gomod(deps): bump github.com/gardener/gardener from 1.67.2 to 1.72.0 in /components/kyma-metrics-collector

[dependabot]

Bumps github.com/gardener/gardener from 1.67.2 to 1.72.0.

Release notes

Sourced from github.com/gardener/gardener's releases.

v1.72.0

[gardener]

⚠️ Breaking Changes

• [USER] The core/v1alpha1 API version is dropped. (gardener/gardener#7965, @​ary1992)
• [USER] The alpha.featuregates.shoot.gardener.cloud/apiserver-sni-pod-injector annotation has been dropped and is no longer available for Shoots. It should be removed from all existing Shoot resources. (gardener/gardener#7980, @​rfranzke)
• [USER] Any resource with a kind other than ConfigMap or Secret in .spec.resources in Shoots is now forcefully removed. New validation has been introduced to prevent adding other resources in the future. (gardener/gardener#7995, @​acumino)
• [USER] Webhooks remediator now sets the timeoutSeonds to 3 seconds for webhook affecting lease resources in kube-system namespace. (gardener/gardener#7902, @​acumino)
• [OPERATOR] ⚠️ Seeds' .spec.settings.ownerChecks.enabled field is locked to false (i.e. if the field value is true a validation error will be returned). Before updating to this version of Gardener, set .spec.settings.ownerChecks.enabled field to false for you Seeds and ManagedSeeds. (gardener/gardener#7909, @​dimitar-kostadinov)
• [OPERATOR] It is required to have ControllerRegistrationss for Kinds ControlPlane, Infrastructure and Worker with the same types used for seeds (seed.spec.provider.type). This is already the case if seeds and shoots share the same cloud provider. The seed reconciliation flow waits for the associated ControllerInstallation to be ready before continuing rolling out seed system components. It allows Gardener provider extensions to ship components that not only act on shoot control-plane but also on seed system components. (gardener/gardener#7928, @​timuthy)
• [DEPENDENCY] The {github.com/gardener/gardener/pkg/apis/core/helper,github.com/gardener/gardener/pkg/apis/core/v1beta1/helper}.SeedSettingOwnerChecksEnabled will now return false if the corresponding Seed setting is nil. Previously, the func was returning true when the Seed setting is nil. (gardener/gardener#7909, @​dimitar-kostadinov)
• [DEPENDENCY] The unused github.com/gardener/gardener/pkg/controllerutils/predicate.IsBeingMigratedPredicate, github.com/gardener/gardener/pkg/controllerutils/predicate.IsObjectBeingMigrated and github.com/gardener/gardener/pkg/utils/gardener.IsObjectBeingMigrated funcs are now removed. (gardener/gardener#7909, @​dimitar-kostadinov)

✨ New Features

• [USER] The certificate chains served by kube-apiservers does now include the CA certificates used to sign their server certificates. (gardener/gardener#7961, @​rfranzke)
• [OPERATOR] gardener-operator configures SNI components in order to expose the virtual-garden-kube-apiserver via the istio-ingressgateway in the Garden cluster. (gardener/gardener#7953, @​timuthy)
  • With this change, operators can start to switch DNS records from the virtual-garden-kube-apiserver service to the istio-ingress service endpoint. The type of the virtual-garden-kube-apiserver service will soon be switched from LoadBalancer to ClusterIP.
• [DEVELOPER] When performing control plane migration with provider-local, the full migration and restoration logic implemented in the extensions library (generic Worker actuator) is now executed (previously, it was skipped). This improves the accuracy of the e2e tests for control plane migration. (gardener/gardener#7981, @​rfranzke)

🐛 Bug Fixes

• [USER] A bug that prevented referencing ConfigMaps in .spec.resources in Shoots has been fixed. (gardener/gardener#7995, @​acumino)
• [USER] A bug that prevented finalizers from being added to referenced Secrets or ConfigMaps in .spec.resources in Shoots has been fixed. (gardener/gardener#7995, @​acumino)
• [OPERATOR] The NetworkPolicy reconciler is only added to gardener-operator if the .spec.runtimeCluster.networking.{pods,services} fields of the Garden are set. (gardener/gardener#7983, @​shafeeqes)
• [OPERATOR] Several low timeouts (30s) that were introduced in v1.71.0 for several steps are now reverted as in some cases the Network/ControlPlane reconciliation cannot succeed for 30s. (gardener/gardener#8005, @​ialidzhikov)

🏃 Others

• [OPERATOR] A configuration issue that resulted in a relatively slow startup and termination of the vali pods is fixed. (gardener/gardener#7979, @​istvanballok)
• [OPERATOR] Add new grafana dashboard of seed deployment replicas (gardener/gardener#7896, @​Sallyan)

[dependency-watchdog]

🏃 Others

• [OPERATOR] More categories are added to label a release note for a PR on DWD. (gardener/dependency-watchdog#75, @​himanshu-kun)
  • Release notifications would now be sent to gardener-dwd channel (private) on releases.
• [OPERATOR] Probes will not be created for shoots with no workers. (gardener/dependency-watchdog#82, @​unmarshall)
• [OPERATOR] Fixes for make check target (gardener/dependency-watchdog#87, @​unmarshall)
• [DEPENDENCY] Following dependencies are updated: (gardener/dependency-watchdog#84, @​unmarshall)
  • Go - 1.20.3
  • client-go - v0.26.2
  • controller-runtime - v0.14.5
  • gomega - v1.27.1
  • zap - v1.24.0
  • gardener/gardener v1.69.0
  • k8s (api and apimachinery) - v0.26.2

[etcd-backup-restore]

🐛 Bug Fixes

• [OPERATOR] Fixes a bug in backup-restore which falsely detects scale-up scenario incase of rolling update of statefulset. (gardener/etcd-backup-restore#614, @​ishan16696)

🏃 Others

• [OPERATOR] Base alpine image upgraded from 3.15.7 to 3.15.8 (gardener/etcd-backup-restore#612, @​aaronfern)
• [OPERATOR] Add a learner with backoff in case of scale-up feature is triggered. (gardener/etcd-backup-restore#617, @​ishan16696)
• [OPERATOR] Added a safety check before adding a learner(non-voting) member in etcd cluster. (gardener/etcd-backup-restore#605, @​ishan16696)
• [DEVELOPER] Upgrade to go 1.20.3 (gardener/etcd-backup-restore#613, @​shreyas-s-rao)
• [DEVELOPER] Block public access for S3 buckets created by integration tests. (gardener/etcd-backup-restore#615, @​shreyas-s-rao)

[etcd-custom-image]

🏃 Others

• [OPERATOR] Base alpine image for etcd-custom-image upgraded from 3.15.7 to 3.15.8 (gardener/etcd-custom-image#32, @​aaronfern)

... (truncated)

Commits

• e5e7de3 Release v1.72.0
• 27b76d8 Validate that only Secret and ConfigMap can be referenced in `.spec.resou...
• a377725 Fix nits for test suites in pkg/component (#8007)
• 5eea9f2 Remediate webhooks affecting lease resource in kube-system namespace with tim...
• 25aec5e Deploy Etcd CRDs independent of Etcd bootstrap (#8002)
• 7b1c01f Revert recently introduced low timeouts for several steps (#8005)
• bc92d92 [Workerless Shoots] Add upgrade tests (#7948)
• 80d8748 Enhance Decoder to cope with plaintext (#7993)
• e85964a Cleanup core\v1alpha1 from local-setup (#8000)
• f6bed26 [operator] Expose kube-apiserver via Istio (#7953)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The following labels could not be found: go, skip-review, area/dependency.

[dependabot]

Superseded by #311.