Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update all github action dependencies (v1.15) #30951

Merged
merged 1 commit into from Feb 26, 2024
Merged

chore(deps): update all github action dependencies (v1.15) #30951

merged 1 commit into from Feb 26, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Feb 26, 2024

Mend Renovate

This PR contains the following updates:

Package Type Update Change
azure/login action minor v1.5.1 -> v1.6.1
cilium/scale-tests-action action digest 8a522b9 -> 238d773
dorny/paths-filter action major v2.11.1 -> v3.0.1
eksctl-io/eksctl minor v0.165.0 -> v0.172.0
gcr.io/etcd-development/etcd patch v3.5.11 -> v3.5.12
google-github-actions/auth action minor v2.0.1 -> v2.1.2
google-github-actions/setup-gcloud action minor v2.0.1 -> v2.1.0
helm/kind-action action minor v1.8.0 -> v1.9.0
kubernetes-sigs/bom minor v0.5.1 -> v0.6.0
kubernetes-sigs/kind minor v0.20.0 -> v0.22.0
myrotvorets/set-commit-status-action action patch v2.0.0 -> v2.0.1
nick-invision/retry action major v2.9.0 -> v3.0.0
sigstore/cosign-installer action minor v3.2.0 -> v3.4.0

Release Notes

azure/login (azure/login)

v1.6.1: Azure Login Action v1.6.1

Compare Source

  • Fix #​403: Do not break the workflow if az is not installed in pre and post steps

v1.6.0: Azure Login Action v1.6.0

Compare Source

  • Added pre: and post: action for cleaning up (#​384)
dorny/paths-filter (dorny/paths-filter)

v3.0.1

Compare Source

v3.0.0

Compare Source

v2.12.0

Compare Source

eksctl-io/eksctl (eksctl-io/eksctl)

v0.172.0: eksctl 0.172.0 (permalink)

Compare Source

Release v0.172.0
🎯 Improvements
  • Fix checks for updated addon versions (#​7471)
  • Check for empty region before invoking API in AWS SDK (#​7523)
🐛 Bug Fixes
  • Revert removing RetryMetricsHeader in presigned requests (#​7563)
🧰 Maintenance
  • Bump dependencies (#​7554)
  • Extract common workflow steps to set up build environment (#​7551)
Acknowledgments

The eksctl maintainers would like to sincerely thank:
@​a2ush and @​mttrb

v0.171.0: eksctl 0.171.0 (permalink)

Compare Source

Release v0.171.0
🚀 Features
  • Add support for Ubuntu 22.04 based EKS images (#​7516)
📝 Documentation
  • Announce eksctl Support Status Update on eksctl.io (#​7539)
Acknowledgments

The eksctl maintainers would like to sincerely thank:
@​toabctl

v0.170.0: eksctl 0.170.0 (permalink)

Compare Source

Release v0.170.0
🚀 Features
  • Add support for Access Entry type (#​7522)
🎯 Improvements
  • Skip draining managed nodegroups when deleting cluster (#​7515)
  • Expand Karpenter settings.aws block to settings for v0.33.0 and greater (#​7503)
📝 Documentation
  • docs(fargate): eksctl update command is deprecated, use upgrade instead (#​7517)
Acknowledgments

The eksctl maintainers would like to sincerely thank:
@​skl

v0.169.0: eksctl 0.169.0 (permalink)

Compare Source

Release v0.169.0
🚀 Features
🎯 Improvements
  • Fix coredns pdb preventing cluster deletion in integration tests (#​7496)
  • Update well-known policy for ebsCSIController (#​7451)
  • Handle unordered public endpoint CIDRs from EKS in endpoint updates (#​7483)
🧰 Maintenance
  • Fix coredns pdb preventing cluster deletion in integration tests (#​7496)
📝 Documentation
Acknowledgments

Weaveworks would like to sincerely thank:
@​Emberwalker, @​guessi, and @​teraflik

v0.168.0: eksctl 0.168.0 (permalink)

Compare Source

Release v0.168.0
🎯 Improvements
  • Safely access/mutate fargate coredns pod annotations (#​7480)
🐛 Bug Fixes
  • Fix generating presigned URL for K8s authentication (#​7487)
  • Ignore unsupported zone types when creating a zone mapping (#​7204)

v0.167.0: eksctl 0.167.0 (permalink)

Compare Source

Release v0.167.0
🚀 Features
🧰 Maintenance
  • Bump AWS dependencies, fix test (#​7420)

v0.166.0: eksctl 0.166.0 (permalink)

Compare Source

Release v0.166.0

🚀 Features

  • Add utils command to migrate to pod identity associations (#​7343)

🐛 Bug Fixes

  • Disable module caching in actions/setup-go (#​7374)
  • Fix STS interface (#​7345)
  • Fix build-integration-test for pod_identity_associations (#​7336)

🧰 Maintenance

  • Update build image tag and actions (#​7337)

📝 Documentation

  • Update reference for bottlerocket settings (#​7375)
  • Documentation Update: Correct IAM Pod Identity Example Link (#​7376)

Acknowledgments

Weaveworks would like to sincerely thank:
@​chasestech

google-github-actions/auth (google-github-actions/auth)

v2.1.2

Compare Source

What's Changed
New Contributors

Full Changelog: google-github-actions/auth@v2...v2.1.2

v2.1.1

Compare Source

What's Changed

Full Changelog: google-github-actions/auth@v2...v2.1.1

v2.1.0

Compare Source

What's Changed

Full Changelog: google-github-actions/auth@v2...v2.1.0

google-github-actions/setup-gcloud (google-github-actions/setup-gcloud)

v2.1.0

Compare Source

What's Changed

Full Changelog: google-github-actions/setup-gcloud@v2...v2.1.0

helm/kind-action (helm/kind-action)

v1.9.0

Compare Source

What's Changed

New Contributors

Full Changelog: helm/kind-action@v1.8.0...v1.9.0

kubernetes-sigs/bom (kubernetes-sigs/bom)

v0.6.0

Compare Source

Changes by Kind
Feature
  • Add attestation in the release job (#​271, @​cpanato)
  • Added support for scanning images with RPM package managers (#​342, @​micahhausler)
  • Bom now ships with the SPDX license list version v3.21 embedded. (#​307, @​puerco)
  • Improved the query help output, most importantly there is now help for the purl matcher
    • New flag --purl to output purls instead of names
    • The name matching filter now supports full regexes and not just substring matching
    • New pluggable printer interface to output in more formats
    • bom document query now can output in JSON and CSV in addition to the usual line printer using --format
    • New --fields flag controls which fields of the sbom will be printed on the query output
    • Piped data on STDIN is now autodetected, you can now pipe an SBOM to bom document query and skip the filename (#​291, @​puerco)
  • OS Packages now can include an auto-generated download location. Initially supports Debian and Wolfi. (#​270, @​puerco)
  • The bom json parser now supports top-level elements specified with a DESCRIBES relationship to the document. documentDescribes is, of course, still suppoirted
    • License printing in query results has better NOASSERTION detection when choosing which license to print. (#​304, @​puerco)
  • Update license-data to v3.22 (#​357, @​cpanato)
  • bom now supports scanning OS packages from images based on distroless.
    • Fixed a bug where bom would drop the last package read from the debian database
    • Fixed an encoding bug in oci-typed purls where the version had an unescaped colon. (#​345, @​puerco)
  • bom will now autodetect when STDIN is open to outline an SBOM to avoid specifying it with a dash (#​260, @​puerco)
Bug or Regression
  • Bom will now read the SBOM until it detects the SBOM encoding data, enabling it to parse SBOMs with the document data defined at the end of the file.
    • When trying to ingest a CycloneDX document, bom will now print a more useful warning (#​259, @​puerco)
  • Fixed a race condition where concurrent files canning processes could clash and cause a segfault (thanks to @​howardjohn for reporting) (#​312, @​puerco)
  • JSON-encoded files now include supplier and originator data. (#​269, @​puerco)
Other (Cleanup or Flake)
  • Go.mod: Update github.com/uwu-tools/magex to v0.10.0 (#​275, @​cpanato)
  • SPDX packages representing container images are now named using their full reference and digest: registry.com/repository/image@sha256:digest (#​289, @​puerco)
Dependencies
Added
  • dario.cat/mergo: v1.0.0
  • github.com/MakeNowJust/heredoc/v2: v2.0.1
  • github.com/cyphar/filepath-securejoin: v0.2.4
  • github.com/dustin/go-humanize: v1.0.1
  • github.com/elazarl/goproxy: 2592e75
  • github.com/glebarez/go-sqlite: v1.22.0
  • github.com/go-jose/go-jose/v3: v3.0.0
  • github.com/golang/groupcache: 41bb18b
  • github.com/google/pprof: e6195bd
  • github.com/hashicorp/errwrap: v1.0.0
  • github.com/hashicorp/go-multierror: v1.1.1
  • github.com/kballard/go-shellquote: 95032a8
  • github.com/klauspost/cpuid/v2: v2.2.3
  • github.com/knqyf263/go-rpmdb: 067d98b
  • github.com/mattn/go-isatty: v0.0.20
  • github.com/mattn/go-sqlite3: v1.14.16
  • github.com/remyoudompheng/bigfft: 24d4a6f
  • github.com/uwu-tools/magex: v0.10.0
  • golang.org/x/exp: d852ddb
  • golang.org/x/tools/go/vcs: v0.1.0-deprecated
  • lukechampine.com/uint128: v1.3.0
  • modernc.org/cc/v3: v3.41.0
  • modernc.org/ccgo/v3: v3.16.15
  • modernc.org/httpfs: v1.0.6
  • modernc.org/libc: v1.37.6
  • modernc.org/mathutil: v1.6.0
  • modernc.org/memory: v1.7.2
  • modernc.org/opt: v0.1.3
  • modernc.org/sqlite: v1.28.0
  • modernc.org/strutil: v1.2.0
  • modernc.org/tcl: v1.15.2
  • modernc.org/token: v1.1.0
  • modernc.org/z: v1.7.3
Changed
Removed
  • github.com/MakeNowJust/heredoc: v1.0.0
  • github.com/acomagu/bufpipe: v1.0.4
  • github.com/bwesterb/go-ristretto: v1.2.0
  • github.com/carolynvs/magex: v0.9.0
  • github.com/creack/pty: v1.1.17
  • github.com/frankban/quicktest: v1.14.0
  • github.com/google/renameio: v1.0.1
  • github.com/imdario/mergo: v0.3.13
  • github.com/jessevdk/go-flags: v1.5.0
  • github.com/matryer/is: v1.2.0
  • github.com/mmcloughlin/avo: v0.5.0
  • github.com/niemeyer/pretty: a10e7ca
  • github.com/pkg/diff: 20ebb0f
  • github.com/shurcooL/sanitized_anchor_name: v1.0.0
  • golang.org/x/arch: v0.1.0
  • gopkg.in/errgo.v2: v2.1.0
  • gopkg.in/square/go-jose.v2: v2.6.0
  • mvdan.cc/editorconfig: v0.2.0
  • rsc.io/pdf: v0.1.1
kubernetes-sigs/kind (kubernetes-sigs/kind)

v0.22.0

Compare Source

This release is a quick follow-up to v0.21.0 with bug fixes including not overriding the host's binfmt_misc (a regression in v0.20.0, see: https://github.com/kubernetes-sigs/kind/issues/3510).

Breaking Changes

  • The default node image is now Kubernetes 1.29.2: kindest/node:v1.29.2@​sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245

If you haven't already, please see also v0.21.0 release notes given the short time between releases.

New Features

Images pre-built for this release:

  • v1.29.2: kindest/node:v1.29.2@​sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245
  • v1.29.1: kindest/node:v1.29.1@​sha256:0c06baa545c3bb3fbd4828eb49b8b805f6788e18ce67bff34706ffa91866558b
  • v1.28.7: kindest/node:v1.28.7@​sha256:9bc6c451a289cf96ad0bbaf33d416901de6fd632415b076ab05f5fa7e4f65c58
  • v1.28.6: kindest/node:v1.28.6@​sha256:e9e59d321795595d0eed0de48ef9fbda50388dc8bd4a9b23fb9bd869f370ec7e
  • v1.27.11: kindest/node:v1.27.11@​sha256:681253009e68069b8e01aad36a1e0fa8cf18bb0ab3e5c4069b2e65cafdd70843
  • v1.27.10: kindest/node:v1.27.10@​sha256:e6b2f72f22a4de7b957cd5541e519a8bef3bae7261dd30c6df34cd9bdd3f8476
  • v1.26.14: kindest/node:v1.26.14@​sha256:5d548739ddef37b9318c70cb977f57bf3e5015e4552be4e27e57280a8cbb8e4f
  • v1.26.13: kindest/node:v1.26.13@​sha256:8cb4239d64ff897e0c21ad19fe1d68c3422d4f3c1c1a734b7ab9ccc76c549605
  • v1.25.16: kindest/node:v1.25.16@​sha256:e8b50f8e06b44bb65a93678a65a26248fae585b3d3c2a669e5ca6c90c69dc519
  • v1.24.17: kindest/node:v1.24.17@​sha256:bad10f9b98d54586cba05a7eaa1b61c6b90bfc4ee174fdc43a7b75ca75c95e51
  • v1.23.17: kindest/node:v1.23.17@​sha256:14d0a9a892b943866d7e6be119a06871291c517d279aedb816a4b4bc0ec0a5b3

NOTE: You must use the @sha256 digest to guarantee an image built for this release, until such a time as we switch to a different tagging scheme. Even then we will highly encourage digest pinning for security and reproducibility reasons.

See also:

NOTE: These node images support amd64 and arm64, both of our supported platforms. You must use the same platform as your host, for more context see https://github.com/kubernetes-sigs/kind/issues/2718

Fixes

  • binfmt_misc no longer set by node images (regression in v0.20.0)
  • fix runc hooks when non-root / usernamespaces
  • Support multiple random extraPortMappings
  • Docs fixes for contour and WSL2

Contributors

Thank you to everyone who contributed to this release! ❤️

Users whose commits are in this release (alphabetically by user name)

Thank you as well to everyone else not listed here who contributed in other ways like filing issues, giving feedback, testing fixes, and helping users in slack!

v0.21.0

Compare Source

This release patches the recent runc CVEs, as well as an issue with kind build node-image and docker v25.0.0+

Breaking Changes

  • The default node image is a Kubernetes v1.29.1 image: kindest/node:v1.29.1@​sha256:a0cc28af37cf39b019e2b448c54d1a3f789de32536cb5a5db61a49623e527144

If you haven't already, please see also v0.20.0 release notes which had important announcements that still apply going forward.

New Features

  • Upgraded go to 1.20.13
  • Upgraded crictl to 1.28
  • Upgraded containerd fuse overlayfs to 1.0.6
  • Began marking some core images pinned in containerd, which may eventually make enabling imageGC safer
  • kindnetd will ignore nodes with empty podCIDR, enabling some niche use-cases

Images pre-built for this release:

  • v1.29.1: kindest/node:v1.29.1@​sha256:a0cc28af37cf39b019e2b448c54d1a3f789de32536cb5a5db61a49623e527144
  • v1.28.6: kindest/node:v1.28.6@​sha256:b7e1cf6b2b729f604133c667a6be8aab6f4dde5bb042c1891ae248d9154f665b
  • v1.27.10: kindest/node:v1.27.10@​sha256:3700c811144e24a6c6181065265f69b9bf0b437c45741017182d7c82b908918f
  • v1.26.13: kindest/node:v1.26.13@​sha256:15ae92d507b7d4aec6e8920d358fc63d3b980493db191d7327541fbaaed1f789
  • v1.25.16: kindest/node:v1.25.16@​sha256:9d0a62b55d4fe1e262953be8d406689b947668626a357b5f9d0cfbddbebbc727
  • v1.24.17: kindest/node:v1.24.17@​sha256:ea292d57ec5dd0e2f3f5a2d77efa246ac883c051ff80e887109fabefbd3125c7
  • v1.23.17: kindest/node:v1.23.17@​sha256:fbb92ac580fce498473762419df27fa8664dbaa1c5a361b5957e123b4035bdcf

NOTE: You must use the @sha256 digest to guarantee an image built for this release, until such a time as we switch to a different tagging scheme. Even then we will highly encourage digest pinning for security and reproducibility reasons.

See also:

NOTE: These node images support amd64 and arm64, both of our supported platforms. You must use the same platform as your host, for more context see https://github.com/kubernetes-sigs/kind/issues/2718

Fixes

  • Updated runc to v1.1.12, containerd to v1.7.13 including the fix for GHSA-xr7r-f8xq-vfvv
  • Fixed kind build node-image with docker v25.0.0+
    • NOTE: kind load docker-image is still broken with Docker v25.0.0 due to a docker bug, which has a fix merged that should be included in Docker v25.0.1+
  • Assorted docs fixes

Contributors

Thank you to everyone who contributed to this release! ❤️

Users whose commits are in this release (alphabetically by user name)

Thank you as well to everyone else not listed here who contributed in other ways like filing issues, giving feedback, testing fixes, and helping users in slack!

myrotvorets/set-commit-status-action (myrotvorets/set-commit-status-action)

v2.0.1

Compare Source

What's Changed

Configuration

📅 Schedule: Branch creation - "on monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate
chore(deps): update all github action dependencies
29ac8fd 
Signed-off-by: renovate[bot] <bot@renovateapp.com>
@renovate renovate bot requested review from a team as code owners February 26, 2024 08:30
@renovate renovate bot requested a review from aanm February 26, 2024 08:30
@renovate renovate bot added kind/enhancement This would improve or streamline existing functionality. release-note/misc This PR makes changes that have no direct user impact. renovate/stop-updating Tell Renovate to stop updating PR labels Feb 26, 2024
@renovate renovate bot requested a review from brlbil February 26, 2024 08:30
@maintainer-s-little-helper maintainer-s-little-helper bot added backport/1.15 This PR represents a backport for Cilium 1.15.x of a PR that was merged to main. kind/backports This PR provides functionality previously merged into master. labels Feb 26, 2024
@aanm
Copy link
Member

aanm commented Feb 26, 2024

/test-backport-1.15

@github-actions github-actions bot added the kind/community-contribution This was a contribution made by a community member. label Feb 26, 2024
@aanm aanm merged commit 76fb3e2 into v1.15 Feb 26, 2024
227 checks passed
@aanm aanm deleted the renovate/v1.15-all-github-action branch February 26, 2024 13:19
@jrajahalme jrajahalme mentioned this pull request Mar 13, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@brlbil brlbil brlbil approved these changes

@aanm aanm aanm approved these changes

Assignees
No one assigned
Labels
backport/1.15 This PR represents a backport for Cilium 1.15.x of a PR that was merged to main. kind/backports This PR provides functionality previously merged into master. kind/community-contribution This was a contribution made by a community member. kind/enhancement This would improve or streamline existing functionality. release-note/misc This PR makes changes that have no direct user impact. renovate/stop-updating Tell Renovate to stop updating PR
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@aanm @brlbil