build(deps): bump github.com/golangci/golangci-lint/v2 from 2.10.1 to 2.11.1 in /hack/tools in the misc-dependencies group across 1 directory

[dependabot]

Bumps the misc-dependencies group with 1 update in the /hack/tools directory: github.com/golangci/golangci-lint/v2.

Updates github.com/golangci/golangci-lint/v2 from 2.10.1 to 2.11.1

Release notes

Sourced from github.com/golangci/golangci-lint/v2's releases.

v2.11.0

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

• a97407a99fb608c28e4d2b963232be9439528f93 build(deps): bump actions/attest-build-provenance from 3 to 4 in the github-actions group (#6404)
• 71381cdf27ba42550954a19e726076390082e940 build(deps): bump github.com/MirrexOne/unqueryvet from 1.5.3 to 1.5.4 (#6383)
• c6ae2eab5f981d6f62c1d4e5b0d467abcc1c0baf build(deps): bump github.com/alexkohler/prealloc from 1.0.2 to 1.0.3 (#6391)
• 2e571441d14cbab0144894e502cf735b09d50837 build(deps): bump github.com/alexkohler/prealloc from 1.0.3 to 1.1.0 (#6395)
• f619fdc80d80f4c4e0eae437b37ff8f909a5f67a build(deps): bump github.com/kisielk/errcheck from 1.9.0 to 1.10.0 (#6396)
• 46d78136568cdbf61a35e11892d0b9ecbd218278 build(deps): bump github.com/mgechev/revive from 1.14.0 to 1.15.0 (#6412)
• f8861ca84d805a673945d037bae1559c3567aadc build(deps): bump github.com/securego/gosec/v2 from 2.23.0 to 2.24.0 (#6394)
• a6f1155ddfedc678019e1a31a76175a09f92b87c build(deps): bump github.com/securego/gosec/v2 from 2.24.0 to 2.24.6 (#6398)
• 0259a6a34fa238e8813e202042d9a4c935d13d57 build(deps): bump github.com/securego/gosec/v2 from 2.24.6 to 2.24.7 (#6400)
• 4fde6f7cf67bd4729e4c2f42e18f0fbdbb98fcfe build(deps): bump github.com/shirou/gopsutil/v4 from 4.26.1 to 4.26.2 (#6401)
• b746a30993bc26bf495f04a61e1482e1c49733a7 build(deps): bump github.com/sonatard/noctx from 0.4.0 to 0.5.0 (#6393)
• 41aa1cde2528ea2904947b35e62aad7cff6bac0a build(deps): bump github.com/uudashr/gocognit from 1.2.0 to 1.2.1 (#6392)
• d8bb8c4c6f0e5d4d9b10d1d50413a7959b7cc26b build(deps): bump goreleaser/goreleaser-action from 6 to 7 in the github-actions group (#6384)
• 2e484ee1089a13d51500f5d1961c1313cbea8ffe build(deps): bump the linter-testdata group across 4 directories with 5 updates (#6382)

Changelog

Sourced from github.com/golangci/golangci-lint/v2's changelog.

v2.11.1

Released on 2026-03-06

Due to an error related to AUR, some artifacts of the v2.11.0 release have not been published.

This release contains the same things as v2.11.0.

v2.11.0

Released on 2026-03-06

1. Linters new features or changes
   • errcheck: from 1.9.0 to 1.10.0 (exclude crypto/rand.Read by default)
   • gosec: from 2.23.0 to 2.24.6 (new rules: G113, G118, G119, G120, G121, G122, G123, G408, G707)
   • noctx: from 0.4.0 to 0.5.0 (new detection: httptest.NewRequestWithContext)
   • prealloc: from 1.0.2 to 1.1.0
   • revive: from 1.14.0 to 1.15.0 (⚠️ Breaking change: package-related checks moved from var-naming to a new rule package-naming)
2. Linters bug fixes
   • gocognit: from 1.2.0 to 1.2.1
   • gosec: from 2.24.6 to 2.24.7
   • unqueryvet: from 1.5.3 to 1.5.4

Commits

• 89a46a2 chore: prepare release
• ff7206c docs: update GitHub Action assets (#6414)
• 60180aa docs: update documentation assets (#6413)
• 804e5ec chore: prepare release
• 46d7813 build(deps): bump github.com/mgechev/revive from 1.14.0 to 1.15.0 (#6412)
• a97407a build(deps): bump actions/attest-build-provenance from 3 to 4 in the github-a...
• 4fde6f7 build(deps): bump github.com/shirou/gopsutil/v4 from 4.26.1 to 4.26.2 (#6401)
• 0259a6a build(deps): bump github.com/securego/gosec/v2 from 2.24.6 to 2.24.7 (#6400)
• a6f1155 build(deps): bump github.com/securego/gosec/v2 from 2.24.0 to 2.24.6 (#6398)
• f8861ca build(deps): bump github.com/securego/gosec/v2 from 2.23.0 to 2.24.0 (#6394)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by CodeRabbit

• Chores
  • Updated a development tooling dependency (linter) to a newer patch release to maintain tooling stability and code quality. This is a minor, non-functional change to developer tooling with no user-facing behavior changes.

[openshift-ci-robot]

Pipeline controller notification
This repo is configured to use the pipeline controller. Second-stage tests will be triggered either automatically or after lgtm label is added, depending on the repository configuration. The pipeline controller will automatically detect which contexts are required and will utilize /test Prow commands to trigger the second stage.

For optional jobs, comment /test ? to see a list of all defined jobs. To trigger manually all jobs from second stage use /pipeline required command.

This repository is configured in: LGTM mode

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[coderabbitai]

Walkthrough

Updated a single dependency version in the tools Go module: bumped github.com/golangci/golangci-lint/v2 from v2.11.1 to v2.11.2 (one-line change).

Changes

Cohort / File(s)	Summary
Tooling dependency hack/tools/go.mod	Updated github.com/golangci/golangci-lint/v2 from v2.11.1 to v2.11.2 (one-line change).

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The title describes a dependency version bump (v2.10.1 to v2.11.1), but the actual change in the PR is only v2.11.1 to v2.11.2, making the title inaccurate.	Update the title to reflect the actual version change: 'build(deps): bump github.com/golangci/golangci-lint/v2 from v2.11.1 to v2.11.2 in /hack/tools'.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Stable And Deterministic Test Names	✅ Passed	PR only modifies hack/tools/go.mod to update golangci-lint dependency; no test files or Ginkgo test definitions are changed.
Test Structure And Quality	✅ Passed	PR only updates golangci-lint dependency version; no test code modifications present, so test quality guidelines do not apply.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dependabot/go_modules/hack/tools/misc-dependencies-ba6a11b15d

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign jparrill for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

@dependabot[bot]: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/verify	53ea56d	link	true	/test verify

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[bryan-cox]

/close

[openshift-ci]

@bryan-cox: Closed this PR.

Details

In response to this:

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml