Bump the k8s-go-deps group across 1 directory with 7 updates

[dependabot[bot]]

Bumps the k8s-go-deps group with 3 updates in the / directory: k8s.io/apiextensions-apiserver, sigs.k8s.io/controller-runtime and sigs.k8s.io/secrets-store-csi-driver.

Updates k8s.io/apiextensions-apiserver from 0.29.5 to 0.31.0

Commits

• 5682b3a Update dependencies to v0.31.0 tag
• 67f4a1d informers: add comment that Start does not block
• 647748e Merge pull request #126353 from liggitt/fix-vendor
• a9ee50f revendor dependencies
• 1ab7536 Merge pull request #126308 from cici37/hotFix
• 4940c42 Allowing direct CEL reserved keyword usage in CRD (#126188)
• 10c707f Merge pull request #124061 from Jefftree/conversion-webhook-invalidca
• 3bbcc94 Merge pull request #125661 from mjudeikis/mjudeikis/poststarthookctx.stopch.c...
• 93b42bf Update with stdlib errors
• 876df11 Hot fix for panic on schema conversion. (#126167)
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.29.5 to 0.31.0

Commits

• a8f449e Falls back to SPDY for gorilla/websocket https proxy error
• 62791ec Merge pull request #125571 from liggitt/filter-auth-02-sar
• cc2ba35 add field and label selectors to authorization attributes
• ce76a8f generate
• 35052c5 add subjectaccessreview field and label selectors
• ab06869 Merge pull request #126105 from benluddy/cbor-framer
• 429f4e4 Implement runtime.Framer for CBOR Sequences.
• d7e1c53 Merge pull request #126018 from aroradaman/bump-k8s-utils
• 07cb122 Merge pull request #125748 from benluddy/cbor-custom-marshalers
• dd17456 bump k8s.io/utils
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.29.5 to 0.31.0

Commits

• 02a19c3 Update dependencies to v0.31.0 tag
• 5e3e8ea informers: add comment that Start does not block
• f71a5cc Call non-blocking informerFactory.Start synchronously to avoid races
• 4536e5a Merge pull request #124012 from Jefftree/le-controller
• 93c6a5b Merge pull request #126353 from liggitt/fix-vendor
• 6a9911a revendor dependencies
• fe54892 Merge pull request #126243 from SergeyKanzhelev/devicePluginFailures
• 825f52e Change PingTime to be persistent
• f45c451 fix ordering issue in candidates
• 18dd587 feedback: leasecandidate clients
• Additional commits viewable in compare view

Updates k8s.io/klog/v2 from 2.120.1 to 2.130.1

Release notes

Sourced from k8s.io/klog/v2's releases.

Prepare klog release for Kubernetes v1.31 (Take 2)

What's Changed

• data race: avoid unprotected access to sb.file by @​pohly in kubernetes/klog#408

Full Changelog: https://github.com/kubernetes/klog/compare/v2.130.0...v2.130.1

Prepare klog release for Kubernetes v1.31 (Take 1)

What's Changed

• chore(*): fix spelling of Intel Corporation by @​jsoref in kubernetes/klog#399
• build: fix some linter warnings by @​pohly in kubernetes/klog#402
• examples: fix linter warning by @​pohly in kubernetes/klog#406
• Do not acquire lock for file.Sync() fsync call by @​1978629634 in kubernetes/klog#404
• ktesting: tone down warning about leaked test goroutine by @​pohly in kubernetes/klog#401

New Contributors

• @​jsoref made their first contribution in kubernetes/klog#399
• @​1978629634 made their first contribution in kubernetes/klog#404

Full Changelog: https://github.com/kubernetes/klog/compare/v2.120.1...v2.130.0

Commits

• 75663bb Merge pull request #408 from pohly/klog-flush-sync-fix
• 2327d4c data race: avoid unprotected access to sb.file
• 16c7d26 Merge pull request #401 from pohly/ktesting-warning-delay
• cd24012 ktesting: tone down warning about leaked test goroutine
• 2ee202a Merge pull request #404 from 1978629634/fsync-freelock
• 79575d8 Do not acquire lock for file.Sync() fsync call
• 7af45d6 Merge pull request #406 from pohly/linter
• d008cfe examples: fix linter warning
• ab53041 Merge pull request #402 from pohly/linter-issues
• ff7c070 build: fix some linter warnings
• Additional commits viewable in compare view

Updates k8s.io/utils from 0.0.0-20230726121419-3b25d923346b to 0.0.0-20240711033017-18e509b52bc8

Commits

• See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.17.5 to 0.19.0

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.19.0

:warning: Deprecation Warnings

Please note that admission.Defaulter/Validator have been deprecated in favor of admission.CustomDefaulter/CustomValidator since v0.17 and will be removed with v0.20.

:warning: Breaking Changes

• Bump to k8s.io/* v1.31 (#2798 #2858 #2867 #2872 #2883 #2900 #2906 #2924)
• Add generic TypedReconciler (#2799)
• client: Remove options.WarningHandler (#2887 #2903)
• controller: Validate controller names are unique & add SkipNameValidation option (#2902 #2918)

:sparkles: New Features

• client: Add WithFieldValidation client (#2860 #2913)
• controller & webhook: Recover panics per default & add panic metrics (#2905)
• controllerutil: configure BlockOwnerDeletion when setting OwnerReference (#2847)
• fake client: Add scale subresource logic (#2855)
• predicate: Add missing generic version of ResourceVersionChangedPredicate (#2812)
• setup-envtest: Download binaries from controller-tools releases instead of GCS (#2811)
• setup-envtest: Publish setup-envtest binaries via release attachments (#2911)
• workqueue: Add controller label to workqueue metrics (#2895)

:bug: Bug Fixes

• apiutil.IsGVKNamespaced: Fix namespaced GVK check to use version (#2875)
• cache: Fix label defaulting of byObject when namespaces are configured (#2805)
• certwatcher: Recreate watcher if the file is unlinked and replaced (#2893)
• manager: Fix log in AddMetricsServerExtraHandler (#2874)
• manager: Quiet context.Canceled errors during shutdown (#2745)
• manager: Reintroduce AddMetricsServerExtraHandler (#2813)
• manager.Start: Prevent LeaderElector setup error from being swallowed (#2876)
• source.Kind: String() should return correct type (#2806)

:seedling: Others

• actions: Add action to approve actions if /ok-to-test is set (#2908)
• controller: Add dynamic watcher tests (#2881)
• dependabot: disable go module bumps, bump all actions in a single PR (#2856)
• verify-modules: Verify go modules are in sync with upstream k/k (#2774)

:book: Additionally, there have been 5 contributions to our documentation. (#2830, #2849, #2863, #2894, #2899, #2910)

Dependencies

Added

• cel.dev/expr: v0.15.0
• github.com/antlr4-go/antlr/v4: v4.13.0

... (truncated)

Commits

• b901db1 Merge pull request #2924 from lucacome/bump-deps
• 0c7827e Bump k8s.io deps to v1.31.0
• 9f5afec Merge pull request #2918 from sbueringer/pr-add-skip-name-validation
• 96e8152 Merge pull request #2921 from kubernetes-sigs/dependabot/github_actions/all-g...
• 8f5faff :seedling: Bump actions/upload-artifact in the all-github-actions group
• 89bebe3 Add SkipNameValidation option
• 7857623 Merge pull request #2911 from sbueringer/pr-publish-setup-envtest
• fdc8bd7 Merge pull request #2913 from sbueringer/pr-test-cov-field-validation
• 7dfd3bb Fix WithFieldValidation client
• e882354 Merge pull request #2908 from sbueringer/pr-approve-action
• Additional commits viewable in compare view

Updates sigs.k8s.io/secrets-store-csi-driver from 1.3.4 to 1.4.4

Release notes

Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.

v1.4.4

v1.4.3 - 2024-06-18

Changelog

Continuous Integration 💜

• 62d6dce ci: use --clean instead of --rm-dist
• a067688 ci: use --verbose instead of --debug in goreleaser

Maintenance 🔧

• 640a771 chore: bump version to v1.4.4 in release-1.4
• ccce7f76 chore: update debian-base to bookworm-v1.0.3

Security Fix 🛡️

• 5747aa8b chore: bump kubectl to v1.29.4 in driver-crds for CVE-2023-45288

Testing 💚

• dbe92af3 test: remove target path check in fake provider server

v1.4.3 - 2024-04-17

Changelog

Bug Fixes 🐞

• d84a7a1 fix: support more than one linux.crds.annotations in helm charts

Continuous Integration 💜

• 03dd391b ci: add govulncheck

Maintenance 🔧

• aa75fe5f chore: bump version to v1.4.3 in release-1.4
• 3c3889a8 chore: update debian-base to bookworm-v1.0.2

Security Fix 🛡️

• 412c477d security: bump golang.org/x/net to v0.23.0+ to fix GO-2024-2687
• 9ee78b87 security: bump kubectl to v1.29.3 in driver-crds for CVE-2024-24786

v1.4.2 - 2024-03-11

Changelog

Maintenance 🔧

• 9039cc90 chore: bump version to v1.4.2 in release-1.4
• 9fd198c3 chore: update node-driver-registrar:v2.10.0, livenessprobe:v2.12.0
• b303fae0 chore: update debian-base to bookworm-v1.0.1

v1.4.1 - 2024-01-16

Changelog

Continuous Integration 💜

• 10b07c1c ci: remove low quota regions for aks windows job
• d4e169bf ci: remove aks-engine job templates
• 80637cac ci: add script for aks windows cluster

Maintenance 🔧

• 2884c1d2 chore: bump version to v1.4.1 in release-1.4
• b9101a72 chore: update to go 1.21.6 in docker

Security Fix 🛡️

• eb644a30 security: bump golang.org/x/crypto to v0.17.0 to fix CVE-2023-48795

... (truncated)

Commits

• 859f39b Merge pull request #1558aramase/automated-cherry-pick-of-#1557
• a067688 ci: use --verbose instead of --debug in goreleaser
• f0f72c5 Merge pull request #1556aramase/automated-cherry-pick-of-#1555
• 62d6dce ci: use --clean instead of --rm-dist
• ca72991 Merge pull request #1549aramase/automated-cherry-pick-of-#1548
• 76d1184 release: update manifest and helm charts for v1.4.4
• e4f3d6c Merge pull request #1547 from aramase/aramase/c/bump_release_1.4_v1.4.4
• 640a771 chore: bump version to v1.4.4 in release-1.4
• c879785 Merge pull request #1545aramase/automated-cherry-pick-of-#1543
• dbe92af test: remove target path check in fake provider server
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.