Skip to content

chore: update dependencies #224

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore: update dependencies #224

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Aug 18, 2025
edited
Loading

Update Request | Renovate Bot

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
actions/checkout action major v4 -> v5 age adoption passing confidence
actions/stale action major v9.1.0 -> v10.1.0 age adoption passing confidence
alpine final minor 3.21 -> 3.22 age adoption passing confidence
docker/dockerfile-upstream syntax minor 1.14.1-labs -> 1.19.0-labs age adoption passing confidence
github.com/google/cel-go replace minor v0.22.0 -> v0.26.1 age adoption passing confidence
github.com/onsi/gomega require minor v1.36.3 -> v1.38.2 age adoption passing confidence
github.com/siderolabs/crypto require patch v0.6.3 -> v0.6.4 age adoption passing confidence
github.com/siderolabs/talos/pkg/machinery require patch v1.11.0 -> v1.11.2 age adoption passing confidence
github.com/spf13/pflag require patch v1.0.7 -> v1.0.10 age adoption passing confidence
github.com/stretchr/testify require minor v1.10.0 -> v1.11.1 age adoption passing confidence
golang.org/x/sync require minor v0.15.0 -> v0.17.0 age adoption passing confidence
google.golang.org/grpc require minor v1.74.2 -> v1.75.1 age adoption passing confidence
google.golang.org/protobuf require patch v1.36.6 -> v1.36.10 age adoption passing confidence
k8s.io/api require minor v0.32.3 -> v0.34.1 age adoption passing confidence
k8s.io/apiextensions-apiserver require minor v0.32.3 -> v0.34.1 age adoption passing confidence
k8s.io/apimachinery require minor v0.32.3 -> v0.34.1 age adoption passing confidence
k8s.io/apiserver require minor v0.32.3 -> v0.34.1 age adoption passing confidence
k8s.io/client-go require minor v0.32.3 -> v0.34.1 age adoption passing confidence
k8s.io/component-base require minor v0.32.3 -> v0.34.1 age adoption passing confidence
k8s.io/utils require digest 3ea5e8c -> bc988d5 age adoption passing confidence
kenchan0130/actions-system-info action minor v1.3.1 -> v1.4.0 age adoption passing confidence
sigs.k8s.io/cluster-api require minor v1.10.4 -> v1.11.1 age adoption passing confidence
sigs.k8s.io/controller-runtime require minor v0.20.4 -> v0.22.1 age adoption passing confidence

Release Notes

actions/checkout (actions/checkout)

v5

Compare Source

actions/stale (actions/stale)

v10.1.0

Compare Source

What's Changed

New Contributors

Full Changelog: actions/stale@v10...v10.1.0

v10.0.0

Compare Source

What's Changed

Breaking Changes
Enhancement
Dependency Upgrades
Documentation changes

New Contributors

Full Changelog: actions/stale@v9...v10.0.0

google/cel-go (github.com/google/cel-go)

v0.26.1

Compare Source

What's Changed

New Contributors

Full Changelog: google/cel-go@v0.25.1...v0.26.1

v0.26.0

Compare Source

New Features ✨
Bug Fixes 🐛
Test Updates 🧪
Documentation 📚
Dependency Updates ⬆️

v0.25.1

Compare Source

v0.25.0

Compare Source

Features & Enhancements

This release introduces features for richer configuration-based CEL, AI prompt generation from config files, additional documentation, and 3x performance when evaluating traced / state-tracking expressions. This release also introduces a unit test runner framwork.

#​1141: Expose extension option factory as a public method

#​1143: Add a new compiler tool which can be used to compile CEL expressions and policies using serialized environment

#​1151: Lightweight observable evaluation

#​1155: Utilities for formatting and parsing documentation strings

#​1156: Support for documentation and example strings in CEL environments

#​1158: Re-export interpreter.AttributePattern in package cel.

#​1159: Document the standard library macros and functions

#​1160: Prompt generation for AI-assisted authoring based on a CEL environment

#​1117: Add LateFunctionBinding declaration and fix constant folding

#​1163: Initialize stateful observers prior to evaluation

#​1164: Unparse Expr values to strings

#​1149: Add test runner library

#​1167: REPL: Add an extension option for two var comprehensions

Fixes

Several fixes were implemented, including updating strings.format to better adhere to the specification, correcting constant folding logic alongside the late binding feature, removing a non-functional check in test code, and adding argument count validation for optFieldSelect.

#​1133: Update strings.format to adhere to the specification

#​1117: Add LateFunctionBinding declaration and fix constant folding

#​1161: Remove non-functional optional check in test-only selection

#​1168: Check arg count when validating optFieldSelect

Refactoring & Internal Improvements

General refactoring was performed across the codebase. Coverage and comments for Activation methods were improved. The test runner library was refactored to create options from flags and improve code structure.

#​1145: Refactoring changes

#​1150: Additional comments and coverage for Activation methods

#​1165: Refactoring changes to create a test runner option from passed flags, correct indentation and add package level comment for test

Documentation

Documentation was enhanced, including updates to the NativeTypes documentation regarding the cel tag, adding documentation for the optional library, and documenting the standard library functions/macros as part of the documentation string feature.

#​1148: Update NativeTypes doc to reflect how to enable cel tag

#​1155: Utilities for formatting and parsing documentation strings

#​1156: Support for documentation and example strings in CEL environments

#​1159: Document the standard library macros and functions

#​1162: Document optional library and increase docs coverage

Build System

Configuration fixes were made for Bzlmod compatibility.

#​1146: Bzlmod configuration fixes

Type System

Type formatting was updated to correctly handle type parameters.

#​1154: Update type formatting for type params

v0.24.1

Compare Source

Fixes

  • Separate unnest optimization from composer to capture type info [#​1138]

Full Changelog: google/cel-go@v0.24.0...v0.24.1

v0.24.0

Compare Source

Support for subsetting CEL standard library and serialization of CEL environments to YAML.

CEL is an official Google product [#​1122]

Features

  • Helper methods for subsetting function overloads [#​1120]
  • Introduce cel package aliases for Activation [#​1123]
  • Canonical environment description and stdlib subsetting [#​1125]
  • Support for cel.Env conversion to YAML-serializable config [#​1128]
  • Option to configure CEL via env.Config object [#​1129]
  • Support for feature flags and validators in env.Config [#​1132]
  • Add k8s custom policy tag handler for test [#​1121]

Fixes

  • ContextEval support for Unknowns [#​1126]
  • Fix godoc formatting for Lists and OptionalTypes functions [#​1127]
  • Default enable DefaultUTCTimeZone [#​1130]
  • Support for splitting nested branching operators within policies [#​1136]

New Contributors

Full Changelog: google/cel-go@v0.23.2...v0.24.0

v0.23.2

Compare Source

Corrects one remaining issue for cost computations from the v0.23.0 releases

Fixes

Full Changelog: google/cel-go@v0.23.1...v0.23.2

v0.23.1

Compare Source

Minor release to address cost tracking and size estimation [#​1113]

Full Changelog: google/cel-go@v0.23.0...v0.23.1

v0.23.0

Compare Source

Features

  • First and last element in list support [#​1067]
  • Add support for typed conformance tests. [#​1089]
  • Add syntax for escaped field selectors. [#​1002]
  • Add optional.unwrap() / .unwrapOpt() function [#​1103]
  • Cost tracking for two-variable comprehensions and bindings [#​1104]

Fixes

PR #​1099 enables a change in the internal variable name used for comprehension result accumulation. This change may break some tests which inspect the AST contents in text form; however, will not break any existing uses of CEL during parse, check, or evaluation.

  • Improve policy compiler error message for incompatible outputs. [#​1082]
  • Fix partial evaluation with the comprehension folder objects [#​1084]
  • Introduce versioning options to all extensions [#​1075]
  • Fix a crash in mismatched output check for nested rules [#​1086]
  • improve debug output to properly quote byte strings [#​1088]
  • Fix two-variable comprehension pruning [#​1083]
  • Replace checks for valid UTF-8 in strings with go-maintained calls [#​1094]
  • Policy nested rule fix [#​1092]
  • Address non-const format string lint findings [#​1096]
  • Fix typos in ext/README.md [#​1098]
  • Add option to use inaccessible accumulator var [#​1097]
  • Add test cases for string.format covering various edge cases [#​1101]
  • Add base_config and partial_config files under restricted_destination testdata [#​1106]
  • Default enable using hidden accumulator name [#​1099]
  • Update PruneAst to support constants of optional type [#​1109]

New Contributors

Full Changelog: google/cel-go@v0.22.1...v0.23.0

v0.22.1

Compare Source

Fixes

  • Additional hardening on legacy macros [#​1064]
  • Additional nil-safety checks with corresponding test updates [#​1073]
  • Add two-variable comprehension support to cel-policy [#​1074]
  • Fix optional test to short-circuit [#​1076]
  • Fix nil-type when two-var comprehension has a dyn range [#​1077]

New Contributors

Full Changelog: google/cel-go@v0.22.0...v0.22.1

onsi/gomega (github.com/onsi/gomega)

v1.38.2

Compare Source

1.38.2

v1.38.1

Compare Source

1.38.1

Fixes

Numerous minor fixes and dependency bumps

v1.38.0

Compare Source

1.38.0

Features
  • gstruct handles extra unexported fields [4ee7ed0]
Fixes
  • support [] in IgnoringTopFunction function signatures (#​851) [36bbf72]
Maintenance

v1.37.0

Compare Source

1.37.0

Features
  • add To/ToNot/NotTo aliases for AsyncAssertion [5666f98]
siderolabs/crypto (github.com/siderolabs/crypto)

v0.6.4

Compare Source

crypto 0.6.4 (2025-09-29)

Welcome to the v0.6.4 release of crypto!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/crypto/issues.

Contributors
  • Andrey Smirnov
  • Andrey Smirnov
  • Andrey Smirnov
  • Alexey Palazhchenko
  • Dmitriy Matrenichev
  • Andrew Rynhard
  • Artem Chernyshev
  • Noel Georgi
  • Serge Logvinov
  • Utku Ozdemir
Changes
41 commits

  • 4154a77 feat: implement dynamic certificate reloader
  • dae07fa chore: update to Go 1.25
  • 62a079b fix: update TLS config, add tests for TLS interactions
  • c2b4e26 fix: remove code duplication and fix Ed25511 CA generation
  • 2a07632 fix: enforce FIPS-140-3 compliance
  • 17107ae fix: add generic CSR generator and OpenSSL interop
  • 53659fc refactor: split into files
  • 0d45dee chore: bump deps
  • 58b2f92 chore: use HTTP/2 ALPN by default
  • c240482 feat: provide dynamic client CA matching
  • 2f4f911 feat: add PEMEncodedCertificate wrapper
  • 1c94bb3 chore: bump dependencies
  • 8f77da3 feat: add a method to load PEM key from file
  • c03ff58 feat: add a way to represent redacted x509 private keys
  • c3225ee feat: allow CSR template subject field to be overridden
  • 8570669 chore: rename to siderolabs/crypto
  • e9df1b8 feat: add support for generating keys from RSA-SHA256 CAs
  • 510b0d2 chore: add json tags
  • 6fa2d93 fix: deepcopy nil fields as nil
  • 9a63cba fix: add back support for generating ECDSA keys with P-256 and SHA512
  • 893bc66 fix: use SHA256 for ECDSA-P256
  • deec8d4 chore: implement DeepCopy methods for PEMEncoded* types
  • d3cb772 feat: make possible to change KeyUsage
  • 6bc5bb5 chore: remove unused argument
  • cd18ef6 feat: add support for several organizations
  • 97c888b chore: add options to CSR
  • 7776057 chore: fix typos
  • 80df078 chore: remove named result parameters
  • 15bdd28 chore: minor updates
  • 4f80b97 fix: verify CSR signature before issuing a certificate
  • 39584f1 feat: support for key/certificate types RSA, Ed25519, ECDSA
  • cf75519 fix: function NewKeyPair should create certificate with proper subject
  • 751c95a feat: add 'PEMEncodedKey' which allows to transport keys in YAML
  • 562c3b6 feat: add support for public RSA key in RSAKey
  • bda0e9c feat: enable more conversions between encoded and raw versions
  • e0dd56a feat: add NotBefore option for x509 cert creation
  • 12a4897 feat: add support for SPKI fingerprint generation and matching
  • d0c3eef fix: implement NewKeyPair
  • 196679e feat: move pkg/grpc/tls from github.com/talos-systems/talos as ./tls
  • 1ff6242 chore: initial version as imported from talos-systems/talos
  • 835063e chore: initial commit

Changes since v0.6.3
2 commits

  • 4154a77 feat: implement dynamic certificate reloader
  • dae07fa chore: update to Go 1.25

Dependency Changes

This release has no dependency changes

siderolabs/talos (github.com/siderolabs/talos/pkg/machinery)

v1.11.2

Compare Source

Talos 1.11.2 (2025-09-25)

Welcome to the v1.11.2 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

runc: 1.3.1
Kubernetes: 1.34.1
Linux: 6.12.48
linux-firmware: 2025091

Talos is built with Go 1.24.6.

Contributors
  • Andrey Smirnov
  • Mateusz Urbanek
  • Noel Georgi
  • Dmitrii Sharshakov
  • Oguz Kilcan
  • Serge Logvinov
Changes
17 commits

Changes from siderolabs/pkgs
3 commits

Dependency Changes
  • github.com/siderolabs/pkgs v1.11.0-18-g1a25681 -> v1.11.0-21-gf95c679
  • github.com/siderolabs/talos/pkg/machinery v1.11.1 -> v1.11.2
  • k8s.io/api v0.34.0 -> v0.34.1
  • k8s.io/apiextensions-apiserver v0.34.0 -> v0.34.1
  • k8s.io/apiserver v0.34.0 -> v0.34.1
  • k8s.io/client-go v0.34.0 -> v0.34.1
  • k8s.io/component-base v0.34.0 -> v0.34.1
  • k8s.io/kube-scheduler v0.34.0 -> v0.34.1
  • k8s.io/kubectl v0.34.0 -> v0.34.1
  • k8s.io/kubelet v0.34.0 -> v0.34.1
  • k8s.io/pod-security-admission v0.34.0 -> v0.34.1

Previous release can be found at v1.11.1

Images
ghcr.io/siderolabs/flannel:v0.27.2
registry.k8s.io/coredns/coredns:v1.12.3
gcr.io/etcd-development/etcd:v3.6.4
registry.k8s.io/kube-apiserver:v1.34.1
registry.k8s.io/kube-controller-manager:v1.34.1
registry.k8s.io/kube-scheduler:v1.34.1
registry.k8s.io/kube-proxy:v1.34.1
ghcr.io/siderolabs/kubelet:v1.34.1
ghcr.io/siderolabs/installer:v1.11.2
registry.k8s.io/pause:3.10

v1.11.1

Compare Source

Talos 1.11.1 (2025-09-08)

Welcome to the v1.11.1 release of Talos!

Please try out the release binaries and repor

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate Renovate
Copy link
Author

renovate bot commented Aug 18, 2025

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 13 additional dependencies were updated

Details:

Package Change
github.com/google/gnostic-models v0.6.8 -> v0.6.9
github.com/prometheus/client_golang v1.19.1 -> v1.22.0
github.com/prometheus/common v0.55.0 -> v0.62.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.54.0 -> v0.58.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0 -> v1.33.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0 -> v1.33.0
go.opentelemetry.io/proto/otlp v1.3.1 -> v1.4.0
golang.org/x/crypto v0.38.0 -> v0.39.0
golang.org/x/net v0.40.0 -> v0.41.0
golang.org/x/text v0.25.0 -> v0.26.0
k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f -> v0.0.0-20250318190949-c8a335a9a2ff
sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.31.0 -> v0.31.2
sigs.k8s.io/structured-merge-diff/v4 v4.4.2 -> v4.6.0

@github-project-automation github-project-automation bot moved this to To Do in Planning Aug 18, 2025
@talos-bot talos-bot moved this from To Do to In Review in Planning Aug 18, 2025
@smira smira removed this from Planning Aug 18, 2025
@renovate renovate bot force-pushed the renovate/dependencies branch from 0f40d3a to 4f0cfd9 Compare August 23, 2025 15:57
@renovate Renovate
Copy link
Author

renovate bot commented Aug 23, 2025
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum
Command failed: go get -t ./...
go: module github.com/siderolabs/[email protected] requires go >= 1.25.0; switching to go1.25.1
go: downloading go1.25.1 (linux/amd64)
go: download go1.25.1: golang.org/[email protected]: verifying module: checksum database disabled by GOSUMDB=off

@renovate renovate bot force-pushed the renovate/dependencies branch from 4f0cfd9 to c71b548 Compare August 24, 2025 19:13
@renovate renovate bot force-pushed the renovate/dependencies branch 5 times, most recently from 4a67b3f to 34d2544 Compare September 4, 2025 23:41
@renovate renovate bot force-pushed the renovate/dependencies branch 2 times, most recently from d9f3459 to 5073e12 Compare September 11, 2025 03:29
@renovate renovate bot force-pushed the renovate/dependencies branch 3 times, most recently from f2f8165 to 6c9caa5 Compare September 26, 2025 12:12
@renovate renovate bot force-pushed the renovate/dependencies branch 4 times, most recently from dca6226 to faebc7e Compare October 3, 2025 07:57
@renovate
chore: update dependencies
25043f5 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate renovate bot force-pushed the renovate/dependencies branch from faebc7e to 25043f5 Compare October 4, 2025 07:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants