gardener-robot
commented
4 weeks ago @gardener-ci-robot Thank you for your contribution.
Closed gardener-ci-robot closed 4 weeks ago
gardener-robot
commented
4 weeks ago @gardener-ci-robot Thank you for your contribution.
This PR contains the following updates:
v2.39.1-distroless->v2.40.0-distrolessRelease Notes
dexidp/dex (ghcr.io/dexidp/dex)
### [`v2.40.0`](https://togithub.com/dexidp/dex/releases/tag/v2.40.0) [Compare Source](https://togithub.com/dexidp/dex/compare/v2.39.1...v2.40.0) The official container image for this release can be pulled from ghcr.io/dexidp/dex:v2.40.0 #### Know before update > \[!IMPORTANT]\ > Dex migrated to the [log/slog](https://go.dev/blog/slog) for logging. Both text and json log format outputs changed. > > The change can affect users, that import Dex as a library in their projects. #### What's Changed ##### Exciting New Features π - Use log/slog for structured logging by [@seankhliao](https://togithub.com/seankhliao) in [https://github.com/dexidp/dex/pull/3502](https://togithub.com/dexidp/dex/pull/3502) ##### Enhancements π - Add support for configurable prompt type for Google connector by [@abhisek](https://togithub.com/abhisek) in [https://github.com/dexidp/dex/pull/3475](https://togithub.com/dexidp/dex/pull/3475) - Google: Implement groups fetch by default service account from metadata (support for GKE workload identity) by [@vsychov](https://togithub.com/vsychov) in [https://github.com/dexidp/dex/pull/2989](https://togithub.com/dexidp/dex/pull/2989) - OIDC connector option to override jwksURI by [@sohgaura](https://togithub.com/sohgaura) in [https://github.com/dexidp/dex/pull/3543](https://togithub.com/dexidp/dex/pull/3543) - Allow domain names or IDs in keystone connector by [@cardoe](https://togithub.com/cardoe) in [https://github.com/dexidp/dex/pull/3506](https://togithub.com/dexidp/dex/pull/3506) ##### Bug Fixes π - Fix function names in comment by [@mountcount](https://togithub.com/mountcount) in [https://github.com/dexidp/dex/pull/3464](https://togithub.com/dexidp/dex/pull/3464) - Fix slight grammar errors. by [@adeinega](https://togithub.com/adeinega) in [https://github.com/dexidp/dex/pull/3538](https://togithub.com/dexidp/dex/pull/3538) ##### Dependency Updates β¬οΈ - build(deps): bump google.golang.org/api from 0.172.0 to 0.179.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3516](https://togithub.com/dexidp/dex/pull/3516) - build(deps): bump golang from 1.22.2-alpine3.18 to 1.22.3-alpine3.18 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3514](https://togithub.com/dexidp/dex/pull/3514) - build(deps): bump aquasecurity/trivy-action from 0.18.0 to 0.20.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3512](https://togithub.com/dexidp/dex/pull/3512) - build(deps): bump golang.org/x/oauth2 from 0.19.0 to 0.20.0 in /examples by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3508](https://togithub.com/dexidp/dex/pull/3508) - build(deps): bump anchore/sbom-action from 0.15.9 to 0.15.11 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3497](https://togithub.com/dexidp/dex/pull/3497) - build(deps): bump golang.org/x/net from 0.20.0 to 0.23.0 in /api/v2 in the go_modules group by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3483](https://togithub.com/dexidp/dex/pull/3483) - build(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3472](https://togithub.com/dexidp/dex/pull/3472) - build(deps): bump distroless/static-debian12 from `42c8865` to `e9ac71e` by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3469](https://togithub.com/dexidp/dex/pull/3469) - build(deps): bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3462](https://togithub.com/dexidp/dex/pull/3462) - build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.1 in /api/v2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3510](https://togithub.com/dexidp/dex/pull/3510) - build(deps): bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3526](https://togithub.com/dexidp/dex/pull/3526) - build(deps): bump google.golang.org/api from 0.179.0 to 0.180.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3525](https://togithub.com/dexidp/dex/pull/3525) - build(deps): bump actions/dependency-review-action from 4.2.5 to 4.3.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3524](https://togithub.com/dexidp/dex/pull/3524) - build(deps): bump helm/kind-action from 1.9.0 to 1.10.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3523](https://togithub.com/dexidp/dex/pull/3523) - build(deps): bump github/codeql-action from 3.24.10 to 3.25.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3522](https://togithub.com/dexidp/dex/pull/3522) - build(deps): bump mheap/github-action-required-labels from 5.4.0 to 5.4.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3521](https://togithub.com/dexidp/dex/pull/3521) - build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3520](https://togithub.com/dexidp/dex/pull/3520) - build(deps): bump google.golang.org/grpc from 1.62.1 to 1.63.2 in /api/v2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3465](https://togithub.com/dexidp/dex/pull/3465) - build(deps): bump google.golang.org/grpc from 1.62.1 to 1.63.2 in /examples by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3460](https://togithub.com/dexidp/dex/pull/3460) - build(deps): bump alpine from 3.19.1 to 3.20.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3547](https://togithub.com/dexidp/dex/pull/3547) - build(deps): bump anchore/sbom-action from 0.15.11 to 0.16.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3545](https://togithub.com/dexidp/dex/pull/3545) - build(deps): bump github/codeql-action from 3.25.4 to 3.25.6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3544](https://togithub.com/dexidp/dex/pull/3544) - build(deps): bump actions/checkout from 4.1.2 to 4.1.6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3542](https://togithub.com/dexidp/dex/pull/3542) - build(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3541](https://togithub.com/dexidp/dex/pull/3541) - build(deps): bump golang from `4531927` to `ff6ab2b` by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3536](https://togithub.com/dexidp/dex/pull/3536) - build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3534](https://togithub.com/dexidp/dex/pull/3534) - build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.1 to 4.0.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3531](https://togithub.com/dexidp/dex/pull/3531) - build(deps): bump github.com/beevik/etree from 1.3.0 to 1.4.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3530](https://togithub.com/dexidp/dex/pull/3530) - build(deps): bump google.golang.org/grpc from 1.63.2 to 1.64.0 in /examples by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3535](https://togithub.com/dexidp/dex/pull/3535) - build(deps): bump docker/login-action from 3.1.0 to 3.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3551](https://togithub.com/dexidp/dex/pull/3551) - build(deps): bump golang from `ff6ab2b` to `d1a601b` by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3550](https://togithub.com/dexidp/dex/pull/3550) - build(deps): bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3552](https://togithub.com/dexidp/dex/pull/3552) - Bump google.golang.org/grpc to v1.64.0 by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/3553](https://togithub.com/dexidp/dex/pull/3553) - build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.13 to 3.5.14 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3555](https://togithub.com/dexidp/dex/pull/3555) - build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.13 to 3.5.14 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3556](https://togithub.com/dexidp/dex/pull/3556) - build(deps): bump github/codeql-action from 3.25.6 to 3.25.7 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3561](https://togithub.com/dexidp/dex/pull/3561) - Bump gomplate 3.11.8 by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/3565](https://togithub.com/dexidp/dex/pull/3565) #### New Contributors - [@elehcim](https://togithub.com/elehcim) made their first contribution in [https://github.com/dexidp/dex/pull/3474](https://togithub.com/dexidp/dex/pull/3474) - [@abhisek](https://togithub.com/abhisek) made their first contribution in [https://github.com/dexidp/dex/pull/3475](https://togithub.com/dexidp/dex/pull/3475) - [@mountcount](https://togithub.com/mountcount) made their first contribution in [https://github.com/dexidp/dex/pull/3464](https://togithub.com/dexidp/dex/pull/3464) - [@adeinega](https://togithub.com/adeinega) made their first contribution in [https://github.com/dexidp/dex/pull/3538](https://togithub.com/dexidp/dex/pull/3538) - [@sohgaura](https://togithub.com/sohgaura) made their first contribution in [https://github.com/dexidp/dex/pull/3543](https://togithub.com/dexidp/dex/pull/3543) - [@cardoe](https://togithub.com/cardoe) made their first contribution in [https://github.com/dexidp/dex/pull/3506](https://togithub.com/dexidp/dex/pull/3506) **Full Changelog**: https://github.com/dexidp/dex/compare/v2.39.1...v2.40.0Configuration
π Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
π¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
β» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
π Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.