Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

🌱 Update Builder Image group #236

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

cluster-stack-bot[bot]
Copy link
Contributor

@cluster-stack-bot cluster-stack-bot bot commented Jul 1, 2024

This PR contains the following updates:

Package Type Update Change
docker.io/aquasec/trivy (source) stage minor 0.54.1 -> 0.57.1
docker.io/hadolint/hadolint stage digest 7dba9a9 -> 3c206a4
docker.io/library/alpine stage patch 3.20.2 -> 3.20.3
docker.io/library/golang final patch 1.23.0-bullseye -> 1.23.3-bullseye
golangci/golangci-lint minor v1.60.3 -> v1.62.0
helm/helm minor v3.14.1 -> v3.16.3

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.


Release Notes

aquasecurity/trivy (docker.io/aquasec/trivy)

v0.57.1

Compare Source

⚡Release highlights and summary⚡

👉https://github.com/aquasecurity/trivy/discussions/7951

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.57/CHANGELOG.md#0571-2024-11-18

v0.57.0

Compare Source

⚠ BREAKING CHANGES
  • k8s: support k8s multi container (#​7444)
Features
Bug Fixes

v0.56.2

Compare Source

Changelog

  • f2252c8 release: v0.56.2 [release/v0.56] (#​7694)
  • f6700ec fix(redhat): include arch in PURL qualifiers [backport: release/v0.56] (#​7702)
  • 25d2540 fix(sbom): add options for DBs in private registries [backport: release/v0.56] (#​7691)

v0.56.1

Compare Source

Changelog

v0.56.0

Compare Source

Features
Bug Fixes
Performance Improvements
Reverts
  • java: stop supporting of test scope for pom.xml files (#​7488) (b0222fe)

v0.55.2

Compare Source

Changelog

  • 928c7c0 release: v0.55.2 [release/v0.55] (#​7523)
  • 14a058f fix(java): use dependencyManagement from root/child pom's for dependencies from parents [backport: release/v0.55] (#​7521)
  • 990bc4e chore(deps): bump alpine from 3.20.0 to 3.20.3 [backport: release/v0.55] (#​7516)

v0.55.1

Compare Source

⚡Release highlights and summary⚡

👉https://github.com/aquasecurity/trivy/discussions/7494

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.55/CHANGELOG.md#0551-2024-09-12

v0.55.0

Compare Source

⚠ BREAKING CHANGES
  • cli: delete deprecated SBOM flags (#​7266)
Features
Bug Fixes
Performance Improvements
golangci/golangci-lint (golangci/golangci-lint)

v1.62.0

Compare Source

  1. New linters
  2. Updated linters
    • ⚠️ execinquery: deprecation step 2
    • ⚠️ gomnd: deprecation step 2 (replaced by mnd)
    • bidichk: from 0.2.7 to 0.3.2 (important performance improvement)
    • canonicalheader: from 1.1.1 to 1.1.2
    • cyclop: from 1.2.1 to 1.2.3
    • dupword: from 0.1.1 to 0.1.3
    • errcheck: from 1.7.0 to 1.8.0
    • errchkjson: from 0.3.6 to 0.4.0
    • errname: from 0.1.13 to 1.0.0
    • ginkgolinter: from 0.17.0 to 0.18.0 (new option: force-succeed)
    • go-check-sumtype: from 0.1.4 to 0.2.0 (new option: default-signifies-exhaustive)
    • go-critic: from 0.11.4 to 0.11.5
    • go-printf-func-name: from 7558a9e to v0.1.0
    • godot: from 1.4.17 to 1.4.18
    • gosec: from 2.21.2 to 2.21.4
    • intrange: from 0.2.0 to 0.2.1
    • loggercheck: from 0.9.4 to 0.10.1 (log/slog support)
    • musttag: from 0.12.2 to 0.13.0
    • nakedret: from 2.0.4 to 2.0.5
    • nilnil: from 0.1.9 to 1.0.0 (new option: detect-opposite)
    • noctx: from 0.0.2 to 0.1.0
    • protogetter: from 0.3.6 to 0.3.8
    • revive: from 1.3.9 to 1.5.0 (new rules: filename-format, and file-length-limit)
    • tenv: from 1.10.0 to 1.12.1 (handle dot import)
    • testifylint: from 1.4.3 to 1.5.0 (new checkers: contains, encoded-compare, regexp)
  3. Misc.
    • Type sizing when cross-compiling (32-bit).
    • code-climate: add check_name field
    • Improve Go version detection
    • Fix Go version propagation
  4. Documentation
    • Adds a section about exclude-dirs-use-default
    • Improve 'install from sources' section
    • Improve FAQ about Go versions
    • Improve linter/rule/check docs
    • Improve new linter section
    • Improve forbidigo pattern examples for built-in functions

v1.61.0

Compare Source

  1. Enhancements
    • Add junit-xml-extended format
    • Exclude Swagger Codegen files by default
  2. Updated linters
    • dupword: from 0.0.14 to 0.1.1
    • fatcontext: from 0.4.0 to 0.5.2
    • gci: from 0.13.4 to 0.13.5 (new option no-lex-order)
    • go-ruleguard: from 0.4.2 to 0fe6f58 (fix panic with custom linters)
    • godot: from 1.4.16 to 1.4.17
    • gomodguard: from 1.3.3 to 1.3.5
    • gosec: disable temporarily G407
    • gosec: from ab3f6c1 to 2.21.2 (partially fix G115)
    • intrange: from 0.1.2 to 0.2.0
    • nolintlint: remove the empty line in the directive replacement
  3. Misc.
    • Improve runtime version parsing
  4. Documentation
    • Add additional info about typecheck
helm/helm (helm/helm)

v3.16.3: Helm v3.16.3

Compare Source

Helm v3.16.3 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.3. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.16.4 is the next patch release and will be on December 11, 2024
  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

  • fix: fix label name cfd0749 (wangjingcun)
  • Fix typo in pkg/lint/rules/chartfile_test.go a303060 (Zach Burgess)
  • Increasing the size of the runner used for releases. ab45e8a (Matt Farina)
  • fix(hooks): correct hooks delete order 19fe320 (Suleiman Dibirov)
  • Bump github.com/containerd/containerd from 1.7.12 to 1.7.23 4fcc5c2 (dependabot[bot])

v3.16.2: Helm v3.16.2

Compare Source

Helm v3.16.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.2. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.16.3 is the next patch release and will be on November 13, 2024
  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

v3.16.1: Helm 3.16.1

Compare Source

Helm v3.16.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

This release fixes a regression that is in 3.16.0.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.1. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.16.2 is the next patch release and will be on October 09, 2024
  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

  • bumping version to 1.22.7 5a5449d (Robert Sirchia)
  • Merge pull request #​13327 from mattfarina/revert-11726 2cbf7fc (Joe Julian)

v3.16.0: Helm v3.16.0

Compare Source

Helm v3.16.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • added sha512sum template function
  • added ActiveHelp for cmds that don't take any more args
  • drops very old Kubernetes versions support in helm create
  • add --skip-schema-validation flag to helm 'install', 'upgrade' and 'lint'
  • fixed bug to now use burst limit setting for discovery
  • Added windows arm64 support

Installation and Upgrading

Download Helm v3.16.0. The common platform binaries are here:

This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at @​r6by keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.16.1 is the next patch release and will be on October 09, 2024
  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

