Skip to content

Bump the go group across 1 directory with 9 updates#250

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/go-9d0a0b1ca5
Open

Bump the go group across 1 directory with 9 updates#250
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/go-9d0a0b1ca5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 23, 2026
edited
Loading

Bumps the go group with 8 updates in the / directory:

Package From To
github.com/caarlos0/env/v11 11.3.1 11.4.0
github.com/fatih/color 1.18.0 1.19.0
github.com/go-openapi/strfmt 0.25.0 0.26.1
github.com/grafana/grafana-app-sdk/logging 0.50.4 0.52.1
golang.org/x/sync 0.19.0 0.20.0
k8s.io/apimachinery 0.35.1 0.35.3
k8s.io/cli-runtime 0.35.1 0.35.3
k8s.io/klog/v2 2.130.1 2.140.0

Updates github.com/caarlos0/env/v11 from 11.3.1 to 11.4.0

Release notes

Sourced from github.com/caarlos0/env/v11's releases.

v11.4.0

Changelog

New Features

  • 2be9960e75cc5f053dcb89c64e43de19765fd154: feat: option to set defaults for zero values only (#325) (@​dnovikoff)

Bug fixes

  • d3505f14213c309f8ca3b0b1e468284749456dde: fix: all new lint issues, update golangci-lint (@​caarlos0)
  • aaa45113e5eb50e2a243959041452bbab40ae3cc: fix: lint issues (@​caarlos0)

Documentation updates

  • 8917d78b4247be8a3f555ccee03305c7763471e4: docs: clarify example a bit (@​caarlos0)

Other work

  • 7b10cf56e20fe41042b7a7148555990b64b85f95: ci(deps): bump github/codeql-action in the actions group (#400) (@​dependabot[bot])
  • c98ad844e1e479526ef6b4069e0b0f1ced5c953d: ci(deps): bump github/codeql-action in the actions group (#410) (@​dependabot[bot])
  • 2ca9b08cafe0bc271636c15fa34d156733631123: ci(deps): bump the actions group with 2 updates (#393) (@​dependabot[bot])
  • cd5c220dbceb1d1353263a5d6fe3f6816aa1217f: ci(deps): bump the actions group with 2 updates (#396) (@​dependabot[bot])
  • 4d25a4659f428119ce5eaf3ea579176b9161c6e0: ci(deps): bump the actions group with 2 updates (#402) (@​dependabot[bot])
  • c660cc91db76b02de72e8ab7e9ad348edef3f891: ci(deps): bump the actions group with 2 updates (#403) (@​dependabot[bot])
  • 3a3ea05453bd16685c807ba089b20a82033a02f1: ci(deps): bump the actions group with 2 updates (#405) (@​dependabot[bot])
  • d28373e3a047e93ad21676ea9878e5dd1ca157f7: ci(deps): bump the actions group with 2 updates (#408) (@​dependabot[bot])
  • 7b5005693b54a0014e4d3a2ee6192c7bce336af7: ci(deps): bump the actions group with 3 updates (#397) (@​dependabot[bot])
  • 6b2db30d1977183eb8a9732c01ff4e6788565a6e: ci(deps): bump the actions group with 3 updates (#399) (@​dependabot[bot])
  • f33230e8e7e0377c9cdb65d43940db1666061766: ci(deps): bump the actions group with 3 updates (#404) (@​dependabot[bot])
  • 2dc7aec137983c972c29779e951011ddb496fc8b: ci(sec): add codeql, govulncheck, grype (@​caarlos0)
  • 82412ce6900082095e9e4b66f5024c0e67ff3fb8: ci: build perms (@​caarlos0)
  • 02495c42107d77c9365aef6a031b7089f734af3b: ci: build perms (@​caarlos0)
  • e5b3c2c879e43e458e060e2a61fb525e161b7715: ci: lint workflow perms (@​caarlos0)
  • 6690dfb3d314535320f3a30365c52f6fb40c8992: ci: pin github actions versions (@​caarlos0)
  • 548a7a66c9d5504d8f9c0488ee47a05ae453c7e2: ci: update dependabot (@​caarlos0)

Released with GoReleaser Pro!

Commits
  • aaa4511 fix: lint issues
  • 4fe3f70 chore: dependabot update
  • c98ad84 ci(deps): bump github/codeql-action in the actions group (#410)
  • d28373e ci(deps): bump the actions group with 2 updates (#408)
  • 3a3ea05 ci(deps): bump the actions group with 2 updates (#405)
  • f33230e ci(deps): bump the actions group with 3 updates (#404)
  • c660cc9 ci(deps): bump the actions group with 2 updates (#403)
  • 4d25a46 ci(deps): bump the actions group with 2 updates (#402)
  • 7b10cf5 ci(deps): bump github/codeql-action in the actions group (#400)
  • 6b2db30 ci(deps): bump the actions group with 3 updates (#399)
  • Additional commits viewable in compare view

Updates github.com/fatih/color from 1.18.0 to 1.19.0

Release notes

Sourced from github.com/fatih/color's releases.

v1.19.0

What's Changed

New Contributors

Full Changelog: fatih/color@v1.18.0...v1.19.0

Commits
  • ca25f6e Merge pull request #266 from fatih/dependabot/github_actions/actions/setup-go-6
  • 1205984 Bump actions/setup-go from 5 to 6
  • 5715c20 Merge pull request #269 from UnSubble/main
  • 2f6e200 Merge branch 'main' into main
  • f72ec94 Merge pull request #273 from fatih/dependabot/github_actions/actions/checkout-6
  • 848e633 Merge branch 'main' into main
  • 4c2cd34 Add tests
  • 7f812f0 Bump actions/checkout from 4 to 6
  • b7fc9f9 Merge pull request #259 from fatih/dependabot/github_actions/dominikh/staticc...
  • 239a88f Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0
  • Additional commits viewable in compare view

Updates github.com/go-openapi/strfmt from 0.25.0 to 0.26.1

Release notes

Sourced from github.com/go-openapi/strfmt's releases.

v0.26.1

0.26.1 - 2026-03-15

Full Changelog: go-openapi/strfmt@v0.26.0...v0.26.1

8 commits in this release.

Fixed bugs

  • fix: swagger annotations in comment impact go-swagger scanner by @​fredbi in #233 ...

Documentation

Miscellaneous tasks

Updates

People who contributed to this release

strfmt license terms

License

Per-module changes

... (truncated)

Commits
  • fcbb618 chore: prepare release v0.26.1
  • 466a056 fix: swagger annotations in comment impact go-swagger scanner (#233)
  • 1a8f943 doc: update discord link (#232)
  • 0e7ae07 ci: fixed dependabot path (#231)
  • 3bb3e72 doc: updated contributors file
  • 9c0a4c7 build(deps): bump the development-dependencies group across 2 directories wit...
  • 98dc17e ci: fixed coverage calculation w/ integration tests
  • c685555 ci: removed local git-cliff config (now shared, remote config)
  • 189f0cc chore: prepare release v0.26.0
  • 8d2d66c test: updated testify/v2 (#226)
  • Additional commits viewable in compare view

Updates github.com/grafana/grafana-app-sdk/logging from 0.50.4 to 0.52.1

Release notes

Sourced from github.com/grafana/grafana-app-sdk/logging's releases.

v0.52.1

Changelog

  • b67650bf0ae9a642264b5766295c2c855417a02b Bump the all group across 1 directory with 4 updates (#1304)
  • d5648c714bd5cc793717889682e273c9d1e07d1d Validate the CUE Value used in cog go type pipeline (#1297)
  • ff667900bde72883b06678773986a4760d5423d6 build(deps): update module google.golang.org/grpc to v1.79.3 [security] (#1303)
  • dd334c5489ad6d7a5344cf7027da613ecd2d0b4e feat: allow toggling imports.Process in codegen for faster tests (#1294)
  • 62391af5ec01b8cecb388d2b8d98aea6a0668273 fix: casing for custom routes and enforce provided route name (#1296)

v0.52.0

Breaking Changes

CLI flags removed from grafana-app-sdk generate (#1278)

All generation flags deprecated in v0.49.0 have been removed. If you still use any of the following flags, the CLI will now exit with an error and a migration hint:

Removed flag Replacement CUE config field
--manifest manifestSelectors
--grouping kinds.grouping
--gogenpath / -g codegen.goGenPath
--tsgenpath / -t codegen.tsGenPath
--gomodgenpath codegen.goModGenPath
--defencoding definitions.encoding
--defpath definitions.path
--crdmanifest definitions.manifestVersion
--postprocess codegen.enableK8sPostProcessing
--genoperatorstate codegen.enableOperatorStatusGeneration
--noschemasinmanifest definitions.manifestSchemas
--gomodule codegen.goModule
--useoldmanifestkinds kinds.perKindVersion

--defencoding=none is also removed. Replace it with definitions.genManifest: false and definitions.genCRDs: false.

See the v0.52 migration guide for full before/after examples.

New Features

Go clients generated for Group/Version-level custom routes (#1283)

Previously, the SDK only generated typed Go clients for per-kind custom routes. Manifest versions that define routes under routes.namespaced or routes.cluster (scoped to a Group/Version rather than a specific kind) now also get a generated CustomRouteClient in the version package (e.g. pkg/generated/v1alpha1/client_gen.go).

The generated client exposes typed *Request/*Response wrapper methods for each route and is constructed via NewCustomRouteClientFromGenerator. The resource.ClientGenerator interface has been extended with GetCustomRouteClient(schema.GroupVersion, string) to support this.

Default remote client configuration (#1267)

A new configuration option allows supplying a list of remote Kubernetes client configurations, making it easier to connect to remote API servers without manual client wiring.

CUE attribute @grafana_app_sdk(prefix=...) for generated Go types (#1275)

... (truncated)

Commits
  • b67650b Bump the all group across 1 directory with 4 updates (#1304)
  • ff66790 build(deps): update module google.golang.org/grpc to v1.79.3 [security] (#1303)
  • 62391af fix: casing for custom routes and enforce provided route name (#1296)
  • d5648c7 Validate the CUE Value used in cog go type pipeline (#1297)
  • dd334c5 feat: allow toggling imports.Process in codegen for faster tests (#1294)
  • 998657c fix: lint error (#1290)
  • 8bbce5e Bump the all group across 1 directory with 11 updates (#1287)
  • b0b4e91 fix: remove flaky test that keeps timing out (#1289)
  • 371cb95 [tests] Quick fix to the manifest codegen tests (#1288)
  • ec08416 [codegen] Fix non-deterministic manifest code generation (#1286)
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits
  • ec11c4a errgroup: fix a typo in the documentation
  • 1a58307 all: modernize interface{} -> any
  • 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates k8s.io/apimachinery from 0.35.1 to 0.35.3

Commits

Updates k8s.io/cli-runtime from 0.35.1 to 0.35.3

Commits

Updates k8s.io/client-go from 0.35.1 to 0.35.3

Commits
  • 4f1f0a2 Update dependencies to v0.35.3 tag
  • f80003c Merge pull request #136903pohly/automated-cherry-pick-of-#136455
  • 8b41556 fake client-go: un-deprecate NewSimpleClientset
  • See full diff in compare view

Updates k8s.io/klog/v2 from 2.130.1 to 2.140.0

Release notes

Sourced from k8s.io/klog/v2's releases.

Prepare klog release for Kubernetes v1.36

What's Changed

New Contributors

Full Changelog: kubernetes/klog@v2.130.1...v2.140.0

Commits
  • ef4b370 Merge pull request #432 from pierluigilenoci/fix/stderr-threshold-issue-212
  • 39c4c76 refactor: address code review feedback from @​pohly
  • 764a9a3 Merge pull request #430 from pohly/textlogger-optional-header
  • 015c613 Update stderr_threshold_test.go
  • 2f517bd Update klog.go
  • 36bc4ff textlogger: optionally turn off header
  • 5f1f303 Merge pull request #433 from pohly/textlogger-hook-result
  • c469d41 Merge pull request #431 from pohly/ktesting-vmodule-fix
  • 8509d6a ktesting: support multi-line result from AnyToStringHook
  • 08e6e8b Fix stderrthreshold not honored when logtostderr is set
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go group across 1 directory with 9 updates
19cf11e 
Bumps the go group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/caarlos0/env/v11](https://github.com/caarlos0/env) | `11.3.1` | `11.4.0` |
| [github.com/fatih/color](https://github.com/fatih/color) | `1.18.0` | `1.19.0` |
| [github.com/go-openapi/strfmt](https://github.com/go-openapi/strfmt) | `0.25.0` | `0.26.1` |
| [github.com/grafana/grafana-app-sdk/logging](https://github.com/grafana/grafana-app-sdk) | `0.50.4` | `0.52.1` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.19.0` | `0.20.0` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.35.1` | `0.35.3` |
| [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime) | `0.35.1` | `0.35.3` |
| [k8s.io/klog/v2](https://github.com/kubernetes/klog) | `2.130.1` | `2.140.0` |



Updates `github.com/caarlos0/env/v11` from 11.3.1 to 11.4.0
- [Release notes](https://github.com/caarlos0/env/releases)
- [Commits](caarlos0/env@v11.3.1...v11.4.0)

Updates `github.com/fatih/color` from 1.18.0 to 1.19.0
- [Release notes](https://github.com/fatih/color/releases)
- [Commits](fatih/color@v1.18.0...v1.19.0)

Updates `github.com/go-openapi/strfmt` from 0.25.0 to 0.26.1
- [Release notes](https://github.com/go-openapi/strfmt/releases)
- [Commits](go-openapi/strfmt@v0.25.0...v0.26.1)

Updates `github.com/grafana/grafana-app-sdk/logging` from 0.50.4 to 0.52.1
- [Release notes](https://github.com/grafana/grafana-app-sdk/releases)
- [Commits](grafana/grafana-app-sdk@v0.50.4...v0.52.1)

Updates `golang.org/x/sync` from 0.19.0 to 0.20.0
- [Commits](golang/sync@v0.19.0...v0.20.0)

Updates `k8s.io/apimachinery` from 0.35.1 to 0.35.3
- [Commits](kubernetes/apimachinery@v0.35.1...v0.35.3)

Updates `k8s.io/cli-runtime` from 0.35.1 to 0.35.3
- [Commits](kubernetes/cli-runtime@v0.35.1...v0.35.3)

Updates `k8s.io/client-go` from 0.35.1 to 0.35.3
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.35.1...v0.35.3)

Updates `k8s.io/klog/v2` from 2.130.1 to 2.140.0
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](kubernetes/klog@v2.130.1...2.140.0)

---
updated-dependencies:
- dependency-name: github.com/caarlos0/env/v11
  dependency-version: 11.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/fatih/color
  dependency-version: 1.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/go-openapi/strfmt
  dependency-version: 0.26.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/grafana/grafana-app-sdk/logging
  dependency-version: 0.52.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/sync
  dependency-version: 0.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: k8s.io/apimachinery
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: k8s.io/cli-runtime
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: k8s.io/client-go
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: k8s.io/klog/v2
  dependency-version: 2.140.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the type/dependencies Pull requests that update a dependency file label Mar 23, 2026
@dependabot dependabot bot requested a review from a team as a code owner March 23, 2026 09:11
@dependabot dependabot bot requested review from charandas and gttrigger March 23, 2026 09:11
@dependabot dependabot bot added the type/dependencies Pull requests that update a dependency file label Mar 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@charandas charandas Awaiting requested review from charandas charandas is a code owner automatically assigned from grafana/grafana-app-platform-squad

@gttrigger gttrigger Awaiting requested review from gttrigger gttrigger is a code owner automatically assigned from grafana/grafana-app-platform-squad

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

type/dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants