build(deps): bump the go-dependencies group across 2 directories with 11 updates

[dependabot]

Bumps the go-dependencies group with 8 updates in the / directory:

Package	From	To
github.com/Azure/azure-sdk-for-go/sdk/azcore	1.21.1	1.22.0
github.com/aws/aws-sdk-go-v2	1.41.11	1.41.12
github.com/aws/aws-sdk-go-v2/config	1.32.22	1.32.23
github.com/aws/aws-sdk-go-v2/service/cloudcontrol	1.30.4	1.30.5
github.com/aws/aws-sdk-go-v2/service/cloudformation	1.71.15	1.72.0
github.com/aws/aws-sdk-go-v2/service/ec2	1.305.1	1.305.2
github.com/aws/aws-sdk-go-v2/service/ecr	1.58.2	1.58.3
github.com/fluxcd/pkg/apis/meta	1.28.0	1.29.0

Bumps the go-dependencies group with 1 update in the /test/magpiego directory: github.com/Azure/azure-sdk-for-go/sdk/azcore.

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.21.1 to 1.22.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.22.0

1.22.0 (2026-06-04)

Features Added

• Added type datetime.RFC7231 for date/time values in RFC 1123 format with a fixed GMT timezone.

Other Changes

• Upgraded dependencies.

Commits

• a19f613 Prep azcore@v1.22.0 for release (#26926)
• 5803c0e Increment package version after release of storage/azblob (#26935) (#26943)
• 9a979ff [Automation] Regenerate SDK based on typespec-go branch main 【batch 6】 (#26939)
• 711094d eng/tools/generator: release v0.4.14 (#26934)
• 20bd677 Deprecate Change Analysis SDK (#26913)
• 92a31ec [Automation] Regenerate SDK based on typespec-go branch main 【batch 5】 (#26932)
• 768459d azcertificates: live recording for PlatformManaged + review fixes (follow-up ...
• e845f72 Update codeowners (#26918)
• 118bb35 eng/tools/internal/exports: handle untyped const with selector expr value (#2...
• 2b3767b Configurations: 'specification/containerservice/resource-manager/Microsoft.C...
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2 from 1.41.11 to 1.41.12

Commits

• 7146c2b Release 2026-06-04
• 5aef2fd Regenerated Clients
• f94c044 Update API model
• f00b205 bump to smithy-go v1.27.1 (#3434)
• c4ad7de drop service/internal/benchmark (#3433)
• 91eca46 Release 2026-06-03.2
• e9d9e15 Regenerated Clients
• def6a3a Update API model
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.32.22 to 1.32.23

Commits

• 7146c2b Release 2026-06-04
• 5aef2fd Regenerated Clients
• f94c044 Update API model
• f00b205 bump to smithy-go v1.27.1 (#3434)
• c4ad7de drop service/internal/benchmark (#3433)
• 91eca46 Release 2026-06-03.2
• e9d9e15 Regenerated Clients
• def6a3a Update API model
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.19.21 to 1.19.22

Commits

• 7146c2b Release 2026-06-04
• 5aef2fd Regenerated Clients
• f94c044 Update API model
• f00b205 bump to smithy-go v1.27.1 (#3434)
• c4ad7de drop service/internal/benchmark (#3433)
• 91eca46 Release 2026-06-03.2
• e9d9e15 Regenerated Clients
• def6a3a Update API model
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/service/cloudcontrol from 1.30.4 to 1.30.5

Commits

• a2b751d Release 2024-09-03
• e22c249 Regenerated Clients
• ff0cf6f Update API model
• 3120376 refactoring of buildQuery to accept a list of maintained headers to l… (#2773)
• 4ed838e Merge pull request #2768 from bhavya2109sharma/presignedurl-requestpayer-change
• d4bd42f Merge branch 'main' into presignedurl-requestpayer-change
• 0353706 Added Changelog
• 97e2d3f Release 2024-08-30
• 4cca52b Regenerated Clients
• c8a5146 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/cloudformation from 1.71.15 to 1.72.0

Commits

• 9dbe383 Release 2025-01-03
• 2fb7c64 Regenerated Clients
• 4dd675d Update endpoints model
• 11494d4 Update API model
• 85a08fc Release 2025-01-02
• 4babd6c Regenerated Clients
• 8290236 Update endpoints model
• 75545e9 Update API model
• a655009 Release 2024-12-28
• a7b93d2 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ec2 from 1.305.1 to 1.305.2

Commits

• 7146c2b Release 2026-06-04
• 5aef2fd Regenerated Clients
• f94c044 Update API model
• f00b205 bump to smithy-go v1.27.1 (#3434)
• c4ad7de drop service/internal/benchmark (#3433)
• 91eca46 Release 2026-06-03.2
• e9d9e15 Regenerated Clients
• def6a3a Update API model
• See full diff in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ecr from 1.58.2 to 1.58.3

Commits

• 5102c2e Release 2024-08-02
• 001b1fd Regenerated Clients
• 0897137 Update API model
• a274795 add assurance tests for auth scheme select (#2730)
• 2d43bf8 Release 2024-08-01
• 5bd193d Regenerated Clients
• 5954703 Update API model
• 0c73d2b Release 2024-07-30
• 3102b1f Regenerated Clients
• 348b939 Update endpoints model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.43.1 to 1.43.2

Commits

• b4d02c5 Release 2026-06-02
• 48e375b Regenerated Clients
• b8a4fc1 Update API model
• e8627b4 Merge pull request #3430 from aws/fix-remove-ioutil
• 4e258a3 chore: update changelog description per review
• e1176df chore: add changelog entry
• a157f15 chore: regenerate SDK with new smithy-go
• 0d4a893 chore: bump SMITHY_GO_CODEGEN_VERSION for ioutil cleanup
• 858d954 fix: remove deprecated io/ioutil from codegen templates
• 35a3c50 Release 2026-06-01
• Additional commits viewable in compare view

Updates github.com/aws/smithy-go from 1.27.0 to 1.27.1

Changelog

Sourced from github.com/aws/smithy-go's changelog.

Release (2026-06-04)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.27.1
  • Bug Fix: Fixed a deserialization failure in all protocols when encountering a union with explicit null members.
  • Bug Fix: Fixed a panic when deserializing nested unions in JSON- and CBOR-based protocols.

Release (2026-06-02)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.27.0
  • Feature: Add APIs for schema-based serialization.
  • Feature: Add support for all current AWS and Smithy protocols.
  • Bug Fix: Enforce max nesting depth of 128 on CBOR payloads.
• github.com/aws/smithy-go/aws-http-auth: v1.2.0
  • Feature: Add event stream signer.

Release (2026-05-27)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.26.0
  • Feature: Add StringSlice to endpoint rulesfn.

Release (2026-04-23)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.25.1
  • Bug Fix: Fixed a memory leak in the LRU cache implementation used by some AWS services.

Release (2026-04-15)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/smithy-go: v1.25.0
  • Feature: Add support for endpointBdd trait

... (truncated)

Commits

• 6a1dd2f Release 2026-06-04
• ec26415 fix nested union json ctx break/smithy.ReadUnion contract issue (#673)
• See full diff in compare view

Updates github.com/fluxcd/pkg/apis/meta from 1.28.0 to 1.29.0

Commits

• c6c3636 Merge pull request #1230 from fluxcd/release-main
• b75743f Prepare for release
• 2944b86 Merge pull request #1218 from gecube/feat/valuesfrom-literal
• bf5caf5 chartutil: add Literal mode to ValuesReference
• cdaab83 Merge pull request #1226 from fluxcd/release-main
• 1677a12 Prepare for release
• 21bc301 Merge pull request #1141 from bb-Ricardo/rb-feature/adds-ssh-signature-valida...
• 0c6159f git: fixes issue with order of imports
• ef5d54b git: stage fixture scripts via mktemp swap
• 1b84c2a git: cover more signature verification cases
• Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.21.1 to 1.22.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.22.0

1.22.0 (2026-06-04)

Features Added

• Added type datetime.RFC7231 for date/time values in RFC 1123 format with a fixed GMT timezone.

Other Changes

• Upgraded dependencies.

Commits

• a19f613 Prep azcore@v1.22.0 for release (#26926)
• 5803c0e Increment package version after release of storage/azblob (#26935) (#26943)
• 9a979ff [Automation] Regenerate SDK based on typespec-go branch main 【batch 6】 (#26939)
• 711094d eng/tools/generator: release v0.4.14 (#26934)
• 20bd677 Deprecate Change Analysis SDK (#26913)
• 92a31ec [Automation] Regenerate SDK based on typespec-go branch main 【batch 5】 (#26932)
• 768459d azcertificates: live recording for PlatformManaged + review fixes (follow-up ...
• e845f72 Update codeowners (#26918)
• 118bb35 eng/tools/internal/exports: handle untyped const with selector expr value (#2...
• 2b3767b Configurations: 'specification/containerservice/resource-manager/Microsoft.C...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 7 package(s) with unknown licenses.

See the Details below.

License Issues

go.mod

Package	Version	License	Issue Type
github.com/Azure/azure-sdk-for-go/sdk/azcore	1.22.0	Null	Unknown License
github.com/aws/aws-sdk-go-v2	1.41.12	Null	Unknown License
github.com/aws/aws-sdk-go-v2/config	1.32.23	Null	Unknown License
github.com/aws/aws-sdk-go-v2/service/cloudformation	1.72.0	Null	Unknown License
github.com/aws/aws-sdk-go-v2/service/ec2	1.305.2	Null	Unknown License

test/magpiego/go.mod

Package	Version	License	Issue Type
github.com/Azure/azure-sdk-for-go/sdk/azcore	1.22.0	Null	Unknown License
golang.org/x/net	0.55.0	Null	Unknown License

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
gomod/github.com/Azure/azure-sdk-for-go/sdk/azcore	1.22.0	Unknown	Unknown
gomod/github.com/aws/aws-sdk-go-v2	1.41.12	Unknown	Unknown
gomod/github.com/aws/aws-sdk-go-v2/config	1.32.23	Unknown	Unknown
gomod/github.com/aws/aws-sdk-go-v2/credentials	1.19.22	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/feature/ec2/imds	1.18.28	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/internal/configsources	1.4.28	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	2.7.28	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/internal/v4a	1.4.29	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/cloudcontrol	1.30.5	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/cloudformation	1.72.0	Unknown	Unknown
gomod/github.com/aws/aws-sdk-go-v2/service/ec2	1.305.2	Unknown	Unknown
gomod/github.com/aws/aws-sdk-go-v2/service/ecr	1.58.3	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	1.13.12	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	1.13.28	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/signin	1.1.4	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/sso	1.31.2	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/ssooidc	1.36.5	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/aws-sdk-go-v2/service/sts	1.43.2	🟢 6.7	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review ⚠️ 2 Found 7/30 approved changesets -- score normalized to 2 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Packaging ⚠️ -1 packaging workflow not detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0
gomod/github.com/aws/smithy-go	1.27.1	🟢 8	Details Check Score Reason Code-Review 🟢 6 Found 20/30 approved changesets -- score normalized to 6 Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 10 23 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 6 branch protection is not maximal on development and all release branches Fuzzing 🟢 10 project is fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Binary-Artifacts 🟢 9 binaries present in source code Security-Policy 🟢 10 security policy file detected SAST 🟢 9 SAST tool is not run on all commits -- score normalized to 9
gomod/github.com/fluxcd/pkg/apis/meta	1.29.0	🟢 7.8	Details Check Score Reason Dependency-Update-Tool 🟢 10 update tool detected Code-Review 🟢 10 all changesets reviewed Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Maintained 🟢 10 30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected CII-Best-Practices ⚠️ 2 badge detected: InProgress Pinned-Dependencies 🟢 8 dependency not pinned by hash detected -- score normalized to 8 SAST 🟢 9 SAST tool detected but not run on all commits Fuzzing 🟢 10 project is fuzzed Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Vulnerabilities ⚠️ 0 21 existing vulnerabilities detected CI-Tests 🟢 10 10 out of 10 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 42 contributing companies or organizations
gomod/github.com/Azure/azure-sdk-for-go/sdk/azcore	1.22.0	Unknown	Unknown
gomod/golang.org/x/net	0.55.0	Unknown	Unknown

Scanned Files

• go.mod
• test/magpiego/go.mod

[github-actions]

Unit Tests

    2 files  ±0    438 suites  ±0   7m 40s ⏱️ +25s
5 322 tests ±0  5 320 ✅ ±0  2 💤 ±0  0 ❌ ±0 
6 476 runs  ±0  6 474 ✅ ±0  2 💤 ±0  0 ❌ ±0 

Results for commit 05784ff. ± Comparison against base commit 217df75.

♻️ This comment has been updated with latest results.

[sylvainsf]

lgtm

[radius-functional-tests]

Radius functional test overview

🔍 Go to test action run

Click here to see the test run details

Name	Value
Repository	radius-project/radius
Commit ref	05784ff
Unique ID	func5d10cbba3b
Image tag	pr-func5d10cbba3b

• gotestsum 1.13.0
• KinD: v0.29.0
• Dapr: 1.14.4
• Azure KeyVault CSI driver: 1.4.2
• Azure Workload identity webhook: 1.3.0
• Bicep recipe location ghcr.io/radius-project/dev/test/testrecipes/test-bicep-recipes/<name>:pr-func5d10cbba3b
• Terraform recipe location http://tf-module-server.radius-test-tf-module-server.svc.cluster.local/<name>.zip (in cluster)
• applications-rp test image location: ghcr.io/radius-project/dev/applications-rp:pr-func5d10cbba3b
• dynamic-rp test image location: ghcr.io/radius-project/dev/dynamic-rp:pr-func5d10cbba3b
• controller test image location: ghcr.io/radius-project/dev/controller:pr-func5d10cbba3b
• ucp test image location: ghcr.io/radius-project/dev/ucpd:pr-func5d10cbba3b
• deployment-engine test image location: ghcr.io/radius-project/deployment-engine:latest

Test Status

⌛ Building Radius and pushing container images for functional tests...
✅ Container images build succeeded
⌛ Publishing Bicep Recipes for functional tests...
✅ Recipe publishing succeeded
⌛ Starting ucp-cloud functional tests...
⌛ Starting corerp-cloud functional tests...
✅ ucp-cloud functional tests succeeded
✅ corerp-cloud functional tests succeeded

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 52.14%. Comparing base (217df75) to head (05784ff).

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #12060      +/-   ##
==========================================
- Coverage   52.15%   52.14%   -0.01%     
==========================================
  Files         734      734              
  Lines       46704    46704              
==========================================
- Hits        24357    24354       -3     
- Misses      20013    20015       +2     
- Partials     2334     2335       +1     

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.