Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the all group across 1 directory with 4 updates #3622

Closed
wants to merge 1 commit into from
Closed

Bump the all group across 1 directory with 4 updates #3622

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 23, 2024
edited
Loading

Bumps the all group with 3 updates in the / directory: github.com/goark/go-cvss, github.com/shirou/gopsutil/v3 and sigs.k8s.io/release-sdk.

Updates github.com/goark/go-cvss from 1.6.6 to 1.6.7

Release notes

Sourced from github.com/goark/go-cvss's releases.

v1.6.7

What's Changed

New Contributors

Full Changelog: goark/go-cvss@v1.6.6...v1.6.7

Commits

Updates github.com/shirou/gopsutil/v3 from 3.24.3 to 3.24.4

Release notes

Sourced from github.com/shirou/gopsutil/v3's releases.

v3.24.4

What's Changed

net

New Contributors

Full Changelog: shirou/gopsutil@v3.24.3...v3.24.4

Commits
  • 428fe9b Merge pull request #1635 from shirou/dependabot/github_actions/golangci/golan...
  • 8d67022 chore(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.1.0
  • 979696a Merge pull request #1631 from shirou/dependabot/github_actions/actions/checko...
  • 54d464d Merge pull request #1632 from shirou/dependabot/github_actions/golangci/golan...
  • 65426fe chore(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.0.0
  • 97f2608 chore(deps): bump actions/checkout from 4.1.2 to 4.1.4
  • 8803861 Merge pull request #1630 from shirou/dependabot/github_actions/actions/upload...
  • 4848eec chore(deps): bump actions/upload-artifact from 4.3.1 to 4.3.3
  • df3a945 Merge pull request #1624 from camcui/master
  • 3ec3f55 chore: fix some typos in comments
  • Additional commits viewable in compare view

Updates sigs.k8s.io/release-sdk from 0.11.0 to 0.11.1

Release notes

Sourced from sigs.k8s.io/release-sdk's releases.

v0.11.1

Changes by Kind

Feature

Bug or Regression

Other (Cleanup or Flake)

  • Run only on kubernetes-sigs/release-sdk repo (#333, @​cpanato) [SIG Release]

Dependencies

Added

  • cuelabs.dev/go/oci/ociregistry: 224736b
  • github.com/DataDog/go-libddwaf/v2: v2.2.3
  • github.com/go-jose/go-jose/v4: v4.0.1
  • github.com/google/go-configfs-tsm: v0.2.2
  • github.com/google/go-github/v60: v60.0.0
  • golang.org/x/telemetry: f48c80b

Changed

  • bitbucket.org/creachadair/shell: v0.0.7 → v0.0.8
  • chainguard.dev/go-grpc-kit: v0.17.1 → v0.17.2
  • cloud.google.com/go/compute/metadata: v0.2.3 → v0.3.0
  • cloud.google.com/go/compute: v1.23.3 → v1.25.0
  • cloud.google.com/go/firestore: v1.13.0 → v1.14.0
  • cloud.google.com/go/iam: v1.1.5 → v1.1.6
  • cloud.google.com/go/kms: v1.15.5 → v1.15.8
  • cloud.google.com/go/longrunning: v0.5.1 → v0.5.5
  • cloud.google.com/go/monitoring: v1.16.1 → v1.17.0
  • cloud.google.com/go/pubsub: v1.33.0 → v1.37.0
  • cloud.google.com/go/security: v1.15.1 → v1.15.6
  • cloud.google.com/go/storage: v1.33.0 → v1.39.1
  • cloud.google.com/go/trace: v1.10.2 → v1.10.4
  • cloud.google.com/go: v0.110.10 → v0.112.1
  • cuelang.org/go: v0.6.0 → v0.8.1
  • filippo.io/edwards25519: v1.0.0 → v1.1.0
  • github.com/AdamKorcz/go-fuzz-headers-1: e936619 → 8b5d3ce
  • github.com/Azure/azure-sdk-for-go/sdk/azcore: v1.9.0 → v1.10.0
  • github.com/Azure/azure-sdk-for-go/sdk/azidentity: v1.4.0 → v1.5.1
  • github.com/Azure/azure-sdk-for-go/sdk/internal: v1.5.0 → v1.5.2
  • github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys: v1.0.1 → v1.1.0

... (truncated)

Commits
  • 42ddf07 Merge pull request #350 from kubernetes-sigs/dependabot/github_actions/all-ed...
  • 44d4705 build(deps): bump actions/checkout from 4.1.5 to 4.1.6 in the all group
  • 4bb7451 Merge pull request #348 from kubernetes-sigs/dependabot/go_modules/all-4469aa...
  • 02e6af7 build(deps): bump sigs.k8s.io/release-utils in the all group
  • fe520ae Merge pull request #347 from kubernetes-sigs/dependabot/github_actions/all-e8...
  • f983950 build(deps): bump actions/checkout from 4.1.4 to 4.1.5 in the all group
  • 90e8ede Merge pull request #346 from kubernetes-sigs/dependabot/go_modules/golang.org...
  • 980e927 build(deps): bump golang.org/x/oauth2 from 0.19.0 to 0.20.0
  • c8743c4 Merge pull request #345 from kubernetes-sigs/dependabot/github_actions/all-b2...
  • d7f5f72 build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 in the all group
  • Additional commits viewable in compare view

Updates sigs.k8s.io/release-utils from 0.8.1 to 0.8.2

Release notes

Sourced from sigs.k8s.io/release-utils's releases.

v0.8.2

What's Changed

Full Changelog: kubernetes-sigs/release-utils@v0.8.1...v0.8.2

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added area/dependency Issues or PRs related to dependency changes ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. labels May 23, 2024
@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-kind Indicates a PR lacks a `kind/foo` label and requires one. area/release-eng Issues or PRs related to the Release Engineering subproject needs-priority labels May 23, 2024
@k8s-ci-robot
Copy link
Contributor

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added the sig/release Categorizes an issue or PR as relevant to SIG Release. label May 23, 2024
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign cpanato for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label May 23, 2024
@dependabot dependabot bot force-pushed the dependabot/go_modules/all-dae85f96b4 branch from 0308ef8 to 05c23fc Compare May 29, 2024 01:51
@dependabot
Bump the all group across 1 directory with 4 updates
424a229 
Bumps the all group with 3 updates in the / directory: [github.com/goark/go-cvss](https://github.com/goark/go-cvss), [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil) and [sigs.k8s.io/release-sdk](https://github.com/kubernetes-sigs/release-sdk).


Updates `github.com/goark/go-cvss` from 1.6.6 to 1.6.7
- [Release notes](https://github.com/goark/go-cvss/releases)
- [Commits](goark/go-cvss@v1.6.6...v1.6.7)

Updates `github.com/shirou/gopsutil/v3` from 3.24.3 to 3.24.4
- [Release notes](https://github.com/shirou/gopsutil/releases)
- [Commits](shirou/gopsutil@v3.24.3...v3.24.4)

Updates `sigs.k8s.io/release-sdk` from 0.11.0 to 0.11.1
- [Release notes](https://github.com/kubernetes-sigs/release-sdk/releases)
- [Commits](kubernetes-sigs/release-sdk@v0.11.0...v0.11.1)

Updates `sigs.k8s.io/release-utils` from 0.8.1 to 0.8.2
- [Release notes](https://github.com/kubernetes-sigs/release-utils/releases)
- [Commits](kubernetes-sigs/release-utils@v0.8.1...v0.8.2)

---
updated-dependencies:
- dependency-name: github.com/goark/go-cvss
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github.com/shirou/gopsutil/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: sigs.k8s.io/release-sdk
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: sigs.k8s.io/release-utils
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/all-dae85f96b4 branch from 05c23fc to 424a229 Compare May 30, 2024 01:55
@k8s-ci-robot
Copy link
Contributor

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
pull-release-verify 424a229 link true /test pull-release-verify
pull-release-test 424a229 link true /test pull-release-test
pull-release-integration-test 424a229 link true /test pull-release-integration-test

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jun 1, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jun 1, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/all-dae85f96b4 branch June 1, 2024 14:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jimangel jimangel Awaiting requested review from jimangel

@salaxander salaxander Awaiting requested review from salaxander

Assignees
No one assigned
Labels
area/dependency Issues or PRs related to dependency changes area/release-eng Issues or PRs related to the Release Engineering subproject cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-kind Indicates a PR lacks a `kind/foo` label and requires one. needs-priority ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. sig/release Categorizes an issue or PR as relevant to SIG Release. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@k8s-ci-robot