⚙️ Generating VAP (Validating Admission Policy) in Gatekeeper has transitioned from using annotations to specifying fields in ConstraintTemplate and Constraint. Please find out more details using VAP through Gatekeeper.
🎬 Ability to enforce specific action for Gatekeeper webhook, audit, gator, or VAP in the same constraint through scopedEnforcementActions field under spec in Constraints.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
jaiveerk
commented
1 month ago
Bumps the k8s-go-deps group with 3 updates in the / directory: github.com/open-policy-agent/gatekeeper/v3, k8s.io/klog/v2 and sigs.k8s.io/secrets-store-csi-driver.
Updates
github.com/open-policy-agent/gatekeeper/v3from 3.16.3 to 3.17.1Release notes
Sourced from github.com/open-policy-agent/gatekeeper/v3's releases.
... (truncated)
Commits
e8d5d49chore: Prepare v3.17.1 release (#3539)766b53bfix: liniting error in gatekeeper-controller-manager-poddisruptionbudget.yaml...0cb7ef2fix: vap error logging for rego only templates, cherry-pick (#3520) (#3525)d01aa68chore: Prepare v3.17.0 release (#3509)a5e097dchore: Prepare v3.17.0-rc.1 release (#3496)916f838fix: fixing error reporting for templates without CEL, cherry-pick (#3493) (#...3f9ba17chore: Prepare v3.17.0-rc.0 release (#3490)e23e53echore: bump golang fromaf9b40fto39b7e6ein /build/tooling (#3488)b222d13chore: Removing setting alpha flags for vap/vapb generation unless explicitly...5ef6d32chore: bump github.com/docker/docker from 26.1.4+incompatible to 26.1.5+incom...Updates
k8s.io/apifrom 0.29.5 to 0.30.3Commits
83bdab1Update dependencies to v0.30.3 tag0fd470cMerge pull request #124702aojea/automated-cherry-pick-of-#124572a669f18Merge pull request #124694 from pmalek/backport-124553-to-release-1.3015001b5fix(api): make LocalObjectReference.Name and HostAlias.IP required (#124553)d9a08c5tag service.spec.TrafficDistribution field as alphad014286Merge remote-tracking branch 'origin/master' into release-1.30581c1b8Update x/net for CVE-2023-4528835ca1f4Merge pull request #123932 from pohly/dra-api-resource-model-renameb048bd8Merge pull request #123909 from AkihiroSuda/fix-123906f06d24adra api: NodeResourceModel -> ResourceModelUpdates
k8s.io/apiextensions-apiserverfrom 0.29.5 to 0.30.3Commits
1aec848Update dependencies to v0.30.3 tag803669dMerge pull request #124676cici37/automated-cherry-pick-of-#1246755e9c693Adding the feature gates to fix cost for VAP and webhook matchConditions.cb47ad4Merge remote-tracking branch 'origin/master' into release-1.306ce7f38Update x/net for CVE-2023-45288a2f312cMerge remote-tracking branch 'origin/master' into release-1.30d3649bcfix test flake caused by not waiting for CRD schema update9624e52Merge pull request #123732 from serathius/parallel-featureflags24438a9Merge pull request #123758 from liggitt/protobump916521eBump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0Updates
k8s.io/apimachineryfrom 0.29.5 to 0.30.3Commits
37988e5Merge remote-tracking branch 'origin/master' into release-1.30c857a38Update x/net for CVE-2023-452880407311followup to allow special characters25164f7Merge pull request #123435 from tallclair/apparmor-gacbfe0a1Merge pull request #123758 from liggitt/protobump21d26b6Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.00c29f84Merge pull request #123385 from HirazawaUi/allow-special-characters60d24f2Merge pull request #123708 from p0lyn0mial/upstream-const-watchlist-bookmark-...513d23aapimachinery/meta/types.go: define InitialEventsAnnotationKey const67cb3a8Merge pull request #123413 from seans3/tunneling-spdy-websocketsUpdates
k8s.io/client-gofrom 0.29.5 to 0.30.3Commits
ece8c00Update dependencies to v0.30.3 tag4e1652bMerge pull request #124694 from pmalek/backport-124553-to-release-1.302daa31efix(api): make LocalObjectReference.Name and HostAlias.IP required (#124553)2df4de1Merge remote-tracking branch 'origin/master' into release-1.30ade2ae2Update x/net for CVE-2023-45288b4632b7Merge pull request #123932 from pohly/dra-api-resource-model-rename4467b1eMerge pull request #123909 from AkihiroSuda/fix-123906650f392dra api: NodeResourceModel -> ResourceModel00e4609api: NodeStatus: rename RuntimeClasses to RuntimeHandlers7ebe0eaMerge pull request #123180 from AkihiroSuda/rroUpdates
k8s.io/klog/v2from 2.120.1 to 2.130.1Release notes
Sourced from k8s.io/klog/v2's releases.
Commits
75663bbMerge pull request #408 from pohly/klog-flush-sync-fix2327d4cdata race: avoid unprotected access to sb.file16c7d26Merge pull request #401 from pohly/ktesting-warning-delaycd24012ktesting: tone down warning about leaked test goroutine2ee202aMerge pull request #404 from 1978629634/fsync-freelock79575d8Do not acquire lock for file.Sync() fsync call7af45d6Merge pull request #406 from pohly/linterd008cfeexamples: fix linter warningab53041Merge pull request #402 from pohly/linter-issuesff7c070build: fix some linter warningsUpdates
k8s.io/utilsfrom 0.0.0-20230726121419-3b25d923346b to 0.0.0-20240502163921-fe8a2dddb1d0Commits
Updates
sigs.k8s.io/controller-runtimefrom 0.17.5 to 0.18.4Release notes
Sourced from sigs.k8s.io/controller-runtime's releases.
... (truncated)
Commits
12cc8d5Merge pull request #2848 from k8s-infra-cherrypick-robot/cherry-pick-2847-to-...c0c229econtrollerutil: allow configuring BlockOwnerDeletion when setting OwnerRefere...be2f383Merge pull request #2840 from sbueringer/pr-bump-k8s4720d17Bump k8s.io/* to v0.30.1aa9ed14Merge pull request #2837 from sbueringer/pr-setup-envtest-ct-rel-0.1835d7bbddefault --use-deprecated-gcs to truece4e4f5some more deprecations56dcc14setup-envtest: allow downloading envtest binaries from controller-tools834905bMerge pull request #2817 from k8s-infra-cherrypick-robot/cherry-pick-2813-to-...6396a49Reintroduce AddMetricsExtraHandler on managerUpdates
sigs.k8s.io/secrets-store-csi-driverfrom 1.3.4 to 1.4.6Release notes
Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.
... (truncated)
Commits
d856171Merge pull request #1664 from aramase/aramase/ci/update_goreleaser_config_rel...a2c307aci: update goreleaser config for v2951559cMerge pull request #1663nilekhc/automated-cherry-pick-of-#16624716b26release: update manifest and helm charts for v1.4.6d5fbc3eMerge pull request #1659 from nilekhc/nilekh/c/bump-driver-release-v1.4.63adbfddMerge pull request #1661nilekhc/automated-cherry-pick-of-#1660b52af8cchore: bumps base images71941d5chore: bumps version for v1.4.6 releasee5b8e5cMerge pull request #1610aramase/automated-cherry-pick-of-#1559fff3865ci: use v2 for goreleaserDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show