search

mondoohq / mondoo-operator

☸️ Mondoo Client Kubernetes Operator
https://mondoo.com
Other
34 stars 13 forks source link

Bump the gomodupdates group across 1 directory with 7 updates #1163

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the gomodupdates group with 5 updates in the / directory:

Package From To
github.com/cert-manager/cert-manager 1.14.5 1.15.3
github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring 0.74.0 0.76.0
go.mondoo.com/cnquery/v11 11.15.0 11.18.0
go.mondoo.com/cnspec/v11 11.15.0 11.18.0
github.com/prometheus/client_golang 1.19.1 1.20.1

Updates github.com/cert-manager/cert-manager from 1.14.5 to 1.15.3

Release notes

Sourced from github.com/cert-manager/cert-manager's releases.

v1.15.3

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.2

Bug or Regression

  • BUGFIX: the dynamic certificate source used by the webhook TLS server failed to detect a root CA approaching expiration, due to a calculation error. This will cause the webhook TLS server to fail renewing its CA certificate. Please upgrade before the expiration of this CA certificate is reached. (#7232, @​cert-manager-bot)

v1.15.2

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.1

Bug or Regression

  • BUGFIX route53: explicitly set the aws-global STS region which is now required by the github.com/aws/aws-sdk-go-v2 library. (#7189, @cert-manager-bot)
  • Bump grpc-go to fix GHSA-xr7q-jx4m-x55m (#7167, @SgtCoDFish)
  • Fix Azure DNS causing panics whenever authentication error happens (#7188, @cert-manager-bot)
  • Fix incorrect value and indentation of endpointAdditionalProperties in the PodMonitor template of the Helm chart (#7191, @inteon)
  • Fixes ACME HTTP01 challenge behavior when using Gateway API to prevent unbounded creation of HTTPRoute resources (#7186, @cert-manager-bot)
  • Upgrade golang from 1.22.3 to 1.22.5 (#7165, @github-actions)

v1.15.2-alpha.1

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.1

Bug or Regression

  • BUGFIX route53: explicitly set the aws-global STS region which is now required by the github.com/aws/aws-sdk-go-v2 library. (#7189, @cert-manager-bot)
  • Bump grpc-go to fix GHSA-xr7q-jx4m-x55m (#7167, @SgtCoDFish)
  • Fix Azure DNS causing panics whenever authentication error happens (#7188, @cert-manager-bot)
  • Fix incorrect value and indentation of endpointAdditionalProperties in the PodMonitor template of the Helm chart (#7191, @inteon)
  • Fixes ACME HTTP01 challenge behavior when using Gateway API to prevent unbounded creation of HTTPRoute resources (#7186, @cert-manager-bot)
  • Upgrade golang from 1.22.3 to 1.22.5 (#7165, @github-actions)

v1.15.1

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.0

... (truncated)

Commits
  • 0448418 Merge pull request #7232 from cert-manager-bot/cherry-pick-7230-to-release-1.15
  • 87f4e1a add test case for expired certificate
  • 0749fee add caRequiresRegeneration unit test and fix incorrect renewal time calculation
  • 48216fb Merge pull request #7200 from cert-manager-bot/cherry-pick-7199-to-release-1.15
  • a94ad68 Update the Google CloudBuild job image
  • 5604417 Merge pull request #7197 from ThatsMrTalbot/fix/e2e-feature-flags-disabled-te...
  • 243cd78 fix: e2e feature flags disabled test failing
  • a4338af Merge pull request #7191 from inteon/release-1.15_podmonitor_template
  • ae55ea1 Fix incorrect value and indentation of the PodMonitor endpointAdditionalPrope...
  • 35e27b7 Merge pull request #7189 from cert-manager-bot/cherry-pick-7108-to-release-1.15
  • Additional commits viewable in compare view


Updates github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.74.0 to 0.76.0

Release notes

Sourced from github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring's releases.

v0.76.0

0.76.0 / 2025-08-08

  • [CHANGE] Enhanced secret management in Prometheus and PrometheusAgent CRDs by switching the secrets field from atomic to listType: set, allowing independent handling of entries by different managers to prevent conflicts and improve deployment stability. #6762
  • [CHANGE] Add API-level validations to Kubernetes SD in the ScrapeConfig CRD. #6678
  • [FEATURE] Add TLS and Proxy settings to OAuth2 configuration for Prometheus and PrometheusAgent CRDs. #6735
  • [FEATURE] Add support for OAuth2 in the ScrapeConfig CRD. #6814
  • [FEATURE] Add scale subresource to the Alertmanger CRD. #6728
  • [FEATURE] Add Scaleway service discovery to the ScrapeConfig CRD. #6711
  • [FEATURE] Add serviceDiscoveryRole field to the Prometheus and PrometheusAgent CRDs to select between Endpoints (default) and EndpointSlice for discovering scrape and alerting targets. #6672
  • [ENHANCEMENT] Make the namespace field optional in the Alertmanager endpoints configuration of the Prometheus CRD, if not defined it will use the default namespace. #6338
  • [ENHANCEMENT] Add support to configure the TLS version for Prometheus, PrometheusAgent and Alertmanager CRDs. #6736
  • [ENHANCEMENT] Add -secret-label-selector argument to the operator to filter the Secrets being watched. #6731
  • [ENHANCEMENT] Add attachMetadata field to ScrapeClasses. #6756
  • [BUGFIX] Add support for all proxy settings in the Alertmanager configuration. #6818

0.75.2 / 2024-07-23

  • [BUGFIX] Avoid invalid alerting config with TLS. #6765

0.75.1 / 2024-07-02

  • [BUGFIX] Fix OVHCloud service discovery configs key error. #6723

0.75.0 / 2024-06-26

  • [CHANGE] Global limits over enforced limits when no user limits are set. #6608
  • [CHANGE/BUGFIX] Use a separate port number (8081) for the init container. #6635
  • [FEATURE] Add source field in pagerdutyConfigs in AlertManangerConfig CRD. #6427
  • [FEATURE] Add DockerSwarm Service Discovery support in the ScrapeConfig CRD. #6633
  • [FEATURE] Add Linode Service Discovery support in the ScrapeConfig CRD. #6586
  • [FEATURE] Add PuppetDB Service Discovery support in the ScrapeConfig CRD. #6651
  • [FEATURE] Add LightSail Service Discovery support in the ScrapeConfig CRD. #6660
  • [FEATURE] Add OVHCloud Service Discovery support in the ScrapeConfig CRD. #6689
  • [FEATURE] Add extra metric relabelings to scrape classes. #6492
  • [FEATURE] Add jobName field to ScrapeConfig CRD. #6618
  • [FEATURE] Add automatic memory limit handling using the flag -auto-gomemlimit-ratio. #6591
  • [FEATURE] Add support for ProxyConfig in Prometheus RemoteWrite and RemoteRead specs. #6512
  • [ENHANCEMENT] Add automatic GOMAXPROCS to admission webhook. #6599
  • [ENHANCEMENT] Add prometheus_operator_feature_gate_info metric. #6655
  • [BUGFIX] Fix reloading Alertmanager when notification templates change. #6607
  • [BUGFIX] Fix PrometheusAgent reconciliation for the statefulset changes. #6615
  • [BUGFIX] Fix readiness/liveness probes for config-reloader when listenLocal is set to true. #6698
Changelog

Sourced from github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring's changelog.

0.76.0 / 2025-08-08

[CHANGE] Enhanced secret management in Prometheus and PrometheusAgent CRDs by switching the secrets field from atomic to listType: set, allowing independent handling of entries by different managers to prevent conflicts and improve deployment stability. #6762 [CHANGE] Add API-level validations to Kubernetes SD in the ScrapeConfig CRD. #6678 [FEATURE] Add TLS and Proxy settings to OAuth2 configuration for Prometheus and PrometheusAgent CRDs. #6735 [FEATURE] Add support for OAuth2 in the ScrapeConfig CRD. #6814 [FEATURE] Add scale subresource to the Alertmanger CRD. #6728 [FEATURE] Add Scaleway service discovery to the ScrapeConfig CRD. #6711 [FEATURE] Add serviceDiscoveryRole field to the Prometheus and PrometheusAgent CRDs to select between Endpoints (default) and EndpointSlice for discovering scrape and alerting targets. #6672 [ENHANCEMENT] Make the namespace field optional in the Alertmanager endpoints configuration of the Prometheus CRD, if not defined it will use the default namespace. #6338 [ENHANCEMENT] Add support to configure the TLS version for Prometheus, PrometheusAgent and Alertmanager CRDs. #6736 [ENHANCEMENT] Add -secret-label-selector argument to the operator to filter the Secrets being watched. #6731 [ENHANCEMENT] Add attachMetadata field to ScrapeClasses. #6756 [BUGFIX] Add support for all proxy settings in the Alertmanager configuration. #6818

0.75.2 / 2024-07-23

  • [BUGFIX] Avoid invalid alerting config with TLS. #6765

0.75.1 / 2024-07-02

  • [BUGFIX] Fix OVHCloud service discovery configs key error. #6723

0.75.0 / 2024-06-26

  • [CHANGE] Global limits over enforced limits when no user limits are set. #6608
  • [CHANGE/BUGFIX] Use a separate port number (8081) for the init container. #6635
  • [FEATURE] Add source field in pagerdutyConfigs in AlertManangerConfig CRD. #6427
  • [FEATURE] Add DockerSwarm Service Discovery support in the ScrapeConfig CRD. #6633
  • [FEATURE] Add Linode Service Discovery support in the ScrapeConfig CRD. #6586
  • [FEATURE] Add PuppetDB Service Discovery support in the ScrapeConfig CRD. #6651
  • [FEATURE] Add LightSail Service Discovery support in the ScrapeConfig CRD. #6660
  • [FEATURE] Add OVHCloud Service Discovery support in the ScrapeConfig CRD. #6689
  • [FEATURE] Add extra metric relabelings to scrape classes. #6492
  • [FEATURE] Add jobName field to ScrapeConfig CRD. #6618
  • [FEATURE] Add automatic memory limit handling using the flag -auto-gomemlimit-ratio. #6591
  • [FEATURE] Add support for ProxyConfig in Prometheus RemoteWrite and RemoteRead specs. #6512
  • [ENHANCEMENT] Add automatic GOMAXPROCS to admission webhook. #6599
  • [ENHANCEMENT] Add prometheus_operator_feature_gate_info metric. #6655
  • [BUGFIX] Fix reloading Alertmanager when notification templates change. #6607
  • [BUGFIX] Fix PrometheusAgent reconciliation for the statefulset changes. #6615
  • [BUGFIX] Fix readiness/liveness probes for config-reloader when listenLocal is set to true. #6698
Commits
  • 022a289 Merge pull request #6834 from prometheus-operator/nicolas/prepare-0.76
  • e12ef9a Update CHANGELOG.md
  • 1565ea0 Update CHANGELOG.md
  • 2ea3a03 Update CHANGELOG.md
  • 7da8459 [CHORE] updating change log
  • 46076a5 [CHORE] generating templates 0.76
  • 6b6c773 [CHORE] upgrading prometheus
  • 6ad25e9 [CHORE] updating dependencies
  • a7a1ad6 Merge pull request #6827 from prometheus-operator/arthur-affiliation
  • 99f737f chore: replace go kit log in alertmanager package (#6828)
  • Additional commits viewable in compare view


Updates go.mondoo.com/cnquery/v11 from 11.15.0 to 11.18.0

Release notes

Sourced from go.mondoo.com/cnquery/v11's releases.

v11.18.0

What's Changed

New Contributors

Full Changelog: https://github.com/mondoohq/cnquery/compare/v11.17.0...v11.18.0

v11.17.0

What's Changed

... (truncated)

Commits
  • 6fd635c ⭐️ Azure IAM role assignment and managed identities (#4583)
  • 077e2cc ⭐️ improve microsoft.tenant resource (#4573)
  • 54e8063 ⭐️ Microsoft 365 risky users resource (#4570)
  • 6e02adf ⭐️ Microsoft 365 application roles and service principal app roles (#4574)
  • e3d5e95 ⭐️ Microsoft 365 first party apps filtering (#4572)
  • c545c44 ⭐️ simplify azure iam access (#4582)
  • 9276f04 🐛 fix fetching of fields for role definitions (#4571)
  • ad0a3ab 🧹 Cleanup aws-sdk-go mod, use only v2. (#4580)
  • 5672ec0 🧹 return error when invalid host value is provided for atlassian provider (#4...
  • 4622bb2 🧹 return the correct value for aws account id when connected to subresource (...
  • Additional commits viewable in compare view


Updates go.mondoo.com/cnspec/v11 from 11.15.0 to 11.18.0

Release notes

Sourced from go.mondoo.com/cnspec/v11's releases.

v11.18.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.17.0...v11.18.0

v11.17.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.16.1...v11.17.0

v11.16.1

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.16.0...v11.16.1

v11.16.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.15.1...v11.16.0

v11.15.1

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.15.0...v11.15.1

Commits


Updates go.mondoo.com/mondoo-go from 0.0.0-20240716062427-ec95d879cbe7 to 0.0.0-20240812115428-5d14ca400964

Commits


Updates github.com/google/go-containerregistry from 0.20.1 to 0.20.2

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.2

What's Changed

Full Changelog: https://github.com/google/go-containerregistry/compare/v0.20.1...v0.20.2

Commits


Updates github.com/prometheus/client_golang from 1.19.1 to 1.20.1

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.20.1

This release contains the critical fix for the issue. Thanks to @​geberl, @​CubicrootXYZ, @​zetaab and @​timofurrer for helping us with the investigation!

  • [BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. #1587

v1.20.0

Thanks everyone for contributions!

:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default collectors.NewGoCollector() collector. Given its popular usage, expect your binary to expose two additional metric.

Changes

  • [CHANGE] :warning: go-collector: Remove go_memstat_lookups_total metric which was always 0; Go runtime stopped sharing pointer lookup statistics. #1577
  • [FEATURE] :warning: go-collector: Add 3 default metrics: go_gc_gogc_percent, go_gc_gomemlimit_bytes and go_sched_gomaxprocs_threads as those are recommended by the Go team. #1559
  • [FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact runtime/metrics sourcing each metric (if relevant). #1568 #1578
  • [FEATURE] testutil: Add CollectAndFormat method. #1503
  • [FEATURE] histograms: Add support for exemplars in native histograms. #1471
  • [FEATURE] promhttp: Add experimental support for zstd on scrape, controlled by the request Accept-Encoding header. #1496
  • [FEATURE] api/v1: Add WithLimit parameter to all API methods that supports it. #1544
  • [FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. #1537
  • [FEATURE] process-collectors: Add network usage metrics: process_network_receive_bytes_total and process_network_transmit_bytes_total. #1555
  • [FEATURE] promlint: Add duplicated metric lint rule. #1472
  • [BUGFIX] promlint: Relax metric type in name linter rule. #1455
  • [BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. #1480
  • [BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. #1424

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.20.1 / 2024-08-20

  • [BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on linux machines. #1587

1.20.0 / 2024-08-14

  • [CHANGE] :warning: go-collector: Remove go_memstat_lookups_total metric which was always 0; Go runtime stopped sharing pointer lookup statistics. #1577
  • [FEATURE] :warning: go-collector: Add 3 default metrics: go_gc_gogc_percent, go_gc_gomemlimit_bytes and go_sched_gomaxprocs_threads as those are recommended by the Go team. #1559
  • [FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact runtime/metrics sourcing each metric (if relevant). #1568 #1578
  • [FEATURE] testutil: Add CollectAndFormat method. #1503
  • [FEATURE] histograms: Add support for exemplars in native histograms. #1471
  • [FEATURE] promhttp: Add experimental support for zstd on scrape, controlled by the request Accept-Encoding header. #1496
  • [FEATURE] api/v1: Add WithLimit parameter to all API methods that supports it. #1544
  • [FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. #1537
  • [FEATURE] process-collector: Add network usage metrics: process_network_receive_bytes_total and process_network_transmit_bytes_total. #1555
  • [FEATURE] promlint: Add duplicated metric lint rule. #1472
  • [BUGFIX] promlint: Relax metric type in name linter rule. #1455
  • [BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. #1480
  • [BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. #1424

1.19.0 / 2024-02-27

The module prometheus/common v0.48.0 introduced an incompatibility when used together with client_golang (See prometheus/client_golang#1448 for more details). If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.

  • [CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445 #1449
  • [FEATURE] collectors: Add version collector. #1422 #1427

1.18.0 / 2023-12-22

  • [FEATURE] promlint: Allow creation of custom metric validations. #1311
  • [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
  • [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
  • [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
  • [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

1.17.0 / 2023-09-27

  • [CHANGE] Minimum required go version is now 1.19 (we also test client_golang against new 1.21 version). #1325
  • [FEATURE] Add support for Created Timestamps in Counters, Summaries and Historams. #1313
  • [ENHANCEMENT] Enable detection of a native histogram without observations. #1314

1.16.0 / 2023-06-15

  • [BUGFIX] api: Switch to POST for LabelNames, Series, and QueryExemplars. #1252
  • [BUGFIX] api: Fix undefined execution order in return statements. #1260
  • [BUGFIX] native histograms: Fix bug in bucket key calculation. #1279
  • [ENHANCEMENT] Reduce constrainLabels allocations for all metrics. #1272
  • [ENHANCEMENT] promhttp: Add process start time header for scrape efficiency. #1278
  • [ENHANCEMENT] promlint: Improve metricUnits runtime. #1286

... (truncated)

Commits
  • 2254d6c Merge pull request #1587 from prometheus/fix-processcollector
  • 4a15d05 Cut 1.20.1
  • f2dd7b3 Use pedantic registry in other places too, to double check.
  • 261fe84 bugfix: Pass network metrics to processCollector's Describe() function
  • 5bf3341 Use NewPedanticRegistry in Process' Collector tests
  • 73b811c Cut 1.20.0 release. (#1580)
  • 7ce5089 gocollector: Attach original runtime/metrics metric name to help. (#1578)
  • 062300e Remove go_memstat_lookups_total; added runtime/metrics calculation to memstat...
  • aa3c00d Update common Prometheus files (#1576)
  • 3ad2722 Add default Go runtime metrics for /gc/gogc:percent, /gc/gomemlimit:bytes, /s...
  • Additional commits viewable in compare view


Most Recent Ignore Conditions Applied to This Pull Request | Dependency Name | Ignore Conditions | | --- | --- | | github.com/google/go-containerregistry | [>= 0.15.a, < 0.16] |

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squa... _Description has been truncated_
github-actions[bot] commented 1 month ago

Test Results

0 files   -   5  0 suites   - 51   0s :stopwatch: - 2h 10m 0s 0 tests  - 319  0 :white_check_mark:  - 315  0 :zzz: ±0  0 :x:  - 4  0 runs   - 376  0 :white_check_mark:  - 372  0 :zzz: ±0  0 :x:  - 4 

Results for commit 24b83c4d. ± Comparison against base commit 3c263ff1.

dependabot[bot] commented 1 month ago

Superseded by #1164.