From 159e663472d00dec3454c7d189076f5e2e17c316 Mon Sep 17 00:00:00 2001 From: Knative Automation Date: Wed, 27 Mar 2024 10:04:27 -0400 Subject: [PATCH] upgrade to latest dependencies (#1230) bumping knative.dev/pkg fd7cc21...2d1662a: > 2d1662a Update community files (# 2998) bumping knative.dev/networking 1aa1ec2...a477061: > a477061 Update community files (# 952) > 419ebf9 Drop special logic for kubelet probe header for istio (# 950) bumping knative.dev/hack 424e75e...b985a5b: > b985a5b Update community files (# 377) > 7e71024 Add clotributor link to readme (# 353) > b1b2956 Add consistent SECURITY.md (# 349) > 4f7621a Call go mod download on each module, if not vendor (# 326) Signed-off-by: Knative Automation --- go.mod | 6 +- go.sum | 12 ++-- vendor/knative.dev/hack/README.md | 5 ++ vendor/knative.dev/hack/SECURITY.md | 7 +++ vendor/knative.dev/hack/go.work.sum | 61 +++++++++++++++++++ vendor/knative.dev/hack/library.sh | 2 + .../networking/pkg/http/header/header.go | 11 +++- vendor/modules.txt | 6 +- 8 files changed, 95 insertions(+), 15 deletions(-) create mode 100644 vendor/knative.dev/hack/SECURITY.md create mode 100644 vendor/knative.dev/hack/go.work.sum diff --git a/go.mod b/go.mod index 335689842..773689b45 100644 --- a/go.mod +++ b/go.mod @@ -21,9 +21,9 @@ require ( k8s.io/apimachinery v0.29.2 k8s.io/client-go v0.29.2 k8s.io/code-generator v0.29.2 - knative.dev/hack v0.0.0-20240318013248-424e75ed769a - knative.dev/networking v0.0.0-20240325132627-1aa1ec299a43 - knative.dev/pkg v0.0.0-20240325103648-fd7cc2153e6a + knative.dev/hack v0.0.0-20240327131430-b985a5ba4ed9 + knative.dev/networking v0.0.0-20240327132518-a4770614b9b4 + knative.dev/pkg v0.0.0-20240327130924-2d1662ad2ee1 ) require ( diff --git a/go.sum b/go.sum index 4eab1aa6a..65104757c 100644 --- a/go.sum +++ b/go.sum @@ -716,12 +716,12 @@ k8s.io/kube-openapi v0.0.0-20231010175941-2dd684a91f00 h1:aVUu9fTY98ivBPKR9Y5w/A k8s.io/kube-openapi v0.0.0-20231010175941-2dd684a91f00/go.mod h1:AsvuZPBlUDVuCdzJ87iajxtXuR9oktsTctW/R9wwouA= k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ= k8s.io/utils v0.0.0-20240102154912-e7106e64919e/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0= -knative.dev/hack v0.0.0-20240318013248-424e75ed769a h1:E5aUF562P5BXHsBYx7S4Oa4KKXSH8SkKFG5CqZOTypg= -knative.dev/hack v0.0.0-20240318013248-424e75ed769a/go.mod h1:yk2OjGDsbEnQjfxdm0/HJKS2WqTLEFg/N6nUs6Rqx3Q= -knative.dev/networking v0.0.0-20240325132627-1aa1ec299a43 h1:DVIHGLGifRmvtlBYBfpXE+TXpyDgz9OW/dTKymZZMS8= -knative.dev/networking v0.0.0-20240325132627-1aa1ec299a43/go.mod h1:a7GsNTW10dXsWd9u2ylCctblfhvZmeeZLL0VOYC7A6w= -knative.dev/pkg v0.0.0-20240325103648-fd7cc2153e6a h1:17E1oL6VhFTZBmgF4D3DlHt+GH8y9MQNlGCM60Db7fY= -knative.dev/pkg v0.0.0-20240325103648-fd7cc2153e6a/go.mod h1:Meb7JQFjMOloRJRA2GG2RcRT/JnscMOI8/6KmBaC2/k= +knative.dev/hack v0.0.0-20240327131430-b985a5ba4ed9 h1:W9l3cpGNZSCbU1kjT4G4Gad+lr38E3h4gJbnmEBmcRA= +knative.dev/hack v0.0.0-20240327131430-b985a5ba4ed9/go.mod h1:yk2OjGDsbEnQjfxdm0/HJKS2WqTLEFg/N6nUs6Rqx3Q= +knative.dev/networking v0.0.0-20240327132518-a4770614b9b4 h1:NCFe+JFOXStd3c8ihEJJzk0eqRQ9+vf4u9DrBZ9InXE= +knative.dev/networking v0.0.0-20240327132518-a4770614b9b4/go.mod h1:a7GsNTW10dXsWd9u2ylCctblfhvZmeeZLL0VOYC7A6w= +knative.dev/pkg v0.0.0-20240327130924-2d1662ad2ee1 h1:iAZVUiLIXeRsQvkgsYiSsXtu3Bzm57aXmB8qa6PeRWQ= +knative.dev/pkg v0.0.0-20240327130924-2d1662ad2ee1/go.mod h1:Meb7JQFjMOloRJRA2GG2RcRT/JnscMOI8/6KmBaC2/k= rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8= rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0= rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA= diff --git a/vendor/knative.dev/hack/README.md b/vendor/knative.dev/hack/README.md index 8799e0b59..fd9c4d99b 100644 --- a/vendor/knative.dev/hack/README.md +++ b/vendor/knative.dev/hack/README.md @@ -3,6 +3,11 @@ `hack` is a collection of scripts used to bootstrap CI processes and other vital entrypoint functionality. +## Contributing + +If you are interested in contributing to Knative, take a look at [CLOTRIBUTOR](https://clotributor.dev/search?project=knative&page=1) +for a list of help wanted issues across the project. + ## Using the `presubmit-tests.sh` helper script This is a helper script to run the presubmit tests. To use it: diff --git a/vendor/knative.dev/hack/SECURITY.md b/vendor/knative.dev/hack/SECURITY.md new file mode 100644 index 000000000..52ec3c9f2 --- /dev/null +++ b/vendor/knative.dev/hack/SECURITY.md @@ -0,0 +1,7 @@ +# Knative Security Policy + +We're extremely grateful for security researchers and users that report vulnerabilities to the Knative Open Source Community. All reports are thoroughly investigated by a set of community volunteers. + +To make a report, please email the private security@knative.team list with the security details and the details expected for all Knative bug reports. + +See [Knative Security and Disclosure Information](https://knative.dev/docs/reference/security/) for more details. diff --git a/vendor/knative.dev/hack/go.work.sum b/vendor/knative.dev/hack/go.work.sum new file mode 100644 index 000000000..1cc0cde93 --- /dev/null +++ b/vendor/knative.dev/hack/go.work.sum @@ -0,0 +1,61 @@ +cloud.google.com/go v0.26.0 h1:e0WKqKTd5BnrG8aKH3J3h+QvEIQtSUcf2n5UZ5ZgLtQ= +github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ= +github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46 h1:lsxEuwrXEAokXB9qhlbKWPpo3KMLZQ5WB5WLQRW1uq0= +github.com/PuerkitoBio/purell v1.0.0 h1:0GoNN3taZV6QI81IXgCbxMyEaJDXMSIjArYBCYzVVvs= +github.com/PuerkitoBio/urlesc v0.0.0-20160726150825-5bd2802263f2 h1:JCHLVE3B+kJde7bIEo5N4J+ZbLhp0J1Fs+ulyRws4gE= +github.com/census-instrumentation/opencensus-proto v0.2.1 h1:glEXhBS5PSLLv4IXzLA5yPRVX4bilULVyxxbrfOtDAk= +github.com/client9/misspell v0.3.4 h1:ta993UF76GwbvJcIo3Y68y/M3WxlpEHPWIGDkJYwzJI= +github.com/cpuguy83/go-md2man/v2 v2.0.2 h1:p1EgwI/C7NhT0JmVkwCD2ZBK8j4aeHQX2pMHHBfMQ6w= +github.com/creack/pty v1.1.9 h1:uDmaGzcdjhF4i/plgjmEsriH11Y0o7RKapEf/LDaM3w= +github.com/docker/spdystream v0.0.0-20160310174837-449fdfce4d96 h1:cenwrSVm+Z7QLSV/BsnenAOcDXdX4cMv4wP0B/5QbPg= +github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ= +github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153 h1:yUdfgN0XgIJw7foRItutHYUIhlcKzcSf5vDpdhQAKTc= +github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633 h1:H2pdYOb3KQ1/YsqVWoWNLQO+fusocsw354rqGTZtAgw= +github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473 h1:4cmBvAEBNJaGARUEs3/suWRyfyBfhf7I60WBZq+bv2w= +github.com/envoyproxy/protoc-gen-validate v0.1.0 h1:EQciDnbrYxy13PgWoY8AqoxGiPrpgBZ1R8UNe3ddc+A= +github.com/evanphx/json-patch v4.9.0+incompatible h1:kLcOMZeuLAJvL2BPWLMIj5oaZQobrkAqrL+WFZwQses= +github.com/fsnotify/fsnotify v1.4.9 h1:hsms1Qyu0jgnwNXIxa+/V/PDsU6CfLf6CNO8H7IWoS4= +github.com/ghodss/yaml v0.0.0-20150909031657-73d445a93680 h1:ZktWZesgun21uEDrwW7iEV1zPCGQldM2atlJZ3TdvVM= +github.com/go-openapi/jsonpointer v0.0.0-20160704185906-46af16f9f7b1 h1:wSt/4CYxs70xbATrGXhokKF1i0tZjENLOo1ioIO13zk= +github.com/go-openapi/jsonreference v0.0.0-20160704190145-13c6e3589ad9 h1:tF+augKRWlWx0J0B7ZyyKSiTyV6E1zZe+7b3qQlcEf8= +github.com/go-openapi/spec v0.0.0-20160808142527-6aced65f8501 h1:C1JKChikHGpXwT5UQDFaryIpDtyyGL/CR6C2kB7F1oc= +github.com/go-openapi/swag v0.0.0-20160704191624-1d0bd113de87 h1:zP3nY8Tk2E6RTkqGYrarZXuzh+ffyLDljLxCy1iJw80= +github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b h1:VKtxabqXZkF25pY9ekfRL6a582T4P37/31XEstQ5p58= +github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7 h1:5ZkaAPbicIKTF2I64qf5Fh8Aa83Q/dnOafMYV0OMwjA= +github.com/golang/mock v1.1.1 h1:G5FRp8JnTd7RQH5kemVNlMeyXQAztQ3mOWV95KxsXH8= +github.com/golang/protobuf v1.4.2 h1:+Z5KGCizgyZCbGh1KZqA0fcLLkwbsjIzS4aV2v7wJX0= +github.com/google/uuid v1.1.1 h1:Gkbcsh/GbpXz7lPftLA3P6TYMwjCLYm83jiFQZF/3gY= +github.com/googleapis/gnostic v0.4.1 h1:DLJCy1n/vrD4HPjOvYcT8aYQXpPIzoRZONaYwyycI+I= +github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU= +github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI= +github.com/kisielk/errcheck v1.2.0 h1:reN85Pxc5larApoH1keMBiu2GWtPqXQ1nc9gx+jOU+E= +github.com/kisielk/gotool v1.0.0 h1:AV2c/EiW3KqPNT9ZKl07ehoAGi4C5/01Cfbblndcapg= +github.com/kr/pretty v0.2.0 h1:s5hAObm+yFO5uHYt5dYjxi2rXrsnmRpJx4OYvIWUaQs= +github.com/kr/pty v1.1.1 h1:VkoXIwSboBpnk99O/KFauAEILuNHv5DVFKZMBN/gUgw= +github.com/mailru/easyjson v0.0.0-20160728113105-d5b7844b561a h1:TpvdAwDAt1K4ANVOfcihouRdvP+MgAfDWwBuct4l6ZY= +github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d h1:7PxY7LVfSZm7PEeBTyK1rj1gABdCO2mbri6GKO1cMDs= +github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J1GEMiLbxo1LJaP8RfCpH6pymGZus= +github.com/onsi/ginkgo v1.11.0 h1:JAKSXpt1YjtLA7YpPiqO9ss6sNXEsPfSGdwN0UHqzrw= +github.com/onsi/gomega v1.7.0 h1:XPnZz8VVBHjVsy1vzJmRwIcSwiUO+JFfrv/xGiigmME= +github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4= +github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4 h1:gQz4mCbXsO+nc9n1hCxHcGA3Zx3Eo+UHZoInFGUIXNM= +github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk= +github.com/stretchr/objx v0.5.0 h1:1zr/of2m5FGMsad5YfcqgdqdWrIhu+EBEJRhR1U7z/c= +golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9 h1:psW17arqaxU48Z5kZ0CQnkZWQJsqcURM6tKiBApRjXI= +golang.org/x/exp v0.0.0-20190121172915-509febef88a4 h1:c2HOrn5iMezYjSlGPncknSEr/8x5LELb/ilJbXi9DEA= +golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3 h1:XQyxROzUlZH+WIQwySDgnISgOivlhjIEwaQaJEJrrN0= +golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be h1:vEDujvNQGv4jgYKudGeI/+DAX4Jffq6hpD55MmoEvKs= +golang.org/x/sync v0.0.0-20190423024810-112230192c58 h1:8gQV6CLnAEikrhgkHFbMAEhagSSnXWGV915qUMm9mrU= +golang.org/x/sys v0.0.0-20201112073958-5cba982894dd h1:5CtCZbICpIOFdgO940moixOPjc0178IU44m4EjOO5IY= +golang.org/x/tools v0.1.12 h1:VveCTK38A2rkS8ZqFY25HIDFscX5X9OoEhJd3quQmXU= +golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= +golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543 h1:E7g+9GITq07hpfrRu66IVDexMakfv52eLZ2CXBWiKr4= +google.golang.org/appengine v1.4.0 h1:/wp5JvzpHIxhs/dumFmF7BXTf3Z+dd4uXta4kVyO508= +google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013 h1:+kGHl1aib/qcwaRi1CbqBZ1rk19r85MNUf8HaBghugY= +google.golang.org/grpc v1.27.0 h1:rRYRFMVgRv6E0D70Skyfsr28tDXIuuPZyWGMPdMcnXg= +google.golang.org/protobuf v1.24.0 h1:UhZDfRO8JRQru4/+LlLE0BRKGF8L+PICnvYZmx/fEGA= +gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4= +gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ= +honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc h1:/hemPrYIhOhy8zYrNj+069zDB68us2sMGsfkFJO0iZs= +k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac h1:sAvhNk5RRuc6FNYGqe7Ygz3PSo/2wGWbulskmzRX8Vs= +k8s.io/kube-openapi v0.0.0-20200805222855-6aeccd4b50c6 h1:+WnxoVtG8TMiudHBSEtrVL1egv36TkkJm+bA8AxicmQ= diff --git a/vendor/knative.dev/hack/library.sh b/vendor/knative.dev/hack/library.sh index ca67e6848..6f6a24c8e 100644 --- a/vendor/knative.dev/hack/library.sh +++ b/vendor/knative.dev/hack/library.sh @@ -753,6 +753,8 @@ function __go_update_deps_for_module() { if [[ "${FORCE_VENDOR:-false}" == "true" ]] || [ -d vendor ]; then group "Go mod vendor" go mod vendor 2>&1 | grep -v "ignoring symlink" || true + else + go mod download -x fi eval "$orig_pipefail_opt" diff --git a/vendor/knative.dev/networking/pkg/http/header/header.go b/vendor/knative.dev/networking/pkg/http/header/header.go index 158fb0620..143f8bedb 100644 --- a/vendor/knative.dev/networking/pkg/http/header/header.go +++ b/vendor/knative.dev/networking/pkg/http/header/header.go @@ -55,9 +55,14 @@ const ( // at the Queue proxy level back to be a host header. OriginalHostKey = "K-Original-Host" - // KubeletProbeKey is the name of the header supplied by kubelet - // probes. Istio with mTLS rewrites probes, but their probes pass a - // different user-agent. So we augment the probes with this header. + // KubeletProbeKey is the name of the header supplied by kubelet probes. + // Prior to this deprecation, Istio with mTLS rewrote probes and their probes passed a + // different user-agent. Therefore, this header was added to augment the probes. + // + // Deprecated: this custom request header is no longer necessary since Istio now propagates the + // original request header `User-Agent` sent by the kubelet (e.g., User-Agent: kube-probe/1.29). + // For updated usage, please utilize knative.dev/networking/pkg/http/header.UserAgentKey and + // knative.dev/networking/pkg/http/header.KubeProbeUAPrefix KubeletProbeKey = "K-Kubelet-Probe" // RouteTagKey is the name of the header entry which has a tag name as value. diff --git a/vendor/modules.txt b/vendor/modules.txt index 2f626505d..42b64586c 100644 --- a/vendor/modules.txt +++ b/vendor/modules.txt @@ -1009,10 +1009,10 @@ k8s.io/utils/pointer k8s.io/utils/ptr k8s.io/utils/strings/slices k8s.io/utils/trace -# knative.dev/hack v0.0.0-20240318013248-424e75ed769a +# knative.dev/hack v0.0.0-20240327131430-b985a5ba4ed9 ## explicit; go 1.18 knative.dev/hack -# knative.dev/networking v0.0.0-20240325132627-1aa1ec299a43 +# knative.dev/networking v0.0.0-20240327132518-a4770614b9b4 ## explicit; go 1.21 knative.dev/networking/config knative.dev/networking/pkg @@ -1053,7 +1053,7 @@ knative.dev/networking/test/test_images/runtime/handlers knative.dev/networking/test/test_images/timeout knative.dev/networking/test/test_images/wsserver knative.dev/networking/test/types -# knative.dev/pkg v0.0.0-20240325103648-fd7cc2153e6a +# knative.dev/pkg v0.0.0-20240327130924-2d1662ad2ee1 ## explicit; go 1.21 knative.dev/pkg/apis knative.dev/pkg/apis/duck