build(deps): bump the all group across 1 directory with 7 updates

[dependabot]

Bumps the all group with 7 updates in the /tools directory:

Package	From	To
github.com/daixiang0/gci	0.13.1	0.13.4
github.com/golangci/golangci-lint	1.56.2	1.59.1
github.com/open-policy-agent/conftest	0.50.0	0.53.0
github.com/tektoncd/chains	0.19.0	0.21.1
github.com/tektoncd/cli	0.32.0	0.37.0
helm.sh/helm/v3	3.14.3	3.15.2
sigs.k8s.io/kustomize/kustomize/v5	5.3.0	5.4.2

Updates github.com/daixiang0/gci from 0.13.1 to 0.13.4

Release notes

Sourced from github.com/daixiang0/gci's releases.

v0.13.4

What's Changed

• fix some typos and style in code and documentation by @​ccoVeille in daixiang0/gci#201
• Add boringcrypto experiment pkg by @​phamvinhdat in daixiang0/gci#194
• fix: local module path matching by @​ldez in daixiang0/gci#202
• bump up to v0.13.4 by @​daixiang0 in daixiang0/gci#204

New Contributors

• @​phamvinhdat made their first contribution in daixiang0/gci#194

Full Changelog: daixiang0/gci@v0.13.3...v0.13.4

v0.13.3

What's Changed

• go.mod: remove toolchain for backwards compatible by @​daixiang0 in daixiang0/gci#199
• bump up version by @​daixiang0 in daixiang0/gci#200

Full Changelog: daixiang0/gci@v0.13.2...v0.13.3

v0.13.2

What's Changed

• integrate Golangci-lint with localmodule enabled by @​daixiang0 in daixiang0/gci#196
• bump up to 0.13.2 by @​daixiang0 in daixiang0/gci#197

Full Changelog: daixiang0/gci@v0.13.1...v0.13.2

Commits

• 5969d4e bump up to v0.13.4 (#204)
• 869c320 fix: local module path matching (#202)
• 4f7ff3c add boringcrypto experiment pkg (#194)
• b91f3a8 fix some typos and style in code and documentation (#201)
• aa37fd0 bump up version (#200)
• 6f04796 go.mod: remove toolchain for backwards compatible (#199)
• d528c91 bump up to 0.13.2 (#197)
• cf1fbd0 integrate Golangci-lint with localmodule enabled (#196)
• See full diff in compare view

Updates github.com/golangci/golangci-lint from 1.56.2 to 1.59.1

Release notes

Sourced from github.com/golangci/golangci-lint's releases.

v1.59.1

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• f7387361 build(deps): bump github.com/Antonboom/testifylint from 1.3.0 to 1.3.1 (#4759)
• 44b3cdd1 build(deps): bump github.com/go-viper/mapstructure/v2 from 2.0.0-alpha.1 to 2.0.0 (#4788)
• 1a55854a build(deps): bump github.com/golangci/misspell from 0.5.1 to 0.6.0 (#4804)
• 9a7a1ad4 build(deps): bump github.com/polyfloyd/go-errorlint from 1.5.1 to 1.5.2 (#4785)
• aaff9184 build(deps): bump github.com/sashamelentyev/usestdlibvars from 1.25.0 to 1.26.0 (#4801)
• a0d2c830 build(deps): bump github.com/shirou/gopsutil/v3 from 3.24.4 to 3.24.5 (#4782)
• 2042b1f1 build(deps): bump go-simpler.org/sloglint from 0.7.0 to 0.7.1 (#4784)
• 327a78a8 build(deps): bump golang.org/x/tools from 0.21.0 to 0.22.0 (#4802)
• e1a80557 fix: SARIF format require issue column >= 1 (#4775)
• 88f60c8c fix: gomnd deprecated configuration compatibility (#4768)
• 81731668 fix: init empty result slice for SARIF printer (#4758)
• 02740ea1 intrange: add style preset (#4797)
• 615b873d unparam: bump to HEAD (#4786)

v1.59.0

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• 4f5251d3 Support Sarif output (#4723)
• 73110df2 build(deps): bump github.com/Antonboom/testifylint from 1.2.0 to 1.3.0 (#4729)
• 62c83ccd build(deps): bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 (#4746)
• 0cb14183 build(deps): bump github.com/go-critic/go-critic from 0.11.3 to 0.11.4 (#4738)
• e14ae4b7 build(deps): bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#4745)
• 2059b18a build(deps): bump github.com/securego/gosec/v2 from 2.20.0 to 5f0084eb01a9 (#4748)
• be1bb6db build(deps): bump go-simpler.org/sloglint from 0.6.0 to 0.7.0 (#4718)
• 08deff42 feat: add warning about disabled and deprecated linters (level 2) (#4742)
• b99d5295 feat: allow the analysis of generated files (#4740)
• 867adaf9 feat: deprecate github-actions format (#4726)
• 4beae6a9 fix: remove errcheck defaults (#4734)

v1.58.2

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

... (truncated)

Changelog

Sourced from github.com/golangci/golangci-lint's changelog.

v1.59.1

1. Updated linters
   • go-errorlint: from 1.5.1 to 1.5.2
   • gomnd: deprecated configuration compatibility
   • intrange: add style preset
   • misspell: from 0.5.1 to 0.6.0
   • sloglint: from 0.7.0 to 0.7.1
   • testifylint: from 1.3.0 to 1.3.1
   • unparam: bump to HEAD
   • usestdlibvars: from 1.25.0 to 1.26.0
2. Fixes
   • SARIF: init empty result slice
   • SARIF: issue column >= 1
3. Documentation
   • update revive configuration

v1.59.0

1. Enhancements
   • Add SARIF output format
   • Allow the analysis of generated files (issues.exclude-generated: disable)
2. Updated linters
   • errcheck: fix deprecation warning
   • go-critic: from 0.11.3 to 0.11.4
   • gosec: from 2.20.0 to 5f0084eb01a9 (fix G601 and G113 performance issues)
   • sloglint: from 0.6.0 to 0.7.0 (new option forbidden-keys)
   • testifylint: from 1.2.0 to 1.3.0 (new checker negative-positive and new option go-require.ignore-http-handlers)
3. Misc.
   • ️️⚠️ Deprecate github-action output format
   • ️️⚠️ Deprecate issues.exclude-generated-strict option (replaced by issues.exclude-generated: strict)
   • ️️⚠️ Add warning about disabled and deprecated linters (level 2)

v1.58.2

1. Updated linters
   • canonicalheader: from 1.0.6 to 1.1.1
   • gosec: from 2.19.0 to 2.20.0
   • musttag: from 0.12.1 to 0.12.2
   • nilnil: from 0.1.8 to 0.1.9
2. Documentation
   • Improve integrations and install pages

v1.58.1

1. Updated linters
   • tagalign: from 1.3.3 to 1.3.4
   • protogetter: from 0.3.5 to 0.3.6
   • gochecknoinits: fix analyzer name
2. Fixes

... (truncated)

Commits

• 1a55854 build(deps): bump github.com/golangci/misspell from 0.5.1 to 0.6.0 (#4804)
• aaff918 build(deps): bump github.com/sashamelentyev/usestdlibvars from 1.25.0 to 1.26...
• 327a78a build(deps): bump golang.org/x/tools from 0.21.0 to 0.22.0 (#4802)
• 02740ea intrange: add style preset (#4797)
• 4e53f51 docs: update revive configuration (#4790)
• 839b9d7 chore: improve issue templates
• a7817a1 chore: improve issue templates
• d3a0412 dev: improve issue templates
• 44b3cdd build(deps): bump github.com/go-viper/mapstructure/v2 from 2.0.0-alpha.1 to 2...
• 615b873 unparam: bump to HEAD (#4786)
• Additional commits viewable in compare view

Updates github.com/open-policy-agent/conftest from 0.50.0 to 0.53.0

Release notes

Sourced from github.com/open-policy-agent/conftest's releases.

v0.53.0

Changelog

OPA Changes

• 96470c21f2ea92baa66aa8c50b07b008af222bc3: build(deps): bump github.com/open-policy-agent/opa from 0.64.1 to 0.65.0 (#953) (@​dependabot[bot])

Other Changes

• c33a50c853001998e47c3057ceb755ccb7f8d6c3: build(deps): bump alpine from 3.19.1 to 3.20.0 (#951) (@​dependabot[bot])
• 31700e1d9edd66e177043d3886b19c5d428c3e11: build(deps): bump cuelang.org/go from 0.8.1 to 0.9.0 (#956) (@​dependabot[bot])
• 525f071514279dd545a82fd4e3a085d84d869274: build(deps): bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 (#950) (@​dependabot[bot])
• eeef9e250063002d81b0402fbf885468c590bc7f: build(deps): bump github.com/CycloneDX/cyclonedx-go from 0.8.0 to 0.9.0 (#954) (@​dependabot[bot])
• 30b373416df2cafc147c4f3bd3c601f66c53128f: build(deps): bump golang from 1.22.2-alpine to 1.22.3-alpine (#949) (@​dependabot[bot])
• 493cfd55b0a2745d918d3564f7a8b64c0ba776e8: tests: extend hcl cases: tag verification (#955) (@​boranx)

v0.52.0

Changelog

OPA Changes

• c8ca3585dfe99647c0ca039b03522bd83e0ca357: build(deps): bump github.com/open-policy-agent/opa from 0.63.0 to 0.64.0 (#943) (@​dependabot[bot])
• 9b082a11765d408ffdddbf365bd0fdd990d87461: build(deps): bump github.com/open-policy-agent/opa from 0.64.0 to 0.64.1 (#947) (@​dependabot[bot])

Other Changes

• 8f13bf6a82dbb7db38e1ca1a3cddba4f608dbee2: build(deps): bump cuelang.org/go from 0.8.0 to 0.8.1 (#937) (@​dependabot[bot])
• 37b04d6036f6a146cc2c38e29769ad245c4607e6: build(deps): bump github.com/docker/docker from v25.0.3+incompatible to v25.0.5+incompatible (#932) (@​robmonct)
• 1b3cc13b4d5e8d99a7a124672046605d1c33d0bc: build(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (#948) (@​dependabot[bot])
• 28d92a408f9d39d01dd85e0055f05f36e09bbf7f: build(deps): bump github.com/moby/buildkit from 0.13.1 to 0.13.2 (#944) (@​dependabot[bot])
• 4ab6feaed04fa44e1de39e9c823728bfdf906867: build(deps): bump github.com/spdx/tools-golang from 0.5.3 to 0.5.4 (#941) (@​dependabot[bot])
• c6bd5a541a1526f9ade5e02b41dc11725c97c47c: build(deps): bump golang from 1.22.1-alpine to 1.22.2-alpine (#938) (@​dependabot[bot])
• 298d74aeade4b4462961fa3c7f1d44a90d7a49d8: ci: Allow Dependabot to update github.com/hashicorp/go-getter (#946) (@​jalseth)

v0.51.0

Changelog

Bug Fixes

• 1989c6c7a2ddbecf15f6b736978a468777694562: fix: Only raise problematic if error when rule has no name set (#935) (@​jalseth)

OPA Changes

• 6609893ae256424714b43f3a54feb9da97804ffb: build(deps): bump github.com/open-policy-agent/opa from 0.62.1 to 0.63.0 (#933) (@​dependabot[bot])

Other Changes

• 06e3f8d1e4de112effa58924c61e72d493794ffc: build(deps): bump cuelang.org/go from 0.7.1 to 0.8.0 (#930) (@​dependabot[bot])
• bece944a615fffdf96d971e7fb05e98600bffe20: build(deps): bump github.com/moby/buildkit from 0.13.0 to 0.13.1 (#931) (@​dependabot[bot])
• 515feda4311e2ac62b062d1002a9a70a8cd9177d: build(deps): bump golang from 1.22.0-alpine to 1.22.1-alpine (#929) (@​dependabot[bot])
• 86afe2f34ba2d567ed99c85e363c3b6457e82ef9: ci: Pin bats version to work around broken CI (#936) (@​jalseth)

Commits

• 493cfd5 tests: extend hcl cases: tag verification (#955)
• 31700e1 build(deps): bump cuelang.org/go from 0.8.1 to 0.9.0 (#956)
• eeef9e2 build(deps): bump github.com/CycloneDX/cyclonedx-go from 0.8.0 to 0.9.0 (#954)
• 96470c2 build(deps): bump github.com/open-policy-agent/opa from 0.64.1 to 0.65.0 (#953)
• c33a50c build(deps): bump alpine from 3.19.1 to 3.20.0 (#951)
• 525f071 build(deps): bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 (#950)
• 30b3734 build(deps): bump golang from 1.22.2-alpine to 1.22.3-alpine (#949)
• 9b082a1 build(deps): bump github.com/open-policy-agent/opa from 0.64.0 to 0.64.1 (#947)
• 1b3cc13 build(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (#948)
• 298d74a ci: Allow Dependabot to update github.com/hashicorp/go-getter (#946)
• Additional commits viewable in compare view

Updates github.com/tektoncd/chains from 0.19.0 to 0.21.1

Changelog

Sourced from github.com/tektoncd/chains's changelog.

Tekton Chains Releases

Release Frequency

Tekton Chains follows the Tekton community [release policy][release-policy] as follows:

• Versions are numbered according to semantic versioning: vX.Y.Z
• At a minimum four LTS release are produced. Additional releases are produced based on availability of new features to be released
• Four releases a year are chosen for long term support (LTS). All remaining releases are supported for approximately 1 month.
  • The first Tekton Chains LTS release will be v0.13.0 in October 2022

Tekton Chains produces nightly builds, publicly available on gcr.io/tekton-nightly.

Transition Process

Before release v0.13 Tekton Chains has worked on the basis of an undocumented support period, providing patch releases when needed. While transitioning to the new support model, v0.11 and v0.12 will be supported for four months from the initial publishing date.

Release Process

Tekton Chains releases are made of YAML manifests and container images. Manifests are published to cloud object-storage as well as [GitHub][tekton-chains-releases]. Container images are signed by [Sigstore][sigstore] via [Tekton Chains][tekton-chains]; signatures can be verified through the [public key][chains-public-key] hosted by the Tekton Chains project.

Further documentation available:

• The Tekton Chains [release process][tekton-releases-docs]
• [Installing Tekton][tekton-installation]
• Standard for [release notes][release-notes-standards]

Backwards Incompatible Changes

In general we aim for new features to be added in a backwards compatible way, but sometimes we will need to make breaking changes. This policy outlines how we will make and communicate these.

NOTE: Tekton Chains is working towards a formal beta release. Until then, all features are technically considered alpha (though we continue to do our best to retain backwards compatibility).

... (truncated)

Commits

• 4cb5c50 Fixes for v0.21.1 (#1134)
• 9a67b0f PipelineRuns with v2alpha4 to process StepActions (#1118)
• 8e9373e Add new v2alpha4 version for TaskRuns (#1111)
• b1773f8 Deprecate v2alpha1 and v2alpha2 (#1122)
• c17cdfc Set readOnlyRootFilesystem as true in Controller (#1121)
• 2391a43 Configure depguard with "lax" mode (#1119)
• 5c0d83b Bump golang.org/x/net from 0.22.0 to 0.23.0 (#1107)
• fd18dd5 Make chains QPS and Burst configuration consistent (#1100)
• b8fb5f1 Update metrics documentation with the prefix (#1112)
• 5986f44 Move external paramenters and resolved dependencies logic out of v2alpha3 (#1...
• Additional commits viewable in compare view

Updates github.com/tektoncd/cli from 0.32.0 to 0.37.0

Release notes

Sourced from github.com/tektoncd/cli's releases.

v0.37.0 Release 🎉

This release comes with support for Pipelines LTS v0.59.0, Triggers v0.27.0, Chains v0.20.0 and Hub v1.17.0 CLI. This release contains a feature to have exit code 0 or 1 or 2 based on PipelineRun status in pipeline start and pipelinerun logs command by providing -E flag and a couple of dependency bumps

ChangeLog 📋

Features ✨

• Add -E flag to exit with the pr state on unix shell by @​chmouel in tektoncd/cli#2298

Misc 🔨

• Bump github.com/docker/docker from 25.0.4+incompatible to 25.0.5+incompatible by @​dependabot in tektoncd/cli#2274
• Bump github.com/golangci/golangci-lint from 1.56.2 to 1.57.0 in /tools by @​dependabot in tektoncd/cli#2272
• Bump github.com/docker/cli from 25.0.4+incompatible to 25.0.5+incompatible by @​dependabot in tektoncd/cli#2273
• Bump tkn to v0.36.0 by @​vinamra28 in tektoncd/cli#2275
• Bump github.com/tektoncd/pipeline from 0.57.0 to 0.58.0 by @​dependabot in tektoncd/cli#2276
• Bump github.com/docker/cli from 25.0.5+incompatible to 26.0.0+incompatible by @​dependabot in tektoncd/cli#2279
• Bump github.com/docker/docker from 25.0.5+incompatible to 26.0.0+incompatible by @​dependabot in tektoncd/cli#2277
• Bump github.com/tektoncd/chains from 0.20.0 to 0.20.1 by @​dependabot in tektoncd/cli#2278
• Bump github.com/golangci/golangci-lint from 1.57.0 to 1.57.1 in /tools by @​dependabot in tektoncd/cli#2280
• Add 0.35.2 in LTS doc by @​piyush-garg in tektoncd/cli#2281
• Enable dependabot on github actions by @​piyush-garg in tektoncd/cli#2282
• Bump actions/checkout from 2 to 4 by @​dependabot in tektoncd/cli#2284
• Bump github/codeql-action from 2 to 3 by @​dependabot in tektoncd/cli#2283
• Fix codeql github action by @​piyush-garg in tektoncd/cli#2285
• Bump github.com/golangci/golangci-lint from 1.57.1 to 1.57.2 in /tools by @​dependabot in tektoncd/cli#2286
• Bump golang.org/x/term from 0.18.0 to 0.19.0 by @​dependabot in tektoncd/cli#2288
• Bump github.com/docker/docker from 26.0.0+incompatible to 26.0.1+incompatible by @​dependabot in tektoncd/cli#2289
• Bump github.com/docker/cli from 26.0.0+incompatible to 26.0.1+incompatible by @​dependabot in tektoncd/cli#2290
• Bump sigstore to v1.8.3 by @​piyush-garg in tektoncd/cli#2291
• Bump github.com/sigstore/cosign/v2 from 2.2.2 to 2.2.4 by @​dependabot in tektoncd/cli#2292
• Bump github.com/docker/docker from 26.0.1+incompatible to 26.0.2+incompatible by @​dependabot in tektoncd/cli#2293
• Bump github.com/docker/cli from 26.0.1+incompatible to 26.0.2+incompatible by @​dependabot in tektoncd/cli#2295
• Bump golang.org/x/net from 0.22.0 to 0.23.0 by @​dependabot in tektoncd/cli#2294
• Bump github.com/docker/cli from 26.0.2+incompatible to 26.1.0+incompatible by @​dependabot in tektoncd/cli#2296
• Bump github.com/docker/docker from 26.0.2+incompatible to 26.1.0+incompatible by @​dependabot in tektoncd/cli#2297
• Bump github.com/tektoncd/pipeline from 0.58.0 to 0.59.0 by @​dependabot in tektoncd/cli#2299
• Bump github.com/tektoncd/triggers from 0.26.1 to 0.26.2 by @​dependabot in tektoncd/cli#2300
• Bump github.com/docker/cli from 26.1.0+incompatible to 26.1.1+incompatible by @​dependabot in tektoncd/cli#2301
• Bump github.com/docker/docker from 26.1.0+incompatible to 26.1.1+incompatible by @​dependabot in tektoncd/cli#2302
• Bump golang.org/x/term from 0.19.0 to 0.20.0 by @​dependabot in tektoncd/cli#2305
• Bump github.com/golangci/golangci-lint from 1.57.2 to 1.58.0 in /tools by @​dependabot in tektoncd/cli#2306
• Bump k8s.io deps to match with tektoncd/pipeline by @​piyush-garg in tektoncd/cli#2307
• Bump golangci-lint to v0.58.0 by @​piyush-garg in tektoncd/cli#2308
• Group docker dep updates by @​piyush-garg in tektoncd/cli#2309
• Bump k8s.io/cli-runtime from 0.28.5 to 0.28.9 by @​dependabot in tektoncd/cli#2312
• Bump k8s.io/api from 0.28.5 to 0.28.9 by @​dependabot in tektoncd/cli#2311
• Bump k8s.io/apimachinery to v0.28.9 and group all for future updates by @​piyush-garg in tektoncd/cli#2313
• Bump go version to 1.22 and goreleaser for latest v1.25.1 by @​piyush-garg in tektoncd/cli#2315

... (truncated)

Changelog

Sourced from github.com/tektoncd/cli's changelog.

Tekton CLI Releases

Release Frequency

Tekton CLI follows the Tekton community [release policy][release-policy] as follows:

• Versions are numbered according to semantic versioning: vX.Y.Z
• A new release is produced on a monthly basis
• Four releases a year are chosen for long term support (LTS). All remaining releases are supported for approximately 1 month (until the next release is produced)
  • LTS releases take place in January, April, July and October every year
  • The first Tekton CLI LTS release will be v0.30.0 in January 2023
  • Releases happen towards the middle of the month, but the exact date may vary, depending on week-ends and readiness

Tekton CLI produces nightly builds, publicly available on gcr.io/tekton-nightly.

Transition Process

Before release v0.28 Tekton CLI has worked on the basis of an undocumented support period of four months, which will be maintained for the releases between v0.26 and v0.27.

Release Process

Read about releasing the Tekton CLI in the [release process documentation] [tekton-release-process].

Further documentation available:

• [Tekton resources][tekton-releases-docs]
• Standard for [release notes][release-notes-standards]

Releases

v0.37 (LTS)

• Latest Release: [v0.37.0][v0-37-0] (2024-05-13) ([docs][v0-37-0-docs])
• Initial Release: [v0.37.0][v0-37-0] (2024-05-13) ([docs][v0-37-0-docs])
• End of Life: 2025-05-12

v0.36

• Latest Release: [v0.36.0][v0-36-0] (2024-03-21) ([docs][v0-36-0-docs])
• Initial Release: [v0.36.0][v0-36-0] (2024-03-21) ([docs][v0-36-0-docs])
• End of Life: 2025-03-20

... (truncated)

Commits

• f8b6dc0 New version v0.37.0
• 8189441 Bump github.com/tektoncd/triggers from 0.26.2 to 0.27.0
• aa6aad1 Bump the go-docker-dependencies group with 2 updates
• 3e19d4e Bump github.com/golangci/golangci-lint from 1.58.0 to 1.58.1 in /tools
• e8fcfa9 Bump github.com/tektoncd/hub from 1.16.0 to 1.17.0
• ca51d2c Bump goreleaser for latest v1.25.1
• 67ac3ab Bump go version to 1.22
• f5e7201 Group all k8s dep together
• 15e4437 Bump k8s.io/apimachinery to v0.28.9
• c38d010 Bump k8s.io/cli-runtime from 0.28.5 to 0.28.9
• Additional commits viewable in compare view

Updates helm.sh/helm/v3 from 3.14.3 to 3.15.2

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.15.2 is a security (patch) release. Users are strongly recommended to update to this release.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.15.2. The common platform binaries are here:

• MacOS amd64 (checksum / e99a9266a5328cb575d81ef10247911f42d9e90c76ef6eef154c5c535565658b)
• MacOS arm64 (checksum / 30143dabc1da9d32c7d6c589fad04b1f1ecc73841393d5823fa21c5d7f5bf8f6)
• Linux amd64 (checksum / 2694b91c3e501cff57caf650e639604a274645f61af2ea4d601677b746b44fe2)
• Linux arm (checksum / 2b28fda1d8c6f087011bc7ec820051a13409dadce8385529f306476632e24e85)
• Linux arm64 (checksum / adcf07b08484b52508e5cbc8b5f4b0b0db50342f7bc487ecd88b8948b680e6a7)
• Linux i386 (checksum / 8e0bb5a08c7c227a8e285026b6283726ddc0e1f406e2af4d4d600fa1dd85c21e)
• Linux ppc64le (checksum / 9d95528fb797f6429f7f9b6dee0cf87bf8c71f6470e1db4a51e844c169c285a3)
• Linux s390x (checksum / 5b42bc3d08fd0ffaf4f9ed810f28464f52ec4ea431b809c7179071d76f3d6f16)
• Linux riscv64 (checksum / 2998bae9971a55f862c21bff337c325cb6a44f28ef76e11bffc93d16989e11e6)
• Windows amd64 (checksum / cbf40b79fa2a7dbd6e24201f8660b56261d10d6e7b5cadc3ff78100fb45b3c69)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.15.3 will contain only bug fixes and be released on July 10, 2024.
• 3.16.0 is the next feature release and will be on September 11, 2024.

Changelog

• fix: wrong cli description 1a500d5625419a524fdae4b33de351cc4f58ec35 (yyzxw)
• fix typo in load_plugins.go 70b225c9abc014cfeb73f7c9f506b0e73e912b61 (yxxhero)
• fix docs of DeployedAll b3640f196a2cf77136ab01295bffe76fa184991d (Daniel Strobusch)
• Bump github.com/docker/docker 46e2ba0341d43e19493b2f90c86126da8ad8a64e (dependabot[bot])
• bump oras minor version fb311d331f66f7f9153b5d0c7aa07a77bc9528ca (Austin Abro)
• feat(load.go): add warning on requirements.lock 23552a7de6f45aacec47bc2bfe70de02b9d7ab70 (Aaron U'Ren)

Helm v3.15.1 is a patch release. The Helm application source is the same as 3.15.0. The 3.15.0 builds stated the wrong version when running helm version. Instead of the release number it had the release candidate version which pointed to the same revision of the source.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs

... (truncated)

Commits

• 1a500d5 fix: wrong cli description
• 70b225c fix typo in load_plugins.go
• b3640f1 fix docs of DeployedAll
• 46e2ba0 Bump github.com/docker/docker
• fb311d3 bump oras minor version
• 23552a7 feat(load.go): add warning on requirements.lock
• e211f2a Fixing build issue where wrong version is used
• c4e37b3 Updating to k8s 1.30
• d7afa3b bump version to v3.15.0
• 7743467 bump version to
• Additional commits viewable in compare view

Updates sigs.k8s.io/kustomize/kustomize/v5 from 5.3.0 to 5.4.2

Release notes

Sourced from sigs.k8s.io/kustomize/kustomize/v5's releases.

kustomize/v5.4.2

Feature

#5294: feat: localize absolute paths #5556: feat: support labels key in transformer configuration

chore

#5671: refactor: string in slice is now part of stdlib #5681: chore: remove unused function #5688: refactor: function in stdlib now

Dependencies

#5672: chore(deps): bump dependencies of kustomize + sync go workspace #5680: chore: restore version for github.com/asaskevich/govalidator #5702: Update kyaml to v0.17.1 #5703: Update cmd/config to v0.14.1 #5704: Update api to v0.17.2

kustomize/v5.4.1

This is a patch of kustomize v5.4.0 and should fix the kustomize version subcommand issues in its assets.

kustomize v5.4.1

kubernetes-sigs/kustomize#5644: fix version subcommand is not working after release build

kustomize v5.4.0

Breaking changes

kubernetes-sigs/kustomize#5519: Fix null YAML values being replaced by "null"

kustomize requires Go 1.21 or higher at build

#5567: fix 'golang.org/x/exp/slices' dependencies

Features

#5411: Add --load-restrictor completion #5467: feat: edit set secret

More better error handling

• kubernetes-sigs/kustomize#5539: Include exec plugin stderr with wrapped error
• kubernetes-sigs/kustomize#5542: fix: improve accumulation failure message
• kubernetes-sigs/kustomize#5550: use Strict unmarshal when read TransformerConfig

Bug fixes/performance improvements

#5234: fix edit set image to parse both tag and digest #5621: Use require for Error and NoError

Dependencies

#5479: Revert "Switch to json-patch v5" #5541: Use canonical json-patch v4 import #5615: update dependencies google.golang.org/[email protected]

update internal Dependencies

#5639: Update kyaml to v0.17.0

... (truncated)

Commits

• f309dfc Merge pull request #5704 from koba1t/pinToApi
• a34ac31 Update api to v0.17.2
• 9cc25a5 Merge pull request #5703 from koba1t/pinToCmdConfig
• f6ad718 Update cmd/config to v0.14.1
• da14e76 Merge pull request #5702 from koba1t/pinToKyaml
• 7424956 Update kyaml to v0.17.1
• e244b83 Merge pull request #5688 from emirot/refactor/indexOf
• f983846 refactor: function in stdlib now
• 49a645f Merge pull request #5294 from typeid/localize_absolute_paths
• e7a1549 fix: use fmt.Errorf instead of non-existing errors.New (#5651)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions