Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update non-minor dependencies #113

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix(deps): update non-minor dependencies #113

wants to merge 1 commit into from
+70 −27

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 21, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
docker.io/bitnami/kubectl (source) patch 1.32.0-debian-12-r0 -> 1.32.1-debian-12-r1 age adoption passing confidence
docker.io/bitnami/os-shell (source) patch 12-debian-12-r31 -> 12-debian-12-r35 age adoption passing confidence
github.com/cert-manager/cert-manager require patch v1.16.2 -> v1.16.3 age adoption passing confidence
github.com/onsi/ginkgo/v2 require patch v2.22.0 -> v2.22.2 age adoption passing confidence
github.com/onsi/gomega require patch v1.36.0 -> v1.36.2 age adoption passing confidence
github.com/sap/admission-webhook-runtime require patch v0.1.44 -> v0.1.55 age adoption passing confidence
github.com/sap/component-operator-runtime require patch v0.3.45 -> v0.3.64 age adoption passing confidence
github.com/sap/go-generics require patch v0.2.20 -> v0.2.24 age adoption passing confidence
go (source) golang patch 1.23.2 -> 1.23.5 age adoption passing confidence
golang stage patch 1.23.4 -> 1.23.5 age adoption passing confidence
k8s.io/api require patch v0.32.0 -> v0.32.1 age adoption passing confidence
k8s.io/apiextensions-apiserver require patch v0.32.0 -> v0.32.1 age adoption passing confidence
k8s.io/apimachinery require patch v0.32.0 -> v0.32.1 age adoption passing confidence
k8s.io/client-go require patch v0.32.0 -> v0.32.1 age adoption passing confidence
k8s.io/code-generator require patch v0.32.0 -> v0.32.1 age adoption passing confidence
k8s.io/kube-aggregator require patch v0.32.0 -> v0.32.1 age adoption passing confidence
sigs.k8s.io/controller-runtime/tools/setup-envtest require digest a9b7c2d -> aafb269 age adoption passing confidence

Release Notes

cert-manager/cert-manager (github.com/cert-manager/cert-manager)

v1.16.3

Compare Source

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

v1.16.3 is a patch release mainly focused around bumping dependencies to address reported CVEs: CVE-2024-45337 and CVE-2024-45338.

We don't believe that cert-manager is actually vulnerable; this release is instead intended to satisfy vulnerability scanners.

It also includes a bug fix to the new renewBeforePercentage field. If you were using renewBeforePercentage, see PR #​7421 for more information.

Changes

Bug
Other
onsi/ginkgo (github.com/onsi/ginkgo/v2)

v2.22.2

Compare Source

What's Changed

Full Changelog: onsi/ginkgo@v2.22.1...v2.22.2

v2.22.1

Compare Source

2.22.1

Fixes

Fix CSV encoding

Maintenance
  • ensure *.test files are gitignored so we don't accidentally commit compiled tests again [c88c634]
  • remove golang.org/x/net/context in favour of stdlib context [4df44bf]
onsi/gomega (github.com/onsi/gomega)

v1.36.2

Compare Source

Maintenance

v1.36.1

Compare Source

1.36.1

Fixes
sap/admission-webhook-runtime (github.com/sap/admission-webhook-runtime)

v0.1.55

Compare Source

v0.1.54

Compare Source

v0.1.53

Compare Source

v0.1.52

Compare Source

v0.1.51

Compare Source

v0.1.50

Compare Source

v0.1.49

Compare Source

v0.1.48

Compare Source

v0.1.47

Compare Source

v0.1.46

Compare Source

v0.1.45

Compare Source

sap/component-operator-runtime (github.com/sap/component-operator-runtime)

v0.3.64

Compare Source

v0.3.63

Compare Source

v0.3.62

Compare Source

Incompatible changes

Previously, the forced re-apply of dependent objects was based on a timestamp that was coded into the object digest. As a consequence, the digest annotation of every dependent object was updated more or less every 60 minutes. Which caused problems (e.g. with crossplane).

From this release onwards, the force-re-apply mechanism is based on the new status field status.inventory[].lastAppliedAt.

Note: YOU MUST, REALLY MUST, regenerate your component CRD when using a version of component-operator-runtime containing this release, and ship the module update together with the updated CRD!!!

v0.3.61

Compare Source

v0.3.60

Compare Source

v0.3.59

Compare Source

This release is non-functional (preparation for future work). It ships a new status field .status.inventory[].lastAppliedAt.

v0.3.58

Compare Source

This release is a bugfix release for the clm cli. So far, while applying or deleting a release, clm was aborting immediately if an error occurred. This is not very convenient. At least in some ephemeral error situations, it should behave in a more resilient way. So, with this release, clm tries to recognise such ephemeral errors (for example 409 - Conflict responses from the API server), and retries the failing operation a couple of times.

v0.3.57

Compare Source

v0.3.56

Compare Source

Enhancements

A new flag --create-namespace was added to clm apply. If specified the specified release namespace will be auto-created if missing. Note that in that case, the namespace is not part of the release inventory. In particular, it will not be deleted if the component gets deleted.

v0.3.55

Compare Source

This release adds a new interface PolicyConfiguration that component types (or their spec types) can implement:

type PolicyConfiguration interface {
  // Get adoption policy.
  // Must return a valid AdoptionPolicy, or the empty string (then the reconciler/framework default applies).
  GetAdoptionPolicy() reconciler.AdoptionPolicy
  // Get update policy.
  // Must return a valid UpdatePolicy, or the empty string (then the reconciler/framework default applies).
  GetUpdatePolicy() reconciler.UpdatePolicy
  // Get delete policy.
  // Must return a valid DeletePolicy, or the empty string (then the reconciler/framework default applies).
  GetDeletePolicy() reconciler.DeletePolicy
}

Through this interface, components can override the framework default policies that would otherwise apply. Of course, dependent resources can still override the behaviour using the well-known annotations. For easier consumption (similar to the already existing Configuration interfaces), there is a standard implementation PolicySpec that components may embed into their spec).

Furthermore, the semantics of the deletion policy was slightly changed:

  1. Other than before, the deletion policy is now ignored during apply. That is, if an existing object becomes obsolete while applying a new revision of the depdendents' manifests, it will be always deleted now, even if it has an effective deletion policy 'orphan'. In other words, the deletion policy will only be honoured if the owning component itself is deleted.
  2. So far, a component's deletion will block if it contains extension types, and there exist any foreign instances of these types in the cluster; this check will now be skipped if all dependents of the component have an effective deletion policy 'orphan'.

v0.3.54

Compare Source

This release adds some new template functions to HelmGenerator and KustomizeGenerator.

  1. Template functions for bitwise operations:

    • func bitwiseShiftLeft(by any, arg any) (uint64, error)
    • func bitwiseShiftRight(by any, arg any) (uint64, error)
    • func bitwiseAnd(args ...any) (uint64, error)
    • func bitwiseOr(args ...any) (uint64, error)
    • func bitwiseXor(args ...any) (uint64, error)

  2. Functions for IPv4 address handling:

    • func parseIPv4Address(data any) (uint32, error)
    • func formatIPv4Address(data any) (string, error)

v0.3.53

Compare Source

v0.3.52

Compare Source

This is a bugfix release, but it slightly changes the procedure how dependent objects are reconciled. In detail:

Until now, reconciler.Apply() (which is what happens if a component is reconciled, not deleted) first deleted all redundant objects, that is objects which appear in the component's inventory, but are no longer part of the current manifest list. Only after all redundant objects were gone, the reconciliation of the current dependents was started. This potentially caused some deadlock situations, e.g. in component-operator. To overcome, the deletion part was shifted to the end of
reconciler.Apply(), after the application of the current manifest list. This should not be a noticeable change. However, the completion handling still happens early (before the reconciliation of the dependents), and was slightly changed as well; for example, object deletions happening as consequence of a completion now no longer honour delete-order or delete-policy.

v0.3.51

Compare Source

v0.3.50

Compare Source

v0.3.49

Compare Source

v0.3.48

Compare Source

v0.3.47

Compare Source

v0.3.46

Compare Source

sap/go-generics (github.com/sap/go-generics)

v0.2.24

Compare Source

v0.2.23

Compare Source

v0.2.22

Compare Source

v0.2.21

Compare Source

golang/go (go)

v1.23.5

v1.23.4

v1.23.3

kubernetes/api (k8s.io/api)

v0.32.1

Compare Source

kubernetes/apiextensions-apiserver (k8s.io/apiextensions-apiserver)

v0.32.1

Compare Source

kubernetes/apimachinery (k8s.io/apimachinery)

v0.32.1

Compare Source

kubernetes/client-go (k8s.io/client-go)

v0.32.1

Compare Source

kubernetes/code-generator (k8s.io/code-generator)

v0.32.1

Compare Source

kubernetes/kube-aggregator (k8s.io/kube-aggregator)

v0.32.1

Compare Source

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Oct 21, 2024
edited
Loading

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 9 additional dependencies were updated

Details:

Package Change
sigs.k8s.io/controller-runtime v0.19.3 -> v0.19.4
github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db -> v0.0.0-20241210010833-40e02aabc2ad
github.com/prometheus/client_golang v1.20.4 -> v1.20.5
github.com/spf13/cast v1.7.0 -> v1.7.1
golang.org/x/net v0.30.0 -> v0.33.0
golang.org/x/time v0.7.0 -> v0.9.0
golang.org/x/tools v0.26.0 -> v0.28.0
google.golang.org/protobuf v1.35.1 -> v1.36.1
sigs.k8s.io/structured-merge-diff/v4 v4.4.2 -> v4.5.0

@renovate renovate bot changed the title fix(deps): update module github.com/sap/component-operator-runtime to v0.3.46 fix(deps): update non-minor dependencies Oct 21, 2024
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 3 times, most recently from 130a78e to c313f2f Compare October 23, 2024 22:20
@renovate renovate bot changed the title fix(deps): update non-minor dependencies chore(deps): update non-minor dependencies Oct 23, 2024
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 8 times, most recently from fe6a807 to dc9c42b Compare October 30, 2024 22:37
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 5 times, most recently from fa45f16 to d1476e9 Compare November 7, 2024 09:55
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 4 times, most recently from 9c65b8c to 7889b67 Compare November 11, 2024 12:10
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 6 times, most recently from 2b13e6d to d43bba8 Compare November 21, 2024 09:21
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 6 times, most recently from ac318de to 2cf85c7 Compare December 17, 2024 21:04
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 3 times, most recently from 75772ee to 58f4b86 Compare December 20, 2024 02:29
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 5 times, most recently from 4ab0208 to eaea9a7 Compare January 6, 2025 21:01
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 8 times, most recently from f8139f0 to d86bb87 Compare January 14, 2025 17:45
@renovate renovate bot force-pushed the renovate/non-minor-deps branch 6 times, most recently from c7235f7 to a017ffc Compare January 17, 2025 04:57
@renovate renovate bot force-pushed the renovate/non-minor-deps branch from a017ffc to 51d67a0 Compare January 19, 2025 21:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants