Skip to content

Bump the gomod-dependencies group across 1 directory with 5 updates #919

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump the gomod-dependencies group across 1 directory with 5 updates #919

wants to merge 1 commit into from
+86 −163

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 10, 2025

Bumps the gomod-dependencies group with 4 updates in the /providers directory: github.com/GoogleCloudPlatform/k8s-cloud-provider, github.com/stretchr/testify, golang.org/x/oauth2 and google.golang.org/api.

Updates github.com/GoogleCloudPlatform/k8s-cloud-provider from 1.25.0 to 1.34.0

Release notes

Sourced from github.com/GoogleCloudPlatform/k8s-cloud-provider's releases.

v1.34.0

Summary

  • Support for Regional TargetTCPProxy
  • Support custom headers in requests
  • e2e testing fixes
  • Ability to return partial success from AggregatedList
  • Patch for global TargetHTTPSProxy

What's Changed

Full Changelog: GoogleCloudPlatform/k8s-cloud-provider@v1.33.0...v1.34.0

v1.29.0

What's Changed

New Contributors

Full Changelog: GoogleCloudPlatform/k8s-cloud-provider@v1.28.0...v1.29.0

v1.27.0

What's Changed

New Contributors

Full Changelog: GoogleCloudPlatform/k8s-cloud-provider@v1.26.0...v1.27.0

Commits
  • 7377992 Merge pull request #243 from kl52752/patch-https-proxy
  • 58812e0 Add Patch method for global TargetHTTPSProxy
  • e163b50 Merge pull request #241 from GoogleCloudPlatform/dependabot/go_modules/golang...
  • 417a64a Bump golang.org/x/crypto from 0.31.0 to 0.35.0
  • f45f962 Merge pull request #238 from bowei/pr-fixconst
  • 2ca43ad Fix non-const format strings
  • 19ea140 Fix non-const format string
  • 827fdbf Fix non-constant logf argument
  • b450481 Update year in generated files
  • e553d08 Merge pull request #237 from briantkennedy/agglist
  • Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.10.0 to 1.11.1

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.11.1

This release fixes #1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.

What's Changed

Full Changelog: stretchr/testify@v1.11.0...v1.11.1

v1.11.0

What's Changed

Functional Changes

v1.11.0 Includes a number of performance improvements.

Fixes

Documentation, Build & CI

... (truncated)

Commits
  • 2a57335 Merge pull request #1788 from brackendawson/1785-backport-1.11
  • af8c912 Backport #1786 to release/1.11
  • b7801fb Merge pull request #1778 from stretchr/dependabot/github_actions/actions/chec...
  • 69831f3 build(deps): bump actions/checkout from 4 to 5
  • a53be35 Improve captureTestingT helper
  • aafb604 mock: improve formatting of error message
  • 7218e03 improve error msg
  • 929a212 Merge pull request #1758 from stretchr/dolmen/suite-faster-method-filtering
  • bc7459e suite: faster filtering of methods (-testify.m)
  • 7d37b5c suite: refactor methodFilter
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.27.0 to 0.33.0

Commits
  • f28b0b5 all: fix some comments
  • fd15e0f x/oauth2: populate RetrieveError from DeviceAuth
  • 792c877 oauth2: use strings.Builder instead of bytes.Buffer
  • 014cf77 all: upgrade go directive to at least 1.24.0 [generated]
  • 3c76ce5 endpoints: correct Naver OAuth2 endpoint URLs
  • cf14319 oauth2: fix expiration time window check
  • 32d34ef internal: include clientID in auth style cache key
  • 2d34e30 oauth2: replace a magic number with AuthStyleUnknown
  • 696f7b3 all: modernize with doc links and any
  • 471209b oauth2: drop dependency on go-cmp
  • Additional commits viewable in compare view

Updates google.golang.org/api from 0.199.0 to 0.255.0

Release notes

Sourced from google.golang.org/api's releases.

v0.255.0

0.255.0 (2025-11-04)

Features

v0.254.0

0.254.0 (2025-10-28)

Features

v0.253.0

0.253.0 (2025-10-22)

Features

v0.252.0

0.252.0 (2025-10-07)

Features

... (truncated)

Changelog

Sourced from google.golang.org/api's changelog.

0.255.0 (2025-11-04)

Features

0.254.0 (2025-10-28)

Features

0.253.0 (2025-10-22)

Features

0.252.0 (2025-10-07)

Features

... (truncated)

Commits

Updates cloud.google.com/go/compute/metadata from 0.6.0 to 0.9.0

Release notes

Sourced from cloud.google.com/go/compute/metadata's releases.

compute/metadata: v0.9.0

0.9.0 (2025-09-24)

Features

longrunning 0.7.0

0.7.0 (2025-10-14)

Features

  • add ListOperations partial success flag
  • add ListOperations unreachable resources
Changelog

Sourced from cloud.google.com/go/compute/metadata's changelog.

Code changes required from v0.9.0

  • pubsub: Replace

    sub.ModifyPushConfig(ctx, pubsub.PushConfig{Endpoint: "https://example.com/push"})

    with

    sub.Update(ctx, pubsub.SubscriptionConfigToUpdate{
    PushConfig: &pubsub.PushConfig{Endpoint: "https://example.com/push"},
})

  • trace: traceGRPCServerInterceptor will be provided from *trace.Client. Given an initialized *trace.Client named tc, instead of

    s := grpc.NewServer(grpc.UnaryInterceptor(trace.GRPCServerInterceptor(tc)))

    write

    s := grpc.NewServer(grpc.UnaryInterceptor(tc.GRPCServerInterceptor()))

  • trace trace.GRPCClientInterceptor will also provided from *trace.Client. Instead of

    conn, err := grpc.Dial(srv.Addr, grpc.WithUnaryInterceptor(trace.GRPCClientInterceptor()))

    write

    conn, err := grpc.Dial(srv.Addr, grpc.WithUnaryInterceptor(tc.GRPCClientInterceptor()))

  • trace: We removed the deprecated trace.EnableGRPCTracing. Use the gRPC interceptor as a dial option as shown below when initializing Cloud package clients:

    c, err := pubsub.NewClient(ctx, "project-id", option.WithGRPCDialOption(grpc.WithUnaryInterceptor(tc.GRPCClientInterceptor())))
if err != nil {
    ...

... (truncated)

Commits
  • d4f8670 BREAKING: all: regenerate toolkit client
  • 23179f2 readme: document Trace and Error Reporting clients
  • c2e00bb trace: switch to grpc-trace-bin for gRPC calls
  • 1de0ed4 rpcreplay: Fprintf functions
  • 8878988 bigtable/bttest: Return proper error code when entity already exists
  • e432073 bigtable: Don't retry on INTERNAL errors.
  • 84bf648 rpcreplay: responses to code review comments from previous CL
  • e687f27 rpcreplay: replay of unary RPCs
  • 9da216d spanner: more integration tests
  • a089e75 logging: document that Close flushes the loggers
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the gomod-dependencies group across 1 directory with 5 updates
38f6d0e 
Bumps the gomod-dependencies group with 4 updates in the /providers directory: [github.com/GoogleCloudPlatform/k8s-cloud-provider](https://github.com/GoogleCloudPlatform/k8s-cloud-provider), [github.com/stretchr/testify](https://github.com/stretchr/testify), [golang.org/x/oauth2](https://github.com/golang/oauth2) and [google.golang.org/api](https://github.com/googleapis/google-api-go-client).


Updates `github.com/GoogleCloudPlatform/k8s-cloud-provider` from 1.25.0 to 1.34.0
- [Release notes](https://github.com/GoogleCloudPlatform/k8s-cloud-provider/releases)
- [Commits](GoogleCloudPlatform/k8s-cloud-provider@v1.25.0...v1.34.0)

Updates `github.com/stretchr/testify` from 1.10.0 to 1.11.1
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](stretchr/testify@v1.10.0...v1.11.1)

Updates `golang.org/x/oauth2` from 0.27.0 to 0.33.0
- [Commits](golang/oauth2@v0.27.0...v0.33.0)

Updates `google.golang.org/api` from 0.199.0 to 0.255.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.199.0...v0.255.0)

Updates `cloud.google.com/go/compute/metadata` from 0.6.0 to 0.9.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@v0.6.0...v0.9.0)

---
updated-dependencies:
- dependency-name: github.com/GoogleCloudPlatform/k8s-cloud-provider
  dependency-version: 1.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-dependencies
- dependency-name: github.com/stretchr/testify
  dependency-version: 1.11.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-dependencies
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.33.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.255.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-dependencies
- dependency-name: cloud.google.com/go/compute/metadata
  dependency-version: 0.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added area/dependency Issues or PRs related to dependency changes ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. labels Nov 10, 2025
@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Nov 10, 2025
@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Nov 10, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign sergeykanzhelev for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. label Nov 10, 2025
@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Nov 10, 2025

This issue is currently awaiting triage.

If the repository mantainers determine this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Nov 10, 2025

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a github.com member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Nov 10, 2025
@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Nov 10, 2025

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
cloud-provider-gcp-verify-up-to-date 38f6d0e link true /test cloud-provider-gcp-verify-up-to-date
cloud-provider-gcp-verify-all 38f6d0e link true /test cloud-provider-gcp-verify-all
pull-cloud-provider-gcp-scenario-kops-simple 38f6d0e link false /test pull-cloud-provider-gcp-scenario-kops-simple

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@justinsb justinsb Awaiting requested review from justinsb

@seans3 seans3 Awaiting requested review from seans3

Assignees

No one assigned

Labels

area/dependency Issues or PRs related to dependency changes cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@k8s-ci-robot