remote-tracking branch 'origin/master' into release-1.32
  • c199d3b Revert to go1.22 windows filesystem stdlib behavior
  • 16af2ff implement unsafe deletion, and wire it
  • 6ff8305 api: run codegen
  • ca9b8b2 api: add a new field to meta/v1 DeleteOptions
  • d941d9f Merge pull request #128503 from benluddy/cbor-codecs-featuregate
  • 3b4250f Wire serving codecs to CBOR feature gate.
  • daaad09 Merge pull request #128501 from benluddy/watch-cbor-seq
  • Additional commits viewable in compare view

Updates k8s.io/client-go from 0.31.0 to 0.32.0

Commits
  • 0d55461 Update dependencies to v0.32.0 tag
  • 4765ade Merge remote-tracking branch 'origin/master' into release-1.32
  • 692a511 Drop use of winreadlinkvolume godebug option
  • 9df5099 Merge remote-tracking branch 'origin/master' into release-1.32
  • 120beb2 Revert to go1.22 windows filesystem stdlib behavior
  • 55d23e2 Align fake client-go clients with the main interface
  • 646e79b Run codegen
  • c475fe0 Generify fake clientsets
  • 955401c Merge pull request #128407 from ndixita/pod-level-resources
  • eddb107 Merge pull request #127857 from Jefftree/cle-v1alpha2
  • Additional commits viewable in compare view

Updates k8s.io/kube-openapi from 0.0.0-20240903163716-9e1beecbcb38 to 0.0.0-20241105132330-32ad38e42d3f

Commits

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
github.com/enterprise-contract/enterprise-contract-controller/api [>= 0.1.33.a, < 0.1.34]
k8s.io/apimachinery [>= 0.30.a, < 0.31]
k8s.io/client-go [>= 0.30.a, < 0.31]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| cuelang.org/go | `0.11.0` | `0.11.1` |
| [github.com/enterprise-contract/enterprise-contract-controller/api](https://github.com/enterprise-contract/enterprise-contract-controller) | `0.1.69` | `0.1.71` |
| [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib) | `0.8.0` | `0.9.0` |
| [golang.org/x/net](https://github.com/golang/net) | `0.32.0` | `0.33.0` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.31.0` | `0.32.0` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.31.0` | `0.32.0` |



Updates `cuelang.org/go` from 0.11.0 to 0.11.1

Updates `github.com/enterprise-contract/enterprise-contract-controller/api` from 0.1.69 to 0.1.71
- [Release notes](https://github.com/enterprise-contract/enterprise-contract-controller/releases)
- [Commits](enterprise-contract/enterprise-contract-controller@api/v0.1.69...api/v0.1.71)

Updates `github.com/secure-systems-lab/go-securesystemslib` from 0.8.0 to 0.9.0
- [Release notes](https://github.com/secure-systems-lab/go-securesystemslib/releases)
- [Commits](secure-systems-lab/go-securesystemslib@v0.8.0...v0.9.0)

Updates `golang.org/x/net` from 0.32.0 to 0.33.0
- [Commits](golang/net@v0.32.0...v0.33.0)

Updates `k8s.io/apimachinery` from 0.31.0 to 0.32.0
- [Commits](kubernetes/apimachinery@v0.31.0...v0.32.0)

Updates `k8s.io/client-go` from 0.31.0 to 0.32.0
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.31.0...v0.32.0)

Updates `k8s.io/kube-openapi` from 0.0.0-20240903163716-9e1beecbcb38 to 0.0.0-20241105132330-32ad38e42d3f
- [Commits](https://github.com/kubernetes/kube-openapi/commits)

---
updated-dependencies:
- dependency-name: cuelang.org/go
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github.com/enterprise-contract/enterprise-contract-controller/api
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github.com/secure-systems-lab/go-securesystemslib
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/client-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/kube-openapi
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Dec 20, 2024
@zregvart
Copy link
Member

@dependabot ignore k8s.io/apimachinery

Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 20, 2024

OK, I won't notify you about k8s.io/apimachinery again, unless you unignore it.

@zregvart
Copy link
Member

@dependabot ignore k8s.io/client-go

Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 20, 2024

OK, I won't notify you about k8s.io/client-go again, unless you unignore it.

@zregvart
Copy link
Member

@dependabot recreate

Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 20, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 20, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/all-fe7299c967 branch December 20, 2024 11:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant