chore(deps): bump the production-dependencies group with 16 updates #487

dependabot · 2025-12-22T02:12:06Z

Bumps the production-dependencies group with 16 updates:

Package	From	To
github.com/containers/image/v5	`5.34.2`	`5.36.2`
github.com/go-logr/logr	`1.4.2`	`1.4.3`
github.com/kong/kubernetes-testing-framework	`0.47.2`	`0.48.0`
github.com/netobserv/netobserv-ebpf-agent	`1.7.0-community.0.20250402125041-1fca7614320e`	`1.10.0-community`
github.com/stretchr/testify	`1.10.0`	`1.11.1`
go.uber.org/zap	`1.27.0`	`1.27.1`
google.golang.org/grpc	`1.71.0`	`1.77.0`
k8s.io/api	`0.32.3`	`0.34.3`
k8s.io/apimachinery	`0.32.3`	`0.34.3`
k8s.io/client-go	`0.32.3`	`0.34.3`
k8s.io/code-generator	`0.32.3`	`0.34.3`
k8s.io/cri-api	`0.33.2`	`0.35.0`
sigs.k8s.io/controller-runtime	`0.20.4`	`0.22.4`
github.com/prometheus/client_golang	`1.21.1`	`1.23.2`
golang.org/x/sync	`0.12.0`	`0.19.0`
k8s.io/utils	`0.0.0-20241104100929-3ea5e8cea738`	`0.0.0-20250820121507-0af2bda4dd1d`

Updates github.com/containers/image/v5 from 5.34.2 to 5.36.2

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.36.2

What's Changed

[release-5.36] Bump to c/image v5.36.1 by @TomSweeneyRedHat in containers/image#2920

[release-5.36] rekor: do not cancel http context by @TomSweeneyRedHat in containers/image#2943

Full Changelog: containers/image@v5.36.1...v5.36.2

v5.36.1

What's Changed

[release-5.36] Update the CI image, to match Skopeo's updated test code by @TomSweeneyRedHat in containers/image#2913

Full Changelog: containers/image@v5.36.0...v5.36.1

v5.36.0

What's Changed

Bump c/storage to v1.58.0, c/image to v5.35.0 by @TomSweeneyRedHat in containers/image#2828

chore(deps): update dependency golangci/golangci-lint to v2.1.2 by @renovate[bot] in containers/image#2827

fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.28 by @renovate[bot] in containers/image#2829

fix(deps): update module github.com/docker/docker to v28.1.0+incompatible by @renovate[bot] in containers/image#2834

fix(deps): update module github.com/docker/cli to v28.1.0+incompatible by @renovate[bot] in containers/image#2833

fix(deps): update module github.com/docker/cli to v28.1.1+incompatible by @renovate[bot] in containers/image#2836

fix(deps): update module github.com/docker/docker to v28.1.1+incompatible by @renovate[bot] in containers/image#2835

chore(deps): update dependency containers/automation_images to v20250422 by @renovate[bot] in containers/image#2839

chore(deps): update dependency golangci/golangci-lint to v2.1.5 by @renovate[bot] in containers/image#2840

fix(deps): update module github.com/sigstore/sigstore to v1.9.4 by @renovate[bot] in containers/image#2842

chore(deps): update dependency golangci/golangci-lint to v2.1.6 by @renovate[bot] in containers/image#2846

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0 by @renovate[bot] in containers/image#2845

fix(deps): update module golang.org/x/oauth2 to v0.30.0 by @renovate[bot] in containers/image#2847

fix(deps): update module golang.org/x/sync to v0.14.0 by @renovate[bot] in containers/image#2848

fix(deps): update module golang.org/x/term to v0.32.0 by @renovate[bot] in containers/image#2850

fix(deps): update module golang.org/x/crypto to v0.38.0 by @renovate[bot] in containers/image#2849

fix(deps): update module dario.cat/mergo to v1.0.2 by @renovate[bot] in containers/image#2851

vendor: update c/storage by @giuseppe in containers/image#2844

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1 by @renovate[bot] in containers/image#2853

Update old indirect dependencies by @mtrmac in containers/image#2787

Stop setting the btrfs_noversion build tag by @mtrmac in containers/image#2831

fix(deps): update module github.com/santhosh-tekuri/jsonschema/v6 to v6.0.2 by @renovate[bot] in containers/image#2855

fix(deps): update module github.com/docker/docker to v28.2.1+incompatible by @renovate[bot] in containers/image#2859

fix(deps): update module github.com/docker/cli to v28.2.1+incompatible by @renovate[bot] in containers/image#2858

fix(deps): update module github.com/docker/docker to v28.2.2+incompatible by @renovate[bot] in containers/image#2862

fix(deps): update module github.com/docker/cli to v28.2.2+incompatible by @renovate[bot] in containers/image#2861

INCOMPATIBLE: Remove the implementation of the ostree transport by @mtrmac in containers/image#2821

Only upload sigstore signatures to the sigstore tag schema by @mtrmac in containers/image#2717

Update old dependencies by @mtrmac in containers/image#2863

fix(deps): update github.com/containers/storage digest to 78f4258 by @renovate[bot] in containers/image#2864

Queue a partially-pulled layer for commit immediately after staging it by @mtrmac in containers/image#2799

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2 by @renovate[bot] in containers/image#2865

fix(deps): update module golang.org/x/sync to v0.15.0 by @renovate[bot] in containers/image#2866

... (truncated)

Commits

d464a25 Bump to v5.36.2
50a6b67 Merge pull request #2943 from TomSweeneyRedHat/dev/tsweeney/backport_2938
d3eb538 [release-5.36] rekor: do not cancel http context
6ed8326 Merge pull request #2920 from TomSweeneyRedHat/dev/tsweeney/v5.36.1
f6ca2da [release-5.36] Bump to c/image v5.36.1
d18da19 [release-5.36] Bump c/storage to v1.59.1
ae0c9f3 Merge pull request #2913 from TomSweeneyRedHat/dev/tsweeney/cherrypick2907
40d1027 [release-5.36] Update the CI image, to match Skopeo's updated test code
08ce6b4 Bump to c/image v5.36.0
b5e2b66 Bump to c/storage v1.59.0
Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.4.2 to 1.4.3

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.3

Minor release.

What's Changed

Fix slog tests for 1.25 by @hoeppi-google in go-logr/logr#361

Remove one exception from Slog testing by @thockin in go-logr/logr#362

New Contributors

@hoeppi-google made their first contribution in go-logr/logr#361

Full Changelog: go-logr/logr@v1.4.2...v1.4.3

Commits

38a1c47 build(deps): bump github/codeql-action from 3.28.17 to 3.28.18
f08bedd build(deps): bump actions/setup-go from 5.4.0 to 5.5.0
6295e99 build(deps): bump golangci/golangci-lint-action from 7.0.0 to 8.0.0
028840d build(deps): bump github/codeql-action from 3.28.15 to 3.28.17
511e5fa Merge pull request #367 from go-logr/dependabot/github_actions/github/codeql-...
d806463 build(deps): bump github/codeql-action from 3.28.13 to 3.28.15
158c311 Merge pull request #366 from thockin/master
c79ddb3 Update to support golangci-lint v2
20a64ba build(deps): bump github/codeql-action from 3.28.12 to 3.28.13
0385e14 Add comments around slog exceptions
Additional commits viewable in compare view

Updates github.com/kong/kubernetes-testing-framework from 0.47.2 to 0.48.0

Release notes

Sourced from github.com/kong/kubernetes-testing-framework's releases.

v0.48.0

See the CHANGELOG.md

v0.47.3

See the CHANGELOG.md

Changelog

Sourced from github.com/kong/kubernetes-testing-framework's changelog.

v0.48.0

Updating dependencies.

