fix(go.mod/go.sum): update minor dependencies (golang)#37
Open
renovate[bot] wants to merge 1 commit into
Open
Conversation
Contributor
Author
ℹ️ Artifact update noticeFile name: go.modIn order to perform the update(s) described in the table above, Renovate ran the
Details:
|
47db4e4 to
584694b
Compare
584694b to
c33c1da
Compare
c33c1da to
ac8f768
Compare
ac8f768 to
123b5d7
Compare
123b5d7 to
bbabdc7
Compare
bbabdc7 to
c13d544
Compare
c13d544 to
91c8f23
Compare
91c8f23 to
414069a
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v1.19.3→v1.20.3v2.27.5→v2.32.0v1.39.0→v1.42.1v0.88.0→v0.92.1v9.17.3→v9.21.01.25.6→1.26.4v0.32.0→v0.37.0v0.35.0→v0.36.2v0.35.0→v0.36.2v0.35.0→v0.36.2v0.35.0→v0.36.2v0.35.0→v0.36.2v0.35.0→v0.36.2v0.23.0→v0.24.1v0.0.0-20260125161707-82cc073adb06→v0.24.1v0.20.0→v0.21.0Release Notes
cert-manager/cert-manager (github.com/cert-manager/cert-manager)
v1.20.3Compare Source
v1.20.2Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
v1.20.2 fixes invalid YAML generated in the Helm chart when both
webhook.configand
webhook.volumesare defined, and bumps Go to 1.26.2 along with dependenciesto address reported vulnerabilities.
Changes by Kind
Bug or Regression
webhook.configandwebhook.volumesare defined. (#8665, @cert-manager-bot)Other (Cleanup or Flake)
v1.20.1Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
v1.20.1 fixes an issue for OpenShift users that has to do with the finalizer RBAC, bumps gRPC to address a reported non-affecting vulnerability, and fixes a duplicate
parentRefbug when both issuer config and annotations are present (Gateway API).Bug or Regression
parentRefbug when both issuer config and annotations are present. (#8658, @hjoshi123)v1.20.0Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
v1.20.0 adds alpha support for the new ListenerSet resource, adds support for Azure Private DNS; parentRefs are no longer required when using ACME with Gateway API, and OtherNames was promoted to Beta.
Changes by Kind
Feature
imagePullSecretsin thestartupapicheck-jobHelm template to enable pulling images from private registries. (#8186, @mathieu-clnk)parentRefoverride annotations on the Certificate resource. (#8518, @hjoshi123)venafi.cert-manager.io/custom-fieldsannotation on Issuer/ClusterIssuer and use it as base with override/append capabilities on Certificate level. (#8301, @k0da)acme.cert-manager.io/http01-ingress-ingressclassnameto overridehttp01.ingress.ingressClassNamefield in HTTP-01 challenge solvers. (#8244, @lunarwhite)global.nodeSelectorto helm chart to perform amergeand allow for a singlenodeSelectorto be set across all services. (#8195, @StingRayZA)XListenerSetsfeature gate (#8394, @hjoshi123)Documentation
Bug or Regression
Add full detailed DNS-01 errors to the events attached to the Challenge, for easier debugging (#8221, @wallrj-cyberark)
v1.25.5to fixCVE-2025-61727andCVE-2025-61729(#8290, @octo-sts[bot])cert-manager. Previously, it was set depending on various factors (namespace cert-manager is installed in and/or Helm release name). (#8162, @LiquidPL)Other (Cleanup or Flake)
XListenerSetsfeature gate toListenerSets(#8501, @hjoshi123)v1.19.6Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
This patch release fixes a security issue (
GHSA-8rvj-mm4h-c258, HIGH) where the defaultcert-manager-editaggregate ClusterRole granted namespace users permission to create ACMEChallengeandOrderresources directly. A user who could create aChallengereferencing aClusterIssuercould supply attacker-controlled solver configuration while cert-manager loaded credentials from theClusterIssuer's namespace, bypassing Issuer solver selectors (dnsZones,dnsNames,matchLabels). With the acme-dns provider specifically, this could disclose DNS credentials to an attacker-controlled endpoint.This release also includes Go version bumps to address reported CVEs. All users should upgrade.
Changes by Kind
Bug or Regression
createand Ordercreate,patch,updateverbs from thecert-manager-editaggregate ClusterRole (GHSA-8rvj-mm4h-c258). (#8941, @wallrj-cyberark)Other (Cleanup or Flake)
v1.25.11to fix CVE-2026-27145, CVE-2026-42504, and CVE-2026-42507 (#8925, @wallrj-cyberark)v1.19.5Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
This is a simple patch release to fix some reported vulnerabilities. All users are recommended to upgrade.
Changes by Kind
Other (Cleanup or Flake)
v1.19.4Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
v1.19.4 is a simple patch release to fix some reported vulnerabilities - notably CVE-2026-24051 and CVE-2025-68121. All users should upgrade.
Changes by Kind
Bug or Regression
onsi/ginkgo (github.com/onsi/ginkgo/v2)
v2.32.0Compare Source
2.32.0
-fdgenerate RSpec-style documentation output. Thank @woodie !--sleep-on-failure pauses a failed spec before teardown. Thanks @qinqon !
v2.31.0Compare Source
2.31.0
Add a bunch of Claude Skills via the marketplace:
v2.30.0Compare Source
2.30.0
Features
Ginkgo now allows
extentions/global.Resetto support running multiple suites from within a single process. This may take some massaging on your part (see 1672) but can dramatically speed up codebases with O(hundreds) of test suites.Thanks @lawrencejones !
Fixes
4f62d7a]v2.29.0Compare Source
2.29.0
GinkgoHelperGomakes it easier to write test helpers that need to run in goroutines. Specifically, it makes managing the failure state and capturing failure panics correctly straightforward.ginkgo outlinenow includes entries defined inDescribeTableSubtreev2.28.3Compare Source
2.28.3
Maintenance
Bump all dependencies
v2.28.2Compare Source
2.28.2
f3a36b6]94151c8]4d21dbb]c102161]9619647]5779304]v2.28.1Compare Source
2.28.1
Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.
v2.28.0Compare Source
2.28.0
Ginkgo's SemVer filter now supports filtering multiple components by SemVer version:
can be filtered in or out with an invocation like:
ginkgo --sem-ver-filter="2.1.1, redis=8.2.0"Huge thanks to @Icarus9913 for working on this!
onsi/gomega (github.com/onsi/gomega)
v1.42.1Compare Source
1.42.1
Bump Dependencies
v1.42.0Compare Source
1.42.0
Add a set of Claude skill as a marketplace plugin
v1.41.0Compare Source
v1.40.0Compare Source
1.40.0
We're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega. It is a limitation of the go mod toolchain that test subdependencies of your project's direct dependencies get pulled in as indirect dependencies. In the case of Gomega, this ends up pulling in all of Ginkgo into your
go.modeven if you are only using Gomega (Gomega uses Ginkgo for its own tests).Going forward, releases will strip out all tests, tidy up the
go.modand then push this stripped down version to a newmaster-litebranch. These stripped-down versions will receive thevx.y.zgit tag and will be picked up by the go toolchain.Please open an issue if this new release process causes unexpected changes for your projects.
v1.39.1Compare Source
1.39.1
Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.
prometheus-operator/prometheus-operator (github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring)
v0.92.1: 0.92.1 / 2026-06-30Compare Source
v0.92.0: 0.92.0 / 2026-06-18Compare Source
tokenUrlfield in OAuth2 configuration across all CRDs. #8579urlfield inRemoteReadSpecinPrometheusCRD. #8596PrometheusCRD (Prometheus >= v3 uses the config file; older versions continue to use CLI flags). #8547staleSeriesCompactionThresholdfield toTSDBSpecinPrometheusandPrometheusAgentCRDs. #8563labelNameUnderscoreSanitizationandlabelNamePreserveMultipleUnderscoresfields toOTLPConfiginPrometheusandPrometheusAgentCRDs. #8562payloadfield to Webhook receiver inAlertmanagerConfigCRD. #8507PrometheusTopologyShardingfeature gate is enabled (removes the need forattachMetadata.node=true). #8564update_messagefield in Alertmanager configuration Secret. #8556Probestatic configuration to prevent invalid Prometheus scrape configs. #7901pollBasedListerWatcher. #8593ProxyConfigin OAuth2 configuration. #8610returnin admission webhook after marshal failure. #8582FindOwnerto returnnilonmeta.Accessorerror. #8585Closeerrors inGzipConfigandGunzipConfig. #8573--labels "key"). #8560v0.91.0: 0.91.0 / 2026-05-05Compare Source
basicAuth,authorizationandoauth2inScrapeConfigCRD. #8480ScrapeConfigCRD. #8479AlertmanagerConfigCRD. #8220AlertmanagerConfigCRD. #8267AlertmanagerConfigCRD. #8270PrometheusShardRetentionPolicyfeature gate). #8478TopologyforPrometheusandPrometheusAgentcustom resources (it requires thePrometheusTopologyShardingfeature gate). #8486TopologyforPrometheusandPrometheusAgentcustom resources (it requires thePrometheusTopologyShardingfeature gate). #8519TopologyforPrometheusandPrometheusAgentcustom resources (it requires thePrometheusTopologyShardingfeature gate). #8538--promql-optionsCLI argument to the admission-webhook binary. #8531PrometheusRuleresources selected byPrometheusresources based on the PromQL enabled features. #8545ScrapeConfigCRD. #8489auth_secret_filefield for Email receiver in Alertmanager configuration Secret. #8394smtp_auth_secret_filefield in Alertmanager configuration Secret. #8396externalIdfield to SigV4 configuration inAlertmanager,Prometheus,PrometheusAgentandThanosRulerCRDs. #8494cipherSuitessupport for Thanos Sidecars and Rulers. #8524curvessupport for Thanos Sidecars and Rulers. #8542AlertmanagerCRD. #8503 #8534payloadfield for Webhook receiver in Alertmanager configuration Secret. #8505update_messagefield for Slack receiver in Alertmanager configuration Secret. #8502AlertmanagerConfigCRD. #8400healthFilterfield for ConsulSD inScrapeConfigCRD. #8529Retain. #8513v0.90.1: 0.90.1 / 2026-03-25Compare Source
v0.90.0: 0.90.0 / 2026-03-19Compare Source
httporhttps. #8455--repair-policy-for-statefulsetsCLI argument to the operator. It defines how the operator manages StatefulSet's pods stuck at an incorrect revision. Users running Kubernetes v1.35+ are encouraged to enable this feature (see troubleshooting guide). #8443schedulerNamesupport to thePrometheus,PrometheusAgent,AlertmanagerandThanosRulerCRDs. #8451--web.tls-curvesCLI argument to the operator and admission-webhook binaries. #8385ThanosRulerpods. #8441messageTextsupport for Slack receiver inAlertmanagerConfigCRD. #8374messageTextsupport for Slack receiver in Alertmanager secret config. #8375forceImplicitTLSsupport for SMTP email config in Alertmanager secret config. #8384 #8404forceImplicitTLSsupport for SMTP email config inAlertmanagerConfigCRD. #8386forceImplicitTLSsupport for SMTP global config in Alertmanager secret config. #8405forceImplicitTLSsupport for SMTP global config inAlertmanagerCRD. #8406AlertmanagerCRD. #8372chatIDFilesupport for Telegram receiver in Alertmanager secret config. #8376wechatAPISecretFilesupport in Alertmanager global config. #8377authSecretFilesupport for email config in Alertmanager secret config. #8396ThanosRulerconfig resource status not being updated on initial StatefulSet creation. #8358LastTransitionTimein Prometheus status conditions. #8346textfield optional inAlertmanagerConfigCRD. #8363Availablecondition across Prometheus shards. #8434AlertmanagerConfigCRD. #8227labelmaprelabel action rejecting valid replacement values with template variables for Prometheus 2.x. #8337v0.89.0: 0.89.0 / 2026-02-05Compare Source
hostNetworkfield to theAlertmanagerCRD. #8281crdsandfull-crdscommands to the operator's binary. #8251Reconciledcondition type. #8236ThanosRulerStatefulSet. #8347bodySizeLimitto the ScrapeConfig CRD. #8348http_headersfield in the Alertmanager Secret. #8357-kubelet-http-metricsflag to enable/disable the HTTP metrics port in the Kubelet endpoint (default=enabled). #8350operator.prometheus.io/versionannotation in the full version of CRDs. #8279AlertmanagerCRD. #8020AlertmanagerCRD. #8265AlertmanagerConfigCRD. #8258AlertmanagerConfigCRD. #8255AlertmanagerConfigCRD. #8230AlertmanagerConfigCRD. #8267AlertmanagerConfigCRD. #8271AlertmanagerConfigCRD. #8217AlertmanagerCRD. #7979AlertmanagerCRD. #8268ProbeCRD. #8354AlertmanagerConfigCRD. #8016ScrapeConfigCRD. #8284Alertmanager,ThanosRuler,PrometheusandPrometheusAgentresources. #8304ScrapeConfigresources when namespace selection changes. #8334v0.88.1: 0.88.1 / 2026-01-27Compare Source
webhookURLsecret forMSTeamsreceiver inAlertmanagerConfigCRD. #8294EC2/LightsailSD inScrapeConfigCRD. #8308Slackreceiver in AlertmanagerConfig CRD to support Go templates. #8299 #8331PagerDutyin AlertmanagerConfig CRD to support Go templates. #8319WebhookConfigin AlertmanagerConfig CRD to support Go templates. #8307 #8317RocketChatreceiver in AlertmanagerConfig CRD to support Go templates. #8318Pushoverreceiver in AlertmanagerConfig CRD to support Go templates. #8307 #8316redis/go-redis (github.com/redis/go-redis/v9)
v9.21.0Compare Source
v9.20.1: 9.20.1Compare Source
This is a patch release containing bug fixes only. There are no new features or breaking changes; upgrading from 9.20.0 is a drop-in replacement.
🚀 Highlights
RESP3 pub/sub message loss fixed
PeekPushNotificationNamepreviously inspected only the bytes already buffered bybufio, so when a push frame header straddled a buffer fill boundary it could return a truncated notification name (e.g."messa"instead of"message"). The push processor then mis-routed the frame andReadReplysilently dropped it, causing intermittent RESP3 pub/sub message loss. The peek now grows its window (36 bytes → up to 4 KiB) and reads more from the connection until the header is complete, cleanly separating incomplete prefixes from corrupt frames (including overflow-safe bulk-length handling). Fixes #3839.(#3842) by @ndyakov
🐛 Bug Fixes
PeekPushNotificationNameno longer returns a truncated notification name when a push frame header spans a buffer boundary, preventing silent RESP3 pub/sub message loss (fixes #3839) (#3842) by @ndyakovFT.HYBRIDvector params: Vector data is now always sent viaPARAMSwith auto-generated param names (__vector_param_N, with collision avoidance) whenVectorParamNameis omitted, since Redis no longer accepts inline vector blobs; theFTHybridOptions.Paramsmap is no longer mutated, so the same options struct can be reused across calls (#3844) by @ndyakovCLUSTER SHARDSforward compatibility: Unknown shard- and node-level attributes in theCLUSTER SHARDSreply are now skipped viaDiscardNext()Configuration
📅 Schedule: (UTC)
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.