Bump github.com/onsi/ginkgo/v2 from 2.22.2 to 2.32.0

[dependabot]

Bumps github.com/onsi/ginkgo/v2 from 2.22.2 to 2.32.0.

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.32.0

2.32.0

-fd generate RSpec-style documentation output. Thank @​woodie ! --sleep-on-failure pauses a failed spec before teardown. Thanks @​qinqon !

v2.31.0

2.31.0

Add a bunch of Claude Skills via the marketplace:

/plugin marketplace add onsi/ginkgo
/plugin install ginkgo@ginkgo

v2.30.0

2.30.0

Features

Ginkgo now allows extentions/global.Reset to support running multiple suites from within a single process. This may take some massaging on your part (see 1672) but can dramatically speed up codebases with O(hundreds) of test suites.

Thanks @​lawrencejones !

Fixes

• Fix nested --github-output group for progress report nested inside timeline [4f62d7a]

v2.29.0

2.29.0

GinkgoHelperGo makes it easier to write test helpers that need to run in goroutines. Specifically, it makes managing the failure state and capturing failure panics correctly straightforward.

ginkgo outline now includes entries defined in DescribeTableSubtree

v2.28.3

2.28.3

Maintenance

Bump all dependencies

v2.28.2

2.28.2

• Add ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]
• Implement shell completion [94151c8]
• Add asan CLI option mirroring msan implementation [4d21dbb]
• Bump uri from 1.0.3 to 1.0.4 in /docs (#1630) [c102161]
• fix aspect ratio [9619647]
• update logos [5779304]

... (truncated)

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.32.0

-fd generate RSpec-style documentation output. Thank @​woodie ! --sleep-on-failure pauses a failed spec before teardown. Thanks @​qinqon !

2.31.0

Add a bunch of Claude Skills via the marketplace:

/plugin marketplace add onsi/ginkgo
/plugin install ginkgo@ginkgo

2.30.0

Features

Ginkgo now allows extentions/global.Reset to support running multiple suites from within a single process. This may take some massaging on your part (see 1672) but can dramatically speed up codebases with O(hundreds) of test suites.

Thanks @​lawrencejones !

Fixes

• Fix nested --github-output group for progress report nested inside timeline [4f62d7a]

2.29.0

GinkgoHelperGo makes it easier to write test helpers that need to run in goroutines. Specifically, it makes managing the failure state and capturing failure panics correctly straightforward.

ginkgo outline now includes entries defined in DescribeTableSubtree

2.28.3

Maintenance

Bump all dependencies

2.28.2

• Add ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]
• Implement shell completion [94151c8]
• Add asan CLI option mirroring msan implementation [4d21dbb]
• Bump uri from 1.0.3 to 1.0.4 in /docs (#1630) [c102161]
• fix aspect ratio [9619647]
• update logos [5779304]

2.28.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

2.28.0

... (truncated)

Commits

• 9ff1646 v2.32.0
• 0491f2a Make -fd exclusive of -p/-procs and -randomize-all
• 334f74a respect SilenceSkips in fd mode, add test
• 21047ce No need for a new method.
• 7d281e1 Break out to two methods.
• 5313727 More integration, fewer changes.
• b83f524 Fewer new methods.
• 73c59df feat: add -fd flag for RSpec-style documentation output
• 76a2074 feat: add --sleep-on-failure to pause a failed spec before teardown
• 3c7bde4 v2.31.0
• Additional commits viewable in compare view

[coderabbitai]

Caution

Review failed

An error occurred during the review process. Please try again later.

Walkthrough

go.mod is updated to Go 1.25.0. Direct test dependencies ginkgo/v2 and gomega are bumped to newer minor versions. One new indirect dependency (Masterminds/semver/v3) is added, and several existing indirect dependencies (go-logr/logr, google/go-cmp, google/pprof, multiple golang.org/x/* packages, and google.golang.org/protobuf) are advanced to newer versions.

Changes

Go Module Dependency Updates

Layer / File(s)	Summary
Go version and direct dependency bumps go.mod	go directive updated to 1.25.0; direct requires for github.com/onsi/ginkgo/v2 and github.com/onsi/gomega bumped to v2.32.0 and v1.40.0.
Indirect dependency additions and version bumps go.mod	New indirect entry github.com/Masterminds/semver/v3 v3.4.0 added; go-logr/logr, google/go-cmp, google/pprof, go.yaml.in/yaml/v3, golang.org/x/* packages, and google.golang.org/protobuf all advanced to newer versions.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

🚥 Pre-merge checks | ✅ 11

✅ Passed checks (11 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately reflects the main dependency update in the PR, specifically bumping ginkgo/v2, which is the primary change described in both the summary and objectives.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
No-Weak-Crypto	✅ Passed	No weak crypto (MD5, SHA1, DES, RC4, 3DES, Blowfish, ECB) found in code. No custom crypto implementations or non-constant-time secret comparisons. This is a test framework dependency update PR.
Container-Privileges	✅ Passed	No privileged container settings found in any container/K8s manifests. All YAML, Dockerfile, and CI configurations use standard security settings without elevated privileges.
No-Sensitive-Data-In-Logs	✅ Passed	This PR updates the ginkgo/v2 test framework dependency (v2.22.2 to v2.32.0) and modifies related test code. Analysis of 34 GinkgoWriter logging statements found no exposure of passwords, tokens, A...
No-Hardcoded-Secrets	✅ Passed	No hardcoded secrets found. The PR only updates dependency versions in go.mod; code properly uses environment variables for credential handling.
No-Injection-Vectors	✅ Passed	PR adds Go dependencies and test framework code with no injection vectors. Shell commands use hardcoded strings; API queries use OCM SDK (not raw SQL); no eval/exec on untrusted data detected.
Ai-Attribution	✅ Passed	No AI tools were mentioned as being used to generate this PR; only Dependabot (traditional automation) was used. Check is not applicable.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/go_modules/github.com/onsi/ginkgo/v2-2.32.0

---

_{Comment @coderabbitai help to get the list of available commands.}

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign tiwillia for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@go.mod`:
- Line 75: Update the golang.org/x/oauth2 dependency from v0.23.0 to v0.27.0 or
later in the go.mod file to address the HIGH severity CVE-2025-22868
vulnerability in the jws sub-package. First check if a newer version of
ocm-sdk-go (beyond v0.1.456) already pins a patched oauth2 version; if not,
explicitly update the golang.org/x/oauth2 constraint in go.mod to v0.27.0 or
later, then run go mod tidy to ensure the upgraded version is resolved and
propagated through the dependency tree.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository: openshift-online/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: de1ac489-5361-44a6-9440-37b460d1c6f3

📥 Commits

Reviewing files that changed from the base of the PR and between f623c4b and 5160f69.

⛔ Files ignored due to path filters (1)

• go.sum is excluded by !**/*.sum

📒 Files selected for processing (1)

• go.mod

[github-actions]

/retest

[github-actions]

/retest

[openshift-ci]

rebase

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[github-actions]

E2E Smoke Tests Failed

Auto-merge has been disabled because e2e smoke tests failed. Please investigate and /retest when ready.

[openshift-ci]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/ocm-fvt-rosa-hcp-staging-ocm-fvt-periodic-cs-sanity-jira-staging-main	5160f69	link	true	/test ocm-fvt-rosa-hcp-staging-ocm-fvt-periodic-cs-sanity-jira-staging-main
ci/prow/unit	5fc7332	link	true	/test unit
ci/prow/lint	5fc7332	link	true	/test lint
ci/prow/upgrade-images	5fc7332	link	true	/test upgrade-images
ci/prow/periodics-images	5fc7332	link	true	/test periodics-images
ci/prow/e2e-rosa-classic-smoke	5fc7332	link	false	/test e2e-rosa-classic-smoke
ci/prow/e2e-rosa-hcp-smoke	5fc7332	link	false	/test e2e-rosa-hcp-smoke
ci/prow/images	5fc7332	link	true	/test images

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.