Bump the go-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the go-dependencies group with 4 updates in the / directory: github.com/ceph/go-ceph, github.com/containerd/containerd, github.com/ironcore-dev/ironcore-image and google.golang.org/grpc.

Updates github.com/ceph/go-ceph from 0.35.0 to 0.36.0

Release notes

Sourced from github.com/ceph/go-ceph's releases.

Release v0.36.0

The maintainers and contributors to go-ceph are pleased to announce the v0.36.0 release. This is another great step towards making it possible to use the power of the Ceph APIs in the Go language.

As this is a v0.x release we do not guarantee backwards compatibility with previous versions of the code. However, we aim not to disrupt existing consumers of the library and thus make an effort not to immediately implement breaking changes without very good justification. Please see the "Deprecations & Removals" section (if present) to get a sense of what you can expect to change in the future and prepare your code ahead of time. You may also want to view "Deprecations & Removals" of previous releases as they are not repeated here. All newly introduced APIs in the following section are labeled as "preview" APIs first, and are only available if the ceph_preview build tag is set. There is explicitly no backwards compatibility guaranteed for these until they are labeled as "stable" in a later release.

New Features

rbd

• rbd: implement rbd_get_data_pool_id by @​Champ-Goblem in ceph/go-ceph#1164
  • Add function GetDataPoolID implementing rbd_get_data_pool_id

admin/osd

• admin/osd: Create a new OSD admin package to add blocklisting APIs by @​anoopcs9 in ceph/go-ceph#1163

admin/nvmegw

• admin: add nvme-gw create/delete/show API by @​nixpanic in ceph/go-ceph#1175

Fixes

rgw

• rgw/admin: support default-placement by @​thejoeejoee in ceph/go-ceph#1133
• rgw/admin: add more options for creating subusers by @​sj14 in ceph/go-ceph#1173

API Stability Updates

The following APIs are now stable:

cephfs/admin

• FSAdmin.SubVolumeSnapshotPath

admin/smb

• All APIs in this new package are considered stable

Note

With the imminent release of Ceph 'Tentacle' we have added it to our test matrix and removed Ceph 'Octopus' from the test matrix.

Other Changes

• go-ceph: bump golang.org/x/sys from 0.34.0 to 0.35.0 by @​dependabot[bot] in ceph/go-ceph#1166
• go-ceph: bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @​dependabot[bot] in ceph/go-ceph#1167
• go-ceph: bump github.com/aws/smithy-go from 1.22.5 to 1.23.0 by @​dependabot[bot] in ceph/go-ceph#1165
• go-ceph: bump the aws-sdk group with 4 updates by @​dependabot[bot] in ceph/go-ceph#1168
• contrib: bump modernc.org/cc/v4 from 4.26.3 to 4.26.4 in /contrib/implements by @​dependabot[bot] in ceph/go-ceph#1169
• go-ceph: bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in ceph/go-ceph#1170
• workflows: enable tentacle job now that RCs are available by @​phlogistonjohn in ceph/go-ceph#1174
• github: Remove octopus and require tentacle for CI and mergify configurations by @​anoopcs9 in ceph/go-ceph#1176
• go-ceph: bump actions/setup-go from 5.5.0 to 6.0.0 by @​dependabot[bot] in ceph/go-ceph#1179
• go-ceph: bump actions/stale from 9.1.0 to 10.0.0 by @​dependabot[bot] in ceph/go-ceph#1178

... (truncated)

Commits

• c7c6763 docs: fix api versions for recently added nvme gw admin api
• 96bd37f doc: include common/admin/nvmegw package in api-status
• 52be7d9 admin: add nvme-gw create/delete/show API
• 01bbb5f release: update README.md versions table
• 3af1608 release: api-fix-versions
• e2737a6 common/admin/smb: promote apis to stable
• 9c392f5 cephfs/admin: promote SubVolumeSnapshotPath api to stable
• c1c89ea docs: Add client fencing APIs to api-status
• 34e925a admin/osd: Add tests for client fencing APIs
• b2d70ea admin/osd: Add APIs for fencing clients
• Additional commits viewable in compare view

Updates github.com/containerd/containerd from 1.7.28 to 1.7.29

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.29

Welcome to the v1.7.29 release of containerd!

The twenty-ninth patch release for containerd 1.7 contains various fixes and updates including security patches.

Security Updates

• containerd

  • GHSA-pwhc-rpq9-4c8w
  • GHSA-m6hq-p25p-ffr2

• runc

  • GHSA-qw9x-cqr3-wc7r
  • GHSA-cgrx-mc8f-2prm
  • GHSA-9493-h29p-rfm2

Highlights

Image Distribution

• Update differ to handle zstd media types (#12018)

Runtime

• Update runc binary to v1.3.3 (#12480)
• Fix lost container logs from quickly closing io (#12375)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

• Derek McGowan
• Akihiro Suda
• Phil Estes
• Austin Vazquez
• Sebastiaan van Stijn
• ningmingxiao
• Maksym Pavlenko
• StepSecurity Bot
• wheat2018

Changes

• 442cb34bd Merge commit from fork
• 0450f046e Fix directory permissions
• e5cb6ddb7 Merge commit from fork

... (truncated)

Commits

• 442cb34 Merge commit from fork
• e5cb6dd Merge commit from fork
• 9772966 Merge pull request #12486 from dmcgowan/prepare-v1.7.29
• 1fc2daa Prepare release notes for v1.7.29
• 93f710a Merge pull request #12480 from k8s-infra-cherrypick-robot/cherry-pick-12475-t...
• 68d04be Merge pull request #12471 from austinvazquez/1_7_update_ci_go_and_images
• 3f5f9f8 runc: Update runc binary to v1.3.3
• 667409f ci: bump Go 1.24.9, 1.25.3
• 294f8c0 Update GHA runners to use latest images for basic binaries build
• cf66b41 Update GHA runners to use latest image for most jobs
• Additional commits viewable in compare view

Updates github.com/ironcore-dev/ironcore-image from 0.2.4 to 0.2.5

Release notes

Sourced from github.com/ironcore-dev/ironcore-image's releases.

v0.2.5

Changes

🚀 Features

• Support images with an index @​lukasfrank (#217)
• Publish and Support Flat IronCore OCI image specification @​hardikdr (#196)

🐛 Bug Fixes

• Fix reference matcher @​lukasfrank (#220)

🧰 Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.25.3 to 2.26.0 @dependabot[bot] (#218)
• Bump github.com/docker/docker from 27.1.1+incompatible to 28.0.0+incompatible @dependabot[bot] (#207)
• Bump github.com/onsi/ginkgo/v2 from 2.25.1 to 2.25.3 @dependabot[bot] (#214)
• Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 @dependabot[bot] (#215)
• Bump actions/setup-go from 5 to 6 @dependabot[bot] (#213)
• Bump github.com/onsi/ginkgo/v2 from 2.23.4 to 2.25.1 @dependabot[bot] (#210)
• Bump actions/checkout from 4 to 5 @dependabot[bot] (#208)
• Update linting workflow @​afritzler (#206)
• Bump github.com/containerd/containerd from 1.7.27 to 1.7.28 @dependabot[bot] (#205)
• Bump github.com/onsi/gomega from 1.37.0 to 1.38.0 @dependabot[bot] (#204)
• Support for Multi-Architecture Index Manifest @​hardikdr (#198)
• Bump github.com/go-logr/logr from 1.4.2 to 1.4.3 @dependabot[bot] (#202)
• Bump golang.org/x/net from 0.37.0 to 0.38.0 @dependabot[bot] (#197)
• Publish and Support Flat IronCore OCI image specification @​hardikdr (#196)
• Bump github.com/onsi/ginkgo/v2 from 2.23.3 to 2.23.4 @dependabot[bot] (#195)
• Bump github.com/onsi/gomega from 1.36.3 to 1.37.0 @dependabot[bot] (#194)
• Bump github.com/onsi/gomega from 1.36.2 to 1.36.3 @dependabot[bot] (#191)
• Bump github.com/onsi/ginkgo/v2 from 2.22.2 to 2.23.3 @dependabot[bot] (#190)
• Bump github.com/containerd/containerd from 1.7.25 to 1.7.27 @dependabot[bot] (#189)
• Bump golang.org/x/net from 0.33.0 to 0.36.0 @dependabot[bot] (#188)
• Bump tooling versions @​afritzler (#192)
• Use new Reuse API configuration format @​sap-ospo-bot (#184)
• Bump github.com/opencontainers/image-spec from 1.1.0 to 1.1.1 @dependabot[bot] (#186)
• Bump github.com/containerd/containerd from 1.7.25 to 1.7.26 @dependabot[bot] (#185)
• Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 @dependabot[bot] (#183)
• Bump github.com/containerd/containerd from 1.7.23 to 1.7.25 @dependabot[bot] (#181)
• Bump github.com/onsi/ginkgo/v2 from 2.21.0 to 2.22.2 @dependabot[bot] (#180)
• Bump github.com/onsi/gomega from 1.35.1 to 1.36.2 @dependabot[bot] (#179)
• Bump fsfe/reuse-action from 4 to 5 @dependabot[bot] (#173)

Commits

• a3302e2 Fix reference matcher (#220)
• 1b2af1f Bump github.com/onsi/ginkgo/v2 from 2.25.3 to 2.26.0 (#218)
• d5d5f2b Support images with an index (#217)
• bc3697b Bump github.com/docker/docker (#207)
• 8f6d5d3 Bump github.com/onsi/ginkgo/v2 from 2.25.1 to 2.25.3 (#214)
• 7ae61e5 Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#215)
• 4cc7521 Bump actions/setup-go from 5 to 6 (#213)
• 2e2bad7 Bump github.com/onsi/ginkgo/v2 from 2.23.4 to 2.25.1 (#210)
• 4e6eec5 Bump actions/checkout from 4 to 5 (#208)
• e2633de Update linting workflow (#206)
• Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.25.3 to 2.26.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.26.0

2.26.0

Features

Ginkgo can now generate json-formatted reports that are compatible with the go test json format. Use ginkgo --gojson-report=report.go.json. This is not intended to be a replacement for Ginkgo's native json format which is more information rich and better models Ginkgo's test structure semantics.

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.26.0

Features

Ginkgo can now generate json-formatted reports that are compatible with the go test json format. Use ginkgo --gojson-report=report.go.json. This is not intended to be a replacement for Ginkgo's native json format which is more information rich and better models Ginkgo's test structure semantics.

Commits

• 02f7324 v2.26.0
• 6bc5566 Merge branch 'pseudo-su-add-go-json-reporter'
• b470f61 fix failing specs
• 486687e add sponsors
• 64df0b4 fix maxprocs build constraint
• 148401a Container-aware GOMAXPROCS is available in golang 1.25
• 6438ff2 Bump actions/setup-go from 5 to 6 (#1591)
• a7c972a v2.25.3
• fdc65b1 emit --github-output group only for progress report itself
• d82298f docs
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.75.1 to 1.76.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.76.0

Dependencies

• Minimum supported Go version is now 1.24 (#8509)
  • Special Thanks: @​kevinGC

Bug Fixes

• client: Return status INTERNAL when a server sends zero response messages for a unary or client-streaming RPC. (#8523)
• client: Fail RPCs with status INTERNAL instead of UNKNOWN upon receiving http headers with status 1xx and END_STREAM flag set. (#8518)
  • Special Thanks: @​vinothkumarr227
• pick_first: Fix race condition that could cause pick_first to get stuck in IDLE state on backend address change. (#8615)

New Features

• credentials: Add credentials/jwt package providing file-based JWT PerRPCCredentials (A97). (#8431)
  • Special Thanks: @​dimpavloff

Performance Improvements

• client: Improve HTTP/2 header size estimate to reduce re-allocations. (#8547)
• encoding/proto: Avoid redundant message size calculation when marshaling. (#8569)
  • Special Thanks: @​rs-unity

Commits

• d96c2ef Change version to 1.76.0 (#8584)
• 79c553c Cherry pick #8610, #8615 to v1.76.x (#8621)
• 0513350 client: minor improvements to log messages (#8564)
• ebaf486 credentials: implement file-based JWT Call Credentials (part 1 for A97) (#8431)
• ca78c90 xds/resolver_test: fix flaky test ResolverBadServiceUpdate_NACKedWithoutCache...
• 83bead4 internal/buffer: set closed flag when closing channel in the Load method (#8575)
• 0f45079 encoding/proto: enable use cached size option (#8569)
• 8420f3f transport: avoid slice reallocation during header creation (#8547)
• b36320e Revert "stats/opentelemetry: record retry attempts from clientStream (#8342)"...
• c122250 stats/opentelemetry: record retry attempts from clientStream (#8342)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.