Bump the k8s-go-deps group with 3 updates

[dependabot[bot]]

Bumps the k8s-go-deps group with 3 updates: sigs.k8s.io/controller-runtime, sigs.k8s.io/secrets-store-csi-driver and sigs.k8s.io/yaml.

Updates sigs.k8s.io/controller-runtime from 0.18.3 to 0.18.4

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.18.4

What's Changed

• [release-0.18] ✨ controllerutil: configure BlockOwnerDeletion when setting OwnerReference by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2848

Full Changelog: https://github.com/kubernetes-sigs/controller-runtime/compare/v0.18.3...v0.18.4

Commits

• 12cc8d5 Merge pull request #2848 from k8s-infra-cherrypick-robot/cherry-pick-2847-to-...
• c0c229e controllerutil: allow configuring BlockOwnerDeletion when setting OwnerRefere...
• See full diff in compare view

Updates sigs.k8s.io/secrets-store-csi-driver from 1.3.4 to 1.4.3

Release notes

Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.

v1.4.3 - 2024-04-17

Changelog

Bug Fixes 🐞

• d84a7a1 fix: support more than one linux.crds.annotations in helm charts

Continuous Integration 💜

• 03dd391b ci: add govulncheck

Maintenance 🔧

• aa75fe5f chore: bump version to v1.4.3 in release-1.4
• 3c3889a8 chore: update debian-base to bookworm-v1.0.2

Security Fix 🛡️

• 412c477d security: bump golang.org/x/net to v0.23.0+ to fix GO-2024-2687
• 9ee78b87 security: bump kubectl to v1.29.3 in driver-crds for CVE-2024-24786

v1.4.2 - 2024-03-11

Changelog

Maintenance 🔧

• 9039cc90 chore: bump version to v1.4.2 in release-1.4
• 9fd198c3 chore: update node-driver-registrar:v2.10.0, livenessprobe:v2.12.0
• b303fae0 chore: update debian-base to bookworm-v1.0.1

v1.4.1 - 2024-01-16

Changelog

Continuous Integration 💜

• 10b07c1c ci: remove low quota regions for aks windows job
• d4e169bf ci: remove aks-engine job templates
• 80637cac ci: add script for aks windows cluster

Maintenance 🔧

• 2884c1d2 chore: bump version to v1.4.1 in release-1.4
• b9101a72 chore: update to go 1.21.6 in docker

Security Fix 🛡️

• eb644a30 security: bump golang.org/x/crypto to v0.17.0 to fix CVE-2023-48795

v1.4.0 - 2023-11-20

Breaking Changes ⚠️

• total_ prefix in the metrics name has been dropped as part of the latest otel bump in the driver. For Prometheus counters, by default the otel library appends total suffix.
  • total_rotation_reconcile -> rotation_reconcile_total
  • total_rotation_reconcile_error -> rotation_reconcile_error_total
  • total_node_publish -> node_publish_total
  • total_node_unpublish -> node_unpublish_total
  • total_node_publish_error -> node_publish_error_total
  • total_node_unpublish_error -> node_unpublish_error_total
  • total_sync_k8s_secret -> sync_k8s_secret_total

Changelog

Bug Fixes 🐞

... (truncated)

Commits

• e6c80ff Merge pull request #1501aramase/automated-cherry-pick-of-#1500
• c7e0f0b release: update manifest and helm charts for v1.4.3
• 2ee8013 Merge pull request #1499 from aramase/aramase/c/bump_release_1.4_v1.4.3
• aa75fe5 chore: bump version to v1.4.3 in release-1.4
• 64df848 Merge pull request #1497aramase/automated-cherry-pick-of-#1496
• 412c477 security: bump golang.org/x/net to v0.23.0+ to fix GO-2024-2687
• 03dd391 ci: add govulncheck
• 4ab55c1 Merge pull request #1492aramase/automated-cherry-pick-of-#1491
• 3c3889a chore: update debian-base to bookworm-v1.0.2
• 98559e0 Merge pull request #1474aramase/automated-cherry-pick-of-#1467
• Additional commits viewable in compare view

Updates sigs.k8s.io/yaml from 1.3.0 to 1.4.0

Release notes

Sourced from sigs.k8s.io/yaml's releases.

v1.4.0

• Adds a goyaml.v2 subpackage containing a fork of gopkg.in/yaml.v2 at v2.4.0
• Adds a goyaml.v3 subpackage containing a fork of gopkg.in/yaml.v3 at v3.0.1
• Adds an Encoder#CompactSeqIndent() encoder option to sigs.k8.io/goyaml.v3 to allow opting into indentation compatible with gopkg.in/yaml.v2

Commits

• c3772b5 Merge pull request #97 from liggitt/owners
• 604031b Update owners
• eead467 Merge pull request #76 from natasha41575/go-yaml-fork
• f2c0229 add test demonstrating consistency between yaml.v2 and yaml.v3
• 20d25fa update LICENSE, owners, and readmes
• a7b5665 exclude forked libs from golint
• b6d8b45 fix leading newline issue
• 330e1e5 make sequence style configurable
• 70ebea7 change import paths to forked yaml libs
• b96582b fork go-yaml v2 and v3
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Pull Request Test Coverage Report for Build 9418819503

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 79.15%

---

Totals
Change from base Build 9418807738:	0.0%
Covered Lines:	2999
Relevant Lines:	3789

---

💛 - Coveralls

[coveralls]

Pull Request Test Coverage Report for Build 9443492479

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• 1 unchanged line in 1 file lost coverage.
• Overall coverage decreased (-0.03%) to 79.124%

---

Files with Coverage Reduction	New Missed Lines	%
pkg/controller/ingress/concurrency_watchdog.go	1	86.41%
<!--	Total:	1		-->

Totals
Change from base Build 9419625989:	-0.03%
Covered Lines:	2998
Relevant Lines:	3789

---

💛 - Coveralls

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.