Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NO-JIRA: Bump the golang-dependencies group with 5 updates #109

Merged
merged 1 commit into from Jan 15, 2024
Merged

NO-JIRA: Bump the golang-dependencies group with 5 updates #109

merged 1 commit into from Jan 15, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 9, 2024
edited

Bumps the golang-dependencies group with 5 updates:

Package From To
golang.org/x/crypto 0.16.0 0.18.0
golang.org/x/net 0.19.0 0.20.0
golang.org/x/oauth2 0.11.0 0.16.0
golang.org/x/sync 0.3.0 0.6.0
golang.org/x/time 0.3.0 0.5.0

Updates golang.org/x/crypto from 0.16.0 to 0.18.0

Commits
  • dbb6ec1 ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI bu...
  • 403f699 ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr
  • 055043d go.mod: update golang.org/x dependencies
  • 08396bb internal/poly1305: drop Go 1.12 compatibility
  • 9d2ee97 ssh: implement strict KEX protocol changes
  • 4e5a261 ssh: close net.Conn on all NewServerConn errors
  • 152cdb1 x509roots/fallback: update bundle
  • fdfe1f8 ssh: defer channel window adjustment
  • b8ffc16 blake2b: drop Go 1.6, Go 1.8 compatibility
  • 7e6fbd8 ssh: wrap errors from client handshake
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.19.0 to 0.20.0

Commits
  • cb5b10f go.mod: update golang.org/x dependencies
  • 689bbc7 quic: deflake TestStreamsCreateConcurrency
  • f12db26 internal/quic/cmd/interop: use wget --no-verbose in Dockerfile
  • c136d0c quic: avoid panic when PTO expires and implicitly-created streams exist
  • f9726a9 quic: fix packet size logging
  • c337daf quic: enable qlog output in tests
  • 2b416c3 quic/qlog: create log files with O_EXCL
  • 1e59a7e quic/qlog: correctly write negative durations
  • b0eb4d6 quic: compute pnum len from max ack received, not sent
  • b952594 quic: fix data race in connection close
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.11.0 to 0.16.0

Commits
  • 39adbb7 go.mod: update golang.org/x dependencies
  • 4ce7bbb google: add Credentials.GetUniverseDomain with GCE MDS support
  • 1e6999b google: add UniverseDomain to CredentialsParams
  • 6e9ec93 go.mod: update golang.org/x dependencies
  • e067960 go.mod: update golang.org/x dependencies
  • 4c91c17 google: adds header to security considerations section
  • 3c5dbf0 go.mod: update golang.org/x dependencies
  • 11625cc google: add authorized_user conditional to Credentials.UniverseDomain
  • 8d6d45b google: add Credentials.UniverseDomain to support TPC
  • 43b6a7b google: adding support for external account authorized user
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.3.0 to 0.6.0

Commits
  • 59c1ca1 errgroup: add reference to sync.WaitGroup
  • 10739b0 all: update go directive to 1.18
  • 22ba207 singleflight: add panicError.Unwrap method
  • See full diff in compare view

Updates golang.org/x/time from 0.3.0 to 0.5.0

Commits
  • 883aed5 rate: add documentation on Limiter concurrent usage
  • b24d3b5 all: add a go directive, set it to 1.18
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added docs-approved Signifies that Docs has signed off on this PR ok-to-test Indicates a non-member PR verified by an org member that is safe to test. px-approved Signifies that Product Support has signed off on this PR qe-approved Signifies that QE has signed off on this PR labels Jan 9, 2024
@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jan 9, 2024

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@jsafrane
Copy link
Contributor

/retest-required

@dependabot dependabot bot force-pushed the dependabot/go_modules/golang-dependencies-407e2c6463 branch from 5535b71 to 6eaf660 Compare January 11, 2024 16:31
@jsafrane
Copy link
Contributor

/retest

@jsafrane
Copy link
Contributor

/retest-required
/lgtm
/approve

@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Jan 12, 2024
@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jan 12, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dependabot[bot], jsafrane

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jan 12, 2024
@jsafrane
Copy link
Contributor

/label jira/valid-reference

@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jan 12, 2024

@jsafrane: The label(s) /label jira/valid-reference cannot be applied. These labels are supported: acknowledge-critical-fixes-only, platform/aws, platform/azure, platform/baremetal, platform/google, platform/libvirt, platform/openstack, ga, tide/merge-method-merge, tide/merge-method-rebase, tide/merge-method-squash, px-approved, docs-approved, qe-approved, no-qe, downstream-change-needed, rebase/manual, cluster-config-api-changed, approved, backport-risk-assessed, bugzilla/valid-bug, cherry-pick-approved, jira/valid-bug, staff-eng-approved. Is this label configured under labels -> additional_labels or labels -> restricted_labels in plugin.yaml?

In response to this:

/label jira/valid-reference

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@jsafrane
Copy link
Contributor

/label jira/valid-bug

@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jan 12, 2024

@jsafrane: Can not set label jira/valid-bug: Must be member in one of these teams: [openshift-patch-managers openshift-staff-engineers openshift-release-oversight]

In response to this:

/label jira/valid-bug

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@jsafrane
Copy link
Contributor

/retitle NO-JIRA: Bump the golang-dependencies group with 5 updates

@openshift-ci openshift-ci bot changed the title Bump the golang-dependencies group with 5 updates NO-JIRA: Bump the golang-dependencies group with 5 updates Jan 12, 2024
@openshift-ci-robot openshift-ci-robot added the jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. label Jan 12, 2024
@openshift-ci-robot
Copy link

@dependabot[bot]: This pull request explicitly references no jira issue.

In response to this:

Bumps the golang-dependencies group with 5 updates:

Package From To
golang.org/x/crypto 0.16.0 0.18.0
golang.org/x/net 0.19.0 0.20.0
golang.org/x/oauth2 0.11.0 0.16.0
golang.org/x/sync 0.3.0 0.6.0
golang.org/x/time 0.3.0 0.5.0

Updates golang.org/x/crypto from 0.16.0 to 0.18.0

Commits
  • dbb6ec1 ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI bu...
  • 403f699 ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr
  • 055043d go.mod: update golang.org/x dependencies
  • 08396bb internal/poly1305: drop Go 1.12 compatibility
  • 9d2ee97 ssh: implement strict KEX protocol changes
  • 4e5a261 ssh: close net.Conn on all NewServerConn errors
  • 152cdb1 x509roots/fallback: update bundle
  • fdfe1f8 ssh: defer channel window adjustment
  • b8ffc16 blake2b: drop Go 1.6, Go 1.8 compatibility
  • 7e6fbd8 ssh: wrap errors from client handshake
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.19.0 to 0.20.0

Commits
  • cb5b10f go.mod: update golang.org/x dependencies
  • 689bbc7 quic: deflake TestStreamsCreateConcurrency
  • f12db26 internal/quic/cmd/interop: use wget --no-verbose in Dockerfile
  • c136d0c quic: avoid panic when PTO expires and implicitly-created streams exist
  • f9726a9 quic: fix packet size logging
  • c337daf quic: enable qlog output in tests
  • 2b416c3 quic/qlog: create log files with O_EXCL
  • 1e59a7e quic/qlog: correctly write negative durations
  • b0eb4d6 quic: compute pnum len from max ack received, not sent
  • b952594 quic: fix data race in connection close
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.11.0 to 0.16.0

Commits
  • 39adbb7 go.mod: update golang.org/x dependencies
  • 4ce7bbb google: add Credentials.GetUniverseDomain with GCE MDS support
  • 1e6999b google: add UniverseDomain to CredentialsParams
  • 6e9ec93 go.mod: update golang.org/x dependencies
  • e067960 go.mod: update golang.org/x dependencies
  • 4c91c17 google: adds header to security considerations section
  • 3c5dbf0 go.mod: update golang.org/x dependencies
  • 11625cc google: add authorized_user conditional to Credentials.UniverseDomain
  • 8d6d45b google: add Credentials.UniverseDomain to support TPC
  • 43b6a7b google: adding support for external account authorized user
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.3.0 to 0.6.0

Commits
  • 59c1ca1 errgroup: add reference to sync.WaitGroup
  • 10739b0 all: update go directive to 1.18
  • 22ba207 singleflight: add panicError.Unwrap method
  • See full diff in compare view

Updates golang.org/x/time from 0.3.0 to 0.5.0

Commits
  • 883aed5 rate: add documentation on Limiter concurrent usage
  • b24d3b5 all: add a go directive, set it to 1.18
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-ci-robot
Copy link

/retest-required

Remaining retests: 0 against base HEAD ba4ba14 and 2 for PR HEAD 6eaf660 in total

@jsafrane
Copy link
Contributor

/retest-required

@openshift-ci-robot
Copy link

@dependabot[bot]: This pull request explicitly references no jira issue.

In response to this:

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the golang-dependencies group with 5 updates:

Package From To
golang.org/x/crypto 0.16.0 0.18.0
golang.org/x/net 0.19.0 0.20.0
golang.org/x/oauth2 0.11.0 0.16.0
golang.org/x/sync 0.3.0 0.6.0
golang.org/x/time 0.3.0 0.5.0

Updates golang.org/x/crypto from 0.16.0 to 0.18.0

Commits
  • dbb6ec1 ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI bu...
  • 403f699 ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr
  • 055043d go.mod: update golang.org/x dependencies
  • 08396bb internal/poly1305: drop Go 1.12 compatibility
  • 9d2ee97 ssh: implement strict KEX protocol changes
  • 4e5a261 ssh: close net.Conn on all NewServerConn errors
  • 152cdb1 x509roots/fallback: update bundle
  • fdfe1f8 ssh: defer channel window adjustment
  • b8ffc16 blake2b: drop Go 1.6, Go 1.8 compatibility
  • 7e6fbd8 ssh: wrap errors from client handshake
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.19.0 to 0.20.0

Commits
  • cb5b10f go.mod: update golang.org/x dependencies
  • 689bbc7 quic: deflake TestStreamsCreateConcurrency
  • f12db26 internal/quic/cmd/interop: use wget --no-verbose in Dockerfile
  • c136d0c quic: avoid panic when PTO expires and implicitly-created streams exist
  • f9726a9 quic: fix packet size logging
  • c337daf quic: enable qlog output in tests
  • 2b416c3 quic/qlog: create log files with O_EXCL
  • 1e59a7e quic/qlog: correctly write negative durations
  • b0eb4d6 quic: compute pnum len from max ack received, not sent
  • b952594 quic: fix data race in connection close
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.11.0 to 0.16.0

Commits
  • 39adbb7 go.mod: update golang.org/x dependencies
  • 4ce7bbb google: add Credentials.GetUniverseDomain with GCE MDS support
  • 1e6999b google: add UniverseDomain to CredentialsParams
  • 6e9ec93 go.mod: update golang.org/x dependencies
  • e067960 go.mod: update golang.org/x dependencies
  • 4c91c17 google: adds header to security considerations section
  • 3c5dbf0 go.mod: update golang.org/x dependencies
  • 11625cc google: add authorized_user conditional to Credentials.UniverseDomain
  • 8d6d45b google: add Credentials.UniverseDomain to support TPC
  • 43b6a7b google: adding support for external account authorized user
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.3.0 to 0.6.0

Commits
  • 59c1ca1 errgroup: add reference to sync.WaitGroup
  • 10739b0 all: update go directive to 1.18
  • 22ba207 singleflight: add panicError.Unwrap method
  • See full diff in compare view

Updates golang.org/x/time from 0.3.0 to 0.5.0

Commits
  • 883aed5 rate: add documentation on Limiter concurrent usage
  • b24d3b5 all: add a go directive, set it to 1.18
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@dependabot dependabot bot force-pushed the dependabot/go_modules/golang-dependencies-407e2c6463 branch from 6eaf660 to 4fcce56 Compare January 12, 2024 15:18
@openshift-ci openshift-ci bot removed the lgtm Indicates that a PR is ready to be merged. label Jan 12, 2024
@openshift-ci-robot
Copy link

/retest-required

Remaining retests: 0 against base HEAD 13ea687 and 1 for PR HEAD 6eaf660 in total

@jsafrane
Copy link
Contributor

/lgtm

@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Jan 12, 2024
@openshift-ci-robot
Copy link

@dependabot[bot]: This pull request explicitly references no jira issue.

In response to this:

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the golang-dependencies group with 5 updates:

Package From To
golang.org/x/crypto 0.16.0 0.18.0
golang.org/x/net 0.19.0 0.20.0
golang.org/x/oauth2 0.11.0 0.16.0
golang.org/x/sync 0.3.0 0.6.0
golang.org/x/time 0.3.0 0.5.0

Updates golang.org/x/crypto from 0.16.0 to 0.18.0

Commits
  • dbb6ec1 ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI bu...
  • 403f699 ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr
  • 055043d go.mod: update golang.org/x dependencies
  • 08396bb internal/poly1305: drop Go 1.12 compatibility
  • 9d2ee97 ssh: implement strict KEX protocol changes
  • 4e5a261 ssh: close net.Conn on all NewServerConn errors
  • 152cdb1 x509roots/fallback: update bundle
  • fdfe1f8 ssh: defer channel window adjustment
  • b8ffc16 blake2b: drop Go 1.6, Go 1.8 compatibility
  • 7e6fbd8 ssh: wrap errors from client handshake
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.19.0 to 0.20.0

Commits
  • cb5b10f go.mod: update golang.org/x dependencies
  • 689bbc7 quic: deflake TestStreamsCreateConcurrency
  • f12db26 internal/quic/cmd/interop: use wget --no-verbose in Dockerfile
  • c136d0c quic: avoid panic when PTO expires and implicitly-created streams exist
  • f9726a9 quic: fix packet size logging
  • c337daf quic: enable qlog output in tests
  • 2b416c3 quic/qlog: create log files with O_EXCL
  • 1e59a7e quic/qlog: correctly write negative durations
  • b0eb4d6 quic: compute pnum len from max ack received, not sent
  • b952594 quic: fix data race in connection close
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.11.0 to 0.16.0

Commits
  • 39adbb7 go.mod: update golang.org/x dependencies
  • 4ce7bbb google: add Credentials.GetUniverseDomain with GCE MDS support
  • 1e6999b google: add UniverseDomain to CredentialsParams
  • 6e9ec93 go.mod: update golang.org/x dependencies
  • e067960 go.mod: update golang.org/x dependencies
  • 4c91c17 google: adds header to security considerations section
  • 3c5dbf0 go.mod: update golang.org/x dependencies
  • 11625cc google: add authorized_user conditional to Credentials.UniverseDomain
  • 8d6d45b google: add Credentials.UniverseDomain to support TPC
  • 43b6a7b google: adding support for external account authorized user
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.3.0 to 0.6.0

Commits
  • 59c1ca1 errgroup: add reference to sync.WaitGroup
  • 10739b0 all: update go directive to 1.18
  • 22ba207 singleflight: add panicError.Unwrap method
  • See full diff in compare view

Updates golang.org/x/time from 0.3.0 to 0.5.0

Commits
  • 883aed5 rate: add documentation on Limiter concurrent usage
  • b24d3b5 all: add a go directive, set it to 1.18
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-ci-robot
Copy link

/retest-required

Remaining retests: 0 against base HEAD 13ea687 and 2 for PR HEAD 4fcce56 in total

@openshift-ci-robot
Copy link

/retest-required

Remaining retests: 0 against base HEAD fc390f8 and 1 for PR HEAD 4fcce56 in total

@openshift-ci-robot
Copy link

@dependabot[bot]: This pull request explicitly references no jira issue.

In response to this:

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the golang-dependencies group with 5 updates:

Package From To
golang.org/x/crypto 0.16.0 0.18.0
golang.org/x/net 0.19.0 0.20.0
golang.org/x/oauth2 0.11.0 0.16.0
golang.org/x/sync 0.3.0 0.6.0
golang.org/x/time 0.3.0 0.5.0

Updates golang.org/x/crypto from 0.16.0 to 0.18.0

Commits
  • dbb6ec1 ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI bu...
  • 403f699 ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr
  • 055043d go.mod: update golang.org/x dependencies
  • 08396bb internal/poly1305: drop Go 1.12 compatibility
  • 9d2ee97 ssh: implement strict KEX protocol changes
  • 4e5a261 ssh: close net.Conn on all NewServerConn errors
  • 152cdb1 x509roots/fallback: update bundle
  • fdfe1f8 ssh: defer channel window adjustment
  • b8ffc16 blake2b: drop Go 1.6, Go 1.8 compatibility
  • 7e6fbd8 ssh: wrap errors from client handshake
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.19.0 to 0.20.0

Commits
  • cb5b10f go.mod: update golang.org/x dependencies
  • 689bbc7 quic: deflake TestStreamsCreateConcurrency
  • f12db26 internal/quic/cmd/interop: use wget --no-verbose in Dockerfile
  • c136d0c quic: avoid panic when PTO expires and implicitly-created streams exist
  • f9726a9 quic: fix packet size logging
  • c337daf quic: enable qlog output in tests
  • 2b416c3 quic/qlog: create log files with O_EXCL
  • 1e59a7e quic/qlog: correctly write negative durations
  • b0eb4d6 quic: compute pnum len from max ack received, not sent
  • b952594 quic: fix data race in connection close
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.11.0 to 0.16.0

Commits
  • 39adbb7 go.mod: update golang.org/x dependencies
  • 4ce7bbb google: add Credentials.GetUniverseDomain with GCE MDS support
  • 1e6999b google: add UniverseDomain to CredentialsParams
  • 6e9ec93 go.mod: update golang.org/x dependencies
  • e067960 go.mod: update golang.org/x dependencies
  • 4c91c17 google: adds header to security considerations section
  • 3c5dbf0 go.mod: update golang.org/x dependencies
  • 11625cc google: add authorized_user conditional to Credentials.UniverseDomain
  • 8d6d45b google: add Credentials.UniverseDomain to support TPC
  • 43b6a7b google: adding support for external account authorized user
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.3.0 to 0.6.0

Commits
  • 59c1ca1 errgroup: add reference to sync.WaitGroup
  • 10739b0 all: update go directive to 1.18
  • 22ba207 singleflight: add panicError.Unwrap method
  • See full diff in compare view

Updates golang.org/x/time from 0.3.0 to 0.5.0

Commits
  • 883aed5 rate: add documentation on Limiter concurrent usage
  • b24d3b5 all: add a go directive, set it to 1.18
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@dependabot
Bump the golang-dependencies group with 5 updates
9f7f560 
Bumps the golang-dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.16.0` | `0.18.0` |
| [golang.org/x/net](https://github.com/golang/net) | `0.19.0` | `0.20.0` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.11.0` | `0.16.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.3.0` | `0.6.0` |
| [golang.org/x/time](https://github.com/golang/time) | `0.3.0` | `0.5.0` |


Updates `golang.org/x/crypto` from 0.16.0 to 0.18.0
- [Commits](golang/crypto@v0.16.0...v0.18.0)

Updates `golang.org/x/net` from 0.19.0 to 0.20.0
- [Commits](golang/net@v0.19.0...v0.20.0)

Updates `golang.org/x/oauth2` from 0.11.0 to 0.16.0
- [Commits](golang/oauth2@v0.11.0...v0.16.0)

Updates `golang.org/x/sync` from 0.3.0 to 0.6.0
- [Commits](golang/sync@v0.3.0...v0.6.0)

Updates `golang.org/x/time` from 0.3.0 to 0.5.0
- [Commits](golang/time@v0.3.0...v0.5.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
- dependency-name: golang.org/x/net
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
- dependency-name: golang.org/x/oauth2
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
- dependency-name: golang.org/x/sync
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
- dependency-name: golang.org/x/time
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/golang-dependencies-407e2c6463 branch from 4fcce56 to 9f7f560 Compare January 13, 2024 06:05
@openshift-ci openshift-ci bot removed the lgtm Indicates that a PR is ready to be merged. label Jan 13, 2024
@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jan 13, 2024
edited

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/e2e-azurestack-csi 9f7f560 link false /test e2e-azurestack-csi
ci/prow/e2e-azure-csi-extended 9f7f560 link false /test e2e-azure-csi-extended
ci/prow/e2e-aws-csi-extended 9f7f560 link false /test e2e-aws-csi-extended

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@jsafrane
Copy link
Contributor

/retest-required

@jsafrane
Copy link
Contributor

/lgtm

@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Jan 15, 2024
@openshift-merge-bot openshift-merge-bot bot merged commit b05887a into master Jan 15, 2024
12 of 15 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/golang-dependencies-407e2c6463 branch January 15, 2024 16:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gnufied gnufied Awaiting requested review from gnufied

@jsafrane jsafrane Awaiting requested review from jsafrane

Assignees

@jsafrane jsafrane

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. docs-approved Signifies that Docs has signed off on this PR jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. lgtm Indicates that a PR is ready to be merged. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. px-approved Signifies that Product Support has signed off on this PR qe-approved Signifies that QE has signed off on this PR
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@jsafrane @openshift-ci-robot