Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump the go-dependencies group across 1 directory with 8 updates #2244

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 5, 2024

Bumps the go-dependencies group with 7 updates in the / directory:

Package From To
github.com/GoogleContainerTools/kaniko 1.22.0 1.23.2
github.com/google/go-containerregistry 0.20.0 0.20.1
github.com/onsi/gomega 1.33.1 1.34.1
golang.org/x/mod 0.19.0 0.20.0
golang.org/x/oauth2 0.21.0 0.22.0
golang.org/x/sync 0.7.0 0.8.0
golang.org/x/sys 0.22.0 0.23.0

Updates github.com/GoogleContainerTools/kaniko from 1.22.0 to 1.23.2

Release notes

Sourced from github.com/GoogleContainerTools/kaniko's releases.

v1.23.2 Release 2024-07-09

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.2
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.2-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.2-slim

v1.23.2 is a patch release updating kaniko dependency version. See below for the specific deps that were updated.

Dependency Updates:

  • chore(deps): bump github.com/moby/buildkit and github.com/docker/docker #3242
  • chore(deps): bump docker/build-push-action from 6.1.0 to 6.3.0 #3236
  • chore(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 #3235
  • chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 #3237
  • chore(deps): bump google.golang.org/api from 0.185.0 to 0.187.0 #3238
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.17.1 to 1.17.5 #3239
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.24 to 1.17.1 #3220
  • chore(deps): bump docker/build-push-action from 6.0.0 to 6.1.0 #3218
  • chore(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 #3219
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.55.1 to 1.56.1 #3221
  • chore(deps): bump docker/build-push-action from 5.3.0 to 6.0.0 #3212
  • chore(deps): bump cloud.google.com/go/storage from 1.41.0 to 1.42.0 #3204
  • chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 #3205
  • chore(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 #3206
  • chore(deps): bump imjasonh/setup-crane from 0.3 to 0.4 #3210
  • chore(deps): bump golang.org/x/net from 0.25.0 to 0.26.0 #3190
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.21 to 1.16.24 #3191
  • chore(deps): bump google.golang.org/api from 0.182.0 to 0.183.0 #3192
  • chore(deps): bump github.com/containerd/containerd from 1.7.17 to 1.7.18 #3193
  • chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.27.0 to 1.27.2 #3194

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]

v1.23.1 Release 2024-06-07

The executor images in this release are:

... (truncated)

Changelog

Sourced from github.com/GoogleContainerTools/kaniko's changelog.

v1.23.2 Release 2024-07-09

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.2
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.2-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.2-slim
  • deps: bump github.com/moby/buildkit and github.com/docker/docker #3242
  • chore(deps): bump docker/build-push-action from 6.1.0 to 6.3.0 #3236
  • chore(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 #3235
  • chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 #3237
  • chore(deps): bump google.golang.org/api from 0.185.0 to 0.187.0 #3238
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.17.1 to 1.17.5 #3239
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.24 to 1.17.1 #3220
  • chore(deps): bump docker/build-push-action from 6.0.0 to 6.1.0 #3218
  • chore(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 #3219
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.55.1 to 1.56.1 #3221
  • chore(deps): bump docker/build-push-action from 5.3.0 to 6.0.0 #3212
  • chore(deps): bump cloud.google.com/go/storage from 1.41.0 to 1.42.0 #3204
  • chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 #3205
  • chore(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 #3206
  • chore(deps): bump imjasonh/setup-crane from 0.3 to 0.4 #3210
  • chore(deps): bump golang.org/x/net from 0.25.0 to 0.26.0 #3190
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.21 to 1.16.24 #3191
  • chore(deps): bump google.golang.org/api from 0.182.0 to 0.183.0 #3192
  • chore(deps): bump github.com/containerd/containerd from 1.7.17 to 1.7.18 #3193
  • chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.27.0 to 1.27.2 #3194

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
</tr></table> 

... (truncated)

Commits
  • 1ae9a84 chore(release): release v1.23.2 (#3243)
  • 5283199 deps: bump github.com/moby/buildkit and github.com/docker/docker (#3242)
  • 38f1ad8 chore(deps): bump docker/build-push-action from 6.1.0 to 6.3.0 (#3236)
  • 1769774 chore(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 (#3235)
  • 3dc85a1 chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 (#3237)
  • 22dfb05 chore(deps): bump google.golang.org/api from 0.185.0 to 0.187.0 (#3238)
  • c5d3495 chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3239)
  • d6aab15 chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3220)
  • 31f27d6 chore(deps): bump docker/build-push-action from 6.0.0 to 6.1.0 (#3218)
  • a3e7508 chore(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 (#3219)
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 26.1.4+incompatible to 27.0.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.0.3

27.0.3

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • Fix a regression that incorrectly reported a port mapping from a host IPv6 address to an IPv4-only container as an error. moby/moby#48090
  • Fix a regression that caused duplicate subnet allocations when creating networks. moby/moby#48089
  • Fix a regression resulting in "fail to register layer: failed to Lchown" errors when trying to pull an image with rootless enabled on a system that supports native overlay with user-namespaces. moby/moby#48086

v27.0.2

27.0.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

Removed

  • api/types: deprecate ContainerJSONBase.Node field and ContainerNode type. These definitions were used by the standalone ("classic") Swarm API, but never implemented in the Docker Engine itself. moby/moby#48055

v27.0.1

27.0.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

New

  • containerd image store: Add --platform flag to docker image push and improve the default behavior when not all platforms of the multi-platform image are available locally. docker/cli#4984, moby/moby#47679
  • Add support to docker stack deploy for driver_opts in a service's networks. docker/cli#5125
  • Consider additional /usr/local/libexec and /usr/libexec paths when looking up the userland proxy binaries by a name with a docker- prefix. moby/moby#47804

Bug fixes and enhancements

... (truncated)

Commits
  • 662f78c Merge pull request #48090 from thaJeztah/27.0_backport_48067_fix_specific_ipv...
  • b86d9bd Merge pull request #48086 from thaJeztah/27.0_backport_fix_rootless_pull
  • 0dbc3ac Merge pull request #48087 from thaJeztah/27.0_backport_gofmt
  • 276a648 Fix incorrect validation of port mapping
  • 22aa07b Merge pull request #48089 from robmry/backport-27.0/48069_fix_overlapping_sub...
  • 23b8b02 Fix duplicate subnet allocations
  • bf222d6 fix some gofmt issues reported by goreportcard
  • f8231b5 daemon/graphdriver/overlay2: set TarOptions.InUserNS for native differ
  • b951474 pkg/archive: createTarFile: consistently use the same value for userns
  • c5794e2 pkg/archive: handleTarTypeBlockCharFifo: don't discard EPERM errors
  • Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.0 to 0.20.1

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.1

What's Changed

Full Changelog: google/go-containerregistry@v0.20.0...v0.20.1

Commits

Updates github.com/onsi/gomega from 1.33.1 to 1.34.1

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.34.1

1.34.1

Maintenance

  • Use slices from exp/slices to keep golang 1.20 compat [5e71dcd]

v1.34.0

1.34.0

Features

  • Add RoundTripper method to ghttp.Server [c549e0d]

Fixes

  • fix incorrect handling of nil slices in HaveExactElements (fixes #771) [878940c]
  • issue_765 - fixed bug in Hopcroft-Karp algorithm [ebadb67]

Maintenance

  • bump ginkgo [8af2ece]
  • Fix typo in docs [123a071]
  • Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.17.3 (#756) [0e69083]
  • Bump google.golang.org/protobuf from 1.33.0 to 1.34.1 (#755) [2675796]
  • Bump golang.org/x/net from 0.24.0 to 0.25.0 (#754) [4160c0f]
  • Bump github-pages from 230 to 231 in /docs (#748) [892c303]
Changelog

Sourced from github.com/onsi/gomega's changelog.

1.34.1

Maintenance

  • Use slices from exp/slices to keep golang 1.20 compat [5e71dcd]

1.34.0

Features

  • Add RoundTripper method to ghttp.Server [c549e0d]

Fixes

  • fix incorrect handling of nil slices in HaveExactElements (fixes #771) [878940c]
  • issue_765 - fixed bug in Hopcroft-Karp algorithm [ebadb67]

Maintenance

  • bump ginkgo [8af2ece]
  • Fix typo in docs [123a071]
  • Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.17.3 (#756) [0e69083]
  • Bump google.golang.org/protobuf from 1.33.0 to 1.34.1 (#755) [2675796]
  • Bump golang.org/x/net from 0.24.0 to 0.25.0 (#754) [4160c0f]
  • Bump github-pages from 230 to 231 in /docs (#748) [892c303]
Commits
  • fa057b8 v1.34.1
  • 5e71dcd Use slices from exp/slices to keep golang 1.20 compat
  • 32e5498 v1.34.0
  • cb3fa6a run go mod tidy and wonder why go get doesnt just run it for me in the first ...
  • 8af2ece bump ginkgo
  • 878940c fix incorrect handling of nil slices in HaveExactElements (fixes #771)
  • f5bec80 clean up bipartitegraph tests
  • ebadb67 issue_765 - fixed bug in Hopcroft-Karp algorithm
  • 123a071 Fix typo in docs
  • c549e0d Add RoundTripper method to ghttp.Server
  • Additional commits viewable in compare view

Updates golang.org/x/mod from 0.19.0 to 0.20.0

Commits
  • bc151c4 README: fix link to x/tools
  • d1f873e modfile: fix Cleanup clobbering Line reference
  • b56a28f modfile: Add support for tool lines
  • 79169e9 LICENSE: update per Google Legal
  • See full diff in compare view

Updates golang.org/x/oauth2 from 0.21.0 to 0.22.0

Commits

Updates golang.org/x/sync from 0.7.0 to 0.8.0

Commits

Updates golang.org/x/sys from 0.22.0 to 0.23.0

Commits
  • aa1c4c8 unix: provide Mount on openbsd
  • cde4660 unix: add linux mseal system call
  • 31ef9e7 unix: update to Linux kernel 6.10
  • d03a807 unix: update glibc to 2.40
  • beb5949 windows: correctly generate GetAce syscall
  • 7bb0bf7 cpu: add Int8 matrix multiplication instructions CPU feature flag for ARM64
  • bce4cf7 windows: add GetKeyboardLayout & ToUnicodeEx
  • 0eac9b5 windows: add flags for GetAdaptersAddresses
  • 0c18c88 cpu: add DIT option and hwcap DIT support
  • dce4e64 LICENSE: update per Google Legal
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

… updates

Bumps the go-dependencies group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/GoogleContainerTools/kaniko](https://github.com/GoogleContainerTools/kaniko) | `1.22.0` | `1.23.2` |
| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.0` | `0.20.1` |
| [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.33.1` | `1.34.1` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.19.0` | `0.20.0` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.21.0` | `0.22.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.7.0` | `0.8.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.22.0` | `0.23.0` |



Updates `github.com/GoogleContainerTools/kaniko` from 1.22.0 to 1.23.2
- [Release notes](https://github.com/GoogleContainerTools/kaniko/releases)
- [Changelog](https://github.com/GoogleContainerTools/kaniko/blob/main/CHANGELOG.md)
- [Commits](GoogleContainerTools/kaniko@v1.22.0...v1.23.2)

Updates `github.com/docker/docker` from 26.1.4+incompatible to 27.0.3+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v26.1.4...v27.0.3)

Updates `github.com/google/go-containerregistry` from 0.20.0 to 0.20.1
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](google/go-containerregistry@v0.20.0...v0.20.1)

Updates `github.com/onsi/gomega` from 1.33.1 to 1.34.1
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.33.1...v1.34.1)

Updates `golang.org/x/mod` from 0.19.0 to 0.20.0
- [Commits](golang/mod@v0.19.0...v0.20.0)

Updates `golang.org/x/oauth2` from 0.21.0 to 0.22.0
- [Commits](golang/oauth2@v0.21.0...v0.22.0)

Updates `golang.org/x/sync` from 0.7.0 to 0.8.0
- [Commits](golang/sync@v0.7.0...v0.8.0)

Updates `golang.org/x/sys` from 0.22.0 to 0.23.0
- [Commits](golang/sys@v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: github.com/GoogleContainerTools/kaniko
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: go-dependencies
- dependency-name: github.com/google/go-containerregistry
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/mod
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sync
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested review from a team as code owners August 5, 2024 22:21
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code type/chore Issue that requests non-user facing changes. labels Aug 5, 2024
@github-actions github-actions bot added this to the 0.36.0 milestone Aug 5, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 12, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Aug 12, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/go-dependencies-827e18094a branch August 12, 2024 22:26
@jjbustamante jjbustamante removed this from the 0.36.0 milestone Sep 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code type/chore Issue that requests non-user facing changes.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant