Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump the go-dependencies group across 1 directory with 11 updates #2262

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 9, 2024

Bumps the go-dependencies group with 5 updates in the / directory:

Package From To
github.com/GoogleContainerTools/kaniko 1.22.0 1.23.2
github.com/google/go-containerregistry 0.20.0 0.20.2
github.com/onsi/gomega 1.33.1 1.34.2
golang.org/x/mod 0.19.0 0.21.0
golang.org/x/oauth2 0.21.0 0.23.0

Updates github.com/GoogleContainerTools/kaniko from 1.22.0 to 1.23.2

Release notes

Sourced from github.com/GoogleContainerTools/kaniko's releases.

v1.23.2 Release 2024-07-09

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.2
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.2-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.2-slim

v1.23.2 is a patch release updating kaniko dependency version. See below for the specific deps that were updated.

Dependency Updates:

  • chore(deps): bump github.com/moby/buildkit and github.com/docker/docker #3242
  • chore(deps): bump docker/build-push-action from 6.1.0 to 6.3.0 #3236
  • chore(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 #3235
  • chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 #3237
  • chore(deps): bump google.golang.org/api from 0.185.0 to 0.187.0 #3238
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.17.1 to 1.17.5 #3239
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.24 to 1.17.1 #3220
  • chore(deps): bump docker/build-push-action from 6.0.0 to 6.1.0 #3218
  • chore(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 #3219
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.55.1 to 1.56.1 #3221
  • chore(deps): bump docker/build-push-action from 5.3.0 to 6.0.0 #3212
  • chore(deps): bump cloud.google.com/go/storage from 1.41.0 to 1.42.0 #3204
  • chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 #3205
  • chore(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 #3206
  • chore(deps): bump imjasonh/setup-crane from 0.3 to 0.4 #3210
  • chore(deps): bump golang.org/x/net from 0.25.0 to 0.26.0 #3190
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.21 to 1.16.24 #3191
  • chore(deps): bump google.golang.org/api from 0.182.0 to 0.183.0 #3192
  • chore(deps): bump github.com/containerd/containerd from 1.7.17 to 1.7.18 #3193
  • chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.27.0 to 1.27.2 #3194

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]

v1.23.1 Release 2024-06-07

The executor images in this release are:

... (truncated)

Changelog

Sourced from github.com/GoogleContainerTools/kaniko's changelog.

v1.23.2 Release 2024-07-09

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.2
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.2-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.2-slim
  • deps: bump github.com/moby/buildkit and github.com/docker/docker #3242
  • chore(deps): bump docker/build-push-action from 6.1.0 to 6.3.0 #3236
  • chore(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 #3235
  • chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 #3237
  • chore(deps): bump google.golang.org/api from 0.185.0 to 0.187.0 #3238
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.17.1 to 1.17.5 #3239
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.24 to 1.17.1 #3220
  • chore(deps): bump docker/build-push-action from 6.0.0 to 6.1.0 #3218
  • chore(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 #3219
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.55.1 to 1.56.1 #3221
  • chore(deps): bump docker/build-push-action from 5.3.0 to 6.0.0 #3212
  • chore(deps): bump cloud.google.com/go/storage from 1.41.0 to 1.42.0 #3204
  • chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 #3205
  • chore(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 #3206
  • chore(deps): bump imjasonh/setup-crane from 0.3 to 0.4 #3210
  • chore(deps): bump golang.org/x/net from 0.25.0 to 0.26.0 #3190
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.21 to 1.16.24 #3191
  • chore(deps): bump google.golang.org/api from 0.182.0 to 0.183.0 #3192
  • chore(deps): bump github.com/containerd/containerd from 1.7.17 to 1.7.18 #3193
  • chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.27.0 to 1.27.2 #3194

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
</tr></table> 

... (truncated)

Commits
  • 1ae9a84 chore(release): release v1.23.2 (#3243)
  • 5283199 deps: bump github.com/moby/buildkit and github.com/docker/docker (#3242)
  • 38f1ad8 chore(deps): bump docker/build-push-action from 6.1.0 to 6.3.0 (#3236)
  • 1769774 chore(deps): bump docker/setup-qemu-action from 3.0.0 to 3.1.0 (#3235)
  • 3dc85a1 chore(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 (#3237)
  • 22dfb05 chore(deps): bump google.golang.org/api from 0.185.0 to 0.187.0 (#3238)
  • c5d3495 chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3239)
  • d6aab15 chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3220)
  • 31f27d6 chore(deps): bump docker/build-push-action from 6.0.0 to 6.1.0 (#3218)
  • a3e7508 chore(deps): bump google.golang.org/api from 0.183.0 to 0.185.0 (#3219)
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 26.1.4+incompatible to 27.0.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.0.3

27.0.3

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • Fix a regression that incorrectly reported a port mapping from a host IPv6 address to an IPv4-only container as an error. moby/moby#48090
  • Fix a regression that caused duplicate subnet allocations when creating networks. moby/moby#48089
  • Fix a regression resulting in "fail to register layer: failed to Lchown" errors when trying to pull an image with rootless enabled on a system that supports native overlay with user-namespaces. moby/moby#48086

v27.0.2

27.0.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

Removed

  • api/types: deprecate ContainerJSONBase.Node field and ContainerNode type. These definitions were used by the standalone ("classic") Swarm API, but never implemented in the Docker Engine itself. moby/moby#48055

v27.0.1

27.0.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

New

  • containerd image store: Add --platform flag to docker image push and improve the default behavior when not all platforms of the multi-platform image are available locally. docker/cli#4984, moby/moby#47679
  • Add support to docker stack deploy for driver_opts in a service's networks. docker/cli#5125
  • Consider additional /usr/local/libexec and /usr/libexec paths when looking up the userland proxy binaries by a name with a docker- prefix. moby/moby#47804

Bug fixes and enhancements

... (truncated)

Commits
  • 662f78c Merge pull request #48090 from thaJeztah/27.0_backport_48067_fix_specific_ipv...
  • b86d9bd Merge pull request #48086 from thaJeztah/27.0_backport_fix_rootless_pull
  • 0dbc3ac Merge pull request #48087 from thaJeztah/27.0_backport_gofmt
  • 276a648 Fix incorrect validation of port mapping
  • 22aa07b Merge pull request #48089 from robmry/backport-27.0/48069_fix_overlapping_sub...
  • 23b8b02 Fix duplicate subnet allocations
  • bf222d6 fix some gofmt issues reported by goreportcard
  • f8231b5 daemon/graphdriver/overlay2: set TarOptions.InUserNS for native differ
  • b951474 pkg/archive: createTarFile: consistently use the same value for userns
  • c5794e2 pkg/archive: handleTarTypeBlockCharFifo: don't discard EPERM errors
  • Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.0 to 0.20.2

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.2

What's Changed

Full Changelog: google/go-containerregistry@v0.20.1...v0.20.2

v0.20.1

What's Changed

Full Changelog: google/go-containerregistry@v0.20.0...v0.20.1

Commits

Updates github.com/onsi/gomega from 1.33.1 to 1.34.2

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.34.2

1.34.2

Require Go 1.22+

Maintenance

  • bump ginkgo as well [c59c6dc]
  • bump to go 1.22 - remove x/exp dependency [8158b99]

v1.34.1

1.34.1

Maintenance

  • Use slices from exp/slices to keep golang 1.20 compat [5e71dcd]

v1.34.0

1.34.0

Features

  • Add RoundTripper method to ghttp.Server [c549e0d]

Fixes

  • fix incorrect handling of nil slices in HaveExactElements (fixes #771) [878940c]
  • issue_765 - fixed bug in Hopcroft-Karp algorithm [ebadb67]

Maintenance

  • bump ginkgo [8af2ece]
  • Fix typo in docs [123a071]
  • Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.17.3 (#756) [0e69083]
  • Bump google.golang.org/protobuf from 1.33.0 to 1.34.1 (#755) [2675796]
  • Bump golang.org/x/net from 0.24.0 to 0.25.0 (#754) [4160c0f]
  • Bump github-pages from 230 to 231 in /docs (#748) [892c303]
Changelog

Sourced from github.com/onsi/gomega's changelog.

1.34.2

Require Go 1.22+

Maintenance

  • bump ginkgo as well [c59c6dc]
  • bump to go 1.22 - remove x/exp dependency [8158b99]

1.34.1

Maintenance

  • Use slices from exp/slices to keep golang 1.20 compat [5e71dcd]

1.34.0

Features

  • Add RoundTripper method to ghttp.Server [c549e0d]

Fixes

  • fix incorrect handling of nil slices in HaveExactElements (fixes #771) [878940c]
  • issue_765 - fixed bug in Hopcroft-Karp algorithm [ebadb67]

Maintenance

  • bump ginkgo [8af2ece]
  • Fix typo in docs [123a071]
  • Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.17.3 (#756) [0e69083]
  • Bump google.golang.org/protobuf from 1.33.0 to 1.34.1 (#755) [2675796]
  • Bump golang.org/x/net from 0.24.0 to 0.25.0 (#754) [4160c0f]
  • Bump github-pages from 230 to 231 in /docs (#748) [892c303]
Commits
  • 7cabed6 v1.34.2
  • c59c6dc bump ginkgo as well
  • 8158b99 bump to go 1.22 - remove x/exp dependency
  • fa057b8 v1.34.1
  • 5e71dcd Use slices from exp/slices to keep golang 1.20 compat
  • 32e5498 v1.34.0
  • cb3fa6a run go mod tidy and wonder why go get doesnt just run it for me in the first ...
  • 8af2ece bump ginkgo
  • 878940c fix incorrect handling of nil slices in HaveExactElements (fixes #771)
  • f5bec80 clean up bipartitegraph tests
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.25.0 to 0.26.0

Commits
  • 5bcd010 go.mod: update golang.org/x dependencies
  • 3375612 ssh: add support for unpadded RSA signatures
  • bb80217 ssh: don't use dsa keys in integration tests
  • 6879722 ssh: remove go 1.21+ dependency on slices
  • e983fa2 sha3: Avo port of keccakf_amd64.s
  • 80fd972 LICENSE: update per Google Legal
  • f2bc3a6 x509roots/fallback/internal/goissue52287: delete
  • d66d9c3 x509roots/fallback: update bundle
  • See full diff in compare view

Updates golang.org/x/mod from 0.19.0 to 0.21.0

Commits
  • 46a3137 zip: set GIT_DIR in test when using bare repositories
  • 3afcd4e go.mod: set go version to 1.22.0
  • b1d336c go.mod: update required go version to go1.22
  • bc151c4 README: fix link to x/tools
  • d1f873e modfile: fix Cleanup clobbering Line reference
  • b56a28f modfile: Add support for tool lines
  • 79169e9 LICENSE: update per Google Legal
  • See full diff in compare view

Updates golang.org/x/oauth2 from 0.21.0 to 0.23.0

Commits
  • 3e64809 x/oauth2: add Token.ExpiresIn
  • 16a9973 jwt: rename example to avoid vet error
  • b52af7d endpoints: add GitLab DeviceAuthURL
  • 6d8340f LICENSE: update per Google Legal
  • See full diff in compare view

Updates golang.org/x/sync from 0.7.0 to 0.8.0

Commits

Updates golang.org/x/sys from 0.22.0 to 0.24.0

Commits
  • 914deed unix: add missing ETHTOOL_FLAG_ constants
  • 4c7077e windows: add enums for IpAdapterUnicastAddress
  • 29298aa windows: delete TestGetKeyboardLayout
  • aa1c4c8 unix: provide Mount on openbsd
  • cde4660 unix: add linux mseal system call
  • 31ef9e7 unix: update to Linux kernel 6.10
  • d03a807 unix: update glibc to 2.40
  • beb5949 windows: correctly generate GetAce syscall
  • 7bb0bf7 cpu: add Int8 matrix multiplication instructions CPU feature flag for ARM64
  • bce4cf7 windows: add GetKeyboardLayout & ToUnicodeEx
  • Additional commits viewable in compare view

Updates golang.org/x/term from 0.22.0 to 0.23.0

Commits

Updates golang.org/x/text from 0.16.0 to 0.17.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot requested review from a team as code owners September 9, 2024 22:10
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code type/chore Issue that requests non-user facing changes. labels Sep 9, 2024
@github-actions github-actions bot added this to the 0.36.0 milestone Sep 9, 2024
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-dependencies-60bf1646a3 branch 2 times, most recently from 383435b to af55079 Compare September 19, 2024 02:10
@natalieparellano natalieparellano mentioned this pull request Oct 28, 2024
2 tasks
…1 updates

Bumps the go-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/GoogleContainerTools/kaniko](https://github.com/GoogleContainerTools/kaniko) | `1.22.0` | `1.23.2` |
| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.0` | `0.20.2` |
| [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.33.1` | `1.34.2` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.19.0` | `0.21.0` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.21.0` | `0.23.0` |



Updates `github.com/GoogleContainerTools/kaniko` from 1.22.0 to 1.23.2
- [Release notes](https://github.com/GoogleContainerTools/kaniko/releases)
- [Changelog](https://github.com/GoogleContainerTools/kaniko/blob/main/CHANGELOG.md)
- [Commits](GoogleContainerTools/kaniko@v1.22.0...v1.23.2)

Updates `github.com/docker/docker` from 26.1.4+incompatible to 27.0.3+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v26.1.4...v27.0.3)

Updates `github.com/google/go-containerregistry` from 0.20.0 to 0.20.2
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](google/go-containerregistry@v0.20.0...v0.20.2)

Updates `github.com/onsi/gomega` from 1.33.1 to 1.34.2
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.33.1...v1.34.2)

Updates `golang.org/x/crypto` from 0.25.0 to 0.26.0
- [Commits](golang/crypto@v0.25.0...v0.26.0)

Updates `golang.org/x/mod` from 0.19.0 to 0.21.0
- [Commits](golang/mod@v0.19.0...v0.21.0)

Updates `golang.org/x/oauth2` from 0.21.0 to 0.23.0
- [Commits](golang/oauth2@v0.21.0...v0.23.0)

Updates `golang.org/x/sync` from 0.7.0 to 0.8.0
- [Commits](golang/sync@v0.7.0...v0.8.0)

Updates `golang.org/x/sys` from 0.22.0 to 0.24.0
- [Commits](golang/sys@v0.22.0...v0.24.0)

Updates `golang.org/x/term` from 0.22.0 to 0.23.0
- [Commits](golang/term@v0.22.0...v0.23.0)

Updates `golang.org/x/text` from 0.16.0 to 0.17.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.16.0...v0.17.0)

---
updated-dependencies:
- dependency-name: github.com/GoogleContainerTools/kaniko
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: go-dependencies
- dependency-name: github.com/google/go-containerregistry
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/mod
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sync
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-dependencies-60bf1646a3 branch from af55079 to 74480e4 Compare October 28, 2024 22:08
@natalieparellano
Copy link
Member

Superseded by #2273

Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 1, 2024

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot bot deleted the dependabot/go_modules/go-dependencies-60bf1646a3 branch November 1, 2024 19:39
@jjbustamante jjbustamante removed this from the 0.36.0 milestone Nov 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code type/chore Issue that requests non-user facing changes.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants