Skip to content

chore(deps): bump the all group with 4 updates#1645

Merged
tekton-robot merged 1 commit intomainfrom
dependabot/go_modules/all-b4fd987f98
Apr 28, 2026
Merged

chore(deps): bump the all group with 4 updates#1645
tekton-robot merged 1 commit intomainfrom
dependabot/go_modules/all-b4fd987f98

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 23, 2026
edited
Loading

Bumps the all group with 4 updates: github.com/secure-systems-lab/go-securesystemslib, k8s.io/apimachinery, k8s.io/client-go and k8s.io/code-generator.

Updates github.com/secure-systems-lab/go-securesystemslib from 0.10.0 to 0.11.0

Commits
  • 1ce0aca Merge pull request #153 from secure-systems-lab/context-tests
  • 1fc070d tests: Change context.TODO to use t.Context
  • 6c7f8fc Merge pull request #151 from bobcallaway/mem_optimization
  • 51ce6b1 Merge pull request #152 from secure-systems-lab/dependabot/go_modules/golang....
  • d97f44d chore(deps): bump golang.org/x/crypto from 0.49.0 to 0.50.0
  • e06bffc reduce memory allocation of methods
  • 08e050e Merge pull request #150 from secure-systems-lab/dependabot/github_actions/act...
  • 95341f8 chore(deps): bump actions/setup-go from 6.3.0 to 6.4.0
  • 3999a0d Merge pull request #149 from secure-systems-lab/dependabot/go_modules/golang....
  • f1b55fe ci: Bump Go
  • Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.35.4 to 0.36.0

Commits
  • debe1eb Update dependencies to v0.36.0 tag
  • efb7f26 Merge remote-tracking branch 'origin/master' into release-1.36
  • d966e56 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
  • 79b3632 Merge pull request #137864 from yongruilin/dv-dra-mismatch
  • a8822f7 Add slice and map union member support with tests
  • 7dba2d0 Use IsZero instead of IsNil for union ratcheting check
  • d95710f Fix union validation ratcheting when oldObj is nil
  • 729062d Merge pull request #137849 from bryantbiggs/deps/update-kube-openapi
  • 13b12e6 dependencies: bump kube-openapi to drop ginkgo/gomega indirect deps
  • 27f4670 Merge pull request #136657 from Jefftree/sharding-test
  • Additional commits viewable in compare view

Updates k8s.io/client-go from 0.35.4 to 0.36.0

Commits
  • 1d95f02 Update dependencies to v0.36.0 tag
  • f22a53e Merge remote-tracking branch 'origin/master' into release-1.36
  • a948641 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
  • 7e44ffc Add Workload-Aware Preemption fields to Workload and PodGroup APIs
  • df2d882 Merge pull request #136989 from nojnhuh/podgroup-resourceclaim
  • 4eece52 Workload API: PodGroup ResourceClaims (KEP-5729)
  • 3d35c51 Merge pull request #137190 from everpeace/KEP-5491-alpha
  • 0434117 Merge pull request #137028 from nmn3m/feature/dra-resource-pool-status
  • ba785be Drop CSR analogy, mark ObjectMeta +required,reduce limits (maxItems=500, maxL...
  • 4a9c878 Add ResourcePoolStatusRequest API types and generated code
  • Additional commits viewable in compare view

Updates k8s.io/code-generator from 0.35.4 to 0.36.0

Commits
  • c6258db Update dependencies to v0.36.0 tag
  • a85207c Merge remote-tracking branch 'origin/master' into release-1.36
  • 634d8b3 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
  • a8853d1 Merge pull request #137772 from lalitc375/fix-linter
  • eae1aca Merge pull request #137864 from yongruilin/dv-dra-mismatch
  • 6770f5f Merge pull request #137846 from lalitc375/required-forbidden
  • 9681623 Add slice and map union member support with tests
  • 6c2d782 Add nil OldValue test coverage for union doc_tests
  • f4e4b3a Merge pull request #137849 from bryantbiggs/deps/update-kube-openapi
  • 8a4544d Add tests for validateTrueBeta and ValidateTrueAlpha
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
k8s.io/apimachinery [>= 0.23.a, < 0.24]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the all group with 4 updates
e98b7f7 
Bumps the all group with 4 updates: [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib), [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery), [k8s.io/client-go](https://github.com/kubernetes/client-go) and [k8s.io/code-generator](https://github.com/kubernetes/code-generator).


Updates `github.com/secure-systems-lab/go-securesystemslib` from 0.10.0 to 0.11.0
- [Release notes](https://github.com/secure-systems-lab/go-securesystemslib/releases)
- [Commits](secure-systems-lab/go-securesystemslib@v0.10.0...v0.11.0)

Updates `k8s.io/apimachinery` from 0.35.4 to 0.36.0
- [Commits](kubernetes/apimachinery@v0.35.4...v0.36.0)

Updates `k8s.io/client-go` from 0.35.4 to 0.36.0
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.35.4...v0.36.0)

Updates `k8s.io/code-generator` from 0.35.4 to 0.36.0
- [Commits](kubernetes/code-generator@v0.35.4...v0.36.0)

---
updated-dependencies:
- dependency-name: github.com/secure-systems-lab/go-securesystemslib
  dependency-version: 0.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/apimachinery
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/client-go
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: k8s.io/code-generator
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Used by dependabot - identifies all PRs created by dependabot kind/misc Categorizes issue or PR as a miscellaneuous one. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesnt merit a release note. labels Apr 23, 2026
@tekton-robot tekton-robot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Apr 23, 2026
@anithapriyanatarajan
Copy link
Copy Markdown
Contributor

anithapriyanatarajan commented Apr 28, 2026

/lgtm

@tekton-robot tekton-robot added the lgtm Indicates that a PR is ready to be merged. label Apr 28, 2026
@anithapriyanatarajan
Copy link
Copy Markdown
Contributor

anithapriyanatarajan commented Apr 28, 2026

/approve

@tekton-robot
Copy link
Copy Markdown

tekton-robot commented Apr 28, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: anithapriyanatarajan

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:
  • OWNERS [anithapriyanatarajan]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@tekton-robot tekton-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Apr 28, 2026
@tekton-robot tekton-robot merged commit 2c46f1d into main Apr 28, 2026
20 checks passed
@dependabot dependabot Bot deleted the dependabot/go_modules/all-b4fd987f98 branch April 28, 2026 00:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jkhelil jkhelil Awaiting requested review from jkhelil

@vdemeester vdemeester Awaiting requested review from vdemeester

Assignees

@anithapriyanatarajan anithapriyanatarajan

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. dependencies Used by dependabot - identifies all PRs created by dependabot kind/misc Categorizes issue or PR as a miscellaneuous one. lgtm Indicates that a PR is ready to be merged. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesnt merit a release note. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@anithapriyanatarajan @tekton-robot