Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the tools group across 1 directory with 4 updates #1791

Merged
merged 1 commit into from
Jan 2, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 2, 2025

Bumps the tools group with 4 updates in the /tools directory: github.com/docker/buildx, github.com/golangci/golangci-lint, helm.sh/helm/v3 and sigs.k8s.io/kind.

Updates github.com/docker/buildx from 0.19.1 to 0.19.3

Release notes

Sourced from github.com/docker/buildx's releases.

v0.19.3

Welcome to the v0.19.3 release of buildx!

Please try out the release binaries and report any issues at https://github.com/docker/buildx/issues.

Contributors

  • Tõnis Tiigi
  • CrazyMax

Notable changes

  • Bake: change evaluation of entitlement paths to allow non-existing paths #2860
  • Bake: ignore empty values set by --set #2861

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.19.2

v0.19.2

Welcome to the v0.19.2 release of buildx!

Please try out the release binaries and report any issues at https://github.com/docker/buildx/issues.

Notable changes

  • Bake: fix issue where entitlement requests may have been not detected when Bake target writes output outside of the current working directory #2834
  • Bake: automatically add filesystem entitlements to the paths defined with --set flag to avoid the need to allow the same path multiple times #2834

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.19.1

Commits
  • 48d6a39 Merge pull request #2867 from crazy-max/v0.19_backport_entitlement-path-fix
  • 2bd4aef add additional test coverage for FS entitlement paths
  • f1b3cf7 bake: change evaluation of entitlement paths
  • 62d486d Merge pull request #2861 from tonistiigi/v0.19-set-empty-eof
  • afc9ceb bake: test empty override
  • 9a9dd4e [v0.19] bake: remove empty values set by --set
  • 85acd30 Merge pull request #2862 from crazy-max/v0.19_pick-xx-update
  • 90393e6 update xx to v1.6.1
  • 1fc5647 Merge pull request #2846 from tonistiigi/v0.19.2-picks
  • b2c0c26 bake: allow entitlements from overrides automatically
  • Additional commits viewable in compare view

Updates github.com/golangci/golangci-lint from 1.62.2 to 1.63.2

Release notes

Sourced from github.com/golangci/golangci-lint's releases.

v1.63.2

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

  • 15412b30790ad2d5505862cb1f55b27761ca3505 fix: invalid position when missing EOL (#5279)

v1.63.1

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

  • afa0e274a027687fc0cd19ed3e883c936dbbfdb0 fix: filter files (#5272)
  • ffb15ca3c9d53ba46a1d4c60b24c7dd6f97a61e4 gci: fix cgo (#5274)

v1.63.0

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

  • 0640d3f38f79aca2dc4b09cd5e65139b84f7f9a6 Add UseTesting linter (#5170)
  • aa0450cb0580dd55d9e848d4b48e848d7598912a Add exptostd linter (#5259)
  • 1467bc04e8c7691f1bc9f32a5727cbc5c3876358 Add nilnesserr linter (#5240)
  • 6a20504df5607ae69c1892be1e6eeee93d787934 build(deps): bump github.com/shirou/gopsutil to v4.24.10 (#5167)
  • a6c26eedf7b162dc68e2d9e182a5c3876b09f4e4 build(deps): bump github.com/4meepo/tagalign from 1.3.4 to 1.4.1 (#5255)
  • e85310cdd5a8eed384a8361a3e6d460af353c88d build(deps): bump github.com/Antonboom/nilnil from 1.0.0 to 1.0.1 (#5233)
  • c751e5caee47af4c39b6ed82d970298da026a34c build(deps): bump github.com/alecthomas/go-check-sumtype from 0.2.0 to 0.3.1 (#5230)
  • c882e894ce85fec421b4919bfa76c85b614b6067 build(deps): bump github.com/ashanbrown/makezero from 1.1.1 to 1.2.0 (#5181)
  • acfb3be9cc23de25cacf8c46be23d79522a54e84 build(deps): bump github.com/bombsimon/wsl/v4 from 4.4.1 to 4.5.0 (#5262)
  • 321e03f665a6c607d1ea80290ba860f88fadab64 build(deps): bump github.com/butuzov/ireturn from 0.3.0 to 0.3.1 (#5188)
  • 72bbc45288998339535e1942c94493f20bdd355b build(deps): bump github.com/butuzov/mirror from 1.2.0 to 1.3.0 (#5178)
  • 06ffc05dadf891921166854f797097ef20f83520 build(deps): bump github.com/ckaznocha/intrange from 0.2.1 to 0.3.0 (#5203)
  • a92ccc7cd2edff40d3311af2a2c86be37f65a536 build(deps): bump github.com/curioswitch/go-reassign from 0.2.0 to 0.3.0 (#5176)
  • 043275f24369c76dc74a92b76c068731c3c4d76d build(deps): bump github.com/go-xmlfmt/xmlfmt from 1.1.2 to 1.1.3 (#5177)
  • c8cf7a4a842c43558d65a16e1e54c98776607be2 build(deps): bump github.com/jjti/go-spancheck from 0.6.2 to 0.6.4 (#5174)

... (truncated)

Changelog

Sourced from github.com/golangci/golangci-lint's changelog.

v1.63.2

  1. Linters bug fixes
    • gofmt, gofumpt, goimports, gci: panic with missing trailing EOL

v1.63.1

  1. Linters bug fixes
    • cgi: invalid reports with cgo
    • gofumpt: panic with autofix and cgo

v1.63.0

  1. Enhancements
    • Add support for SuggestedFixes 🎉 (35 linters can "autofix" reports).
    • Formatters (gofmt, goimports, gofumpt, gci) are applied after the suggested fixes.
  2. New linters
  3. Linters new features
    • gci: new options: no-inline-comments, no-prefix-comments
    • gomoddirectives: from 0.2.4 to 0.6.0 (new options: go-version-pattern, toolchain-pattern,toolchain-forbidden, tool-forbidden, go-debug-forbidden)
    • govet: new stdversion, waitgroup analyzers
    • importas: allow multiple empty aliases
    • loggercheck: new slog option
    • recvcheck: from 0.1.2 to 0.2.0 (new options: disable-builtin, exclusions)
    • tagliatelle: from 0.5.0 to 0.7.1 (new options: ignored-fields, extended-rules,overrides, pkg, ignore)
    • usestdlibvars: from 1.27.0 to 1.28.0 (autofix)
    • wrapcheck: from 2.9.0 to 2.10.0 (new option: extra-ignore-sigs)
  4. Linters bug fixes
    • asciicheck: from 0.2.0 to 0.3.0
    • bodyclose: from 574207250966 to ed6a65f985e
    • funlen: from 0.1.0 to 0.2.0
    • ginkgolinter: from 0.18.3 to 0.18.4
    • gochecksumtype: from 0.2.0 to 0.3.1
    • gocognit: from 1.1.3 to 1.2.0
    • godot: from 1.4.18 to 1.4.20
    • goheader: report position improvement
    • gosec: handling of global nosec option when it is false
    • iface: from 1.2.1 to 1.3.0
    • importas: from 0.1.0 to 0.2.0
    • intrange: from 0.2.1 to 0.3.0
    • makezero: from 1.1.1 to 1.2.0
    • mirror: from 1.2.0 to 1.3.0
    • nilnil: from 1.0.0 to 1.0.1
    • nosprintfhostport: from 0.1.1 to 0.2.0
    • reassign: from 0.2.0 to 0.3.0
    • spancheck: from 0.6.2 to 0.6.4
    • tagalign: from 1.3.4 to 1.4.1

... (truncated)

Commits

Updates helm.sh/helm/v3 from 3.16.3 to 3.16.4

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.16.4 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.4. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

  • Bump golang.org/x/crypto from 0.30.0 to 0.31.0 7877b45b63f95635153b29a42c0c2f4273ec45ca (dependabot[bot])
  • Bump the k8s-io group with 7 updates 848e586c27f05d84bc19d082f395098aba0b7619 (dependabot[bot])
Commits
  • 7877b45 Bump golang.org/x/crypto from 0.30.0 to 0.31.0
  • 848e586 Bump the k8s-io group with 7 updates
  • See full diff in compare view

Updates sigs.k8s.io/kind from 0.25.0 to 0.26.0

Release notes

Sourced from sigs.k8s.io/kind's releases.

v0.26.0

This release brings Kubernetes v1.32.0 to kind by default and fixes kind build node-image for building for Kubernetes releases <v1.31.0 when not building Kubernetes from source (e.g. kind build node-image v1.30.0).

  • Removed two deprecated flags that had been printing usage warnings for many releases.
  • The default node image is now Kubernetes v1.32.0: kindest/node:v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027
  • Updated to go 1.23.4
  • Updated node image dependencies to latest
    • NOTE: you should only be depending on node images to allow kind to create Kubernetes nodes at a given Kubernetes version. The contents of these images are subject to change. However, we have brought everything up to the latest releases which may contain bug fixes.
  • Updated local-path-provisioner to v0.30.0
  • Refreshed Ingres docs to use https://sigs.k8s.io/cloud-provider-kind

Images pre-built for this release:

  • v1.32.0: kindest/node:v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027
  • v1.31.4: kindest/node:v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30
  • v1.30.8: kindest/node:v1.30.8@sha256:17cd608b3971338d9180b00776cb766c50d0a0b6b904ab4ff52fd3fc5c6369bf
  • v1.29.12: kindest/node:v1.29.12@sha256:62c0672ba99a4afd7396512848d6fc382906b8f33349ae68fb1dbfe549f70dec

NOTE: You must use the @sha256 digest to guarantee an image built for this release, until such a time as we switch to a different tagging scheme. Even then we will highly encourage digest pinning for security and reproducibility reasons.

See also:

NOTE: These node images support amd64 and arm64, both of our supported platforms. You must use the same platform as your host, for more context see kubernetes-sigs/kind#2718

  • Fixed kind build node-image --type=url and kind build node-image --type=release where Kubernetes version is less than v1.31.0
    • E.G. kind build node-image v1.30.0 and kind build node-image https://dl.k8s.io/v1.30.0/kubernetes-server-linux-arm64.tar.gz
    • This fix will only work for standard release tags (and not pre-releases etc), for those continue to use --type=source.
    • v1.31.0+ will work with all build types for all versions

Thank you to everyone who contributed to this kind over the years!

Commiters for this release:

... (truncated)

Commits
  • c5f516c version v0.26.0
  • efc4f2c Merge pull request #3826 from kubernetes-sigs/dependabot/github_actions/actio...
  • 3ea2581 Bump actions/setup-go from 5.1.0 to 5.2.0 in the actions group
  • 771fb17 Merge pull request #3825 from BenTheElder/push-node-from-upstream
  • e6f5b41 Merge pull request #3824 from BenTheElder/132
  • 128683b add new push-node.sh that uses pre-compiled upstream releases
  • ae8dcec update default node image to 1.32 with upgraded containerd etc
  • e7cf729 Merge pull request #3819 from BenTheElder/new-storage
  • 0dea9ca upgrade local path images to latest
  • a87bbd8 update local-path-provisioner with changes from v0.0.24 to v0.30.0 in usptrea...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the tools group with 4 updates in the /tools directory: [github.com/docker/buildx](https://github.com/docker/buildx), [github.com/golangci/golangci-lint](https://github.com/golangci/golangci-lint), [helm.sh/helm/v3](https://github.com/helm/helm) and [sigs.k8s.io/kind](https://github.com/kubernetes-sigs/kind).


Updates `github.com/docker/buildx` from 0.19.1 to 0.19.3
- [Release notes](https://github.com/docker/buildx/releases)
- [Commits](docker/buildx@v0.19.1...v0.19.3)

Updates `github.com/golangci/golangci-lint` from 1.62.2 to 1.63.2
- [Release notes](https://github.com/golangci/golangci-lint/releases)
- [Changelog](https://github.com/golangci/golangci-lint/blob/master/CHANGELOG.md)
- [Commits](golangci/golangci-lint@v1.62.2...v1.63.2)

Updates `helm.sh/helm/v3` from 3.16.3 to 3.16.4
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.16.3...v3.16.4)

Updates `sigs.k8s.io/kind` from 0.25.0 to 0.26.0
- [Release notes](https://github.com/kubernetes-sigs/kind/releases)
- [Commits](kubernetes-sigs/kind@v0.25.0...v0.26.0)

---
updated-dependencies:
- dependency-name: github.com/docker/buildx
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: tools
- dependency-name: github.com/golangci/golangci-lint
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: tools
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: tools
- dependency-name: sigs.k8s.io/kind
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: tools
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested review from Oats87 and skitt as code owners January 2, 2025 15:38
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 2, 2025
@dependabot dependabot bot added the go Pull requests that update Go code label Jan 2, 2025
@dependabot dependabot bot requested a review from vthapar as a code owner January 2, 2025 15:38
@skitt skitt added the lint-projects Lint consuming projects label Jan 2, 2025
@tpantelis tpantelis enabled auto-merge (rebase) January 2, 2025 16:44
@skitt
Copy link
Member

skitt commented Jan 2, 2025

The linter bump is hitting golangci/golangci-lint#5284 in subctl.

@skitt
Copy link
Member

skitt commented Jan 2, 2025

@tpantelis tpantelis merged commit f4881f4 into devel Jan 2, 2025
58 of 60 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/tools/tools-3f2ed1d09b branch January 2, 2025 17:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code lint-projects Lint consuming projects
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants