Bump k8s.io/apimachinery from 0.29.3 to 0.31.0

[dependabot[bot]]

Bumps k8s.io/apimachinery from 0.29.3 to 0.31.0.

Commits

• a8f449e Falls back to SPDY for gorilla/websocket https proxy error
• 62791ec Merge pull request #125571 from liggitt/filter-auth-02-sar
• cc2ba35 add field and label selectors to authorization attributes
• ce76a8f generate
• 35052c5 add subjectaccessreview field and label selectors
• ab06869 Merge pull request #126105 from benluddy/cbor-framer
• 429f4e4 Implement runtime.Framer for CBOR Sequences.
• d7e1c53 Merge pull request #126018 from aroradaman/bump-k8s-utils
• 07cb122 Merge pull request #125748 from benluddy/cbor-custom-marshalers
• dd17456 bump k8s.io/utils
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 6 package(s) with unknown licenses.

See the Details below.

License Issues

go.mod

Package	Version	License	Issue Type
golang.org/x/net	0.26.0	Null	Unknown License
golang.org/x/sys	0.21.0	Null	Unknown License
golang.org/x/term	0.21.0	Null	Unknown License
golang.org/x/text	0.16.0	Null	Unknown License
golang.org/x/tools	0.21.1-0.20240508182429-e35e4ccd0d2d	Null	Unknown License
google.golang.org/protobuf	1.34.2	Null	Unknown License

Allowed Licenses: Apache-2.0, BSD-2-Clause, BSD-3-Clause, BSL-1.0, CC0-1.0, ISC, MIT, MPL-2.0, Unlicense

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
gomod/github.com/fxamacker/cbor/v2	2.7.0	:green_circle: 8.9	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Security-Policy :green_circle: 10 security policy file detected Signed-Releases :warning: -1 no releases found Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies :green_circle: 10 all dependencies are pinned Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/github.com/go-logr/logr	1.4.2	:green_circle: 8.8	Details Check Score Reason Binary-Artifacts :green_circle: 10 no binaries found in the repo Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests :green_circle: 10 20 out of 20 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Code-Review :green_circle: 10 all changesets reviewed Contributors :green_circle: 10 project has 6 contributing companies or organizations Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Dependency-Update-Tool :green_circle: 10 update tool detected Fuzzing :warning: 0 project is not fuzzed License :green_circle: 10 license file detected Maintained :green_circle: 10 28 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging :warning: -1 packaging workflow not detected Pinned-Dependencies :green_circle: 6 dependency not pinned by hash detected -- score normalized to 6 SAST :green_circle: 9 SAST tool is not run on all commits -- score normalized to 9 Security-Policy :green_circle: 10 security policy file detected Signed-Releases :warning: -1 no releases found Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/github.com/go-openapi/swag	0.22.4	:green_circle: 4.4	Details Check Score Reason Code-Review :green_circle: 4 Found 8/20 approved changesets -- score normalized to 4 Maintained :warning: 0 1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :warning: 0 security policy file not detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :green_circle: 3 SAST tool is not run on all commits -- score normalized to 3
gomod/github.com/google/pprof	0.0.0-20240525223248-4bfdf5a9a2af	:green_circle: 8.2	Details Check Score Reason Maintained :green_circle: 10 11 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 10 all changesets reviewed CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions SAST :green_circle: 4 SAST tool is not run on all commits -- score normalized to 4 Pinned-Dependencies :green_circle: 10 all dependencies are pinned Fuzzing :green_circle: 10 project is fuzzed Security-Policy :green_circle: 10 security policy file detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/github.com/google/uuid	1.6.0	:green_circle: 8	Details Check Score Reason Maintained :green_circle: 7 4 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 7 Code-Review :green_circle: 10 all changesets reviewed CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :green_circle: 10 project is fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :warning: 1 SAST tool is not run on all commits -- score normalized to 1
gomod/github.com/onsi/ginkgo/v2	2.19.0	:green_circle: 5.6	Details Check Score Reason Code-Review :green_circle: 3 Found 8/22 approved changesets -- score normalized to 3 Maintained :green_circle: 10 23 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Branch-Protection :warning: 0 branch protection not enabled on development/release branches Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :warning: 0 security policy file not detected Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 4 6 existing vulnerabilities detected
gomod/github.com/x448/float16	0.8.4	:green_circle: 7.3	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :warning: 2 2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 8 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/golang.org/x/net	0.26.0	Unknown	Unknown
gomod/golang.org/x/sys	0.21.0	Unknown	Unknown
gomod/golang.org/x/term	0.21.0	Unknown	Unknown
gomod/golang.org/x/text	0.16.0	Unknown	Unknown
gomod/golang.org/x/tools	0.21.1-0.20240508182429-e35e4ccd0d2d	Unknown	Unknown
gomod/google.golang.org/protobuf	1.34.2	Unknown	Unknown
gomod/k8s.io/apimachinery	0.31.0	:green_circle: 6	Details Check Score Reason Code-Review :warning: 0 Found 0/30 approved changesets -- score normalized to 0 Maintained :green_circle: 10 29 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :warning: -1 no workflows found Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: -1 No tokens found SAST :warning: 0 no SAST tool detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: -1 no dependencies found Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/k8s.io/klog/v2	2.130.1	:green_circle: 6.5	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 8 8 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 8 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/k8s.io/kube-openapi	0.0.0-20240228011516-70dd3763d340	:green_circle: 7.2	Details Check Score Reason Maintained :green_circle: 10 23 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 10 all changesets reviewed CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :green_circle: 10 project is fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/k8s.io/utils	0.0.0-20240711033017-18e509b52bc8	:green_circle: 5.8	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 3 4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/github.com/go-logr/logr	1.4.1	:green_circle: 8.8	Details Check Score Reason Binary-Artifacts :green_circle: 10 no binaries found in the repo Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests :green_circle: 10 20 out of 20 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Code-Review :green_circle: 10 all changesets reviewed Contributors :green_circle: 10 project has 6 contributing companies or organizations Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Dependency-Update-Tool :green_circle: 10 update tool detected Fuzzing :warning: 0 project is not fuzzed License :green_circle: 10 license file detected Maintained :green_circle: 10 28 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging :warning: -1 packaging workflow not detected Pinned-Dependencies :green_circle: 6 dependency not pinned by hash detected -- score normalized to 6 SAST :green_circle: 9 SAST tool is not run on all commits -- score normalized to 9 Security-Policy :green_circle: 10 security policy file detected Signed-Releases :warning: -1 no releases found Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/github.com/go-openapi/swag	0.22.3	:green_circle: 4.4	Details Check Score Reason Code-Review :green_circle: 4 Found 8/20 approved changesets -- score normalized to 4 Maintained :warning: 0 1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Security-Policy :warning: 0 security policy file not detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :green_circle: 3 SAST tool is not run on all commits -- score normalized to 3
gomod/github.com/google/pprof	0.0.0-20240424215950-a892ee059fd6	:green_circle: 8.2	Details Check Score Reason Maintained :green_circle: 10 11 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 10 all changesets reviewed CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions SAST :green_circle: 4 SAST tool is not run on all commits -- score normalized to 4 Pinned-Dependencies :green_circle: 10 all dependencies are pinned Fuzzing :green_circle: 10 project is fuzzed Security-Policy :green_circle: 10 security policy file detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/github.com/google/uuid	1.4.0	:green_circle: 8	Details Check Score Reason Maintained :green_circle: 7 4 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 7 Code-Review :green_circle: 10 all changesets reviewed CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :green_circle: 10 project is fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :warning: 1 SAST tool is not run on all commits -- score normalized to 1
gomod/github.com/onsi/ginkgo/v2	2.18.0	:green_circle: 5.6	Details Check Score Reason Code-Review :green_circle: 3 Found 8/22 approved changesets -- score normalized to 3 Maintained :green_circle: 10 23 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Branch-Protection :warning: 0 branch protection not enabled on development/release branches Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy :warning: 0 security policy file not detected Fuzzing :warning: 0 project is not fuzzed SAST :green_circle: 9 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 4 6 existing vulnerabilities detected
gomod/golang.org/x/net	0.25.0	Unknown	Unknown
gomod/golang.org/x/sys	0.20.0	Unknown	Unknown
gomod/golang.org/x/term	0.20.0	Unknown	Unknown
gomod/golang.org/x/text	0.15.0	Unknown	Unknown
gomod/golang.org/x/tools	0.21.0	Unknown	Unknown
gomod/google.golang.org/protobuf	1.33.0	Unknown	Unknown
gomod/k8s.io/apimachinery	0.29.3	:green_circle: 6	Details Check Score Reason Code-Review :warning: 0 Found 0/30 approved changesets -- score normalized to 0 Maintained :green_circle: 10 29 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :warning: -1 no workflows found Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: -1 No tokens found SAST :warning: 0 no SAST tool detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: -1 no dependencies found Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/k8s.io/klog/v2	2.110.1	:green_circle: 6.5	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 8 8 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 8 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 10 security policy file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/k8s.io/kube-openapi	0.0.0-20231010175941-2dd684a91f00	:green_circle: 7.2	Details Check Score Reason Maintained :green_circle: 10 23 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 10 all changesets reviewed CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Security-Policy :green_circle: 10 security policy file detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :green_circle: 10 project is fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
gomod/k8s.io/utils	0.0.0-20230726121419-3b25d923346b	:green_circle: 5.8	Details Check Score Reason Code-Review :green_circle: 10 all changesets reviewed Maintained :green_circle: 3 4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected

Scanned Manifest Files

go.mod

• github.com/fxamacker/cbor/v2@2.7.0
• github.com/go-logr/logr@1.4.2
• github.com/go-openapi/swag@0.22.4
• github.com/google/pprof@0.0.0-20240525223248-4bfdf5a9a2af
• github.com/google/uuid@1.6.0
• github.com/onsi/ginkgo/v2@2.19.0
• github.com/x448/float16@0.8.4
• golang.org/x/net@0.26.0
• golang.org/x/sys@0.21.0
• golang.org/x/term@0.21.0
• golang.org/x/text@0.16.0
• golang.org/x/tools@0.21.1-0.20240508182429-e35e4ccd0d2d
• google.golang.org/protobuf@1.34.2
• k8s.io/apimachinery@0.31.0
• k8s.io/klog/v2@2.130.1
• k8s.io/kube-openapi@0.0.0-20240228011516-70dd3763d340
• k8s.io/utils@0.0.0-20240711033017-18e509b52bc8
• github.com/go-logr/logr@1.4.1
• github.com/go-openapi/swag@0.22.3
• github.com/google/pprof@0.0.0-20240424215950-a892ee059fd6
• github.com/google/uuid@1.4.0
• github.com/onsi/ginkgo/v2@2.18.0
• golang.org/x/net@0.25.0
• golang.org/x/sys@0.20.0
• golang.org/x/term@0.20.0
• golang.org/x/text@0.15.0
• golang.org/x/tools@0.21.0
• google.golang.org/protobuf@1.33.0
• k8s.io/apimachinery@0.29.3
• k8s.io/klog/v2@2.110.1
• k8s.io/kube-openapi@0.0.0-20231010175941-2dd684a91f00
• k8s.io/utils@0.0.0-20230726121419-3b25d923346b

[flavio]

Superseded by https://github.com/spinkube/runtime-class-manager/pull/205

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.