Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Repository problems

These problems occurred while renovating this repository. View logs.

• WARN: Package lookup failures

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package aquasecurity/trivy-action).

Files affected: .github/workflows/docker-build.yml

---

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• chore(deps): update amannn/action-semantic-pull-request digest to 3352882
• chore(deps): update anchore/sbom-action digest to e11c554
• chore(deps): update github/codeql-action digest to b1e4dc3
• fix(deps): update k8s.io/utils digest to 4c0f3b2
• chore(deps): update dependency golangci/golangci-lint to v1.64.8
• fix(deps): update module github.com/go-logr/logr to v1.4.3
• fix(deps): update module github.com/kimmachinegun/automemlimit to v0.7.2
• chore(deps): update all-ci-dependencies (actions/setup-go, aquasecurity/trivy-action, capsule, codecov/codecov-action, goreleaser/goreleaser-action, securego/gosec, sigstore/cosign-installer, zgosalvez/github-actions-ensure-sha-pinned-actions)
• chore(deps): update dependency adrienverge/yamllint to v1.37.1
• chore(deps): update dependency alessandrojcm/commitlint-pre-commit-hook to v9.22.0
• chore(deps): update dependency go to v1.24.4
• chore(deps): update dependency google/ko to v0.18.0
• chore(deps): update dependency helm/chart-testing to v3.13.0
• chore(deps): update dependency kubernetes-sigs/kind to v0.29.0
• fix(deps): update kubernetes packages to v0.33.1 (k8s.io/apimachinery, k8s.io/client-go, k8s.io/kubectl)
• fix(deps): update module github.com/onsi/ginkgo/v2 to v2.23.4
• fix(deps): update module github.com/onsi/gomega to v1.37.0
• fix(deps): update module github.com/projectcapsule/capsule to v0.10.0
• fix(deps): update module github.com/prometheus/client_golang to v1.22.0
• fix(deps): update module github.com/prometheus/prometheus to v0.304.1
• fix(deps): update module github.com/valyala/fasthttp to v1.62.0
• fix(deps): update module sigs.k8s.io/controller-runtime to v0.21.0
• chore(deps): update dependency golangci/golangci-lint to v2
• fix(deps): update module github.com/caarlos0/env/v8 to v11
• fix(deps): update module gopkg.in/yaml.v2 to v3
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

flux

e2e/objects/distro/capsule.flux.yaml

• capsule 0.7.4

e2e/objects/distro/cert-manager.flux.yaml

e2e/objects/distro/metrics.flux.yaml

• metrics-server 3.12.2

github-actions

.github/workflows/check-actions.yaml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• zgosalvez/github-actions-ensure-sha-pinned-actions v3.0.22@25ed13d0628a1601b4b44048e63cc4328ed03633

.github/workflows/check-commit.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• wagoid/commitlint-github-action v6.2.1@b948419dd99f3fd78a6548d48f94e3df7f6bf3ed
• ubuntu 24.04

.github/workflows/check-pr.yml

• amannn/action-semantic-pull-request 40166f00814508ec3201fc8595b393d451c8cd80

.github/workflows/coverage.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.3.0@f111f3307d8850f501ac008e886eec1fd1932a34
• securego/gosec v2.22.2@136f6c00402b11775d4f4a45d5a21e2f6dd99db2
• github/codeql-action b2e6519679e446e7bb7c3466d70f13a6b5461fcd
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.3.0@f111f3307d8850f501ac008e886eec1fd1932a34
• codecov/codecov-action v5.4.0@0565863a31f2c772f9f0395002a31e3f06189574
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/docker-build.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• aquasecurity/trivy-action v0.29.0@18f2510ee396bbf400402947b394f2dd8c87dbb0
• github/codeql-action b2e6519679e446e7bb7c3466d70f13a6b5461fcd

.github/workflows/docker-publish.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• sigstore/cosign-installer v3.8.1@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a
• peak-scale/github-actions v0.2.0@a441cca016861c546ab7e065277e40ce41a3eb84
• slsa-framework/slsa-github-generator v2.1.0

.github/workflows/helm-publish.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• sigstore/cosign-installer v3.8.1@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a
• peak-scale/github-actions v0.2.0@a441cca016861c546ab7e065277e40ce41a3eb84
• slsa-framework/slsa-github-generator v2.1.0
• ubuntu 24.04

.github/workflows/helm-test.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• azure/setup-helm v4@b9e51907a09c216f16ebe8536097933489208112
• ubuntu 24.04

.github/workflows/lint.yaml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/setup-go v5.3.0@f111f3307d8850f501ac008e886eec1fd1932a34
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/releaser.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• creekorful/goreportcard-action v1.0@1f35ced8cdac2cba28c9a2f2288a16aacfd507f9
• anchore/sbom-action 79202aee38a39bd2039be442e58d731b63baf740
• sigstore/cosign-installer v3.8.1@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a
• goreleaser/goreleaser-action v6.2.1@90a3faa9d0182683851fbfa97ca1a2cb983bfca3

gomod

go.mod

• go 1.23.0
• go 1.23.5
• github.com/KimMachineGun/automemlimit v0.7.1
• github.com/blind-oracle/go-common v1.0.7
• github.com/caarlos0/env/v11 v11.3.1
• github.com/caarlos0/env/v8 v8.0.0
• github.com/go-logr/logr v1.4.2
• github.com/gogo/protobuf v1.3.2
• github.com/golang/snappy v1.0.0
• github.com/google/uuid v1.6.0
• github.com/hashicorp/go-multierror v1.1.1
• github.com/onsi/ginkgo/v2 v2.22.2
• github.com/onsi/gomega v1.36.2
• github.com/pkg/errors v0.9.1
• github.com/projectcapsule/capsule v0.7.4
• github.com/prometheus/client_golang v1.21.1
• github.com/prometheus/prometheus v0.302.1
• github.com/sirupsen/logrus v1.9.3
• github.com/stretchr/testify v1.10.0
• github.com/valyala/fasthttp v1.58.0
• go.uber.org/automaxprocs v1.6.0
• gopkg.in/yaml.v2 v2.4.0
• gopkg.in/yaml.v3 v3.0.1
• k8s.io/apimachinery v0.32.2
• k8s.io/client-go v0.32.2
• k8s.io/kubectl v0.32.2
• k8s.io/utils v0.0.0-20241210054802-24370beab758@24370beab758
• sigs.k8s.io/controller-runtime v0.20.2

helm-values

charts/cortex-proxy/values.yaml

regex

Makefile

• norwoodj/helm-docs v1.30.0
• helm/chart-testing v3.12.0
• kubernetes-sigs/kind v0.27.0
• google/ko v0.17.1
• golangci/golangci-lint v1.64.6

.pre-commit-config.yaml

• alessandrojcm/commitlint-pre-commit-hook v9.21.0
• pre-commit/pre-commit-hooks v5.0.0
• adrienverge/yamllint v1.35.1

---

• Check this box to trigger a request for Renovate to run again on this repository