deps: bump the all-go-minor-and-patch group across 1 directory with 20 updates by dependabot[bot] · Pull Request #4304 · Azure/azure-container-networking

dependabot · 2026-03-27T23:26:28Z

Bumps the all-go-minor-and-patch group with 16 updates in the / directory:

Package	From	To
github.com/Azure/azure-sdk-for-go/sdk/azcore	`1.19.1`	`1.21.0`
github.com/Azure/azure-sdk-for-go/sdk/azidentity	`1.13.0`	`1.13.1`
github.com/hashicorp/go-version	`1.7.0`	`1.8.0`
github.com/spf13/cobra	`1.10.1`	`1.10.2`
go.uber.org/zap	`1.27.0`	`1.27.1`
golang.org/x/sys	`0.40.0`	`0.42.0`
google.golang.org/protobuf	`1.36.10`	`1.36.11`
k8s.io/klog/v2	`2.130.1`	`2.140.0`
github.com/labstack/echo/v4	`4.13.4`	`4.15.1`
github.com/prometheus/common	`0.67.1`	`0.67.5`
github.com/sirupsen/logrus	`1.9.3`	`1.9.4`
golang.org/x/time	`0.14.0`	`0.15.0`
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v4	`4.7.0-beta.1`	`4.9.0-beta.1`
github.com/cilium/cilium	`1.16.17`	`1.19.2`
golang.org/x/sync	`0.19.0`	`0.20.0`
k8s.io/kubelet	`0.34.1`	`0.35.3`

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.19.1 to 1.21.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.21.0

1.21.0 (2026-01-12)

Features Added

Added runtime/datetime package which provides specialized time type wrappers for serializing and deserializing time values in various formats used by Azure services.

Other Changes

Aligned cloud.AzureGovernment and cloud.AzureChina audience values with Azure CLI

Commits

f6309d4 Prep azcore@v1.21.0 for release (#25864)
d0a9819 Update SDK generation as completed when SDK pull request is linked to release...
aba8672 Configurations: 'specification/resourceconnector/resource-manager/Microsoft....
481e4ab Add some missing methods to the types in datetime (#25826)
35d6071 Skip unsafeptr check for storage SDKs (#25856)
5d68f66 add code (#25837)
944cd8d add code (#25836)
1191825 [Regeneration]sdk/resourcemanager/quota/armquota (#25835)
e1a9bfd add code (#25838)
1de7ac7 [Automation] Regenerate SDK based on typespec-go branch main (#25729)
Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.13.0 to 1.13.1

Commits

6bb9b03 azidentity v1.13.1 (#25574)
e18dbd7 Increment package version after release of azidentity (#25367)
4f0facc Prepare azidentity v1.13.0 for release (#25352)
2d8c98b Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...
67dd4fc Increment package version after release of azidentity (#25263)
1a74bc8 Prepare azidentity v1.12.0 for release (#25231)
839a355 Test IMDS managed identity with a remote VM (#25237)
c352be3 Sync eng/common directory with azure-sdk-tools for PR 11931 (#25243)
c994eca gofmt (#25234)
9c95d95 [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...
Additional commits viewable in compare view

Updates github.com/hashicorp/go-version from 1.7.0 to 1.8.0

Release notes

Sourced from github.com/hashicorp/go-version's releases.

v1.8.0

What's Changed

Add CODEOWNERS file in .github/CODEOWNERS by @mukeshjc in hashicorp/go-version#145

Linting by @KaushikiAnand in hashicorp/go-version#151

Correct typos in comments by @alexandear in hashicorp/go-version#134

Migrate GitHub Actions updates from TSCCR to Dependabot by @nodyhub in hashicorp/go-version#155

Bump the github-actions-backward-compatible group with 2 updates by @dependabot[bot] in hashicorp/go-version#157

Update doc reference in README by @alexandear in hashicorp/go-version#135

Bump the github-actions-breaking group with 3 updates by @dependabot[bot] in hashicorp/go-version#156

[Compliance] - PR Template Changes Required by @compliance-pr-automation-bot[bot] in hashicorp/go-version#158

Add benchmark test for version.String() by @Manikkumar1988 in hashicorp/go-version#159

Bytes implementation by @Manikkumar1988 in hashicorp/go-version#161

Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by @dependabot[bot] in hashicorp/go-version#167

Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by @dependabot[bot] in hashicorp/go-version#166

Bump the github-actions-breaking group across 1 directory with 2 updates by @dependabot[bot] in hashicorp/go-version#171

[IND-4226] [COMPLIANCE] Update Copyright Headers by @oss-core-libraries-dashboard[bot] in hashicorp/go-version#172

drop init() by @florianl in hashicorp/go-version#175

New Contributors

@mukeshjc made their first contribution in hashicorp/go-version#145

@KaushikiAnand made their first contribution in hashicorp/go-version#151

@alexandear made their first contribution in hashicorp/go-version#134

@nodyhub made their first contribution in hashicorp/go-version#155

@compliance-pr-automation-bot[bot] made their first contribution in hashicorp/go-version#158

@Manikkumar1988 made their first contribution in hashicorp/go-version#159

@oss-core-libraries-dashboard[bot] made their first contribution in hashicorp/go-version#172

@florianl made their first contribution in hashicorp/go-version#175

Full Changelog: hashicorp/go-version@v1.7.0...v1.8.0

Changelog

Sourced from github.com/hashicorp/go-version's changelog.

1.8.0 (Nov 28, 2025)

ENHANCEMENTS:

Add benchmark test for version.String() in hashicorp/go-version#159

Bytes implementation in hashicorp/go-version#161

INTERNAL:

Add CODEOWNERS file in .github/CODEOWNERS in hashicorp/go-version#145

Linting in hashicorp/go-version#151

Correct typos in comments in hashicorp/go-version#134

Migrate GitHub Actions updates from TSCCR to Dependabot in hashicorp/go-version#155

Bump the github-actions-backward-compatible group with 2 updates in hashicorp/go-version#157

Update doc reference in README in hashicorp/go-version#135

Bump the github-actions-breaking group with 3 updates in hashicorp/go-version#156

[Compliance] - PR Template Changes Required in hashicorp/go-version#158

Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in hashicorp/go-version#167

Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in hashicorp/go-version#166

Bump the github-actions-breaking group across 1 directory with 2 updates in hashicorp/go-version#171

[IND-4226] [COMPLIANCE] Update Copyright Headers in hashicorp/go-version#172

drop init() in hashicorp/go-version#175

Commits

505335e Merge pull request #175 from florianl/drop-init
6dd734b drop init()
0824a89 Merge pull request #172 from hashicorp/compliance/update-headers
9325934 [COMPLIANCE] Update Copyright and License Headers
5b82b98 Bump the github-actions-breaking group across 1 directory with 2 updates (#171)
6c6cd77 Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking grou...
0e50733 Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compati...
4e24ef1 Bytes implementation (#161)
437649a Add benchmark test for version.String() (#159)
b6c4db5 Merge pull request #158 from hashicorp/compliance-template
Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.10.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

Fix linter and allow CI to pass by @marckhouzam in spf13/cobra#2327

fix: actions/setup-go v6 by @jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

Add documentation for repeated flags functionality by @rvergis in spf13/cobra#2316

🍂 Refactors

refactor: replace several vars with consts by @htoyoda18 in spf13/cobra#2328

refactor: change minUsagePadding from var to const by @ssam18 in spf13/cobra#2325

🤗 New Contributors

@rvergis made their first contribution in spf13/cobra#2316

@htoyoda18 made their first contribution in spf13/cobra#2328

@ssam18 made their first contribution in spf13/cobra#2325

@dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
346d408 fix: actions/setup-go v6 (#2337)
fc81d20 refactor: change minUsagePadding from var to const (#2325)
117698a refactor: replace several vars with consts (#2328)
e2dd29d Add documentation for repeated flags functionality (#2316)
0629892 Fix linter (#2327)
See full diff in compare view

Updates go.uber.org/zap from 1.27.0 to 1.27.1

Release notes

Sourced from go.uber.org/zap's releases.

v1.27.1

Enhancements:

#1501[]: prevent Object from panicking on nils

#1511[]: Fix a race condition in WithLazy.

Thanks to @rabbbit, @alshopov, @jquirke, @arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Changelog

Sourced from go.uber.org/zap's changelog.

1.27.1 (19 Nov 2025)

Enhancements:

#1501[]: prevent Object from panicking on nils

#1511[]: Fix a race condition in WithLazy.

Thanks to @rabbbit, @alshopov, @jquirke, @arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Commits

7b755a3 release 1.27.1 (#1521)
d6b395b Update lazy logger not to materialize unless it's being written to (#1519)
4b9cea0 ci: Test with Go 1.24, Go 1.25 (#1508)
7c80d7b Fix race condition in WithLazy implementation (#1426) (#1511)
07077a6 Prevent zap.Object from panicing on nils (#1501)
a6afd05 Fix lint check name (#1502)
6d48253 chore: fix typo (#1482)
32f2ec1 Fix the field test for bool type (#1480)
fe16eb5 Upgrade grpc in zapgrc test package & bump go version (#1478)
5f00c34 test(AtomicLevel): demonstrate Handler is not vulnerable to XSS (#1477)
Additional commits viewable in compare view

Updates golang.org/x/sys from 0.40.0 to 0.42.0

Commits

eaaaaee windows/registry: correct KeyInfo.ModTime calculation
942780b cpu: darwin/arm64 feature detection
acef388 unix/linux: Prefixmsg and PrefixCacheinfo structs
3687fbd cpu: better defaults on darwin ARM64
48062e9 plan9: change Note to alias syscall.Note
4f23f80 windows: change Signal to alias syscall.Signal
7548802 all: upgrade go directive to at least 1.25.0 [generated]
fc646e4 cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows
f11c7bb windows: add IsProcessorFeaturePresent and processor feature consts
d25a7aa unix: add IoctlSetString on all platforms
Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.10 to 1.36.11

Updates k8s.io/klog/v2 from 2.130.1 to 2.140.0

Release notes

Sourced from k8s.io/klog/v2's releases.

Prepare klog release for Kubernetes v1.36

What's Changed

Add dependabot by @lucacome in kubernetes/klog#410

Use strconv.AppendQuote instead of strconv.Quote for message formatting by @astef in kubernetes/klog#413

de-duplication of key/value pairs by @pohly in kubernetes/klog#415

Fix: Ensure constant format strings in fmt and printf calls by @mikelolasagasti in kubernetes/klog#417

Remove old note on Go version requirements by @guettli in kubernetes/klog#425

test with 1.24 and 1.25 by @pohly in kubernetes/klog#428

ktesting: fix vmodule support by @pohly in kubernetes/klog#431

ktesting: support multi-line result from AnyToStringHook by @pohly in kubernetes/klog#433

textlogger: optionally turn off header by @pohly in kubernetes/klog#430

feat: fix stderrthreshold not honored when logtostderr is set (#212) + two new flags by @pierluigilenoci in kubernetes/klog#432

New Contributors

@lucacome made their first contribution in kubernetes/klog#410

@astef made their first contribution in kubernetes/klog#413

@mikelolasagasti made their first contribution in kubernetes/klog#417

@guettli made their first contribution in kubernetes/klog#425

@pierluigilenoci made their first contribution in kubernetes/klog#432

Full Changelog: kubernetes/klog@v2.130.1...v2.140.0

Commits

ef4b370 Merge pull request #432 from pierluigilenoci/fix/stderr-threshold-issue-212
39c4c76 refactor: address code review feedback from @pohly
764a9a3 Merge pull request #430 from pohly/textlogger-optional-header
015c613 Update stderr_threshold_test.go
2f517bd Update klog.go
36bc4ff textlogger: optionally turn off header
5f1f303 Merge pull request #433 from pohly/textlogger-hook-result
c469d41 Merge pull request #431 from pohly/ktesting-vmodule-fix
8509d6a ktesting: support multi-line result from AnyToStringHook
08e6e8b Fix stderrthreshold not honored when logtostderr is set
Additional commits viewable in compare view

