search

mondoohq / mondoo-operator

☸️ Mondoo Client Kubernetes Operator
https://mondoo.com
Other
34 stars 13 forks source link

Bump the gomodupdates group across 1 directory with 8 updates #1169

Closed dependabot[bot] closed 3 weeks ago

dependabot[bot] commented 3 weeks ago

Bumps the gomodupdates group with 5 updates in the / directory:

Package From To
github.com/cert-manager/cert-manager 1.14.5 1.15.3
github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring 0.74.0 0.76.2
go.mondoo.com/cnquery/v11 11.15.0 11.21.0
go.mondoo.com/cnspec/v11 11.15.0 11.21.0
github.com/prometheus/client_golang 1.19.1 1.20.3

Updates github.com/cert-manager/cert-manager from 1.14.5 to 1.15.3

Release notes

Sourced from github.com/cert-manager/cert-manager's releases.

v1.15.3

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.2

Bug or Regression

  • BUGFIX: the dynamic certificate source used by the webhook TLS server failed to detect a root CA approaching expiration, due to a calculation error. This will cause the webhook TLS server to fail renewing its CA certificate. Please upgrade before the expiration of this CA certificate is reached. (#7232, @​cert-manager-bot)

v1.15.2

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.1

Bug or Regression

  • BUGFIX route53: explicitly set the aws-global STS region which is now required by the github.com/aws/aws-sdk-go-v2 library. (#7189, @cert-manager-bot)
  • Bump grpc-go to fix GHSA-xr7q-jx4m-x55m (#7167, @SgtCoDFish)
  • Fix Azure DNS causing panics whenever authentication error happens (#7188, @cert-manager-bot)
  • Fix incorrect value and indentation of endpointAdditionalProperties in the PodMonitor template of the Helm chart (#7191, @inteon)
  • Fixes ACME HTTP01 challenge behavior when using Gateway API to prevent unbounded creation of HTTPRoute resources (#7186, @cert-manager-bot)
  • Upgrade golang from 1.22.3 to 1.22.5 (#7165, @github-actions)

v1.15.2-alpha.1

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.1

Bug or Regression

  • BUGFIX route53: explicitly set the aws-global STS region which is now required by the github.com/aws/aws-sdk-go-v2 library. (#7189, @cert-manager-bot)
  • Bump grpc-go to fix GHSA-xr7q-jx4m-x55m (#7167, @SgtCoDFish)
  • Fix Azure DNS causing panics whenever authentication error happens (#7188, @cert-manager-bot)
  • Fix incorrect value and indentation of endpointAdditionalProperties in the PodMonitor template of the Helm chart (#7191, @inteon)
  • Fixes ACME HTTP01 challenge behavior when using Gateway API to prevent unbounded creation of HTTPRoute resources (#7186, @cert-manager-bot)
  • Upgrade golang from 1.22.3 to 1.22.5 (#7165, @github-actions)

v1.15.1

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.0

... (truncated)

Commits
  • 0448418 Merge pull request #7232 from cert-manager-bot/cherry-pick-7230-to-release-1.15
  • 87f4e1a add test case for expired certificate
  • 0749fee add caRequiresRegeneration unit test and fix incorrect renewal time calculation
  • 48216fb Merge pull request #7200 from cert-manager-bot/cherry-pick-7199-to-release-1.15
  • a94ad68 Update the Google CloudBuild job image
  • 5604417 Merge pull request #7197 from ThatsMrTalbot/fix/e2e-feature-flags-disabled-te...
  • 243cd78 fix: e2e feature flags disabled test failing
  • a4338af Merge pull request #7191 from inteon/release-1.15_podmonitor_template
  • ae55ea1 Fix incorrect value and indentation of the PodMonitor endpointAdditionalPrope...
  • 35e27b7 Merge pull request #7189 from cert-manager-bot/cherry-pick-7108-to-release-1.15
  • Additional commits viewable in compare view


Updates github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring from 0.74.0 to 0.76.2

Release notes

Sourced from github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring's releases.

v0.76.2

  • [BUGFIX] Fix OAuth2 TLSConfig nil pointer. #6909

v0.76.1

  • [BUGFIX] fix bug with Kubernetes service discovery Selector.Role field. #6896

v0.76.0

0.76.0 / 2025-08-08

  • [CHANGE] Enhanced secret management in Prometheus and PrometheusAgent CRDs by switching the secrets field from atomic to listType: set, allowing independent handling of entries by different managers to prevent conflicts and improve deployment stability. #6762
  • [CHANGE] Add API-level validations to Kubernetes SD in the ScrapeConfig CRD. #6678
  • [FEATURE] Add TLS and Proxy settings to OAuth2 configuration for Prometheus and PrometheusAgent CRDs. #6735
  • [FEATURE] Add support for OAuth2 in the ScrapeConfig CRD. #6814
  • [FEATURE] Add scale subresource to the Alertmanger CRD. #6728
  • [FEATURE] Add Scaleway service discovery to the ScrapeConfig CRD. #6711
  • [FEATURE] Add serviceDiscoveryRole field to the Prometheus and PrometheusAgent CRDs to select between Endpoints (default) and EndpointSlice for discovering scrape and alerting targets. #6672
  • [ENHANCEMENT] Make the namespace field optional in the Alertmanager endpoints configuration of the Prometheus CRD, if not defined it will use the default namespace. #6338
  • [ENHANCEMENT] Add support to configure the TLS version for Prometheus, PrometheusAgent and Alertmanager CRDs. #6736
  • [ENHANCEMENT] Add -secret-label-selector argument to the operator to filter the Secrets being watched. #6731
  • [ENHANCEMENT] Add attachMetadata field to ScrapeClasses. #6756
  • [BUGFIX] Add support for all proxy settings in the Alertmanager configuration. #6818

0.75.2 / 2024-07-23

  • [BUGFIX] Avoid invalid alerting config with TLS. #6765

0.75.1 / 2024-07-02

  • [BUGFIX] Fix OVHCloud service discovery configs key error. #6723

0.75.0 / 2024-06-26

  • [CHANGE] Global limits over enforced limits when no user limits are set. #6608
  • [CHANGE/BUGFIX] Use a separate port number (8081) for the init container. #6635
  • [FEATURE] Add source field in pagerdutyConfigs in AlertManangerConfig CRD. #6427
  • [FEATURE] Add DockerSwarm Service Discovery support in the ScrapeConfig CRD. #6633
  • [FEATURE] Add Linode Service Discovery support in the ScrapeConfig CRD. #6586
  • [FEATURE] Add PuppetDB Service Discovery support in the ScrapeConfig CRD. #6651
  • [FEATURE] Add LightSail Service Discovery support in the ScrapeConfig CRD. #6660
  • [FEATURE] Add OVHCloud Service Discovery support in the ScrapeConfig CRD. #6689
  • [FEATURE] Add extra metric relabelings to scrape classes. #6492
  • [FEATURE] Add jobName field to ScrapeConfig CRD. #6618
  • [FEATURE] Add automatic memory limit handling using the flag -auto-gomemlimit-ratio. #6591
  • [FEATURE] Add support for ProxyConfig in Prometheus RemoteWrite and RemoteRead specs. #6512
  • [ENHANCEMENT] Add automatic GOMAXPROCS to admission webhook. #6599
  • [ENHANCEMENT] Add prometheus_operator_feature_gate_info metric. #6655
  • [BUGFIX] Fix reloading Alertmanager when notification templates change. #6607
  • [BUGFIX] Fix PrometheusAgent reconciliation for the statefulset changes. #6615
  • [BUGFIX] Fix readiness/liveness probes for config-reloader when listenLocal is set to true. #6698
Changelog

Sourced from github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring's changelog.

0.76.2 / 2025-09-09

  • [BUGFIX] Fix OAuth2 TLSConfig nil pointer. #6909

0.76.1 / 2025-09-03

  • [BUGFIX] fix bug with Kubernetes service discovery Selector.Role field. #6896

0.76.0 / 2025-08-08

[CHANGE] Enhanced secret management in Prometheus and PrometheusAgent CRDs by switching the secrets field from atomic to listType: set, allowing independent handling of entries by different managers to prevent conflicts and improve deployment stability. #6762 [CHANGE] Add API-level validations to Kubernetes SD in the ScrapeConfig CRD. #6678 [FEATURE] Add TLS and Proxy settings to OAuth2 configuration for Prometheus and PrometheusAgent CRDs. #6735 [FEATURE] Add support for OAuth2 in the ScrapeConfig CRD. #6814 [FEATURE] Add scale subresource to the Alertmanger CRD. #6728 [FEATURE] Add Scaleway service discovery to the ScrapeConfig CRD. #6711 [FEATURE] Add serviceDiscoveryRole field to the Prometheus and PrometheusAgent CRDs to select between Endpoints (default) and EndpointSlice for discovering scrape and alerting targets. #6672 [ENHANCEMENT] Make the namespace field optional in the Alertmanager endpoints configuration of the Prometheus CRD, if not defined it will use the default namespace. #6338 [ENHANCEMENT] Add support to configure the TLS version for Prometheus, PrometheusAgent and Alertmanager CRDs. #6736 [ENHANCEMENT] Add -secret-label-selector argument to the operator to filter the Secrets being watched. #6731 [ENHANCEMENT] Add attachMetadata field to ScrapeClasses. #6756 [BUGFIX] Add support for all proxy settings in the Alertmanager configuration. #6818

0.75.2 / 2024-07-23

  • [BUGFIX] Avoid invalid alerting config with TLS. #6765

0.75.1 / 2024-07-02

  • [BUGFIX] Fix OVHCloud service discovery configs key error. #6723

0.75.0 / 2024-06-26

  • [CHANGE] Global limits over enforced limits when no user limits are set. #6608
  • [CHANGE/BUGFIX] Use a separate port number (8081) for the init container. #6635
  • [FEATURE] Add source field in pagerdutyConfigs in AlertManangerConfig CRD. #6427
  • [FEATURE] Add DockerSwarm Service Discovery support in the ScrapeConfig CRD. #6633
  • [FEATURE] Add Linode Service Discovery support in the ScrapeConfig CRD. #6586
  • [FEATURE] Add PuppetDB Service Discovery support in the ScrapeConfig CRD. #6651
  • [FEATURE] Add LightSail Service Discovery support in the ScrapeConfig CRD. #6660
  • [FEATURE] Add OVHCloud Service Discovery support in the ScrapeConfig CRD. #6689
  • [FEATURE] Add extra metric relabelings to scrape classes. #6492
  • [FEATURE] Add jobName field to ScrapeConfig CRD. #6618
  • [FEATURE] Add automatic memory limit handling using the flag -auto-gomemlimit-ratio. #6591
  • [FEATURE] Add support for ProxyConfig in Prometheus RemoteWrite and RemoteRead specs. #6512
  • [ENHANCEMENT] Add automatic GOMAXPROCS to admission webhook. #6599
  • [ENHANCEMENT] Add prometheus_operator_feature_gate_info metric. #6655
  • [BUGFIX] Fix reloading Alertmanager when notification templates change. #6607
  • [BUGFIX] Fix PrometheusAgent reconciliation for the statefulset changes. #6615
  • [BUGFIX] Fix readiness/liveness probes for config-reloader when listenLocal is set to true. #6698
Commits


Updates go.mondoo.com/cnquery/v11 from 11.15.0 to 11.21.0

Release notes

Sourced from go.mondoo.com/cnquery/v11's releases.

v11.21.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnquery/compare/v11.20.1...v11.21.0

v11.20.1

What's Changed

Full Changelog: https://github.com/mondoohq/cnquery/compare/v11.20.0...v11.20.1

v11.20.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnquery/compare/v11.19.1...v11.20.0

v11.19.1

What's Changed

Full Changelog: https://github.com/mondoohq/cnquery/compare/v11.19.0...v11.19.1

v11.19.0

What's Changed

... (truncated)

Commits


Updates go.mondoo.com/cnspec/v11 from 11.15.0 to 11.21.0

Release notes

Sourced from go.mondoo.com/cnspec/v11's releases.

v11.21.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.20.1...v11.21.0

v11.20.1

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.20.0...v11.20.1

v11.20.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.19.1...v11.20.0

v11.19.1

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.19.0...v11.19.1

v11.19.0

What's Changed

Full Changelog: https://github.com/mondoohq/cnspec/compare/v11.18.0...v11.19.0

v11.18.0

What's Changed

... (truncated)

Commits


Updates go.mondoo.com/mondoo-go from 0.0.0-20240716062427-ec95d879cbe7 to 0.0.0-20240819110653-687d75eb1183

Commits


Updates github.com/google/go-containerregistry from 0.20.1 to 0.20.2

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.2

What's Changed

Full Changelog: https://github.com/google/go-containerregistry/compare/v0.20.1...v0.20.2

Commits


Updates github.com/prometheus/client_golang from 1.19.1 to 1.20.3

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.20.3

  • [BUGFIX] histograms: Fix possible data race when appending exemplars. #1608

v1.20.2

  • [BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. #1596

v1.20.1

This release contains the critical fix for the issue. Thanks to @​geberl, @​CubicrootXYZ, @​zetaab and @​timofurrer for helping us with the investigation!

  • [BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. #1587

v1.20.0

Thanks everyone for contributions!

:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default collectors.NewGoCollector() collector. Given its popular usage, expect your binary to expose two additional metric.

Changes

  • [CHANGE] :warning: go-collector: Remove go_memstat_lookups_total metric which was always 0; Go runtime stopped sharing pointer lookup statistics. #1577
  • [FEATURE] :warning: go-collector: Add 3 default metrics: go_gc_gogc_percent, go_gc_gomemlimit_bytes and go_sched_gomaxprocs_threads as those are recommended by the Go team. #1559
  • [FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact runtime/metrics sourcing each metric (if relevant). #1568 #1578
  • [FEATURE] testutil: Add CollectAndFormat method. #1503
  • [FEATURE] histograms: Add support for exemplars in native histograms. #1471
  • [FEATURE] promhttp: Add experimental support for zstd on scrape, controlled by the request Accept-Encoding header. #1496
  • [FEATURE] api/v1: Add WithLimit parameter to all API methods that supports it. #1544
  • [FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. #1537
  • [FEATURE] process-collectors: Add network usage metrics: process_network_receive_bytes_total and process_network_transmit_bytes_total. #1555
  • [FEATURE] promlint: Add duplicated metric lint rule. #1472
  • [BUGFIX] promlint: Relax metric type in name linter rule. #1455
  • [BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. #1480
  • [BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. #1424

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.20.3 / 2024-09-05

  • [BUGFIX] histograms: Fix possible data race when appending exemplars. #1608

1.20.2 / 2024-08-23

  • [BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. #1596

1.20.1 / 2024-08-20

  • [BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on linux machines. #1587

1.20.0 / 2024-08-14

  • [CHANGE] :warning: go-collector: Remove go_memstat_lookups_total metric which was always 0; Go runtime stopped sharing pointer lookup statistics. #1577
  • [FEATURE] :warning: go-collector: Add 3 default metrics: go_gc_gogc_percent, go_gc_gomemlimit_bytes and go_sched_gomaxprocs_threads as those are recommended by the Go team. #1559
  • [FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact runtime/metrics sourcing each metric (if relevant). #1568 #1578
  • [FEATURE] testutil: Add CollectAndFormat method. #1503
  • [FEATURE] histograms: Add support for exemplars in native histograms. #1471
  • [FEATURE] promhttp: Add experimental support for zstd on scrape, controlled by the request Accept-Encoding header. #1496
  • [FEATURE] api/v1: Add WithLimit parameter to all API methods that supports it. #1544
  • [FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. #1537
  • [FEATURE] process-collector: Add network usage metrics: process_network_receive_bytes_total and process_network_transmit_bytes_total. #1555
  • [FEATURE] promlint: Add duplicated metric lint rule. #1472
  • [BUGFIX] promlint: Relax metric type in name linter rule. #1455
  • [BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. #1480
  • [BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. #1424

1.19.0 / 2024-02-27

The module prometheus/common v0.48.0 introduced an incompatibility when used together with client_golang (See prometheus/client_golang#1448 for more details). If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.

  • [CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445 #1449
  • [FEATURE] collectors: Add version collector. #1422 #1427

1.18.0 / 2023-12-22

  • [FEATURE] promlint: Allow creation of custom metric validations. #1311
  • [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
  • [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
  • [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
  • [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

1.17.0 / 2023-09-27

  • [CHANGE] Minimum required go version is now 1.19 (we also test client_golang against new 1.21 version). #1325
  • [FEATURE] Add support for Created Timestamps in Counters, Summaries and Historams. #1313
  • [ENHANCEMENT] Enable detection of a native histogram without observations. #1314

1.16.0 / 2023-06-15

... (truncated)

Commits
  • ef2f87e Merge pull request #1620 from prometheus/arthursens/prepare-1.20.3
  • 937ac63 Add changelog entry for 1.20.3
  • 6e9914d Merge pull request #1608 from krajorama/index-out-of-range-native-histogram-e...
  • d6b8c89 Update comments with more explanations
  • 504566f Use simplified solution from #1609 for the data race
  • dc8e9a4 fix: native histogram: Simplify and fix addExemplar
  • dc819ce Use a trivial solution to #1605
  • e061dfa native histogram: use exemplars in concurrency test
  • 67121dc Merge pull request #1596 from mrueg/fix-uncompressed-content-header
  • 187acd4 Cut 1.20.2
  • Additional commits viewable in compare view


Updates k8s.io/utils from 0.0.0-20240711033017-18e509b52bc8 to 0.0.0-20240821151609-f90d01438635

Commits


Most Recent Ignore Conditions Applied to This Pull Request | Dependency Name | Ignore Conditions | | --- | --- | | github.com/google/go-containerregistry | [>= 0.15.a, < 0.16] |

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
github-actions[bot] commented 3 weeks ago

Test Results

0 files   -   5  0 suites   - 51   0s :stopwatch: - 2h 37m 59s 0 tests  - 319  0 :white_check_mark:  - 319  0 :zzz: ±0  0 :x: ±0  0 runs   - 388  0 :white_check_mark:  - 388  0 :zzz: ±0  0 :x: ±0 

Results for commit 1f4ab053. ± Comparison against base commit 3c263ff1.

dependabot[bot] commented 3 weeks ago

Superseded by #1170.