Dependency Dashboard #258
Description
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
Abandoned Dependencies
Note
Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release. Unlike deprecated packages with official notices, abandonment is detected by release inactivity.
These dependencies have not received updates for an extended period and may be unmaintained:
View abandoned dependencies (1)
| Datasource | Name | Last Updated |
|---|---|---|
| gomod | github.com/google/go-cmp |
2025-01-14 |
Pending Status Checks
The following updates await pending status checks. To force their creation now, click on a checkbox below.
- chore(deps): update docker/login-action action to v3.7.0
Other Branches
The following updates are pending. To force the creation of a PR, click on a checkbox below.
- chore(deps): update golang docker tag to v1.25.6
Open
The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.
- chore(deps): update module golang.org/x/crypto to v0.45.0 [security]
- chore(deps): pin dependencies (
actions/checkout,actions/setup-go,golang) - fix(deps): update module github.com/spf13/cobra to v1.10.2
- chore(deps): update docker/setup-buildx-action action to v3.12.0
- fix(deps): update aws-sdk-go-v2 monorepo (
github.com/aws/aws-sdk-go-v2,github.com/aws/aws-sdk-go-v2/config,github.com/aws/aws-sdk-go-v2/credentials,github.com/aws/aws-sdk-go-v2/service/s3) - fix(deps): update module golang.org/x/sync to v0.19.0
- chore(deps): update actions/checkout action to v6
- chore(deps): update golangci/golangci-lint-action action to v9
- Click on this checkbox to rebase all open PRs at once
Vulnerabilities
Important
4/7 CVEs have Renovate fixes.
gomod
go.mod
github.com/docker/docker
golang.org/x/crypto
- GHSA-f6x5-jh6r-wrfv (fixed in >= 0.45.0)
- GO-2025-4135 (fixed in >= 0.45.0)
- GHSA-j5w8-q4qc-rx2x (fixed in >= 0.45.0)
- GO-2025-4134 (fixed in >= 0.45.0)
Detected Dependencies
dockerfile (1)
Dockerfile (2)
golang 1.24.4-bookworm→ [Updates:1.25.6-bookworm,1.24.4-bookworm]golang 1.24.4-bookworm→ [Updates:1.25.6-bookworm,1.24.4-bookworm]
github-actions (4)
.github/workflows/lint.yml (3)
actions/checkout v5→ [Updates:v6,v5]actions/setup-go v6→ [Updates:v6]golangci/golangci-lint-action v6.5.2@55c2c1448f86e01eaae002a5a3a9624417608d84→ [Updates:v9.2.0].github/workflows/release.yaml (4)
actions/checkout v5→ [Updates:v6,v5]docker/setup-qemu-action v3.7.0@c7c53464625b32c7a7e944ae62b3e17d2b600130docker/setup-buildx-action v3.11.1@e468171a9de216ec08956ac3ada2f0791b6bd435→ [Updates:v3.12.0]docker/login-action v3.6.0@5e57cd118135c172c3672efd75eb46360885c0ef→ [Updates:v3.7.0].github/workflows/sync-k6-deps.yaml (3)
actions/checkout v5→ [Updates:v6,v5]actions/setup-go v6→ [Updates:v6]go 1.23.x.github/workflows/test.yml (3)
actions/setup-go v6→ [Updates:v6]actions/checkout v5→ [Updates:v6,v5]go 1.24
gomod (1)
go.mod (17)
go 1.24.2github.com/Masterminds/semver/v3 v3.4.0github.com/aws/aws-sdk-go-v2 v1.40.1→ [Updates:v1.41.1]github.com/aws/aws-sdk-go-v2/config v1.32.3→ [Updates:v1.32.7]github.com/aws/aws-sdk-go-v2/credentials v1.19.3→ [Updates:v1.19.7]github.com/aws/aws-sdk-go-v2/service/s3 v1.93.0→ [Updates:v1.95.1]github.com/aws/smithy-go v1.24.0github.com/docker/go-connections v0.6.0github.com/google/go-cmp v0.7.0github.com/grafana/k6foundry v0.4.7github.com/grafana/s3-mock v0.2.0github.com/prometheus/client_golang v1.23.2github.com/spf13/cobra v1.10.1→ [Updates:v1.10.2]github.com/spf13/pflag v1.0.10github.com/testcontainers/testcontainers-go/modules/localstack v0.40.0golang.org/x/sync v0.18.0→ [Updates:v0.19.0]golang.org/x/crypto v0.43.0→ [Updates:v0.45.0]
Need help?
You can ask for more help in the following Slack channel: #proj-renovate-self-hosted. In that channel you can also find ADR and FAQ docs in the Resources section.