Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): Bump the production-dependencies group across 1 directory with 3 updates #1266

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 11, 2025

Bumps the production-dependencies group with 2 updates in the /api directory: kubevirt.io/containerized-data-importer-api and golang.org/x/net.

Updates kubevirt.io/containerized-data-importer-api from 1.61.0 to 1.61.1

Release notes

Sourced from kubevirt.io/containerized-data-importer-api's releases.

v1.61.1

This release follows v1.61.0 and consists of 9 changes, contributed by 2 people, leading to 164 files changed, 13499 insertions(+), 2900 deletions(-).

The source code and selected binaries are available for download at: https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.61.1.

Pre-built CDI containers are published on Quay.io and can be viewed at: https://quay.io/repository/kubevirt/cdi-controller/ https://quay.io/repository/kubevirt/cdi-importer/ https://quay.io/repository/kubevirt/cdi-cloner/ https://quay.io/repository/kubevirt/cdi-uploadproxy/ https://quay.io/repository/kubevirt/cdi-apiserver/ https://quay.io/repository/kubevirt/cdi-uploadserver/ https://quay.io/repository/kubevirt/cdi-operator/

Notable changes

Changelog: https://github.com/kubevirt/containerized-data-importer/pulls?q=is%3Apr+merged%3A2024-11-28..2025-01-28+base%3Arelease-v1.61+sort%3Aupdated-desc+is%3Aclosed+

Contributors

2 people contributed to this release:

     7	kubevirt-bot <kubevirtbot@redhat.com>
     2	Alex Kalenyuk <akalenyu@redhat.com>

Additional Resources

Changelog

Sourced from kubevirt.io/containerized-data-importer-api's changelog.

v1.61.0 Enhancement: Add nbdkit command line parameters to improve reliability of multi-stage VDDK imports Enhancement: enable cross compile tools for s390x for CDI builder BugFix: Fix PVC deletion logic in CDI populators Enhancement: enable s390x native build BugFix: Bump tar rpm to fix concurrent host-assisted clone tar failure on file change during read BugFix: Increased size of scratch space to take fs overhead into account Enhancement: Handle desired storage class changes automatically in cron controller by deleting old storage class sources Cleanup: Deprecating ObjectTransfer feature Enhancement: provide s390x support for functional tests Enhancement: Add s390x nightly build automation BugFix: Handle PunchHole/AppendZeroWithTruncate failures Enhancement: Suppress alerting for static provisioning Cleanup: Document device_ownership_from_security_context=true for containerd v2 BugFix: Warm imports to filesystem volumes would fail size validation on subsequent snapshots Enhancement: Explicitly declaring containerPort in cdi-apiserver deployment BugFix: Reduce frequency of SCC management Events BugFix: Reduce frequency of Route management events BugFix: Fix uploading for block devices that exceed requested size Cleanup: Standardize go.mod to not specify patch version BugFix: nil pointer in handleSnapshot BugFix: config controller broken with ingresses Enhancement: Add RWX to AWS EBS io2 storage capabilities BugFix: VDDK Fix Incomplete transfer of change blocks leads to data corruption Cleanup: cdi-uploadserver: healthcheck and application use same port

v1.61.1 https://github.com/kubevirt/containerized-data-importer/pulls?q=is%3Apr+merged%3A2024-11-28..2025-01-28+base%3Arelease-v1.61+sort%3Aupdated-desc+is%3Aclosed+

Commits

Updates golang.org/x/net from 0.34.0 to 0.35.0

Commits
  • df97a48 go.mod: update golang.org/x dependencies
  • 2dab271 route: treat short sockaddr lengths as unspecified
  • b914489 internal/http3: refactor in prep for sharing transport/server code
  • ebd23f8 route: fix parsing network address of length zero
  • 938a9fb internal/http3: add request/response body transfer
  • 145b2d7 internal/http3: add RoundTrip
  • 5bda71a internal/http3: define connection and stream error types
  • 3c1185a internal/http3: return error on mid-frame EOF
  • a6c2c7f http2, internal/httpcommon: factor out common request header logic for h2/h3
  • c72e89d internal/http3: QPACK encoding and decoding
  • Additional commits viewable in compare view

Updates golang.org/x/text from 0.21.0 to 0.22.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 3 updates

Bumps the production-dependencies group with 2 updates in the /api directory: [kubevirt.io/containerized-data-importer-api](https://github.com/kubevirt/containerized-data-importer) and [golang.org/x/net](https://github.com/golang/net).


Updates `kubevirt.io/containerized-data-importer-api` from 1.61.0 to 1.61.1
- [Release notes](https://github.com/kubevirt/containerized-data-importer/releases)
- [Changelog](https://github.com/kubevirt/containerized-data-importer/blob/v1.61.1/manual-release-notes)
- [Commits](kubevirt/containerized-data-importer@v1.61.0...v1.61.1)

Updates `golang.org/x/net` from 0.34.0 to 0.35.0
- [Commits](golang/net@v0.34.0...v0.35.0)

Updates `golang.org/x/text` from 0.21.0 to 0.22.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.21.0...v0.22.0)

---
updated-dependencies:
- dependency-name: kubevirt.io/containerized-data-importer-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: golang.org/x/net
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: golang.org/x/text
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the release-note-none Denotes a PR that doesn't merit a release note. label Feb 11, 2025
@kubevirt-bot kubevirt-bot added the dco-signoff: yes Indicates the PR's author has DCO signed all their commits. label Feb 11, 2025
@jcanocan
Copy link
Contributor

/retest-required

Dependabot does not update the top-level module after
it updated api module.

Signed-off-by: Andrej Krejcir <akrejcir@redhat.com>
@akrejcir
Copy link
Collaborator

I've added another commit to this PR that calls make vendor to update top-level module.

@jcanocan
Copy link
Contributor

/lgtm

@kubevirt-bot kubevirt-bot added the lgtm Indicates that a PR is ready to be merged. label Feb 11, 2025
@akrejcir
Copy link
Collaborator

/approve

@kubevirt-bot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: akrejcir

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@kubevirt-bot kubevirt-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Feb 12, 2025
@kubevirt-bot kubevirt-bot merged commit c5baf4b into main Feb 12, 2025
15 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/api/production-dependencies-c57d46e3e7 branch February 12, 2025 10:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. dco-signoff: yes Indicates the PR's author has DCO signed all their commits. lgtm Indicates that a PR is ready to be merged. release-note-none Denotes a PR that doesn't merit a release note. size/XXL
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants