chore(deps): bump the k8s group across 1 directory with 4 updates

[dependabot]

Bumps the k8s group with 3 updates in the / directory: k8s.io/api, k8s.io/client-go and sigs.k8s.io/controller-runtime.

Updates k8s.io/api from 0.33.2 to 0.34.0

Commits

• ae6c3b9 Update dependencies to v0.34.0 tag
• 133a39c Merge remote-tracking branch 'origin/master' into release-1.34
• fd087be clarify that staging repos are automatically published
• ff163ef add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
• 5ec86fc link to what a staging repository is
• 08c5dee docs: clarify that this is a staging repository and not for direct contributions
• ba64d0b Update prerelease lifecycle to v1.34
• 25f849c Merge pull request #132522 from sunya-ch/KEP-5075-PR
• baa1eb1 KEP-5075: generated codes from make update
• 740b2c9 KEP-5075: API updates
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.33.2 to 0.34.0

Commits

• b72d93d Merge remote-tracking branch 'origin/master' into release-1.34
• cd8b91c clarify that staging repos are automatically published
• 8c59599 add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
• ec3cea5 link to what a staging repository is
• e4db694 docs: clarify that this is a staging repository and not for direct contributions
• 04507a3 Merge pull request #132942 from thockin/kyaml
• 50e39b1 Merge pull request #132935 from benluddy/cbor-bump-custom-marshalers
• 7d108e8 Re-vendor sigs.k8s.io/yaml @ v1.6.0
• 58c4eb0 Merge pull request #133130 from ylink-lfs/chore/residual_boolptr_removal
• 38a24e6 chore: residual boolptr and intptr removal
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.33.2 to 0.34.0

Commits

• b1c7d7b Update dependencies to v0.34.0 tag
• 97396af Merge remote-tracking branch 'origin/master' into release-1.34
• 5f737f3 clarify that staging repos are automatically published
• 0b8655b add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
• c00384c link to what a staging repository is
• b53b1f8 docs: clarify that this is a staging repository and not for direct contributions
• 42e6182 KEP-5075: generated codes from make update
• da11948 Merge pull request #130653 from yliaog/master
• 3b7d818 extended resource backed by DRA: codegen
• bb11581 Merge pull request #130160 from KobayashiD27/dra-device-binding-conditions
• Additional commits viewable in compare view

Updates sigs.k8s.io/controller-runtime from 0.21.0 to 0.22.0

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.22.0

🔆 Highlights

• Client: Native support for Server-Side Apply (SSA) (#3253, #2981)
• Update to k8s.io/* v1.34 dependencies (#3231, #3236, #3246, #3259, #3270, #3300)
• Controller: Implement warmup support for controllers (#3192)
• Priorityqueue: various improvements (#3289, #3290, #3243, #3250)

⚠️ Breaking changes

• Update to k8s.io/* v1.34 dependencies by @​alvaroaleman @​troy0820 #3231, #3236, #3246, #3259, #3270, #3300
• Client: Add native SSA support by @​alvaroaleman in kubernetes-sigs/controller-runtime#3253
• Client: Default selector to Nothing if it is nil for MatchingLabelsSelector and MatchingFieldsSelector by @​acumino in kubernetes-sigs/controller-runtime#3279
• Fakeclient: Add SSA support by @​alvaroaleman in kubernetes-sigs/controller-runtime#2981
• Fakeclient: Remove support for objects with pointer ObjectMeta by @​alvaroaleman in kubernetes-sigs/controller-runtime#3228
• Fakeclient: Clear TypeMeta for structured objects by @​alvaroaleman in kubernetes-sigs/controller-runtime#3229
• Priorityqueue: Make Priority option a pointer by @​alvaroaleman in kubernetes-sigs/controller-runtime#3289

✨ Features

• Client: Add UnsafeDisableDeepCopy to GetOptions by @​jonathan-innis in kubernetes-sigs/controller-runtime#3227
• Controller: Add a ReconciliationTimeout option by @​alvaroaleman in kubernetes-sigs/controller-runtime#3296
• Controller: Implement warmup support for controllers by @​godwinpang in kubernetes-sigs/controller-runtime#3192
• Envtest: Allow selection of binaries version by release series by @​cbandy in kubernetes-sigs/controller-runtime#3280
• Manager: Add support for custom labels on leader election leases by @​DerekFrank in kubernetes-sigs/controller-runtime#3237
• Priorityqueue: WithLowPriorityWhenUnchanged: Set Priority for all add methods by @​alvaroaleman in kubernetes-sigs/controller-runtime#3290
• Webhooks: Handle panics during conversion more gracefully by @​sbueringer in kubernetes-sigs/controller-runtime#3278

🐛 Bugfixes

• Envtest: Ensure cleanup validates etcd process state first by @​Danil-Grigorev in kubernetes-sigs/controller-runtime#3272
• Envtest: Include listening address in kube-apiserver serving certificate by @​solidDoWant in kubernetes-sigs/controller-runtime#3284
• Fakeclient: Fix some SSA-related bugs by @​alvaroaleman in kubernetes-sigs/controller-runtime#3268
• Fakeclient: Update passed object in Apply by @​alvaroaleman in kubernetes-sigs/controller-runtime#3283
• Fakeclient: Validate managed fields on init objects by @​alvaroaleman in kubernetes-sigs/controller-runtime#3282
• Manager: Prevent goroutine leak on shutdown timeout by @​jingyih in kubernetes-sigs/controller-runtime#3247
• Priorityqueue: Don't block on Get when queue is shutdown by @​dongjiang1989 in kubernetes-sigs/controller-runtime#3243
• Priorityqueue: Shutdown on shutdown by @​alvaroaleman in kubernetes-sigs/controller-runtime#3250
• Unit tests: Fix ginkgo panic in webhook integration test by @​sbueringer in kubernetes-sigs/controller-runtime#3288
• Unit tests: Fix race condition in Warmup unit test by @​sbueringer in kubernetes-sigs/controller-runtime#3287

🌱 Other

• Certwatcher: Add instance-specific logger with cert/key k/v pair by @​s-z-z in kubernetes-sigs/controller-runtime#3293
• Certwatcher: Don't require leader election by @​alvaroaleman in kubernetes-sigs/controller-runtime#3273
• Examples-builtin: Refactor controller setup to use builder pattern by @​s-z-z in kubernetes-sigs/controller-runtime#3265
• Fix deprecation warnings by @​sbueringer in kubernetes-sigs/controller-runtime#3275
• Update golangci-lint to v2.3.0 by @​dongjiang1989 in kubernetes-sigs/controller-runtime#3266
• Unit tests: Stop using context.Background()/TODO() in tests by @​alvaroaleman in kubernetes-sigs/controller-runtime#3263

📖 Documentation

• Clarify our versioning scheme by @​alvaroaleman in kubernetes-sigs/controller-runtime#3264
• Clarify state of Warmup feature by @​sbueringer in kubernetes-sigs/controller-runtime#3299

... (truncated)

Commits

• fc84a60 Merge pull request #3300 from troy0820/troy0820/k8s-deps-1.34
• c430462 update k8s.io dependencies to v0.34.0
• 7085be7 Merge pull request #3299 from sbueringer/pr-clarify-state-of-warmup
• 5fd7ff6 Clarify state of Warmup feature
• e922805 Merge pull request #3293 from s-z-z/certwatcher-patch
• 41feb4f feat(certwatcher): add instance-specific logger with cert/key context
• 0f4e99e Merge pull request #3296 from alvaroaleman/reconciliationtimeout
• f8db32f ✨ Add a ReconciliationTimeout option
• 9d3997b ✨ envtest: search the assets index for latest of a release series (#3280)
• 9f93124 Merge pull request #3290 from alvaroaleman/addafter
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 4 package(s) with unknown licenses.

See the Details below.

License Issues

go.mod

Package	Version	License	Issue Type
go.yaml.in/yaml/v2	2.4.2	Null	Unknown License
go.yaml.in/yaml/v3	3.0.4	Null	Unknown License
sigs.k8s.io/json	0.0.0-20241014173422-cfa47c3a1cc8	Null	Unknown License
sigs.k8s.io/yaml	1.6.0	Null	Unknown License

Allowed Licenses: Apache-2.0, BSD-2-Clause, BSD-3-Clause, BSL-1.0, CC0-1.0, ISC, MIT, MPL-2.0, Unlicense

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
gomod/github.com/emicklei/go-restful/v3	3.12.2	🟢 6.2	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Security-Policy 🟢 4 security policy file detected Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 5 Found 8/16 approved changesets -- score normalized to 5 Maintained 🟢 6 8 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 6 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies 🟢 10 all dependencies are pinned CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 9 1 existing vulnerabilities detected
gomod/github.com/fsnotify/fsnotify	1.9.0	🟢 5	Details Check Score Reason Maintained 🟢 4 2 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 4 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review ⚠️ 1 Found 4/24 approved changesets -- score normalized to 1 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Fuzzing 🟢 10 project is fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/fxamacker/cbor/v2	2.9.0	🟢 9	Details Check Score Reason Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Code-Review 🟢 10 all changesets reviewed Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 10 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies 🟢 10 all dependencies are pinned License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST 🟢 10 SAST tool is run on all commits
gomod/github.com/google/gnostic-models	0.7.0	🟢 5.3	Details Check Score Reason Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Code-Review 🟢 4 Found 6/15 approved changesets -- score normalized to 4 Maintained 🟢 3 3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/modern-go/reflect2	1.0.3-0.20250322232337-35a7c28c31ee	🟢 3.4	Details Check Score Reason Dangerous-Workflow ⚠️ -1 no workflows found Maintained ⚠️ 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 Packaging ⚠️ -1 packaging workflow not detected Code-Review 🟢 3 Found 7/21 approved changesets -- score normalized to 3 Token-Permissions ⚠️ -1 No tokens found Pinned-Dependencies ⚠️ -1 no dependencies found Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
gomod/go.yaml.in/yaml/v2	2.4.2	Unknown	Unknown
gomod/go.yaml.in/yaml/v3	3.0.4	Unknown	Unknown
gomod/k8s.io/api	0.34.0	🟢 5.8	Details Check Score Reason Dangerous-Workflow ⚠️ -1 no workflows found Token-Permissions ⚠️ -1 No tokens found Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Maintained 🟢 10 29 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected SAST ⚠️ 0 no SAST tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Pinned-Dependencies ⚠️ -1 no dependencies found Vulnerabilities 🟢 9 1 existing vulnerabilities detected
gomod/k8s.io/apiextensions-apiserver	0.34.0	🟢 4.9	Details Check Score Reason Token-Permissions ⚠️ -1 No tokens found Maintained 🟢 10 28 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow ⚠️ -1 no workflows found Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Packaging ⚠️ -1 packaging workflow not detected SAST ⚠️ 0 no SAST tool detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Fuzzing ⚠️ 0 project is not fuzzed Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 6 4 existing vulnerabilities detected
gomod/k8s.io/apimachinery	0.34.0	🟢 6	Details Check Score Reason Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow ⚠️ -1 no workflows found Token-Permissions ⚠️ -1 No tokens found CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 29 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Pinned-Dependencies ⚠️ -1 no dependencies found SAST ⚠️ 0 no SAST tool detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected
gomod/k8s.io/client-go	0.34.0	🟢 5.3	Details Check Score Reason Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Dangerous-Workflow ⚠️ -1 no workflows found Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 10 29 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Token-Permissions ⚠️ -1 No tokens found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 no SAST tool detected Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 9 1 existing vulnerabilities detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/k8s.io/kube-openapi	0.0.0-20250710124328-f3f2b991d03b	🟢 6.8	Details Check Score Reason Maintained 🟢 10 16 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Code-Review 🟢 10 all changesets reviewed Security-Policy 🟢 10 security policy file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 License 🟢 10 license file detected Fuzzing 🟢 10 project is fuzzed Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 6 4 existing vulnerabilities detected
gomod/k8s.io/utils	0.0.0-20250604170112-4c0f3b243397	🟢 5.7	Details Check Score Reason Maintained ⚠️ 2 3 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 2 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
gomod/sigs.k8s.io/controller-runtime	0.22.0	🟢 7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dependency-Update-Tool 🟢 10 update tool detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Code-Review 🟢 10 all changesets reviewed Pinned-Dependencies 🟢 10 all dependencies are pinned CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected CI-Tests 🟢 10 17 out of 17 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 46 contributing companies or organizations
gomod/sigs.k8s.io/json	0.0.0-20241014173422-cfa47c3a1cc8	🟢 6.2	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Maintained ⚠️ 0 1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy 🟢 10 security policy file detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing 🟢 10 project is fuzzed License 🟢 9 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/sigs.k8s.io/structured-merge-diff/v6	6.3.0	🟢 6.4	Details Check Score Reason Token-Permissions ⚠️ -1 No tokens found Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 7 8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7 Code-Review 🟢 10 all changesets reviewed Dangerous-Workflow ⚠️ -1 no workflows found Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/sigs.k8s.io/yaml	1.6.0	🟢 6.5	Details Check Score Reason Maintained 🟢 10 15 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 10 all changesets reviewed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 9 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• go.mod

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.