Skip to content

chore(deps): bump the all group with 6 updates #1492

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): bump the all group with 6 updates #1492

wants to merge 1 commit into from
+59 −59

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 30, 2025

Bumps the all group with 6 updates:

Package From To
cloud.google.com/go/container 1.42.4 1.43.0
golang.org/x/crypto 0.38.0 0.39.0
golang.org/x/mod 0.24.0 0.25.0
golang.org/x/net 0.40.0 0.41.0
google.golang.org/api 0.235.0 0.239.0
google.golang.org/grpc 1.72.2 1.73.0

Updates cloud.google.com/go/container from 1.42.4 to 1.43.0

Release notes

Sourced from cloud.google.com/go/container's releases.

container: v1.43.0

1.43.0 (2025-05-29)

Features

  • container: Add allowed_unsafe_sysctls in NodeKubeletConfig (8189e33)
  • container: Add alpha_cluster_feature_gates in Cluster (8189e33)
  • container: Add auto_monitoring_config in ManagedPrometheusConfig (8189e33)
  • container: Add autopilot_compatibility_auditing_enabled in WorkloadPolicyConfig (8189e33)
  • container: Add ClusterUpgradeInfo (8189e33)
  • container: Add confidential_instance_type in ConfidentialNodes (8189e33)
  • container: Add container_log_max_files in NodeKubeletConfig (8189e33)
  • container: Add container_log_max_size in NodeKubeletConfig (8189e33)
  • container: Add data_cache_count in EphemeralStorageLocalSsdConfig (8189e33)
  • container: Add desired_anonymous_authentication_config in ClusterUpdate (8189e33)
  • container: Add desired_disable_l4_lb_firewall_reconciliation in ClusterUpdate (8189e33)
  • container: Add desired_pod_autoscaling in ClusterUpdate (8189e33)
  • container: Add disable_l4_lb_firewall_reconciliation in NetworkConfig (8189e33)
  • container: Add event_type in UpgradeInfoEvent (8189e33)
  • container: Add extended_support_end_time in UpgradeInfoEvent (8189e33)
  • container: Add FetchClusterUpgradeInfoRequest (8189e33)
  • container: Add FetchNodePoolUpgradeInfoRequest (8189e33)
  • container: Add flex_start in NodeConfig (8189e33)
  • container: Add flex_start in UpdateNodePoolRequest (8189e33)
  • container: Add high_scale_checkpointing_config in AddonsConfig (8189e33)
  • container: Add image_gc_high_threshold_percent in NodeKubeletConfig (8189e33)
  • container: Add image_gc_low_threshold_percent in NodeKubeletConfig (8189e33)
  • container: Add image_maximum_gc_age in NodeKubeletConfig (8189e33)
  • container: Add image_minimum_gc_age in NodeKubeletConfig (8189e33)
  • container: Add JOBSET in MonitoringComponentConfig.Component (8189e33)
  • container: Add KCP_HPA in LoggingComponentConfig.Component (8189e33)
  • container: Add max_run_duration in NodeConfig (8189e33)
  • container: Add max_run_duration in UpdateNodePoolRequest (8189e33)
  • container: Add mitigated_versions in SecurityBulletinEvent (8189e33)
  • container: Add NODE_SERVICE_ACCOUNT_MISSING_PERMISSIONS in StatusCondition.Code (8189e33)
  • container: Add NodePoolUpgradeInfo (8189e33)
  • container: Add performance_monitoring_unit in AdvancedMachineFeatures (8189e33)
  • container: Add pod_autoscaling in Cluster (8189e33)
  • container: Add standard_support_end_time in UpgradeInfoEvent (8189e33)
  • container: Add topology_manager in NodeKubeletConfig (8189e33)
  • container: Add UPGRADE_INFO_EVENT in NotificationConfig.EventType (8189e33)
  • container: Add UpgradeDetails (8189e33)

Documentation

  • container: Minor documentation updates (8189e33)
Commits
  • 58df9c3 chore(main): release pubsub 1.43.0 (#10714)
  • 6685397 chore(.github): pin golang.org/x/mod and golang.org/x/tools in renovate (#10835)
  • f0958b0 chore(all): update deps (#10834)
  • ce82b22 vertexai(test): add corpora_test in tokenizer module (#10784)
  • 8d008de feat(bigtable): add "TypeUnspecified" to represent an unspecified type (#10820)
  • caa826c feat(pubsub): allow trace extraction from protobuf message (#10827)
  • 48addbf fix(pubsub): add attributes before startSpan (#10800)
  • 79a0e11 fix(pubsub): close grpc streams on retry (#10624)
  • 02b2d12 feat(bigtable): Add client side metrics to feature flag (#10678)
  • 0d732cc fix(datastore): do not delay on final transaction attempt (#10824)
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.38.0 to 0.39.0

Commits
  • 3bf9d2a ssh/test: skip KEX test if unsupported by system SSH client
  • 9bab967 go.mod: update golang.org/x dependencies
  • 4f9f0ca x509roots/fallback: add init time benchmark
  • eac7cf0 x509roots/fallback: move parsing code to a non-generated file
  • 18228cd acme: return err from deprecated TLS-SNI-[01|02] functions
  • 73f6362 acme: remove dead code
  • ebc8e46 ssh: add server side support for Diffie Hellman Group Exchange
  • e944286 ssh: expose negotiated algorithms
  • 78a1fd7 ssh: automatically add [email protected] KEX alias
  • ac58737 ssh: export supported algorithms
  • Additional commits viewable in compare view

Updates golang.org/x/mod from 0.24.0 to 0.25.0

Commits
  • 9d33331 x/mod: add the ignore directive
  • ae88a97 all: change from sort functions to slices functions
  • See full diff in compare view

Updates golang.org/x/net from 0.40.0 to 0.41.0

Commits
  • 6e41cae go.mod: update golang.org/x dependencies
  • 15f7d40 http2: correctly wrap ErrFrameTooLarge in Framer.ReadFrame
  • ef33bc0 internal/http3: use bubbled context in synctest tests
  • 919c6bc http2: use an array instead of a map in typeFrameParser
  • bae01a7 trace: add missing td tag
  • See full diff in compare view

Updates google.golang.org/api from 0.235.0 to 0.239.0

Release notes

Sourced from google.golang.org/api's releases.

v0.239.0

0.239.0 (2025-06-25)

Features

v0.238.0

0.238.0 (2025-06-17)

Features

v0.237.0

0.237.0 (2025-06-12)

Features

v0.236.0

0.236.0 (2025-06-03)

Features

... (truncated)

Changelog

Sourced from google.golang.org/api's changelog.

0.239.0 (2025-06-25)

Features

0.238.0 (2025-06-17)

Features

0.237.0 (2025-06-12)

Features

0.236.0 (2025-06-03)

Features

... (truncated)

Commits

Updates google.golang.org/grpc from 1.72.2 to 1.73.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.73.0

New Features

  • balancer/ringhash: move LB policy from xds/internal to exported path to facilitate use without xds (#8249)
  • xds: enable least request LB policy by default. It can be disabled by setting GRPC_EXPERIMENTAL_ENABLE_LEAST_REQUEST=false in your environment. (#8253)
  • grpc: add a CallAuthority Call Option that can be used to overwrite the http :authority header on per-RPC basis. (#8068)
  • stats/opentelemetry: add trace event for name resolution delay. (#8074)
  • health: added List method to gRPC Health service. (#8155)
  • ringhash: implement features from gRFC A76. (#8159)
  • xds: add functionality to support SPIFFE Bundle Maps as roots of trust in XDS which can be enabled by setting GRPC_EXPERIMENTAL_XDS_MTLS_SPIFFE=true. (#8167, #8180, #8229, #8343)

Bug Fixes

  • xds: locality ID metric label is changed to make it consistent with gRFC A78. (#8256)
  • client: fail RPCs on the client when using extremely short contexts that expire before the grpc-timeout header is created. (#8312)
  • server: non-positive grpc-timeout header values are now rejected. This is consistent with the gRPC protocol spec. (#8290)
  • xds: fix reported error string when LRS load reporting interval is invalid. (#8224)

Performance Improvements

  • credentials/alts: improve read performance by optimizing buffer copies and allocations. (#8271)
  • server: improve performance of RPC handling by avoid a status proto copy (#8282)

Documentation

  • examples/features/opentelemetry: modify example to demonstrate tracing using OpenTelemtry plugin. (#8056)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the all group with 6 updates
b2c5e08 
Bumps the all group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [cloud.google.com/go/container](https://github.com/googleapis/google-cloud-go) | `1.42.4` | `1.43.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.38.0` | `0.39.0` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.24.0` | `0.25.0` |
| [golang.org/x/net](https://github.com/golang/net) | `0.40.0` | `0.41.0` |
| [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.235.0` | `0.239.0` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.72.2` | `1.73.0` |


Updates `cloud.google.com/go/container` from 1.42.4 to 1.43.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@container/v1.42.4...pubsub/v1.43.0)

Updates `golang.org/x/crypto` from 0.38.0 to 0.39.0
- [Commits](golang/crypto@v0.38.0...v0.39.0)

Updates `golang.org/x/mod` from 0.24.0 to 0.25.0
- [Commits](golang/mod@v0.24.0...v0.25.0)

Updates `golang.org/x/net` from 0.40.0 to 0.41.0
- [Commits](golang/net@v0.40.0...v0.41.0)

Updates `google.golang.org/api` from 0.235.0 to 0.239.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.235.0...v0.239.0)

Updates `google.golang.org/grpc` from 1.72.2 to 1.73.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.72.2...v1.73.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/container
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golang.org/x/crypto
  dependency-version: 0.39.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golang.org/x/mod
  dependency-version: 0.25.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golang.org/x/net
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: google.golang.org/api
  dependency-version: 0.239.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: google.golang.org/grpc
  dependency-version: 1.73.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added area/dependency Issues or PRs related to dependency changes ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. labels Jun 30, 2025
@netlify Netlify
Copy link

netlify bot commented Jun 30, 2025
edited
Loading

Deploy Preview for kubernetes-sigs-cluster-api-gcp ready!

Name Link
🔨 Latest commit b2c5e08
🔍 Latest deploy log https://app.netlify.com/projects/kubernetes-sigs-cluster-api-gcp/deploys/68630c5dfddf250007d8d8e9
😎 Deploy Preview https://deploy-preview-1492--kubernetes-sigs-cluster-api-gcp.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Jun 30, 2025
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign sbueringer for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot
Copy link
Contributor

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Jun 30, 2025
@k8s-ci-robot
Copy link
Contributor

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
pull-cluster-api-provider-gcp-apidiff b2c5e08 link false /test pull-cluster-api-provider-gcp-apidiff
pull-cluster-api-provider-gcp-e2e-test b2c5e08 link true /test pull-cluster-api-provider-gcp-e2e-test

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@damdo damdo Awaiting requested review from damdo

@salasberryfin salasberryfin Awaiting requested review from salasberryfin

Assignees
No one assigned
Labels
area/dependency Issues or PRs related to dependency changes cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@k8s-ci-robot