search

kyma-project / cli

Simple set of commands to manage a Kyma installation
Apache License 2.0
111 stars 118 forks source link

chore(dependabot): bump sigs.k8s.io/kustomize/kyaml from 0.16.0 to 0.17.0 #2081

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps sigs.k8s.io/kustomize/kyaml from 0.16.0 to 0.17.0.

Release notes

Sourced from sigs.k8s.io/kustomize/kyaml's releases.

api/v0.17.0

Breaking changes

#5519: Fix null YAML values being replaced by "null"

Features

#5539: Include exec plugin stderr with wrapped error #5542: fix: improve accumulation failure message #5550: use Strict unmarshal when read TransformerConfig

Bug fixes/performance improvements

#5234: fix edit set image to parse both tag and digest #5236: Fix name in a configMapRef missing hash #5047 #5463: Fix version tag management #5510: Skip KUSTOMIZE_PLUGIN_CONFIG_* env variables when too large #5621: Use require for Error and NoError

Dependencies

#5044: Remove non-essential dependency imdario/mergo #5479: Revert "Switch to json-patch v5" #5541: Use canonical json-patch v4 import #5555: chore: Update to Go v1.21 #5615: update dependencies google.golang.org/protobuf@v1.33.0 #5639: Update kyaml to v0.17.0

chore

#5521: add license for api/pkg/util/image.go #5621: Use require for Error and NoError #5622: Pin tool versions with hack/go.mod #5624: Use a local test server instead of example.com #5627: Remove klog/v1 dependencies

kyaml/v0.17.0

Breaking changes

#5519: Fix null YAML values being replaced by "null"

Features

#5551: Improve framework documentation

Bug fixes/performance improvements

#5489: Fix typo in merge2 #5621: Use require for Error and NoError #5622: Pin tool versions with hack/go.mod

Dependencies

#5555: chore: Update to Go v1.21 #5615: update dependencies google.golang.org/protobuf@v1.33.0

Commits
  • 1b44976 Merge pull request #5640 from koba1t/pinToCmdConfig
  • a9f7a04 Update cmd/config to v0.14.0
  • cd954ce Merge pull request #5639 from koba1t/pinToKyaml
  • 10c292f Update kyaml to v0.17.0
  • a9bfabc Merge pull request #5637 from karlkfi/karl-fix-generate
  • 398aa36 Merge pull request #5638 from kubernetes-sigs/dependabot/go_modules/hack/gith...
  • 8f2d243 Merge pull request #5634 from kubernetes-sigs/dependabot/go_modules/hack/gith...
  • fd06780 build(deps): bump github.com/cloudflare/circl in /hack
  • 562cbc1 build(deps): bump github.com/cli/cli from 0.6.0 to 1.2.1 in /hack
  • d5f3c4f Merge pull request #5635 from kubernetes-sigs/dependabot/go_modules/hack/gith...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 month ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.