Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Repository Problems

These problems occurred while renovating this repository. View logs.

• ⚠️ WARN: Package lookup failures

---

Warning

Renovate failed to look up the following dependencies: Failed to look up go package github.com/theopenlane/corejobs: no-result.

Files affected: trustcenter/go.mod

---

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Update all patch dependencies (github.com/hhrutter/pkcs7, github.com/jackc/pgx/v5, github.com/theopenlane/core/common, github.com/theopenlane/go-client, github.com/theopenlane/riverboat)
• Update golang Docker tag to v1.26.2
• Update module github.com/gqlgo/gqlgenc to v0.36.0
• Update module github.com/slack-go/slack to v0.22.0
• Update module github.com/theopenlane/newman to v0.3.0
• Update module go.opentelemetry.io/otel/exporters/prometheus to v0.65.0
• Update river monorepo to v0.35.0 (github.com/riverqueue/river, github.com/riverqueue/river/riverdriver/riverpgxv5, github.com/riverqueue/river/rivertype)
• Update postgres Docker tag to v18
• Click on this checkbox to rebase all open PRs at once

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• Update buildkite plugin equinixmetal-buildkite/trivy to v1.22.0

Detected Dependencies

buildkite (1)

.buildkite/pipeline.yml (37)

• docker v5.13.0
• docker v5.13.0
• cluster-secrets v1.0.0
• artifacts v1.9.4
• docker v5.13.0
• cluster-secrets v1.0.0
• artifacts v1.9.4
• docker v5.13.0
• docker v5.13.0
• cluster-secrets v1.0.0
• docker-login v3.0.0
• theopenlane/docker-metadata v1.0.1
• theopenlane/container-build v1.1.1
• equinixmetal-buildkite/trivy v1.19.0 → [Updates: v1.22.0]
• cluster-secrets v1.0.0
• docker-login v3.0.0
• theopenlane/docker-metadata v1.0.1
• theopenlane/container-build v1.1.1
• equinixmetal-buildkite/trivy v1.19.0 → [Updates: v1.22.0]
• cluster-secrets v1.0.0
• docker-login v3.0.0
• theopenlane/docker-metadata v1.0.1
• theopenlane/container-build v1.1.1
• equinixmetal-buildkite/trivy v1.19.0 → [Updates: v1.22.0]
• cluster-secrets v1.0.0
• docker-login v3.0.0
• theopenlane/docker-metadata v1.0.1
• theopenlane/container-build v1.1.1
• equinixmetal-buildkite/trivy v1.19.0 → [Updates: v1.22.0]
• cluster-secrets v1.0.0
• docker-login v3.0.0
• theopenlane/docker-metadata v1.0.1
• theopenlane/container-build v1.1.1
• cluster-secrets v1.0.0
• docker-login v3.0.0
• theopenlane/docker-metadata v1.0.1
• theopenlane/container-build v1.1.1

docker-compose (3)

docker/docker-compose-pg.yml (1)

• postgres 17 → [Updates: 18]

docker/docker-compose-ui.yml

docker/docker-compose.yml

dockerfile (1)

docker/Dockerfile (1)

• golang 1.25.9 → [Updates: 1.26.2]

github-actions (1)

.github/workflows/labeler.yaml (1)

• actions/labeler v6

gomod (2)

go.mod (39)

• go 1.25.9
• github.com/99designs/gqlgen v0.17.89
• github.com/gertd/go-pluralize v0.2.1
• github.com/go-chi/chi/v5 v5.2.5
• github.com/gocarina/gocsv v0.0.0-20240520201108-78e41c74b4b1@78e41c74b4b1
• github.com/gqlgo/gqlgenc v0.35.1 → [Updates: v0.36.0]
• github.com/invopop/jsonschema v0.13.0
• github.com/invopop/yaml v0.3.1
• github.com/jackc/pgx/v5 v5.9.1 → [Updates: v5.9.2]
• github.com/knadh/koanf/parsers/yaml v1.1.0
• github.com/knadh/koanf/providers/env/v2 v2.0.0
• github.com/knadh/koanf/providers/file v1.2.1
• github.com/knadh/koanf/providers/posflag v1.0.1
• github.com/knadh/koanf/v2 v2.3.4
• github.com/mcuadros/go-defaults v1.2.0
• github.com/microcosm-cc/bluemonday v1.0.27
• github.com/prometheus/client_golang v1.23.2
• github.com/riverqueue/river v0.33.0 → [Updates: v0.35.0]
• github.com/riverqueue/river/riverdriver/riverpgxv5 v0.33.0 → [Updates: v0.35.0]
• github.com/riverqueue/river/rivertype v0.33.0 → [Updates: v0.35.0]
• github.com/riverqueue/rivercontrib/otelriver v0.7.0
• github.com/rs/zerolog v1.35.0
• github.com/samber/lo v1.53.0
• github.com/slack-go/slack v0.21.1 → [Updates: v0.22.0]
• github.com/spf13/cobra v1.10.2
• github.com/stoewer/go-strcase v1.3.1
• github.com/stretchr/testify v1.11.1
• github.com/theopenlane/core/common v1.0.17 → [Updates: v1.0.20]
• github.com/theopenlane/dbx v0.1.3
• github.com/theopenlane/go-client v0.9.3 → [Updates: v0.9.4]
• github.com/theopenlane/httpsling v0.3.0
• github.com/theopenlane/iam v0.27.5
• github.com/theopenlane/newman v0.2.2 → [Updates: v0.3.0]
• github.com/theopenlane/riverboat/trustcenter v0.1.2
• github.com/theopenlane/utils v0.7.0
• go.opentelemetry.io/otel v1.43.0
• go.opentelemetry.io/otel/exporters/prometheus v0.61.0 → [Updates: v0.65.0]
• go.opentelemetry.io/otel/sdk/metric v1.43.0
• github.com/hhrutter/pkcs7 v0.2.0 → [Updates: v0.2.2]

trustcenter/go.mod (7)

• go 1.25.9
• github.com/riverqueue/river v0.33.0 → [Updates: v0.35.0]
• github.com/rs/zerolog v1.35.0
• github.com/theopenlane/core/common v1.0.17 → [Updates: v1.0.20]
• github.com/theopenlane/corejobs v0.1.22
• github.com/theopenlane/riverboat v0.9.9 → [Updates: v0.9.11]
• github.com/hhrutter/pkcs7 v0.2.0 → [Updates: v0.2.2]

---

• Check this box to trigger a request for Renovate to run again on this repository