search

defenseunicorns / build-harness

A docker container that contains a bunch of tools, meant to be used in build/test automation.
Apache License 2.0
6 stars 1 forks source link

chore(deps): update stable #257

Closed renovate[bot] closed 2 months ago

renovate[bot] commented 2 months ago

Mend Renovate

This PR contains the following updates:

Package Update Change
anchore/grype minor 0.74.7 -> 0.76.0
anchore/syft minor 1.1.0 -> 1.2.0
awscli patch 2.15.33 -> 2.15.38
checkov patch 3.2.49 -> 3.2.70
dagger/dagger minor 0.10.3 -> 0.11.1
defenseunicorns/uds-cli patch 0.10.1 -> 0.10.4
defenseunicorns/zarf minor 0.32.6 -> 0.33.0
golang patch 1.22.1 -> 1.22.2
golangci-lint patch 1.57.1 -> 1.57.2
helm patch 3.14.3 -> 3.14.4
https://github.com/bridgecrewio/checkov.git patch 3.2.49 -> 3.2.70
k3d-io/k3d patch 5.6.0 -> 5.6.3
kubectl patch 1.29.3 -> 1.29.4

Release Notes

anchore/grype (anchore/grype) ### [`v0.76.0`](https://togithub.com/anchore/grype/releases/tag/v0.76.0) [Compare Source](https://togithub.com/anchore/grype/compare/v0.75.0...v0.76.0) ##### Added Features - Database download timeouts \[[#​1731](https://togithub.com/anchore/grype/issues/1731) [#​1777](https://togithub.com/anchore/grype/issues/1777) [@​willmurphyscode](https://togithub.com/willmurphyscode)] ##### Bug Fixes - Disable matching kernel vulnerabilities by default for indirect matches against the 'kernel-headers' packages \[[#​1762](https://togithub.com/anchore/grype/issues/1762) [#​1787](https://togithub.com/anchore/grype/pull/1787) [@​zhill](https://togithub.com/zhill)] ##### Additional Changes - Update Syft to v1.2.0 \[[#​1803](https://togithub.com/anchore/grype/pull/1803)], which fixes [https://github.com/anchore/grype/issues/1792](https://togithub.com/anchore/grype/issues/1792) **[(Full Changelog)](https://togithub.com/anchore/grype/compare/v0.75.0...v0.76.0)** ### [`v0.75.0`](https://togithub.com/anchore/grype/releases/tag/v0.75.0) [Compare Source](https://togithub.com/anchore/grype/compare/v0.74.7...v0.75.0) ##### Added Features - update syft source providers \[[#​1727](https://togithub.com/anchore/grype/pull/1727) [@​kzantow](https://togithub.com/kzantow)] - enable http timeout \[[#​1777](https://togithub.com/anchore/grype/pull/1777) [@​willmurphyscode](https://togithub.com/willmurphyscode)] ##### Bug Fixes - use "path/filepath" to build file path \[[#​1767](https://togithub.com/anchore/grype/pull/1767) [@​seiyab](https://togithub.com/seiyab)] - Suppress warnings when matching go packages with `devel` version \[[#​1752](https://togithub.com/anchore/grype/pull/1752) [@​wagoodman](https://togithub.com/wagoodman)] - not showing poco CVEs from syft generated sbom \[[#​1737](https://togithub.com/anchore/grype/issues/1737)] **[(Full Changelog)](https://togithub.com/anchore/grype/compare/v0.74.7...v0.75.0)**
anchore/syft (anchore/syft) ### [`v1.2.0`](https://togithub.com/anchore/syft/releases/tag/v1.2.0) [Compare Source](https://togithub.com/anchore/syft/compare/v1.1.1...v1.2.0) ##### Added Features - Differentiate between JRE and JDK \[[#​2748](https://togithub.com/anchore/syft/pull/2748) [@​LaurentGoderre](https://togithub.com/LaurentGoderre)] - Add support for dnf packages \[[#​2758](https://togithub.com/anchore/syft/issues/2758)] ##### Bug Fixes - more robust go main version extraction \[[#​2767](https://togithub.com/anchore/syft/pull/2767) [@​kzantow](https://togithub.com/kzantow)] - Regression in 1.1 cataloging openjdk: generates version containing a null byte \[[#​2750](https://togithub.com/anchore/syft/issues/2750) [#​2766](https://togithub.com/anchore/syft/pull/2766) [@​LaurentGoderre](https://togithub.com/LaurentGoderre)] **[(Full Changelog)](https://togithub.com/anchore/syft/compare/v1.1.1...v1.2.0)** ### [`v1.1.1`](https://togithub.com/anchore/syft/releases/tag/v1.1.1) [Compare Source](https://togithub.com/anchore/syft/compare/v1.1.0...v1.1.1) ##### Bug Fixes - update anchore/packageurl-go to use latest commits \[[#​2746](https://togithub.com/anchore/syft/pull/2746) [@​spiffcs](https://togithub.com/spiffcs)] - fix panic scanning binaries without symtab \[[#​2736](https://togithub.com/anchore/syft/issues/2736) [#​2739](https://togithub.com/anchore/syft/pull/2739) [@​kzantow](https://togithub.com/kzantow)] **[(Full Changelog)](https://togithub.com/anchore/syft/compare/v1.1.0...v1.1.1)**
aws/aws-cli (awscli) ### [`v2.15.38`](https://togithub.com/aws/aws-cli/compare/2.15.37...2.15.38) [Compare Source](https://togithub.com/aws/aws-cli/compare/2.15.37...2.15.38) ### [`v2.15.37`](https://togithub.com/aws/aws-cli/compare/2.15.36...2.15.37) [Compare Source](https://togithub.com/aws/aws-cli/compare/2.15.36...2.15.37) ### [`v2.15.36`](https://togithub.com/aws/aws-cli/compare/2.15.35...2.15.36) [Compare Source](https://togithub.com/aws/aws-cli/compare/2.15.35...2.15.36) ### [`v2.15.35`](https://togithub.com/aws/aws-cli/compare/2.15.34...2.15.35) [Compare Source](https://togithub.com/aws/aws-cli/compare/2.15.34...2.15.35) ### [`v2.15.34`](https://togithub.com/aws/aws-cli/compare/2.15.33...2.15.34) [Compare Source](https://togithub.com/aws/aws-cli/compare/2.15.33...2.15.34)
bridgecrewio/checkov (checkov) ### [`v3.2.70`](https://togithub.com/bridgecrewio/checkov/compare/3.2.69...3.2.70) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.69...3.2.70) ### [`v3.2.69`](https://togithub.com/bridgecrewio/checkov/compare/3.2.68...3.2.69) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.68...3.2.69) ### [`v3.2.68`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.68) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.67...3.2.68) #### Feature - **sast:** adding extended code block - [#​6178](https://togithub.com/bridgecrewio/checkov/pull/6178) - **sca:** using the new api license/get-licenses-violations instead of packages/get-licenses-violations (which is deprecated) - [#​6174](https://togithub.com/bridgecrewio/checkov/pull/6174) #### Bug Fix - **sca:** Revert "feat(sca): using the new api license/get-licenses-violations … - [#​6176](https://togithub.com/bridgecrewio/checkov/pull/6176) ### [`v3.2.67`](https://togithub.com/bridgecrewio/checkov/compare/3.2.66...3.2.67) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.66...3.2.67) ### [`v3.2.66`](https://togithub.com/bridgecrewio/checkov/compare/3.2.65...3.2.66) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.65...3.2.66) ### [`v3.2.65`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.65) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.64...3.2.65) #### Bug Fix - **sast:** save suppress_comment for sast inline suppressions - [#​6171](https://togithub.com/bridgecrewio/checkov/pull/6171) - **secrets:** Azure Storage Key detector updates in bc-detect-secrets 1.5.7 - [#​6168](https://togithub.com/bridgecrewio/checkov/pull/6168) ### [`v3.2.64`](https://togithub.com/bridgecrewio/checkov/compare/3.2.63...3.2.64) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.63...3.2.64) ### [`v3.2.63`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.63) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.62...3.2.63) #### Feature - **sast:** CDK TS policies p2 - [#​6165](https://togithub.com/bridgecrewio/checkov/pull/6165) ### [`v3.2.62`](https://togithub.com/bridgecrewio/checkov/compare/3.2.61...3.2.62) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.61...3.2.62) ### [`v3.2.61`](https://togithub.com/bridgecrewio/checkov/compare/3.2.60...3.2.61) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.60...3.2.61) ### [`v3.2.60`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.60) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.59...3.2.60) #### Feature - **sast:** Add TS CDK policies 1 - [#​6151](https://togithub.com/bridgecrewio/checkov/pull/6151) - **sast:** CDK TS policies p3 - [#​6157](https://togithub.com/bridgecrewio/checkov/pull/6157) #### Bug Fix - **terraform:** Fix conditional expression evaluation logic with compare - [#​6160](https://togithub.com/bridgecrewio/checkov/pull/6160) - **terraform:** Fixed flaky test for CKV_AWS\_356 - [#​6162](https://togithub.com/bridgecrewio/checkov/pull/6162) ### [`v3.2.59`](https://togithub.com/bridgecrewio/checkov/compare/3.2.58...3.2.59) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.58...3.2.59) ### [`v3.2.58`](https://togithub.com/bridgecrewio/checkov/compare/3.2.57...3.2.58) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.57...3.2.58) ### [`v3.2.57`](https://togithub.com/bridgecrewio/checkov/compare/3.2.56...3.2.57) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.56...3.2.57) ### [`v3.2.56`](https://togithub.com/bridgecrewio/checkov/compare/3.2.55...3.2.56) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.55...3.2.56) ### [`v3.2.55`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.55) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.54...3.2.55) #### Feature - **sast:** Adding typescript cdk part 6 paz - [#​6149](https://togithub.com/bridgecrewio/checkov/pull/6149) #### Bug Fix - **sca:** enabling suppression in the cli-output for IR-files and dockerfiles - [#​6148](https://togithub.com/bridgecrewio/checkov/pull/6148) ### [`v3.2.54`](https://togithub.com/bridgecrewio/checkov/compare/3.2.53...3.2.54) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.53...3.2.54) ### [`v3.2.53`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.53) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.52...3.2.53) #### Feature - **terraform:** support s3 bucket name for references in graph - [#​6134](https://togithub.com/bridgecrewio/checkov/pull/6134) ### [`v3.2.52`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.52) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.51...3.2.52) #### Feature - **general:** Update the releases' zip file names to be generic - [#​6141](https://togithub.com/bridgecrewio/checkov/pull/6141) ### [`v3.2.51`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.51) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.50...3.2.51) #### Feature - **general:** add policy metadata filter exception flag - [#​6132](https://togithub.com/bridgecrewio/checkov/pull/6132) ### [`v3.2.50`](https://togithub.com/bridgecrewio/checkov/releases/tag/3.2.50) [Compare Source](https://togithub.com/bridgecrewio/checkov/compare/3.2.49...3.2.50) #### Bug Fix - **general:** remove limitation of resource and provider in tf.json file - [#​6133](https://togithub.com/bridgecrewio/checkov/pull/6133)
dagger/dagger (dagger/dagger) ### [`v0.11.1`](https://togithub.com/dagger/dagger/blob/HEAD/CHANGELOG.md#v0111---2024-04-16) [Compare Source](https://togithub.com/dagger/dagger/compare/v0.11.0...v0.11.1) ##### Added - Add `withAuthToken` and `withAuthHeader` fields to `GitRepository` by [@​jedevc](https://togithub.com/jedevc) in [https://github.com/dagger/dagger/pull/6992](https://togithub.com/dagger/dagger/pull/6992) ##### Fixed - Restored `plain` progress output after removal in v0.11.0 by [@​morlay](https://togithub.com/morlay) in [https://github.com/dagger/dagger/pull/7069](https://togithub.com/dagger/dagger/pull/7069) - Fixed various windows regressions by [@​jedevc](https://togithub.com/jedevc) in [https://github.com/dagger/dagger/pull/7003](https://togithub.com/dagger/dagger/pull/7003) [https://github.com/dagger/dagger/pull/7050](https://togithub.com/dagger/dagger/pull/7050) [https://github.com/dagger/dagger/pull/7095](https://togithub.com/dagger/dagger/pull/7095) - Git can now be used with dumb HTTP clones by [@​jedevc](https://togithub.com/jedevc) in [https://github.com/dagger/dagger/pull/6992](https://togithub.com/dagger/dagger/pull/6992) ##### What to do next? - Read the [documentation](https://docs.dagger.io) - Join our [Discord server](https://discord.gg/dagger-io) - Follow us on [Twitter](https://twitter.com/dagger_io) ### [`v0.11.0`](https://togithub.com/dagger/dagger/blob/HEAD/CHANGELOG.md#v0110---2024-04-03) [Compare Source](https://togithub.com/dagger/dagger/compare/v0.10.3...v0.11.0) ##### 🔥 Breaking Changes - Old clients <=0.10.3 cannot connect to a new >=v0.11.0 engine - Old progress interfaces removed by [@​vito](https://togithub.com/vito) in [https://github.com/dagger/dagger/pull/6835](https://togithub.com/dagger/dagger/pull/6835) - `--focus` CLI flag removed by [@​vito](https://togithub.com/vito) in [https://github.com/dagger/dagger/pull/6835](https://togithub.com/dagger/dagger/pull/6835) ##### Added - Add OTEL trace exports by [@​vito](https://togithub.com/vito) in [https://github.com/dagger/dagger/pull/6835](https://togithub.com/dagger/dagger/pull/6835) - Add `Head` field to `GitRepository` to get the default branch by [@​jedevc](https://togithub.com/jedevc) in [https://github.com/dagger/dagger/pull/6994](https://togithub.com/dagger/dagger/pull/6994) ##### Fixed - Fix `DOCKER_HOST` not working when `DAGGER_CLOUD_TOKEN` set by [@​sipsma](https://togithub.com/sipsma) in [https://github.com/dagger/dagger/pull/7006](https://togithub.com/dagger/dagger/pull/7006) ##### What to do next? - Read the [documentation](https://docs.dagger.io) - Join our [Discord server](https://discord.gg/dagger-io) - Follow us on [Twitter](https://twitter.com/dagger_io)
defenseunicorns/uds-cli (defenseunicorns/uds-cli) ### [`v0.10.4`](https://togithub.com/defenseunicorns/uds-cli/releases/tag/v0.10.4) [Compare Source](https://togithub.com/defenseunicorns/uds-cli/compare/v0.10.3...v0.10.4) #### What's Changed - feat: uds dev deploy by [@​decleaver](https://togithub.com/decleaver) in [https://github.com/defenseunicorns/uds-cli/pull/536](https://togithub.com/defenseunicorns/uds-cli/pull/536) - feat: add ability to uds create to local output path by [@​TristanHoladay](https://togithub.com/TristanHoladay) in [https://github.com/defenseunicorns/uds-cli/pull/547](https://togithub.com/defenseunicorns/uds-cli/pull/547) - chore: adds dup pkgs docs by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/545](https://togithub.com/defenseunicorns/uds-cli/pull/545) - feat: `uds dev deploy` beta note, packages flag, skip sbom by [@​decleaver](https://togithub.com/decleaver) in [https://github.com/defenseunicorns/uds-cli/pull/557](https://togithub.com/defenseunicorns/uds-cli/pull/557) - ci: pin k3s version in k3d action to sidestep containerd issue by [@​ZachGallagher](https://togithub.com/ZachGallagher) in [https://github.com/defenseunicorns/uds-cli/pull/565](https://togithub.com/defenseunicorns/uds-cli/pull/565) - chore(deps): update docker/setup-buildx-action action to v3.3.0 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/559](https://togithub.com/defenseunicorns/uds-cli/pull/559) - chore(deps): update github/codeql-action action to v3.24.10 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/556](https://togithub.com/defenseunicorns/uds-cli/pull/556) - fix(deps): update golang.org/x/exp digest to [`93d18d7`](https://togithub.com/defenseunicorns/uds-cli/commit/93d18d7) by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/555](https://togithub.com/defenseunicorns/uds-cli/pull/555) - fix: typo in docs by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/561](https://togithub.com/defenseunicorns/uds-cli/pull/561) - chore(deps): update zarf to v0.33.0 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/562](https://togithub.com/defenseunicorns/uds-cli/pull/562) - fix(deps): update module helm.sh/helm/v3 to v3.14.4 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/566](https://togithub.com/defenseunicorns/uds-cli/pull/566) - chore(deps): update pre-commit/action digest to [`f7acafa`](https://togithub.com/defenseunicorns/uds-cli/commit/f7acafa) by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/564](https://togithub.com/defenseunicorns/uds-cli/pull/564) - chore(deps): update podinfo to v6.6.2 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/563](https://togithub.com/defenseunicorns/uds-cli/pull/563) - chore(deps): update sigstore/cosign-installer action to v3.5.0 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/568](https://togithub.com/defenseunicorns/uds-cli/pull/568) - chore: refactor dev mode docs by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/567](https://togithub.com/defenseunicorns/uds-cli/pull/567) - chore: swap release workflow to GH app by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/569](https://togithub.com/defenseunicorns/uds-cli/pull/569) #### New Contributors - [@​ZachGallagher](https://togithub.com/ZachGallagher) made their first contribution in [https://github.com/defenseunicorns/uds-cli/pull/565](https://togithub.com/defenseunicorns/uds-cli/pull/565) **Full Changelog**: https://github.com/defenseunicorns/uds-cli/compare/v0.10.3...v0.10.4 ### [`v0.10.3`](https://togithub.com/defenseunicorns/uds-cli/releases/tag/v0.10.3) [Compare Source](https://togithub.com/defenseunicorns/uds-cli/compare/v0.10.2...v0.10.3) #### What's Changed - fix: ensure we are pulling all components by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/543](https://togithub.com/defenseunicorns/uds-cli/pull/543) - feat: allow dup pkgs in a bundle by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/533](https://togithub.com/defenseunicorns/uds-cli/pull/533) **Full Changelog**: https://github.com/defenseunicorns/uds-cli/compare/v0.10.2...v0.10.3 ### [`v0.10.2`](https://togithub.com/defenseunicorns/uds-cli/releases/tag/v0.10.2) [Compare Source](https://togithub.com/defenseunicorns/uds-cli/compare/v0.10.1...v0.10.2) #### What's Changed - chore: adds TUI tests by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/530](https://togithub.com/defenseunicorns/uds-cli/pull/530) - feat: adds retries flag by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/532](https://togithub.com/defenseunicorns/uds-cli/pull/532) - chore(deps): update podinfo to v6.6.1 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/uds-cli/pull/528](https://togithub.com/defenseunicorns/uds-cli/pull/528) - fix: nil check pkg components in TUI by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/538](https://togithub.com/defenseunicorns/uds-cli/pull/538) - fix: bumps retries to 3 by default to match Zarf by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/535](https://togithub.com/defenseunicorns/uds-cli/pull/535) - chore: adds registry health check for tests by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/534](https://togithub.com/defenseunicorns/uds-cli/pull/534) - feat: enables setting namespaces in bundled Helm charts by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/539](https://togithub.com/defenseunicorns/uds-cli/pull/539) - fix: adds global GracefulPanic and checks to deploy TUI by [@​UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/uds-cli/pull/542](https://togithub.com/defenseunicorns/uds-cli/pull/542) **Full Changelog**: https://github.com/defenseunicorns/uds-cli/compare/v0.10.1...v0.10.2
defenseunicorns/zarf (defenseunicorns/zarf) ### [`v0.33.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.0) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.6...v0.33.0) #### What's Changed - fix: update deprecated syft packages command to syft scan by [@​lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2399](https://togithub.com/defenseunicorns/zarf/pull/2399) - chore: move helpers to defenseunicorns/pkg by [@​AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2402](https://togithub.com/defenseunicorns/zarf/pull/2402) - fix(deps): update github.com/anchore/clio digest to [`fb5fc4c`](https://togithub.com/defenseunicorns/zarf/commit/fb5fc4c) by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2366](https://togithub.com/defenseunicorns/zarf/pull/2366) - feat(tools): add yq by [@​zachariahmiller](https://togithub.com/zachariahmiller) in [https://github.com/defenseunicorns/zarf/pull/2406](https://togithub.com/defenseunicorns/zarf/pull/2406) - chore: switch to use oci lib in defenseunicorns/pkg by [@​AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2404](https://togithub.com/defenseunicorns/zarf/pull/2404) - fix(deps): update module github.com/defenseunicorns/pkg/helpers to v1 by [@​renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2411](https://togithub.com/defenseunicorns/zarf/pull/2411) - fix: use env var for PR title in commitlint workflow to prevent untrusted script injection by [@​lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2418](https://togithub.com/defenseunicorns/zarf/pull/2418) - fix: use default GITHUB_TOKEN for ossf/scorecard-action by [@​bburky](https://togithub.com/bburky) in [https://github.com/defenseunicorns/zarf/pull/2416](https://togithub.com/defenseunicorns/zarf/pull/2416) - fix: remove duplicate logic for writing image layers to disk concurrently by [@​lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2409](https://togithub.com/defenseunicorns/zarf/pull/2409) - feat: add option to skip cosign lookup during find images by [@​Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2427](https://togithub.com/defenseunicorns/zarf/pull/2427) - feat: allow chart deploy overrides ALPHA by [@​naveensrinivasan](https://togithub.com/naveensrinivasan) in [https://github.com/defenseunicorns/zarf/pull/2403](https://togithub.com/defenseunicorns/zarf/pull/2403) - chore: update pull_request_template.md by [@​Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2428](https://togithub.com/defenseunicorns/zarf/pull/2428) - ci: pin k3s image version in k3d github action by [@​lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2430](https://togithub.com/defenseunicorns/zarf/pull/2430) - feat(docs): port docs to starlight by [@​Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2315](https://togithub.com/defenseunicorns/zarf/pull/2315) #### New Contributors - [@​zachariahmiller](https://togithub.com/zachariahmiller) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2406](https://togithub.com/defenseunicorns/zarf/pull/2406) - [@​bburky](https://togithub.com/bburky) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2416](https://togithub.com/defenseunicorns/zarf/pull/2416) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.6...v0.33.0
golang/go (golang) ### [`v1.22.2`](https://togithub.com/golang/go/compare/go1.22.1...go1.22.2) [Compare Source](https://togithub.com/golang/go/compare/go1.22.1...go1.22.2)
golangci/golangci-lint (golangci-lint) ### [`v1.57.2`](https://togithub.com/golangci/golangci-lint/blob/HEAD/CHANGELOG.md#v1572) [Compare Source](https://togithub.com/golangci/golangci-lint/compare/v1.57.1...v1.57.2) 1. Updated linters - `contextcheck`: from 1.1.4 to 1.1.5 - `copyloopvar`: from 1.0.8 to 1.0.10 - `ginkgolinter`: from 0.16.1 to 0.16.2 - `goconst`: from 1.7.0 to 1.7.1 - `gomoddirectives`: from 0.2.3 to 0.2.4 - `intrange`: from 0.1.0 to 0.1.1 2. Misc. - fix: display warnings on deprecated linter options - fix: missing `colored-tab` output format - fix: TeamCity `inspectionType` service message 3. Documentation - Remove invalid example about mixing files and directory - Improve linters page
helm/helm (helm) ### [`v3.14.4`](https://togithub.com/helm/helm/releases/tag/v3.14.4): Helm v3.14.4 [Compare Source](https://togithub.com/helm/helm/compare/v3.14.3...v3.14.4) Helm v3.14.4 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience. The community keeps growing, and we'd love to see you there! - Join the discussion in [Kubernetes Slack](https://kubernetes.slack.com): - for questions and just to hang out - for discussing PRs, code, and bugs - Hang out at the Public Developer Call: Thursday, 9:30 Pacific via [Zoom](https://zoom.us/j/696660622) - Test, debug, and contribute charts: [ArtifactHub/packages](https://artifacthub.io/packages/search?kind=0) #### Installation and Upgrading Download Helm v3.14.4. The common platform binaries are here: - [MacOS amd64](https://get.helm.sh/helm-v3.14.4-darwin-amd64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-darwin-amd64.tar.gz.sha256sum) / 73434aeac36ad068ce2e5582b8851a286dc628eae16494a26e2ad0b24a7199f9) - [MacOS arm64](https://get.helm.sh/helm-v3.14.4-darwin-arm64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-darwin-arm64.tar.gz.sha256sum) / 61e9c5455f06b2ad0a1280975bf65892e707adc19d766b0cf4e9006e3b7b4b6c) - [Linux amd64](https://get.helm.sh/helm-v3.14.4-linux-amd64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-amd64.tar.gz.sha256sum) / a5844ef2c38ef6ddf3b5a8f7d91e7e0e8ebc39a38bb3fc8013d629c1ef29c259) - [Linux arm](https://get.helm.sh/helm-v3.14.4-linux-arm.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-arm.tar.gz.sha256sum) / 962297c944c06e1f275111a6e3d80e37c9e9e8fed967d4abec8efcf7fc9fb260) - [Linux arm64](https://get.helm.sh/helm-v3.14.4-linux-arm64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-arm64.tar.gz.sha256sum) / 113ccc53b7c57c2aba0cd0aa560b5500841b18b5210d78641acfddc53dac8ab2) - [Linux i386](https://get.helm.sh/helm-v3.14.4-linux-386.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-386.tar.gz.sha256sum) / 2cb3ff032be1c39b7199b324d58d0ae05bc4fe49b9be6aa2fcbeb3fc03f1f9e7) - [Linux ppc64le](https://get.helm.sh/helm-v3.14.4-linux-ppc64le.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-ppc64le.tar.gz.sha256sum) / d0d625b43f6650ad376428520b2238baa2400bfedb43b2e0f24ad7247f0f59b5) - [Linux s390x](https://get.helm.sh/helm-v3.14.4-linux-s390x.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-s390x.tar.gz.sha256sum) / a5750d0cb1ba34ce84ab3be6382a14617130661d15dd2aa1b36630b293437936) - [Linux riscv64](https://get.helm.sh/helm-v3.14.4-linux-riscv64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.14.4-linux-riscv64.tar.gz.sha256sum) / 925782b159392d52df5ebab88e04e695217325894c6a32a9a779e865b7e32411) - [Windows amd64](https://get.helm.sh/helm-v3.14.4-windows-amd64.zip) ([checksum](https://get.helm.sh/helm-v3.14.4-windows-amd64.zip.sha256sum) / 0b951db3eadd92dfe336b5a9ddb0640e5cd70d39abdbd7d3125e9fb59b22b669) This release was signed with ` 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E ` and can be found at [@​mattfarina](https://togithub.com/mattfarina) [keybase account](https://keybase.io/mattfarina). Please use the attached signatures for verifying this release using `gpg`. The [Quickstart Guide](https://helm.sh/docs/intro/quickstart/) will get you going from there. For **upgrade instructions** or detailed installation notes, check the [install guide](https://helm.sh/docs/intro/install/). You can also use a [script to install](https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3) on any system with `bash`. #### What's Next - 3.15.0 is the next feature release and will be on May 08, 2024. #### Changelog - refactor: create a helper for checking if a release is uninstalled [`81c902a`](https://togithub.com/helm/helm/commit/81c902a123462fd4052bc5e9aa9c513c4c8fc142) (Alex Petrov) - fix: reinstall previously uninstalled chart with --keep-history [`5a11c76`](https://togithub.com/helm/helm/commit/5a11c768386dab08ff026fb1001e592ab0a033f8) (Alex Petrov) - chore: remove repetitive words [`fb3d880`](https://togithub.com/helm/helm/commit/fb3d8805f017d898f9e88667829c21874a8f6166) (deterclosed) - chore(deps): bump google.golang.org/protobuf from 1.31.0 to 1.33.0 [`01ac4a2`](https://togithub.com/helm/helm/commit/01ac4a2c36d49e691982f85f4243fe449876fb5d) (dependabot\[bot]) - chore(deps): bump github.com/docker/docker [`138602d`](https://togithub.com/helm/helm/commit/138602da27a6ba67564d298e7b07f5624a341b88) (dependabot\[bot]) - bug: add proxy support for oci getter [`aa7d953`](https://togithub.com/helm/helm/commit/aa7d95333d5fbc1ea9ed20cc56f011c068e004be) (Ricardo Maraschini)
k3d-io/k3d (k3d-io/k3d) ### [`v5.6.3`](https://togithub.com/k3d-io/k3d/releases/tag/v5.6.3) [Compare Source](https://togithub.com/k3d-io/k3d/compare/v5.6.2...v5.6.3) **Full Changelog**: https://github.com/k3d-io/k3d/compare/v5.6.2...v5.6.3 ### [`v5.6.2`](https://togithub.com/k3d-io/k3d/releases/tag/v5.6.2) [Compare Source](https://togithub.com/k3d-io/k3d/compare/v5.6.0...v5.6.2) #### Sponsors :money_with_wings: Thanks for the sponsorship [@​ebauman](https://togithub.com/ebauman) :tada: #### What's Changed - Not using stdout directly for logging by [@​moshe-kabala](https://togithub.com/moshe-kabala) in [https://github.com/k3d-io/k3d/pull/1339](https://togithub.com/k3d-io/k3d/pull/1339) - change: fix docs link by [@​stratusjerry](https://togithub.com/stratusjerry) in [https://github.com/k3d-io/k3d/pull/1343](https://togithub.com/k3d-io/k3d/pull/1343) - change: enable fixes by default and consolidate lookup logic by [@​iwilltry42](https://togithub.com/iwilltry42) in [https://github.com/k3d-io/k3d/pull/1349](https://togithub.com/k3d-io/k3d/pull/1349) - \[DOCS] Add scoop install option by [@​mechanicalbot](https://togithub.com/mechanicalbot) in [https://github.com/k3d-io/k3d/pull/1390](https://togithub.com/k3d-io/k3d/pull/1390) - Consistent logging during cluster creation flow by [@​danielgospodinow](https://togithub.com/danielgospodinow) in [https://github.com/k3d-io/k3d/pull/1398](https://togithub.com/k3d-io/k3d/pull/1398) - feat: support writing kubeconfig to a stream by [@​LinuxSuRen](https://togithub.com/LinuxSuRen) in [https://github.com/k3d-io/k3d/pull/1381](https://togithub.com/k3d-io/k3d/pull/1381) #### New Contributors - [@​moshe-kabala](https://togithub.com/moshe-kabala) made their first contribution in [https://github.com/k3d-io/k3d/pull/1339](https://togithub.com/k3d-io/k3d/pull/1339) - [@​mechanicalbot](https://togithub.com/mechanicalbot) made their first contribution in [https://github.com/k3d-io/k3d/pull/1390](https://togithub.com/k3d-io/k3d/pull/1390) - [@​danielgospodinow](https://togithub.com/danielgospodinow) made their first contribution in [https://github.com/k3d-io/k3d/pull/1398](https://togithub.com/k3d-io/k3d/pull/1398) - [@​LinuxSuRen](https://togithub.com/LinuxSuRen) made their first contribution in [https://github.com/k3d-io/k3d/pull/1381](https://togithub.com/k3d-io/k3d/pull/1381) **Full Changelog**: https://github.com/k3d-io/k3d/compare/v5.6.0...v5.6.2
kubernetes/kubernetes (kubectl) ### [`v1.29.4`](https://togithub.com/kubernetes/kubernetes/releases/tag/v1.29.4): Kubernetes v1.29.4 [Compare Source](https://togithub.com/kubernetes/kubernetes/compare/v1.29.3...v1.29.4) See [kubernetes-announce@](https://groups.google.com/forum/#!forum/kubernetes-announce). Additional binary downloads are linked in the [CHANGELOG](https://togithub.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.29.md). See [the CHANGELOG](https://togithub.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.29.md) for more details.

Configuration

📅 Schedule: Branch creation - "after 9am and before 5pm every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Never, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

This PR has been generated by Mend Renovate. View repository job log here.