build(deps): bump the non-majors group with 21 updates

[dependabot]

Bumps the non-majors group with 21 updates:

Package	From	To
github.com/aarondl/sqlboiler/v4	4.19.5	4.19.7
github.com/aws/aws-sdk-go-v2	1.40.0	1.41.0
github.com/aws/aws-sdk-go-v2/config	1.32.2	1.32.6
github.com/aws/aws-sdk-go-v2/credentials	1.19.2	1.19.6
github.com/aws/aws-sdk-go-v2/feature/s3/manager	1.20.12	1.20.18
github.com/aws/aws-sdk-go-v2/service/s3	1.92.1	1.95.0
github.com/cert-manager/cert-manager	1.19.1	1.19.2
github.com/docker/cli	29.1.1+incompatible	29.1.3+incompatible
github.com/labstack/echo/v4	4.13.4	4.15.0
github.com/moby/buildkit	0.26.2	0.26.3
github.com/regclient/regclient	0.10.0	0.11.1
github.com/spf13/cobra	1.10.1	1.10.2
github.com/traefik/traefik/v3	3.6.2	3.6.6
golang.org/x/crypto	0.45.0	0.46.0
golang.org/x/net	0.47.0	0.48.0
golang.org/x/sync	0.18.0	0.19.0
google.golang.org/protobuf	1.36.10	1.36.11
k8s.io/api	0.34.2	0.35.0
k8s.io/apiextensions-apiserver	0.34.2	0.35.0
k8s.io/apimachinery	0.34.2	0.35.0
k8s.io/client-go	0.34.2	0.35.0

Updates github.com/aarondl/sqlboiler/v4 from 4.19.5 to 4.19.7

Changelog

Sourced from github.com/aarondl/sqlboiler/v4's changelog.

[4.19.7] - 2025-12-31

Fixed

• Version number in main.go

[4.19.6] - 2025-12-31

Fixed

• Do not treat columns with partial unique indexes as unique in psql driver.

Security

• Update golang.org/x/crypto from 0.38.0 -> 0.45.0

[4.19.2-4] - 2025-06-26

Changed

• Change import paths

[4.19.1] - 2025-05-20

Fixed

• Fix performance issue in v4.19.0 by reverting the cleanup of unused imports.
• Updated minimum required Go version to 1.23.
• Updated dependencies to fix CVEs.

[4.19.0] - 2025-05-09

Added

• Add relation getters on base model structs. (thanks @​parnic)
• Added --no-relation-getters option to prevent generation relation getters on the main structs. (thanks @​parnic)
• Add Query, Exec, and Bind helpers to the global executor. (thanks @​parnic)
  • BindGP
  • QueryRowG
  • QueryRowContextG
  • ExecG
  • ExecGP
  • QueryG
  • QueryGP
  • ExecContextG
  • ExecContextP
  • ExecContextGP
  • QueryContextG
  • QueryContextP
  • QueryContextGP

... (truncated)

Commits

• 3b1f527 Bump version
• 33a326a Update changelog
• c11dae0 Merge pull request #1467 from aarondl/dependabot/go_modules/golang.org/x/cryp...
• fba535b Bump golang.org/x/crypto from 0.38.0 to 0.45.0
• 544e18d Merge pull request #1463 from shantanuraj/shantanu/fix-json-buffer-reuse
• 7f8daf0 Drop unused sliceType argument from bind
• b5b94dd Fix buffer reuse when reading types.JSON
• 8b2fd83 add TestBindJsonSlice
• b385498 Merge pull request #1462 from beonode/psql-partial-unique-index-fix
• 5f0bad9 Revert accidental autoformatting
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2 from 1.40.0 to 1.41.0

Commits

• 2c5c1de Release 2025-12-08
• a968e75 Regenerated Clients
• b110f67 Update endpoints model
• 82760c3 Update API model
• 9e038d3 [merge 12/8/25] default MaxConnsPerHost to 2048 (#3245)
• 55b9a85 Release 2025-12-05
• cb36f84 Regenerated Clients
• 081bac0 Update API model
• 25f26c2 Release 2025-12-04
• aadf9d3 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.32.2 to 1.32.6

Commits

• 776903f Release 2024-12-02
• 170b13c Regenerated Clients
• c1a02e7 Update API model
• 2835f7b Fix user agent to add business metrics at the end instead of prepend them (#2...
• ba4965d Release 2024-11-27
• 55149b0 Regenerated Clients
• fd6bb8b Update endpoints model
• 65ab4f8 Update API model
• 8939ed0 Release 2024-11-26
• 23cf36b Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.19.2 to 1.19.6

Commits

• c7c6865 Release 2025-01-30
• 70f736c Regenerated Clients
• 28731c2 Update endpoints model
• 3505e4b Update API model
• 0b4f636 don't sign transfer-encoding header (#2991)
• b820c57 Release 2025-01-29
• 40ddb76 Regenerated Clients
• 2b4adae Update API model
• 78c2be4 Revert "beta: feature/s3/transfermanager (S3 transfer manager v2) (#2988)"
• 5c9d67c beta: feature/s3/transfermanager (S3 transfer manager v2) (#2988)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.20.12 to 1.20.18

Commits

• 1257d4e Release 2022-12-15
• f89f556 Regenerated Clients
• 7c6f2cf Update endpoints model
• 7cd0d9d Update API model
• 6067fb2 Unify home dir logic between shared config and sso (#1960)
• 6fad028 Release 2022-12-14
• cc65897 Regenerated Clients
• e04c471 Update endpoints model
• 2de26a2 Update API model
• 7ad009a Release 2022-12-13
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.92.1 to 1.95.0

Commits

• c6af97c Release 2025-12-23
• 44c79bc Regenerated Clients
• cbd8959 Update endpoints model
• 8db5742 Update API model
• 567ea66 Release 2025-12-22
• 6bedc00 Regenerated Clients
• 4b32467 Update API model
• 0183b9c Release 2025-12-19
• e3fc000 Regenerated Clients
• 552358d Update endpoints model
• Additional commits viewable in compare view

Updates github.com/cert-manager/cert-manager from 1.19.1 to 1.19.2

Release notes

Sourced from github.com/cert-manager/cert-manager's releases.

v1.19.2

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

We updated Go to fix some vulnerabilities in the standard library.

📖 Read the full 1.19 release notes on the cert-manager.io website before upgrading.

Changes since v1.19.1

Bug or Regression

• Address false positive vulnerabilities CVE-2025-47914 and CVE-2025-58181 which were reported by Trivy. (#8283, @​SgtCoDFish)
• Update Go to v1.25.5 to fix CVE-2025-61727 and CVE-2025-61729 (#8294, @​wallrj-cyberark)
• Update global.nodeSelector to helm chart to perform a merge and allow for a single nodeSelector to be set across all services. (#8233, @​cert-manager-bot)

Other (Cleanup or Flake)

• Update cert-manager's ACME client, forked from golang/x/crypto (#8270, @​SgtCoDFish)
• Updated Debian 12 distroless base images (#8326, @​wallrj-cyberark)

Commits

• 6e38ee5 Merge pull request #8326 from wallrj-cyberark/release-1.19-update-base-images
• 104c79c [release-1.19] update distroless base image digests
• 569144f Merge pull request #8294 from wallrj-cyberark/release-1.19-go-1.25.5
• a6157e1 [release-1.19] Update Go to v1.25.5 to fix CVE-2025-61727 and CVE-2025-61729
• 9a2f8f1 Merge pull request #8283 from SgtCoDFish/release-1.19-trivy
• 29b2e76 [release-1.19] fix CVE-2025-47914 and CVE-2025-58181
• 07ee848 Merge pull request #8270 from SgtCoDFish/release-1.19-vendored-acme-update
• ab38d24 [release-1.19] run make update-third-party
• cce3725 also run third_party tests in CI
• 7d515d2 fix make update-third-party on macOS (sed)
• Additional commits viewable in compare view

Updates github.com/docker/cli from 29.1.1+incompatible to 29.1.3+incompatible

Commits

• f52814d Merge pull request #6705 from vvoland/list-fix
• 0f03c31 image/list: Fix dangling=false handling
• 1e25906 cli/tree: Remove unused all field
• 4d6fc33 Merge pull request #6704 from vvoland/list-fix
• 09a4664 image/tree: Add golden test
• 0d88411 image/tree: Remove --all flag check for untagged images in non-expanded view
• b315983 image/tree: Fix width calculation for untagged images
• 150a25b image/tree: Extract untagged image name to const
• 67f5e34 image: Fix dangling image detection with graphdrivers
• d96b786 Merge pull request #6702 from thaJeztah/bump_compress
• Additional commits viewable in compare view

Updates github.com/labstack/echo/v4 from 4.13.4 to 4.15.0

Release notes

Sourced from github.com/labstack/echo/v4's releases.

v4.15.0

Security

WARNING: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

• same-origin or none: Requests are allowed (exact origin match or direct user navigation)
• same-site: Falls back to token validation (e.g., subdomain to main domain)
• cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

• TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)
• AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:

e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))

PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

• Added generic functions for type-safe parameter extraction and context access by @​aldas in labstack/echo#2856

  Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion, eliminating manual string parsing and type assertions.

... (truncated)

Changelog

Sourced from github.com/labstack/echo/v4's changelog.

v4.15.0 - 2026-01-01

Security

NB: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

• same-origin or none: Requests are allowed (exact origin match or direct user navigation)
• same-site: Falls back to token validation (e.g., subdomain to main domain)
• cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

• TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)
• AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:

e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))

PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

• Added generic functions for type-safe parameter extraction and context access by @​aldas in labstack/echo#2856

  Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion,

... (truncated)

Commits

• 482bb46 v4.15.0 changelog
• d0f9d1e CRSF with Sec-Fetch-Site=same-site falls back to legacy token
• f3fc618 CRSF with Sec-Fetch-Site checks
• 4dcb9b4 licence headers
• cbc0ac1 Add PathParam(Or)/QueryParam(Or)/FormParam(Or) generic functions
• 6b14f4e Add Context.Get generic functions
• 321530d disable test - returns different error under Windows
• c8abd9f disable flaky test
• 9fe43f7 fix Rate limiter disallows fractional rates
• 1b5122a document things to reduce false positives
• Additional commits viewable in compare view

Updates github.com/moby/buildkit from 0.26.2 to 0.26.3

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.26.3

Welcome to the v0.26.3 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• Sebastiaan van Stijn
• Jonathan A. Sternberg
• Tõnis Tiigi

Notable Changes

• Fix session policy metadata resolution for git attributes and image attestations #6383

Dependency Changes

• github.com/containernetworking/plugins v1.8.0 -> v1.9.0

Previous release can be found at v0.26.2

Commits

• c70e8e6 Merge pull request #6423 from jsternberg/v0.26.3-picks
• 92d657f Dockerfile: update download URL for nydus snapshotter
• 281567c docs: update nydus repository URLs
• 99eb71e build(deps): bump github.com/containernetworking/plugins
• 25463ff policy: fix metadata resolve via sessionpolicy for git and attestations
• See full diff in compare view

Updates github.com/regclient/regclient from 0.10.0 to 0.11.1

Release notes

Sourced from github.com/regclient/regclient's releases.

v0.11.1

Release v0.11.1

Security:

• Go 1.25.5 fixes CVE-2025-61729 (PR 1025)
• Go 1.25.5 fixes CVE-2025-61727 (PR 1025)

Fixes:

• Correct selection of previous tag for releases. (PR 1023)
• Make sure ContentLength is correctly set in the request. (PR 1024)

Contributors:

• @​sudo-bmitch

v0.11.0

Release v0.11.0

Features:

• Build artifacts for riscv64. (PR 1011)
• Generate FreeBSD amd64 binaries. (PR 1013)
• Add support for cosign v3 bundles. (PR 1018)

Fixes:

• Fix ECR Helper version pin. (PR 1017)
• Fix the cosign use-signing-config flag. ([PR 1019][pr-1019])
• Improve reproducibility in Dockerfiles. ([PR 1020][pr-1020])

Other Changes:

• Add a policy for LLM generated contributions. (PR 1016)

Contributors:

• @​ffgan
• @​sudo-bmitch

... (truncated)

Changelog

Sourced from github.com/regclient/regclient's changelog.

Release v0.11.1

Security:

• Go 1.25.5 fixes CVE-2025-61729 (PR 1025)
• Go 1.25.5 fixes CVE-2025-61727 (PR 1025)

Fixes:

• Correct selection of previous tag for releases. (PR 1023)
• Make sure ContentLength is correctly set in the request. (PR 1024)

Contributors:

• @​sudo-bmitch

Commits

• bf3bcfc Release v0.11.1
• 081438c Merge for release v0.11.1
• de049e9 Merge pull request #1025 from sudo-bmitch/pr-update-20251207
• 2c49b20 Version bump
• dd99fbb Merge pull request #1024 from sudo-bmitch/pr-test-content-length
• 32d63bb Fix: Make sure ContentLength is correctly set in the request
• 1b734bf Merge pull request #1023 from sudo-bmitch/pr-release-prev-tag
• df7ae01 Fix: Correct selection of previous tag for releases
• 9a4fd6b Release v0.11.0
• 25bdd5b Merge for release v0.11.0
• Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.10.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Updates github.com/traefik/traefik/v3 from 3.6.2 to 3.6.6

Release notes

Sourced from github.com/traefik/traefik/v3's releases.

v3.6.6

Bug fixes:

• [acme] Bump github.com/go-acme/lego/v4 to v4.30.1 (#12432 by ldez)
• [http3] Bump github.com/quic-go/quic-go to v0.58.0 (#12448 by GreyXor)
• [redis] Fix mutually exclusive verification for Redis (#12442 by juliens)
• [server] Fix deny encoded characters (#12454 by rtribotte)

Documentation:

• [k8s/ingress,k8s] Fix Kubernetes Ingress provider documentation (#12443 by nmengin)
• [k8s/ingress-nginx] Add RBAC documentation for Ingress NGINX provider (#12445 by nmn3m)
• [k8s] Improve the K8S multi-tenancy security note (#12444 by nmengin)
• Restore documentation on http.maxHeaderBytes (#12440 by mloiseleur)
• Fix Menu Item Naming (#12431 by sheddy-traefik)

Misc:

• Merge branch v2.11 into v3.6 (#12475 by mmatur)
• Merge branch v2.11 into v3.6 (#12438 by kevinpollet)

v3.6.5

Bug fixes:

• [k8s/ingress-nginx] Fix NGINX sslredirect annotation support (#12387 by rtribotte)
• [server] Print access logs for rejected requests and warn about new behavior (#12424 by kevinpollet)

Documentation:

• [k8s/ingress-nginx] Add auth-signin to unsupported nginx annotations list (#12370 by fibsifan)
• Add a Breaking change note to the changelog (#12398 by nmengin)
• Fix encodedCharacters entryPoint option documentation (#12385 by rtribotte)

v3.6.4

CVE's fixed:

• CVE-2025-66490 (Advisory GHSA-gm3x-23wp-hc2c): Breaking Change please read the migration guide.
• CVE-2025-66491 (Advisory GHSA-7vww-mvcr-x6vj)

Important: Please read the migration guide.

Bug fixes:

• [server] Reject suspicious encoded characters (#12360 by rtribotte)
• [plugins] Validate plugin module name (#12291 by kevinpollet)
• [http3] Bump github.com/quic-go/quic-go to v0.57.1 (#12319 by GreyXor)
• [http3] Bump github.com/quic-go/quic-go to v0.57.0 (#12308 by GreyXor)
• [server] Bump golang.org/x/crypto to v0.45.0 (#12296 by kevinpollet)
• [acme] Bump github.com/go-acme/lego/v4 to v4.29.0 (#12333 by ldez)
• [k8s/ingress-nginx] Fix SSL redirect to match NGINX behavior (#12361 by mmatur)
• [k8s/ingress-nginx] Fix the service name for ingress-nginx provider (#12352 by mmatur)
• [k8s/ingress-nginx] Fix nginx.ingress.kubernetes.io/proxy-ssl-verify annotation support (#12351 by rtribotte)
• [middleware,authentication] Change ForwardAuth error log level from DEBUG to ERROR (#12324 by murataslan1)

Documentation:

• [api] Fix typo in API dashboard configuration instructions (#12335 by NAICOLAS)
• [docker] Add documentation for loadbalancer.server.url in Docker and Swarm providers (#12289 by webash)

... (truncated)

Changelog

Sourced from github.com/traefik/traefik/v3's changelog.

v3.6.6 (2025-12-29)

All Commits

Bug fixes:

• [acme] Bump github.com/go-acme/lego/v4 to v4.30.1 (#12432 by ldez)
• [http3] Bump github.com/quic-go/quic-go to v0.58.0 (#12448 by GreyXor)
• [redis] Fix mutually exclusive verification for Redis (#12442 by juliens)
• [server] Fix deny encoded characters (#12454 by rtribotte)

Documentation:

• [k8s/ingress,k8s] Fix Kubernetes Ingress provider documentation (#12443 by nmengin)
• [k8s/ingress-nginx] Add RBAC documentation for Ingress NGINX provider (#12445 by nmn3m)
• [k8s] Improve the K8S multi-tenancy security note (#12444 by nmengin)
• Restore documentation on http.maxHeaderBytes (#12440 by mloiseleur)
• Fix Menu Item Naming (#12431 by sheddy-traefik)

Misc:

• Merge branch v2.11 into v3.6 (#12475 by mmatur)
• Merge branch v2.11 into v3.6 (#12438 by kevinpollet)

v2.11.34 (2025-12-23)

All Commits

Bug fixes:

• [server] Fix deny encoded characters (#12457 by rtribotte)

v2.11.33 (2025-12-17)

All Commits

Bug fixes:

• [server] Print access logs for rejected requests and warn about new behavior (#12426 by rtribotte)

Documentation:

• Clarify doc about encoded characters rejection (#12391 by rtribotte)
• Fix encoded characters entryPoint option documentation (#12384 by rtribotte)
• Fix encoded characters option documentation (#12373 by kevinpollet)

v3.6.5 (2025-12-16)

All Commits

Bug fixes:

• [k8s/ingress-nginx] Fix NGINX sslredirect annotation support (#12387 by rtribotte)
• [server] Print access logs for rejected requests and warn about new behavior (#12424 by kevinpollet)

Documentation:

• [k8s/ingress-nginx] Add auth-signin to unsupported nginx annotations list (#12370 by fibsifan)
• Add a Breaking change note to the changelog (#12398 by nmengin)
• Fix encodedCharacters entryPoint option documentation (#12385 by rtribotte)

v3.6.4 (2025-12-05)

... (truncated)

Commits

• c2b21d3 Prepare release v3.6.6
• 5b17f01 Merge current v2.11 into v3.6
• d1765c7 Prepare release v2.11.34
• 23788e9 Fix deny encoded characters
• 90ce858 Fix deny encoded characters
• 8e6ce08 Add RBAC documentation for Ingress NGINX provider
• 97f9434 Bump github.com/go-acme/lego/v4 to v4.30.1
• 278d903 Fix mutually exclusive verification for Redis
• 1d445d5 Drop certificates and script
• f726a50 Bump github.com/quic-go/quic-go to v0.58.0
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.45.0 to 0.46.0

Commits

• 19acf81 go.mod: update golang.org/x dependencies
• 3a1c6b4 x509roots/fallback: update bundle
• f4602e4 ssh/agent: fix flaky test by ensuring a writeable home directory
• See full diff in compare view

Updates golang.org/x/net from 0.47.0 to 0.48.0

Commits

• 35e1306 go.mod: update golang.org/x dependencies
• 7c36036 http2, webdav, websocket: fix %q verb uses with wrong type
• ec11ecc trace: fix data race in RenderEvents
• bff14c5 http2: don't PING a responsive server when resetting a stream
• 88a6421 dns/dnsmessage: avoid use of "strings" and "math" in dns/dnsmessage
• 123d099 http2: support net/http.Transport.NewClientConn
• 346cc61 webdav: relax test to check for any redirect status, not just 301
• See full diff in compare view

Updates golang.org/x/sync from 0.18.0 to 0.19.0

Commits

• 2a180e2 errgroup: use consistent read for SetLimit panic
• See full diff in compare view

Updates google.golang.org/protobuf from 1.36.10 to 1.36.11

Updates k8s.io/api from 0.34.2 to 0.35.0

Commits

• 9afe7de Update dependencies to v0.35.0 tag
• bbcbaa8 Merge remote-tracking branch 'origin/master' into release-1.35
• 5bced61 Bump golang.org/x/crypto to v0.45.0
• 39e2e26 Merge pull request #135131 from Dev1622/sig-storage/mock-expand-flake-fix
• c22b4a1 vendor: update vendor and license metadata after replacing BeTrue usage in cs...
• e3b1f3d Resolve lint restriction on BeTrue by introducing Succeed() with contextual e...
• 3da327c Update vendored dependencies
• c764b44 Merge pull request #132919 from ndixita/pod-level-in-place-pod-resize
• aced136 Generated files from API changes
• 02d790d Adding Resources and AllocatedResoures fields to the list of expected fields ...
• Additional commits viewable in compare view

Updates k8s.io/apiextensions-apiserver from 0.34.2 to 0.35.0

Commits

• a8d2a03 Update dependencies to v0.35.0 tag
• b9eb912 Merge remote-tracking branch 'origin/master' into release-1.35
• e526698 Bump golang.org/x/crypto to v0.45.0
• fd7881d Merge pull request #135278 from aman4433/KUBE-134468
• 8db5ab6 Merge pull request #135131 from Dev1622/sig-storage/mock-expand-flake-fix
• 4ed5bd4 vendor: update vendor and license metadata after replacing BeTrue usage in cs...
• 704bc3d Resolve lint restriction on BeTrue by introducing Succeed() with contextual e...
• 7d598d7 Refactor: Contextualize CRDFinalizer to fix goroutine leak
• 27e5803 Update vendored dependencies
• c4e434c Merge pull request #134216 from Goend/master
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.34.2 to 0.35.0

Commits

• 72d71ea Merge remote-tracking branch 'origin/master' into release-1.35
• e2a2dbc ...

  Description has been truncated

[github-actions]

Preview (prod backend + PR dashboard) → https://1144.ns-preview.trapti.tech/