🌱 Bump the all-go-mod-patch-and-minor group across 2 directories with 6 updates #174

dependabot · 2024-06-10T18:45:25Z

Bumps the all-go-mod-patch-and-minor group with 5 updates in the /hack/tools directory:

Package	From	To
golang.org/x/oauth2	`0.20.0`	`0.21.0`
google.golang.org/api	`0.182.0`	`0.183.0`
sigs.k8s.io/controller-runtime	`0.18.3`	`0.18.4`
github.com/docker/docker	`26.1.3+incompatible`	`26.1.4+incompatible`
golang.org/x/net	`0.25.0`	`0.26.0`

Bumps the all-go-mod-patch-and-minor group with 5 updates in the /test directory:

Package	From	To
golang.org/x/oauth2	`0.20.0`	`0.21.0`
sigs.k8s.io/controller-runtime	`0.18.3`	`0.18.4`
github.com/docker/docker	`26.1.3+incompatible`	`26.1.4+incompatible`
golang.org/x/net	`0.25.0`	`0.26.0`
google.golang.org/grpc	`1.62.1`	`1.62.2`

Updates golang.org/x/oauth2 from 0.20.0 to 0.21.0

Commits

5fd4241 google: update compute token refresh
See full diff in compare view

Updates google.golang.org/api from 0.182.0 to 0.183.0

Release notes

Sourced from google.golang.org/api's releases.

v0.183.0

0.183.0 (2024-06-04)

Features

all: Auto-regenerate discovery clients (#2611) (1de148b)

all: Auto-regenerate discovery clients (#2616) (5f21214)

all: Auto-regenerate discovery clients (#2617) (08fdd71)

all: Auto-regenerate discovery clients (#2619) (c7f1614)

all: Auto-regenerate discovery clients (#2622) (0077748)

Bug Fixes

Add another temporary dep on genproto (#2614) (4f98211), refs #2559 #2613

Changelog

Sourced from google.golang.org/api's changelog.

0.183.0 (2024-06-04)

Features

all: Auto-regenerate discovery clients (#2611) (1de148b)

all: Auto-regenerate discovery clients (#2616) (5f21214)

all: Auto-regenerate discovery clients (#2617) (08fdd71)

all: Auto-regenerate discovery clients (#2619) (c7f1614)

all: Auto-regenerate discovery clients (#2622) (0077748)

Bug Fixes

Add another temporary dep on genproto (#2614) (4f98211), refs #2559 #2613

Commits

c642c84 chore(main): release 0.183.0 (#2615)
305d137 chore(all): update all (#2618)
0077748 feat(all): auto-regenerate discovery clients (#2622)
c7f1614 feat(all): auto-regenerate discovery clients (#2619)
08fdd71 feat(all): auto-regenerate discovery clients (#2617)
5f21214 feat(all): auto-regenerate discovery clients (#2616)
1de148b feat(all): auto-regenerate discovery clients (#2611)
4f98211 fix: add another temporary dep on genproto (#2614)
See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.18.3 to 0.18.4

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.18.4

What's Changed

[release-0.18] ✨ controllerutil: configure BlockOwnerDeletion when setting OwnerReference by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2848

Full Changelog: kubernetes-sigs/controller-runtime@v0.18.3...v0.18.4

Commits

12cc8d5 Merge pull request #2848 from k8s-infra-cherrypick-robot/cherry-pick-2847-to-...
c0c229e controllerutil: allow configuring BlockOwnerDeletion when setting OwnerRefere...
See full diff in compare view

Updates github.com/docker/docker from 26.1.3+incompatible to 26.1.4+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v26.1.4

26.1.4

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

docker/cli, 26.1.4 milestone

moby/moby, 26.1.4 milestone

Deprecated and removed features, see Deprecated Features.

Changes to the Engine API, see API version history.

Security

This release updates the Go runtime to 1.21.11 which contains security fixes for:

CVE-2024-24789

CVE-2024-24790

A symlink time of check to time of use race condition during directory removal reported by Addison Crump (@addisoncrump).

Bug fixes and enhancements

Fixed an issue where promoting a node immediately after another node was demoted could cause the promotion to fail. moby/moby#47870

Prevent the daemon log from being spammed with superfluous response.WriteHeader call ... messages.. moby/moby#47843

Don't show empty hints when plugins return an empty hook message. docker/cli#5083

Added ContextType: "moby" to the context list/inspect output to address a compatibility issue with Visual Studio Container Tools. docker/cli#5095

Fix a compatibility issue with Visual Studio Container Tools. docker/cli#5095

Packaging updates

Update containerd (static binaries only) to v1.7.17. moby/moby#47841

CVE-2024-24789, CVE-2024-24790: Update Go runtime to 1.21.11. moby/moby#47904

Update Compose to v2.27.1. docker/docker-ce-packages#1022

Update Buildx to v0.14.1. docker/docker-ce-packages#1021

Commits

de5c9cf Merge pull request #47912 from thaJeztah/26.1_backport_vendor_containerd_1.7.18
c62dcf8 Merge pull request #47911 from thaJeztah/26.1_backport_bump_containerd_binary...
17315a2 vendor: github.com/containerd/containerd v1.7.18
cbd9418 update containerd binary to v1.7.18
fb9f72a Merge pull request #47904 from thaJeztah/26.1_backport_bump_go1.21.11
3115daa update to go1.21.11
2861734 Merge pull request #47892 from thaJeztah/26.1_backport_api_docs_network_confi...
9c95aea Merge pull request #47893 from thaJeztah/26.1_backport_bump_docker_py
3e09e19 Merge pull request #47894 from thaJeztah/26.1_backport_vendor_containerd_v1.7.17
65b679a Merge pull request #47889 from thaJeztah/26.1_backport_platforms_err_handling
Additional commits viewable in compare view

Updates golang.org/x/net from 0.25.0 to 0.26.0

Commits

66e838c go.mod: update golang.org/x dependencies
6249541 http2: avoid race in server handler SetReadDeadine/SetWriteDeadline
603e3e6 quic: disable X25519Kyber768Draft00 in tests
67e8d0c http2: report an error if goroutines outlive serverTester tests
5608279 http2: avoid corruption in priority write scheduler
0d515a5 http2: factor out frame read/write test functions
9f5b79b http2: drop unused retry function
03c24c2 http2: use synthetic time in server tests
022530c http2: add a more full-featured test net.Conn
410d19e http2: avoid racy access to clientStream.requestedGzip
Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.20.0 to 0.21.0

Commits

5fd4241 google: update compute token refresh
See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.18.3 to 0.18.4

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.18.4

What's Changed

[release-0.18] ✨ controllerutil: configure BlockOwnerDeletion when setting OwnerReference by @k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2848

Full Changelog: kubernetes-sigs/controller-runtime@v0.18.3...v0.18.4

Commits

12cc8d5 Merge pull request #2848 from k8s-infra-cherrypick-robot/cherry-pick-2847-to-...
c0c229e controllerutil: allow configuring BlockOwnerDeletion when setting OwnerRefere...
See full diff in compare view

Updates github.com/docker/docker from 26.1.3+incompatible to 26.1.4+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v26.1.4

26.1.4

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

docker/cli, 26.1.4 milestone

moby/moby, 26.1.4 milestone

Deprecated and removed features, see Deprecated Features.

Changes to the Engine API, see API version history.

Security

This release updates the Go runtime to 1.21.11 which contains security fixes for:

CVE-2024-24789

CVE-2024-24790

A symlink time of check to time of use race condition during directory removal reported by Addison Crump (@addisoncrump).

Bug fixes and enhancements

Fixed an issue where promoting a node immediately after another node was demoted could cause the promotion to fail. moby/moby#47870

Prevent the daemon log from being spammed with superfluous response.WriteHeader call ... messages.. moby/moby#47843

Don't show empty hints when plugins return an empty hook message. docker/cli#5083

Added ContextType: "moby" to the context list/inspect output to address a compatibility issue with Visual Studio Container Tools. docker/cli#5095

Fix a compatibility issue with Visual Studio Container Tools. docker/cli#5095

Packaging updates

Update containerd (static binaries only) to v1.7.17. moby/moby#47841

CVE-2024-24789, CVE-2024-24790: Update Go runtime to 1.21.11. moby/moby#47904

Update Compose to v2.27.1. docker/docker-ce-packages#1022

Update Buildx to v0.14.1. docker/docker-ce-packages#1021

Commits

de5c9cf Merge pull request #47912 from thaJeztah/26.1_backport_vendor_containerd_1.7.18
c62dcf8 Merge pull request #47911 from thaJeztah/26.1_backport_bump_containerd_binary...
17315a2 vendor: github.com/containerd/containerd v1.7.18
cbd9418 update containerd binary to v1.7.18
fb9f72a Merge pull request #47904 from thaJeztah/26.1_backport_bump_go1.21.11
3115daa update to go1.21.11
2861734 Merge pull request #47892 from thaJeztah/26.1_backport_api_docs_network_confi...
9c95aea Merge pull request #47893 from thaJeztah/26.1_backport_bump_docker_py
3e09e19 Merge pull request #47894 from thaJeztah/26.1_backport_vendor_containerd_v1.7.17
65b679a Merge pull request #47889 from thaJeztah/26.1_backport_platforms_err_handling
Additional commits viewable in compare view

Updates golang.org/x/net from 0.25.0 to 0.26.0

Commits

66e838c go.mod: update golang.org/x dependencies
6249541 http2: avoid race in server handler SetReadDeadine/SetWriteDeadline
603e3e6 quic: disable X25519Kyber768Draft00 in tests
67e8d0c http2: report an error if goroutines outlive serverTester tests
5608279 http2: avoid corruption in priority write scheduler
0d515a5 http2: factor out frame read/write test functions
9f5b79b http2: drop unused retry function
03c24c2 http2: use synthetic time in server tests
022530c http2: add a more full-featured test net.Conn
410d19e http2: avoid racy access to clientStream.requestedGzip
Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.62.1 to 1.62.2

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.62.2

Dependencies

Update http2 library to address vulnerability CVE-2023-45288

Commits

10baa6b Change version to 1.62.2 (#7086)
b078aaf *: update http2 dependency (#7083)
c94b530 Change version to 1.62.2-dev (#7022)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

… 6 updates Bumps the all-go-mod-patch-and-minor group with 5 updates in the /hack/tools directory: | Package | From | To | | --- | --- | --- | | [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.20.0` | `0.21.0` | | [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.182.0` | `0.183.0` | | [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.18.3` | `0.18.4` | | [github.com/docker/docker](https://github.com/docker/docker) | `26.1.3+incompatible` | `26.1.4+incompatible` | | [golang.org/x/net](https://github.com/golang/net) | `0.25.0` | `0.26.0` | Bumps the all-go-mod-patch-and-minor group with 5 updates in the /test directory: | Package | From | To | | --- | --- | --- | | [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.20.0` | `0.21.0` | | [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.18.3` | `0.18.4` | | [github.com/docker/docker](https://github.com/docker/docker) | `26.1.3+incompatible` | `26.1.4+incompatible` | | [golang.org/x/net](https://github.com/golang/net) | `0.25.0` | `0.26.0` | | [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.62.1` | `1.62.2` | Updates `golang.org/x/oauth2` from 0.20.0 to 0.21.0 - [Commits](golang/oauth2@v0.20.0...v0.21.0) Updates `google.golang.org/api` from 0.182.0 to 0.183.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.182.0...v0.183.0) Updates `sigs.k8s.io/controller-runtime` from 0.18.3 to 0.18.4 - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md) - [Commits](kubernetes-sigs/controller-runtime@v0.18.3...v0.18.4) Updates `github.com/docker/docker` from 26.1.3+incompatible to 26.1.4+incompatible - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v26.1.3...v26.1.4) Updates `golang.org/x/net` from 0.25.0 to 0.26.0 - [Commits](golang/net@v0.25.0...v0.26.0) Updates `golang.org/x/oauth2` from 0.20.0 to 0.21.0 - [Commits](golang/oauth2@v0.20.0...v0.21.0) Updates `sigs.k8s.io/controller-runtime` from 0.18.3 to 0.18.4 - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md) - [Commits](kubernetes-sigs/controller-runtime@v0.18.3...v0.18.4) Updates `github.com/docker/docker` from 26.1.3+incompatible to 26.1.4+incompatible - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v26.1.3...v26.1.4) Updates `golang.org/x/net` from 0.25.0 to 0.26.0 - [Commits](golang/net@v0.25.0...v0.26.0) Updates `google.golang.org/grpc` from 1.62.1 to 1.62.2 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.62.1...v1.62.2) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-mod-patch-and-minor - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-mod-patch-and-minor - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-mod-patch-and-minor - dependency-name: github.com/docker/docker dependency-type: indirect update-type: version-update:semver-patch dependency-group: all-go-mod-patch-and-minor - dependency-name: golang.org/x/net dependency-type: indirect update-type: version-update:semver-minor dependency-group: all-go-mod-patch-and-minor - dependency-name: golang.org/x/oauth2 dependency-type: indirect update-type: version-update:semver-minor dependency-group: all-go-mod-patch-and-minor - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-mod-patch-and-minor - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-mod-patch-and-minor - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-mod-patch-and-minor - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-mod-patch-and-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2024-06-10T18:45:26Z

The following labels could not be found: area/dependency, ok-to-test.

dependabot · 2024-06-12T04:32:02Z

Looks like these dependencies are no longer updatable, so this is no longer needed.

dependabot bot closed this Jun 12, 2024

dependabot bot deleted the dependabot/go_modules/hack/tools/all-go-mod-patch-and-minor-a061e86514 branch June 12, 2024 04:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

🌱 Bump the all-go-mod-patch-and-minor group across 2 directories with 6 updates #174

🌱 Bump the all-go-mod-patch-and-minor group across 2 directories with 6 updates #174

dependabot bot commented on behalf of github Jun 10, 2024 •

edited

Loading

dependabot bot commented on behalf of github Jun 10, 2024

dependabot bot commented on behalf of github Jun 12, 2024

🌱 Bump the all-go-mod-patch-and-minor group across 2 directories with 6 updates #174

🌱 Bump the all-go-mod-patch-and-minor group across 2 directories with 6 updates #174

Conversation

dependabot bot commented on behalf of github Jun 10, 2024 • edited Loading

v0.183.0

0.183.0 (2024-06-04)

Features

Bug Fixes

0.183.0 (2024-06-04)

Features

Bug Fixes

v0.18.4

What's Changed

v26.1.4

26.1.4

Security

Bug fixes and enhancements

Packaging updates

v0.18.4

What's Changed

v26.1.4

26.1.4

Security

Bug fixes and enhancements

Packaging updates

Release 1.62.2

Dependencies

dependabot bot commented on behalf of github Jun 10, 2024

dependabot bot commented on behalf of github Jun 12, 2024

dependabot bot commented on behalf of github Jun 10, 2024 •

edited

Loading