Updates github.com/labstack/echo/v4 from 4.13.4 to 4.15.1

Release notes

Sourced from github.com/labstack/echo/v4's releases.

v4.15.0

Security

WARNING: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

same-origin or none: Requests are allowed (exact origin match or direct user navigation)

same-site: Falls back to token validation (e.g., subdomain to main domain)

cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)

AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:
e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))
PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

Added generic functions for type-safe parameter extraction and context access by @aldas in labstack/echo#2856

Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion, eliminating manual string parsing and type assertions.

... (truncated)

Changelog

Sourced from github.com/labstack/echo/v4's changelog.

Changelog

v5.0.4 - 2026-02-15

Enhancements

Remove unused import 'errors' from README example by @kumapower17 in labstack/echo#2889

Fix Graceful shutdown: after http.Server.Serve returns we need to wait for graceful shutdown goroutine to finish by @aldas in labstack/echo#2898

Update location of oapi-codegen in README by @mromaszewicz in labstack/echo#2896

Add Go 1.26 to CI flow by @aldas in labstack/echo#2899

Add new function echo.StatusCode by @suwakei in labstack/echo#2892

CSRF: support older token-based CSRF protection handler that want to render token into template by @aldas in labstack/echo#2894

Add echo.ResolveResponseStatus function to help middleware/handlers determine HTTP status code and echo.Response by @aldas in labstack/echo#2900

v5.0.3 - 2026-02-06

Security

Fix directory traversal vulnerability under Windows in Static middleware when default Echo filesystem is used. Reported by @shblue21.

This applies to cases when:

Windows is used as OS

middleware.StaticConfig.Filesystem is nil (default)

echo.Filesystem is has not been set explicitly (default)

Exposure is restricted to the active process working directory and its subfolders.

v5.0.2 - 2026-02-02

Security

Fix Static middleware with config.Browse=true lists all files/subfolders from config.Filesystem root and not starting from config.Root in labstack/echo#2887

v5.0.1 - 2026-01-28

Panic MW: will now return a custom PanicStackError with stack trace by @aldas in labstack/echo#2871

Docs: add missing err parameter to DenyHandler example by @cgalibern in labstack/echo#2878

improve: improve websocket checks in IsWebSocket() [per RFC 6455] by @raju-mechatronics in labstack/echo#2875

fix: Context.Json() should not send status code before serialization is complete by @aldas in labstack/echo#2877

v5.0.0 - 2026-01-18

Echo v5 is maintenance release with major breaking changes

Context is now struct instead of interface and we can add method to it in the future in minor versions.

Adds new Router interface for possible new routing implementations.

Drops old logging interface and uses moderm log/slog instead.

... (truncated)

Commits

6f3a84a Merge pull request #2905 from aldas/v4_crsf_token_fallback
24fa4d0 CSRF: support older token-based CSRF protection handler that want to render t...
482bb46 v4.15.0 changelog
d0f9d1e CRSF with Sec-Fetch-Site=same-site falls back to legacy token
f3fc618 CRSF with Sec-Fetch-Site checks
4dcb9b4 licence headers
cbc0ac1 Add PathParam(Or)/QueryParam(Or)/FormParam(Or) generic functions
6b14f4e Add Context.Get generic functions
321530d disable test - returns different error under Windows
c8abd9f disable flaky test
Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.67.1 to 0.67.5

Release notes

Sourced from github.com/prometheus/common's releases.

v0.67.5

What's Changed

build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.34.0 by @dependabot[bot] in prometheus/common#871

Synchronize common files from prometheus/prometheus by @prombot in prometheus/common#866

build(deps): bump golang.org/x/net from 0.46.0 to 0.48.0 by @dependabot[bot] in prometheus/common#872

build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 by @dependabot[bot] in prometheus/common#870

Full Changelog: prometheus/common@v0.67.4...v0.67.5

v0.67.4 / 2025-11-18

What's Changed

chore: clean up golangci-lint configuration by @mmorel-35 in prometheus/common#782

chore: 'omitempty' to Oauth2 fields with type Secret to avoid requiring them by @JorTurFer in prometheus/common#864

chore: Add omitempty tag to all config fields by @JorTurFer in prometheus/common#865

Full Changelog: prometheus/common@v0.67.3...v0.67.4

v0.67.3 / 2025-11-18

What's Changed

Support JWT Profile for Authorization Grant (RFC 7523 3.1) by @JorTurFer in prometheus/common#862

Config: remove outdated comment about HTTP/2 issues by @bboreham in prometheus/common#863

New Contributors

@JorTurFer made their first contribution in prometheus/common#862

Full Changelog: prometheus/common@v0.67.2...v0.67.3

v0.67.2 / 2025-10-28

What's Changed

config: Fix panic in tlsRoundTripper when CA file is absent by @ndk in prometheus/common#792

Cleanup linting issues by @SuperQ in prometheus/common#860

New Contributors

@ndk made their first contribution in prometheus/common#792

Full Changelog: prometheus/common@v0.67.1...v0.67.2

Changelog

Sourced from github.com/prometheus/common's changelog.

Changelog

main / unreleased

What's Changed

v0.67.2 / 2025-10-28

What's Changed

config: Fix panic in tlsRoundTripper when CA file is absent by @ndk in prometheus/common#792

Cleanup linting issues by @SuperQ in prometheus/common#860

New Contributors

@ndk made their first contribution in prometheus/common#792

Full Changelog: prometheus/common@v0.67.1...v0.67.2

Commits

934ff37 build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 (#870)
1e29804 build(deps): bump golang.org/x/net from 0.46.0 to 0.48.0 (#872)
0bd1c40 Synchronize common files from prometheus/prometheus (#866)
b644201 build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.34.0 (#871)
d80d854 chore: Add omitempty tag to all config fields (#865)
04686b2 chore: 'omitempty' to Oauth2 fields with type Secret to avoid requiring them ...
0b2fbf3 chore: clean up golangci-lint configuration (#782)
b2cdb07 Merge pull request #863 from prometheus/remove-http2-comment
cd1ab56 Config: remove outdated comment about HTTP/2 issues
f4c0aea Support JWT Profile for Authorization Grant (RFC 7523 3.1) (#862)
Additional commits viewable in compare view

Updates github.com/sirupsen/logrus from 1.9.3 to 1.9.4

Release notes

Sourced from github.com/sirupsen/logrus's releases.

v1.9.4

Notable changes

go.mod: update minimum supported go version to v1.17 sirupsen/logrus#1460

go.mod: bump up dependencies sirupsen/logrus#1460

Touch-up godoc and add "doc" links.

README: fix links, grammar, and update examples.

Add GNU/Hurd support sirupsen/logrus#1364

Add WASI wasip1 support sirupsen/logrus#1388

Remove uses of deprecated ioutil package sirupsen/logrus#1472

CI: update actions and golangci-lint sirupsen/logrus#1459

CI: remove appveyor, add macOS sirupsen/logrus#1460

Full Changelog: sirupsen/logrus@v1.9.3...v1.9.4

Changelog

Sourced from github.com/sirupsen/logrus's changelog.

1.9.4

Fixes:

Remove uses of deprecated ioutil package

Features:

Add GNU/Hurd support

Add WASI wasip1 support

Code quality:

Update minimum supported Go version to 1.17

Documentation updates

Commits

b61f268 Merge pull request #1472 from goldlinker/master
15c29db refactor: replace the deprecated function in the ioutil package
cb253f3 Merge pull request #1464 from thaJeztah/touchup_godoc
29b2337 Merge pull request #1468 from thaJeztah/touchup_readme
d916819 Merge pull request #1427 from dolmen/fix-testify-usage
135e482 README: small touch-ups
2c5fa36 Merge pull request #1467 from thaJeztah/rm_old_badge
877ecec README: remove travis badge
55cf256 Merge pull request #1393 from jsoref/grammar
21bae50 Merge pull request #1426 from dolmen/testing-fix-use-of-math-rand
Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.46.0 to 0.47.0

Commits

506e022 go.mod: update golang.org/x dependencies
7dacc38 chacha20poly1305: error out in fips140=only mode
See full diff in compare view

Updates golang.org/x/net from 0.48.0 to 0.49.0

Commits

d977772 go.mod: update golang.org/x dependencies
eea413e internal/http3: use go1.25 synctest.Test instead of go1.24 synctest.Run
9ace223 websocket: add missing call to resp.Body.Close
7d3dbb0 http2: buffer the most recently received PRIORITY_UPDATE frame
See full diff in compare view

Updates golang.org/x/time from 0.14.0 to 0.15.0

Commits

812b343 all: upgrade go directive to at least 1.25.0 [generated]
See full diff in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v4 from 4.7.0-beta.1 to 4.9.0-beta.1

Commits

2f212ee [Release] sdk/resourcemanager/containerservice/armcontainerservice/4.9.0-beta...
a848337 [Release] sdk/resourcemanager/mobilenetwork/armmobilenetwork/4.0.0 (#22499)
64a56b3 [Release] sdk/resourcemanager/newrelic/armnewrelicobservability/1.2.0 generat...
7af6ade [Release] sdk/resourcemanager/netapp/armnetapp/6.0.0 generation from spec com...
b781662 Update azure-sdk-build-tools Repository Resource Refs in Yaml files (#22622)
ecd713e [Release] sdk/resourcemanager/appcontainers/armappcontainers/3.0.0-beta.1 (#2...
1be153d [Release] sdk/resourcemanager/support/armsupport/2.0.0-beta.3 (#22518)
52cdd48 [Release] sdk/resourcemanager/confluent/armconfluent/1.3.0 generation from sp...
d2b5a12 [Release] sdk/resourcemanager/batch/armbatch/2.3.0 generation from spec commi...
6935256 [Release] sdk/resourcemanager/nginx/armnginx/3.1.0-beta.1 (#22507)
Additional commits viewable in compare view

Updates github.com/cilium/cilium from 1.16.17 to 1.19.2

Release notes

Sourced from github.com/cilium/cilium's releases.

1.19.2

Summary of Changes

Minor Changes:

ztunnel/helm: move ztunnel daemonset management from operator to helm (Backport PR cilium/cilium#44593, Upstream PR cilium/cilium#43763, @nddq)

Bugfixes:

Add rate limiting to neighbor reconciler to reduce CPU usage and memory churn (Backport PR cilium/cilium#44699, Upstream PR cilium/cilium#43928, @dylandreimerink)

bpf: nodeport: use hairpin redirect for L7 LB on bridge devices (Backport PR cilium/cilium#44760, Upstream PR cilium/cilium#44658, @smagnani96)

cilium-dbg: fix seg-fault ip get -l reserved:host (Backport PR cilium/cilium#44517, Upstream PR cilium/cilium#44443, @aanm)

clustermesh: fix a few minor typo/issues in the MCS-API documentation (Backport PR cilium/cilium#44398, Upst...
Description has been truncated

dependabot · 2026-03-27T23:26:29Z

Labels

The following labels could not be found: grouped. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

…0 updates Bumps the all-go-minor-and-patch group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.19.1` | `1.21.0` | | [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.13.0` | `1.13.1` | | [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.8.0` | | [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.1` | `1.10.2` | | [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.0` | `1.27.1` | | [golang.org/x/sys](https://github.com/golang/sys) | `0.40.0` | `0.42.0` | | google.golang.org/protobuf | `1.36.10` | `1.36.11` | | [k8s.io/klog/v2](https://github.com/kubernetes/klog) | `2.130.1` | `2.140.0` | | [github.com/labstack/echo/v4](https://github.com/labstack/echo) | `4.13.4` | `4.15.1` | | [github.com/prometheus/common](https://github.com/prometheus/common) | `0.67.1` | `0.67.5` | | [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) | `1.9.3` | `1.9.4` | | [golang.org/x/time](https://github.com/golang/time) | `0.14.0` | `0.15.0` | | [github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v4](https://github.com/Azure/azure-sdk-for-go) | `4.7.0-beta.1` | `4.9.0-beta.1` | | [github.com/cilium/cilium](https://github.com/cilium/cilium) | `1.16.17` | `1.19.2` | | [golang.org/x/sync](https://github.com/golang/sync) | `0.19.0` | `0.20.0` | | [k8s.io/kubelet](https://github.com/kubernetes/kubelet) | `0.34.1` | `0.35.3` | Updates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.19.1 to 1.21.0 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Commits](Azure/azure-sdk-for-go@sdk/azcore/v1.19.1...sdk/azcore/v1.21.0) Updates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.13.0 to 1.13.1 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Commits](Azure/azure-sdk-for-go@sdk/azcore/v1.13.0...sdk/azidentity/v1.13.1) Updates `github.com/hashicorp/go-version` from 1.7.0 to 1.8.0 - [Release notes](https://github.com/hashicorp/go-version/releases) - [Changelog](https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md) - [Commits](hashicorp/go-version@v1.7.0...v1.8.0) Updates `github.com/spf13/cobra` from 1.10.1 to 1.10.2 - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](spf13/cobra@v1.10.1...v1.10.2) Updates `go.uber.org/zap` from 1.27.0 to 1.27.1 - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](uber-go/zap@v1.27.0...v1.27.1) Updates `golang.org/x/sys` from 0.40.0 to 0.42.0 - [Commits](golang/sys@v0.40.0...v0.42.0) Updates `google.golang.org/protobuf` from 1.36.10 to 1.36.11 Updates `k8s.io/klog/v2` from 2.130.1 to 2.140.0 - [Release notes](https://github.com/kubernetes/klog/releases) - [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md) - [Commits](kubernetes/klog@v2.130.1...2.140.0) Updates `github.com/labstack/echo/v4` from 4.13.4 to 4.15.1 - [Release notes](https://github.com/labstack/echo/releases) - [Changelog](https://github.com/labstack/echo/blob/master/CHANGELOG.md) - [Commits](labstack/echo@v4.13.4...v4.15.1) Updates `github.com/prometheus/common` from 0.67.1 to 0.67.5 - [Release notes](https://github.com/prometheus/common/releases) - [Changelog](https://github.com/prometheus/common/blob/main/CHANGELOG.md) - [Commits](prometheus/common@v0.67.1...v0.67.5) Updates `github.com/sirupsen/logrus` from 1.9.3 to 1.9.4 - [Release notes](https://github.com/sirupsen/logrus/releases) - [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md) - [Commits](sirupsen/logrus@v1.9.3...v1.9.4) Updates `golang.org/x/crypto` from 0.46.0 to 0.47.0 - [Commits](golang/crypto@v0.46.0...v0.47.0) Updates `golang.org/x/net` from 0.48.0 to 0.49.0 - [Commits](golang/net@v0.48.0...v0.49.0) Updates `golang.org/x/time` from 0.14.0 to 0.15.0 - [Commits](golang/time@v0.14.0...v0.15.0) Updates `github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v4` from 4.7.0-beta.1 to 4.9.0-beta.1 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Commits](Azure/azure-sdk-for-go@sdk/resourcemanager/containerservice/armcontainerservice/v4.7.0-beta.1...sdk/resourcemanager/containerservice/armcontainerservice/v4.9.0-beta.1) Updates `github.com/cilium/cilium` from 1.16.17 to 1.19.2 - [Release notes](https://github.com/cilium/cilium/releases) - [Changelog](https://github.com/cilium/cilium/blob/1.19.2/CHANGELOG.md) - [Commits](cilium/cilium@1.16.17...1.19.2) Updates `github.com/cilium/ebpf` from 0.19.0 to 0.20.1-0.20260218191617-ee67e7f43dd9 - [Release notes](https://github.com/cilium/ebpf/releases) - [Commits](https://github.com/cilium/ebpf/commits) Updates `golang.org/x/sync` from 0.19.0 to 0.20.0 - [Commits](golang/sync@v0.19.0...v0.20.0) Updates `k8s.io/kubectl` from 0.34.1 to 0.35.2 - [Commits](kubernetes/kubectl@v0.34.1...v0.35.2) Updates `k8s.io/kubelet` from 0.34.1 to 0.35.3 - [Commits](kubernetes/kubelet@v0.34.1...v0.35.3) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore dependency-version: 1.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity dependency-version: 1.13.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-minor-and-patch - dependency-name: github.com/hashicorp/go-version dependency-version: 1.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/spf13/cobra dependency-version: 1.10.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-minor-and-patch - dependency-name: go.uber.org/zap dependency-version: 1.27.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-minor-and-patch - dependency-name: golang.org/x/sys dependency-version: 0.42.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: google.golang.org/protobuf dependency-version: 1.36.11 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-minor-and-patch - dependency-name: k8s.io/klog/v2 dependency-version: 2.140.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/labstack/echo/v4 dependency-version: 4.15.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/prometheus/common dependency-version: 0.67.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-minor-and-patch - dependency-name: github.com/sirupsen/logrus dependency-version: 1.9.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-go-minor-and-patch - dependency-name: golang.org/x/crypto dependency-version: 0.47.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: golang.org/x/net dependency-version: 0.49.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: golang.org/x/time dependency-version: 0.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v4 dependency-version: 4.9.0-beta.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/cilium/cilium dependency-version: 1.19.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: github.com/cilium/ebpf dependency-version: 0.20.1-0.20260218191617-ee67e7f43dd9 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: golang.org/x/sync dependency-version: 0.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: k8s.io/kubectl dependency-version: 0.35.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch - dependency-name: k8s.io/kubelet dependency-version: 0.35.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-go-minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Dependencies only. label Mar 27, 2026

dependabot bot requested a review from a team as a code owner March 27, 2026 23:26

dependabot bot requested a review from nairashu March 27, 2026 23:26

dependabot bot added the dependencies Dependencies only. label Mar 27, 2026

dependabot bot force-pushed the dependabot/go_modules/all-go-minor-and-patch-9426fbc3b7 branch from ae08678 to 2ec66ca Compare March 29, 2026 12:04

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps: bump the all-go-minor-and-patch group across 1 directory with 20 updates#4304

deps: bump the all-go-minor-and-patch group across 1 directory with 20 updates#4304
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/all-go-minor-and-patch-9426fbc3b7

dependabot bot commented on behalf of github Mar 27, 2026 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Mar 27, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

sdk/azcore/v1.21.0

1.21.0 (2026-01-12)

Features Added

Other Changes

v1.8.0

What's Changed

New Contributors

1.8.0 (Nov 28, 2025)

v1.10.2

🔧 Dependencies

📈 CI/CD

🔥✍🏼 Docs

🍂 Refactors

🤗 New Contributors

v1.27.1

1.27.1 (19 Nov 2025)

Prepare klog release for Kubernetes v1.36

What's Changed

New Contributors

v4.15.0

Changelog

v5.0.4 - 2026-02-15

v5.0.3 - 2026-02-06

v5.0.2 - 2026-02-02

v5.0.1 - 2026-01-28

v5.0.0 - 2026-01-18

v0.67.5

What's Changed

v0.67.4 / 2025-11-18

What's Changed

v0.67.3 / 2025-11-18

What's Changed

New Contributors

v0.67.2 / 2025-10-28

What's Changed

New Contributors

Changelog

main / unreleased

What's Changed

v0.67.2 / 2025-10-28

What's Changed

New Contributors

v1.9.4

Notable changes

1.9.4

1.19.2

Summary of Changes

Uh oh!

dependabot bot commented on behalf of github Mar 27, 2026

Labels

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot bot commented on behalf of github Mar 27, 2026 •

edited

Loading