  • bump version to v3.16.0 0d439e1 (Matt Farina)
  • Bump github.com/cyphar/filepath-securejoin from 0.2.5 to 0.3.1 0d12150 (dependabot[bot])
  • Bump github.com/rubenv/sql-migrate from 1.6.1 to 1.7.0 b1f9f0c (dependabot[bot])
  • Updating sprig to latest release 6a228aa (Matt Farina)
  • Bump github/codeql-action from 3.26.3 to 3.26.6 e448aae (dependabot[bot])
  • remove utc 31a1252 (Giulio)
  • Updating to Kubernetes client libraries for 1.31.0 a539b6a (Matt Farina)
  • update 39799ad (Giulio)
  • Bump github.com/evanphx/json-patch 8716c42 (dependabot[bot])
  • removing old adopter. c979992 (Robert Sirchia)
  • fixing changes as per requested. b92cc92 (Robert Sirchia)
  • Bump github/codeql-action from 3.26.2 to 3.26.3 c58cb9a (dependabot[bot])
  • ActiveHelp for cmds that don't take any more args c92cc07 (Marc Khouzam)
  • Updating the inline documentation. e72978e (Robert Sirchia)
  • Bump github/codeql-action from 3.26.1 to 3.26.2 83874d9 (dependabot[bot])
  • Fix linting error for pr 12876 8a26add (Scott Rigby)
  • Add Scott's key for releases 32875e2 (Scott Rigby)
  • Bump github/codeql-action from 3.26.0 to 3.26.1 990dbf6 (dependabot[bot])
  • Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 a5db73b (dependabot[bot])
  • Bump github.com/foxcpp/go-mockdns from 1.0.0 to 1.1.0 00caf00 (dependabot[bot])
  • Bump the k8s-io group across 1 directory with 7 updates ac57b60 (dependabot[bot])
  • Bump github/codeql-action from 3.25.15 to 3.26.0 5bbe19a (dependabot[bot])
  • ref(create): drop old Kubernetes versions support in Ingress template f9ba3c5 (dnskr)
  • Bump github.com/docker/docker 3a1aa21 (dependabot[bot])
  • Bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 f293480 (dependabot[bot])
  • Bump github/codeql-action from 3.25.13 to 3.25.15 8c1bfc7 (dependabot[bot])
  • verbiage c677272 (George Jenkins)
  • verbiage 04ece1f (George Jenkins)
  • verbiage e1b95d5 (George Jenkins)
  • Update CONTRIBUTING.md 1ea6fd5 (George Jenkins)
  • Update .github/pull_request_template.md 7530241 (George Jenkins)
  • Update CONTRIBUTING.md 0554fdd (George Jenkins)
  • rm spurious paste b881266 (George Jenkins)
  • docs: Introduce docs wanted label cd92c43 (George Jenkins)
  • Bump github/codeql-action from 3.25.12 to 3.25.13 [856d576](https://redirect.github.com/helm/helm/commi

Configuration

📅 Schedule: Branch creation - "on the first day of the month" in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 2 times, most recently from 4e6fd34 to 04b521b Compare July 28, 2024 11:18
@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 2 times, most recently from 4deeab9 to f53ccb9 Compare August 2, 2024 11:17
@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 3 times, most recently from 276513c to f4d843c Compare August 21, 2024 11:16
@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 2 times, most recently from a8af883 to 907ab33 Compare September 4, 2024 13:12
@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 4 times, most recently from b253a55 to c70baa5 Compare September 13, 2024 11:19
@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 3 times, most recently from f7eefc6 to 4f1f4fd Compare October 4, 2024 11:18
@cluster-stack-bot cluster-stack-bot bot force-pushed the renovate/cso-builder-image branch 2 times, most recently from b5daac7 to 05c8ef3 Compare November 7, 2024 11:22
| datasource  | package                  | from    | to      |
| ----------- | ------------------------ | ------- | ------- |
| docker      | docker.io/aquasec/trivy  | 0.54.1  | 0.57.1  |
| docker      | docker.io/library/alpine | 3.20.2  | 3.20.3  |
| docker      | docker.io/library/golang | 1.23.0  | 1.23.3  |
| github-tags | golangci/golangci-lint   | v1.60.3 | v1.62.0 |
| github-tags | helm/helm                | v3.14.1 | v3.16.3 |
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants