Skip to content

chore(deps): bump the go group across 1 directory with 13 updates #1641

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore(deps): bump the go group across 1 directory with 13 updates #1641

wants to merge 1 commit into from
+71 −51

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 8, 2025
edited
Loading

Bumps the go group with 9 updates in the / directory:

Package From To
github.com/aws/aws-sdk-go-v2/config 1.31.11 1.31.12
github.com/aws/aws-sdk-go-v2/feature/s3/manager 1.19.9 1.19.12
github.com/docker/cli 28.4.0+incompatible 28.5.0+incompatible
github.com/docker/docker 28.4.0+incompatible 28.5.0+incompatible
github.com/fluxcd/pkg/ssa 0.58.0 0.60.0
github.com/go-git/go-git/v5 5.16.2 5.16.3
github.com/onsi/ginkgo/v2 2.25.3 2.26.0
github.com/sigstore/cosign/v2 2.6.0 2.6.1
golang.org/x/oauth2 0.31.0 0.32.0

Updates github.com/aws/aws-sdk-go-v2/config from 1.31.11 to 1.31.12

Commits

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.18.15 to 1.18.16

Commits

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.19.9 to 1.19.12

Commits

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.3 to 1.88.4

Commits

Updates github.com/docker/cli from 28.4.0+incompatible to 28.5.0+incompatible

Commits
  • 887030f Merge pull request #6522 from thaJeztah/28.x_bump_moby
  • 9c6a0e0 Merge pull request #6531 from thaJeztah/28.x_backport_bump_macos
  • f784471 vendor: github.com/docker/docker cd048300a487 (v28.5.0-dev)
  • d7afcf9 Merge pull request #6529 from thaJeztah/28.x_backport_deprecate_ResolveDefaul...
  • 9d9adf6 gha: add macOS 15, remove macOS 13 (deprecated)
  • d4b7734 cli/command: deprecate ResolveDefaultContext
  • a106161 Merge pull request #6519 from thaJeztah/28.x_backport_authconfig_no_direct_cast
  • 5e42f82 Merge pull request #6518 from thaJeztah/28.x_backport_memstore_notfounderr
  • 645c23b Merge pull request #6514 from thaJeztah/28.x_backport_manifeststore_notfound
  • e491078 cli/command: explicitly map AuthConfig fields instead of a direct cast
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 28.4.0+incompatible to 28.5.0+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v28.5.0

28.5.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • Don't print warnings in docker info for broken symlinks in CLI-plugin directories. docker/cli#6476
  • Fix a panic during stats on empty event Actor.ID. docker/cli#6471

Packaging updates

Networking

  • Eliminated harmless warning about deletion of endpoint_count from the data store. moby/moby#51064
  • Fix a bug causing IPAM plugins to not be loaded on Windows. moby/moby#51035

API

  • Deprecate support for kernel memory TCP accounting (KernelMemoryTCP). moby/moby#51067
  • Fix GET containers/{name}/checkpoints returning null instead of empty JSON array when there are no checkpoints. moby/moby#51052

Go SDK

Deprecations

  • Go-SDK: cli/command: deprecate DockerCli.Apply. This method is no longer used and will be removed in the next release if there are no remaining uses. docker/cli#6497
  • Go-SDK: cli/command: deprecate DockerCli.ContentTrustEnabled. This method is no longer used and will be removed in the next release. docker/cli#6495
  • Go-SDK: cli/command: deprecate DockerCli.DefaultVersion. This method is no longer used and will be removed in the next release. docker/cli#6491
  • Go-SDK: cli/command: deprecate ResolveDefaultContext utility. docker/cli#6529
  • Go-SDK: cli/command: deprecate WithContentTrustFromEnv, WithContentTrust options. These options were used internally, and will be removed in the next release.. docker/cli#6489
  • Go-SDK: cli/manifest/store: deprecate IsNotFound(). docker/cli#6514
  • Go-SDK: templates: deprecate NewParse() function. docker/cli#6469

v28.5.0-rc.1

28.5.0-rc.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

... (truncated)

Commits
  • cd04830 Merge pull request #51075 from vvoland/51074-28.x
  • e29d6be vendor: github.com/moby/buildkit v0.25.0
  • 9b43690 Merge pull request #51069 from thaJeztah/28.x_backport_docs_rm_deprecated_vir...
  • 4f35725 api: swagger: remove VirtualSize fields for API > v1.43
  • 79f310d Merge pull request #51067 from austinvazquez/cherry-pick-deprecate-kernel-mem...
  • deb4bbb api: deprecate KernelMemoryTCP support
  • 423a7fd Merge pull request #51064 from thaJeztah/28.x_backport_fix_epcnt_warning
  • fbf2fe8 Eliminate warning about endpoint count store delete
  • 252a1eb Merge pull request #51061 from thaJeztah/28.x_backport_rm_email_example
  • 2c15eb6 api/docs: remove email field from example auth
  • Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/ssa from 0.58.0 to 0.60.0

Commits
  • 413a95f Merge pull request #1039 from fluxcd/dependabot/github_actions/ci-05a7a237d9
  • 246714f build(deps): bump the ci group with 3 updates
  • ac938bf Merge pull request #1040 from fluxcd/k8s-1.34.1
  • ef1c3ec Prepare release
  • 5679184 Update dependencies
  • d56c6f4 Merge pull request #1038 from cappyzawa/validate-proxy-url
  • 3e994a9 Prepare for release
  • c1274b1 runtime/secrets: validate proxy URL scheme and length
  • ca99961 Merge pull request #1037 from fluxcd/ssa-migrate-managed-fields
  • 18da908 ssa: Add helper function to migrate the apiVersion on managed fields
  • Additional commits viewable in compare view

Updates github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.3

What's Changed

Full Changelog: go-git/go-git@v5.16.2...v5.16.3

Commits
  • ad9a3a5 Merge pull request #1633 from baloo/baloo/release-5.x/jj-signed-commits
  • f2c3467 plumbing: support extra headers, support jujutsu signed commit [5.x]
  • c12263d Merge pull request #1646 from baloo/baloo/release-5.x/fixup-windows-ci
  • 111f374 build: disable fuzzing on maintenance branch
  • 15d46ce build: raise timeouts for windows CI tests
  • ce83ba1 Merge pull request #1644 from baloo/baloo/release-5.x/fixup-build
  • b486201 internal: Expand regex to fix build
  • See full diff in compare view

Updates github.com/onsi/ginkgo/v2 from 2.25.3 to 2.26.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.26.0

2.26.0

Features

Ginkgo can now generate json-formatted reports that are compatible with the go test json format. Use ginkgo --gojson-report=report.go.json. This is not intended to be a replacement for Ginkgo's native json format which is more information rich and better models Ginkgo's test structure semantics.

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.26.0

Features

Ginkgo can now generate json-formatted reports that are compatible with the go test json format. Use ginkgo --gojson-report=report.go.json. This is not intended to be a replacement for Ginkgo's native json format which is more information rich and better models Ginkgo's test structure semantics.

Commits

Updates github.com/sigstore/cosign/v2 from 2.6.0 to 2.6.1

Release notes

Sourced from github.com/sigstore/cosign/v2's releases.

v2.6.1

Changelog

  • 634fabe54f9fbbab55d821a83ba93b2d25bdba5f Bump sigstore-go, move conformance back to tagged release
  • c5545eda23d770180880c245bf0d8f78c354ecc4 Partially populate the output of cosign verify when working with new bundles (#4416)
  • e191024a636883b4e6b7de8db2f5cfb85a1fcd0c bump go builder to use 1.25.1 and cosign (#4417)

Thanks to all contributors!

Changelog

Sourced from github.com/sigstore/cosign/v2's changelog.

v2.6.1

Bug Fixes

  • Partially populate the output of cosign verify when working with new bundles (#4416)
  • Bump sigstore-go, move conformance back to tagged release (#4426)
Commits
  • 634fabe Bump sigstore-go, move conformance back to tagged release
  • c5545ed Partially populate the output of cosign verify when working with new bundles ...
  • e191024 bump go builder to use 1.25.1 and cosign (#4417)
  • See full diff in compare view

Updates golang.org/x/net from 0.44.0 to 0.45.0

Commits
  • 59706cd html: impose open element stack size limit
  • 6ec8895 html: align in row insertion mode with spec
  • 5393563 http2: fix RFC 9218 write scheduler not being idempotent
  • b2ab371 internal/httpsfv: implement parsing support for date and display string
  • edb764c internal/httpsfv: add parsing functionality for types defined in RFC 8941
  • fbba2c2 internal/httpsfv: add support for consuming Display String and Date type
  • 47a241f http2: make the error channel pool per-Server
  • 51f657b webdav/internal/xml: use the built-in min function
  • f2e909b internal/httpsfv: implement parsing support for Dictionary and List type.
  • 7d8cfce internal/httpsfv: add support for Bare Inner List and Item type.
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.31.0 to 0.32.0

Commits

Updates sigs.k8s.io/controller-runtime from 0.22.1 to 0.22.2

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.22.2

What's Changed

Full Changelog: kubernetes-sigs/controller-runtime@v0.22.1...v0.22.2

Commits
  • 7fb34b5 [release-0.22] 🐛 Fix a bug where the priorityqueue would sometimes not return...
  • 27d4b5e Merge pull request #3338 from k8s-infra-cherrypick-robot/cherry-pick-3337-to-...
  • 6d368ce Rebase priorityqueue shutdown fix for release-0.22
  • d04f428 Don't block on Get when queue is shutdown (2nd try)
  • 7f146f7 Merge pull request #3317 from k8s-infra-cherrypick-robot/cherry-pick-3316-to-...
  • f3b9e4f Bump to k8s.io/* v0.34.1
  • 04c6a08 [release-0.22] 🐛Panic when trying to build more than one instance of fake.Cli...
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the go group across 1 directory with 13 updates
34d9351 
Bumps the go group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.31.11` | `1.31.12` |
| [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.19.9` | `1.19.12` |
| [github.com/docker/cli](https://github.com/docker/cli) | `28.4.0+incompatible` | `28.5.0+incompatible` |
| [github.com/docker/docker](https://github.com/docker/docker) | `28.4.0+incompatible` | `28.5.0+incompatible` |
| [github.com/fluxcd/pkg/ssa](https://github.com/fluxcd/pkg) | `0.58.0` | `0.60.0` |
| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.3` |
| [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) | `2.25.3` | `2.26.0` |
| [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) | `2.6.0` | `2.6.1` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.31.0` | `0.32.0` |



Updates `github.com/aws/aws-sdk-go-v2/config` from 1.31.11 to 1.31.12
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@config/v1.31.11...config/v1.31.12)

Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.18.15 to 1.18.16
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@config/v1.18.15...config/v1.18.16)

Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.19.9 to 1.19.12
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/m2/v1.19.9...service/efs/v1.19.12)

Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.88.3 to 1.88.4
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.88.3...service/s3/v1.88.4)

Updates `github.com/docker/cli` from 28.4.0+incompatible to 28.5.0+incompatible
- [Commits](docker/cli@v28.4.0...v28.5.0)

Updates `github.com/docker/docker` from 28.4.0+incompatible to 28.5.0+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v28.4.0...v28.5.0)

Updates `github.com/fluxcd/pkg/ssa` from 0.58.0 to 0.60.0
- [Commits](fluxcd/pkg@ssa/v0.58.0...ssa/v0.60.0)

Updates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.3
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](go-git/go-git@v5.16.2...v5.16.3)

Updates `github.com/onsi/ginkgo/v2` from 2.25.3 to 2.26.0
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](onsi/ginkgo@v2.25.3...v2.26.0)

Updates `github.com/sigstore/cosign/v2` from 2.6.0 to 2.6.1
- [Release notes](https://github.com/sigstore/cosign/releases)
- [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md)
- [Commits](sigstore/cosign@v2.6.0...v2.6.1)

Updates `golang.org/x/net` from 0.44.0 to 0.45.0
- [Commits](golang/net@v0.44.0...v0.45.0)

Updates `golang.org/x/oauth2` from 0.31.0 to 0.32.0
- [Commits](golang/oauth2@v0.31.0...v0.32.0)

Updates `sigs.k8s.io/controller-runtime` from 0.22.1 to 0.22.2
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](kubernetes-sigs/controller-runtime@v0.22.1...v0.22.2)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/config
  dependency-version: 1.31.12
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/credentials
  dependency-version: 1.18.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
  dependency-version: 1.19.12
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
  dependency-version: 1.88.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/docker/cli
  dependency-version: 28.5.0+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/docker/docker
  dependency-version: 28.5.0+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/fluxcd/pkg/ssa
  dependency-version: 0.60.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/go-git/go-git/v5
  dependency-version: 5.16.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-version: 2.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/sigstore/cosign/v2
  dependency-version: 2.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: golang.org/x/net
  dependency-version: 0.45.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-version: 0.22.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added kind/chore chore, maintenance, etc. kind/dependency dependency update, etc. labels Oct 8, 2025
@dependabot dependabot bot requested a review from a team as a code owner October 8, 2025 13:07
@dependabot dependabot bot added kind/dependency dependency update, etc. kind/chore chore, maintenance, etc. labels Oct 8, 2025
@github-actions github-actions bot added the size/m Medium label Oct 8, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 12, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Oct 12, 2025
@dependabot dependabot bot deleted the dependabot/go_modules/go-7eebb67098 branch October 12, 2025 08:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ikhandamirov ikhandamirov ikhandamirov approved these changes

Assignees

No one assigned

Labels

kind/chore chore, maintenance, etc. kind/dependency dependency update, etc. size/m Medium

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ikhandamirov