Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

• chore(deps): update rust crate tokio to v1.52.2
• chore(deps): update taiki-e/install-action action to v2.77.0
• chore(deps): update kubewarden/github-actions action to v6
• build(deps): lock file maintenance
• build(deps): lock file maintenance
• 🔐 Create all awaiting schedule PRs at once 🔐

PR Edited (Blocked)

The following updates have been manually edited so Renovate will no longer make changes. To discard all commits and start over, click on a checkbox below.

• fix(deps): update go dependencies (github.com/onsi/ginkgo/v2, github.com/onsi/gomega, k8s.io/api, k8s.io/apimachinery, k8s.io/apiserver, sigs.k8s.io/controller-runtime, sigs.k8s.io/e2e-framework)

Detected Dependencies

cargo (7)

Cargo.toml (29)

• anyhow 1.0
• base64 0.22
• clap 4.5
• clap-markdown 0.1.5
• futures 0.3
• hex 0.4
• itertools 0.14.0
• k8s-openapi 0.27.0
• kubewarden-policy-sdk 0.17.0
• lazy_static 1.5
• rayon 1.11
• regex 1
• rstest 0.26
• rustls 0.23
• rustls-pki-types 1
• semver 1.0.27
• serde 1.0
• serde_json 1.0
• serde_yaml 0.9
• sha2 0.11
• tempfile 3
• thiserror 2.0
• tokio ^1 → [Updates: ^1]
• tracing 0.1
• tracing-subscriber 0.3
• url 2.5
• wasi-common 44.0
• wasmtime 44.0
• wasmtime-wasi 44.0

crates/burrego/Cargo.toml (9)

• chrono 0.4.43
• chrono-tz 0.10.4
• gtmpl 0.7.1
• gtmpl_value 0.5.1
• json-patch 4.1.0
• tracing-subscriber 0.3
• url 2.5.8
• assert-json-diff 2.0.2
• clap 4.5

crates/context-aware-test-policy/Cargo.toml (1)

• slog 2.8

crates/kwctl/Cargo.toml (26)

• clap_complete 4.5
• color-print 0.3
• directories 6.0.0
• flate2 1.1
• humansize 2.1
• indicatif 0.18
• is-terminal 0.4.17
• memchr 2.8
• pem 3
• prettytable-rs ^0.10
• tar 0.4.44
• termimad 0.34.1
• time 0.3.47
• tiny-bench 0.4
• walrus 0.26.0
• hostname-validator 1.1.1
• reqwest 0
• rustls 0.23
• sigstore_protobuf_specs 0.5
• assert_cmd 2.1.2
• backon 1.6
• hyper 1.8.1
• predicates 3.1
• testcontainers 0.27
• tower-test 0.4
• wasm-encoder 0.248

crates/policy-evaluator/Cargo.toml (26)

• cached 0.59
• chrono 0.4
• dns-lookup 3.0
• email_address 0.2
• json-patch 4.1
• kube 3.0.1
• mail-parser 0.11
• pki-types 1.14
• rhai 1.24
• rustls-webpki 0.103
• time 0.3
• validator 0.20
• wapc 2.1
• wasmparser 0.248
• wasmtime-provider 2.19.0
• webpki-roots 1
• assert-json-diff 2.0
• backon 1.6
• hyper 1
• rcgen 0.14
• serial_test 3.3
• test-context 0.5
• test-log 0.2
• testcontainers 0.27
• tower-test 0.4
• reqwest 0

crates/policy-fetcher/Cargo.toml (16)

• async-trait 0.1
• cfg-if 1.0
• directories 6.0
• docker_credential 1.3
• oci-client 0.16
• path-slash 0.2
• reqwest 0.13
• serde_bytes 0.11
• sigstore 0.13
• tokio 1 → [Updates: 1]
• walkdir 2.5
• x509-parser 0.18
• rcgen 0.14
• temp-env 0.3
• testcontainers 0.27
• textwrap 0.16

crates/policy-server/Cargo.toml (28)

• axum 0.8.8
• axum-server 0.8.0
• daemonize 0.5
• jemalloc_pprof 0.8
• mime 0.3
• mockall_double 0.3
• num_cpus 1.17.0
• opentelemetry 0.31.0
• opentelemetry-otlp 0.31.0
• opentelemetry_sdk 0.31.0
• pprof 0.15
• sigstore_protobuf_specs 0.5
• tikv-jemalloc-ctl 0.6
• tikv-jemallocator 0.6
• tower-http 0.6.8
• tracing-opentelemetry 0.32.1
• tracing-subscriber 0.3
• backon 1.6
• http-body-util 0.1.3
• mockall 0.14
• rcgen 0.14
• serial_test 3
• testcontainers 0.27
• tower 0.5
• inotify 0.11
• tokio-stream 0.1.18
• openssl 0.10
• reqwest 0.13

docker-compose (1)

crates/policy-server/hack/docker-compose.yml (1)

• otel/opentelemetry-collector 0.151.0

dockerfile (6)

Dockerfile.audit-scanner (1)

• golang 1.26.2@sha256:b54cbf583d390341599d7bcbc062425c081105cc5ef6d170ced98ef9d047c716

Dockerfile.controller (2)

• docker/dockerfile 1
• golang 1.26.2@sha256:b54cbf583d390341599d7bcbc062425c081105cc5ef6d170ced98ef9d047c716

Dockerfile.policy-server (3)

• docker/dockerfile 1
• alpine 3.23.4@sha256:5b10f432ef3da1b8d4c7eb6c487f2f5a8f096bc91145e68878dd4a5019afde11
• alpine 3.23.4@sha256:5b10f432ef3da1b8d4c7eb6c487f2f5a8f096bc91145e68878dd4a5019afde11

hack/Dockerfile.audit-scanner.tilt

hack/Dockerfile.controller.tilt

hack/Dockerfile.policy-server.tilt

github-actions (17)

.github/actions/setup-sigstore-env/action.yaml (2)

• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• sigstore/scaffolding v0.7.33@8bd68672d418e5bd1b0ee1f2e2981874c3a30967

.github/workflows/autolabeler.yml (1)

• release-drafter/release-drafter v7.2.1@563bf132657a13ded0b01fcb723c5a58cdd824e2

.github/workflows/build-containers.yml (3)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• kubewarden/github-actions v6.0.0@ec2a95226ad659e7e26277688a6c695fbd795e6f
• kubewarden/github-actions v6.0.0@ec2a95226ad659e7e26277688a6c695fbd795e6f

.github/workflows/build-kwctl.yml (20)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/attest-build-provenance v4.1.0@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• kubewarden/github-actions v5.2.0@7bee120924c03de60befb15d9932b960aca2f4d6 → [Updates: v6.0.0]
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• actions/attest-build-provenance v4.1.0@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• kubewarden/github-actions v5.2.0@7bee120924c03de60befb15d9932b960aca2f4d6 → [Updates: v6.0.0]
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• actions/attest-build-provenance v4.1.0@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• kubewarden/github-actions v5.2.0@7bee120924c03de60befb15d9932b960aca2f4d6 → [Updates: v6.0.0]
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a

.github/workflows/ci.yml (39)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• codecov/codecov-action v6.0.0@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• golangci/golangci-lint-action v9.2.0@1e7e51e771db61008b38414a730f564565cf7c20
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• kubewarden/github-actions v5.2.0@7bee120924c03de60befb15d9932b960aca2f4d6 → [Updates: v6.0.0]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• taiki-e/install-action v2.75.30@db5fb34fa772531a3ece57ca434f579eb334e0fb → [Updates: v2.77.0]
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• codecov/codecov-action v6.0.0@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• crate-ci/typos v1.46.0@bbaefadf97b0ec5fdc942684b647f1a6ab250274
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• azure/setup-helm v5.0.0@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• go 1.26
• go 1.26
• go 1.26
• golangci/golangci-lint v2.12.1
• go 1.26

.github/workflows/e2e-tests.yml (3)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• kubewarden/github-actions v5.2.0@7bee120924c03de60befb15d9932b960aca2f4d6 → [Updates: v6.0.0]

.github/workflows/fossa.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• fossas/fossa-action v1.9.0@ff70fe9fe17cbd2040648f1c45e8ec4e4884dcf3

.github/workflows/govulncheck.yml (3)

• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• golang/govulncheck-action v1.0.4@b625fbe08f3bccbe446d94fbf87fcc875a4f50ee
• go 1.26

.github/workflows/inherit-milestone.yml (1)

• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3

.github/workflows/open-release-pr.yml (4)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/create-github-app-token v3.1.1@1b10c78c7865c340bc4f6099eb2f838309f1e8c3
• updatecli/updatecli-action v3.1.3@2c3221bc5f4499a99fec2c87d9de4a83cb30e990
• azure/setup-helm v5.0.0@dda3372f752e03dde6b3237bc9431cdc2f7a02a2

.github/workflows/openssf.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a

.github/workflows/release-drafter.yml (1)

• release-drafter/release-drafter v7.2.1@563bf132657a13ded0b01fcb723c5a58cdd824e2

.github/workflows/release.yml (12)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• kubewarden/github-actions v6.0.0@ec2a95226ad659e7e26277688a6c695fbd795e6f
• kubewarden/github-actions v6.0.0@ec2a95226ad659e7e26277688a6c695fbd795e6f
• kubewarden/github-actions v5.2.0@7bee120924c03de60befb15d9932b960aca2f4d6 → [Updates: v6.0.0]
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
• actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• actions/create-github-app-token v3.1.1@1b10c78c7865c340bc4f6099eb2f838309f1e8c3

.github/workflows/security-audit-cron.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• EmbarkStudios/cargo-deny-action v2.0.17@91bf2b620e09e18d6eb78b92e7861937469acedb

.github/workflows/security-audit-reactive.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• EmbarkStudios/cargo-deny-action v2.0.17@91bf2b620e09e18d6eb78b92e7861937469acedb

.github/workflows/update-dependencies.yaml (3)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• updatecli/updatecli-action v3.1.3@2c3221bc5f4499a99fec2c87d9de4a83cb30e990
• actions/create-github-app-token v3.1.1@1b10c78c7865c340bc4f6099eb2f838309f1e8c3

.github/workflows/zizmor.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• zizmorcore/zizmor-action v0.5.3@b1d7e1fb5de872772f31590499237e7cce841e8e

gomod (1)

go.mod (21)

• go 1.26
• github.com/go-logr/logr v1.4.3
• github.com/google/uuid v1.6.0
• github.com/onsi/ginkgo/v2 v2.28.1 → [Updates: v2.28.3]
• github.com/onsi/gomega v1.39.1 → [Updates: v1.40.0]
• github.com/openreports/reports-api v0.2.1
• github.com/spf13/cobra v1.10.2
• github.com/stretchr/testify v1.11.1
• go.opentelemetry.io/otel v1.43.0
• go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc v1.43.0
• go.opentelemetry.io/otel/metric v1.43.0
• go.opentelemetry.io/otel/sdk/metric v1.43.0
• golang.org/x/sync v0.20.0
• k8s.io/api v0.35.4 → [Updates: v0.36.0]
• k8s.io/apimachinery v0.35.4 → [Updates: v0.36.0]
• k8s.io/apiserver v0.35.4 → [Updates: v0.36.0]
• k8s.io/client-go v0.35.4
• k8s.io/utils v0.0.0-20260319190234-28399d86e0b5@28399d86e0b5
• sigs.k8s.io/controller-runtime v0.23.3 → [Updates: v0.24.0]
• sigs.k8s.io/e2e-framework v0.6.0 → [Updates: v0.7.0]
• github.com/opencontainers/runc v1.4.2

helm-values (2)

charts/kubewarden-controller/values.yaml (1)

• rancher/kuberlr-kubectl v8.0.0

charts/kubewarden-defaults/values.yaml

helmv3 (2)

charts/kubewarden-controller/Chart.yaml (1)

• policy-reporter 3.7.4

charts/kubewarden-crds/Chart.yaml (1)

• openreports 0.2.1

kustomize (1)

config/manager/kustomization.yaml

---

• Check this box to trigger a request for Renovate to run again on this repository