Skip to content

Bump the oc-mirror-v2-version-updates group across 1 directory with 13 updates #1305

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the oc-mirror-v2-version-updates group across 1 directory with 13 updates #1305

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 4, 2025
edited by openshift-ci bot
Loading

Bumps the oc-mirror-v2-version-updates group with 3 updates in the / directory: github.com/operator-framework/operator-registry, go.podman.io/common and helm.sh/helm/v3.

Updates github.com/operator-framework/operator-registry from 1.50.0 to 1.60.0

Release notes

Sourced from github.com/operator-framework/operator-registry's releases.

v1.60.0

Notice

This release bumps k8s to 1.34

What's Changed

New Contributors

Full Changelog: operator-framework/operator-registry@v1.59.0...v1.60.0

v1.59.0

What's Changed

Full Changelog: operator-framework/operator-registry@v1.58.0...v1.59.0

v1.58.0

Potential breaking changes

  • #1750 introduced ratcheted criteria for opm validate which includes the ability to validate that no included bundle versions are stranded, since without validation it's relatively easy to create edges which OLM ignores when evaluating potential upgrades. Capabilities added to opm alpha render-graph in #1744 attempt to make this more apparent to operator authors.

What's Changed

Full Changelog: operator-framework/operator-registry@v1.57.0...v1.58.0

... (truncated)

Commits
  • 8d4a5f9 update o-f/api as prep for release (#1806)
  • a5f1128 release/goreleaser.opm.Dockerfile: parameterize grpc-health-probe version (#1...
  • 017ab53 Add PodMonitor to supported resources (#1795)
  • 4cceb63 Bump the k8s-dependencies group across 1 directory with 6 updates (#1772)
  • 541ff1a migrate containers libs to new mono-repo (#1799)
  • 47dee8d set an exception for migrate file permissions (#1798)
  • 0ec1210 Bump the golang-x-deps group across 1 directory with 2 updates (#1797)
  • d19515e Bump google.golang.org/grpc from 1.75.0 to 1.75.1 (#1796)
  • e30a327 Bump github.com/maxbrunsfeld/counterfeiter/v6 from 6.11.3 to 6.12.0 (#1791)
  • ed73d3d Bump google.golang.org/protobuf from 1.36.8 to 1.36.9 (#1793)
  • Additional commits viewable in compare view

Updates github.com/spf13/pflag from 1.0.9 to 1.0.10

Release notes

Sourced from github.com/spf13/pflag's releases.

v1.0.10

What's Changed

New Contributors

Full Changelog: spf13/pflag@v1.0.9...v1.0.10

Commits
  • 0491e57 Merge pull request #448 from thaJeztah/fix_go_version
  • 72abab1 Merge pull request #447 from thaJeztah/fix_deprecation_comment
  • 7e4dfb1 Test on Go 1.12
  • 18a9d17 move Func, BoolFunc, tests as they require go1.21
  • c5b9e98 remove uses of errors.Is, which requires go1.13
  • 45a4873 fix deprecation comment for (FlagSet.)ParseErrorsWhitelist
  • See full diff in compare view

Updates go.podman.io/common from 0.65.0 to 0.66.0

Commits
  • 8163ca7 Bump common to v0.66.0
  • 71fe077 Bump storage to v1.61.0, image to v5.38.0 in common
  • 8cf3807 Bump image to v5.38.0
  • 18b0272 Vendor storage v1.61.0
  • 4364199 Bump storage to v1.61.0
  • c4c5e00 Merge pull request #369 from mtrmac/certs-port
  • c4983f3 Merge pull request #394 from rhatdan/artifact
  • 8e706a4 Allow artifact add to override org.opencontainers.image.title annotation
  • aa970d2 Merge pull request #392 from baude/addlibartifact
  • 7e74b4c common: add libartifact
  • Additional commits viewable in compare view

Updates go.podman.io/image/v5 from 5.37.0 to 5.38.0

Commits
  • 8cf3807 Bump image to v5.38.0
  • 18b0272 Vendor storage v1.61.0
  • 4364199 Bump storage to v1.61.0
  • c4c5e00 Merge pull request #369 from mtrmac/certs-port
  • c4983f3 Merge pull request #394 from rhatdan/artifact
  • 8e706a4 Allow artifact add to override org.opencontainers.image.title annotation
  • aa970d2 Merge pull request #392 from baude/addlibartifact
  • 7e74b4c common: add libartifact
  • c305063 Merge pull request #386 from flouthoc/fix-workflow
  • 046d2c6 opendownstream-PR: improve PR description
  • Additional commits viewable in compare view

Updates go.podman.io/storage from 1.60.0 to 1.61.0

Commits
  • 4364199 Bump storage to v1.61.0
  • c4c5e00 Merge pull request #369 from mtrmac/certs-port
  • c4983f3 Merge pull request #394 from rhatdan/artifact
  • 8e706a4 Allow artifact add to override org.opencontainers.image.title annotation
  • aa970d2 Merge pull request #392 from baude/addlibartifact
  • 7e74b4c common: add libartifact
  • c305063 Merge pull request #386 from flouthoc/fix-workflow
  • 046d2c6 opendownstream-PR: improve PR description
  • a3b0f19 Merge pull request #383 from containers/renovate/golang.org-x-crypto-0.x
  • 1d7f3ac fix(deps): update module golang.org/x/crypto to v0.43.0
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.41.0 to 0.43.0

Commits
  • 627cb89 go.mod: update golang.org/x dependencies
  • dca4914 acme: fix autocert TestHTTPHandlerDefaultFallback
  • 1336e21 x509roots/fallback: update bundle
  • 2beaa59 ssh: add VerifiedPublicKeyCallback
  • 66c3d8c ssh: add support for FIPS mode
  • ddb4e80 ssh: remove custom contains, use slices.Contains
  • f4d47b0 ssh: return clearer error when signature algorithm is used as key format
  • 96dc232 x509roots/fallback/bundle: add bundle package to export root certs
  • 8c9ba31 all: freeze and deprecate more packages
  • 559e062 ssh/agent: return an error for unexpected message types
  • Additional commits viewable in compare view

Updates golang.org/x/term from 0.34.0 to 0.36.0

Commits
  • 3a0828a go.mod: update golang.org/x dependencies
  • 1a11b45 go.mod: update golang.org/x dependencies
  • d862cd5 all: upgrade go directive to at least 1.24.0 [generated]
  • See full diff in compare view

Updates helm.sh/helm/v3 from 3.18.6 to 3.19.0

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.19.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Fixed a helm pull regression from 3.18 - error pulling OCI charts with --password #31230
  • Fixed a helm lint regression from Helm 3.18 - rejected JSON Schema $ref URLs that worked in 3.17.x #31166
  • Fixed go mod tidy #31154
  • Fixed k8s version parsing not matching original #31091
  • Fixed charts failing when using a redirect registry #31087
  • Fixed missing debug logging for OCI transport
  • Fixed broken legacy docker support for login #30941
  • Fixed bugs from the move to ORAS v2
  • Fixed processing all hook deletions on failure #30673
  • Feature for helm create added httproute from gateway-api to create chart template #30658

Installation and Upgrading

Download Helm v3.19.0. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.19.1 will contain only bug fixes.
  • 3.20.0 is the next feature release.

Changelog

  • bump version to v3.19.0 3d8990f0836691f0229297773f3524598f46bda6 (Scott Rigby)
  • fix: use username and password if provided 9a54bf1df6245232aff6235ebc5da7616f06afa7 (Evans Mungai)

... (truncated)

Commits
  • 3d8990f bump version to v3.19.0
  • eab6c55 Merge pull request #31214 from helm/dependabot/go_modules/dev-v3/k8s-io-e32ea...
  • 25f462c Merge pull request #31241 from banjoh/em/fix-username-password-v3
  • 9a54bf1 fix: use username and password if provided
  • 5af0f68 chore(deps): bump the k8s-io group with 7 updates
  • fb05a5a Merge pull request #31233 from helm/dependabot/go_modules/dev-v3/github.com/s...
  • e485606 chore(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1
  • 2386688 Merge pull request #31208 from helm/dependabot/go_modules/dev-v3/github.com/s...
  • 6355c3d chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1
  • ee80c32 Merge pull request #31189 from helm/dependabot/go_modules/dev-v3/github.com/s...
  • Additional commits viewable in compare view

Updates k8s.io/api from 0.33.4 to 0.34.1

Commits
  • 77c9e29 Update dependencies to v0.34.1 tag
  • 133a39c Merge remote-tracking branch 'origin/master' into release-1.34
  • fd087be clarify that staging repos are automatically published
  • ff163ef add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
  • 5ec86fc link to what a staging repository is
  • 08c5dee docs: clarify that this is a staging repository and not for direct contributions
  • ba64d0b Update prerelease lifecycle to v1.34
  • 25f849c Merge pull request #132522 from sunya-ch/KEP-5075-PR
  • baa1eb1 KEP-5075: generated codes from make update
  • 740b2c9 KEP-5075: API updates
  • Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.33.4 to 0.34.1

Commits
  • b72d93d Merge remote-tracking branch 'origin/master' into release-1.34
  • cd8b91c clarify that staging repos are automatically published
  • 8c59599 add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
  • ec3cea5 link to what a staging repository is
  • e4db694 docs: clarify that this is a staging repository and not for direct contributions
  • 04507a3 Merge pull request #132942 from thockin/kyaml
  • 50e39b1 Merge pull request #132935 from benluddy/cbor-bump-custom-marshalers
  • 7d108e8 Re-vendor sigs.k8s.io/yaml @ v1.6.0
  • 58c4eb0 Merge pull request #133130 from ylink-lfs/chore/residual_boolptr_removal
  • 38a24e6 chore: residual boolptr and intptr removal
  • Additional commits viewable in compare view

Updates k8s.io/client-go from 0.33.4 to 0.34.1

Commits
  • d033c49 Update dependencies to v0.34.1 tag
  • 97396af Merge remote-tracking branch 'origin/master' into release-1.34
  • 5f737f3 clarify that staging repos are automatically published
  • 0b8655b add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
  • c00384c link to what a staging repository is
  • b53b1f8 docs: clarify that this is a staging repository and not for direct contributions
  • 42e6182 KEP-5075: generated codes from make update
  • da11948 Merge pull request #130653 from yliaog/master
  • 3b7d818 extended resource backed by DRA: codegen
  • bb11581 Merge pull request #130160 from KobayashiD27/dra-device-binding-conditions
  • Additional commits viewable in compare view

Updates k8s.io/kubectl from 0.33.4 to 0.34.0

Commits
  • d0412c1 Update dependencies to v0.34.0 tag
  • a8c040b Merge remote-tracking branch 'origin/master' into release-1.34
  • 4d28f5c clarify that staging repos are automatically published
  • 3962f40 add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
  • af99d1e special case that kubectl staging repo is currently used to track issues, and...
  • 4f56b5e link to what a staging repository is
  • 9fb3eee docs: clarify that this is a staging repository and not for direct contributions
  • 8185d35 Merge pull request #132942 from thockin/kyaml
  • 80ffc39 Merge pull request #131549 from carlory/KEP-3751-GA
  • 3f6dbad Merge pull request #132935 from benluddy/cbor-bump-custom-marshalers
  • Additional commits viewable in compare view

Updates github.com/docker/cli from 28.3.3+incompatible to 28.5.1+incompatible

Commits
  • e180ab8 Merge pull request #6541 from vvoland/6540-28.x
  • 0d799c5 update to go1.24.8
  • 887030f Merge pull request #6522 from thaJeztah/28.x_bump_moby
  • 9c6a0e0 Merge pull request #6531 from thaJeztah/28.x_backport_bump_macos
  • f784471 vendor: github.com/docker/docker cd048300a487 (v28.5.0-dev)
  • d7afcf9 Merge pull request #6529 from thaJeztah/28.x_backport_deprecate_ResolveDefaul...
  • 9d9adf6 gha: add macOS 15, remove macOS 13 (deprecated)
  • d4b7734 cli/command: deprecate ResolveDefaultContext
  • a106161 Merge pull request #6519 from thaJeztah/28.x_backport_authconfig_no_direct_cast
  • 5e42f82 Merge pull request #6518 from thaJeztah/28.x_backport_memstore_notfounderr
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the oc-mirror-v2-version-updates group across 1 directory with 1…
e0bbe29 
…3 updates

Bumps the oc-mirror-v2-version-updates group with 3 updates in the / directory: [github.com/operator-framework/operator-registry](https://github.com/operator-framework/operator-registry), [go.podman.io/common](https://github.com/containers/container-libs) and [helm.sh/helm/v3](https://github.com/helm/helm).


Updates `github.com/operator-framework/operator-registry` from 1.50.0 to 1.60.0
- [Release notes](https://github.com/operator-framework/operator-registry/releases)
- [Commits](operator-framework/operator-registry@v1.50.0...v1.60.0)

Updates `github.com/spf13/pflag` from 1.0.9 to 1.0.10
- [Release notes](https://github.com/spf13/pflag/releases)
- [Commits](spf13/pflag@v1.0.9...v1.0.10)

Updates `go.podman.io/common` from 0.65.0 to 0.66.0
- [Commits](containers/container-libs@common/v0.65.0...common/v0.66.0)

Updates `go.podman.io/image/v5` from 5.37.0 to 5.38.0
- [Commits](containers/container-libs@image/v5.37.0...image/v5.38.0)

Updates `go.podman.io/storage` from 1.60.0 to 1.61.0
- [Commits](containers/container-libs@storage/v1.60.0...storage/v1.61.0)

Updates `golang.org/x/crypto` from 0.41.0 to 0.43.0
- [Commits](golang/crypto@v0.41.0...v0.43.0)

Updates `golang.org/x/term` from 0.34.0 to 0.36.0
- [Commits](golang/term@v0.34.0...v0.36.0)

Updates `helm.sh/helm/v3` from 3.18.6 to 3.19.0
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.18.6...v3.19.0)

Updates `k8s.io/api` from 0.33.4 to 0.34.1
- [Commits](kubernetes/api@v0.33.4...v0.34.1)

Updates `k8s.io/apimachinery` from 0.33.4 to 0.34.1
- [Commits](kubernetes/apimachinery@v0.33.4...v0.34.1)

Updates `k8s.io/client-go` from 0.33.4 to 0.34.1
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.33.4...v0.34.1)

Updates `k8s.io/kubectl` from 0.33.4 to 0.34.0
- [Commits](kubernetes/kubectl@v0.33.4...v0.34.0)

Updates `github.com/docker/cli` from 28.3.3+incompatible to 28.5.1+incompatible
- [Commits](docker/cli@v28.3.3...v28.5.1)

---
updated-dependencies:
- dependency-name: github.com/operator-framework/operator-registry
  dependency-version: 1.60.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: github.com/spf13/pflag
  dependency-version: 1.0.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: go.podman.io/common
  dependency-version: 0.66.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: go.podman.io/image/v5
  dependency-version: 5.38.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: go.podman.io/storage
  dependency-version: 1.61.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: golang.org/x/crypto
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: golang.org/x/term
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: helm.sh/helm/v3
  dependency-version: 3.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: k8s.io/api
  dependency-version: 0.34.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: k8s.io/apimachinery
  dependency-version: 0.34.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: k8s.io/client-go
  dependency-version: 0.34.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: k8s.io/kubectl
  dependency-version: 0.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
- dependency-name: github.com/docker/cli
  dependency-version: 28.5.1+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: oc-mirror-v2-version-updates
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 4, 2025
@openshift-ci openshift-ci bot requested review from aguidirh and r4f4 November 4, 2025 14:10
@openshift-ci
Copy link

openshift-ci bot commented Nov 4, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign r4f4 for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. label Nov 4, 2025
@openshift-ci
Copy link

openshift-ci bot commented Nov 4, 2025

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a github.com member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@r4f4
Copy link
Contributor

r4f4 commented Nov 10, 2025

/ok-to-test

@openshift-ci openshift-ci bot added ok-to-test Indicates a non-member PR verified by an org member that is safe to test. and removed needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Nov 10, 2025
@openshift-ci
Copy link

openshift-ci bot commented Nov 10, 2025

@dependabot[bot]: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aguidirh aguidirh Awaiting requested review from aguidirh

@r4f4 r4f4 Awaiting requested review from r4f4

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code ok-to-test Indicates a non-member PR verified by an org member that is safe to test.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@r4f4