Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): update ghcr.io/doodlescheduling/apollo-controller docker tag to v0.2.1
• chore(deps): update module github.com/fluxcd/pkg/runtime to v0.95.0
• chore(deps): update module sigs.k8s.io/controller-runtime to v0.23.0
• chore(deps): update quay.io/brancz/kube-rbac-proxy docker tag to v0.20.2

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update gcr.io/distroless/static:latest docker digest to cd64bec

Detected Dependencies

dockerfile (1)

Dockerfile (1)

• gcr.io/distroless/static latest@sha256:4b2a093ef4649bccd586625090a3c668b254cfe180dee54f4c94f3e9bd7e381e → [Updates: latest]

github-actions (12)

.github/workflows/main.yaml (5)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/setup-go v6.2.0@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5
• shogo82148/actions-goveralls v1.10.0@25f5320d970fb565100cf1993ada29be1bb196a1
• go 1.25.x

.github/workflows/pr-actions.yaml (3)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6.0.1@8e8c483db84b4bee98b60c0593521ed34d9990e8
• zgosalvez/github-actions-ensure-sha-pinned-actions v4.0.1@6124774845927d14c601359ab8138699fa5b70c3

.github/workflows/pr-build.yaml (34)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• actions/setup-python v6.1.0@83679a892e2d95755f2dac6acb0bfd1e9ac5d548
• helm/chart-testing-action v2.8.0@6ec842c01de15ebb84c8627d2744a0c2f2755c9f
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/setup-go v6.2.0@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/setup-go v6.2.0@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/setup-go v6.2.0@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5
• actions/upload-artifact v6.0.0@b7c566a772e6b6bfb58ed0dc250532a479d7789f
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/setup-go v6.2.0@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5
• engineerd/setup-kind v0.5.0@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0
• actions/download-artifact v7.0.0@37930b1c2abaa49bbe596cd826c3c89aef350131
• imranismail/setup-kustomize v2.1.0@2ba527d4d055ab63514ba50a99456fc35684947f
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• actions/setup-python v6.1.0@83679a892e2d95755f2dac6acb0bfd1e9ac5d548
• helm/chart-testing-action v2.8.0@6ec842c01de15ebb84c8627d2744a0c2f2755c9f
• helm/kind-action v1.13.0@92086f6be054225fa813e0a4b13787fc9088faab
• actions/download-artifact v7.0.0@37930b1c2abaa49bbe596cd826c3c89aef350131
• python 3.14
• go 1.25.x
• go 1.25.x
• go 1.25.x
• go 1.25.x
• python 3.14

.github/workflows/pr-goreleaser.yaml (3)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6.0.1@8e8c483db84b4bee98b60c0593521ed34d9990e8
• goreleaser/goreleaser-action v6.4.0@e435ccd777264be153ace6237001ef4d979d3a7a

.github/workflows/pr-label.yaml (2)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• pascalgn/size-label-action 6ec5bd0f81af1bd8d691180fbf04453b2c4b1642

.github/workflows/pr-stale.yaml (1)

• actions/stale v10.1.1@997185467fa4f803885201cee163a9f38240193d

.github/workflows/pr-trivy.yaml (3)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• aquasecurity/trivy-action 0.33.1@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8
• github/codeql-action v4.31.10@cdefb33c0f6224e58673d9004f47f7cb3e328b89

.github/workflows/rebase.yaml (3)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• cirrus-actions/rebase 1.8@b87d48154a87a85666003575337e27b8cd65f691

.github/workflows/release.yaml (12)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/setup-go v6.2.0@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5
• docker/login-action v3.6.0@5e57cd118135c172c3672efd75eb46360885c0ef
• sigstore/cosign-installer v4.0.0@faadad0cce49287aee09b3a48701e75088a2c6ad
• anchore/sbom-action v0.21.1@0b82b0b1a22399a1c542d4d656f70cd903571b5c
• goreleaser/goreleaser-action v6.4.0@e435ccd777264be153ace6237001ef4d979d3a7a
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• sigstore/cosign-installer v4.0.0@faadad0cce49287aee09b3a48701e75088a2c6ad
• go 1.25.x

.github/workflows/report-on-vulnerabilities.yaml (7)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• aquasecurity/trivy-action 0.33.1@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8
• actions/upload-artifact v6.0.0@b7c566a772e6b6bfb58ed0dc250532a479d7789f
• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6.0.1@8e8c483db84b4bee98b60c0593521ed34d9990e8
• actions/download-artifact v7.0.0@37930b1c2abaa49bbe596cd826c3c89aef350131
• JasonEtco/create-an-issue v2.9.2@1b14a70e4d8dc185e5cc76d3bec9eab20257b2c5

.github/workflows/scan.yaml (5)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818

.github/workflows/scorecard.yaml (5)

• step-security/harden-runner v2.14.0@20cf305ff2072d973412fa9b1e3a4f227bda3c76
• actions/checkout v6.0.1@8e8c483db84b4bee98b60c0593521ed34d9990e8
• ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a
• actions/upload-artifact v6.0.0@b7c566a772e6b6bfb58ed0dc250532a479d7789f
• github/codeql-action v4.31.10@cdefb33c0f6224e58673d9004f47f7cb3e328b89

gomod (1)

go.mod (15)

• go 1.25.0
• github.com/fluxcd/pkg/runtime v0.94.0 → [Updates: v0.95.0]
• github.com/go-logr/logr v1.4.3
• github.com/kylelemons/godebug v1.1.0
• github.com/onsi/ginkgo/v2 v2.27.5
• github.com/onsi/gomega v1.39.0
• github.com/spf13/pflag v1.0.10
• github.com/stretchr/testify v1.11.1
• github.com/vektah/gqlparser/v2 v2.5.31
• gopkg.in/yaml.v3 v3.0.1
• k8s.io/api v0.35.0
• k8s.io/apimachinery v0.35.0
• k8s.io/client-go v0.35.0
• sigs.k8s.io/controller-runtime v0.22.4 → [Updates: v0.23.0]
• sigs.k8s.io/yaml v1.6.0

helm-values (1)

chart/apollo-controller/values.yaml (1)

• quay.io/brancz/kube-rbac-proxy v0.19.0 → [Updates: v0.20.2]

kustomize (1)

config/base/manager/kustomization.yaml (1)

• ghcr.io/doodlescheduling/apollo-controller v0.0.3 → [Updates: v0.2.1]

renovate-config-presets (1)

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository