Update Go non-major updates by renovate[bot] · Pull Request #1201 · FairwindsOps/insights-plugins

renovate · 2026-05-07T13:45:14Z

This PR contains the following updates:

Package	Change	Type	Update	Pending
github.com/Masterminds/semver/v3	`v3.4.0` → `v3.5.0`	require	minor
github.com/aquasecurity/kube-bench	`v0.15.2` → `v0.15.4`	require	patch	`v0.15.5`
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs	`v1.71.1` → `v1.73.0`	require	minor	`v1.74.0`
github.com/falcosecurity/falcosidekick	`2126879` → `3ec9b2d`	require	digest
github.com/open-policy-agent/opa	`v1.15.2` → `v1.16.2`	require	minor
golang.org/x/mod	`v0.35.0` → `v0.36.0`	require	minor
k8s.io/api	`v0.36.0` → `v0.36.1`	require	patch
k8s.io/apimachinery	`v0.36.0` → `v0.36.1`	require	patch
k8s.io/client-go	`v0.36.0` → `v0.36.1`	require	patch
sigs.k8s.io/controller-runtime	`v0.23.3` → `v0.24.1`	require	minor
sigs.k8s.io/controller-runtime	`v0.24.0` → `v0.24.1`	require	patch

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

Masterminds/semver (github.com/Masterminds/semver/v3)

`v3.5.0`

Compare Source

What's Changed

Adding more prerelease tests by @mattfarina in #273
Update constraint error messages by @mattfarina in #278
Fix edge cases by @mattfarina in #279
Adding some checks in by @mattfarina in #280
Updating deps by @mattfarina in #281
Bump github/codeql-action from 4.35.1 to 4.35.2 by @dependabot[bot] in #282
Bump actions/cache from 4.2.3 to 5.0.5 by @dependabot[bot] in #283
Bump golangci/golangci-lint-action from 7.0.1 to 9.2.0 by @dependabot[bot] in #284
Updating gitignore for devcontainers by @mattfarina in #286
Fixing some quality issues by @mattfarina in #287

New Contributors

@dependabot[bot] made their first contribution in #282

Full Changelog: Masterminds/semver@v3.4.0...v3.5.0

aquasecurity/kube-bench (github.com/aquasecurity/kube-bench)

`v0.15.4`

Changelog

87766d6 ci: free disk space (#2094)

`v0.15.3`

Changelog

9016d5a ci: set up a new runner (#2092)

aws/aws-sdk-go-v2 (github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs)

`v1.73.0`

General Highlights

Dependency Update: Updated to the latest SDK module versions

Module Highlights

github.com/aws/aws-sdk-go-v2: v1.33.0
- Feature: S3 client behavior is updated to always calculate a checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). The checksum algorithm used by default now becomes CRC32. Checksum behavior can be configured using when_supported and when_required options - in code using RequestChecksumCalculation, in shared config using request_checksum_calculation, or as env variable using AWS_REQUEST_CHECKSUM_CALCULATION. The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using when_supported and when_required options - in code using ResponseChecksumValidation, in shared config using response_checksum_validation, or as env variable using AWS_RESPONSE_CHECKSUM_VALIDATION.
github.com/aws/aws-sdk-go-v2/config: v1.29.0
- Feature: S3 client behavior is updated to always calculate a checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). The checksum algorithm used by default now becomes CRC32. Checksum behavior can be configured using when_supported and when_required options - in code using RequestChecksumCalculation, in shared config using request_checksum_calculation, or as env variable using AWS_REQUEST_CHECKSUM_CALCULATION. The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using when_supported and when_required options - in code using ResponseChecksumValidation, in shared config using response_checksum_validation, or as env variable using AWS_RESPONSE_CHECKSUM_VALIDATION.
github.com/aws/aws-sdk-go-v2/service/apigateway: v1.28.6
- Documentation: Documentation updates for Amazon API Gateway
github.com/aws/aws-sdk-go-v2/service/bedrockagentruntime: v1.32.0
- Feature: Now supports streaming for inline agents.
github.com/aws/aws-sdk-go-v2/service/cognitoidentity: v1.28.0
- Feature: corrects the dual-stack endpoint configuration
github.com/aws/aws-sdk-go-v2/service/internal/checksum: v1.5.0
- Feature: S3 client behavior is updated to always calculate a checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). The checksum algorithm used by default now becomes CRC32. Checksum behavior can be configured using when_supported and when_required options - in code using RequestChecksumCalculation, in shared config using request_checksum_calculation, or as env variable using AWS_REQUEST_CHECKSUM_CALCULATION. The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using when_supported and when_required options - in code using ResponseChecksumValidation, in shared config using response_checksum_validation, or as env variable using AWS_RESPONSE_CHECKSUM_VALIDATION.
github.com/aws/aws-sdk-go-v2/service/partnercentralselling: v1.3.0
- Feature: Add Tagging support for ResourceSnapshotJob resources
github.com/aws/aws-sdk-go-v2/service/s3: v1.73.0
- Feature: S3 client behavior is updated to always calculate a checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). The checksum algorithm used by default now becomes CRC32. Checksum behavior can be configured using when_supported and when_required options - in code using RequestChecksumCalculation, in shared config using request_checksum_calculation, or as env variable using AWS_REQUEST_CHECKSUM_CALCULATION. The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using when_supported and when_required options - in code using ResponseChecksumValidation, in shared config using response_checksum_validation, or as env variable using AWS_RESPONSE_CHECKSUM_VALIDATION.
- Feature: This change enhances integrity protections for new SDK requests to S3. S3 SDKs now support the CRC64NVME checksum algorithm, full object checksums for multipart S3 objects, and new default integrity protections for S3 requests.
github.com/aws/aws-sdk-go-v2/service/securityir: v1.1.0
- Feature: Increase minimum length of Threat Actor IP 'userAgent' to 1.
github.com/aws/aws-sdk-go-v2/service/sesv2: v1.41.0
- Feature: This release introduces a new recommendation in Virtual Deliverability Manager Advisor, which detects elevated complaint rates for customer sending identities.
github.com/aws/aws-sdk-go-v2/service/workspaces: v1.52.0
- Feature: Added GeneralPurpose.4xlarge & GeneralPurpose.8xlarge ComputeTypes.
github.com/aws/aws-sdk-go-v2/service/workspacesthinclient: v1.11.0
- Feature: Mark type in MaintenanceWindow as required.

`v1.72.0`

General Highlights

Dependency Update: Updated to the latest SDK module versions

Module Highlights

github.com/aws/aws-sdk-go-v2/service/ecs: v1.53.2
- Documentation: Adding SDK reference examples for Amazon ECS operations.
github.com/aws/aws-sdk-go-v2/service/route53domains: v1.28.2
- Documentation: Doc only update for Route 53 Domains that fixes several customer-reported issues
github.com/aws/aws-sdk-go-v2/service/s3: v1.72.0
- Feature: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change.

open-policy-agent/opa (github.com/open-policy-agent/opa)

`v1.16.2`

Compare Source

This release updates the version of Go used to build the OPA binaries and images to 1.26.3;
addressing a number of vulnerabilities.

`v1.16.1`

Compare Source

This is a patch release addressing a regression in the plugin manager that may cause the service to hang on shutdown (#8590).

`v1.16.0`

Compare Source

[!WARNING]

A regression has been found in the plugin manager, which may cause the service to hang on shutdown.
Users are advised to go directly to v1.16.1.

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

New uri.parse and uri.is_valid built-in functions
Data API Request/Response Metadata
Prometheus metrics exported via OTLP
Formatter improvements

NOTE:

In v1.15.x, OPA was dropping logs for bundle downloads, print() calls and other plugin-originated logs.
Users are advised to update, v1.16.0 fixes this bug in (#8544).

New `uri.parse` and `uri.is_valid` built-in functions (#8263)

Two new built-in functions have been added: uri.parse for parsing a given URI, and uri.is_valid for verifying the structure of a given URI.

uri.parse

Parses a URI and returns an object containing its components according to RFC 3986. Empty components are omitted.

package example

test_uri if {
	uri.parse("https://example.com:8080/api?q=1#top") == {
		"scheme": "https",
		"hostname": "example.com",
		"port": "8080",
		"path": "/api",
		"raw_path": "/api",
		"raw_query": "q=1",
		"fragment": "top",
	}
}

uri.is_valid

Returns true if the input can be parsed as a URI, false otherwise.

package example

deny contains "invalid URI" if {
    not uri.is_valid("http://[invalid")
}

Authored by @charlieegan3 reported by @anivar

Data API Request/Response Metadata (#8570)

Wrapping projects can now attach custom metadata to Data API requests and have evaluation produce response metadata.

Two distinct metadata paths are introduced:

Request metadata: parsed from extra top-level keys in the request body, made available to builtins via BuiltinContext.RequestMetadata. Logged in the decision log under Custom["request_metadata"].
Response metadata: a separate map (BuiltinContext.ResponseMetadata) that builtins can populate during evaluation. Only included in the API response and decision log if non-empty.

In vanilla OPA, no builtins write response metadata, so responses are unchanged. The request metadata map is only allocated when the request carries extra fields; the response map is one empty map per request.

To avoid conflicts with future OPA top-level keys, callers should use a namespaced key: {"input": {...}, "com.example.opa/md": {...}}.

Request with metadata:

curl -H 'Content-Type: application/json' \
  -d '{"input": {"user": "alice"}, "com.example.opa/metadata": {"corp-id": "acme-42"}}' \
  http://localhost:8181/v1/data/example/allow

Response (response metadata included if, for example, set by a custom builtin):

{
  "decision_id": "04789f85-de5a-477b-8aa5-6d59d7742135",
  "result": true,
  "com.example.opa/response": {
    "snapshot_version": "v3"
  }
}

Decision log entry:

{
  "custom": {
    "request_metadata": {
      "com.example.opa/metadata": {
        "corp-id": "acme-42"
      }
    },
    "response_metadata": {
      "com.example.opa/response": {
        "snapshot_version": "v3"
      }
    }
  },
  "decision_id": "04789f85-de5a-477b-8aa5-6d59d7742135",
  "input": { "user": "alice" },
  "msg": "Decision Log",
  "path": "example/allow",
  "result": true
}

Authored by @srenatus

Runtime, SDK, Tooling

distributedtracing: Export Prometheus metrics via OTLP (#7591) reported and authored by @Munken
cmd,tester: Update opa test to stream test case results (#3676) authored by @sspaink reported by @tsandall
cmd,tester: Show full errors when test fails and using --coverage (#8438) authored by @grosser
format: Add new line between METADATA blocks (#8483) authored by @sspaink
format: Allow indenting all withs in expression (#8508) authored by @anderseknert
format: Fix dropping comments after handling unexpectedCommentError (#8553) authored by @sspaink
format: Preserve location of trailing comments inside every body (#8558) authored by @johanfylling
format: Prevent opa fmt from formatting single attribute objects with comments (#7565) authored by @sspaink reported by @anderseknert
logging: Keep forwarding from BufferedLogger after Flush() (#8544) authored by @srenatus reported by @annieyhuang
plugins/logs: Fix logBuffer eviction loop only dropping one element (#8543) authored by @sspaink
plugins/logs: Fix out-of-order plugin status notifications (#8009) authored by @sspaink reported by @Pushpalanka
plugins/rest: Carry over all of *tls.Config (#8473) authored by @srenatus reported by @ashu2496
server: Drop HTML index page query form (#8477) authored by @johanfylling reported by @srenatus and @r0binak
server: Skip chmod for abstract Unix domain sockets (#8536) authored by @bakayolo
storage/inmem: Avoid allocations from Read() in MakeDir() (#8561) authored by @srenatus
tester: Add method to match tests by ref prefixes (#6696) authored by @anderseknert
Note: Experimental.

Compiler, Topdown and Rego

ast: Allow Back-to-back metadata blocks (#8482) authored by @sspaink reported by @johanfylling
ast: Catch functions in dynamic extent of ref head rule (#8461) authored by @srenatus reported by @johanfylling
ast: Fix parenthesis in String() of {obj,arr,set} comprehensions (#8511) authored by @srenatus
ast: Fix parsing of unary - in front of a ref (#5014) authored by @mmzzuu reported by @philipaconrad
ast: Fix type checker match error for objects with set keys (#6260) authored by @sspaink reported by @tsandall
ast: Fix type checker to recognize numeric index in generated map (#6736) authored by @sspaink reported by @anderseknert
ast: Handle underdetermined function args (#5234) authored by @sspaink reported by @obataku
ast: Identify compatible type from reference in type checker (#7273) authored by @sspaink reported by @anderseknert
ast: Support recursive JSON Schemas (#6099) authored by @sspaink reported by @anderseknert
builtins: Add support for days, weeks and years in time.parse_duration_ns built-in function (#2719) authored by @sspaink reported by @freeseacher
builtins: Fix graph.reachable_paths to return all reachable paths (#5871) authored by @davidmarne-wf reported by @ericjkao
builtins: Limit exponent size in units.parse_bytes built-in function to prevent timeout bypass (#8326) authored by @isaiahvita reported by @anderseknert
perf: Add CopyNonGround() methods for Array, Set, and Object (#8323) authored by @alex60217101990
resolver/wasm: Add NewWithContext to allow passing context (#8499) authored by @dominikschulz

Docs, Website, Ecosystem

docs: Add aggregates examples for count and sum built-in functions (#8566) authored by @alliasgher reported by @srenatus
docs: Add generated output.jsons for docs examples (#8535) authored by @charlieegan3
docs: Add spec for OCP bundle status tracking API (#8502) authored by @ashutosh-narkar
docs: Add the latest videos to the README presentations section (#8523) authored by @sspaink
docs: Add Windows development notes to dev reference guide (#8422) authored by @raajheshkannaa
docs: Fix input value type in not undefined example (#8580) authored by @menma1234
docs: Update Regal docs to v0.40.0 (#8538) authored by @charlieegan3
docs: Updated roadmap link (#8501) authored by @johanfylling
docs: Various typo fixes (#8529) authored by @sspaink
ecosystem: Add vulnetix ecosystem entry (#8532) authored by @0x73746F66
ecosystem: Add KubeStellar Console (#8560) authored by @clubanderson
website: Add banner to show when event has passed (#8493) authored by @charlieegan3
website: Add copy-as-markdown button to doc pages (#8540) authored by @charlieegan3
website: Copy button improvements (#8577) authored by @charlieegan3
website: Remove old redirects, add new management redirect (#8424) authored by @charlieegan3 reported by @narainar
website: Update intro video on homepage (#8547) authored by @charlieegan3

Miscellaneous

build: Exclude domains that cause false positives (#8533) (#8495) authored by @charlieegan3
e2e/cli: Add test for debug print() logging (#8567) authored by @srenatus
e2e/cli: Start CLI E2E tests (#8545) authored by @srenatus
github: declare formatted rego as rego (#8564) authored by @srenatus
Security policy update (#8479) authored by @anderseknert
Dependency updates; notably:
- build: bump go 1.26.2 (#8497) authored by @sspaink
- build(deps): bump wasmtime-go from v39.0.1 to v43.0.2
- build(deps): bump go.opentelemetry.io deps from 1.40.0/0.65.0 to 1.43.0/0.68.0
- build(deps): bump github.com/containerd/containerd/v2 from 2.2.1 to 2.2.3
- build(deps): bump ithub.com/huandu/go-sqlbuilder from 1.39.1 to 1.40.2
- build(deps): bump golang.org/x/net from 0.51.0 to 0.53.0
- build(deps): bump golang.org/x/text from 0.34.0 to 0.36.0

kubernetes/api (k8s.io/api)

`v0.36.1`

Compare Source

kubernetes/apimachinery (k8s.io/apimachinery)

`v0.36.1`

Compare Source

kubernetes/client-go (k8s.io/client-go)

`v0.36.1`

Compare Source

kubernetes-sigs/controller-runtime (sigs.k8s.io/controller-runtime)

`v0.24.1`

Compare Source

What's Changed

[release-0.24] 🐛 Fix regression in Apply typed error handling by @k8s-infra-cherrypick-robot in #3516

Full Changelog: kubernetes-sigs/controller-runtime@v0.24.0...v0.24.1

`v0.24.0`

Compare Source

⚠️ Breaking Changes

Dependencies: Update to k8s.io/* v1.36 (#3506 #3462 #3486 #3450)

🐛 Bug Fixes

Cache: Fix IndexField blocking until informer is synced (#3445)
Cache: Wait for cache sync when ReaderFailOnMissingInformer is true (#3425)
Client: Update typed ApplyConfigurations with server response (#3475)
Fakeclient: Fix SSA status patch resource version check (#3443)
Fakeclient: Fix panic when using CRs with embedded pointer structs (#3431)
Fakeclient: Fix status apply if existing object has managedFields set (#3430)
Fakeclient: Retry GenerateName on AlreadyExists collisions (#3498)
HTTP servers: Wire up base context into http servers (#3452)

🌱 Others

Builder/Webhooks: Remove deprecated custom path function (#3465)
Cache: Test cache reader waits for cache sync (#3434)
Certwatcher: Deflake certwatcher tests (#3457)
Dependencies: Use forked version of btree (#3449)
Envtest: Ensure envtest stops the whole process group (#3447)
Logging: Add missing space in zap-log-level flag description (#3492)
Misc: Adopt new(x) over ptr.To(x) and re-enable newexpr lint (#3489)
Owners: Cleanup (#3453)
Recorder: Add logger into context for structured logging (#3454)
Recorder: Switch to StartLogging for event debug logs (#3451)
Scheme: Deprecate the scheme builder (#3461)
Source/Kind: Improve logging for dynamic type kind source (#3494)
Webhooks: Reduce memory usage of default webhooks (#3463 #3468)

🌱 CI & linters

Chore: Update golangci-lint version to v2.8.0 (#3448)
Chore: Update golangci-lint version to v2.10.1 (#3470)
Chore: Update golangci-lint version to v2.11.3 (#3482)
Migrate away from custom GitHub action approval workflow (#3491)
Release: Auto-create git tags for the tools/setup-envtest submodule (#3476)

📖 Additionally, there has been 1 contribution to our documentation. (#3477)

Dependencies

Added

github.com/cenkalti/backoff/v5: v5.0.3
gonum.org/v1/gonum: v0.16.0
k8s.io/streaming: v0.36.0

Changed

cel.dev/expr: v0.24.0 → v0.25.1
cloud.google.com/go/compute/metadata: v0.6.0 → v0.9.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp: v1.26.0 → v1.30.0
github.com/alecthomas/units: b94a6e3 → 0f3dac3
github.com/cncf/xds/go: 2f00578 → ee656c7
github.com/coreos/go-oidc: v2.3.0+incompatible → v2.5.0+incompatible
github.com/coreos/go-systemd/v22: v22.5.0 → v22.7.0
github.com/davecgh/go-spew: v1.1.1 → d8f796a
github.com/emicklei/go-restful/v3: v3.12.2 → v3.13.0
github.com/envoyproxy/go-control-plane/envoy: v1.32.4 → v1.36.0
github.com/envoyproxy/go-control-plane: v0.13.4 → v0.14.0
github.com/envoyproxy/protoc-gen-validate: v1.2.1 → v1.3.0
github.com/go-jose/go-jose/v4: v4.0.4 → v4.1.3
github.com/golang-jwt/jwt/v5: v5.2.2 → v5.3.0
github.com/golang/glog: v1.2.4 → v1.2.5
github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus: v1.0.1 → v1.1.0
github.com/grpc-ecosystem/go-grpc-middleware/v2: v2.3.0 → v2.3.3
github.com/grpc-ecosystem/grpc-gateway/v2: v2.26.3 → v2.27.7
github.com/moby/spdystream: v0.5.0 → v0.5.1
github.com/onsi/ginkgo/v2: v2.27.2 → v2.27.4
github.com/onsi/gomega: v1.38.2 → v1.39.0
github.com/pmezard/go-difflib: v1.0.0 → 5d4384e
github.com/prometheus/common: v0.66.1 → v0.67.5
github.com/prometheus/procfs: v0.16.1 → v0.19.2
github.com/spf13/cobra: v1.10.0 → v1.10.2
github.com/spiffe/go-spiffe/v2: v2.5.0 → v2.6.0
go.etcd.io/etcd/api/v3: v3.6.5 → v3.6.8
go.etcd.io/etcd/client/pkg/v3: v3.6.5 → v3.6.8
go.etcd.io/etcd/client/v3: v3.6.5 → v3.6.8
go.etcd.io/etcd/pkg/v3: v3.6.5 → v3.6.8
go.etcd.io/etcd/server/v3: v3.6.5 → v3.6.8
go.opentelemetry.io/auto/sdk: v1.1.0 → v1.2.1
go.opentelemetry.io/contrib/detectors/gcp: v1.34.0 → v1.39.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc: v0.60.0 → v0.65.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp: v0.61.0 → v0.65.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc: v1.34.0 → v1.40.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace: v1.34.0 → v1.40.0
go.opentelemetry.io/otel/metric: v1.36.0 → v1.41.0
go.opentelemetry.io/otel/sdk/metric: v1.36.0 → v1.40.0
go.opentelemetry.io/otel/sdk: v1.36.0 → v1.40.0
go.opentelemetry.io/otel/trace: v1.36.0 → v1.41.0
go.opentelemetry.io/otel: v1.36.0 → v1.41.0
go.opentelemetry.io/proto/otlp: v1.5.0 → v1.9.0
go.uber.org/zap: v1.27.0 → v1.27.1
golang.org/x/crypto: v0.45.0 → v0.47.0
golang.org/x/exp: 8a7402a → 944ab1f
golang.org/x/mod: v0.29.0 → v0.32.0
golang.org/x/net: v0.47.0 → v0.49.0
golang.org/x/oauth2: v0.30.0 → v0.34.0
golang.org/x/sync: v0.18.0 → v0.19.0
golang.org/x/sys: v0.38.0 → v0.40.0
golang.org/x/telemetry: 078029d → bd525da
golang.org/x/term: v0.37.0 → v0.39.0
golang.org/x/text: v0.31.0 → v0.33.0
golang.org/x/time: v0.9.0 → v0.14.0
golang.org/x/tools/go/expect: v0.1.0-deprecated → v0.1.1-deprecated
golang.org/x/tools: v0.38.0 → v0.41.0
google.golang.org/genproto/googleapis/api: a0af3ef → 8636f87
google.golang.org/genproto/googleapis/rpc: 200df99 → 8636f87
google.golang.org/grpc: v1.72.2 → v1.79.3
google.golang.org/protobuf: v1.36.8 → f2248ac
k8s.io/api: v0.35.0 → v0.36.0
k8s.io/apiextensions-apiserver: v0.35.0 → v0.36.0
k8s.io/apimachinery: v0.35.0 → v0.36.0
k8s.io/apiserver: v0.35.0 → v0.36.0
k8s.io/client-go: v0.35.0 → v0.36.0
k8s.io/code-generator: v0.35.0 → v0.36.0
k8s.io/component-base: v0.35.0 → v0.36.0
k8s.io/klog/v2: v2.130.1 → v2.140.0
k8s.io/kms: v0.35.0 → v0.36.0
k8s.io/kube-openapi: 589584f → 43fb72c
k8s.io/utils: bc988d5 → b8788ab
sigs.k8s.io/apiserver-network-proxy/konnectivity-client: v0.31.2 → v0.34.0
sigs.k8s.io/structured-merge-diff/v6: v6.3.0 → v6.3.2

Removed

github.com/cenkalti/backoff/v4: v4.3.0
github.com/gregjones/httpcache: 901d907
github.com/grpc-ecosystem/go-grpc-prometheus: v1.2.0
github.com/zeebo/errs: v1.4.0
golang.org/x/xerrors: 9bdfabe

Thanks to all our contributors! 😊

Configuration

📅 Schedule: (UTC)

Branch creation
- At any time (no schedule defined)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate · 2026-05-07T13:45:17Z