Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Pending Status Checks

These updates await pending status checks. To force their creation now, click the checkbox below.

• chore(deps-dev): update actions/dependency-review-action action to v4.7.0

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• chore(deps-dev): update pascalgn/size-label-action digest to 6ec5bd0
• chore(deps): update gcr.io/distroless/static:nonroot docker digest to c0f429e
• chore(deps-dev): update dependency go to v1.24.3
• chore(deps): update module github.com/crewjam/saml to v0.5.1
• chore(deps): update module github.com/prometheus/client_golang to v1.22.0
• chore(deps): update module github.com/prometheus/common to v0.63.0
• chore(deps): update module github.com/testcontainers/testcontainers-go to v0.37.0
• chore(deps-dev): update goreleaser/goreleaser-action action to v6
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

dockerfile

Dockerfile

• gcr.io/distroless/static nonroot@sha256:42d15c647a762d3ce3a67eab394220f5268915d6ddba9006871e16e4698c3a24

github-actions

.github/workflows/main.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.5.0@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
• shogo82148/actions-goveralls v1.9.1@e6875f831db61e6abffbd8df91a2eb6cd24b46c9
• go 1.22.3

.github/workflows/pr-actions.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• zgosalvez/github-actions-ensure-sha-pinned-actions v3.0.24@2d6823da4039243036c86d76f503c84e2ded2517

.github/workflows/pr-build.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• actions/setup-python v5.6.0@a26af69be951a213d495a4c3e4e4022e16d87065
• helm/chart-testing-action v2.7.0@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.5.0@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.5.0@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
• shogo82148/actions-goveralls v1.9.1@e6875f831db61e6abffbd8df91a2eb6cd24b46c9
• actions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• actions/setup-python v5.6.0@a26af69be951a213d495a4c3e4e4022e16d87065
• helm/chart-testing-action v2.7.0@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b
• helm/kind-action v1.12.0@a1b0e391336a6ee6713a0583f8c6240d70863de3
• actions/download-artifact v4.3.0@d3f86a106a0bac45b974a628896c90dbdf5c8093
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/download-artifact v4.3.0@d3f86a106a0bac45b974a628896c90dbdf5c8093
• engineerd/setup-kind v0.5.0@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0
• imranismail/setup-kustomize v2.1.0@2ba527d4d055ab63514ba50a99456fc35684947f
• go 1.22.3
• go 1.22.3

.github/workflows/pr-dependency-review.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/dependency-review-action v4.6.0@ce3cf9537a52e8119d91fd484ab5b8a807627bf8

.github/workflows/pr-label.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• pascalgn/size-label-action bbbaa0d5ccce8e2e76254560df5c64b82dac2e12

.github/workflows/pr-stale.yaml

• actions/stale v9.1.0@5bef64f19d7facfb25b37b414482c7164d639639

.github/workflows/pr-trivy.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• aquasecurity/trivy-action 0.30.0@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5

.github/workflows/rebase.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• cirrus-actions/rebase 1.8@b87d48154a87a85666003575337e27b8cd65f691

.github/workflows/release.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.5.0@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
• docker/login-action v3.4.0@74a5d142397b4f367a81961eba4e8cd7edddf772
• sigstore/cosign-installer v3.8.2@3454372f43399081ed03b604cb2d021dabca52bb
• anchore/sbom-action v0.19.0@9f7302141466aa6482940f15371237e9d9f4c34a
• goreleaser/goreleaser-action v5.1.0@5742e2a039330cbb23ebf35f046f814d4c6ff811
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• sigstore/cosign-installer v3.8.2@3454372f43399081ed03b604cb2d021dabca52bb
• go 1.22.3

.github/workflows/report-on-vulnerabilities.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• aquasecurity/trivy-action 0.30.0@6c175e9c4083a92bbca2f9724c8a5e33bc2d97a5
• actions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/download-artifact v4.3.0@d3f86a106a0bac45b974a628896c90dbdf5c8093
• JasonEtco/create-an-issue v2.9.2@1b14a70e4d8dc185e5cc76d3bec9eab20257b2c5

.github/workflows/scan.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• fossa-contrib/fossa-action v3.0.1@3d2ef181b1820d6dcd1972f86a767d18167fa19b
• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818

.github/workflows/scorecard.yaml

• step-security/harden-runner v2.12.0@0634a2670c59f64b4a01f0f96f84700a4088b9f0
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• ossf/scorecard-action v2.4.1@f49aabe0b5af0936a0987cfb85d86b75731b0186
• actions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02
• github/codeql-action v3.28.17@60168efe1c415ce0f5521ea06d5c2062adbeed1b

gomod

go.mod

• go 1.22.0
• github.com/crewjam/saml v0.4.14
• github.com/go-logr/logr v1.4.2
• github.com/go-logr/zapr v1.3.0
• github.com/prometheus/client_golang v1.19.1
• github.com/prometheus/client_model v0.6.2
• github.com/prometheus/common v0.48.0
• github.com/sethvargo/go-envconfig v1.3.0
• github.com/spf13/pflag v1.0.6
• github.com/testcontainers/testcontainers-go v0.35.0
• github.com/tj/assert v0.0.3
• go.uber.org/zap v1.27.0

helm-values

chart/saml-exporter/values.yaml

• quay.io/brancz/kube-rbac-proxy v0.19.1

kustomize

config/base/kustomization.yaml

• ghcr.io/doodlescheduling/saml-exporter 0.3.0

---

• Check this box to trigger a request for Renovate to run again on this repository