search

traPtitech / NeoShowcase

PaaS (Platform as a Service) on Docker 🐳 or k8s ☸
MIT License
53 stars 4 forks source link

build(deps): bump the non-majors group with 16 updates #957

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps the non-majors group with 16 updates:

Package From To
github.com/cert-manager/cert-manager 1.15.2 1.15.3
github.com/docker/cli 27.1.1+incompatible 27.2.0+incompatible
github.com/go-playground/webhooks/v6 6.3.0 6.4.0
github.com/moby/buildkit 0.15.1 0.15.2
github.com/prometheus/client_golang 1.19.1 1.20.2
github.com/prometheus/common 0.55.0 0.57.0
github.com/regclient/regclient 0.7.0 0.7.1
github.com/samber/lo 1.46.0 1.47.0
github.com/traefik/traefik/v3 3.1.1 3.1.2
go.mongodb.org/mongo-driver 1.16.0 1.16.1
golang.org/x/crypto 0.25.0 0.26.0
golang.org/x/net 0.27.0 0.28.0
golang.org/x/sync 0.7.0 0.8.0
k8s.io/api 0.30.3 0.31.0
k8s.io/apimachinery 0.30.3 0.31.0
k8s.io/client-go 0.30.3 0.31.0

Updates github.com/cert-manager/cert-manager from 1.15.2 to 1.15.3

Release notes

Sourced from github.com/cert-manager/cert-manager's releases.

v1.15.3

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

🔗 See v1.15.0 for more information about cert-manager 1.15 and read-before-upgrade info.

📜 Changes since v1.15.2

Bug or Regression

  • BUGFIX: the dynamic certificate source used by the webhook TLS server failed to detect a root CA approaching expiration, due to a calculation error. This will cause the webhook TLS server to fail renewing its CA certificate. Please upgrade before the expiration of this CA certificate is reached. (#7232, @​cert-manager-bot)
Commits
  • 0448418 Merge pull request #7232 from cert-manager-bot/cherry-pick-7230-to-release-1.15
  • 87f4e1a add test case for expired certificate
  • 0749fee add caRequiresRegeneration unit test and fix incorrect renewal time calculation
  • See full diff in compare view


Updates github.com/docker/cli from 27.1.1+incompatible to 27.2.0+incompatible

Commits
  • 3ab4256 Merge pull request #5374 from vvoland/vendor-docker
  • 88a49df vendor: github.com/docker/docker 3ab5c7d0036c (v27.2.0-dev)
  • 5d17c29 Merge pull request #5372 from thaJeztah/27.x_backport_fix_linting_issues
  • 64b9e4c cli: rename args that collided with builtins (predeclard)
  • 4b71d0d e2e/global: fix n-constant format string in call (govet)
  • 002cfcd cli/command: fix n-constant format string in call (govet)
  • d8af781 cli/command/system: remove redundant nil-check (gosimple)
  • f042ddb Merge pull request #5371 from vvoland/vendor-docker
  • 8e94ed1 vendor: github.com/docker/docker b27de4ef1634 (v27.2.0-dev)
  • 7a82aee Merge pull request #5368 from dvdksn/27x_5360
  • Additional commits viewable in compare view


Updates github.com/go-playground/webhooks/v6 from 6.3.0 to 6.4.0

Release notes

Sourced from github.com/go-playground/webhooks/v6's releases.

v6.4.0

What's Changed

New Contributors

Full Changelog: https://github.com/go-playground/webhooks/compare/v6.3.0...v6.4.0

Commits


Updates github.com/moby/buildkit from 0.15.1 to 0.15.2

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.15.2

Welcome to the v0.15.2 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

  • Tõnis Tiigi
  • Akihiro Suda
  • Justin Chadwell
  • Sebastiaan van Stijn

Notable Changes

  • Fix issue with inline cache when embedded into Docker #5257
  • Fix possible pause before running container when using secret mounts #5251 #5252

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.15.1

Commits
  • 9e14164 Merge pull request #5258 from tonistiigi/v0.15.2-picks
  • e24cd7c remotecache: handle not implemented error for Info()
  • a9d183a chore: set pb.Empty on ssh and secret mounts
  • d1d3ad8 exec: fix incorrect deps computation for special mounts
  • 509c08c Merge pull request #5195 from thaJeztah/0.15_backport_fix_wrong_errdefs
  • f3ed463 snapshot/containerd: fix wrong errdefs package import
  • See full diff in compare view


Updates github.com/prometheus/client_golang from 1.19.1 to 1.20.2

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.20.2

  • [BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. #1596

v1.20.1

This release contains the critical fix for the issue. Thanks to @​geberl, @​CubicrootXYZ, @​zetaab and @​timofurrer for helping us with the investigation!

  • [BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on Linux machines. #1587

v1.20.0

Thanks everyone for contributions!

:warning: In this release we remove one (broken anyway, given Go runtime changes) metric and add three new (representing GOGC, GOMEMLIMIT and GOMAXPROCS flags) to the default collectors.NewGoCollector() collector. Given its popular usage, expect your binary to expose two additional metric.

Changes

  • [CHANGE] :warning: go-collector: Remove go_memstat_lookups_total metric which was always 0; Go runtime stopped sharing pointer lookup statistics. #1577
  • [FEATURE] :warning: go-collector: Add 3 default metrics: go_gc_gogc_percent, go_gc_gomemlimit_bytes and go_sched_gomaxprocs_threads as those are recommended by the Go team. #1559
  • [FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact runtime/metrics sourcing each metric (if relevant). #1568 #1578
  • [FEATURE] testutil: Add CollectAndFormat method. #1503
  • [FEATURE] histograms: Add support for exemplars in native histograms. #1471
  • [FEATURE] promhttp: Add experimental support for zstd on scrape, controlled by the request Accept-Encoding header. #1496
  • [FEATURE] api/v1: Add WithLimit parameter to all API methods that supports it. #1544
  • [FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. #1537
  • [FEATURE] process-collectors: Add network usage metrics: process_network_receive_bytes_total and process_network_transmit_bytes_total. #1555
  • [FEATURE] promlint: Add duplicated metric lint rule. #1472
  • [BUGFIX] promlint: Relax metric type in name linter rule. #1455
  • [BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. #1480
  • [BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. #1424

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.20.2 / 2024-08-23

  • [BUGFIX] promhttp: Unset Content-Encoding header when data is uncompressed. #1596

1.20.1 / 2024-08-20

  • [BUGFIX] process-collector: Fixed unregistered descriptor error when using process collector with PedanticRegistry on linux machines. #1587

1.20.0 / 2024-08-14

  • [CHANGE] :warning: go-collector: Remove go_memstat_lookups_total metric which was always 0; Go runtime stopped sharing pointer lookup statistics. #1577
  • [FEATURE] :warning: go-collector: Add 3 default metrics: go_gc_gogc_percent, go_gc_gomemlimit_bytes and go_sched_gomaxprocs_threads as those are recommended by the Go team. #1559
  • [FEATURE] go-collector: Add more information to all metrics' HELP e.g. the exact runtime/metrics sourcing each metric (if relevant). #1568 #1578
  • [FEATURE] testutil: Add CollectAndFormat method. #1503
  • [FEATURE] histograms: Add support for exemplars in native histograms. #1471
  • [FEATURE] promhttp: Add experimental support for zstd on scrape, controlled by the request Accept-Encoding header. #1496
  • [FEATURE] api/v1: Add WithLimit parameter to all API methods that supports it. #1544
  • [FEATURE] prometheus: Add support for created timestamps in constant histograms and constant summaries. #1537
  • [FEATURE] process-collector: Add network usage metrics: process_network_receive_bytes_total and process_network_transmit_bytes_total. #1555
  • [FEATURE] promlint: Add duplicated metric lint rule. #1472
  • [BUGFIX] promlint: Relax metric type in name linter rule. #1455
  • [BUGFIX] promhttp: Make sure server instrumentation wrapping supports new and future extra responseWriter methods. #1480
  • [BUGFIX] testutil: Functions using compareMetricFamilies are now failing if filtered metricNames are not in the input. #1424

1.19.0 / 2024-02-27

The module prometheus/common v0.48.0 introduced an incompatibility when used together with client_golang (See prometheus/client_golang#1448 for more details). If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.

  • [CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445 #1449
  • [FEATURE] collectors: Add version collector. #1422 #1427

1.18.0 / 2023-12-22

  • [FEATURE] promlint: Allow creation of custom metric validations. #1311
  • [FEATURE] Go programs using client_golang can be built in wasip1 OS. #1350
  • [BUGFIX] histograms: Add timer to reset ASAP after bucket limiting has happened. #1367
  • [BUGFIX] testutil: Fix comparison of metrics with empty Help strings. #1378
  • [ENHANCEMENT] Improved performance of MetricVec.WithLabelValues(...). #1360

1.17.0 / 2023-09-27

  • [CHANGE] Minimum required go version is now 1.19 (we also test client_golang against new 1.21 version). #1325
  • [FEATURE] Add support for Created Timestamps in Counters, Summaries and Historams. #1313
  • [ENHANCEMENT] Enable detection of a native histogram without observations. #1314

1.16.0 / 2023-06-15

  • [BUGFIX] api: Switch to POST for LabelNames, Series, and QueryExemplars. #1252
  • [BUGFIX] api: Fix undefined execution order in return statements. #1260
  • [BUGFIX] native histograms: Fix bug in bucket key calculation. #1279

... (truncated)

Commits
  • 67121dc Merge pull request #1596 from mrueg/fix-uncompressed-content-header
  • 187acd4 Cut 1.20.2
  • f7f8f3a fix: Unset Content-Encoding header when uncompressed
  • 2254d6c Merge pull request #1587 from prometheus/fix-processcollector
  • 4a15d05 Cut 1.20.1
  • f2dd7b3 Use pedantic registry in other places too, to double check.
  • 261fe84 bugfix: Pass network metrics to processCollector's Describe() function
  • 5bf3341 Use NewPedanticRegistry in Process' Collector tests
  • 73b811c Cut 1.20.0 release. (#1580)
  • 7ce5089 gocollector: Attach original runtime/metrics metric name to help. (#1578)
  • Additional commits viewable in compare view


Updates github.com/prometheus/common from 0.55.0 to 0.57.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.57.0

What's Changed

New Contributors

Full Changelog: https://github.com/prometheus/common/compare/v0.56.0...v0.57.0

v0.56.0

What's Changed

New Contributors

Full Changelog: https://github.com/prometheus/common/compare/v0.55.0...v0.56.0

Commits
  • 9bbc9cb Merge pull request #677 from tjhop/feat/add-promslog-pkg
  • 6ea2584 feat: new promslog and promslog/flag packages to wrap log/slog
  • 6623230 Provide a method for explicitly checking label names for legacy validity. (#682)
  • 19d0796 Merge pull request #681 from prometheus/repo_sync
  • 29a2d2c Update common Prometheus files
  • 8968b6c expfmt: Add UTF-8 syntax support in text_parse.go (#670)
  • cd4bcc0 Update golangci lint (#679)
  • 2cac84e Update client_golang (#676)
  • 79c0459 Merge pull request #675 from dswarbrick/fix-32bit-overflows
  • 008d7b8 Fix overflows of untyped int constants on 32-bit
  • Additional commits viewable in compare view


Updates github.com/regclient/regclient from 0.7.0 to 0.7.1

Release notes

Sourced from github.com/regclient/regclient's releases.

v0.7.1

Release v0.7.1

PR 798 fixes an issue where a malicious registry could return a pinned manifest different from the request. Commands like regctl manifest get $image@$digest will now verify the digest of the returned manifest matches the request rather than the registry headers.

Security updates:

Features:

  • Add a WithDockerCredsFile() regclient.Opt. (PR 784)
  • Add regctl artifact get --config option to only return the config. (PR 795)

Fixes:

  • Detect amd64 variants for --platform local. (PR 782)
  • Mod tracking of changed manifests. (PR 783)
  • Tar path separator should always be a /. (PR 788)

Other Changes:

  • Remove docker build cache in GHA. (PR 780)

Contributors:

Changelog

Sourced from github.com/regclient/regclient's changelog.

Release v0.7.1

PR 798 fixes an issue where a malicious registry could return a pinned manifest different from the request. Commands like regctl manifest get $image@$digest will now verify the digest of the returned manifest matches the request rather than the registry headers.

Security updates:

  • Validate the digest of the ref when provided. (PR 798)

Features:

  • Add a WithDockerCredsFile() regclient.Opt. (PR 784)
  • Add regctl artifact get --config option to only return the config. (PR 795)

Fixes:

  • Detect amd64 variants for --platform local. (PR 782)
  • Mod tracking of changed manifests. (PR 783)
  • Tar path separator should always be a /. (PR 788)

Other Changes:

  • Remove docker build cache in GHA. (PR 780)

Contributors:

Commits
  • cdfb08e Release v0.7.1
  • adecb9b Merge for release v0.7.1
  • 40da38d Merge pull request #799 from sudo-bmitch/pr-update-20240803
  • ca3bf90 Version bump
  • 5f31b05 Merge pull request #798 from sudo-bmitch/pr-ref-digest
  • 7d17cff Fix: Validate the digest of the ref when provided
  • f869cf4 Merge pull request #796 from sudo-bmitch/pr-update-20240726
  • 6e48866 Version bump
  • c2a4ce2 Merge pull request #795 from sudo-bmitch/pr-artifact-config
  • cedfa5a Option to output config with regctl artifact get
  • Additional commits viewable in compare view


Updates github.com/samber/lo from 1.46.0 to 1.47.0

Release notes

Sourced from github.com/samber/lo's releases.

v1.47.0

What's Changed

New Contributors

Full Changelog: https://github.com/samber/lo/compare/v1.46.0...v1.47.0

Commits


Updates github.com/traefik/traefik/v3 from 3.1.1 to 3.1.2

Release notes

Sourced from github.com/traefik/traefik/v3's releases.

v3.1.2

Bug fixes:

  • [k8s,k8s/gatewayapi] Include status addresses when comparing Gateway statuses (#10972 by kevinpollet)
  • [k8s/ingress,k8s/crd,k8s] Allow to disable Kubernetes cluster scope resources discovery (#10946 by rtribotte)
  • [logs] Change logs output from stderr to stdout (#10973 by rtribotte)
  • Fix grafana dashboard to work with scrape interval greater than 15s (#10954 by swiffer)

Documentation:

  • [accesslogs] Add Access logs section to the migration guide (#10947 by lbenguigui)
  • [http] Fix missing codeblock ending in HTTP discover documentation (#10967 by djcode)
  • [http] Fix yaml config example for HTTP provider headers (#10966 by djcode)
  • [k8s,k8s/gatewayapi] Use Standard channel by default with Gateway API (#10974 by mloiseleur)

Misc:

Changelog

Sourced from github.com/traefik/traefik/v3's changelog.

v3.1.2 (2024-08-06)

All Commits

Bug fixes:

  • [k8s,k8s/gatewayapi] Include status addresses when comparing Gateway statuses (#10972 by kevinpollet)
  • [k8s/ingress,k8s/crd,k8s] Allow to disable Kubernetes cluster scope resources discovery (#10946 by rtribotte)
  • [logs] Change logs output from stderr to stdout (#10973 by rtribotte)
  • Fix grafana dashboard to work with scrape interval greater than 15s (#10954 by swiffer)

Documentation:

  • [accesslogs] Add Access logs section to the migration guide (#10947 by lbenguigui)
  • [http] Fix missing codeblock ending in HTTP discover documentation (#10967 by djcode)
  • [http] Fix yaml config example for HTTP provider headers (#10966 by djcode)
  • [k8s,k8s/gatewayapi] Use Standard channel by default with Gateway API (#10974 by mloiseleur)

Misc:

v2.11.8 (2024-08-06)

All Commits

Bug fixes:

Documentation:

Commits
  • 4c4780f Prepare release v3.1.2
  • 926a8e8 Merge current v2.11 into v3.1
  • 6b1adab Prepare release v2.11.8
  • 4eedcab Use Standard channel by default with Gateway API
  • 5bf4b53 Change logs output from stderr to stdout
  • 5380e48 Include status addresses when comparing Gateway statuses
  • ccc11a6 Fix yaml config example for HTTP provider headers
  • 0f57f10 Fix missing codeblock ending in HTTP discover documentation
  • c0b704e Fix grafana dashboard to work with scrape interval greater than 15s
  • a50345b Allow to disable Kubernetes cluster scope resources discovery
  • Additional commits viewable in compare view


Updates go.mongodb.org/mongo-driver from 1.16.0 to 1.16.1

Release notes

Sourced from go.mongodb.org/mongo-driver's releases.

MongoDB Go Driver 1.16.1

The MongoDB Go Driver Team is pleased to release version 1.16.1 of the official Go driver.

Release Notes

This release fixes a bug where excessive heartbeat checks would be emitted in polling mode.

For a full list of tickets included in this release, please see the links below:

Full Changelog: v1.16.0...v1.16.1

Documentation for the Go driver can be found on pkg.go.dev and the MongoDB documentation site. BSON library documentation is also available on pkg.go.dev. Questions and inquiries can be asked on the MongoDB Developer Community. Bugs can be reported in the Go Driver project in the MongoDB JIRA where a list of current issues can be found. Your feedback on the Go driver is greatly appreciated!

Commits
  • 9ea6d8e BUMP v1.16.1
  • c8fb3ec GODRIVER-3255 [release/1.16] Await heartbeat checks upto freq when polling (#...
  • 6ac5ab9 GODRIVER-3292 [release/1.16] Pass context to custom mtest monitor (#1736)
  • 9d8f187 update silk asset group
  • See full diff in compare view


Updates golang.org/x/crypto from 0.25.0 to 0.26.0

Commits
  • 5bcd010 go.mod: update golang.org/x dependencies
  • 3375612 ssh: add support for unpadded RSA signatures
  • bb80217 ssh: don't use dsa keys in integration tests
  • 6879722 ssh: remove go 1.21+ dependency on slices
  • e983fa2 sha3: Avo port of keccakf_amd64.s
  • 80fd972 LICENSE: update per Google Legal
  • f2bc3a6 x509roots/fallback/internal/goissue52287: delete
  • d66d9c3 x509roots/fallback: update bundle
  • See full diff in compare view


Updates golang.org/x/net from 0.27.0 to 0.28.0

Commits
  • 4542a42 go.mod: update golang.org/x dependencies
  • 765c7e8 xsrftoken: create no padding base64 string by RawURLEncoding
  • 032e4e4 LICENSE: update per Google Legal
  • See full diff in compare view


Updates golang.org/x/sync from 0.7.0 to 0....

Description has been truncated

github-actions[bot] commented 2 months ago

Preview (prod backend + PR dashboard) → https://957.ns-preview.trapti.tech/