Skip to content

🌱 bump the dependencies group across 1 directory with 5 updates #5256

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Dec 19, 2024
Merged

🌱 bump the dependencies group across 1 directory with 5 updates #5256

merged 2 commits into from
Dec 19, 2024

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 18, 2024

Bumps the dependencies group with 5 updates in the /hack/tools directory:

Package From To
github.com/itchyny/gojq 0.12.16 0.12.17
github.com/mikefarah/yq/v4 4.44.5 4.44.6
k8s.io/apimachinery 0.31.3 0.31.4
sigs.k8s.io/kind 0.23.0 0.26.0
sigs.k8s.io/kustomize/kustomize/v5 5.3.0 5.5.0

Updates github.com/itchyny/gojq from 0.12.16 to 0.12.17

Release notes

Sourced from github.com/itchyny/gojq's releases.

Release v0.12.17

  • implement add/1, skip/2 functions
  • implement --library-path option as the alias of -L option
  • fix reduce syntax to emit results for each initial value
  • fix last/1 to yield no values when the argument yields no values
  • fix limit/2 to emit an error on negative count
  • fix @uri and @urid formats not to convert space between plus sign
  • fix resolving search paths of import statements in the query
  • improve time functions to accept fewer element arrays
Changelog

Sourced from github.com/itchyny/gojq's changelog.

v0.12.17 (2024-12-01)

  • implement add/1, skip/2 functions
  • implement --library-path option as the alias of -L option
  • fix reduce syntax to emit results for each initial value
  • fix last/1 to yield no values when the argument yields no values
  • fix limit/2 to emit an error on negative count
  • fix @uri and @urid formats not to convert space between plus sign
  • fix resolving search paths of import statements in the query
  • improve time functions to accept fewer element arrays
Commits
  • f4c2cfe bump up version to 0.12.17
  • f561d02 update CHANGELOG.md for v0.12.17
  • 5fbda3f implement --library-path option as the alias of -L option
  • af0c3da use strings.Repeat to repeat a space in formatting flags
  • 8a09826 fix reduce syntax to emit results for each initial value
  • b685aac avoid repeating the same return type
  • 8f6a146 refactor stream input iterator to use jsonInputIter
  • 9de339f refactor color parsing and environ loader using strings.Cut
  • b144489 handle error of setting environment variables in tests
  • 086bd2b implement skip/2, fix limit/2 to emit error on negative count
  • Additional commits viewable in compare view

Updates github.com/mikefarah/yq/v4 from 4.44.5 to 4.44.6

Release notes

Sourced from github.com/mikefarah/yq/v4's releases.

v4.44.6

Changelog

Sourced from github.com/mikefarah/yq/v4's changelog.

4.44.6:

Commits
  • 4839dbb Bumping version
  • 342efb2 Fixed panic on multipling string by very large number #2211
  • 2201381 Fixed multiply string by negative number panic #2211
  • 5273715 Fixed panic error #2211
  • e204677 Fixed no-colors regression #2218
  • f768159 Create docker image for armv7 / raspberry pi3
  • c16b180 Make sure to update the key when deleting array elements
  • 3bca3a2 Bump github.com/elliotchance/orderedmap from 1.6.0 to 1.7.0
  • 70bef5b Bump golang.org/x/net from 0.31.0 to 0.32.0
  • ea2ba18 Bump golang from 1.23.3 to 1.23.4
  • Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.31.3 to 0.31.4

Commits

Updates sigs.k8s.io/kind from 0.23.0 to 0.26.0

Release notes

Sourced from sigs.k8s.io/kind's releases.

v0.26.0

This release brings Kubernetes v1.32.0 to kind by default and fixes kind build node-image for building for Kubernetes releases <v1.31.0 when not building Kubernetes from source (e.g. kind build node-image v1.30.0).

  • Removed two deprecated flags that had been printing usage warnings for many releases.
  • The default node image is now Kubernetes v1.32.0: kindest/node:v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027
  • Updated to go 1.23.4
  • Updated node image dependencies to latest
    • NOTE: you should only be depending on node images to allow kind to create Kubernetes nodes at a given Kubernetes version. The contents of these images are subject to change. However, we have brought everything up to the latest releases which may contain bug fixes.
  • Updated local-path-provisioner to v0.30.0
  • Refreshed Ingres docs to use https://sigs.k8s.io/cloud-provider-kind

Images pre-built for this release:

  • v1.32.0: kindest/node:v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027
  • v1.31.4: kindest/node:v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30
  • v1.30.8: kindest/node:v1.30.8@sha256:17cd608b3971338d9180b00776cb766c50d0a0b6b904ab4ff52fd3fc5c6369bf
  • v1.29.12: kindest/node:v1.29.12@sha256:62c0672ba99a4afd7396512848d6fc382906b8f33349ae68fb1dbfe549f70dec

NOTE: You must use the @sha256 digest to guarantee an image built for this release, until such a time as we switch to a different tagging scheme. Even then we will highly encourage digest pinning for security and reproducibility reasons.

See also:

NOTE: These node images support amd64 and arm64, both of our supported platforms. You must use the same platform as your host, for more context see kubernetes-sigs/kind#2718

  • Fixed kind build node-image --type=url and kind build node-image --type=release where Kubernetes version is less than v1.31.0
    • E.G. kind build node-image v1.30.0 and kind build node-image https://dl.k8s.io/v1.30.0/kubernetes-server-linux-arm64.tar.gz
    • This fix will only work for standard release tags (and not pre-releases etc), for those continue to use --type=source.
    • v1.31.0+ will work with all build types for all versions

Thank you to everyone who contributed to this kind over the years!

Commiters for this release:

... (truncated)

Commits
  • c5f516c version v0.26.0
  • efc4f2c Merge pull request #3826 from kubernetes-sigs/dependabot/github_actions/actio...
  • 3ea2581 Bump actions/setup-go from 5.1.0 to 5.2.0 in the actions group
  • 771fb17 Merge pull request #3825 from BenTheElder/push-node-from-upstream
  • e6f5b41 Merge pull request #3824 from BenTheElder/132
  • 128683b add new push-node.sh that uses pre-compiled upstream releases
  • ae8dcec update default node image to 1.32 with upgraded containerd etc
  • e7cf729 Merge pull request #3819 from BenTheElder/new-storage
  • 0dea9ca upgrade local path images to latest
  • a87bbd8 update local-path-provisioner with changes from v0.0.24 to v0.30.0 in usptrea...
  • Additional commits viewable in compare view

Updates sigs.k8s.io/kustomize/kustomize/v5 from 5.3.0 to 5.5.0

Release notes

Sourced from sigs.k8s.io/kustomize/kustomize/v5's releases.

kustomize/v5.5.0

Breaking change

A starlark support for krm functions was removed to cleanup dependencies. kubernetes-sigs/kustomize#5768 This feature was deprecated 3 years ago and removed because there was no desire to continue using it. kubernetes-sigs/kustomize#5768

Feature

#5751: Add --helm-debug Flag to Kustomize for Enhanced Helm Debugging

Fix Bugs

#5458: Sort built-in Namespace kind before CRDs with the same name #5745: Add Annotation to Control Inline List Conversion in Kustomize Resources"

Dependencies

#5763: Update go 1.22.7 #5781: Update kyaml to v0.18.1 #5782: Update cmd/config to v0.15.0 #5783: Update api to v0.18.0

kustomize/v5.4.3

Caution

The kustomize localize subcommand(this subcommand is now in the beta stage) now verifies the success of kustomize build when executed. If you are using the missing manifests, maybe you failed to download them with the localize subcommand. Please use the --no-verify flag to skip validation steps. #5544: Run kustomize build with kustomize localize and add a no-verify flag.

Fix Bugs

#5682: fix: include label in templates when adding by cli #5689: Fix sortOptions removal when running edit command

chore

#5506: fix some comments #5718: fix lint error in kustomizationfile_test.go

Dependencies

#5734: Update kyaml to v0.17.2 #5735: Update cmd/config to v0.14.2 #5736: Update api to v0.17.3

kustomize/v5.4.2

Feature

#5294: feat: localize absolute paths #5556: feat: support labels key in transformer configuration

chore

#5671: refactor: string in slice is now part of stdlib #5681: chore: remove unused function #5688: refactor: function in stdlib now

... (truncated)

Commits
  • afe7793 Merge pull request #5783 from koba1t/pinToApi
  • ae98655 Update api to v0.18.0
  • faccc12 Merge pull request #5782 from koba1t/pinToCmdConfig
  • fdf9f59 Update cmd/config to v0.15.0
  • e2967cf Merge pull request #5781 from koba1t/pinToKyaml
  • d22fa37 Update kyaml to v0.18.1
  • 01cce4f Merge pull request #5756 from viniciusdc/5755-kustomize-install
  • 54cbcdc Merge pull request #5770 from koba1t/add_write_permission_to_run_release_CI
  • b36b222 add write permission to run release CI
  • 2cd9a2e Merge pull request #5768 from dims/remove-starlark-support
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
🌱 bump the dependencies group across 1 directory with 5 updates
343666b 
Bumps the dependencies group with 5 updates in the /hack/tools directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/itchyny/gojq](https://github.com/itchyny/gojq) | `0.12.16` | `0.12.17` |
| [github.com/mikefarah/yq/v4](https://github.com/mikefarah/yq) | `4.44.5` | `4.44.6` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.31.3` | `0.31.4` |
| [sigs.k8s.io/kind](https://github.com/kubernetes-sigs/kind) | `0.23.0` | `0.26.0` |
| [sigs.k8s.io/kustomize/kustomize/v5](https://github.com/kubernetes-sigs/kustomize) | `5.3.0` | `5.5.0` |



Updates `github.com/itchyny/gojq` from 0.12.16 to 0.12.17
- [Release notes](https://github.com/itchyny/gojq/releases)
- [Changelog](https://github.com/itchyny/gojq/blob/main/CHANGELOG.md)
- [Commits](itchyny/gojq@v0.12.16...v0.12.17)

Updates `github.com/mikefarah/yq/v4` from 4.44.5 to 4.44.6
- [Release notes](https://github.com/mikefarah/yq/releases)
- [Changelog](https://github.com/mikefarah/yq/blob/master/release_notes.txt)
- [Commits](mikefarah/yq@v4.44.5...v4.44.6)

Updates `k8s.io/apimachinery` from 0.31.3 to 0.31.4
- [Commits](kubernetes/apimachinery@v0.31.3...v0.31.4)

Updates `sigs.k8s.io/kind` from 0.23.0 to 0.26.0
- [Release notes](https://github.com/kubernetes-sigs/kind/releases)
- [Commits](kubernetes-sigs/kind@v0.23.0...v0.26.0)

Updates `sigs.k8s.io/kustomize/kustomize/v5` from 5.3.0 to 5.5.0
- [Release notes](https://github.com/kubernetes-sigs/kustomize/releases)
- [Commits](kubernetes-sigs/kustomize@kustomize/v5.3.0...kustomize/v5.5.0)

---
updated-dependencies:
- dependency-name: github.com/itchyny/gojq
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github.com/mikefarah/yq/v4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: sigs.k8s.io/kind
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: sigs.k8s.io/kustomize/kustomize/v5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added area/dependency Issues or PRs related to dependency changes kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. labels Dec 18, 2024
@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Dec 18, 2024
@dependabot dependabot bot mentioned this pull request Dec 18, 2024
Closed
@dependabot dependabot bot requested review from AndiDog and cnmcavoy December 18, 2024 09:07
@k8s-ci-robot
Copy link
Contributor

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Dec 18, 2024
AndiDog
AndiDog reviewed Dec 19, 2024
View reviewed changes
Copy link
Contributor

@AndiDog AndiDog left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm
/approve

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Dec 19, 2024
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: AndiDog

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Dec 19, 2024
@k8s-ci-robot k8s-ci-robot merged commit 8c3e377 into main Dec 19, 2024
13 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/hack/tools/dependencies-ba097943d0 branch December 19, 2024 12:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AndiDog AndiDog AndiDog left review comments

@cnmcavoy cnmcavoy Awaiting requested review from cnmcavoy

Assignees

@AndiDog AndiDog

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. area/dependency Issues or PRs related to dependency changes cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. kind/cleanup Categorizes issue or PR as related to cleaning up code, process, or technical debt. lgtm "Looks good to me", indicates that a PR is ready to be merged. needs-priority ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@k8s-ci-robot @AndiDog