Skip to content

chore(deps)(deps): bump k8s.io/api from 0.33.1 to 0.34.2 #46

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore(deps)(deps): bump k8s.io/api from 0.33.1 to 0.34.2 #46

wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 18, 2025

Bumps k8s.io/api from 0.33.1 to 0.34.2.

Commits
  • e28454b Update dependencies to v0.34.2 tag
  • 133a39c Merge remote-tracking branch 'origin/master' into release-1.34
  • fd087be clarify that staging repos are automatically published
  • ff163ef add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
  • 5ec86fc link to what a staging repository is
  • 08c5dee docs: clarify that this is a staging repository and not for direct contributions
  • ba64d0b Update prerelease lifecycle to v1.34
  • 25f849c Merge pull request #132522 from sunya-ch/KEP-5075-PR
  • baa1eb1 KEP-5075: generated codes from make update
  • 740b2c9 KEP-5075: API updates
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps)(deps): bump k8s.io/api from 0.33.1 to 0.34.2
0fb2419 
Bumps [k8s.io/api](https://github.com/kubernetes/api) from 0.33.1 to 0.34.2.
- [Commits](kubernetes/api@v0.33.1...v0.34.2)

---
updated-dependencies:
- dependency-name: k8s.io/api
  dependency-version: 0.34.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Nov 18, 2025

Labels

The following labels could not be found: dependencies, go. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@vivekr-splunk vivekr-splunk self-requested a review November 18, 2025 18:50
vivekr-splunk pushed a commit that referenced this pull request Nov 18, 2025
@claude
chore: improve Dependabot configuration and dependency management
03e0b4d 
Add comprehensive dependency management tools and documentation to reduce
Dependabot noise and streamline dependency updates.

Changes:

1. **Updated .github/dependabot.yml**
   - Reduced update frequency: weekly → monthly for Go, quarterly for Actions
   - Reduced open PR limit: 10 → 5 for Go, 10 → 3 for Actions
   - Added dependency grouping to batch related updates:
     - kubernetes-core: k8s.io/* packages together
     - kubernetes-sigs: sigs.k8s.io/* packages together
     - cloud-providers: Azure, AWS SDKs together
     - observability: Prometheus, logr together
     - testing: Test frameworks together
   - Ignore major version updates (require manual review)
   - This reduces ~20 individual PRs down to ~5 grouped PRs per month

2. **New: scripts/close-dependabot-issues.sh**
   - Automated script to close irrelevant Dependabot issues
   - Closes GitHub Actions updates (we pin to commit hashes)
   - Closes invalid issues (e.g., Golang 1.24→1.25 when we're on 1.23.0)
   - Adds explanatory comments before closing
   - Handles 12 current issues: #29-41 (Actions), #34 (invalid)

3. **New: .github/ISSUE_TEMPLATE/dependency-updates-tracking.md**
   - Template for creating consolidated dependency update issues
   - Includes checklists for testing and validation
   - Guides through update process step-by-step
   - Reusable for future release cycles

4. **New: docs/post-v0.1.0-dependency-updates.md**
   - Complete tracking issue content for v0.2.0 dependency updates
   - Categorizes 9 remaining Dependabot issues by priority:
     - HIGH: K8s core (#46,#45,#42), controller-runtime (#49), cert-manager (#44)
     - MEDIUM: Azure SDK (#48), observability (#39,#43)
     - LOW: Testing deps (#47,#38)
   - Includes implementation plan, testing checklist, timeline
   - Ready to be posted as GitHub issue after v0.1.0 release

Benefits:
- Reduces Dependabot noise from 20+ weekly PRs to 5 monthly grouped PRs
- Provides clear process for handling dependency updates
- Batches related updates for easier testing
- Documents why certain issues are closed
- Creates structured approach for future updates

Impact:
- 12 irrelevant issues can be closed immediately
- 9 valid issues consolidated into one v0.2.0 tracking issue
- Future Dependabot PRs will be grouped and less frequent

Usage:
1. Run: ./scripts/close-dependabot-issues.sh (after v0.1.0 release)
2. Create tracking issue using docs/post-v0.1.0-dependency-updates.md
3. New Dependabot config takes effect immediately

🤖 Generated with Claude Code

Co-Authored-By: Claude <noreply@anthropic.com>
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Nov 18, 2025

Superseded by #57.

@dependabot dependabot bot closed this Nov 18, 2025
@dependabot dependabot bot deleted the dependabot/go_modules/k8s.io/api-0.34.2 branch November 18, 2025 21:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vivekr-splunk vivekr-splunk Awaiting requested review from vivekr-splunk

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants