Skip to content

Update all gomod dependencies #68

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update all gomod dependencies #68

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Feb 22, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence Type Update
github.com/cert-manager/cert-manager v1.17.1 -> v1.17.2 age adoption passing confidence require patch
github.com/external-secrets/external-secrets v0.14.2 -> v0.16.0 age adoption passing confidence require minor
github.com/go-co-op/gocron/v2 v2.15.0 -> v2.16.1 age adoption passing confidence require minor
github.com/goccy/go-yaml v1.15.23 -> v1.17.1 age adoption passing confidence require minor
github.com/goccy/go-yaml v1.15.13 -> v1.17.1 age adoption passing confidence require minor
github.com/minio/minio-go/v7 v7.0.87 -> v7.0.91 age adoption passing confidence require patch
github.com/prometheus/client_golang v1.21.0 -> v1.22.0 age adoption passing confidence require minor
github.com/rs/zerolog v1.33.0 -> v1.34.0 age adoption passing confidence require minor
github.com/traefik/traefik/v3 v3.3.3 -> v3.3.6 age adoption passing confidence require patch
github.com/urfave/cli/v2 v2.27.5 -> v2.27.6 age adoption passing confidence require patch
go (source) 1.24.0 -> 1.24.2 age adoption passing confidence toolchain patch
golang.org/x/exp aa4b98e -> 7e4ce0a age adoption passing confidence require digest
k8s.io/api v0.32.2 -> v0.33.0 age adoption passing confidence require minor
k8s.io/apiextensions-apiserver v0.32.2 -> v0.33.0 age adoption passing confidence require minor
k8s.io/apimachinery v0.32.2 -> v0.33.0 age adoption passing confidence require minor
k8s.io/client-go v0.32.2 -> v0.33.0 age adoption passing confidence require minor
k8s.io/utils 24370be -> 1f6e0b7 age adoption passing confidence require digest

Release Notes

cert-manager/cert-manager (github.com/cert-manager/cert-manager)

v1.17.2

Compare Source

external-secrets/external-secrets (github.com/external-secrets/external-secrets)

v0.16.0

Compare Source

Image: ghcr.io/external-secrets/external-secrets:v0.16.0
Image: ghcr.io/external-secrets/external-secrets:v0.16.0-ubi
Image: ghcr.io/external-secrets/external-secrets:v0.16.0-ubi-boringssl

!!! warning
it is known v0.16.0 will not be an easy upgrade if you're not consuming from our official sources via helm.
we are improving the upgrade path for users depending on kustomize in 0.16.1. Please be patient :)

Guide to Promoting to 0.16

Pre Upgrade checks

Make sure you are not using any v1alpha1 resources across all of your infrastructure.

You can do that by performing manual inspection on your manifests, tooling, etc.

Make sure there are no storedVersions on v1alpha1 for externalsecrets, clusterexternalsecrets, secretstores and clustersecretstores crds:

Run the following command:

kubectl get crd \
    externalsecrets.external-secrets.io\
    secretstores.external-secrets.io\
    clustersecretstores.external-secrets.io\
    clusterexternalsecrets.external-secrets.io\
    -o jsonpath='{.items[*].status.storedVersions[?(@​=="valpha1")]}' | \
    grep -q v1alpha1 && echo "NOT SAFE! REMOVE v1alpha1 FROM YOUR STORED VERSIONS" || echo "Safe to Continue"

If that command returns not safe, remove v1alpha1 from your stored versions. Make sure this status is persisted after you verify these commands.

kubectl patch --subresource=status crd externalsecrets.external-secrets.io --type=json -p='[{"op": "replace", "path": "/status/storedVersions", "value": ["v1", "v1beta1"]}]' 
kubectl patch --subresource=status crd secretstores.external-secrets.io --type=json -p='[{"op": "replace", "path": "/status/storedVersions", "value": ["v1", "v1beta1"]}]' 
kubectl patch --subresource=status crd clusterexternalsecrets.external-secrets.io --type=json -p='[{"op": "replace", "path": "/status/storedVersions", "value": ["v1", "v1beta1"]}]' 
kubectl patch --subresource=status crd clustersecretstores.external-secrets.io --type=json -p='[{"op": "replace", "path": "/status/storedVersions", "value": ["v1", "v1beta1"]}]'

Upgrading

CRDs as part of external-secrets installation

If you're installing external-secrets CRDs with helm (installCRDs=true - the default), all you need to do is

helm repo update
helm upgrade <your_app_name> external-secrets/external-secrets --version 0.16.1

The same goes if you're using argocd or flux and managing crds directly with helm. The above should just work.

CRDs installed separately

If CRDs are installed separately, the first step you need to do is bump the crds:

kubectl apply -f https://raw.githubusercontent.com/external-secrets/external-secrets/v0.16.1/deploy/crds/bundle.yaml

Verify no error occurs. After that, you can freely migrate external-secrets to v0.16.1.

Troubleshooting

conversion webhook for external-secrets.io/v1, Kind=ExternalSecret failed: the server could not find the requested resource

Root cause: the CRD installation process failed.
Double check your CRD installation process finished successfully

spec.conversion.webhookClientConfig: Forbidden: should not be set when strategy is not set to Webhook

Use 0.16.1 as opposed to 0.16.0 on your installation path. That should be fixed on this release

My issue is not here What do I do?

Add a message to https://github.com/external-secrets/external-secrets/issues/4662

BREAKING CHANGES

This release introduces quite a few breaking changes, including:

  • Removal of Conversion Webhooks and SecretStore/v1alpha1, ExternalSecret/v1alpha1 and their cluster counterparts
  • Promotion of ExternalSecret/v1 and SecretStore/v1 and their cluster counterparts
  • Removal of v1 templating engine
  • Removal of ValueMaps from Fake Secret Store

if you have any issues during your upgrade, please check https://github.com/external-secrets/external-secrets/issues/4662

What's Changed

New Contributors

Full Changelog: external-secrets/external-secrets@v0.15.1...v0.16.0

v0.15.1

Compare Source

Image: ghcr.io/external-secrets/external-secrets:v0.15.1
Image: ghcr.io/external-secrets/external-secrets:v0.15.1-ubi
Image: ghcr.io/external-secrets/external-secrets:v0.15.1-ubi-boringssl

v0.15.0

Compare Source

Image: ghcr.io/external-secrets/external-secrets:v0.15.0
Image: ghcr.io/external-secrets/external-secrets:v0.15.0-ubi
Image: ghcr.io/external-secrets/external-secrets:v0.15.0-ubi-boringssl

What's Changed

New Contributors

Full Changelog: external-secrets/external-secrets@v0.14.4...v0.15.0

v0.14.4

Compare Source

Image: ghcr.io/external-secrets/external-secrets:v0.14.4
Image: ghcr.io/external-secrets/external-secrets:v0.14.4-ubi
Image: ghcr.io/external-secrets/external-secrets:v0.14.4-ubi-boringssl

What's Changed

New Contributors

Full Changelog: external-secrets/external-secrets@v0.14.3...v0.14.4

v0.14.3

Compare Source

Image: ghcr.io/external-secrets/external-secrets:v0.14.3
Image: ghcr.io/external-secrets/external-secrets:v0.14.3-ubi
Image: ghcr.io/external-secrets/external-secrets:v0.14.3-ubi-boringssl

What's Changed

New Contributors

Full Changelog: external-secrets/external-secrets@v0.14.2...v0.14.3

go-co-op/gocron (github.com/go-co-op/gocron/v2)

v2.16.1

Compare Source

What's Changed

Full Changelog: go-co-op/gocron@v2.16.0...v2.16.1

v2.16.0

Compare Source

What's Changed

Bug fixes

Chores

New Contributors

Full Changelog: go-co-op/gocron@v2.15.0...v2.16.0

goccy/go-yaml (github.com/goccy/go-yaml)

v1.17.1: 1.17.1

Compare Source

What's Changed

Full Changelog: goccy/go-yaml@v1.17.0...v1.17.1

[v1.17.0](https://redirect.github.com/goccy/g

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/all-gomod branch from fe90a77 to 9ba7eaa Compare February 22, 2025 14:59
@renovate renovate bot changed the title Update module github.com/goccy/go-yaml to v1.15.23 Update all gomod dependencies Feb 22, 2025
@renovate renovate bot force-pushed the renovate/all-gomod branch from 9ba7eaa to 84f26a6 Compare February 25, 2025 06:07
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Feb 25, 2025
edited
Loading

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 32 additional dependencies were updated
  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.24.0 -> 1.24.1
github.com/emicklei/go-restful/v3 v3.12.1 -> v3.12.2
github.com/evanphx/json-patch/v5 v5.9.0 -> v5.9.11
github.com/go-acme/lego/v4 v4.21.0 -> v4.22.2
github.com/go-jose/go-jose/v4 v4.0.4 -> v4.0.5
github.com/google/go-cmp v0.6.0 -> v0.7.0
github.com/klauspost/compress v1.17.11 -> v1.18.0
github.com/prometheus/client_golang v1.20.5 -> v1.21.1
github.com/spf13/pflag v1.0.5 -> v1.0.6
github.com/traefik/paerser v0.2.1 -> v0.2.2
go.opentelemetry.io/otel v1.34.0 -> v1.35.0
go.opentelemetry.io/otel/metric v1.34.0 -> v1.35.0
go.opentelemetry.io/otel/sdk v1.33.0 -> v1.34.0
go.opentelemetry.io/otel/trace v1.34.0 -> v1.35.0
golang.org/x/crypto v0.33.0 -> v0.36.0
golang.org/x/mod v0.23.0 -> v0.24.0
golang.org/x/net v0.35.0 -> v0.37.0
golang.org/x/oauth2 v0.25.0 -> v0.28.0
golang.org/x/sync v0.11.0 -> v0.12.0
golang.org/x/sys v0.30.0 -> v0.31.0
golang.org/x/term v0.29.0 -> v0.30.0
golang.org/x/text v0.22.0 -> v0.23.0
golang.org/x/time v0.9.0 -> v0.11.0
golang.org/x/tools v0.30.0 -> v0.31.0
gomodules.xyz/jsonpatch/v2 v2.4.0 -> v2.5.0
google.golang.org/genproto/googleapis/api v0.0.0-20250124145028-65684f501c47 -> v0.0.0-20250303144028-a0af3efb3deb
google.golang.org/genproto/googleapis/rpc v0.0.0-20250124145028-65684f501c47 -> v0.0.0-20250303144028-a0af3efb3deb
google.golang.org/grpc v1.70.0 -> v1.71.0
google.golang.org/protobuf v1.36.4 -> v1.36.5
k8s.io/client-go v0.32.2 -> v0.32.3
k8s.io/kube-openapi v0.0.0-20241212222426-2c72e554b1e7 -> v0.0.0-20250304201544-e5f78fe3ede9
sigs.k8s.io/controller-runtime v0.20.1 -> v0.20.3
sigs.k8s.io/structured-merge-diff/v4 v4.5.0 -> v4.6.0
File name: pg-backuper/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 1 additional dependency was updated

Details:

Package Change
github.com/jonboulle/clockwork v0.4.0 -> v0.5.0

@renovate renovate bot force-pushed the renovate/all-gomod branch 3 times, most recently from c554ccb to 74b934e Compare February 28, 2025 22:19
@renovate renovate bot force-pushed the renovate/all-gomod branch 7 times, most recently from a7ef0de to 3e4e460 Compare March 10, 2025 18:52
@renovate renovate bot force-pushed the renovate/all-gomod branch 3 times, most recently from 8bd598f to f45ce7c Compare March 16, 2025 10:42
@renovate renovate bot force-pushed the renovate/all-gomod branch from f45ce7c to e489e81 Compare March 19, 2025 17:01
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Mar 19, 2025
edited
Loading

⚠️ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum
Command failed: go get -d -t ./...
go: -d flag is deprecated. -d=true is a no-op
go: module github.com/external-secrets/[email protected] requires go >= 1.24.2; switching to go1.24.2
go: downloading go1.24.2 (linux/amd64)
go: download go1.24.2: golang.org/[email protected]: verifying module: checksum database disabled by GOSUMDB=off
File name: pg-backuper/go.sum
Command failed: go get -d -t ./...
go: module github.com/minio/minio-go/[email protected] requires go >= 1.23.0; switching to go1.23.8
go: downloading go1.23.8 (linux/amd64)
go: download go1.23.8: golang.org/[email protected]: verifying module: checksum database disabled by GOSUMDB=off

@renovate renovate bot force-pushed the renovate/all-gomod branch 3 times, most recently from 28d6801 to 21ace66 Compare March 27, 2025 06:45
@renovate renovate bot force-pushed the renovate/all-gomod branch 4 times, most recently from e85c62e to 2e33dbe Compare April 1, 2025 19:04
@renovate renovate bot force-pushed the renovate/all-gomod branch 4 times, most recently from 17f79a8 to 7f7ee09 Compare April 14, 2025 19:46
@renovate renovate bot force-pushed the renovate/all-gomod branch 4 times, most recently from bb6406d to 1cfcad2 Compare April 23, 2025 23:49
@renovate renovate bot force-pushed the renovate/all-gomod branch from 1cfcad2 to 65ec793 Compare April 24, 2025 14:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants