chore(deps): bump the go group across 1 directory with 19 updates

[dependabot]

Bumps the go group with 12 updates in the / directory:

Package	From	To
cuelang.org/go	0.14.0	0.14.2
github.com/containers/image/v5	5.36.1	5.36.2
github.com/cyphar/filepath-securejoin	0.4.1	0.5.0
github.com/fluxcd/helm-controller/api	1.3.0	1.4.2
github.com/fluxcd/kustomize-controller/api	1.6.1	1.7.1
github.com/fluxcd/pkg/apis/event	0.18.0	0.20.0
github.com/fluxcd/pkg/http/fetch	0.17.0	0.20.0
github.com/fluxcd/pkg/kustomize	1.19.0	1.23.0
github.com/fluxcd/pkg/runtime	0.79.0	0.89.0
github.com/fluxcd/source-controller/api	1.6.2	1.7.2
github.com/mikefarah/yq/v4	4.47.1	4.48.1
ocm.software/ocm	0.31.0	0.32.0

Updates cuelang.org/go from 0.14.0 to 0.14.2

Updates github.com/containers/image/v5 from 5.36.1 to 5.36.2

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.36.2

What's Changed

• [release-5.36] Bump to c/image v5.36.1 by @​TomSweeneyRedHat in containers/image#2920
• [release-5.36] rekor: do not cancel http context by @​TomSweeneyRedHat in containers/image#2943

Full Changelog: containers/image@v5.36.1...v5.36.2

Commits

• d464a25 Bump to v5.36.2
• 50a6b67 Merge pull request #2943 from TomSweeneyRedHat/dev/tsweeney/backport_2938
• d3eb538 [release-5.36] rekor: do not cancel http context
• 6ed8326 Merge pull request #2920 from TomSweeneyRedHat/dev/tsweeney/v5.36.1
• See full diff in compare view

Updates github.com/cyphar/filepath-securejoin from 0.4.1 to 0.5.0

Changelog

Sourced from github.com/cyphar/filepath-securejoin's changelog.

[0.5.0] - 2025-09-26

Let the past die. Kill it if you have to.

NOTE: With this release, some parts of github.com/cyphar/filepath-securejoin are now licensed under the Mozilla Public License (version 2). Please see COPYING.md as well as the the license header in each file for more details.

Breaking

• The new API introduced in the [0.3.0][] release has been moved to a new subpackage called pathrs-lite. This was primarily done to better indicate the split between the new and old APIs, as well as indicate to users the purpose of this subpackage (it is a less complete version of [libpathrs][]).

  We have added some wrappers to the top-level package to ease the transition, but those are deprecated and will be removed in the next minor release of filepath-securejoin. Users should update their import paths.

  This new subpackage has also been relicensed under the Mozilla Public License (version 2), please see COPYING.md for more details.

Added

• Most of the key bits the safe procfs API have now been exported and are available in github.com/cyphar/filepath-securejoin/pathrs-lite/procfs. At the moment this primarily consists of a new procfs.Handle API:

  • OpenProcRoot returns a new handle to /proc, endeavouring to make it safe if possible (subset=pid to protect against mistaken write attacks and leaks, as well as using fsopen(2) to avoid racing mount attacks).

    OpenUnsafeProcRoot returns a handle without attempting to create one with subset=pid, which makes it more dangerous to leak. Most users should use OpenProcRoot (even if you need to use ProcRoot as the base of an operation, as filepath-securejoin will internally open a handle when necessary).

  • The (*procfs.Handle).Open* family of methods lets you get a safe O_PATH handle to subpaths within /proc for certain subpaths.

    For OpenThreadSelf, the returned ProcThreadSelfCloser needs to be called after you completely finish using the handle (this is necessary because Go is multi-threaded and ProcThreadSelf references /proc/thread-self which may disappear if we do not runtime.LockOSThread -- ProcThreadSelfCloser is currently equivalent to runtime.UnlockOSThread).

    Note that you cannot open any procfs symlinks (most notably magic-links)

... (truncated)

Commits

• bb9e81f VERSION: release 0.5.0
• 17e58e1 CHANGELOG: minor updates
• cc071b2 hack: properly test ./...
• a1c1895 CHANGELOG: fix kernel version for open_tree(2)
• 432c95e doc: minor godoc improvements
• 90002f2 CHANGELOG: mention MPLv2 in pathrs-lite entry
• 59fcb8b COPYING: fix reference to pathrs-lite internal pkgs
• 43797e7 pathrs-lite: add Close to procfs wrapper
• 2a0e2b6 pathrs-lite: move Reopen impl to internal/procfs
• 3c5e239 *: update and improve godocs
• Additional commits viewable in compare view

Updates github.com/fluxcd/helm-controller/api from 1.3.0 to 1.4.2

Release notes

Sourced from github.com/fluxcd/helm-controller/api's releases.

v1.4.2

Changelog

v1.4.2 changelog

Container images

• docker.io/fluxcd/helm-controller:v1.4.2
• ghcr.io/fluxcd/helm-controller:v1.4.2

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.4.1

Changelog

v1.4.1 changelog

Container images

• docker.io/fluxcd/helm-controller:v1.4.1
• ghcr.io/fluxcd/helm-controller:v1.4.1

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.4.0

Changelog

v1.4.0 changelog

Container images

• docker.io/fluxcd/helm-controller:v1.4.0
• ghcr.io/fluxcd/helm-controller:v1.4.0

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.4.0-rc.1

This release candidate is meant for testing.

... (truncated)

Changelog

Sourced from github.com/fluxcd/helm-controller/api's changelog.

1.4.2

Release date: 2025-10-08

This patch release comes with various dependency updates.

The controller is now built with Go 1.25.2 which includes fixes for vulnerabilities in the Go stdlib: CVE-2025-58183, CVE-2025-58188 and many others. The full list of security fixes can be found here.

Improvements:

• Update dependencies to Kubernetes v1.34.1 and Go 1.25.2 #1329

1.4.1

Release date: 2025-10-06

This patch release fixes the controller setting the Ready condition to Unknown redundantly during reconciliation.

Fixes:

• Remove redundant Ready condition setter #1323
• Fix docs example for kubeconfig workload identity #1315

1.4.0

Release date: 2025-09-25

This minor release comes with various bug fixes and improvements.

⚠️ The v2beta1 APIs were removed. Before upgrading the CRDs, Flux users must run flux migrate to migrate the cluster storage off v2beta1.

The controller now supports ExternalArtifact Helm chart sources under the feature gate ExternalArtifact.

A new RetryOnFailure strategy has been added for automatic retries on Helm release failures.

Dependencies can now be evaluated using CEL expressions via the new readyExpr field, providing more flexible and powerful dependency readiness checks.

... (truncated)

Commits

• 310cd46 Merge pull request #1331 from fluxcd/release-v1.4.2
• bcd4b75 Release v1.4.2
• 955ccc2 Add changelog entry for v1.4.2
• c13d3b0 Merge pull request #1330 from fluxcd/backport-1329-to-release/v1.4.x
• d2e2425 Update dependencies to Kubernetes v1.34.1 and Go 1.25.2
• 5961301 Merge pull request #1325 from fluxcd/release-v1.4.1
• 141ebe4 Release v1.4.1
• 3d8a070 Add changelog entry for v1.4.1
• ceefb36 Merge pull request #1324 from fluxcd/backport-1323-to-release/v1.4.x
• db72db6 Add recommended settings to docs
• Additional commits viewable in compare view

Updates github.com/fluxcd/kustomize-controller/api from 1.6.1 to 1.7.1

Release notes

Sourced from github.com/fluxcd/kustomize-controller/api's releases.

v1.7.1

Changelog

v1.7.1 changelog

Container images

• docker.io/fluxcd/kustomize-controller:v1.7.1
• ghcr.io/fluxcd/kustomize-controller:v1.7.1

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.7.0

Changelog

v1.7.0 changelog

Container images

• docker.io/fluxcd/kustomize-controller:v1.7.0
• ghcr.io/fluxcd/kustomize-controller:v1.7.0

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.7.0-rc.1

This release candidate is meant for testing.

Container images

• docker.io/fluxcd/kustomize-controller:v1.7.0-rc.1
• ghcr.io/fluxcd/kustomize-controller:v1.7.0-rc.1

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

Changelog

Sourced from github.com/fluxcd/kustomize-controller/api's changelog.

1.7.1

Release date: 2025-10-08

This patch release comes with various dependency updates.

The controller is now built with Go 1.25.2 which includes fixes for vulnerabilities in the Go stdlib: CVE-2025-58183, CVE-2025-58188 and many others. The full list of security fixes can be found here.

Improvements:

• Update dependencies to Kubernetes v1.34.1 and Go 1.25.2 #1530

1.7.0

Release date: 2025-09-24

This minor release comes with various bug fixes and improvements.

⚠️ The v1beta1 APIs were removed. Before upgrading the CRDs, Flux users must run flux migrate to migrate the cluster storage off v1beta1.

The Kustomization API now supports reconciling content from external storage systems through the new ExternalArtifact CRD. This feature is controlled by the ExternalArtifact feature gate and enables reconciliation of artifacts stored outside of Git repositories.

Kustomizations now track their reconciliation history in .status.history, providing visibility into past reconciliation attempts and their outcomes.

Dependencies can now be evaluated using CEL expressions through the new readyExpr field in dependsOn. This feature is controlled by the AdditiveCELDependencyCheck feature gate and allows for more flexible dependency readiness checks.

The controller now supports global SOPS Age key decryption, allowing centralized management of decryption keys.

Support for workload identity authentication has been added for remote clusters. This is support both at the controller and object levels. For object-level, enable the feature gate ObjectLevelWorkloadIdentity.

The new .spec.ignoreMissingComponents field allows Kustomizations to continue reconciliation even when referenced components are missing, providing more resilient deployments.

A feature gate CancelHealthChecksOnNewRevision has been added to cancel ongoing

... (truncated)

Commits

• 1d4447f Merge pull request #1533 from fluxcd/release-v1.7.1
• 08349ba Release v1.7.1
• a1fa37b Add changelog entry for v1.7.1
• f21648c Merge pull request #1531 from fluxcd/backport-1530-to-release/v1.7.x
• 13d9796 Update dependencies to Kubernetes v1.34.1 and Go 1.25.2
• 66bb1ea Merge pull request #1525 from fluxcd/backport-1524-to-release/v1.7.x
• 61ddcad Fix docs example for kubeconfig workload identity
• 91e762e Merge pull request #1521 from fluxcd/release-v1.7.0
• 020caf4 Release v1.7.0
• 8a3619d Add changelog entry for v1.7.0
• Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/apis/event from 0.18.0 to 0.20.0

Commits

• be8df7e Merge pull request #801 from fluxcd/k8s-1.31
• 76035f8 Update Helm to v3.15.4
• 3f5cf4c Build with Go 1.23
• 4b90241 Update dependencies to Kubernetes v1.31.0
• 0e61a3b Merge pull request #799 from fluxcd/dependabot/github_actions/ci-9f4b007c5b
• 6bf4bad build(deps): bump the ci group with 4 updates
• 968f190 Merge pull request #795 from fluxcd/dependabot/github_actions/ci-8fa51b1870
• bce8cab build(deps): bump the ci group across 1 directory with 8 updates
• 7d033c1 Merge pull request #798 from fluxcd/cleanup-aws-nuke
• e98ccfa workflow: Set aws-nuke region for cleanup
• Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/apis/meta from 1.18.0 to 1.22.0

Commits

• 413a95f Merge pull request #1039 from fluxcd/dependabot/github_actions/ci-05a7a237d9
• 246714f build(deps): bump the ci group with 3 updates
• ac938bf Merge pull request #1040 from fluxcd/k8s-1.34.1
• ef1c3ec Prepare release
• 5679184 Update dependencies
• d56c6f4 Merge pull request #1038 from cappyzawa/validate-proxy-url
• 3e994a9 Prepare for release
• c1274b1 runtime/secrets: validate proxy URL scheme and length
• ca99961 Merge pull request #1037 from fluxcd/ssa-migrate-managed-fields
• 18da908 ssa: Add helper function to migrate the apiVersion on managed fields
• Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/http/fetch from 0.17.0 to 0.20.0

Commits

• be8df7e Merge pull request #801 from fluxcd/k8s-1.31
• 76035f8 Update Helm to v3.15.4
• 3f5cf4c Build with Go 1.23
• 4b90241 Update dependencies to Kubernetes v1.31.0
• 0e61a3b Merge pull request #799 from fluxcd/dependabot/github_actions/ci-9f4b007c5b
• 6bf4bad build(deps): bump the ci group with 4 updates
• 968f190 Merge pull request #795 from fluxcd/dependabot/github_actions/ci-8fa51b1870
• bce8cab build(deps): bump the ci group across 1 directory with 8 updates
• 7d033c1 Merge pull request #798 from fluxcd/cleanup-aws-nuke
• e98ccfa workflow: Set aws-nuke region for cleanup
• Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/kustomize from 1.19.0 to 1.23.0

Commits

• 413a95f Merge pull request #1039 from fluxcd/dependabot/github_actions/ci-05a7a237d9
• 246714f build(deps): bump the ci group with 3 updates
• ac938bf Merge pull request #1040 from fluxcd/k8s-1.34.1
• ef1c3ec Prepare release
• 5679184 Update dependencies
• d56c6f4 Merge pull request #1038 from cappyzawa/validate-proxy-url
• 3e994a9 Prepare for release
• c1274b1 runtime/secrets: validate proxy URL scheme and length
• ca99961 Merge pull request #1037 from fluxcd/ssa-migrate-managed-fields
• 18da908 ssa: Add helper function to migrate the apiVersion on managed fields
• Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/runtime from 0.79.0 to 0.89.0

Commits

• 7301068 Merge pull request #1041 from fluxcd/fix-sc-1915
• c2d48e9 Prepare for release
• 7666900 Revert "runtime/secrets: validate proxy URL scheme and length"
• 413a95f Merge pull request #1039 from fluxcd/dependabot/github_actions/ci-05a7a237d9
• 246714f build(deps): bump the ci group with 3 updates
• ac938bf Merge pull request #1040 from fluxcd/k8s-1.34.1
• ef1c3ec Prepare release
• 5679184 Update dependencies
• d56c6f4 Merge pull request #1038 from cappyzawa/validate-proxy-url
• 3e994a9 Prepare for release
• Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/tar from 0.13.0 to 0.15.0

Commits

• cc785fa Merge pull request #686 from fluxcd/k8s-1.28
• 1d7d31b all: Group github.com/fluxcd/cli-utils imports
• 09ba5d8 runtime: Add pprof.GetHandlers to help setup the metrics server
• 768085d runtime: Update sigs.k8s.io/controller-runtime to v0.16.3
• 2e007cb ssa: Update Kubernetes to v1.28.4
• e7686cf kustomize: Update Kustomize to v5.2.1
• 3be575d oci: Update sigs.k8s.io/controller-runtime to v0.16.3
• 7f72436 helmtestserver: Update Helm to v3.13.2
• fe543f5 git: Update golang.org/x/crypto to v0.15.0
• 129adfd apis: Update Kubernetes to v1.28
• Additional commits viewable in compare view

Updates github.com/fluxcd/source-controller/api from 1.6.2 to 1.7.2

Release notes

Sourced from github.com/fluxcd/source-controller/api's releases.

v1.7.2

Changelog

v1.7.2 changelog

Container images

• docker.io/fluxcd/source-controller:v1.7.2
• ghcr.io/fluxcd/source-controller:v1.7.2

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.7.1

Changelog

v1.7.1 changelog

Container images

• docker.io/fluxcd/source-controller:v1.7.1
• ghcr.io/fluxcd/source-controller:v1.7.1

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.7.0

Changelog

v1.7.0 changelog

Container images

• docker.io/fluxcd/source-controller:v1.7.0
• ghcr.io/fluxcd/source-controller:v1.7.0

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

v1.7.0-rc.3

This release candidate is meant for testing.

... (truncated)

Changelog

Sourced from github.com/fluxcd/source-controller/api's changelog.

1.7.2

Release date: 2025-10-08

This patch release comes with various dependency updates.

The controller is now built with Go 1.25.2 which includes fixes for vulnerabilities in the Go stdlib: CVE-2025-58183, CVE-2025-58188 and many others. The full list of security fixes can be found here.

Improvements:

• Update dependencies to Kubernetes v1.34.1 and Go 1.25.2 #1908

1.7.1

Release date: 2025-10-06

This patch release comes with a fix for TLS certs handling in the HelmChart reconciler when auth credentials are not specified.

Fixes:

• Fix HelmChart reconciler appending login options when they do not exist #1904

Improvements:

• ci: Fix release workflow #1897
• Point to OCIRepository in HelmRepository docs #1893

1.7.0

Release date: 2025-09-15

This minor release comes with new features, improvements and bug fixes.

ExternalArtifact

A new ExternalArtifact API has been added to the source.toolkit.fluxcd.io group. This API enables advanced source composition and decomposition patterns implemented by the source-watcher controller.

GitRepository

GitRepository controller now includes fixes for stalling issues and improved error handling. Multi-tenant workload identity support has been added for Azure repositories when the ObjectLevelWorkloadIdentity feature gate is enabled. TLS configuration support has been added for GitHub App authentication.

Bucket

... (truncated)

Commits

• 7a5b948 Merge pull request #1911 from fluxcd/release-v1.7.2
• 88226aa Release v1.7.2
• 5aa4037 Add changelog entry for v1.7.2
• f932599 Merge pull request #1910 from fluxcd/backport-1908
• bda69ad Update dependencies to Kubernetes v1.34.1
• 080fd93 Merge pull request #1906 from fluxcd/release-v1.7.1
• 4cdd0f6 Release v1.7.1
• 880ac12 Add changelog entry for v1.7.1
• f656cb1 Merge pull request #1905 from fluxcd/backport-1904-to-release/v1.7.x
• 89497b4 e2e: Delete Bitnami deps
• Additional commits viewable in compare view

Updates github.com/mikefarah/yq/v4 from 4.47.1 to 4.48.1

Release notes

Sourced from github.com/mikefarah/yq/v4's releases.

v4.48.1 - First and Parents Operators

• Added 'parents' operator, to return a list of all the hierarchical parents of a node
• Added 'first(exp)' operator, to return the first entry matching an expression in an array
• Fixed xml namespace prefixes #1730 (thanks @​baodrate)
• Fixed out of range panic in yaml decoder #2460 (thanks @​n471d)
• Bumped dependencies

v4.47.2

• Conversion from TOML to JSON no longer omits empty tables #2459 (thanks @​louislouislouislouis)
• Bumped dependencies

Changelog

Sourced from github.com/mikefarah/yq/v4's changelog.

4.48.1:

• Added 'parents' operator, to return a list of all the hierarchical parents of a node
• Added 'first(exp)' operator, to return the first entry matching an expression in an array
• Fixed xml namespace prefixes #1730 (thanks @​baodrate)
• Fixed out of range panic in yaml decoder #2460 (thanks @​n471d)
• Bumped dependencies

4.47.2:

• Conversion from TOML to JSON no longer omits empty tables #2459 (thanks @​louislouislouislouis)
• Bumped dependencies

Commits

• 0ecdce2 Bumping version
• 01ac615 Updating contrib
• 6629924 Bump github.com/alecthomas/repr from 0.5.1 to 0.5.2
• 3869354 Bump golang from 1.25.0 to 1.25.2
• d5dd338 Bump github/codeql-action from 3 to 4
• 201542b Bump golang.org/x/net from 0.43.0 to 0.46.0
• f353885 fix: keep xml namespace prefixes for tags
• df92dec chore: add xml namespace prefix test cases
• 23060cb Improving first op docs
• 4532346 Adding first operator
• Additional commits viewable in compare view

Updates k8s.io/api from 0.34.0 to 0.34.1

Commits

• 77c9e29 Update dependencies to v0.34.1 tag
• See full diff in compare view

Updates k8s.io/apiextensions-apiserver from 0.34.0 to 0.34.1

Commits

• bb91141 Update dependencies to v0.34.1 tag
• 4a9fea1 Merge pull request #133901yongruilin/automated-cherry-pick-of-#133896
• 3896d9f fix: Only warn for unrecognized formats on type=string
• See full diff in compare view

Updates k8s.io/apimachinery from 0.34.0 to 0.34.1

Commits

• See full diff in compare view

Updates k8s.io/client-go from 0.34.0 to 0.34.1

Commits

• d033c49 Update dependencies to v0.34.1 tag
• See full diff in compare view

Updates ocm.software/ocm from 0.31.0 to 0.32.0

Release notes

Sourced from ocm.software/ocm's releases.

v0.32.0

What's Changed

🐛 Bug Fixes

• fix: update swag import to use conv package by @​morri-son in open-component-model/ocm#1625

⬆️ Dependencies

• chore(deps): Supersedes Dependabot PR #1620 after fixing linter issues by @​morri-son in open-component-model/ocm#1626
• chore(deps): bump the go group with 10 updates by @​dependabot[bot] in open-component-model/ocm#1630
• chore(deps): bump distroless/static-debian12 from to by @​morri-son in open-component-model/ocm#1635

🧰 Maintenance

• chore: bump VERSION to 0.32.0-dev by @​ocmbot[bot] in open-component-model/ocm#1624

Full Changelog: open-component-model/ocm@v0.31...v0.32.0

v0.32.0-rc.1

What's Changed

🐛 Bug Fixes

• fix: update swag import to use conv package by @​morri-son in open-component-model/ocm#1625

⬆️ Dependencies

• chore(deps): Supersedes Dependabot PR #1620 after fixing linter issues by @​morri-son in open-component-model/ocm#1626
• chore(deps): bump the go group with 10 updates by @​dependabot[bot] in open-component-model/ocm#1630
• chore(deps): bump distroless/static-debian12 from to by @​morri-son in open-component-model/ocm#1635

🧰 Maintenance

• chore: bump VERSION to 0.32.0-dev by @​ocmbot[bot] in open-component-model/ocm#1624

Full Changelog: open-component-model/ocm@v0.31...v0.32.0

Commits

• ce70af9 chore(deps): bump distroless/static-debian12 from a9f88e0 to e8a4044 (#1635)
• c01cb6d chore(deps): bump github/codeql-action from 3.30.5 to 3.30.6 in the ci group ...
• 726075f chore(deps): bump peter-evans/repository-dispatch from 3.0.0 to 4.0.0 in the ...
• 9d21858 chore(deps): bump docker/login-action from 3.5.0 to 3.6.0 in the ci group (#1...
• 3f945a9 chore(deps): bump github/codeql-action from 3.30.3 to 3.30.4 in the ci group ...
• efac10c chore(deps): bump the go group with 10 updates (#1630)
• b47cc16 chore(deps): bump the ci group across 1 directory with 3 updates (#1627)
• 739e6f5 chore(deps): Supersedes Dependabot PR #1620 after fixing linter issues (#1626)
• a68c20b fix: update swag import to use conv package (#1625)
• be84754 chore: bump VERSION to 0.32.0-dev (#1624)
• See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.22.0 to 0.22.2

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.22.2

What's Changed

• 🐛 Panic when trying to build more than one instance of fake.ClientBuilder by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3315
• 🌱 Bump to k8s.io/* v0.34.1 by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3317
• 🐛 Don't block on Get when queue is shutdown (2nd try) by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3338
• 🐛 Fix a bug where the priorityqueue would sometimes not return high-priority items first by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3340

Full Changelog: kubernetes-sigs/controller-runtime@v0.22.1...v0.22.2

v0.22.1

What's Changed

• 🌱 Revert deprecation of client.Apply by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3308

Full Changelog: kubernetes-sigs/controller-runtime@v0.22.0...v0.22.1

Commits

• 7fb34b5 [release-0.22] 🐛 Fix a bug where the priorityqueue would sometimes not return...
• 27d4b5e Merge pull request #3338 from k8s-infra-cherrypick-robot/cherry-pick-3337-to-...
• 6d368ce Rebase priorityqueue shutdown fix for release-0.22
• d04f428 Don't block on Get when queue is shutdown (2nd try)
• 7f146f7 Merge pull request #3317 from k8s-infra-cherrypick-robot/cherry-pick-3316-to-...
• f3b9e4f Bump to k8s.io/* v0.34.1
• 04c6a08 [release-0.22] 🐛Panic when trying to build more than one instance of fake.Cli...
• 6422ed0 Merge pull request #3308 from k8s-infra-cherrypick-robot/cherry-pick-3307-to-...
• 09a2e89 Revert deprecation of client.Apply
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions