chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
ghcr.io/kyverno/policy-reporter		minor	2.17.5 -> 2.18.0
policy-reporter (source)		minor	2.21.6 -> 2.22.0
sigstore/cosign-installer	action	minor	v3.3.0 -> v3.4.0
updatecli/updatecli-action	action	minor	v2.53.0 -> v2.54.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

kyverno/policy-reporter (policy-reporter)

v2.22.0

Compare Source

• Helm Chart
  • Policy Reporter v2.18.0
    • Support HTTP BasicAuth for Loki [#​394 by YannickTeKulve]
    • Update README Targets and Links [#​396 by vponoikoait]
    • AccoundID for SecurityHub is now optional if IRSA is used.
    • Removed unused from config.yaml. Stream name isn't a property of SecurityHub [#​403 by vponoikoait]
    • Support certificate and skipTLS configuration for SMTP Client configuration.
  • Policy Reporter Kyverno Plugin v1.6.3
    • Fix HTML Report Details
  • Monitoring Chart
    • Add Rule filter to Grafana PolicyReport Details Dashboard [#​399 by lukashankeln]

sigstore/cosign-installer (sigstore/cosign-installer)

v3.4.0

Compare Source

What's Changed

• Use examples that work with multiple tags by @​jkreileder in https://github.com/sigstore/cosign-installer/pull/155
• default cosign install to release v2.2.3 by @​cpanato in https://github.com/sigstore/cosign-installer/pull/156

New Contributors

• @​jkreileder made their first contribution in https://github.com/sigstore/cosign-installer/pull/155

Full Changelog: sigstore/cosign-installer@v3...v3.4.0

updatecli/updatecli-action (updatecli/updatecli-action)

v2.54.0: 🌈

Compare Source

Changes

• Bump updatecli version to v0.72.0 @​github-actions (#​498)

Contributors

@​github-actions and @​github-actions[bot]

---

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[viccuad]

Needs policy-reporter bump test.

[flavio]

@kravciak do we have some automated tests covering the functionality of policy-reporter?

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠ Warning: custom changes will be lost.

[flavio]

@viccuad I think we forgot about this PR. What should we do with it?

[viccuad]

Needs to be tested against audit-scanner, to see if the policy-reporter ui upstream bump works fine for us.

[viccuad]

Performed smoke tests by deploying kubewarden-controller from this PR, kubewarden-defaults from 1.11-rc3, with policy-reporter enabled, on a cluster with several violating resources, as follows:

helm upgrade -i --wait --namespace kubewarden --create-namespace kubewarden-controller ./charts/kubewarden-controller --set auditScanner.cronJob.schedule="*/2 * * * *" --set auditScanner.policyReporter=true

All fine, merging.