search

borchero / switchboard

Kubernetes Operator for Automatically Issuing DNS Records and TLS Certificates for Traefik Ingress Routes.
MIT License
155 stars 15 forks source link

build(go): Bump the go-dependencies group with 7 updates #170

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 6 months ago

Bumps the go-dependencies group with 7 updates:

Package From To
github.com/traefik/traefik/v2 2.10.5 2.11.0
k8s.io/api 0.26.3 0.29.3
k8s.io/apimachinery 0.26.3 0.29.3
k8s.io/client-go 0.26.3 0.29.3
sigs.k8s.io/controller-runtime 0.14.6 0.17.2
sigs.k8s.io/external-dns 0.13.5 0.14.1
sigs.k8s.io/yaml 1.3.0 1.4.0

Updates github.com/traefik/traefik/v2 from 2.10.5 to 2.11.0

Release notes

Sourced from github.com/traefik/traefik/v2's releases.

v2.11.0

Enhancements:

Bug fixes:

  • [acme] Update go-acme/lego to v4.15.0 (#10392 by ldez)
  • [authentication] Fix NTLM and Kerberos (#10405 by juliens)
  • [file] Fix file watcher (#10420 by juliens)
  • [file] Update github.com/fsnotify/fsnotify to v1.7.0 (#10313 by ldez)
  • [http3] Update quic-go to v0.40.1 (#10296 by ldez)
  • [middleware,tcp] Add missing TCP IPAllowList middleware constructor (#10331 by youkoulayley)
  • [nomad] Update the Nomad API dependency to v1.7.2 (#10327 by jrasell)
  • [server] Fix ReadHeaderTimeout for PROXY protocol (#10320 by juliens)
  • [webui] Fixes the Header Button (#10395 by mdeliatf)
  • [webui] Fix URL encode resource's id before calling API endpoints (#10292 by andsarr)

Documentation:

v2.11.0-rc2

Bug fixes:

  • [middleware,tcp] Add missing TCP IPAllowList middleware constructor (#10331 by youkoulayley)
  • [nomad] Update the Nomad API dependency to v1.7.2 (#10327 by jrasell)

Documentation:

v2.11.0-rc1

Enhancements:

Bug fixes:

  • [file] Update github.com/fsnotify/fsnotify to v1.7.0 (#10313 by ldez)

... (truncated)

Changelog

Sourced from github.com/traefik/traefik/v2's changelog.

v2.11.0 (2024-02-12)

All Commits

Enhancements:

Bug fixes:

  • [acme] Update go-acme/lego to v4.15.0 (#10392 by ldez)
  • [authentication] Fix NTLM and Kerberos (#10405 by juliens)
  • [file] Fix file watcher (#10420 by juliens)
  • [file] Update github.com/fsnotify/fsnotify to v1.7.0 (#10313 by ldez)
  • [http3] Update quic-go to v0.40.1 (#10296 by ldez)
  • [middleware,tcp] Add missing TCP IPAllowList middleware constructor (#10331 by youkoulayley)
  • [nomad] Update the Nomad API dependency to v1.7.2 (#10327 by jrasell)
  • [server] Fix ReadHeaderTimeout for PROXY protocol (#10320 by juliens)
  • [webui] Fixes the Header Button (#10395 by mdeliatf)
  • [webui] Fix URL encode resource's id before calling API endpoints (#10292 by andsarr)

Documentation:

v2.11.0-rc2 (2024-01-24)

All Commits

Bug fixes:

  • [middleware,tcp] Add missing TCP IPAllowList middleware constructor (#10331 by youkoulayley)
  • [nomad] Update the Nomad API dependency to v1.7.2 (#10327 by jrasell)

Documentation:

v2.11.0-rc1 (2024-01-02)

All Commits

Enhancements:

  • [middleware] Deprecate IPWhiteList middleware in favor of IPAllowList (#10249 by lbenguigui)

... (truncated)

Commits
  • 0c87786 Prepare release v2.11.0
  • 8f29398 Update the documentation for RateLimit to provide a better example
  • 676de5f Fix file watcher
  • d5cb9b5 Update to go1.22
  • e11ff98 Fix NTLM and Kerberos
  • 8f9ad16 chore: Upgrade Node.js version
  • 5d8b194 fix: upgrade actions/upload-artifact to v4
  • f1104ad Fixes the Header Button
  • 3ba3ca6 Fix the keepAlive options for the CLI examples
  • 4d53927 docs: include ECS as supported backend
  • Additional commits viewable in compare view


Updates k8s.io/api from 0.26.3 to 0.29.3

Commits
  • 067c548 Update dependencies to v0.29.3 tag
  • f98a503 Merge pull request #123763 from liggitt/proto-1.29
  • 1e39277 [CVE-2024-24786] Bump github.com/golang/protobuf v1.5.4, google.golang.org/pr...
  • f5eca04 Merge pull request #122959RomanBednar/automated-cherry-pick-of-#122728
  • fd1786f flag PersistentVolumeLastPhaseTransitionTime field as beta
  • a48c0a4 Merge pull request #122429 from MadhavJivrajani/tools-bump-129
  • 656e18f .*: bump golang.org/x/tools to v0.16.1
  • 0d77c34 Merge remote-tracking branch 'origin/master' into release-1.29
  • bb0a75c add beta comment for pod replacement policy
  • 0099855 update go.mod
  • Additional commits viewable in compare view


Updates k8s.io/apimachinery from 0.26.3 to 0.29.3

Commits
  • d794766 Merge pull request #123763 from liggitt/proto-1.29
  • 9b124b1 [CVE-2024-24786] Bump github.com/golang/protobuf v1.5.4, google.golang.org/pr...
  • dc7e034 Merge pull request #122429 from MadhavJivrajani/tools-bump-129
  • 7d94fef .*: bump golang.org/x/tools to v0.16.1
  • 3c8c1f2 update go.mod
  • 12dc3f8 Merge pull request #113374 from ahmedtd/kep-3257-projected-types
  • 03a1b4b LRUExpireCache: Allow removing multiple keys under lock
  • bc0a03b Merge pull request #119762 from AxeZhan/PollUntilContextCancel
  • 16d50e6 Merge pull request #121552 from pohly/klog-update
  • 6b13b03 dependencies: klog v2.110.1
  • Additional commits viewable in compare view


Updates k8s.io/client-go from 0.26.3 to 0.29.3

Commits
  • 46588f2 Update dependencies to v0.29.3 tag
  • 403b37f Merge pull request #123763 from liggitt/proto-1.29
  • 92199ae [CVE-2024-24786] Bump github.com/golang/protobuf v1.5.4, google.golang.org/pr...
  • baea19d Merge pull request #122429 from MadhavJivrajani/tools-bump-129
  • 3373afd .*: bump golang.org/x/tools to v0.16.1
  • 288368e update go.mod
  • 86d49e7 Merge pull request #113374 from ahmedtd/kep-3257-projected-types
  • 59c256a Regenerate for ClusterTrustBundlePEM projected volume API
  • ac369c3 Define ClusterTrustBundlePEM projected volume
  • 66e57f7 Merge pull request #121552 from pohly/klog-update
  • Additional commits viewable in compare view


Updates sigs.k8s.io/controller-runtime from 0.14.6 to 0.17.2

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.17.2

What's Changed

Full Changelog: https://github.com/kubernetes-sigs/controller-runtime/compare/v0.17.1...v0.17.2

v0.17.1

What's Changed

Full Changelog: https://github.com/kubernetes-sigs/controller-runtime/compare/v0.17.0...v0.17.1

v0.17.0

:warning: Breaking Changes

  • Fake client: Only set TypeMeta for unstructured (#2633)
  • Update k8s.io/* deps to 1.29 (#2457 #2500 #2553 #2588 #2612 #2615 #2621)
  • Remove apiutil.NewDiscoveryRESTMapper, use DynamicRESTMapper by default for cache (#2611)
  • RESTMapper: don't treat non-existing GroupVersions as errors (#2571)
  • Webhooks: Deprecate admission.Validator and admission.Defaulter (#2639)
  • Webhooks: Limit size of AdmissionRequests to 7MB and size of TokenReviews to 1MB (#2598)

:sparkles: New Features

  • Cache: Allow defining options that apply to all namespaces without explicit config (#2528)
  • Cache: Allow to remove informers (#2285)
  • Cache: Add option to set WatchErrorHandler on informers (#2494)
  • Client: client.MatchingFields now supports multiple indexes (#2512)
  • Fake client: Add flowcontrol api v1 (#2623)
  • Reconciler: Add reconcile.ObjectReconciler (#2592)

:bug: Bug Fixes

  • Add corev1, coordinationv1 scheme for leader election when LeaderElection manager option is true (#2461)
  • Cache: Default namespace only for namespaced object (#2480)
  • Client: Don't truncate large int64s in MergePatch (#2650)
  • controllerutil: Add RemoveControllerReference and HasControllerReference func (#2509 #2595)
  • controllerutil: Add RemoveOwnerReference func (#2462)
  • Dependencies: Refactor tests to drop hard otel dependency (#2460)
  • Envtest: CRDs that aren't convertible should unset spec.conversion (#2525)
  • Fake client: Correctly identify if patch call was made on status (#2508)
  • Fake client: Do not update anything but status when using subresource client (#2479)
  • Fake client: Fix returning object after status update (#2489)
  • Fake client: Fix status subresource getting updated on Update when it is empty (#2484)
  • Fake client: Handle unstructured status update with fake client (#2495)

... (truncated)

Commits
  • d0396a3 Merge pull request #2688 from k8s-infra-cherrypick-robot/cherry-pick-2687-to-...
  • 565aa5b Fix lazy rest mapper cache invalidation
  • 59c26c0 Merge pull request #2681 from k8s-infra-cherrypick-robot/cherry-pick-2679-to-...
  • 984aee6 bug: Fakeclient: Do not consider an apply patch to be a strategic merge patch
  • 5923139 Merge pull request #2676 from k8s-infra-cherrypick-robot/cherry-pick-2663-to-...
  • 0811bad Address review comments
  • 40b41df Clean restmapper cache if a version is notFound
  • 11e5a5e Merge pull request #2651 from kubernetes-sigs/dependabot/go_modules/github.co...
  • 66939d4 Merge pull request #2655 from joelanford/bump-apidiff
  • 672d678 bump go-apidiff to v0.8.2
  • Additional commits viewable in compare view


Updates sigs.k8s.io/external-dns from 0.13.5 to 0.14.1

Release notes

Sourced from sigs.k8s.io/external-dns's releases.

v0.14.1

What's Changed

... (truncated)

Changelog

Sourced from sigs.k8s.io/external-dns's changelog.

Release

Release cycle

Currently we don't release regularly. Whenever we think it makes sense to release a new version we do it, but we aim to do a new release every month. You might want to ask in our Slack channel external-dns when the next release will come out.

Versioning convention

These are the conventions that we will be using for releases following 0.7.6:

  • Patch version should be updated if we need to merge bugfixes, e.g. provider a does need a fix in order make updates working again. I would see updating or improving documentation here.

  • Minor version should be updated if new features are implemented in existing providers or new provider get introduced.

  • Major version should be upgraded if we introduce breaking changes.

How to release a new image

Prerequisite

We use https://github.com/cli/cli to automate the release process. Please install it according to the official documentation.

You must be an official maintainer of the project to be able to do a release.

Steps

  • Run scripts/releaser.sh to create a new GitHub release. Alternatively you can create a release in the GitHub UI making sure to click on the autogenerate release node feature.
  • The step above will trigger the Kubernetes based CI/CD system Prow. Verify that a new image was built and uploaded to gcr.io/k8s-staging-external-dns/external-dns.
  • Create a PR in the k8s.io repo (see kubernetes/k8s.io#540 for reference) by taking the current staging image using the sha256 digest. Once the PR is merged, the image will be live with the corresponding tag specified in the PR.
  • Verify that the image is pullable with the given tag (i.e. v0.7.5).
  • Branch out from the default branch and run scripts/kustomize-version-updater.sh to update the image tag used in the kustomization.yaml.
  • Create an issue to release the corresponding Helm chart via the chart release process (below) assigned to a chart maintainer
  • Create a PR with the kustomize change.
  • Create a PR to replace all versions for docker images in the tutorials. A possible script to use is `sd registry.k8s.io/external-dns/external-dns:v0.14.1
  • Once the PR is merged, all is done :-)

How to release a new chart version

The chart needs to be released in response to an ExternalDNS image release or on an as-needed basis; this should be triggered by an issue to release the chart.

Steps

  • Create a PR to update Chart.yaml with the ExternalDNS version in appVersion, agreed on chart release version in version and annotations showing the changes
  • Validate that the chart linting is successful
  • Merge the PR to trigger a GitHub action to release the chart
Commits
  • d07a03c Merge pull request #4321 from kubernetes-sigs/dependabot/go_modules/dev-depen...
  • e38f0a9 build(deps): bump the dev-dependencies group with 14 updates
  • 573cb2d Merge pull request #4314 from kubernetes-sigs/dependabot/github_actions/dev-d...
  • 82bb401 Merge pull request #4313 from kubernetes-sigs/dependabot/go_modules/dev-depen...
  • 93a046f build(deps): bump the dev-dependencies group with 2 updates
  • 6b7c16b build(deps): bump the dev-dependencies group with 8 updates
  • 3a2da65 Merge pull request #4120 from fad3t/feat-amb-provider-specific
  • 76521d5 Merge pull request #4312 from kubernetes-sigs/dependabot/go_modules/dev-depen...
  • 4eb312b build(deps): bump the dev-dependencies group with 6 updates
  • 0660f10 Merge pull request #4307 from kubernetes-sigs/dependabot/go_modules/dev-depen...
  • Additional commits viewable in compare view


Updates sigs.k8s.io/yaml from 1.3.0 to 1.4.0

Release notes

Sourced from sigs.k8s.io/yaml's releases.

v1.4.0

  • Adds a goyaml.v2 subpackage containing a fork of gopkg.in/yaml.v2 at v2.4.0
  • Adds a goyaml.v3 subpackage containing a fork of gopkg.in/yaml.v3 at v3.0.1
  • Adds an Encoder#CompactSeqIndent() encoder option to sigs.k8.io/goyaml.v3 to allow opting into indentation compatible with gopkg.in/yaml.v2
Commits
  • c3772b5 Merge pull request #97 from liggitt/owners
  • 604031b Update owners
  • eead467 Merge pull request #76 from natasha41575/go-yaml-fork
  • f2c0229 add test demonstrating consistency between yaml.v2 and yaml.v3
  • 20d25fa update LICENSE, owners, and readmes
  • a7b5665 exclude forked libs from golint
  • b6d8b45 fix leading newline issue
  • 330e1e5 make sequence style configurable
  • 70ebea7 change import paths to forked yaml libs
  • b96582b fork go-yaml v2 and v3
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
borchero commented 6 months ago

@dependabot rebase

dependabot[bot] commented 6 months ago

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

borchero commented 6 months ago

@dependabot recreate