v0.47.3

Use controller-runtime client for deleting objects in cleaner #1373

Support enabling network policy when creating GKE clusters #1258

Commits

83931d5 chore: update CHANGELOG (#1471)
975ce53 chore(deps): bump sigs.k8s.io/controller-runtime from 0.21.0 to 0.22.4 (#1456)
63a9b8b chore(deps): bump the k8s-io group with 6 updates (#1415)
71e8a8f chore(deps): bump github.com/cert-manager/cert-manager (#1468)
124961f chore(deps): bump golang.org/x/oauth2 from 0.33.0 to 0.34.0 (#1470)
f064e74 chore(deps): bump sigs.k8s.io/gateway-api from 1.3.0 to 1.4.1 (#1469)
bd922b8 chore(deps): bump google.golang.org/api from 0.250.0 to 0.257.0 (#1461)
a07f646 chore(deps): bump actions/checkout from 5.0.0 to 6.0.1 (#1465)
06da9c5 chore(deps): bump actions/download-artifact from 5.0.0 to 7.0.0 (#1463)
c6f13c1 chore(deps): bump step-security/harden-runner from 2.13.1 to 2.14.0 (#1467)
Additional commits viewable in compare view

Updates github.com/netobserv/netobserv-ebpf-agent from 1.7.0-community.0.20250402125041-1fca7614320e to 1.10.0-community

Release notes

Sourced from github.com/netobserv/netobserv-ebpf-agent's releases.

v1.10.0-community

What's Changed

Non-breaking changes

NETOBSERV-2355: Rename sampling ratio/rate -> interval by @jotak in netobserv/netobserv-ebpf-agent#799

NETOBSERV-2364: Typo in packet record map name used with bpfman by @luisjira in netobserv/netobserv-ebpf-agent#811

add support for specifying the anchor to use when tcx attaching programs to ingress and egress by @awprice in netobserv/netobserv-ebpf-agent#822

Dependencies

Bump google.golang.org/protobuf from 1.36.7 to 1.36.8 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#792

chore(deps): update registry.access.redhat.com/ubi9/ubi-minimal docker tag to v9.6-1758184547 by @red-hat-konflux[bot] in netobserv/netobserv-ebpf-agent#798

Bump the k8s group with 3 updates by @dependabot[bot] in netobserv/netobserv-ebpf-agent#796

chore(deps): update konflux references by @red-hat-konflux[bot] in netobserv/netobserv-ebpf-agent#787

Bump github.com/netobserv/flowlogs-pipeline from 1.9.1-community to 1.9.2-community by @dependabot[bot] in netobserv/netobserv-ebpf-agent#790

Bump github.com/prometheus/client_golang from 1.23.0 to 1.23.2 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#803

Bump google.golang.org/protobuf from 1.36.8 to 1.36.9 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#802

chore(deps): update konflux references by @red-hat-konflux[bot] in netobserv/netobserv-ebpf-agent#800

Bump golang.org/x/sys from 0.35.0 to 0.36.0 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#791

Bump google.golang.org/grpc from 1.75.0 to 1.75.1 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#806

Bump google.golang.org/grpc from 1.75.1 to 1.76.0 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#812

Bump golang.org/x/sys from 0.36.0 to 0.37.0 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#813

chore(deps): update registry.access.redhat.com/ubi9/ubi-minimal docker tag to v9.6-1760515502 by @red-hat-konflux[bot] in netobserv/netobserv-ebpf-agent#821

Bump google.golang.org/protobuf from 1.36.9 to 1.36.10 by @dependabot[bot] in netobserv/netobserv-ebpf-agent#809

chore(deps): update konflux references by @red-hat-konflux[bot] in netobserv/netobserv-ebpf-agent#823

New Contributors

@luisjira made their first contribution in netobserv/netobserv-ebpf-agent#811

@awprice made their first contribution in netobserv/netobserv-ebpf-agent#822

Full Changelog: netobserv/netobserv-ebpf-agent@v1.9.2-community...v1.10.0-community

v1.9.2-community

What's Changed

Non-breaking changes

Use go 1.24 and golangci-lint v2 by @jotak in netobserv/netobserv-ebpf-agent#754

update to golang 1.24 in CI by @memodi in netobserv/netobserv-ebpf-agent#759

NETOBSERV-2148: Switch PCA feature from using perf events to ringbuf by @msherif1234 in netobserv/netobserv-ebpf-agent#594

[NETOBSERV-2274] Remove ENABLE_FLOW_FILTER environment variable by @leandroberetta in netobserv/netobserv-ebpf-agent#779

chore(deps): update konflux references by @red-hat-konflux[bot] in netobserv/netobserv-ebpf-agent#782

... (truncated)

Commits

See full diff in compare view

Updates github.com/stretchr/testify from 1.10.0 to 1.11.1

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.11.1

This release fixes #1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.

What's Changed

Backport #1786 to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by @brackendawson in stretchr/testify#1788

Full Changelog: stretchr/testify@v1.11.0...v1.11.1

v1.11.0

What's Changed

Functional Changes

v1.11.0 Includes a number of performance improvements.

Call stack perf change for CallerInfo by @mikeauclair in stretchr/testify#1614

Lazily render mock diff output on successful match by @mikeauclair in stretchr/testify#1615

assert: check early in Eventually, EventuallyWithT, and Never by @cszczepaniak in stretchr/testify#1427

assert: add IsNotType by @bartventer in stretchr/testify#1730

assert.JSONEq: shortcut if same strings by @dolmen in stretchr/testify#1754

assert.YAMLEq: shortcut if same strings by @dolmen in stretchr/testify#1755

assert: faster and simpler isEmpty using reflect.Value.IsZero by @dolmen in stretchr/testify#1761

suite: faster methods filtering (internal refactor) by @dolmen in stretchr/testify#1758

Fixes

assert.ErrorAs: log target type by @craig65535 in stretchr/testify#1345

Fix failure message formatting for Positive and Negative asserts in stretchr/testify#1062

Improve ErrorIs message when error is nil but an error was expected by @tsioftas in stretchr/testify#1681

fix Subset/NotSubset when calling with mixed input types by @siliconbrain in stretchr/testify#1729

Improve ErrorAs failure message when error is nil by @ccoVeille in stretchr/testify#1734

mock.AssertNumberOfCalls: improve error msg by @3scalation in stretchr/testify#1743

Documentation, Build & CI

docs: Fix typo in README by @alexandear in stretchr/testify#1688

Replace deprecated io/ioutil with io and os by @alexandear in stretchr/testify#1684

Document consequences of calling t.FailNow() by @greg0ire in stretchr/testify#1710

chore: update docs for Unset #1621 by @techfg in stretchr/testify#1709

README: apply gofmt to examples by @alexandear in stretchr/testify#1687

refactor: use %q and %T to simplify fmt.Sprintf by @alexandear in stretchr/testify#1674

Propose Christophe Colombier (ccoVeille) as approver by @brackendawson in stretchr/testify#1716

Update documentation for the Error function in assert or require package by @architagr in stretchr/testify#1675

assert: remove deprecated build constraints by @alexandear in stretchr/testify#1671

assert: apply gofumpt to internal test suite by @ccoVeille in stretchr/testify#1739

CI: fix shebang in .ci.*.sh scripts by @dolmen in stretchr/testify#1746

assert,require: enable parallel testing on (almost) all top tests by @dolmen in stretchr/testify#1747

suite.Passed: add one more status test report by @Ararsa-Derese in stretchr/testify#1706

Add Helper() method in internal mocks and assert.CollectT by @dolmen in stretchr/testify#1423

assert.Same/NotSame: improve usage of Sprintf by @ccoVeille in stretchr/testify#1742

mock: enable parallel testing on internal testsuite by @dolmen in stretchr/testify#1756

suite: cleanup use of 'testing' internals at runtime by @dolmen in stretchr/testify#1751

assert: check test failure message for Empty and NotEmpty by @ccoVeille in stretchr/testify#1745

... (truncated)

Commits

2a57335 Merge pull request #1788 from brackendawson/1785-backport-1.11
af8c912 Backport #1786 to release/1.11
b7801fb Merge pull request #1778 from stretchr/dependabot/github_actions/actions/chec...
69831f3 build(deps): bump actions/checkout from 4 to 5
a53be35 Improve captureTestingT helper
aafb604 mock: improve formatting of error message
7218e03 improve error msg
929a212 Merge pull request #1758 from stretchr/dolmen/suite-faster-method-filtering
bc7459e suite: faster filtering of methods (-testify.m)
7d37b5c suite: refactor methodFilter
Additional commits viewable in compare view

Updates go.uber.org/zap from 1.27.0 to 1.27.1

Release notes

Sourced from go.uber.org/zap's releases.

v1.27.1

Enhancements:

#1501[]: prevent Object from panicking on nils

#1511[]: Fix a race condition in WithLazy.

Thanks to @rabbbit, @alshopov, @jquirke, @arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Changelog

Sourced from go.uber.org/zap's changelog.

1.27.1 (19 Nov 2025)

Enhancements:

#1501[]: prevent Object from panicking on nils

#1511[]: Fix a race condition in WithLazy.

Thanks to @rabbbit, @alshopov, @jquirke, @arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Commits

7b755a3 release 1.27.1 (#1521)
d6b395b Update lazy logger not to materialize unless it's being written to (#1519)
4b9cea0 ci: Test with Go 1.24, Go 1.25 (#1508)
7c80d7b Fix race condition in WithLazy implementation (#1426) (#1511)
07077a6 Prevent zap.Object from panicing on nils (#1501)
a6afd05 Fix lint check name (#1502)
6d48253 chore: fix typo (#1482)
32f2ec1 Fix the field test for bool type (#1480)
fe16eb5 Upgrade grpc in zapgrc test package & bump go version (#1478)
5f00c34 test(AtomicLevel): demonstrate Handler is not vulnerable to XSS (#1477)
Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.71.0 to 1.77.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.77.0

API Changes

mem: Replace the Reader interface with a struct for better performance and maintainability. (#8669)

Behavior Changes

balancer/pickfirst: Remove support for the old pick_first LB policy via the environment variable GRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST=false. The new pick_first has been the default since v1.71.0. (#8672)

Bug Fixes

xdsclient: Fix a race condition in the ADS stream implementation that could result in resource-not-found errors, causing the gRPC client channel to move to TransientFailure. (#8605)

client: Ignore HTTP status header for gRPC streams. (#8548)

client: Set a read deadline when closing a transport to prevent it from blocking indefinitely on a broken connection. (#8534)

Special Thanks: @jgold2-stripe

client: Fix a bug where default port 443 was not automatically added to addresses without a specified port when sent to a proxy.

Setting environment variable GRPC_EXPERIMENTAL_ENABLE_DEFAULT_PORT_FOR_PROXY_TARGET=false disables this change; please file a bug if any problems are encountered as we will remove this option soon. (#8613)

balancer/pickfirst: Fix a bug where duplicate addresses were not being ignored as intended. (#8611)

server: Fix a bug that caused overcounting of channelz metrics for successful and failed streams. (#8573)

Special Thanks: @hugehoo

balancer/pickfirst: When configured, shuffle addresses in resolver updates that lack endpoints. Since gRPC automatically adds endpoints to resolver updates, this bug only affects custom LB policies that delegate to pick_first but don't set endpoints. (#8610)

mem: Clear large buffers before re-using. (#8670)

Performance Improvements

transport: Reduce heap allocations to reduce time spent in garbage collection. (#8624, #8630, #8639, #8668)

transport: Avoid copies when reading and writing Data frames. (#8657, #8667)

mem: Avoid clearing newly allocated buffers. (#8670)

New Features

outlierdetection: Add metrics specified in gRFC A91. (#8644)

Special Thanks: @davinci26, @PardhuKonakanchi

stats/opentelemetry: Add support for optional label grpc.lb.backend_service in per-call metrics (#8637)

xds: Add support for JWT Call Credentials as specified in gRFC A97. Set environment variable GRPC_EXPERIMENTAL_XDS_BOOTSTRAP_CALL_CREDS=true to enable this feature. (#8536)

Special Thanks: @dimpavloff

experimental/stats: Add support for up/down counters. (#8581)

Release 1.76.0

Dependencies

Minimum supported Go version is now 1.24 (#8509)

Special Thanks: @kevinGC

Bug Fixes

client: Return status INTERNAL when a server sends zero response messages for a unary or client-streaming RPC. (#8523)

client: Fail RPCs with status INTERNAL instead of UNKNOWN upon receiving http headers with status 1xx and END_STREAM flag set. (#8518)

Special Thanks: @vinothkumarr227

pick_first: Fix race condition that could cause pick_first to get stuck in IDLE state on backend address change. (#8615)

... (truncated)

Commits

805b1f8 Change version to 1.77.0 (#8677)
ea7b66e Cherrypick #8702 to v1.77.x (#8709)
cadae08 Cherry-pick #8536 to v1.77.x (#8691)
4288cfc Cherrypick #8657 and #8667 to v1.77.x (#8690)
f959da6 transport: Reduce heap allocations (#8668)
0d49384 deps: update all dependencies (#8673)
e3e142d pickfirst: Remove old pickfirst (#8672)
254ab10 documentation: fix typos in benchmark and auth docs (#8674)
2d56bda mem: Remove Reader interface and export the concrete struct (#8669)
8ab0c82 mem: Avoid clearing new buffers and clear buffers from simpleBufferPools (#8670)
Additional commits viewable in compare view

Updates k8s.io/api from 0.32.3 to 0.34.3

Commits

cf951b1 Update dependencies to v0.34.3 tag
133a39c Merge remote-tracking branch 'origin/master' into release-1.34
fd087be clarify that staging repos are automatically published
ff163ef add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
5ec86fc link to what a staging repository is
08c5dee docs: clarify that this is a staging repository and not for direct contributions
ba64d0b Update prerelease lifecycle to v1.34
25f849c Merge pull request #132522 from sunya-ch/KEP-5075-PR
baa1eb1 KEP-5075: generated codes from make update
740b2c9 KEP-5075: API updates
Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.32.3 to 0.34.3

Commits

b72d93d Merge remote-tracking branch 'origin/master' into release-1.34
cd8b91c clarify that staging repos are automatically published
8c59599 add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
ec3cea5 link to what a staging repository is
e4db694 docs: clarify that this is a staging repository and not for direct contributions
04507a3 Merge pull request #132942 from thockin/kyaml
50e39b1 Merge pull request #132935 from benluddy/cbor-bump-custom-marshalers
7d108e8 Re-vendor sigs.k8s.io/yaml @ v1.6.0
58c4eb0 Merge pull request #133130 from ylink-lfs/chore/residual_boolptr_removal
38a24e6 chore: residual boolptr and intptr removal
Additional commits viewable in compare view

Updates k8s.io/client-go from 0.32.3 to 0.34.3

Commits

3892804 Update dependencies to v0.34.3 tag
ab04e77 Merge pull request #135592serathius/automated-cherry-pick-of-#135580
25da701 Use transformer in consistency checker
0c76ee5 Add unit tests for Data Consistency Detector
cc3d9d0 Embed proper interface in TransformingStore to ensure DeltaFIFO and RealFIFO ...
1bb1ad2 Merge pull request #134589liggitt/automated-cherry-pick-of-#134588
2505205 Remove invalid SAN certificate construction
7ffba0f Merge pull request #134004DerekFrank/automated-cherry-pick-of-#133573
145cb8f gofmt and review feedback
ddcdc12 fix: Update unit test to catch actual nil Labels case and fix functionality t...
Additional commits viewable in compare view

Updates k8s.io/code-generator from 0.32.3 to 0.34.3

Commits

80686ac Update dependencies to v0.34.3 tag
c03f702 Merge remote-tracking branch 'origin/master' into release-1.34
341d4d6 clarify that staging repos are automatically published
5e672d7 add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
96cba81 link to what a staging repository is
3710adb docs: clarify that this is a staging repository and not for direct contributions
9699fe1 Merge pull request #132942 from thockin/kyaml
fe7d3af Merge pull request #132935 from benluddy/cbor-bump-custom-marshalers
7adb5d5 Re-vendor sigs.k8s.io/yaml @ v1.6.0
ab0f416 Bump to github.com/fxamacker/cbor/v2 v2.9.0.
Additional commits viewable in compare view

Updates k8s.io/cri-api from 0.33.2 to 0.35.0

Commits

a417952 Merge remote-tracking branch 'origin/master' into release-1.35
907364b Bump golang.org/x/crypto to v0.45.0
3700a5e vendor: update vendor and license metadata after replacing BeTrue usage in cs...
d91f61d Resolve lint restriction on BeTrue by introducing Succeed() with contextual e...
552a0cb Update vendored dependencies
6e530f3 Merge pull request #135004 from pohly/dependencies-x-repos
8b4785a dependencies: various minor updates
e5aea61 Merge pull request #134780 from joshjms/bump-etcd-sdk-v3.6.5
89f043d etcd: bump etcd sdk to v3.6.5
02decfa Merge pull request #134410 from SergeyKanzhelev/criapichangelog
Additional commits viewable in compare view

Updates sigs.k8s.io/controller-runtime from 0.20.4 to 0.22.4

Release notes

Sourced from

Bumps the production-dependencies group with 16 updates: | Package | From | To | | --- | --- | --- | | [github.com/containers/image/v5](https://github.com/containers/image) | `5.34.2` | `5.36.2` | | [github.com/go-logr/logr](https://github.com/go-logr/logr) | `1.4.2` | `1.4.3` | | [github.com/kong/kubernetes-testing-framework](https://github.com/kong/kubernetes-testing-framework) | `0.47.2` | `0.48.0` | | [github.com/netobserv/netobserv-ebpf-agent](https://github.com/netobserv/netobserv-ebpf-agent) | `1.7.0-community.0.20250402125041-1fca7614320e` | `1.10.0-community` | | [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.10.0` | `1.11.1` | | [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.0` | `1.27.1` | | [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.71.0` | `1.77.0` | | [k8s.io/api](https://github.com/kubernetes/api) | `0.32.3` | `0.34.3` | | [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.32.3` | `0.34.3` | | [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.32.3` | `0.34.3` | | [k8s.io/code-generator](https://github.com/kubernetes/code-generator) | `0.32.3` | `0.34.3` | | [k8s.io/cri-api](https://github.com/kubernetes/cri-api) | `0.33.2` | `0.35.0` | | [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.20.4` | `0.22.4` | | [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) | `1.21.1` | `1.23.2` | | [golang.org/x/sync](https://github.com/golang/sync) | `0.12.0` | `0.19.0` | | [k8s.io/utils](https://github.com/kubernetes/utils) | `0.0.0-20241104100929-3ea5e8cea738` | `0.0.0-20250820121507-0af2bda4dd1d` | Updates `github.com/containers/image/v5` from 5.34.2 to 5.36.2 - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.34.2...v5.36.2) Updates `github.com/go-logr/logr` from 1.4.2 to 1.4.3 - [Release notes](https://github.com/go-logr/logr/releases) - [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md) - [Commits](go-logr/logr@v1.4.2...v1.4.3) Updates `github.com/kong/kubernetes-testing-framework` from 0.47.2 to 0.48.0 - [Release notes](https://github.com/kong/kubernetes-testing-framework/releases) - [Changelog](https://github.com/Kong/kubernetes-testing-framework/blob/main/CHANGELOG.md) - [Commits](Kong/kubernetes-testing-framework@v0.47.2...v0.48.0) Updates `github.com/netobserv/netobserv-ebpf-agent` from 1.7.0-community.0.20250402125041-1fca7614320e to 1.10.0-community - [Release notes](https://github.com/netobserv/netobserv-ebpf-agent/releases) - [Commits](https://github.com/netobserv/netobserv-ebpf-agent/commits/v1.10.0-community) Updates `github.com/stretchr/testify` from 1.10.0 to 1.11.1 - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.10.0...v1.11.1) Updates `go.uber.org/zap` from 1.27.0 to 1.27.1 - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](uber-go/zap@v1.27.0...v1.27.1) Updates `google.golang.org/grpc` from 1.71.0 to 1.77.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.71.0...v1.77.0) Updates `k8s.io/api` from 0.32.3 to 0.34.3 - [Commits](kubernetes/api@v0.32.3...v0.34.3) Updates `k8s.io/apimachinery` from 0.32.3 to 0.34.3 - [Commits](kubernetes/apimachinery@v0.32.3...v0.34.3) Updates `k8s.io/client-go` from 0.32.3 to 0.34.3 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.32.3...v0.34.3) Updates `k8s.io/code-generator` from 0.32.3 to 0.34.3 - [Commits](kubernetes/code-generator@v0.32.3...v0.34.3) Updates `k8s.io/cri-api` from 0.33.2 to 0.35.0 - [Commits](kubernetes/cri-api@v0.33.2...v0.35.0) Updates `sigs.k8s.io/controller-runtime` from 0.20.4 to 0.22.4 - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md) - [Commits](kubernetes-sigs/controller-runtime@v0.20.4...v0.22.4) Updates `github.com/prometheus/client_golang` from 1.21.1 to 1.23.2 - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.21.1...v1.23.2) Updates `golang.org/x/sync` from 0.12.0 to 0.19.0 - [Commits](golang/sync@v0.12.0...v0.19.0) Updates `k8s.io/utils` from 0.0.0-20241104100929-3ea5e8cea738 to 0.0.0-20250820121507-0af2bda4dd1d - [Commits](https://github.com/kubernetes/utils/commits) --- updated-dependencies: - dependency-name: github.com/containers/image/v5 dependency-version: 5.36.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: github.com/go-logr/logr dependency-version: 1.4.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: github.com/kong/kubernetes-testing-framework dependency-version: 0.48.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: github.com/netobserv/netobserv-ebpf-agent dependency-version: 1.10.0-community dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: github.com/stretchr/testify dependency-version: 1.11.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: go.uber.org/zap dependency-version: 1.27.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: google.golang.org/grpc dependency-version: 1.77.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: k8s.io/api dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: k8s.io/apimachinery dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: k8s.io/client-go dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: k8s.io/code-generator dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: k8s.io/cri-api dependency-version: 0.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: sigs.k8s.io/controller-runtime dependency-version: 0.22.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: github.com/prometheus/client_golang dependency-version: 1.23.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: golang.org/x/sync dependency-version: 0.19.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: k8s.io/utils dependency-version: 0.0.0-20250820121507-0af2bda4dd1d dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Dec 22, 2025

dependabot bot force-pushed the dependabot/go_modules/production-dependencies-eced96cb73 branch from d4443c5 to d698e19 Compare January 12, 2026 02:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the production-dependencies group with 16 updates #487

chore(deps): bump the production-dependencies group with 16 updates #487

Uh oh!

dependabot bot commented on behalf of github Dec 22, 2025 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

chore(deps): bump the production-dependencies group with 16 updates #487

Are you sure you want to change the base?

chore(deps): bump the production-dependencies group with 16 updates #487

Uh oh!

Conversation

dependabot bot commented on behalf of github Dec 22, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v5.36.2

What's Changed

v5.36.1

What's Changed

v5.36.0

What's Changed

v1.4.3

What's Changed

New Contributors

v0.48.0

v0.47.3

v0.48.0

v0.47.3

v1.10.0-community

What's Changed

Non-breaking changes

Dependencies

New Contributors

v1.9.2-community

What's Changed

Non-breaking changes

v1.11.1

What's Changed

v1.11.0

What's Changed

Functional Changes

Fixes

Documentation, Build & CI

v1.27.1

1.27.1 (19 Nov 2025)

Release 1.77.0

API Changes

Behavior Changes

Bug Fixes

Performance Improvements

New Features

Release 1.76.0

Dependencies

Bug Fixes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot bot commented on behalf of github Dec 22, 2025 •

edited

Loading