chore(deps): bump the all group across 1 directory with 13 updates#1761
chore(deps): bump the all group across 1 directory with 13 updates#1761dependabot[bot] wants to merge 1 commit into
Conversation
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here. DetailsNeeds approval from an approver in each of these files:Approvers can indicate their approval by writing |
Bumps the all group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go) | `1.62.1` | `1.62.3` | | [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.21.5` | `0.21.7` | | [github.com/sigstore/sigstore](https://github.com/sigstore/sigstore) | `1.10.6` | `1.10.8` | | [github.com/sigstore/sigstore/pkg/signature/kms/aws](https://github.com/sigstore/sigstore) | `1.10.6` | `1.10.8` | | [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore) | `1.10.6` | `1.10.8` | | [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore) | `1.10.6` | `1.10.8` | | [github.com/sigstore/sigstore/pkg/signature/kms/hashivault](https://github.com/sigstore/sigstore) | `1.10.6` | `1.10.8` | | [github.com/tektoncd/pipeline](https://github.com/tektoncd/pipeline) | `1.12.0` | `1.12.2` | | [k8s.io/api](https://github.com/kubernetes/api) | `0.36.1` | `0.36.2` | | [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.36.1` | `0.36.2` | | [k8s.io/code-generator](https://github.com/kubernetes/code-generator) | `0.36.1` | `0.36.2` | Updates `cloud.google.com/go/storage` from 1.62.1 to 1.62.3 - [Release notes](https://github.com/googleapis/google-cloud-go/releases) - [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md) - [Commits](googleapis/google-cloud-go@storage/v1.62.1...storage/v1.62.3) Updates `github.com/google/go-containerregistry` from 0.21.5 to 0.21.7 - [Release notes](https://github.com/google/go-containerregistry/releases) - [Commits](google/go-containerregistry@v0.21.5...v0.21.7) Updates `github.com/sigstore/sigstore` from 1.10.6 to 1.10.8 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.10.6...v1.10.8) Updates `github.com/sigstore/sigstore/pkg/signature/kms/aws` from 1.10.6 to 1.10.8 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.10.6...v1.10.8) Updates `github.com/sigstore/sigstore/pkg/signature/kms/azure` from 1.10.6 to 1.10.8 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.10.6...v1.10.8) Updates `github.com/sigstore/sigstore/pkg/signature/kms/gcp` from 1.10.6 to 1.10.8 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.10.6...v1.10.8) Updates `github.com/sigstore/sigstore/pkg/signature/kms/hashivault` from 1.10.6 to 1.10.8 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.10.6...v1.10.8) Updates `github.com/tektoncd/pipeline` from 1.12.0 to 1.12.2 - [Release notes](https://github.com/tektoncd/pipeline/releases) - [Changelog](https://github.com/tektoncd/pipeline/blob/main/releases.md) - [Commits](tektoncd/pipeline@v1.12.0...v1.12.2) Updates `golang.org/x/crypto` from 0.51.0 to 0.53.0 - [Commits](golang/crypto@v0.51.0...v0.53.0) Updates `k8s.io/api` from 0.36.1 to 0.36.2 - [Commits](kubernetes/api@v0.36.1...v0.36.2) Updates `k8s.io/apimachinery` from 0.36.1 to 0.36.2 - [Commits](kubernetes/apimachinery@v0.36.1...v0.36.2) Updates `k8s.io/client-go` from 0.36.1 to 0.36.2 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.36.1...v0.36.2) Updates `k8s.io/code-generator` from 0.36.1 to 0.36.2 - [Commits](kubernetes/code-generator@v0.36.1...v0.36.2) --- updated-dependencies: - dependency-name: cloud.google.com/go/storage dependency-version: 1.62.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/google/go-containerregistry dependency-version: 0.21.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore dependency-version: 1.10.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/aws dependency-version: 1.10.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure dependency-version: 1.10.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp dependency-version: 1.10.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/hashivault dependency-version: 1.10.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/tektoncd/pipeline dependency-version: 1.12.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: golang.org/x/crypto dependency-version: 0.53.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: k8s.io/api dependency-version: 0.36.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: k8s.io/apimachinery dependency-version: 0.36.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: k8s.io/client-go dependency-version: 0.36.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: k8s.io/code-generator dependency-version: 0.36.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all ... Signed-off-by: dependabot[bot] <support@github.com>
23f11b8 to
ede4eab
Compare
|
This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests. To ignore these dependencies, configure ignore rules in dependabot.yml |
|
Looks like these dependencies are no longer being updated by Dependabot, so this is no longer needed. |
Bumps the all group with 11 updates in the / directory:
1.62.11.62.30.21.50.21.71.10.61.10.81.10.61.10.81.10.61.10.81.10.61.10.81.10.61.10.81.12.01.12.20.36.10.36.20.36.10.36.20.36.10.36.2Updates
cloud.google.com/go/storagefrom 1.62.1 to 1.62.3Release notes
Sourced from cloud.google.com/go/storage's releases.
Commits
8afd6a0chore: librarian release pull request: 20260603T093646Z (#14699)04b6c63fix(storage): fix race condition during retries in gRPC writer (#14649)20b37d6fix(storage): add server closed idle connection to retriable errors (#14594)50a5755chore: librarian release pull request: 20260518T161338Z (#14610)585840fspanner: skip flaky TestIntegration_DbRemovalRecovery (#14607)f8bf88ftest(spanner): retry query after database recreation in integration test (#14...9168ab8chore(librariangen): tweak release preview test (#14599)f8b9a93fix(spanner/spannertest): Support UUID as a base data type (#14117)a42fd83fix(internal/librariange): release preview support (#14588)d944830fix(datastore): add retries to emulator (#14591)Updates
github.com/google/go-containerregistryfrom 0.21.5 to 0.21.7Release notes
Sourced from github.com/google/go-containerregistry's releases.
... (truncated)
Commits
c68d899Bump go version to 1.26.4 (#2350)da61d86transport: do not re-attach bearer token after cross-host redirect (#2349)09fe1e5fix(tarball): normalize paths when matching files (#2334)5baa399build(deps): bump the go-deps group across 3 directories with 4 updates (#2348)97a8a17fix(transport): apply refreshed bearer token after cross-host redirect (#2337)e963497internal/gzip: fix goroutine leak in ReadCloserLevel (#2347)02649eafix: prevent SSRF in google.List() pagination (#2332)7204b40build(deps): bump the actions group across 1 directory with 2 updates (#2344)4cfaa93build(deps): bump the go-deps group across 1 directory with 2 updates (#2343)6849394pkg/registry: export RedirectError (#2177)Updates
github.com/sigstore/sigstorefrom 1.10.6 to 1.10.8Release notes
Sourced from github.com/sigstore/sigstore's releases.
Commits
c761681Support standard PKCS#8 encrypted private key decryption (#2333)005faf9Extend PEM private key unmarshalling to support legacy format (#2332)e70e4edadd functional options to DSSE to improve memory usage, validation (#2326)899684dbuild(deps): Bump github.com/letsencrypt/boulder (#2307)181dc40build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/azure (#2308)2c141a7build(deps): Bump golangci/golangci-lint-action in the all group (#2328)b6c0214build(deps): Bump actions/upload-artifact from 6.0.0 to 7.0.1 (#2329)2ff50c9build(deps): Bump actions/dependency-review-action from 4.8.3 to 5.0.0 (#2330)d0204c3build(deps): Bump hashicorp/vault from 1.21.4 to 2.0.1 in /test/e2e (#2331)afdf897build(deps): Bump google.golang.org/grpc in /pkg/signature/kms/gcp (#2312)Updates
github.com/sigstore/sigstore/pkg/signature/kms/awsfrom 1.10.6 to 1.10.8Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/aws's releases.
Commits
c761681Support standard PKCS#8 encrypted private key decryption (#2333)005faf9Extend PEM private key unmarshalling to support legacy format (#2332)e70e4edadd functional options to DSSE to improve memory usage, validation (#2326)899684dbuild(deps): Bump github.com/letsencrypt/boulder (#2307)181dc40build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/azure (#2308)2c141a7build(deps): Bump golangci/golangci-lint-action in the all group (#2328)b6c0214build(deps): Bump actions/upload-artifact from 6.0.0 to 7.0.1 (#2329)2ff50c9build(deps): Bump actions/dependency-review-action from 4.8.3 to 5.0.0 (#2330)d0204c3build(deps): Bump hashicorp/vault from 1.21.4 to 2.0.1 in /test/e2e (#2331)afdf897build(deps): Bump google.golang.org/grpc in /pkg/signature/kms/gcp (#2312)Updates
github.com/sigstore/sigstore/pkg/signature/kms/azurefrom 1.10.6 to 1.10.8Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/azure's releases.
Commits
c761681Support standard PKCS#8 encrypted private key decryption (#2333)005faf9Extend PEM private key unmarshalling to support legacy format (#2332)e70e4edadd functional options to DSSE to improve memory usage, validation (#2326)899684dbuild(deps): Bump github.com/letsencrypt/boulder (#2307)181dc40build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/azure (#2308)2c141a7build(deps): Bump golangci/golangci-lint-action in the all group (#2328)b6c0214build(deps): Bump actions/upload-artifact from 6.0.0 to 7.0.1 (#2329)2ff50c9build(deps): Bump actions/dependency-review-action from 4.8.3 to 5.0.0 (#2330)d0204c3build(deps): Bump hashicorp/vault from 1.21.4 to 2.0.1 in /test/e2e (#2331)afdf897build(deps): Bump google.golang.org/grpc in /pkg/signature/kms/gcp (#2312)Updates
github.com/sigstore/sigstore/pkg/signature/kms/gcpfrom 1.10.6 to 1.10.8Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/gcp's releases.
Commits
c761681Support standard PKCS#8 encrypted private key decryption (#2333)005faf9Extend PEM private key unmarshalling to support legacy format (#2332)e70e4edadd functional options to DSSE to improve memory usage, validation (#2326)899684dbuild(deps): Bump github.com/letsencrypt/boulder (#2307)181dc40build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/azure (#2308)2c141a7build(deps): Bump golangci/golangci-lint-action in the all group (#2328)b6c0214build(deps): Bump actions/upload-artifact from 6.0.0 to 7.0.1 (#2329)2ff50c9build(deps): Bump actions/dependency-review-action from 4.8.3 to 5.0.0 (#2330)d0204c3build(deps): Bump hashicorp/vault from 1.21.4 to 2.0.1 in /test/e2e (#2331)afdf897build(deps): Bump google.golang.org/grpc in /pkg/signature/kms/gcp (#2312)Updates
github.com/sigstore/sigstore/pkg/signature/kms/hashivaultfrom 1.10.6 to 1.10.8Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/hashivault's releases.
Commits
c761681Support standard PKCS#8 encrypted private key decryption (#2333)005faf9Extend PEM private key unmarshalling to support legacy format (#2332)e70e4edadd functional options to DSSE to improve memory usage, validation (#2326)899684dbuild(deps): Bump github.com/letsencrypt/boulder (#2307)181dc40build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/azure (#2308)2c141a7build(deps): Bump golangci/golangci-lint-action in the all group (#2328)b6c0214build(deps): Bump actions/upload-artifact from 6.0.0 to 7.0.1 (#2329)2ff50c9build(deps): Bump actions/dependency-review-action from 4.8.3 to 5.0.0 (#2330)d0204c3build(deps): Bump hashicorp/vault from 1.21.4 to 2.0.1 in /test/e2e (#2331)afdf897build(deps): Bump google.golang.org/grpc in /pkg/signature/kms/gcp (#2312)Updates
github.com/tektoncd/pipelinefrom 1.12.0 to 1.12.2Release notes
Sourced from github.com/tektoncd/pipeline's releases.
... (truncated)
Commits
a1fc405build(deps): bump k8s.io/client-go from 0.35.5 to 0.35.6f6ecc12build(deps): bump the all group in /tekton with 4 updates829429bfix(resolvers): Allow ResolutionRequests to resolve all Tekton kinds2046a4cbuild(deps): bump the all group in /tekton with 4 updatesb8f43babuild(deps): bump chainguard-dev/actions from 1.6.21 to 1.6.2264ec216fix: add automated draft release support to release pipelineaedbed0build(deps): bump github.com/sigstore/sigstore from 1.10.6 to 1.10.813e5821build(deps): bump chainguard-dev/actions from 1.6.19 to 1.6.211e0b0e7build(deps): bump the all group in /tekton with 4 updates25e1258build(deps): bump actions/checkout from 6.0.2 to 6.0.3Updates
golang.org/x/cryptofrom 0.51.0 to 0.53.0Commits
45460e0go.mod: update golang.org/x dependenciesd37c95epkcs12: limit PBKDF iteration count to prevent CPU exhaustione2ffffessh: reject incomplete gssapi-with-mic configurations60e158assh/test: isolate CLI tests from user SSH config and agent1b77d23ssh/knownhosts: reject lines with multiple or unknown markers3872a2bssh/knownhosts: verify declared key type matches decoded key9f72eccssh/knownhosts: treat only ASCII space and tab as whitespace8f405a4ssh: validate ECDSA curve matches expected algorithmbb41b3dssh: improve DH GEX group selection using PreferredBitse04e721ssh/agent: validate ed25519 private key length in AddUpdates
k8s.io/apifrom 0.36.1 to 0.36.2Commits
2f4cefdUpdate dependencies to v0.36.2 tagUpdates
k8s.io/apimachineryfrom 0.36.1 to 0.36.2Commits
ae3f98eUpdate dependencies to v0.36.2 tag2ec982dMerge pull request #139508lalitc375/automated-cherry-pick-of-#1394806a88102Fix wrong marking of errorsUpdates
k8s.io/client-gofrom 0.36.1 to 0.36.2Commits
877f535Update dependencies to v0.36.2 tagUpdates
k8s.io/code-generatorfrom 0.36.1 to 0.36.2Commits
c64281aUpdate dependencies to v0.36.2 tag