Bump github.com/tektoncd/cli from 0.29.0 to 0.32.2

[dependabot[bot]]

Bumps github.com/tektoncd/cli from 0.29.0 to 0.32.2.

Release notes

Sourced from github.com/tektoncd/cli's releases.

v0.32.2 Release 🎉

This is a patch release addressing a security issue on the github.com/grpc/grpc-go dependency:

• This addresses https://github.com/advisories/GHSA-qppj-fm5r-hxr3 by not allowing more server handlers to be run than the HTTP/2 MAX_CONCURRENT_STREAMS setting.

ChangeLog 📋

Misc 🔨

• Bump pipeline, triggers, hub and grpc https://github.com/tektoncd/cli/commit/ea6221d32f7c06a596d124ce6b7587a09c94226e

Thanks ❤️

• @​piyush-garg

v0.32.1 Release 🎉

This is a minor release addressing a security issue on the golang.org/x/net dependency:

• HTTP/2 rapid reset can cause excessive work in net/http - commits

ChangeLog 📋

Misc 🔨

• Bump github.com/tektoncd/pipeline from 0.50.1 to 0.50.2 https://github.com/tektoncd/cli/commit/2ed095c3e52695af6522793fa9deee1fde4ce844
• Bump github.com/tektoncd/triggers from 0.25.0 to 0.25.1 https://github.com/tektoncd/cli/commit/6bb26ed43d276eb9f0900beb89a3d3d903bd7169
• Bump github.com/tektoncd/hub from 0.14.0 to 0.14.1 https://github.com/tektoncd/cli/commit/bade6245b7ed61ed2ab9b41cc989d9b24598c61d
• Bump github.com/tektoncd/chains from 0.17.0 to 0.17.1 https://github.com/tektoncd/cli/commit/da97809ce85bdae0ce7dedfb64ddf739e766414f

Thanks ❤️

• @​piyush-garg

v0.32.0 Release 🎉

This is a major LTS release which comes with Pipelines version v0.50.x (LTS), Triggers version v0.25.0, Chains version v0.17.0 and Hub version v0.14.0. This release not only covers bumping up of dependencies to most recent versions but a couple of feature and fixes such as now tkn pipelinerun logs command now supports streaming of logs from PIpelineRun resolvers and we can now add annotations which pushing the tekton bundles. There were of couple of bugs fixes as well such as while streaming PipelineRun logs with invalid Task selected, there was an infinite loop instead of throwing error and couple of other bugs fixes.

ChangeLog 📋

Features :sparkles:

• Add resolver support in tkn pr log commands tektoncd/cli#2083
• Support for Manifest annotations in bundle push tektoncd/cli#2105

Fixes 🐛

• Fix tkn p start --showlog by handling informer ResourceEventHandler tektoncd/cli#2048
• Fix tkn p start command for --timeout flag tektoncd/cli#2058
• Use only sigs.k8s.io/yaml for yaml usecases tektoncd/cli#2080

... (truncated)

Commits

• 37717a7 New version v0.32.2
• ea6221d Bump pipeline, trigger, hub to bump grpc
• e896f5b New version v0.32.1
• da97809 Bump tektoncd/chains to v0.17.1
• 6bb26ed Bump github.com/tektoncd/triggers from 0.25.0 to 0.25.1
• bade624 Bump github.com/tektoncd/hub from 1.14.0 to 1.14.1
• 2ed095c Bump tektoncd/pipeline to v0.50.2
• b80cf30 New version v0.32.0
• 3a96d67 Bump github.com/docker/cli
• 6bae3e6 Bump github.com/docker/docker
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[tekton-robot]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a tektoncd member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository.

[tekton-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: To complete the pull request process, please ask for approval from enarha after the PR has been reviewed.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files: - **[OWNERS](https://github.com/tektoncd/results/blob/main/OWNERS)** Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment

[enarha]

/ok-to -test

[enarha]

/ok-to-test

[khrm]

/release-note-none

[tekton-robot]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
pull-tekton-results-integration-tests	7c8aa8e3ae575505597e143312b14f517dce5802	link	true	/test pull-tekton-results-integration-tests
pull-tekton-results-build-tests	7c8aa8e3ae575505597e143312b14f517dce5802	link	true	/test pull-tekton-results-build-tests
pull-tekton-results-unit-tests	7c8aa8e3ae575505597e143312b14f517dce5802	link	true	/test pull-tekton-results-unit-tests

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository. I understand the commands that are listed [here](https://go.k8s.io/bot-commands).

[dependabot[bot]]

Superseded by #660.