[release-1.20][gomod]: Bump the patch group across 1 directory with 8 updates

[dependabot]

Bumps the patch group with 7 updates in the / directory:

Package	From	To
github.com/cloudevents/sdk-go/v2	2.16.1	2.16.2
github.com/google/go-containerregistry	0.20.3	0.20.7
github.com/thediveo/enumflag	0.10.0	0.10.1
go.uber.org/zap	1.27.0	1.27.1
gotest.tools/v3	3.5.1	3.5.2
k8s.io/api	0.33.5	0.33.8
k8s.io/client-go	0.33.5	0.33.8

Updates github.com/cloudevents/sdk-go/v2 from 2.16.1 to 2.16.2

Commits

• af3e859 Merge pull request #1184 from cloudevents/dependabot/github_actions/actions/s...
• bf5b8a6 chore(deps): Bump actions/setup-go from 5.5.0 to 6.0.0
• 945d930 Merge pull request #1180 from philicious/refactor-pubsubv2
• 35623f2 chore: Replace deprecated grpc.Dial calls
• f0bd406 fix: Properly test that supplied ReceiveSettings are being used
• ae89eba Refactor pubsub protocol to use new upstream v2 library
• 34f7f6f Merge pull request #1183 from embano1/go-version
• cafbb12 chore: update go version in workflows
• 0a1147c Merge pull request #1182 from cloudevents/automated-dependency-updates
• 835c486 chore: update dependencies
• Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.3 to 0.20.7

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.7

What's Changed

• Fix ArgsEscaped lint directive by @​Subserial in google/go-containerregistry#2137
• transport: Fix broken links to distribution docs by @​guzalv in google/go-containerregistry#2136
• fix(remote): using customized retry predicate func if provided by @​derekhjray in google/go-containerregistry#2135
• Adding docker file by @​HassanJasim in google/go-containerregistry#2138
• crane: Add timestamp to flatten layer by @​Stephanie0829 in google/go-containerregistry#2117
• feat(remote): pass retryBackoff option to transport by @​aslafy-z in google/go-containerregistry#1628
• Expose clobber refusal error by @​pjbgf in google/go-containerregistry#2146
• Build artifacts for riscv64 by @​ffgan in google/go-containerregistry#2159
• Update dependencies and deprecate DockerVersion field by @​Subserial in google/go-containerregistry#2164

New Contributors

• @​guzalv made their first contribution in google/go-containerregistry#2136
• @​derekhjray made their first contribution in google/go-containerregistry#2135
• @​HassanJasim made their first contribution in google/go-containerregistry#2138
• @​Stephanie0829 made their first contribution in google/go-containerregistry#2117
• @​pjbgf made their first contribution in google/go-containerregistry#2146
• @​ffgan made their first contribution in google/go-containerregistry#2159

Full Changelog: google/go-containerregistry@v0.20.6...v0.20.7

v0.20.6

What's Changed

• Ensure that tag name is not empty if name contains colon by @​SaschaSchwarze0 in google/go-containerregistry#2094
• Bump some deps by @​jonjohnsonjr in google/go-containerregistry#2110

New Contributors

• @​SaschaSchwarze0 made their first contribution in google/go-containerregistry#2094

Full Changelog: google/go-containerregistry@v0.20.4...v0.20.6

v0.20.5

What's Changed

• build(deps): bump docker/docker to v28.0.0+incompatible by @​luhring in google/go-containerregistry#2071
• Migrate linter to v2 by @​Subserial in google/go-containerregistry#2096
• bump go version + bump deps by @​Subserial in google/go-containerregistry#2093
• implement TextMarshaler/JSONMarshaler more consistently by @​imjasonh in google/go-containerregistry#2097
• Update CodeQL permissions by @​Subserial in google/go-containerregistry#2103
• Update goreleaser permissions by @​Subserial in google/go-containerregistry#2104
• Update provenance action in release by @​Subserial in google/go-containerregistry#2105
• Update validator action by @​Subserial in google/go-containerregistry#2106

New Contributors

• @​luhring made their first contribution in google/go-containerregistry#2071
• @​Subserial made their first contribution in google/go-containerregistry#2096

Full Changelog: google/go-containerregistry@v0.20.3...v0.20.5

v0.20.4 - Not usable as a go module

... (truncated)

Commits

• e075f20 go mod tidy on dependabot update (#2171)
• 45aacf4 Bump the actions group across 1 directory with 3 updates (#2170)
• 073b936 Update dependencies and deprecate DockerVersion field (#2164)
• 390dacd Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (#2163)
• ca44d47 Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (#2162)
• 999cc1f Bump github.com/docker/docker (#2161)
• d1809c8 Build artifacts for riscv64 (#2159)
• 7471efd Bump the auxiliary-deps group across 3 directories with 4 updates (#2156)
• 2bb5bb0 Bump the actions group with 5 updates (#2155)
• 16371c1 Remove manual vendor setting for dependabot (#2151)
• Additional commits viewable in compare view

Updates github.com/thediveo/enumflag from 0.10.0 to 0.10.1

Commits

• 69e3949 improves documentation; adds example of non-zero enum default and flag option...
• See full diff in compare view

Updates go.uber.org/zap from 1.27.0 to 1.27.1

Release notes

Sourced from go.uber.org/zap's releases.

v1.27.1

Enhancements:

• #1501[]: prevent Object from panicking on nils
• #1511[]: Fix a race condition in WithLazy.

Thanks to @​rabbbit, @​alshopov, @​jquirke, @​arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Changelog

Sourced from go.uber.org/zap's changelog.

1.27.1 (19 Nov 2025)

Enhancements:

• #1501[]: prevent Object from panicking on nils
• #1511[]: Fix a race condition in WithLazy.

Thanks to @​rabbbit, @​alshopov, @​jquirke, @​arukiidou for their contributions to this release.

#1501: uber-go/zap#1501 #1511: uber-go/zap#1511

Commits

• 7b755a3 release 1.27.1 (#1521)
• d6b395b Update lazy logger not to materialize unless it's being written to (#1519)
• 4b9cea0 ci: Test with Go 1.24, Go 1.25 (#1508)
• 7c80d7b Fix race condition in WithLazy implementation (#1426) (#1511)
• 07077a6 Prevent zap.Object from panicing on nils (#1501)
• a6afd05 Fix lint check name (#1502)
• 6d48253 chore: fix typo (#1482)
• 32f2ec1 Fix the field test for bool type (#1480)
• fe16eb5 Upgrade grpc in zapgrc test package & bump go version (#1478)
• 5f00c34 test(AtomicLevel): demonstrate Handler is not vulnerable to XSS (#1477)
• Additional commits viewable in compare view

Updates gotest.tools/v3 from 3.5.1 to 3.5.2

Release notes

Sourced from gotest.tools/v3's releases.

v3.5.2

What's Changed

• assert: ensure message is always displayed & fix under bazel by @​cstrahan in gotestyourself/gotest.tools#276
• go.mod: golang.org/x/tools v0.13.0 for go1.22+ compatibility by @​thaJeztah in gotestyourself/gotest.tools#282
• poll: Continue(): use format.Message for formatting by @​thaJeztah in gotestyourself/gotest.tools#279
• fix TestFromDirSymlink on Windows due to missing drive-letter by @​thaJeztah in gotestyourself/gotest.tools#283
• Fix various linting issues and minor bugs by @​thaJeztah in gotestyourself/gotest.tools#280
• fix badges in readme, gofmt, and minor linting fix by @​thaJeztah in gotestyourself/gotest.tools#284
• circleci: add go1.21, go1.22, go1.23, and update golangci-lint to v1.60.3 by @​thaJeztah in gotestyourself/gotest.tools#285
• assert, assert/cmp: un-deprecate assert.ErrorType for now by @​thaJeztah in gotestyourself/gotest.tools#286

New Contributors

• @​cstrahan made their first contribution in gotestyourself/gotest.tools#276

Full Changelog: gotestyourself/gotest.tools@v3.5.1...v3.5.2

Commits

• 0b81523 Merge pull request #286 from thaJeztah/undeprecate_ErrorType
• c5dad8f Merge pull request #285 from thaJeztah/update_go_versions
• 160ab0e Remove go1.18 and go1.19
• 8569bbc Merge pull request #284 from thaJeztah/cleanup_readme
• 4256834 assert, assert/cmp: un-deprecate assert.ErrorType for now
• eb32186 circleci: update golangci-lint to v1.60.3
• 5fc8473 circleci: add go1.21, go1.22, go1.23
• 6f26df9 circleci: test generics on go1.20 and windows as well
• 732dfcf internal/difflib: rename funcs that collided with built-ins
• 7d95f55 internal/difflib: gofmt
• Additional commits viewable in compare view

Updates k8s.io/api from 0.33.5 to 0.33.8

Commits

• d3924ab Update dependencies to v0.33.8 tag
• See full diff in compare view

Updates k8s.io/apimachinery from 0.33.5 to 0.33.8

Commits

• See full diff in compare view

Updates k8s.io/client-go from 0.33.5 to 0.33.8

Commits

• 2e4aff7 Update dependencies to v0.33.8 tag
• a9e818b Merge pull request #134590liggitt/automated-cherry-pick-of-#134588
• 991bfcd Remove invalid SAN certificate construction
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign openshift-cherrypick-robot for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift-knative member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml