Skip to content

build(deps): bump the github-dependencies group across 1 directory with 4 updates#8844

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github-dependencies-8365f03f3e
Closed

build(deps): bump the github-dependencies group across 1 directory with 4 updates#8844
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github-dependencies-8365f03f3e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 26, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-dependencies group with 4 updates in the / directory: github.com/aws/aws-sdk-go-v2/service/ec2, github.com/aws/smithy-go, github.com/onsi/ginkgo/v2 and github.com/onsi/gomega.

Updates github.com/aws/aws-sdk-go-v2/service/ec2 from 1.307.1 to 1.308.0

Commits

Updates github.com/aws/smithy-go from 1.27.1 to 1.27.2

Changelog

Sourced from github.com/aws/smithy-go's changelog.

Release (2026-06-05)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.27.2
    • Bug Fix: Fix incorrect serialization of unions in CBOR-based protocols.

Release (2026-06-04)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.27.1
    • Bug Fix: Fixed a deserialization failure in all protocols when encountering a union with explicit null members.
    • Bug Fix: Fixed a panic when deserializing nested unions in JSON- and CBOR-based protocols.

Release (2026-06-02)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.27.0
    • Feature: Add APIs for schema-based serialization.
    • Feature: Add support for all current AWS and Smithy protocols.
    • Bug Fix: Enforce max nesting depth of 128 on CBOR payloads.
  • github.com/aws/smithy-go/aws-http-auth: v1.2.0
    • Feature: Add event stream signer.

Release (2026-05-27)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.26.0
    • Feature: Add StringSlice to endpoint rulesfn.

Release (2026-04-23)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.25.1
    • Bug Fix: Fixed a memory leak in the LRU cache implementation used by some AWS services.

... (truncated)

Commits

Updates github.com/onsi/ginkgo/v2 from 2.31.0 to 2.32.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.32.0

2.32.0

-fd generate RSpec-style documentation output. Thank @​woodie ! --sleep-on-failure pauses a failed spec before teardown. Thanks @​qinqon !

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.32.0

-fd generate RSpec-style documentation output. Thank @​woodie ! --sleep-on-failure pauses a failed spec before teardown. Thanks @​qinqon !

Commits
  • 9ff1646 v2.32.0
  • 0491f2a Make -fd exclusive of -p/-procs and -randomize-all
  • 334f74a respect SilenceSkips in fd mode, add test
  • 21047ce No need for a new method.
  • 7d281e1 Break out to two methods.
  • 5313727 More integration, fewer changes.
  • b83f524 Fewer new methods.
  • 73c59df feat: add -fd flag for RSpec-style documentation output
  • 76a2074 feat: add --sleep-on-failure to pause a failed spec before teardown
  • See full diff in compare view

Updates github.com/onsi/gomega from 1.41.0 to 1.42.1

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.42.1

1.42.1

Bump Dependencies

v1.42.0

1.42.0

Add a set of Claude skill as a marketplace plugin

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.42.1

Bump Dependencies

1.42.0

Add a set of Claude skill as a marketplace plugin

Commits

Summary by CodeRabbit

  • Chores
    • Updated several Go dependencies to newer versions, including AWS SDK components and test libraries.
    • These maintenance updates help keep the project current and may improve reliability and compatibility.

@dependabot dependabot Bot added area/ci-tooling Indicates the PR includes changes for CI or tooling ok-to-test Indicates a non-member PR verified by an org member that is safe to test. labels Jun 26, 2026
@openshift-merge-bot

Copy link
Copy Markdown
Contributor

Pipeline controller notification
This repo is configured to use the pipeline controller. Second-stage tests will be triggered either automatically or after lgtm label is added, depending on the repository configuration. The pipeline controller will automatically detect which contexts are required and will utilize /test Prow commands to trigger the second stage.

For optional jobs, comment /test ? to see a list of all defined jobs. To trigger manually all jobs from second stage use /pipeline required command.

This repository is configured in: LGTM mode

@coderabbitai

coderabbitai Bot commented Jun 26, 2026

Copy link
Copy Markdown
Contributor
📝 Walkthrough

Walkthrough

The PR updates go.mod dependency versions for github.com/aws/aws-sdk-go-v2/service/ec2, github.com/aws/smithy-go, github.com/onsi/ginkgo/v2, and github.com/onsi/gomega. No replace directives or exported declarations were changed.

Possibly related PRs

  • openshift/hypershift#8784: Also updates go.mod dependency versions, including overlapping AWS SDK v2 and testing library modules.

Suggested reviewers

  • jparrill
  • sdminonne
🚥 Pre-merge checks | ✅ 11
✅ Passed checks (11 passed)
Check name Status Explanation
Title check ✅ Passed The title accurately summarizes the dependency bump changes and matches the scope of the PR.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names ✅ Passed PR only bumps go.mod deps; no test titles or Ginkgo DSL changes were introduced.
Test Structure And Quality ✅ Passed PR only updates go.mod/go.sum and vendored deps; no repository Ginkgo test code was modified, so this review is not applicable.
Topology-Aware Scheduling Compatibility ✅ Passed Only go.mod/go.sum and vendored dependency code changed; no manifests, controllers, or scheduling logic were modified, so topology-aware scheduling isn’t implicated.
Ipv6 And Disconnected Network Test Compatibility ✅ Passed PR only bumps go.mod/go.sum deps; no new Ginkgo e2e tests or networking code were added, so no IPv4/external-connectivity issue.
No-Weak-Crypto ✅ Passed No new MD5/SHA1/DES/RC4/Blowfish/ECB or weak secret-comparison code was added; the only Blowfish hit is pre-existing vendor metadata.
Container-Privileges ✅ Passed Diff only updates go.mod/go.sum and vendor files; no container/K8s manifests or privilege flags were changed.
No-Sensitive-Data-In-Logs ✅ Passed PR only bumps Go dependencies in go.mod; no logging statements or sensitive data exposure was introduced.
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dependabot/go_modules/github-dependencies-8365f03f3e

Comment @coderabbitai help to get the list of available commands.

@openshift-ci

openshift-ci Bot commented Jun 26, 2026

Copy link
Copy Markdown
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign muraee for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci

openshift-ci Bot commented Jun 26, 2026

Copy link
Copy Markdown
Contributor

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-ci openshift-ci Bot requested review from enxebre and muraee June 26, 2026 01:06
@github-actions github-actions Bot force-pushed the dependabot/go_modules/github-dependencies-8365f03f3e branch from 0f21226 to 28417e2 Compare June 26, 2026 01:14
@dependabot dependabot Bot changed the title build(deps): bump the github-dependencies group with 4 updates build(deps): bump the github-dependencies group across 1 directory with 4 updates Jun 26, 2026
@dependabot dependabot Bot force-pushed the dependabot/go_modules/github-dependencies-8365f03f3e branch from 28417e2 to a8d2482 Compare June 26, 2026 01:53
…th 4 updates

- ec2: 1.307.1 => 1.308.0
- smithy-go: 1.27.1 => 1.27.2
- v2: 2.31.0 => 2.32.0
- gomega: 1.41.0 => 1.42.1

Signed-off-by: dependabot[bot] <support@github.com>
@github-actions github-actions Bot force-pushed the dependabot/go_modules/github-dependencies-8365f03f3e branch from a8d2482 to c4e708e Compare June 26, 2026 01:57
@openshift-ci

openshift-ci Bot commented Jun 26, 2026

Copy link
Copy Markdown
Contributor

@dependabot[bot]: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@dependabot @github

dependabot Bot commented on behalf of github Jul 3, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jul 3, 2026
@dependabot dependabot Bot deleted the dependabot/go_modules/github-dependencies-8365f03f3e branch July 3, 2026 01:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

area/ci-tooling Indicates the PR includes changes for CI or tooling ok-to-test Indicates a non-member PR verified by an org member that is safe to test.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants