🌱 Bump the dependencies group with 10 updates

[dependabot]

Bumps the dependencies group with 10 updates:

Package	From	To
github.com/aws/amazon-vpc-cni-k8s	1.15.4	1.16.0
github.com/aws/aws-lambda-go	1.41.0	1.45.0
github.com/coreos/ignition/v2	2.16.2	2.17.0
github.com/go-logr/logr	1.3.0	1.4.1
github.com/onsi/ginkgo/v2	2.13.2	2.15.0
github.com/onsi/gomega	1.30.0	1.31.1
github.com/openshift-online/ocm-sdk-go	0.1.388	0.1.393
github.com/prometheus/client_golang	1.17.0	1.18.0
sigs.k8s.io/aws-iam-authenticator	0.6.13	0.6.17
sigs.k8s.io/kustomize/api	0.13.5-0.20230601165947-6ce0bf390ce3	0.16.0

Updates github.com/aws/amazon-vpc-cni-k8s from 1.15.4 to 1.16.0

Release notes

Sourced from github.com/aws/amazon-vpc-cni-k8s's releases.

v1.16.0

Release Notes

• The VPC CNI now uses CNI spec 1.0.0: https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.16.0/misc/10-aws.conflist
• With VPC CNI v1.16.0, Security Groups for Pods is now supported on IPv6 clusters.
  • One caveat to be aware of compared to IPv4 is that ICMPv6 Neighbor Discovery must be allowed in EC2 security groups in order for pods to properly resolve IPv6 addresses to MAC addresses.

Changes since v1.15.5

• Bug - check if ipv4Addr or ipv6Addr is empty before calling AnnotatePod() (@​zachdorame )
• Bug - Fix enabling of Metrics and Introspection Endpoint (@​jdn5126 )
• Cleanup - swicth grpc deprecated method to new method (@​Icarus9913 )
• Cleanup - swicth k8s deprecated method to new method (@​Icarus9913 )
• Dependency - Update golang.org/x/crypto to v0.17.0 (@​jdn5126 )
• Dependency - Bump github.com/containerd/containerd from 1.7.6 to 1.7.11 (@​dependabot )
• Dependency - Update upstream CNI plugins to v1.4.0 (@​jdn5126 )
• Documentation - Remove hard-coded comment for primary intf (@​jdn5126 )
• Documentation - Fix Infof/Debugf/Errors to use correct function names (@​dims )
• Feature - Add parameters for tuning revisionHistory and securityContext (@​bodgit )
• Feature - Manifest for Multus 4.0.2 thick plugin support (@​jdn5126 )
• Feature - IPv6 Security Groups for Pods Support (@​jdn5126 )
• Feature - Prometheus metrics scraping from CNI metrics helper (@​jayanthvn )
• Improvement - add instance types (@​jchen6585 )
• Improvement - Update CHANGELOG, charts, and manifests for v1.15.5 release; update aws-vpc-cni ConfigMap default settings (@​jdn5126 )
• Improvement - adding feature flags to configmap charts (@​haouc )
• Improvement - No need to set accept_ra or accept_redirects for non-primary interfaces (@​jdn5126 )
• Improvement - Simplify IPv6 Gateway Calculation (@​jdn5126 )

To manually apply this release:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.0/config/master/aws-k8s-cni.yaml

Note that the following regions use different manifests:

us-gov-east-1:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.0/config/master/aws-k8s-cni-us-gov-east-1.yaml

us-gov-west-1:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.0/config/master/aws-k8s-cni-us-gov-west-1.yaml

cn:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.0/config/master/aws-k8s-cni-cn.yaml

... (truncated)

Changelog

Sourced from github.com/aws/amazon-vpc-cni-k8s's changelog.

v1.16.0

• Bug - check if ipv4Addr or ipv6Addr is empty before calling AnnotatePod() (@​zachdorame )
• Bug - Fix enabling of Metrics and Introspection Endpoint (@​jdn5126 )
• Cleanup - swicth grpc deprecated method to new method (@​Icarus9913 )
• Cleanup - swicth k8s deprecated method to new method (@​Icarus9913 )
• Dependency - Update golang.org/x/crypto to v0.17.0 (@​jdn5126 )
• Dependency - Bump github.com/containerd/containerd from 1.7.6 to 1.7.11 (@​dependabot )
• Dependency - Update upstream CNI plugins to v1.4.0 (@​jdn5126 )
• Documentation - Remove hard-coded comment for primary intf (@​jdn5126 )
• Documentation - Fix Infof/Debugf/Errors to use correct function names (@​dims )
• Feature - Add parameters for tuning revisionHistory and securityContext (@​bodgit )
• Feature - Manifest for Multus 4.0.2 thick plugin support (@​jdn5126 )
• Feature - IPv6 Security Groups for Pods Support (@​jdn5126 )
• Feature - Prometheus metrics scraping from CNI metrics helper (@​jayanthvn )
• Improvement - add instance types (@​jchen6585 )
• Improvement - Update CHANGELOG, charts, and manifests for v1.15.5 release; update aws-vpc-cni ConfigMap default settings (@​jdn5126 )
• Improvement - adding feature flags to configmap charts (@​haouc )
• Improvement - No need to set accept_ra or accept_redirects for non-primary interfaces (@​jdn5126 )
• Improvement - Simplify IPv6 Gateway Calculation (@​jdn5126 )

v1.15.5

• Bug - Add watch permission for CNINode resource (@​jdn5126 )
• Improvement - Upgrade go from 1.21.4 to 1.21.5 (@​jchen6585 )
• Improvement - Dependabot Golang updates, test agent fix (@​jdn5126 )
• Improvement - Bump aws-sdk-go to v1.48.2 (@​jchen6585 )

Commits

• 870ead7 CHANGELOG, chart, and manifest updates for v1.16.0 release (#2725)
• 3208cc5 revert #2697 from release-1.16 branch (#2724)
• b7cf951 Bump github.com/containerd/containerd from 1.7.6 to 1.7.11 (#2718)
• 80b8ed7 add instance types (#2720)
• 3be5799 update golang.org/x/crypto to v0.17.0 (#2719)
• e0e0411 Update CHANGELOG, charts, and manifests for v1.15.5 release; update aws-vpc-c...
• 224bcaa adding feature flags to configmap charts (#2715)
• 2c8af2d no need to set accept_ra systcl for non-primary interfaces (#2708)
• f40ff9c Update upstream CNI plugins to v1.4.0 (#2713)
• 3c97b82 check if ipv4Addr or ipv6Addr is empty before calling AnnotatePod() (#2702)
• Additional commits viewable in compare view

Updates github.com/aws/aws-lambda-go from 1.41.0 to 1.45.0

Release notes

Sourced from github.com/aws/aws-lambda-go's releases.

v1.45.0

What's Changed

• lambdaurl: Populate RemoteAddr with SourceIP by @​lyoung-confluent in aws/aws-lambda-go#546

Full Changelog: aws/aws-lambda-go@v1.44.0...v1.45.0

v1.44.0

What's Changed

• CloudWatchEvent renamed to EventBridgeEvent by @​mateusmarquezini in aws/aws-lambda-go#537
• Add S3ObjectLambdaEvent by @​kdnakt in aws/aws-lambda-go#536
• fixed test event for Cognito pretokenV2 by @​AMZ-brandon in aws/aws-lambda-go#540
• refactor: use assert.PanicsWithValue by @​wafuwafu13 in aws/aws-lambda-go#541
• 'Building your function' README updates by @​bmoffatt in aws/aws-lambda-go#543
• linter config: reformat the lists by @​bmoffatt in aws/aws-lambda-go#545

New Contributors

• @​mateusmarquezini made their first contribution in aws/aws-lambda-go#537

Full Changelog: aws/aws-lambda-go@v1.43.0...v1.44.0

v1.43.0

What's Changed

• update linter version by @​bmoffatt in aws/aws-lambda-go#539
• Added support for Cognito pre token generation with access token customization by @​AMZ-brandon in aws/aws-lambda-go#538

New Contributors

• @​AMZ-brandon made their first contribution in aws/aws-lambda-go#538

Full Changelog: aws/aws-lambda-go@v1.42.0...v1.43.0

v1.42.0

What's Changed

• Add "VPC" to .golangci.yml list of initialisms by @​bmoffatt in aws/aws-lambda-go#526
• Retract v1.39.0 in go.mod by @​bmoffatt in aws/aws-lambda-go#499
• events: add Secrets Manager rotation event (#291) by @​gnusey in aws/aws-lambda-go#530
• Added Deleted field to support codecommit ref delete events by @​praveenk007 in aws/aws-lambda-go#531
• Plumb JSON Decoder options by @​bmoffatt in aws/aws-lambda-go#515
• Add options lambdaurl.WithDetectContentType and lambda.WithContextValue by @​bmoffatt in aws/aws-lambda-go#516

New Contributors

• @​gnusey made their first contribution in aws/aws-lambda-go#530
• @​praveenk007 made their first contribution in aws/aws-lambda-go#531

Full Changelog: aws/aws-lambda-go@v1.41.0...v1.42.0

Commits

• 3a93ed1 lambdaurl: Populate RemoteAddr with SourceIP (#546)
• cce0845 linter config: reformat the lists (#545)
• c5ef6f1 'Building your function' README updates (#543)
• 501c2f3 Add S3ObjectLambdaEvent (#536)
• 50dbfb1 [479] CloudWatchEvent renamed to EventBridgeEvent (#537)
• f079271 refactor: use assert.PanicsWithValue (#541)
• c42f056 fixed test event for Cognito pretokenV2 (#540)
• 326401a Added support for Cognito pre token generation with access token customizatio...
• 30d7c7e update linter version (#539)
• 752114b Add options lambdaurl.WithDetectContentType and lambda.WithContextValue (#516)
• Additional commits viewable in compare view

Updates github.com/coreos/ignition/v2 from 2.16.2 to 2.17.0

Release notes

Sourced from github.com/coreos/ignition/v2's releases.

v2.17.0

Starting with this release, ignition-validate binaries are signed with the Fedora 39 key.

Features

• Support the native Apple Hypervisor
• Support Hetzner Cloud
• A GRUB configuration suitable for use with https://github.com/coreos/bootupd can now be installed; use make install-grub-for-bootupd to install it

Changes

• Require Go 1.19+

Bug fixes

• Prevent races with udev after disk editing
• Don't fail to wipe partition table if it's corrupted

Changelog

Sourced from github.com/coreos/ignition/v2's changelog.

Ignition 2.17.0 (2023-11-20)

Starting with this release, ignition-validate binaries are signed with the Fedora 39 key.

Features

• Support the native Apple Hypervisor
• Support Hetzner Cloud
• A GRUB configuration suitable for use with https://github.com/coreos/bootupd can now be installed; use make install-grub-for-bootupd to install it

Changes

• Require Go 1.19+

Bug fixes

• Prevent races with udev after disk editing
• Don't fail to wipe partition table if it's corrupted

Commits

• 45e9d39 Merge pull request #1756 from yasminvalim/update-release-notes
• c73064e NEWS: update 2.17.0
• 9eb672b Merge pull request #1752 from prestist/add-packit
• fa70614 Merge pull request #1754 from coreos/dependabot/go_modules/google.golang.org/...
• 3c69062 build(deps): bump google.golang.org/api from 0.150.0 to 0.151.0
• 35ef733 Merge pull request #1746 from coreos/dependabot/go_modules/cloud.google.com/g...
• 6a625c9 packit: add initial support
• 6df393a build(deps): bump cloud.google.com/go/storage from 1.34.1 to 1.35.1
• c17515a Merge pull request #1747 from coreos/dependabot/go_modules/github.com/aws/aws...
• 03d32f0 Merge pull request #1749 from coreos/dependabot/go_modules/google.golang.org/...
• Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.3.0 to 1.4.1

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.1

What's Changed

• slogr: fix unintended API break in v1.4.0 by @​pohly in go-logr/logr#253

Full Changelog: go-logr/logr@v1.4.0...v1.4.1

v1.4.0

This release dramatically improves interoperability with Go's log/slog package. In particular, logr.NewContext and logr.NewContextWithSlogLogger use the same context key, which allows logr.FromContext and logr.FromContextAsSlogLogger to return logr.Logger or *slog.Logger respectively, including transparently converting each to the other as needed.

Functions logr/slogr.NewLogr and logr/slogr.ToSlogHandler have been superceded by logr.FromSlogHandler and logr.ToSlogHandler respectively, and type logr/slogr.SlogSink has been superceded by logr.SlogSink. All of the old names in logr/slogr remain, for compatibility.

Package logr/funcr now supports logr.SlogSink, meaning that it's output passes all but one of the Slog conformance tests (that exception being that funcr handles the timestamp itself).

Users who have a logr.Logger and need a *slog.Logger can call slog.New(logr.ToSlogHandler(...)) and all output will go through the same stack.

Users who have a *slog.Logger or slog.Handler can call logr.FromSlogHandler(...) and all output will go through the same stack.

What's Changed

• slog context support by @​pohly in go-logr/logr#237
• slog support: fix WithGroup + WithValues combination by @​pohly in go-logr/logr#243
• Add tests for context with slog by @​thockin in go-logr/logr#246
• sloghandler: unnamed groups should be inlined by @​thockin in go-logr/logr#245
• Add SlogSink support to funcr by @​thockin in go-logr/logr#241
• funcr: Add LogInfoLevel Option to skip logging level in the info log by @​spacewander in go-logr/logr#240

New Contributors

• @​spacewander made their first contribution in go-logr/logr#240

Full Changelog: go-logr/logr@v1.3.0...v1.4.0

Commits

• dcdc3f2 slogr: fix unintended API break in v0.8.0 (#253)
• 5d88f52 funcr: Add LogInfoLevel Option to skip logging level in the info log (#240)
• 177005d build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0
• e7f489a build(deps): bump github/codeql-action from 2.22.9 to 3.22.11
• cf56c3b build(deps): bump actions/setup-go from 4 to 5
• 2ad296e build(deps): bump github/codeql-action from 2.22.8 to 2.22.9
• d55b4e2 Merge pull request #241 from thockin/master
• 98ee9d9 Clean up slog testing and restore coverage
• b228ba8 Break examples to new file
• 6432877 Add benchmarks for slogSink
• Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.13.2 to 2.15.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.15.0

2.15.0

Features

• JUnit reports now interpret Label(owner:X) and set owner to X. [8f3bd70]
• include cancellation reason when cancelling spec context [96e915c]

Fixes

• emit output of failed go tool cover invocation so users can try to debug things for themselves [c245d09]
• fix outline when using nodot in ginkgo v2 [dca77c8]
• Document areas where GinkgoT() behaves differently from testing.T [dbaf18f]
• bugfix(docs): use Unsetenv instead of Clearenv (#1337) [6f67a14]

Maintenance

• Bump to go 1.20 [4fcd0b3]

v2.14.0

2.14.0

Features

You can now use GinkgoTB() when you need an instance of testing.TB to pass to a library.

Prior to this release table testing only supported generating individual Its for each test entry. DescribeTableSubtree extends table testing support to entire testing subtrees - under the hood DescrieTableSubtree generates a new container for each entry and invokes your function to fill our the container. See the docs to learn more.

• Introduce DescribeTableSubtree [65ec56d]
• add GinkgoTB() to docs [4a2c832]
• Add GinkgoTB() function (#1333) [92b6744]

Fixes

• Fix typo in internal/suite.go (#1332) [beb9507]
• Fix typo in docs/index.md (#1319) [4ac3a13]
• allow wasm to compile with ginkgo present (#1311) [b2e5bc5]

Maintenance

• Bump golang.org/x/tools from 0.16.0 to 0.16.1 (#1316) [465a8ec]
• Bump actions/setup-go from 4 to 5 (#1313) [eab0e40]
• Bump github/codeql-action from 2 to 3 (#1317) [fbf9724]
• Bump golang.org/x/crypto (#1318) [3ee80ee]
• Bump golang.org/x/tools from 0.14.0 to 0.16.0 (#1306) [123e1d5]
• Bump github.com/onsi/gomega from 1.29.0 to 1.30.0 (#1297) [558f6e0]
• Bump golang.org/x/net from 0.17.0 to 0.19.0 (#1307) [84ff7f3]

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.15.0

Features

• JUnit reports now interpret Label(owner:X) and set owner to X. [8f3bd70]
• include cancellation reason when cancelling spec context [96e915c]

Fixes

• emit output of failed go tool cover invocation so users can try to debug things for themselves [c245d09]
• fix outline when using nodot in ginkgo v2 [dca77c8]
• Document areas where GinkgoT() behaves differently from testing.T [dbaf18f]
• bugfix(docs): use Unsetenv instead of Clearenv (#1337) [6f67a14]

Maintenance

• Bump to go 1.20 [4fcd0b3]

2.14.0

Features

You can now use GinkgoTB() when you need an instance of testing.TB to pass to a library.

Prior to this release table testing only supported generating individual Its for each test entry. DescribeTableSubtree extends table testing support to entire testing subtrees - under the hood DescrieTableSubtree generates a new container for each entry and invokes your function to fill our the container. See the docs to learn more.

• Introduce DescribeTableSubtree [65ec56d]
• add GinkgoTB() to docs [4a2c832]
• Add GinkgoTB() function (#1333) [92b6744]

Fixes

• Fix typo in internal/suite.go (#1332) [beb9507]
• Fix typo in docs/index.md (#1319) [4ac3a13]
• allow wasm to compile with ginkgo present (#1311) [b2e5bc5]

Maintenance

• Bump golang.org/x/tools from 0.16.0 to 0.16.1 (#1316) [465a8ec]
• Bump actions/setup-go from 4 to 5 (#1313) [eab0e40]
• Bump github/codeql-action from 2 to 3 (#1317) [fbf9724]
• Bump golang.org/x/crypto (#1318) [3ee80ee]
• Bump golang.org/x/tools from 0.14.0 to 0.16.0 (#1306) [123e1d5]
• Bump github.com/onsi/gomega from 1.29.0 to 1.30.0 (#1297) [558f6e0]
• Bump golang.org/x/net from 0.17.0 to 0.19.0 (#1307) [84ff7f3]

Commits

• 7fa0190 v2.15.0
• c245d09 emit output of failed go tool cover invocation so users can try to debug thin...
• dca77c8 fix outline when using nodot inginkgo v2
• 96e915c include cancellation reason when cancelling spec context
• 4fcd0b3 Bump to go 1.20
• 732abbc clarify that last owner label wins
• 8f3bd70 JUnit reports now interpret Label(owner:X) and set owner to X.
• dbaf18f Document areas where GinkgoT() behaves differently from testing.T
• 6f67a14 bugfix(docs): use Unsetenv instead of Clearenv (#1337)
• beaf16d v2.14.0
• Additional commits viewable in compare view

Updates github.com/onsi/gomega from 1.30.0 to 1.31.1

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.31.1

1.31.1

Fixes

• Inverted arguments order of FailureMessage of BeComparableToMatcher [e0dd999]
• Update test in case keeping msg is desired [ad1a367]

Maintenance

• Show how to import the format sub package [24e958d]
• tidy up go.sum [26661b8]
• bump dependencies [bde8f7a]

v1.31.0

1.31.0

Features

• Async assertions include context cancellation cause if present [121c37f]

Maintenance

• Bump minimum go version [dee1e3c]
• docs: fix typo in example usage "occured" -> "occurred" [49005fe]
• Bump actions/setup-go from 4 to 5 (#714) [f1c8757]
• Bump github/codeql-action from 2 to 3 (#715) [9836e76]
• Bump github.com/onsi/ginkgo/v2 from 2.13.0 to 2.13.2 (#713) [54726f0]
• Bump golang.org/x/net from 0.17.0 to 0.19.0 (#711) [df97ecc]
• docs: fix HaveExactElement typo (#712) [a672c86]

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.31.1

Fixes

• Inverted arguments order of FailureMessage of BeComparableToMatcher [e0dd999]
• Update test in case keeping msg is desired [ad1a367]

Maintenance

• Show how to import the format sub package [24e958d]
• tidy up go.sum [26661b8]
• bump dependencies [bde8f7a]

1.31.0

Features

• Async assertions include context cancellation cause if present [121c37f]

Maintenance

• Bump minimum go version [dee1e3c]
• docs: fix typo in example usage "occured" -> "occurred" [49005fe]
• Bump actions/setup-go from 4 to 5 (#714) [f1c8757]
• Bump github/codeql-action from 2 to 3 (#715) [9836e76]
• Bump github.com/onsi/ginkgo/v2 from 2.13.0 to 2.13.2 (#713) [54726f0]
• Bump golang.org/x/net from 0.17.0 to 0.19.0 (#711) [df97ecc]
• docs: fix HaveExactElement typo (#712) [a672c86]

Commits

• 762b171 v1.31.1
• 26661b8 tidy up go.sum
• bde8f7a bump dependencies
• 24e958d Show how to import the format sub package
• ad1a367 Update test in case keeping msg is desired
• e0dd999 Inverted arguments order of FailureMessage of BeComparableToMatcher
• ba8bba2 v1.31.0
• 121c37f Async assertions include context cancellation cause if present
• dee1e3c Bump minimum go version
• 49005fe docs: fix typo in example usage "occured" -> "occurred"
• Additional commits viewable in compare view

Updates github.com/openshift-online/ocm-sdk-go from 0.1.388 to 0.1.393

Release notes

Sourced from github.com/openshift-online/ocm-sdk-go's releases.

Release 0.1.393

• Add authentication using OAuth2 and PCKE
• Add secure token storage

Release 0.1.392

• Update model version v0.0.346
  • Modify notify_details response

Release 0.1.391

• Update model version v0.0.345
  • Add validate_credentials resource to AwsInquiries
• Update model version v0.0.344
  • Add the /notify_details endpoint to the SDK

Release 0.1.390

• Update model version v0.0.343
  • Add Platformto subnet_network_verification_type resource

Release 0.1.389

• Update model version v0.0.342
  • Add Search and Order methods to List /api/clusters_mgmt/v1/clusters/{id}/node_pools

Changelog

Sourced from github.com/openshift-online/ocm-sdk-go's changelog.

0.1.393

• Add authentication using OAuth2 and PCKE
• Add secure token storage

0.1.392

• Update model version v0.0.346
  • Modify notify_details response

0.1.391

• Update model version v0.0.345
  • Add validate_credentials resource to AwsInquiries
• Update model version v0.0.344
  • Add the /notify_details endpoint to the SDK

0.1.390

• Update model version v0.0.343
  • Add Platformto subnet_network_verification_type resource

0.1.389

• Update model version v0.0.342
  • Add Search and Order methods to List /api/clusters_mgmt/v1/clusters/{id}/node_pools

Commits

• c7c96bb Merge pull request #888 from tirthct/ocm-auth-cli-release
• f0f217e Release 0.1.393
• 9f56d83 Merge pull request #887 from tylercreller/OCM-4964
• e05e0b8 OCM-4964: Add example
• dddbe09 tidy
• 812c201 OCM-4964: Error handling with no creds
• afa64a9 OCM-4964: Add compression
• 1736d08 OCM-4964: Remove OS specific files
• eb51268 OCM4964: Revised secure store labels
• 48bf2ed OCM-4946: Use single keyring impl for all OS
• Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.17.0 to 1.18.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.18.0

What's Changed

• [FEATURE] promlint: Allow creation of custom metric validations. #1311
• [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
• [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
• [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
• [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

New Contributors

• @​srenatus made their first contribution in prometheus/client_golang#1350
• @​jadolg made their first contribution in prometheus/client_golang#1342
• @​manas-rust made their first contribution in prometheus/client_golang#1383
• @​bluekeyes made their first contribution in prometheus/client_golang#1378
• @​tsipo made their first contribution in prometheus/client_golang#1387

Full Changelog: prometheus/client_golang@v1.17.0...v1.18.0

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.18.0 / 2023-12-22

• [FEATURE] promlint: Allow creation of custom metric validations. #1311
• [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
• [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
• [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
• [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

Commits

• 53be91d Revert "change api http.client to interface"
• 1a2d072 Add 1.18 changelog
• 239b123 Merge pull request #1387 from tsipo/main
• 3f8bd73 Merge pull request #1370 from prometheus/dependabot/go_modules/tutorial/whats...
• 5e55b31 Bump google.golang.org/grpc from 1.53.0 to 1.56.3 in /tutorial/whatsup
• e96fb18 Merge pull request #1401 from prometheus/dependabot/go_modules/golang.org/x/s...
• 2a8fc90 Bump golang.org/x/sys from 0.13.0 to 0.15.0
• 24d59e9 change client to interface, allow override by other implementations (e.g. git...
• 80d3f0b Normalize empty help values in CollectAndCompare (#1378)
• 3f80cd1 Add example of NewConstMetricWithCreatedTimestamp (#1375)
• Additional commits viewable in compare view

Updates sigs.k8s.io/aws-iam-authenticator from 0.6.13 to 0.6.17

Release notes

Sourced from sigs.k8s.io/aws-iam-authenticator's releases.

v0.6.14

What's Changed

• Cherry-pick: Update go to 1.21.4 (#648) by @​nckturner in kubernetes-sigs/aws-iam-authenticator#659
• Cherry-pick: Update go to 1.21.5 by @​nckturner in kubernetes-sigs/aws-iam-authenticator#663
• Cherry-pick: Check ARN for user ID strict check (#660) by @​nckturner in kubernetes-sigs/aws-iam-authenticator#664
• Release v0.6.14 by @​nckturner in kubernetes-sigs/aws-iam-authenticator#666

Full Changelog: kubernetes-sigs/aws-iam-authenticator@v0.6.13...v0.6.14

Commits

• 8b36c07 Merge pull request #682 from nnmin-aws/nnmin-fix2
• f151066 fix base image to use latest and release v0.6.17
• a5116fa Merge pull request #675 from nnmin-aws/nnmin-fix2
• 92c363c release v0.6.16
• e58c4ff minor fix the IAM user arn verification
• 3a99789 Release 0.6.15 (#672)
• e3aaa0e Fix role ARN comparison for user ID strict check (#669) (#671)
• b978afa Merge pull request #666 from nckturner/release-0.6.14
• ca60679 Release v0.6.14
• 6233df2 Check ARN for user ID strict check (#660) (#664)
• Additional commits viewable in compare view

Updates sigs.k8s.io/kustomize/api from 0.13.5-0.20230601165947-6ce0bf390ce3 to 0.16.0

Release notes

Sourced from sigs.k8s.io/kustomize/api's releases.

api/v0.16.0

#5082: perf: MakeDefaultConfig once #5270: helm: add support for kube-version and add cli args for both kube-version and api-versions #5293: fix: local helm chart with version but no repo #5328: fix failed tests are depends on external container images #5364: fix: goroutine leak #5381: hotfix: return error instead of log at FromMapAndOption #5390: Add negative case for testing keyValuesFromLine #5402: release cleanup, unpin the modules #5412: Use upstream go-yaml fork and remove our internal one #5421: Replace gopkg.in/yaml.v2 with sigs.k8s.io/yaml/goyaml.v2 #5424: Run go work sync #5464: Add deprecation warning message to commonLabels #5475: Update kyaml to v0.16.0

kyaml/v0.16.0

#5328: fix failed tests are depends on external container images #5412: Use upstream go-yaml fork and remove our internal one #5421: Replace gopkg.in/yaml.v2 with sigs.k8s.io/yaml/goyaml.v2 #5424: Run go work sync

api/v0.15.0

#5167: kustomize: Add support for OCI based helm repos #5189: Add test for issue #5131 #5193: [refactor]: Internalize loader api #5194: fix a patch files accept multiple patches #5196: fix: patch additions honor source key style #5197: Switch to json-patch v5 #5225: Add accumulateResources error tests for local files #5261: [Refactor] Move image to internal #5262: [Refactor] Internalize konfig constants #5263: Fix reject needing both current and previous ids #5342: Update imdario/mergo to v0.3.13 #5353: git submodule need origin

[k8s-ci-robot]

Adding the "do-not-merge/release-note-label-needed" label because no release-note block was detected, please follow our release note process to remove it.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign justinsb for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[Ankitasw]

@dependabot rebase

[k8s-ci-robot]

Adding the "do-not-merge/release-note-label-needed" label because no release-note block was detected, please follow our release note process to remove it.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[k8s-ci-robot]

Adding the "do-not-merge/release-note-label-needed" label because no release-note block was detected, please follow our release note process to remove it.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[k8s-ci-robot]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
pull-cluster-api-provider-aws-test	9366010	link	true	/test pull-cluster-api-provider-aws-test
pull-cluster-api-provider-aws-verify	9366010	link	true	/test pull-cluster-api-provider-aws-verify

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[dlipovetsky]

I was concerned by sigs.k8s.io/kustomize/api update from 0.13.5-0.20230601165947-6ce0bf390ce3 to 0.16.0. We use the kustomize executable in our release process.

However, this only affects the go dependency, and it's only referenced in one place.

On a related note: We're pulling in a go module just to use a constant that holds app.kubernetes.io/managed-by, a well-known label. I would prefer to remove the dependency by defining our own constant. We already use our own string here: https://github.com/kubernetes-sigs/cluster-api-provider-aws//blob/703ec18930c43604c2fe1a19d04b295e37ae5c3d/pkg/cloud/services/awsnode/cni.go#L102

[dlipovetsky]

/lgtm

[dlipovetsky]

/lgtm cancel

My fault, I didn't see that the build fails with some of these updates.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.