Update grouped non-major updates

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change	Age	Confidence
actions/checkout	action	minor	v4.1.7 → v4.3.1
actions/setup-go	action	minor	v5.0.1 → v5.6.0
autoprefixer	devDependencies	patch	10.4.19 → 10.4.27
azure/setup-helm	action	minor	v4.2.0 → v4.3.1
docker/login-action	action	minor	v3.2.0 → v3.7.0
docker/metadata-action	action	minor	v5.5.1 → v5.10.0
docker/setup-buildx-action	action	minor	v3.3.0 → v3.12.0
github.com/go-logr/logr	require	patch	v1.4.2 → v1.4.3
github.com/onsi/ginkgo/v2	require	minor	v2.19.0 → v2.28.1
github.com/onsi/gomega	require	minor	v1.33.1 → v1.39.1
github.com/spf13/cobra	require	minor	v1.7.0 → v1.10.2
github.com/spf13/pflag	require	patch	v1.0.5 → v1.0.10
github.com/spf13/viper	require	minor	v1.19.0 → v1.21.0
go	uses-with	minor	1.22.4 → 1.26.1
go.etcd.io/etcd/client/v3	require	minor	v3.5.14 → v3.6.9
golang	stage	minor	1.22.4 → 1.26.1
golangci/golangci-lint		minor	v1.59.1 → v1.64.8
helm/helm		minor	v3.15.2 → v3.20.1
hugo-extended	devDependencies	minor	0.127.0 → 0.158.0
jetstack/cert-manager		minor	v1.15.0 → v1.20.0
k8s.io/api	require	minor	v0.30.2 → v0.35.3
k8s.io/apimachinery	require	minor	v0.30.2 → v0.35.3
k8s.io/client-go	require	minor	v0.30.2 → v0.35.3
kubernetes-sigs/controller-tools		minor	v0.15.0 → v0.20.1
kubernetes-sigs/kind		minor	v0.23.0 → v0.31.0
kubernetes/kubernetes		minor	v1.30.0 → v1.35.3
losisin/helm-values-schema-json		minor	v1.4.1 → v1.9.2
mikefarah/yq		minor	v4.44.1 → v4.52.4
norwoodj/helm-docs		minor	v1.13.1 → v1.14.2
postcss-cli	devDependencies	patch	11.0.0 → 11.0.1
prometheus-operator/prometheus-operator		minor	v0.74.0 → v0.90.0
quay.io/brancz/kube-rbac-proxy		minor	v0.18.1 → v0.21.1
release-drafter/release-drafter	action	minor	v6.0.0 → v6.4.0
sigs.k8s.io/controller-runtime	require	minor	v0.18.4 → v0.23.3
sigstore/cosign-installer	action	minor	v3.5.0 → v3.10.1
svenstaro/upload-release-action	action	minor	2.9.0 → 2.11.5

---

Release Notes

actions/checkout (actions/checkout)

v4.3.1

Compare Source

What's Changed

• Port v6 cleanup to v4 by @​ericsciple in #​2305

Full Changelog: actions/checkout@v4...v4.3.1

v4.3.0

Compare Source

What's Changed

• docs: update README.md by @​motss in #​1971
• Add internal repos for checking out multiple repositories by @​mouismail in #​1977
• Documentation update - add recommended permissions to Readme by @​benwells in #​2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in #​2044
• Update README.md by @​nebuk89 in #​2194
• Update CODEOWNERS for actions by @​TingluoHuang in #​2224
• Update package dependencies by @​salmanmkc in #​2236
• Prepare release v4.3.0 by @​salmanmkc in #​2237

New Contributors

• @​motss made their first contribution in #​1971
• @​mouismail made their first contribution in #​1977
• @​benwells made their first contribution in #​2043
• @​nebuk89 made their first contribution in #​2194
• @​salmanmkc made their first contribution in #​2236

Full Changelog: actions/checkout@v4...v4.3.0

v4.2.2

Compare Source

• url-helper.ts now leverages well-known environment variables by @​jww3 in #​1941
• Expand unit test coverage for isGhes by @​jww3 in #​1946

v4.2.1

Compare Source

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in #​1924

v4.2.0

Compare Source

• Add Ref and Commit outputs by @​lucacome in #​1180
• Dependency updates by @​dependabot- #​1777, #​1872

actions/setup-go (actions/setup-go)

v5.6.0

Compare Source

What's Changed

• Fall back to downloading from go.dev/dl instead of storage.googleapis.com/golang by @​aparnajyothi-y in #​689

Full Changelog: actions/setup-go@v5...v5.6.0

v5.5.0

Compare Source

What's Changed

Bug fixes:

• Update self-hosted environment validation by @​priyagupta108 in #​556
• Add manifest validation and improve error handling by @​priyagupta108 in #​586
• Update template link by @​jsoref in #​527

Dependency updates:

• Upgrade @​action/cache from 4.0.2 to 4.0.3 by @​aparnajyothi-y in #​574
• Upgrade @​actions/glob from 0.4.0 to 0.5.0 by @​dependabot in #​573
• Upgrade ts-jest from 29.1.2 to 29.3.2 by @​dependabot in #​582
• Upgrade eslint-plugin-jest from 27.9.0 to 28.11.0 by @​dependabot in #​537

New Contributors

• @​jsoref made their first contribution in #​527

Full Changelog: actions/setup-go@v5...v5.5.0

v5.4.0

Compare Source

What's Changed

Dependency updates :

• Upgrade semver from 7.6.0 to 7.6.3 by @​dependabot in #​535
• Upgrade eslint-config-prettier from 8.10.0 to 10.0.1 by @​dependabot in #​536
• Upgrade @​action/cache from 4.0.0 to 4.0.2 by @​aparnajyothi-y in #​568
• Upgrade undici from 5.28.4 to 5.28.5 by @​dependabot in #​541

New Contributors

• @​aparnajyothi-y made their first contribution in #​568

Full Changelog: actions/setup-go@v5...v5.4.0

v5.3.0

Compare Source

What's Changed

• Use the new cache service: upgrade @actions/cache to ^4.0.0 by @​Link- in #​531
• Configure Dependabot settings by @​HarithaVattikuti in #​530
• Document update - permission section by @​HarithaVattikuti in #​533
• Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 by @​dependabot in #​534

New Contributors

• @​Link- made their first contribution in #​531

Full Changelog: actions/setup-go@v5...v5.3.0

v5.2.0

Compare Source

What's Changed

• Leveraging the raw API to retrieve the version-manifest, as it does not impose a rate limit and hence facilitates unrestricted consumption without the need for a token for Github Enterprise Servers by @​Shegox in #​496

New Contributors

• @​Shegox made their first contribution in #​496

Full Changelog: actions/setup-go@v5...v5.2.0

v5.1.0

Compare Source

What's Changed

• Add workflow file for publishing releases to immutable action package by @​Jcambass in #​500
• Upgrade IA Publish by @​Jcambass in #​502
• Add architecture to cache key by @​Zxilly in #​493
  This addresses issues with caching by adding the architecture (arch) to the cache key, ensuring that cache keys are accurate to prevent conflicts.
  Note: This change may break previous cache keys as they will no longer be compatible with the new format.
• Enhance workflows and Upgrade micromatch Dependency by @​priyagupta108 in #​510

Bug Fixes

• Revise isGhes logic by @​jww3 in #​511

New Contributors

• @​Zxilly made their first contribution in #​493
• @​Jcambass made their first contribution in #​500
• @​jww3 made their first contribution in #​511
• @​priyagupta108 made their first contribution in #​510

Full Changelog: actions/setup-go@v5...v5.1.0

v5.0.2

Compare Source

What's Changed

Bug fixes:

• Fix versions check failure by @​HarithaVattikuti in #​479

Dependency updates:

• Bump braces from 3.0.2 to 3.0.3 and undici from 5.28.3 to 5.28.4 by @​dependabot in #​487

New Contributors

• @​HarithaVattikuti made their first contribution in #​479

Full Changelog: actions/setup-go@v5...v5.0.2

postcss/autoprefixer (autoprefixer)

v10.4.27

Compare Source

• Removed development key from package.json.

v10.4.26

Compare Source

• Reduced package size.

v10.4.25

Compare Source

• Fixed broken gradients on CSS Custom Properties (by @​serger777).

v10.4.24

Compare Source

• Made Autoprefixer a little faster (by @​Cherry).

v10.4.23

Compare Source

• Reduced dependencies (by @​hyperz111).

v10.4.22

Compare Source

• Fixed stretch prefixes on new Can I Use database.
• Updated fraction.js.

v10.4.21

Compare Source

• Fixed old -moz- prefix for :placeholder-shown (by @​Marukome0743).

v10.4.20

Compare Source

• Fixed fit-content prefix for Firefox.

azure/setup-helm (azure/setup-helm)

v4.3.1

Compare Source

Changed

• #​167 Pinning Action Dependencies for Security and Reliability
• #​181 Fix types, and update node version.
• #​191 chore(tests): Mock arch to make tests pass on arm host
• #​192 chore: remove unnecessary prebuild script
• #​203 Update helm version retrieval to use JSON output for latest version
• #​207 ci(workflows): update helm version to v3.18.4 and add matrix for tests

Added

• #​197 Add pre-commit hook

v4.3.0

Compare Source

• #​152 feat: log when restoring from cache
• #​157 Dependencies Update
• #​137 Add dependabot

docker/login-action (docker/login-action)

v3.7.0

Compare Source

• Add scope input to set scopes for the authentication token by @​crazy-max in #​912
• Add support for AWS European Sovereign Cloud ECR by @​dphi in #​914
• Ensure passwords are redacted with registry-auth input by @​crazy-max in #​911
• build(deps): bump lodash from 4.17.21 to 4.17.23 in #​915

Full Changelog: docker/login-action@v3.6.0...v3.7.0

v3.6.0

Compare Source

• Add registry-auth input for raw authentication to registries by @​crazy-max in #​887
• Bump @​aws-sdk/client-ecr to 3.890.0 in #​882 #​890
• Bump @​aws-sdk/client-ecr-public to 3.890.0 in #​882 #​890
• Bump @​docker/actions-toolkit from 0.62.1 to 0.63.0 in #​883
• Bump brace-expansion from 1.1.11 to 1.1.12 in #​880
• Bump undici from 5.28.4 to 5.29.0 in #​879
• Bump tmp from 0.2.3 to 0.2.4 in #​881

Full Changelog: docker/login-action@v3.5.0...v3.6.0

v3.5.0

Compare Source

• Support dual-stack endpoints for AWS ECR by @​Spacefish @​crazy-max in #​874 #​876
• Bump @​aws-sdk/client-ecr to 3.859.0 in #​860 #​878
• Bump @​aws-sdk/client-ecr-public to 3.859.0 in #​860 #​878
• Bump @​docker/actions-toolkit from 0.57.0 to 0.62.1 in #​870
• Bump form-data from 2.5.1 to 2.5.5 in #​875

Full Changelog: docker/login-action@v3.4.0...v3.5.0

v3.4.0

Compare Source

• Bump @​actions/core from 1.10.1 to 1.11.1 in #​791
• Bump @​aws-sdk/client-ecr to 3.766.0 in #​789 #​856
• Bump @​aws-sdk/client-ecr-public to 3.758.0 in #​789 #​856
• Bump @​docker/actions-toolkit from 0.35.0 to 0.57.0 in #​801 #​806 #​858
• Bump cross-spawn from 7.0.3 to 7.0.6 in #​814
• Bump https-proxy-agent from 7.0.5 to 7.0.6 in #​823
• Bump path-to-regexp from 6.2.2 to 6.3.0 in #​777

Full Changelog: docker/login-action@v3.3.0...v3.4.0

v3.3.0

Compare Source

• Bump @​docker/actions-toolkit from 0.24.0 to 0.35.0 in #​754
• Bump https-proxy-agent from 7.0.4 to 7.0.5 in #​741
• Bump braces from 3.0.2 to 3.0.3 in #​730

Full Changelog: docker/login-action@v3.2.0...v3.3.0

docker/metadata-action (docker/metadata-action)

v5.10.0

Compare Source

• Bump @​docker/actions-toolkit from 0.66.0 to 0.68.0 in #​559 #​569
• Bump js-yaml from 3.14.1 to 3.14.2 in #​564

Full Changelog: docker/metadata-action@v5.9.0...v5.10.0

v5.9.0

Compare Source

• Add tag-names output to return tag names without image base name by @​crazy-max in #​553
• Bump @​babel/runtime-corejs3 from 7.14.7 to 7.28.2 in #​539
• Bump @​docker/actions-toolkit from 0.62.1 to 0.66.0 in #​555
• Bump brace-expansion from 1.1.11 to 1.1.12 in #​540
• Bump csv-parse from 5.6.0 to 6.1.0 in #​532
• Bump semver from 7.7.2 to 7.7.3 in in #​554
• Bump tmp from 0.2.3 to 0.2.5 in #​541

Full Changelog: docker/metadata-action@v5.8.0...v5.9.0

v5.8.0

Compare Source

• New is_not_default_branch global expression by @​crazy-max in #​535
• Allow to match part of the git tag or value for semver/pep440 types by @​crazy-max in #​536 #​537
• Bump @​actions/github from 6.0.0 to 6.0.1 in #​523
• Bump @​docker/actions-toolkit from 0.56.0 to 0.62.1 in #​526
• Bump form-data from 2.5.1 to 2.5.5 in #​533
• Bump moment-timezone from 0.5.47 to 0.6.0 in #​525
• Bump semver from 7.7.1 to 7.7.2 in #​524

Full Changelog: docker/metadata-action@v5.7.0...v5.8.0

v5.7.0

Compare Source

• Global expressions support for labels and annotations by @​crazy-max in #​489
• Support disabling outputs as environment variables by @​omus in #​497
• Bump @​docker/actions-toolkit from 0.44.0 to 0.56.0 in #​507 #​509
• Bump csv-parse from 5.5.6 to 5.6.0 in #​482
• Bump moment-timezone from 0.5.46 to 0.5.47 in #​501
• Bump semver from 7.6.3 to 7.7.1 in #​504

Full Changelog: docker/metadata-action@v5.6.1...v5.7.0

v5.6.1

Compare Source

• Fix GitHub API request fallback for commit date by @​crazy-max in #​478
• Revert to default commit SHA length of 7 by @​crazy-max in #​480

Full Changelog: docker/metadata-action@v5.6.0...v5.6.1

v5.6.0

Compare Source

• Add commit_date global expression by @​trim21 in #​471 #​475
• Increase short commit sha length to 12 for uniqueness by @​crazy-max in #​467
• Bump @​actions/core from 1.10.1 to 1.11.1 #​460
• Bump @​docker/actions-toolkit from 0.16.1 to 0.44.0 #​391 #​399 #​413 #​441
• Bump braces from 3.0.2 to 3.0.3 #​424
• Bump cross-spawn from 7.0.3 to 7.0.5 #​474
• Bump csv-parse from 5.5.5 to 5.5.6 #​412
• Bump moment-timezone from 0.5.44 to 0.5.46 #​383 #​470 #​459
• Bump path-to-regexp from 6.2.2 to 6.3.0 #​454
• Bump semver from 7.6.0 to 7.6.3 #​400 #​411 #​440
• Bump undici from 5.26.3 to 5.28.4 #​386 #​402

Full Changelog: docker/metadata-action@v5.5.1...v5.6.0

docker/setup-buildx-action (docker/setup-buildx-action)

v3.12.0

Compare Source

• Deprecate install input by @​crazy-max in #​455
• Bump @​docker/actions-toolkit from 0.62.1 to 0.63.0 in #​434
• Bump brace-expansion from 1.1.11 to 1.1.12 in #​436
• Bump form-data from 2.5.1 to 2.5.5 in #​432
• Bump undici from 5.28.4 to 5.29.0 in #​435

Full Changelog: docker/setup-buildx-action@v3.11.1...v3.12.0

v3.11.1

Compare Source

• Fix keep-state not being respected by @​crazy-max in #​429

Full Changelog: docker/setup-buildx-action@v3.11.0...v3.11.1

v3.11.0

Compare Source

• Keep BuildKit state support by @​crazy-max in #​427
• Remove aliases created when installing by default by @​hashhar in #​139
• Bump @​docker/actions-toolkit from 0.56.0 to 0.62.1 in #​422 #​425

Full Changelog: docker/setup-buildx-action@v3.10.0...v3.11.0

v3.10.0

Compare Source

• Bump @​docker/actions-toolkit from 0.54.0 to 0.56.0 in #​408

Full Changelog: docker/setup-buildx-action@v3.9.0...v3.10.0

v3.9.0

Compare Source

• Bump @​docker/actions-toolkit from 0.48.0 to 0.54.0 in #​402 #​404

Full Changelog: docker/setup-buildx-action@v3.8.0...v3.9.0

v3.8.0

Compare Source

• Make cloud prefix optional to download buildx if driver is cloud by @​crazy-max in #​390
• Bump @​actions/core from 1.10.1 to 1.11.1 in #​370
• Bump @​docker/actions-toolkit from 0.39.0 to 0.48.0 in #​389
• Bump cross-spawn from 7.0.3 to 7.0.6 in #​382

Full Changelog: docker/setup-buildx-action@v3.7.1...v3.8.0

v3.7.1

Compare Source

• Switch back to uuid package by @​crazy-max in #​369

Full Changelog: docker/setup-buildx-action@v3.7.0...v3.7.1

v3.7.0

Compare Source

• Always set buildkitd-flags if opt-in by @​crazy-max in #​363
• Remove uuid package and switch to crypto by @​crazy-max in #​366
• Bump @​docker/actions-toolkit from 0.35.0 to 0.39.0 in #​362
• Bump path-to-regexp from 6.2.2 to 6.3.0 in #​354

Full Changelog: docker/setup-buildx-action@v3.6.1...v3.7.0

v3.6.1

Compare Source

• Check for malformed docker context by @​crazy-max in #​347

Full Changelog: docker/setup-buildx-action@v3.6.0...v3.6.1

v3.6.0

Compare Source

• Create temp docker context if default one has TLS data loaded before creating a container builder by @​crazy-max in #​341

Full Changelog: docker/setup-buildx-action@v3.5.0...v3.6.0

v3.5.0

Compare Source

• Bump @​docker/actions-toolkit from 0.31.0 to 0.35.0 in #​340 #​344 #​345

Full Changelog: docker/setup-buildx-action@v3.4.0...v3.5.0

v3.4.0

Compare Source

• Throw error message instead of exit code by @​crazy-max in #​315
• Bump @​docker/actions-toolkit from 0.20.0 to 0.31.0 in #​321 #​338
• Bump braces from 3.0.2 to 3.0.3 in #​329
• Bump undici from 5.28.3 to 5.28.4 in #​312
• Bump uuid from 9.0.1 to 10.0.0 in #​326

Full Changelog: docker/setup-buildx-action@v3.3.0...v3.4.0

go-logr/logr (github.com/go-logr/logr)

v1.4.3

Compare Source

Minor release.

What's Changed

• Fix slog tests for 1.25 by @​hoeppi-google in #​361
• Remove one exception from Slog testing by @​thockin in #​362

New Contributors

• @​hoeppi-google made their first contribution in #​361

Full Changelog: go-logr/logr@v1.4.2...v1.4.3

onsi/ginkgo (github.com/onsi/ginkgo/v2)

v2.28.1

Compare Source

2.28.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

v2.28.0

Compare Source

2.28.0

Ginkgo's SemVer filter now supports filtering multiple components by SemVer version:

It("should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)", SemVerConstraint(">= 3.2.0"), ComponentSemVerConstraint("redis", ">= 8.0.0") func() {
    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is >= 8.0.0
})

can be filtered in or out with an invocation like:

ginkgo --sem-ver-filter="2.1.1, redis=8.2.0"

Huge thanks to @​Icarus9913 for working on this!

v2.27.5

Compare Source

2.27.5

Fixes

Don't make a new formatter for each GinkgoT(); that's just silly and uses precious memory

v2.27.4

Compare Source

2.27.4

Fixes

• CurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]

v2.27.3

Compare Source

2.27.3

Fixes

report exit result in case of failure [1c9f356]
fix data race [ece19c8]

v2.27.2

Compare Source

2.27.2

Fixes

• inline automaxprocs to simplify dependencies; this will be removed when Go 1.26 comes out [a69113a]

Maintenance

• Fix syntax errors and typo [a99c6e0]
• Fix paragraph position error [f993df5]

v2.27.1

Compare Source

2.27.1

Fixes

• Fix Ginkgo Reporter slice-bounds panic [606c1cb]
• Bug Fix: Add GinkoTBWrapper.A

---

Configuration

📅 Schedule: Branch creation - Only on Saturday ( * * * * 6 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 3b6ca7b7-d796-4f49-9043-41a1b849ec0c

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch renovate/grouped-non-major-updates

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

Outside diff range, codebase verification and nitpick comments (2)

go.mod (1)

17-17: Breaking change detected in Kubernetes Client-Go update.

The update to k8s.io/client-go version v0.31.0 includes a breaking change related to Google Cloud Service Account email addresses and RBAC Role bindings. If your application uses the numeric uniqueIDs of Google service accounts in RBAC role bindings, you may need to adjust your configurations. Please verify the impact on your application.

• Breaking Change: Google Cloud Service Account email addresses can now be used in RBAC Role bindings. This change affects configurations using numeric uniqueIDs.

Analysis chain

Verify compatibility of Kubernetes Client-Go update.

The k8s.io/client-go dependency has been updated to v0.31.0. Ensure that there are no breaking changes affecting your Kubernetes Client-Go usage.

Run the following script to check for potential breaking changes:

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Kubernetes Client-Go update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/kubernetes/client-go/v0.31.0/CHANGELOG.md | grep -i "breaking"

Length of output: 736

Makefile (1)

168-168: Breaking changes detected in Prometheus Operator v0.76.0 update.

The update to PROMETHEUS_OPERATOR_VERSION v0.76.0 includes several breaking changes that may affect your setup:

• proxyURL validation changes could impact configurations relying on the configuration reloader sidecar.
• Changes to prometheus_operator_.* metrics.
• Handling of Alertmanager >=v0.15.0 breaking changes.
• Modifications to the generated StatefulSet's.
• Alterations to the underlying naming schemes.

Please review these changes carefully to ensure compatibility with your current setup.

Analysis chain

Verify compatibility of Prometheus Operator version update.

The PROMETHEUS_OPERATOR_VERSION has been updated to v0.76.0. Ensure that there are no breaking changes affecting your Prometheus Operator setup.

Run the following script to check for potential breaking changes:

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Prometheus Operator version update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/prometheus-operator/prometheus-operator/v0.76.0/CHANGELOG.md | grep -i "breaking"

Length of output: 676

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 51131a1 and 020f32f.

Files ignored due to path filters (2)

• go.sum is excluded by !**/*.sum
• site/package-lock.json is excluded by !**/package-lock.json

Files selected for processing (10)

• .github/workflows/docker-publish.yaml (1 hunks)
• .github/workflows/make-test-e2e.yaml (1 hunks)
• .github/workflows/make-test.yaml (1 hunks)
• .github/workflows/nilaway-lint.yaml (1 hunks)
• .github/workflows/pre-commit.yaml (1 hunks)
• .github/workflows/release-assets.yaml (1 hunks)
• Dockerfile (1 hunks)
• Makefile (3 hunks)
• go.mod (2 hunks)
• site/package.json (1 hunks)

Files skipped from review due to trivial changes (8)

• .github/workflows/docker-publish.yaml
• .github/workflows/make-test-e2e.yaml
• .github/workflows/make-test.yaml
• .github/workflows/nilaway-lint.yaml
• .github/workflows/pre-commit.yaml
• .github/workflows/release-assets.yaml
• Dockerfile
• site/package.json

Additional comments not posted (30)

go.mod (21)

14-14: LGTM!

The update to go.etcd.io/etcd/client/v3 version v3.5.15 is a patch update and should be safe.

---

36-36: LGTM!

The update to github.com/go-openapi/swag version v0.22.4 is a patch update and should be safe.

---

64-64: LGTM!

The update to github.com/prometheus/common version v0.55.0 is a patch update and should be safe.

---

65-65: LGTM!

The update to github.com/prometheus/procfs version v0.15.1 is a patch update and should be safe.

---

72-72: Verify compatibility of new float16 dependency.

The github.com/x448/float16 dependency has been added as a new indirect dependency. Ensure that it does not introduce any conflicts or issues in your build process.

Run the following script to check for potential conflicts:

Verification successful

---

No conflicts found with float16 dependency.

The github.com/x448/float16 v0.8.4 dependency is correctly recorded in the go.sum file with valid checksums, indicating no immediate conflicts or issues. Ensure to test your build process to confirm compatibility.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify float16 addition for conflicts.

# Test: Check for conflicts in go.sum.
grep "github.com/x448/float16" go.sum

Length of output: 202

---

9-9: Verify compatibility of Ginkgo update.

The github.com/onsi/ginkgo/v2 dependency has been updated to v2.20.1. Ensure that there are no breaking changes affecting your tests.

Run the following script to check for potential breaking changes:

Verification successful

---

No specific breaking changes found in Ginkgo v2.20.1 update.

The changelog for github.com/onsi/ginkgo/v2 version v2.20.1 mentions a section for breaking changes, but it does not list any specific changes. It is likely safe to proceed with this update, but please manually verify the compatibility with your tests to ensure no unexpected issues arise.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Ginkgo update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/onsi/ginkgo/v2.20.1/CHANGELOG.md | grep -i "breaking"

Length of output: 113

---

Script:

#!/bin/bash
# Description: Extract specific breaking changes from the Ginkgo v2.20.1 changelog.

# Fetch and display the section of the changelog that details breaking changes.
curl -s https://raw.githubusercontent.com/onsi/ginkgo/v2.20.1/CHANGELOG.md | awk '/Breaking changes:/,/^$/'

Length of output: 128

---

80-80: Verify compatibility of Golang sys update.

The golang.org/x/sys dependency has been updated to v0.23.0. Ensure that there are no breaking changes affecting your system usage.

Run the following script to check for potential breaking changes:

---

16-16: Verify compatibility of Kubernetes Apimachinery update.

The k8s.io/apimachinery dependency has been updated to v0.31.0. Ensure that there are no breaking changes affecting your Kubernetes Apimachinery usage.

Run the following script to check for potential breaking changes:

---

81-81: Verify compatibility of Golang term update.

The golang.org/x/term dependency has been updated to v0.23.0. Ensure that there are no breaking changes affecting your terminal usage.

Run the following script to check for potential breaking changes:

Verification successful

---

No direct usage of golang.org/x/term found.

The golang.org/x/term dependency is not directly used in the codebase, as indicated by the absence of search results. Since it is marked as an indirect dependency, the update to v0.23.0 should not directly impact the codebase. Ensure that any libraries relying on it are compatible with the new version.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Golang term update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/golang/term/v0.23.0/CHANGELOG.md | grep -i "breaking"

Length of output: 95

---

Script:

#!/bin/bash
# Search for the usage of `golang.org/x/term` in the codebase to verify compatibility with the update.

# Find all Go files and search for the import or usage of `golang.org/x/term`.
fd --extension go --exec rg 'golang.org/x/term' {}

Length of output: 52

---

10-10: Verify compatibility of Gomega update.

The github.com/onsi/gomega dependency has been updated to v1.34.1. Ensure that there are no breaking changes affecting your tests.

Run the following script to check for potential breaking changes:

---

24-24: Verify compatibility of xxhash update.

The github.com/cespare/xxhash/v2 dependency has been updated to v2.3.0. Ensure that there are no breaking changes affecting your usage.

Run the following script to check for potential breaking changes:

---

15-15: Verify compatibility of Kubernetes API update.

The k8s.io/api dependency has been updated to v0.31.0. Ensure that there are no breaking changes affecting your Kubernetes API usage.

Run the following script to check for potential breaking changes:

---

44-44: Verify compatibility of pprof update.

The github.com/google/pprof dependency has been updated to a new pseudo-version. Ensure that there are no breaking changes affecting your profiling usage.

Run the following script to check for potential breaking changes:

---

82-82: Verify compatibility of Golang text update.

The golang.org/x/text dependency has been updated to v0.17.0. Ensure that there are no breaking changes affecting your text processing usage.

Run the following script to check for potential breaking changes:

Verification successful

---

No direct usage of golang.org/x/text found.

The golang.org/x/text dependency is not directly used in the codebase, indicating it is an indirect dependency. Ensure that the packages depending on it are compatible with version v0.17.0.

• Check the changelogs or release notes of the packages that depend on golang.org/x/text for any compatibility issues.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Golang text update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/golang/text/v0.17.0/CHANGELOG.md | grep -i "breaking"

Length of output: 95

---

Script:

#!/bin/bash
# Search for usage of golang.org/x/text in the codebase to identify potential issues.
rg 'golang.org/x/text' -A 5

Length of output: 1575

---

77-77: Verify compatibility of Golang exp update.

The golang.org/x/exp dependency has been updated to a new pseudo-version. Ensure that there are no breaking changes affecting your experimental features usage.

Run the following script to check for potential breaking changes:

Verification successful

---

No direct usage of golang.org/x/exp found in the codebase.

The golang.org/x/exp dependency is listed as an indirect dependency, and no direct usage was found in the codebase. This suggests that the update is unlikely to cause issues unless indirect dependencies relying on it have specific requirements. Ensure that any indirect dependencies are compatible with the updated version.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Golang exp update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/golang/exp/8a7402abbf56/CHANGELOG.md | grep -i "breaking"

Length of output: 99

---

Script:

#!/bin/bash
# Search for the usage of golang.org/x/exp in the codebase to check for potential issues due to the update.
rg "golang.org/x/exp" -A 5

Length of output: 1293

---

62-62: Verify compatibility of Prometheus client_golang update.

The github.com/prometheus/client_golang dependency has been updated to v1.19.1. Ensure that there are no breaking changes affecting your Prometheus usage.

Run the following script to check for potential breaking changes:

Verification successful

---

No direct impact from Prometheus client_golang update.

The github.com/prometheus/client_golang dependency is listed as an indirect dependency, and there are no direct usages in the codebase. Therefore, the breaking changes in version v1.19.1 do not directly affect the codebase. Ensure that any direct dependencies relying on this package are compatible with the updated version.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Prometheus client_golang update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/prometheus/client_golang/v1.19.1/CHANGELOG.md | grep -i "breaking"

Length of output: 357

---

Script:

#!/bin/bash
# Search for usage of github.com/prometheus/client_golang in the codebase
rg 'github.com/prometheus/client_golang' -A 5

Length of output: 1315

---

11-11: Verify compatibility of Cobra update.

The github.com/spf13/cobra dependency has been updated to v1.8.1. Ensure that there are no breaking changes affecting your command-line tools.

Run the following script to check for potential breaking changes:

Verification successful

---

No breaking changes found in Cobra v1.8.1 update.

The release notes for github.com/spf13/cobra version v1.8.1 do not mention any breaking changes. The update includes new features, bug fixes, and maintenance improvements.

• Ensure to run your tests to verify compatibility with your command-line tools.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Cobra update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/spf13/cobra/v1.8.1/CHANGELOG.md | grep -i "breaking"

Length of output: 94

---

Script:

#!/bin/bash
# Description: Fetch the entire changelog for Cobra v1.8.1 for manual review.

# Fetch the changelog
curl -s https://raw.githubusercontent.com/spf13/cobra/v1.8.1/CHANGELOG.md

Length of output: 90

---

Script:

#!/bin/bash
# Description: Fetch release notes for Cobra v1.8.1 from GitHub.

# Fetch the release notes using GitHub CLI
gh release view v1.8.1 --repo spf13/cobra --json body --jq '.body'

Length of output: 3614

---

55-55: Verify compatibility of spdystream update.

The github.com/moby/spdystream dependency has been updated to v0.4.0. Ensure that there are no breaking changes affecting your usage.

Run the following script to check for potential breaking changes:

Verification successful

Let's gather more information to verify the compatibility of the spdystream update by checking for release notes or commit history.

---

No breaking changes in spdystream v0.4.0 update.

The update to github.com/moby/spdystream version v0.4.0 addresses a goroutine leak and removes unused code, with no breaking changes indicated in the release notes.

• Release notes confirm no breaking changes: v0.4.0 Release Notes

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify spdystream update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/moby/spdystream/v0.4.0/CHANGELOG.md | grep -i "breaking"

Length of output: 98

---

Script:

#!/bin/bash
# Description: Check for release notes or commit history for spdystream v0.4.0.

# Attempt to fetch release notes using GitHub CLI
gh release view v0.4.0 --repo moby/spdystream || echo "Release notes not found."

# If release notes are not available, check commit history around v0.4.0
git clone --depth 1 --branch v0.4.0 https://github.com/moby/spdystream.git spdystream_repo
cd spdystream_repo
git log --oneline -n 10

Length of output: 1595

---

79-79: Verify compatibility of Golang oauth2 update.

The golang.org/x/oauth2 dependency has been updated to v0.21.0. Ensure that there are no breaking changes affecting your OAuth2 usage.

Run the following script to check for potential breaking changes:

---

63-63: Verify compatibility of Prometheus client_model update.

The github.com/prometheus/client_model dependency has been updated to v0.6.1. Ensure that there are no breaking changes affecting your Prometheus usage.

Run the following script to check for potential breaking changes:

Verification successful

---

No breaking changes found in Prometheus client_model update.

The update to github.com/prometheus/client_model version v0.6.1 includes a minor dependency bump with no breaking changes mentioned in the release notes. It appears to be safe to proceed with this update.

• Dependency update: google.golang.org/protobuf from 1.32.0 to 1.33.0.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify Prometheus client_model update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/prometheus/client_model/v0.6.1/CHANGELOG.md | grep -i "breaking"

Length of output: 106

---

Script:

#!/bin/bash
# Description: Search for release notes or changelog in the Prometheus client_model repository for version v0.6.1.

# Find any markdown files that might contain release notes or changelog.
curl -s https://api.github.com/repos/prometheus/client_model/contents/ | jq -r '.[].name' | grep -iE 'changelog|release'

# Check the releases page for any information on v0.6.1.
curl -s https://api.github.com/repos/prometheus/client_model/releases | jq -r '.[] | select(.tag_name == "v0.6.1") | .body'

Length of output: 482

---

78-78: Verify compatibility of Golang net update.

The golang.org/x/net dependency has been updated to v0.28.0. Ensure that there are no breaking changes affecting your network usage.

Run the following script to check for potential breaking changes:

Makefile (9)

170-170: LGTM!

The update to CERT_MANAGER_VERSION version v1.15.3 is a patch update and should be safe.

---

263-263: LGTM!

The update to HELM_VERSION version v3.15.4 is a patch update and should be safe.

---

269-269: LGTM!

The update to YQ_VERSION version v4.44.3 is a patch update and should be safe.

---

267-267: Verify compatibility of Helm Docs version update.

The HELM_DOCS_VERSION has been updated to v1.14.2. Ensure that there are no breaking changes affecting your Helm documentation generation.

Run the following script to check for potential breaking changes:

---

6-6: Verify compatibility of Kubernetes version update.

The K8S_VERSION has been updated to v1.31.0. Ensure that there are no breaking changes affecting your Kubernetes setup.

Run the following script to check for potential breaking changes:

---

259-259: Verify compatibility of GolangCI-Lint version update.

The GOLANGCI_LINT_VERSION has been updated to v1.60.3. Ensure that there are no breaking changes affecting your linting process.

Run the following script to check for potential breaking changes:

Verification successful

---

No breaking changes detected for GolangCI-Lint version update.

The breaking changes in testifylint and exhaustruct do not impact your project, as these linters are not used in the codebase. The update to v1.60.3 is compatible with your current setup.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify GolangCI-Lint version update for breaking changes.

# Test: Check the changelog for breaking changes.
curl -s https://raw.githubusercontent.com/golangci/golangci-lint/v1.60.3/CHANGELOG.md | grep -i "breaking"

Length of output: 395

---

Script:

#!/bin/bash
# Description: Check for usage of testifylint and exhaustruct in the codebase.

# Search for testifylint in the configuration files or codebase.
rg 'testifylint' --glob '!node_modules/*' --glob '!*dist/*'

# Search for exhaustruct in the configuration files or codebase.
rg 'exhaustruct' --glob '!node_modules/*' --glob '!*dist/*'

Length of output: 119

---

265-265: Verify compatibility of Helm Schema version update.

The HELM_SCHEMA_VERSION has been updated to v1.5.2. Ensure that there are no breaking changes affecting your Helm schema usage.

Run the following script to check for potential breaking changes:

---

261-261: Verify compatibility of Kind version update.

The KIND_VERSION has been updated to v0.24.0. Ensure that there are no breaking changes affecting your Kind setup.

Run the following script to check for potential breaking changes:

---

256-256: Verify compatibility of Controller Tools version update.

The CONTROLLER_TOOLS_VERSION has been updated to v0.16.1. Ensure that there are no breaking changes affecting your controller tools usage.

Run the following script to check for potential breaking changes:

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 020f32f and 95b8526.

Files ignored due to path filters (2)

• go.sum is excluded by !**/*.sum
• site/package-lock.json is excluded by !**/package-lock.json

Files selected for processing (10)

• .github/workflows/docker-publish.yaml (1 hunks)
• .github/workflows/make-test-e2e.yaml (1 hunks)
• .github/workflows/make-test.yaml (1 hunks)
• .github/workflows/nilaway-lint.yaml (1 hunks)
• .github/workflows/pre-commit.yaml (1 hunks)
• .github/workflows/release-assets.yaml (1 hunks)
• Dockerfile (1 hunks)
• Makefile (3 hunks)
• go.mod (2 hunks)
• site/package.json (1 hunks)

Files skipped from review due to trivial changes (1)

• Makefile

Files skipped from review as they are similar to previous changes (9)

• .github/workflows/docker-publish.yaml
• .github/workflows/make-test-e2e.yaml
• .github/workflows/make-test.yaml
• .github/workflows/nilaway-lint.yaml
• .github/workflows/pre-commit.yaml
• .github/workflows/release-assets.yaml
• Dockerfile
• go.mod
• site/package.json

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 95b8526 and 86cd689.

Files ignored due to path filters (2)

• go.sum is excluded by !**/*.sum
• site/package-lock.json is excluded by !**/package-lock.json

Files selected for processing (10)

• .github/workflows/docker-publish.yaml (1 hunks)
• .github/workflows/make-test-e2e.yaml (1 hunks)
• .github/workflows/make-test.yaml (1 hunks)
• .github/workflows/nilaway-lint.yaml (1 hunks)
• .github/workflows/pre-commit.yaml (1 hunks)
• .github/workflows/release-assets.yaml (1 hunks)
• Dockerfile (1 hunks)
• Makefile (3 hunks)
• go.mod (2 hunks)
• site/package.json (1 hunks)

Files skipped from review due to trivial changes (2)

• .github/workflows/make-test.yaml
• Makefile

Files skipped from review as they are similar to previous changes (8)

• .github/workflows/docker-publish.yaml
• .github/workflows/make-test-e2e.yaml
• .github/workflows/nilaway-lint.yaml
• .github/workflows/pre-commit.yaml
• .github/workflows/release-assets.yaml
• Dockerfile
• go.mod
• site/package.json

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 86cd689 and b445cf3.

Files ignored due to path filters (2)

• go.sum is excluded by !**/*.sum
• site/package-lock.json is excluded by !**/package-lock.json

Files selected for processing (10)

• .github/workflows/docker-publish.yaml (1 hunks)
• .github/workflows/make-test-e2e.yaml (1 hunks)
• .github/workflows/make-test.yaml (1 hunks)
• .github/workflows/nilaway-lint.yaml (1 hunks)
• .github/workflows/pre-commit.yaml (1 hunks)
• .github/workflows/release-assets.yaml (1 hunks)
• Dockerfile (1 hunks)
• Makefile (3 hunks)
• go.mod (2 hunks)
• site/package.json (1 hunks)

Files skipped from review due to trivial changes (4)

• .github/workflows/docker-publish.yaml
• .github/workflows/make-test.yaml
• .github/workflows/release-assets.yaml
• site/package.json

Files skipped from review as they are similar to previous changes (5)

• .github/workflows/make-test-e2e.yaml
• .github/workflows/nilaway-lint.yaml
• .github/workflows/pre-commit.yaml
• Dockerfile
• Makefile

Additional comments not posted (22)

go.mod (22)

9-9: LGTM!

The update from github.com/onsi/ginkgo/v2 v2.19.0 to v2.20.2 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

10-10: LGTM!

The update from github.com/onsi/gomega v1.33.1 to v1.34.2 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

11-11: LGTM!

The update from github.com/spf13/cobra v1.7.0 to v1.8.1 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

14-14: LGTM!

The update from go.etcd.io/etcd/client/v3 v3.5.14 to v3.5.15 is a patch version change and should include bug fixes and minor improvements without breaking changes.

---

15-15: LGTM!

The update from k8s.io/api v0.30.2 to v0.31.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

16-16: LGTM!

The update from k8s.io/apimachinery v0.30.2 to v0.31.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

17-17: LGTM!

The update from k8s.io/client-go v0.30.2 to v0.31.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

24-24: LGTM!

The update from github.com/cespare/xxhash/v2 v2.2.0 to v2.3.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

32-32: LGTM!

The update from github.com/fxamacker/cbor/v2 v2.6.0 to v2.7.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

36-36: LGTM!

The update from github.com/go-openapi/swag v0.22.3 to v0.22.4 is a patch version change and should include bug fixes and minor improvements without breaking changes.

---

44-44: LGTM!

The update from github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 to v0.0.0-20240827171923-fa2c70bbbfe5 is a patch version change and should include bug fixes and minor improvements without breaking changes.

---

55-55: LGTM!

The update from github.com/moby/spdystream v0.2.0 to v0.4.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

62-62: LGTM!

The update from github.com/prometheus/client_golang v1.18.0 to v1.19.1 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

63-63: LGTM!

The update from github.com/prometheus/client_model v0.5.0 to v0.6.1 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

73-73: LGTM!

The update from go.etcd.io/etcd/api/v3 v3.5.14 to v3.5.15 is a patch version change and should include bug fixes and minor improvements without breaking changes.

---

74-74: LGTM!

The update from go.etcd.io/etcd/client/pkg/v3 v3.5.14 to v3.5.15 is a patch version change and should include bug fixes and minor improvements without breaking changes.

---

77-77: LGTM!

The update from golang.org/x/exp v0.0.0-20230905200255-921286631fa9 to v0.0.0-20240719175910-8a7402abbf56 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

78-78: LGTM!

The update from golang.org/x/net v0.25.0 to v0.28.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

79-79: LGTM!

The update from golang.org/x/oauth2 v0.18.0 to v0.21.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

80-80: LGTM!

The update from golang.org/x/sys v0.20.0 to v0.24.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

81-81: LGTM!

The update from golang.org/x/term v0.20.0 to v0.23.0 is a minor version change and should include new features, improvements, and bug fixes without breaking changes.

---

72-72: Verify the necessity and usage of the new dependency.

The addition of github.com/x448/float16 v0.8.4 should be reviewed to ensure it is necessary and does not introduce any issues.

Run the following script to verify the usage of the new dependency:

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between b445cf3 and 9ac092d.

Files ignored due to path filters (2)

• go.sum is excluded by !**/*.sum
• site/package-lock.json is excluded by !**/package-lock.json

Files selected for processing (10)

• .github/workflows/docker-publish.yaml (1 hunks)
• .github/workflows/make-test-e2e.yaml (1 hunks)
• .github/workflows/make-test.yaml (1 hunks)
• .github/workflows/nilaway-lint.yaml (1 hunks)
• .github/workflows/pre-commit.yaml (1 hunks)
• .github/workflows/release-assets.yaml (1 hunks)
• Dockerfile (1 hunks)
• Makefile (3 hunks)
• go.mod (2 hunks)
• site/package.json (1 hunks)

Files skipped from review due to trivial changes (3)

• .github/workflows/docker-publish.yaml
• .github/workflows/make-test.yaml
• site/package.json

Files skipped from review as they are similar to previous changes (7)

• .github/workflows/make-test-e2e.yaml
• .github/workflows/nilaway-lint.yaml
• .github/workflows/pre-commit.yaml
• .github/workflows/release-assets.yaml
• Dockerfile
• Makefile
• go.mod

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

go.mod (1)

16-21: Kubernetes and Etcd Client Updates:
The updates to go.etcd.io/etcd/client/v3, k8s.io/api, k8s.io/apimachinery, k8s.io/client-go, k8s.io/utils, and inclusion of sigs.k8s.io/controller-runtime (v0.20.3) ensure alignment with newer Kubernetes and etcd APIs. Please review that any interactions with these libraries in your operator remain compatible after these upgrades.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d4b7a25 and 7088170.

⛔ Files ignored due to path filters (2)

• go.sum is excluded by !**/*.sum
• site/package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (13)

• .github/workflows/docker-publish.yaml (2 hunks)
• .github/workflows/helm-publish.yaml (1 hunks)
• .github/workflows/hugo.yaml (1 hunks)
• .github/workflows/make-test-e2e.yaml (1 hunks)
• .github/workflows/make-test.yaml (1 hunks)
• .github/workflows/nilaway-lint.yaml (1 hunks)
• .github/workflows/pre-commit.yaml (1 hunks)
• .github/workflows/release-assets.yaml (1 hunks)
• .github/workflows/release-drafter.yaml (1 hunks)
• Dockerfile (1 hunks)
• Makefile (3 hunks)
• go.mod (2 hunks)
• site/package.json (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (12)

• .github/workflows/hugo.yaml
• Dockerfile
• site/package.json
• .github/workflows/helm-publish.yaml
• .github/workflows/make-test.yaml
• .github/workflows/release-assets.yaml
• .github/workflows/nilaway-lint.yaml
• .github/workflows/release-drafter.yaml
• .github/workflows/pre-commit.yaml
• .github/workflows/docker-publish.yaml
• .github/workflows/make-test-e2e.yaml
• Makefile

⏰ Context from checks skipped due to timeout of 90000ms (1)

• GitHub Check: pre-commit

🔇 Additional comments (16)

go.mod (16)

3-5: Go Version and Toolchain Update:
The Go version directive has been updated to go 1.23.0 and a new toolchain directive (toolchain go1.24.1) has been added. Please ensure that all associated build and CI workflows have been updated accordingly to use the new Go toolchain.

---

11-14: Testing & CLI Dependencies Updated:
The dependencies for testing and CLI enhancement—github.com/onsi/ginkgo/v2, github.com/onsi/gomega, github.com/spf13/cobra, and github.com/spf13/pflag—have been updated. Verify that your test suites and CLI commands continue to work seamlessly with these versions.

---

26-26: xxhash Dependency Update:
The github.com/cespare/xxhash/v2 dependency has been updated to version v2.3.0. Though a minor release, ensure that any hash-based functionality in the project is tested for compatibility.

---

32-32: json-patch v5 Upgrade:
The upgrade of github.com/evanphx/json-patch/v5 to v5.9.11 is noted. Confirm that JSON patching operations—if used anywhere in the project—continue to function correctly with this updated library.

---

34-34: CBOR Library Addition/Update:
The indirect dependency for github.com/fxamacker/cbor/v2 is now at version v2.7.0. If your project leverages CBOR encoding/decoding, it’s a good idea to run a focused test to ensure that behavior remains consistent.

---

36-36: OpenAPI JSON Pointer Update:
The github.com/go-openapi/jsonpointer update to v0.21.0 (from the previous version) should bring minor improvements. Verify that any integration relying on JSON pointer functionality remains stable.

---

38-38: OpenAPI Swag Dependency Upgrade:
Updating github.com/go-openapi/swag to v0.23.0 should help keep documentation generation and related tasks up-to-date. Please test any features that depend on this package.

---

43-43: Google Btree Update:
The version for github.com/google/btree is now updated to v1.1.3. Although typically an indirect dependency, it’s good practice to ensure that any performance optimizations leveraging B-trees are still effective.

---

47-47: Google pprof Version Update:
The github.com/google/pprof package has been bumped up to a build identified by a timestamp (v0.0.0-20241210010833-40e02aabc2ad). Please ensure that any profiling or debugging workflows depending on pprof behave as expected.

---

58-58: Moby Spdystream Upgrade:
The dependency for github.com/moby/spdystream has been updated from an older version to v0.5.0. This upgrade may offer improved performance or bug fixes. Confirm that any streaming or multiplexing capabilities remain fully operational.

---

65-68: Prometheus Dependencies Update:
The Prometheus-related dependencies (github.com/prometheus/client_golang to v1.19.1, client_model to v0.6.1, common to v0.55.0, and procfs to v0.15.1) have been updated. These are critical for metrics collection; thorough testing should be done to confirm that your monitoring and alerting setups continue functioning without disruption.

---

75-75: Float16 Library Update:
github.com/x448/float16 has been updated to version v0.8.4. Verify that any numerical conversions or computations relying on this library yield correct results, especially if using lower-precision floating point representations.

---

76-77: Etcd API and Client Package Updates:
Both go.etcd.io/etcd/api/v3 and go.etcd.io/etcd/client/pkg/v3 are now at version v3.5.19. Please ensure there are no regressions in the interaction with etcd, particularly in scenarios that involve critical data storage or retrieval.

---

80-88: Golang.org/x Dependencies Overhaul:
Multiple golang.org/x modules (including exp, net, oauth2, sync, sys, term, text, time, and tools) have been updated. These changes can affect low-level functionality, performance, or OS interactions. A series of regression and integration tests focusing on platform-dependent behavior is highly recommended.

---

91-95: Google and gRPC Libraries Updated:
The updates to google.golang.org/genproto (both API and RPC versions), google.golang.org/grpc (v1.65.0), google.golang.org/protobuf (v1.36.1), and gopkg.in/evanphx/json-patch.v4 (v4.12.0) are critical, as they may impact API communication and data serialization/deserialization. Validate that any gRPC services or protocol buffers used in your project remain fully compatible.

---

100-104:

Details

❓ Verification inconclusive

Kubernetes API Extensions and Related Utilities Upgrade:
The following dependencies have been updated:

• k8s.io/apiextensions-apiserver to v0.32.1
• k8s.io/klog/v2 to v2.130.1
• k8s.io/kube-openapi to a newer timestamp version
• sigs.k8s.io/json and sigs.k8s.io/structured-merge-diff/v4 (now at v4.4.2)
  These upgrades play a crucial role in ensuring that custom resource definitions and API extensions work correctly with your operator. Please perform end-to-end tests to detect any unnoticed incompatibilities with Kubernetes APIs.

---

Action Required: Verify Compatibility of Upgraded Kubernetes Dependencies

The go.mod file now lists the following updated dependencies:

• k8s.io/apiextensions-apiserver v0.32.1
• k8s.io/klog/v2 v2.130.1
• k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f
• sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3
• sigs.k8s.io/structured-merge-diff/v4 v4.4.2

These updates—central to ensuring that custom resource definitions and API extensions function correctly—appear in the final state without any residual or removed code. However, given that some dependencies now reference timestamped versions, it’s essential to run comprehensive end-to-end tests to catch any potential incompatibilities with the Kubernetes API.

Please verify these upgrades in your integration testing environment and ensure that no unexpected runtime issues occur.

[renovate]

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 37 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.22.4 -> 1.25.0
k8s.io/utils	v0.0.0-20240502163921-fe8a2dddb1d0 -> v0.0.0-20251002143259-bc988d571ff4
github.com/cespare/xxhash/v2	v2.2.0 -> v2.3.0
github.com/emicklei/go-restful/v3	v3.11.0 -> v3.12.2
github.com/evanphx/json-patch/v5	v5.9.0 -> v5.9.11
github.com/fsnotify/fsnotify	v1.7.0 -> v1.9.0
github.com/go-openapi/jsonpointer	v0.19.6 -> v0.21.0
github.com/go-openapi/swag	v0.22.3 -> v0.23.0
github.com/google/gnostic-models	v0.6.8 -> v0.7.0
github.com/google/go-cmp	v0.6.0 -> v0.7.0
github.com/google/pprof	v0.0.0-20240424215950-a892ee059fd6 -> v0.0.0-20260115054156-294ebfa9ad83
github.com/gorilla/websocket	v1.5.0 -> v1.5.4-0.20250319132907-e064f32e3674
github.com/moby/spdystream	v0.2.0 -> v0.5.0
github.com/modern-go/reflect2	v1.0.2 -> v1.0.3-0.20250322232337-35a7c28c31ee
github.com/pelletier/go-toml/v2	v2.2.2 -> v2.2.4
github.com/prometheus/client_golang	v1.18.0 -> v1.23.2
github.com/prometheus/client_model	v0.5.0 -> v0.6.2
github.com/prometheus/common	v0.45.0 -> v0.66.1
github.com/prometheus/procfs	v0.12.0 -> v0.16.1
github.com/sagikazarmark/locafero	v0.4.0 -> v0.11.0
github.com/sourcegraph/conc	v0.3.0 -> v0.3.1-0.20240121214520-5f936abd7ae8
github.com/spf13/afero	v1.11.0 -> v1.15.0
github.com/spf13/cast	v1.6.0 -> v1.10.0
go.etcd.io/etcd/api/v3	v3.5.14 -> v3.6.9
go.etcd.io/etcd/client/pkg/v3	v3.5.14 -> v3.6.9
golang.org/x/exp	v0.0.0-20230905200255-921286631fa9 -> v0.0.0-20240719175910-8a7402abbf56
golang.org/x/net	v0.25.0 -> v0.51.0
golang.org/x/oauth2	v0.18.0 -> v0.34.0
golang.org/x/sys	v0.20.0 -> v0.41.0
google.golang.org/genproto/googleapis/api	v0.0.0-20240311132316-a219d84964c2 -> v0.0.0-20251202230838-ff82c1b0f217
google.golang.org/genproto/googleapis/rpc	v0.0.0-20240314234333-6e1732d8331c -> v0.0.0-20251202230838-ff82c1b0f217
google.golang.org/grpc	v1.62.1 -> v1.79.3
google.golang.org/protobuf	v1.33.0 -> v1.36.10
k8s.io/apiextensions-apiserver	v0.30.1 -> v0.35.0
k8s.io/klog/v2	v2.120.1 -> v2.130.1
k8s.io/kube-openapi	v0.0.0-20240228011516-70dd3763d340 -> v0.0.0-20250910181357-589584f1c912
sigs.k8s.io/json	v0.0.0-20221116044647-bc3834ca7abd -> v0.0.0-20250730193827-2d320260d730
sigs.k8s.io/yaml	v1.4.0 -> v1.6.0