Dependency Dashboard

[renovate[bot]]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• [ ] Update golangci/golangci-lint-action action to v3.7.1
• [ ] Update alpine Docker tag to v3.20.0
• [ ] Update kubernetes packages to v0.30.1 (k8s.io/api, k8s.io/apimachinery, k8s.io/client-go)
• [ ] Update module github.com/CycloneDX/cyclonedx-go to v0.8.0
• [ ] Update module github.com/distribution/reference to v0.6.0
• [ ] Update module github.com/google/uuid to v1.6.0
• [ ] Update module github.com/rs/zerolog to v1.33.0
• [ ] Update module github.com/stretchr/testify to v1.9.0
• [ ] Update module golang.org/x/term to v0.20.0
• [ ] Update golangci/golangci-lint-action action to v6
• [ ] Click on this checkbox to rebase all open PRs at once

Detected dependencies

dockerfile

build/package/Dockerfile.gorelease

- `alpine 3.19.0`

github-actions

.github/workflows/build.yml

- `actions/checkout v4` - `actions/checkout v4` - `actions/setup-go v5` - `goreleaser/goreleaser-action v5` - `anchore/scan-action v3` - `github/codeql-action v3`

.github/workflows/golangci-lint.yml

- `actions/checkout v4` - `actions/setup-go v5` - `golangci/golangci-lint-action v3.7.0`

.github/workflows/release.yml

- `actions/checkout v4` - `actions/checkout v4` - `actions/setup-go v5` - `sigstore/cosign-installer v3` - `anchore/sbom-action v0` - `docker/login-action v3` - `goreleaser/goreleaser-action v5` - `CycloneDX/gh-gomod-generate-sbom v2`

.github/workflows/scan.yml

- `actions/checkout v4` - `actions/setup-go v5` - `github/codeql-action v3` - `github/codeql-action v3` - `github/codeql-action v3`

.github/workflows/test.yml

- `actions/checkout v4` - `actions/setup-go v5`

gomod

go.mod

- `go 1.21` - `github.com/CycloneDX/cyclonedx-go v0.7.2` - `github.com/Masterminds/semver v1.5.0` - `github.com/distribution/reference v0.5.0` - `github.com/google/uuid v1.5.0` - `github.com/invopop/jsonschema v0.12.0` - `github.com/mitchellh/hashstructure/v2 v2.0.2` - `github.com/rs/zerolog v1.31.0` - `github.com/spf13/cobra v1.8.0` - `github.com/spf13/pflag v1.0.5` - `github.com/spf13/viper v1.18.2` - `github.com/stretchr/testify v1.8.4` - `golang.org/x/term v0.15.0` - `gopkg.in/yaml.v3 v3.0.1` - `k8s.io/api v0.29.0` - `k8s.io/apimachinery v0.29.0` - `k8s.io/client-go v0.29.0`

---

• [ ] Check this box to trigger a request for Renovate to run again on this repository