chore(deps): Bump the production-dependencies group across 1 directory with 7 updates

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
github.com/onsi/ginkgo/v2	`2.19.1`	`2.20.1`
k8s.io/apimachinery	`0.30.3`	`0.31.0`
github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring	`0.75.2`	`0.76.0`
golang.org/x/sys	`0.23.0`	`0.24.0`
kubevirt.io/containerized-data-importer-api	`1.59.0`	`1.60.1`

Updates github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.1

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.20.1

2.20.1

Fixes

make BeSpecEvent duration matcher more forgiving [d6f9640]

v2.20.0

2.20.0

Features

Add buildvcs flag [be5ab95]

Maintenance

Add update-deps to makefile [d303d14]

bump all dependencies [7a50221]

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.20.1

Fixes

make BeSpecEvent duration matcher more forgiving [d6f9640]

2.20.0

Features

Add buildvcs flag [be5ab95]

Maintenance

Add update-deps to makefile [d303d14]

bump all dependencies [7a50221]

Commits

4ef0afb v2.20.1
d6f9640 make BeSpecEvent duration matcher more forgiving
265b1a0 v2.20.0
d303d14 Add update-deps to makefile
7a50221 bump all dependencies
be5ab95 Add buildvcs flag
See full diff in compare view

Updates k8s.io/apimachinery from 0.30.3 to 0.31.0

Commits

a8f449e Falls back to SPDY for gorilla/websocket https proxy error
62791ec Merge pull request #125571 from liggitt/filter-auth-02-sar
cc2ba35 add field and label selectors to authorization attributes
ce76a8f generate
35052c5 add subjectaccessreview field and label selectors
ab06869 Merge pull request #126105 from benluddy/cbor-framer
429f4e4 Implement runtime.Framer for CBOR Sequences.
d7e1c53 Merge pull request #126018 from aroradaman/bump-k8s-utils
07cb122 Merge pull request #125748 from benluddy/cbor-custom-marshalers
dd17456 bump k8s.io/utils
Additional commits viewable in compare view

Updates k8s.io/utils from 0.0.0-20240502163921-fe8a2dddb1d0 to 0.0.0-20240711033017-18e509b52bc8

Commits

See full diff in compare view

Updates github.com/google/pprof from 0.0.0-20240424215950-a892ee059fd6 to 0.0.0-20240727154555-813a5fbdbec8

Commits

See full diff in compare view

Updates github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.75.2 to 0.76.0

Release notes

Sourced from github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring's releases.

v0.76.0

0.76.0 / 2025-08-08

[CHANGE] Enhanced secret management in Prometheus and PrometheusAgent CRDs by switching the secrets field from atomic to listType: set, allowing independent handling of entries by different managers to prevent conflicts and improve deployment stability. #6762

[CHANGE] Add API-level validations to Kubernetes SD in the ScrapeConfig CRD. #6678

[FEATURE] Add TLS and Proxy settings to OAuth2 configuration for Prometheus and PrometheusAgent CRDs. #6735

[FEATURE] Add support for OAuth2 in the ScrapeConfig CRD. #6814

[FEATURE] Add scale subresource to the Alertmanger CRD. #6728

[FEATURE] Add Scaleway service discovery to the ScrapeConfig CRD. #6711

[FEATURE] Add serviceDiscoveryRole field to the Prometheus and PrometheusAgent CRDs to select between Endpoints (default) and EndpointSlice for discovering scrape and alerting targets. #6672

[ENHANCEMENT] Make the namespace field optional in the Alertmanager endpoints configuration of the Prometheus CRD, if not defined it will use the default namespace. #6338

[ENHANCEMENT] Add support to configure the TLS version for Prometheus, PrometheusAgent and Alertmanager CRDs. #6736

[ENHANCEMENT] Add -secret-label-selector argument to the operator to filter the Secrets being watched. #6731

[ENHANCEMENT] Add attachMetadata field to ScrapeClasses. #6756

[BUGFIX] Add support for all proxy settings in the Alertmanager configuration. #6818

Changelog

Sourced from github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring's changelog.

0.76.0 / 2025-08-08

[CHANGE] Enhanced secret management in Prometheus and PrometheusAgent CRDs by switching the secrets field from atomic to listType: set, allowing independent handling of entries by different managers to prevent conflicts and improve deployment stability. #6762 [CHANGE] Add API-level validations to Kubernetes SD in the ScrapeConfig CRD. #6678 [FEATURE] Add TLS and Proxy settings to OAuth2 configuration for Prometheus and PrometheusAgent CRDs. #6735 [FEATURE] Add support for OAuth2 in the ScrapeConfig CRD. #6814 [FEATURE] Add scale subresource to the Alertmanger CRD. #6728 [FEATURE] Add Scaleway service discovery to the ScrapeConfig CRD. #6711 [FEATURE] Add serviceDiscoveryRole field to the Prometheus and PrometheusAgent CRDs to select between Endpoints (default) and EndpointSlice for discovering scrape and alerting targets. #6672 [ENHANCEMENT] Make the namespace field optional in the Alertmanager endpoints configuration of the Prometheus CRD, if not defined it will use the default namespace. #6338 [ENHANCEMENT] Add support to configure the TLS version for Prometheus, PrometheusAgent and Alertmanager CRDs. #6736 [ENHANCEMENT] Add -secret-label-selector argument to the operator to filter the Secrets being watched. #6731 [ENHANCEMENT] Add attachMetadata field to ScrapeClasses. #6756 [BUGFIX] Add support for all proxy settings in the Alertmanager configuration. #6818

Commits

022a289 Merge pull request #6834 from prometheus-operator/nicolas/prepare-0.76
e12ef9a Update CHANGELOG.md
1565ea0 Update CHANGELOG.md
2ea3a03 Update CHANGELOG.md
7da8459 [CHORE] updating change log
46076a5 [CHORE] generating templates 0.76
6b6c773 [CHORE] upgrading prometheus
6ad25e9 [CHORE] updating dependencies
a7a1ad6 Merge pull request #6827 from prometheus-operator/arthur-affiliation
99f737f chore: replace go kit log in alertmanager package (#6828)
Additional commits viewable in compare view

Updates golang.org/x/sys from 0.23.0 to 0.24.0

Commits

914deed unix: add missing ETHTOOL_FLAG_ constants
4c7077e windows: add enums for IpAdapterUnicastAddress
29298aa windows: delete TestGetKeyboardLayout
See full diff in compare view

Updates kubevirt.io/containerized-data-importer-api from 1.59.0 to 1.60.1

Release notes

Sourced from kubevirt.io/containerized-data-importer-api's releases.

v1.60.1

This release follows v1.59.0 and consists of 120 changes, contributed by 28 people, leading to 3579 files changed, 609903 insertions(+), 176669 deletions(-).

The source code and selected binaries are available for download at: https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.60.1.

Pre-built CDI containers are published on Quay.io and can be viewed at: https://quay.io/repository/kubevirt/cdi-controller/ https://quay.io/repository/kubevirt/cdi-importer/ https://quay.io/repository/kubevirt/cdi-cloner/ https://quay.io/repository/kubevirt/cdi-uploadproxy/ https://quay.io/repository/kubevirt/cdi-apiserver/ https://quay.io/repository/kubevirt/cdi-uploadserver/ https://quay.io/repository/kubevirt/cdi-operator/

Notable changes

Enhancement: Suppress alerts to reduce noise of dependent ones Enhancement: Remove API dependency on openshift/api Enhancement: Reject volumes with storage smaller than 1MiB Enhancement: Mesh annotations now copied from the DV/PVCs to worker pods Enhancement: Add a DataVolume Running condition, with Reason field of "ImagePullFailed" Enhancement: Introduce a controller to handle forklift's volume populators (ovirt, openstack) Enhancement: Provide RPM support for s390x platform Enhancement: Onboard Infinibox CSI driver Enhancement: Make upload client/server certs configurable and rotate uploadserver pods Enhancement: Improve error reporting in upload-proxy Enhancement: Set LVM based provisioners clone strategy to host assisted by default Enhancement: Add storagecapabilities to vSphere provisioner Enhancement: Delete and recreate pending DataImportCron PVCs on default storage class update Enhancement: Expose the upload-proxy's certificate in the CDI config status Enhancement: Added KubeSAN CSI plugin storage capabilities so the CDI StorageProfile is automatically populated Enhancement: Remove datavolume clone source validation from webhook Enhancement: VDDK datasource: Increase number of nbdkit lines logged Enhancement: Inject cdi-uploadproxy CA cert into user created routes Enhancement: Adding storagecapabilities to the longhorn provisioner Enhancement: Default instance type labels are now added from registry imported PVCs/cloned VolumeSnapshots to DataVolumes Enhancement: add s390x support for builder image Enhancement: Properly handle DataVolume preallocation setting for all host assisted (copy) clones Enhancement: Copy labels from the source of a DataSource (DV/PVC/VolumeSnapshot)

BugFix: Fix resources configuration missing from the configuration of the cdi-containerimage-server initcontainer BugFix: Clone from snapshot - fix volume/access mode inferring for temp host assisted source PVC BugFix: Support IPv6 for controller metrics URL BugFix: Stop handling error phase as "unknown" in clone-populator BugFix: Improve metrics reporting behavior for upstream rook-ceph deployments, identifying RGW bucket provisioners BugFix: Use scratch space (and thus qemu-img convert flow) when importing non-archived images to avoid losing sparseness of images

... (truncated)

Commits

c186264 fix post submit issue in order to release properly
b375def v1.60.0 release notes
d68f59e remove gradle dep when running gen-swagger-docs.sh (#3390)
6269010 apidocs: remove gradle dep (#3389)
79e6b97 Retry pulling builder image (#3387)
2d9c82e Setup ginkgo cli build properly to avoid double dep (#3378)
f357368 feat: Copy labels from source to DataSource (#3377)
c15ad1d nbdkit: Use password=+filename to send passwords securely (#3363)
56c4b2f Properly handle DataVolume preallocation setting for all host assisted (copy)...
e1a553a feat(DataVolume): Add default instance type labels from VolumeSnapshots and f...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

kubevirt / vm-console-proxy

chore(deps): Bump the production-dependencies group across 1 directory with 7 updates #181

v2.20.1

2.20.1

Fixes

v2.20.0

2.20.0

Features

Maintenance

2.20.1

Fixes

2.20.0

Features

Maintenance

v0.76.0

0.76.0 / 2025-08-08

0.76.0 / 2025-08-08

v1.60.1

Notable changes