chore(deps): update crossplane dependencies

[renovate]

This PR contains the following updates:

Package	Update	Change
crossplane-contrib/function-auto-ready	minor	v0.2.1 -> v0.3.0
crossplane-contrib/function-kcl	minor	v0.9.4 -> v0.10.10
crossplane-contrib/function-sequencer	minor	v0.1.2 -> v0.2.1
crossplane-contrib/provider-helm	minor	v0.19.0 -> v0.20.0
crossplane-contrib/provider-kubernetes	minor	v0.15.0 -> v0.16.0
upbound/configuration-aws-network	minor	v0.18.0 -> v0.19.0
upbound/provider-aws	minor	v1.14.0 -> v1.17.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

crossplane-contrib/function-auto-ready (crossplane-contrib/function-auto-ready)

v0.3.0

Compare Source

This release updates the function to use the new v1 function RPCs introduced with Crossplane v1.17.

This version is backward compatible with Crossplane v1.16 and earlier, that use v1beta1 function RPCs.

You can install this release using the following manifest:

apiVersion: pkg.crossplane.io/v1
kind: Function
metadata:
  name: function-auto-ready
spec:
  package: xpkg.upbound.io/crossplane-contrib/function-auto-ready:v0.3.0

What's Changed

• Add package metadata by @​negz in https://github.com/crossplane-contrib/function-auto-ready/pull/14
• Update actions/setup-go action to v5 by @​renovate in https://github.com/crossplane-contrib/function-auto-ready/pull/18
• Update module google.golang.org/protobuf to v1.34.2 by @​renovate in https://github.com/crossplane-contrib/function-auto-ready/pull/21
• Update golangci/golangci-lint-action action to v6 by @​renovate in https://github.com/crossplane-contrib/function-auto-ready/pull/30
• Update docker/build-push-action action to v6 by @​renovate in https://github.com/crossplane-contrib/function-auto-ready/pull/31
• Update module github.com/alecthomas/kong to v0.9.0 by @​renovate in https://github.com/crossplane-contrib/function-auto-ready/pull/26
• Update module github.com/alecthomas/kong to v1 by @​renovate in https://github.com/crossplane-contrib/function-auto-ready/pull/37
• Bump function-sdk-go to v0.3.0 by @​negz in https://github.com/crossplane-contrib/function-auto-ready/pull/38

Full Changelog: crossplane-contrib/function-auto-ready@v0.2.1...v0.3.0

crossplane-contrib/function-kcl (crossplane-contrib/function-kcl)

v0.10.10: Release

Compare Source

v0.10.9: Release

Compare Source

v0.10.8: Release

Compare Source

What's Changed

• fix(deps): update module kcl-lang.io/krm-kcl to v0.10.7 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/179
• refactor: update examples and tests by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/182
• test: function image in dockerfile by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/183

Full Changelog: crossplane-contrib/function-kcl@v0.10.7...v0.10.8

v0.10.7: Release

Compare Source

What's Changed

• fix(deps): update module sigs.k8s.io/controller-tools to v0.16.5 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/180

Full Changelog: crossplane-contrib/function-kcl@v0.10.6...v0.10.7

v0.10.6: Release

Compare Source

Full Changelog: crossplane-contrib/function-kcl@v0.10.4...v0.10.6

v0.10.4: Release

Compare Source

What's Changed

• Add note on fetching cluster-scoped vs namespaced resources by @​Wompipomp in https://github.com/crossplane-contrib/function-kcl/pull/176
• fix(deps): update module k8s.io/apimachinery to v0.31.2 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/177
• chore: bump 0.10.6 multi arch image release by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/178

Full Changelog: crossplane-contrib/function-kcl@v0.10.3...v0.10.4

v0.10.3: Release

Compare Source

What's Changed

• feat: add filesytem note information by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/171
• fix: bump krm-kcl version to fix function-kcl-permission-denied by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/175

Full Changelog: crossplane-contrib/function-kcl@v0.10.2...v0.10.3

v0.10.2: Release

Compare Source

What's Changed

• fix: krm-kcl to support the print output to the pod log and add tests by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/169
• ci: add more pkg e2e tests by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/170

Full Changelog: crossplane-contrib/function-kcl@v0.10.1...v0.10.2

v0.10.1: Release

Compare Source

What's Changed

• chore: bump crossplane to 1.17 & bump function sdk to to 0.3 and use v1 version for the function server by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/158
• fix(deps): update google.golang.org/protobuf digest to 03df6c1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/159
• chore(deps): update dependency ubuntu to v24 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/161
• feat: add support for extra resources by @​fraenkel in https://github.com/crossplane-contrib/function-kcl/pull/162
• chore: add doc for new feature extra resources and add examples by @​Wompipomp in https://github.com/crossplane-contrib/function-kcl/pull/164
• fix(deps): update module google.golang.org/protobuf to v1.35.1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/166
• fix(deps): update module sigs.k8s.io/controller-tools to v0.16.4 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/167

New Contributors

• @​fraenkel made their first contribution in https://github.com/crossplane-contrib/function-kcl/pull/162
• @​Wompipomp made their first contribution in https://github.com/crossplane-contrib/function-kcl/pull/164

Full Changelog: crossplane-contrib/function-kcl@v0.10.0...v0.10.1

v0.10.0: Release

Compare Source

What's Changed

• fix(deps): update module kcl-lang.io/krm-kcl to v0.9.2 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/131
• fix(deps): update module kcl-lang.io/krm-kcl to v0.9.3 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/133
• feat: add pure kcl config examaples with xr input by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/136
• chore: move kcl-releted examples to the examples_kcl folder by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/140
• fix(deps): update module k8s.io/apimachinery to v0.31.0 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/138
• fix(deps): update module sigs.k8s.io/controller-tools to v0.16.0 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/139
• fix(deps): update module sigs.k8s.io/controller-tools to v0.16.1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/141
• fix(deps): update module dario.cat/mergo to v1.0.1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/142
• chore: update external deps examples by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/143
• fix(deps): update module sigs.k8s.io/controller-tools to v0.16.2 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/145
• chore: bump krm-kcl to v0.10.0-rc.1 by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/148
• chore(deps): update dependency go to v1.23.1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/149
• fix(deps): update module github.com/alecthomas/kong to v1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/150
• fix(deps): update module github.com/alecthomas/kong to v1.2.0 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/151
• fix(deps): update module github.com/alecthomas/kong to v1.2.1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/152
• fix(deps): update module k8s.io/apimachinery to v0.31.1 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/153
• fix(deps): update module sigs.k8s.io/controller-tools to v0.16.3 by @​renovate in https://github.com/crossplane-contrib/function-kcl/pull/154
• chore: bump kcl version to 0.10.x and add dependency examples by @​Peefy in https://github.com/crossplane-contrib/function-kcl/pull/155

Full Changelog: crossplane-contrib/function-kcl@v0.9.4...v0.10.0

crossplane-contrib/function-sequencer (crossplane-contrib/function-sequencer)

v0.2.1

Compare Source

What's Changed

• Backport strict regex to release 0.2 by @​dukanto in https://github.com/crossplane-contrib/function-sequencer/pull/32

Full Changelog: crossplane-contrib/function-sequencer@v0.2.0...v0.2.1

v0.2.0

Compare Source

What's Changed

• Rename group of the Input CRD from template to sequencer by @​turkenh in https://github.com/crossplane-contrib/function-sequencer/pull/10
• Add metadata for function definition by @​turkenh in https://github.com/crossplane-contrib/function-sequencer/pull/14
• tests: add unit for core functionality by @​dukanto in https://github.com/crossplane-contrib/function-sequencer/pull/25
• chore(deps): update docker/build-push-action action to v6 by @​renovate in https://github.com/crossplane-contrib/function-sequencer/pull/21
• chore(deps): update golangci/golangci-lint-action action to v6 by @​renovate in https://github.com/crossplane-contrib/function-sequencer/pull/19
• chore(deps): update examples by @​renovate in https://github.com/crossplane-contrib/function-sequencer/pull/15
• fix(deps): update module github.com/alecthomas/kong to v0.9.0 by @​renovate in https://github.com/crossplane-contrib/function-sequencer/pull/13
• chore(deps): update dependency ubuntu to v24 by @​renovate in https://github.com/crossplane-contrib/function-sequencer/pull/26
• Feature/add regex support by @​dukanto in https://github.com/crossplane-contrib/function-sequencer/pull/28

New Contributors

• @​dukanto made their first contribution in https://github.com/crossplane-contrib/function-sequencer/pull/25
• @​renovate made their first contribution in https://github.com/crossplane-contrib/function-sequencer/pull/21

Full Changelog: crossplane-contrib/function-sequencer@v0.1.0...v0.2.0

crossplane-contrib/provider-helm (crossplane-contrib/provider-helm)

v0.20.0

Compare Source

What's Changed

[!NOTE]
Starting with v0.20.0, the image is published under the upbound organization in the Upbound Marketplace.
The new location for the image is xpkg.upbound.io/upbound/provider-helm:v0.20.0. Please use the new location when installing/upgrading the provider.

• allow additional build arguments by @​jastang in https://github.com/crossplane-contrib/provider-helm/pull/236
• consume golangci-lint 1.61.0 by @​erhancagirici in https://github.com/crossplane-contrib/provider-helm/pull/246
• Remove unused publishing code. by @​jeanduplessis in https://github.com/crossplane-contrib/provider-helm/pull/247
• [Backport release-0.20] bump helm to 3.16.2 by @​github-actions in https://github.com/crossplane-contrib/provider-helm/pull/249

New Contributors

• @​jastang made their first contribution in https://github.com/crossplane-contrib/provider-helm/pull/236
• @​jeanduplessis made their first contribution in https://github.com/crossplane-contrib/provider-helm/pull/247

Full Changelog: crossplane-contrib/provider-helm@v0.19.0...v0.20.0

crossplane-contrib/provider-kubernetes (crossplane-contrib/provider-kubernetes)

v0.16.0

Compare Source

What's Changed

[!NOTE]
Starting with v0.16.0, the image is published under the upbound organization in the Upbound Marketplace.
The new location for the image is xpkg.upbound.io/upbound/provider-kubernetes:v0.16.0. Please use the new location when installing/upgrading the provider.

• Support --build-arg from environment variables by @​jastang in https://github.com/crossplane-contrib/provider-kubernetes/pull/296
• consume golangci-lint 1.61.0 by @​erhancagirici in https://github.com/crossplane-contrib/provider-kubernetes/pull/307
• Remove unused publishing code. by @​jeanduplessis in https://github.com/crossplane-contrib/provider-kubernetes/pull/309

New Contributors

• @​jeanduplessis made their first contribution in https://github.com/crossplane-contrib/provider-kubernetes/pull/309

Full Changelog: crossplane-contrib/provider-kubernetes@v0.15.0...v0.16.0

upbound/configuration-aws-network (upbound/configuration-aws-network)

v0.19.0

Compare Source

What's Changed

• Introduce kcl-version of composition by @​kaessert in https://github.com/upbound/configuration-aws-network/pull/89
• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-aws-network/pull/91
• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-aws-network/pull/94
• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-aws-network/pull/96
• chore(deps): update crossplane dependencies by @​renovate in https://github.com/upbound/configuration-aws-network/pull/93
• chore(config): migrate renovate config by @​renovate in https://github.com/upbound/configuration-aws-network/pull/97
• chore(deps): update actions/checkout digest to 11bd719 by @​renovate in https://github.com/upbound/configuration-aws-network/pull/92
• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-aws-network/pull/98
• chore(deps): update build digest to 1ed1933 by @​renovate in https://github.com/upbound/configuration-aws-network/pull/99

New Contributors

• @​kaessert made their first contribution in https://github.com/upbound/configuration-aws-network/pull/89
• @​upbound-bot made their first contribution in https://github.com/upbound/configuration-aws-network/pull/91

Full Changelog: upbound/configuration-aws-network@v0.18.0...v0.19.0

upbound/provider-aws (upbound/provider-aws)

v1.17.0

Compare Source

The v1.17.0 release introduces the Terraform provider upgrade from 5.68.0 to 5.73.0, new resources, bug fixes, enhancements, and dependency updates.

Support for New Resources

• ComputeEnvironment.batch.aws.upbound.io/v1beta1
• JobQueue.batch.aws.upbound.io/v1beta1

What's Changed

• Update dependency upbound/up to v0.34.2 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1518
• Update actions/checkout digest to 11bd719 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1539
• Update actions/setup-go digest to 41dfa10 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1541
• nolint:gocyclo resource configurations by @​mergenci in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1530
• Computeenvironment and jobqueue by @​sachinmalanki in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1542
• Remove no longer needed GitHub workflows by @​jeanduplessis in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1545
• consume golangci-linter 1.61.0 by @​erhancagirici in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1546
• Improve external-name config of iot thing type by @​mbbush in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1456
• Move away from deprecated workflows by @​jeanduplessis in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1551
• Fix Uptest trigger. by @​jeanduplessis in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1555
• Add e2e tests for ProviderConfigs by @​erhancagirici in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1320
• Bump Terraform provider version to v5.73.0 by @​turkenf in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1547

New Contributors

• @​sachinmalanki made their first contribution in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1542

Full Changelog: crossplane-contrib/provider-upjet-aws@v1.16.0...v1.17.0

v1.16.0

Compare Source

The v1.16.0 release introduces important bug fixes and dependency updates.

Bug Fixes

• [Bug]: ELBv2 Provider v1.5.0+ LBListener 'panic'https://github.com/crossplane-contrib/provider-upjet-aws/issues/13522
• [Bug]: Creating or importing rds-cluster with kms-key supplied by selector failshttps://github.com/crossplane-contrib/provider-upjet-aws/issues/15233
• [Bug]: Unable to Configure OpenSearch Domain Fine Grained Access Controlhttps://github.com/crossplane-contrib/provider-upjet-aws/issues/15311

What's Changed

• add custom diff for LBListener forward options by @​erhancagirici in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1528
• Add PathARNExtractor for kms_key_id to rds cluster by @​turkenf in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1533
• fix custom diff for Domain.opensearch ignoring valid diff by @​erhancagirici in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1534
• Update actions/cache digest to 6849a64 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1536

Full Changelog: crossplane-contrib/provider-upjet-aws@v1.15.0...v1.16.0

v1.15.0

Compare Source

In the v1.15.0 release, we've upgraded the underlying Terraform provider version from v5.58.0 to v5.68.0. This release also introduces new family providers, new resources, bug fixes, and dependency updates.

Support for New Resources

• Pipeline.osis.aws.upbound.io/v1beta1
• Agent.bedrockagent.aws.upbound.io/v1beta1

What's Changed

• Update dependency upbound/up to v0.33.0 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1439
• Update alpine Docker tag to v3.20.3 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1484
• Use different parameters name for auth and config group overrides by @​sergenyalcin in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1502
• Add OpenSearch Ingestion Pipeline Support by @​blakeromano in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1491
• Update dependency ubuntu to v24 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1506
• Update k8s.io/utils digest to 49e7df5 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1496
• Update docker/setup-buildx-action digest to c47758b by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1507
• Update actions/cache digest to 3624ceb by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1509
• Update actions/checkout digest to eef6144 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1517
• Update actions/upload-artifact digest to 604373d by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1510
• ignore drift in rds.Cluster and rds.Instance due to engine_version diff arising out of automanaged upgrades by @​ravilr in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1514
• Update actions/upload-artifact digest to b4b15b8 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1521
• Bump Terraform provider version to v5.68.0 by @​turkenf in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1513
• Add Bedrock Agent Support by @​blakeromano in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1503

New Contributors

• @​ravilr made their first contribution in https://github.com/crossplane-contrib/provider-upjet-aws/pull/1514

Full Changelog: crossplane-contrib/provider-upjet-aws@v1.14.0...v1.15.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[village-labs-bot]

upbound/configuration-aws-eks #92

Change Summary

• Provider version updates: Multiple AWS providers (EC2, EKS, IAM) upgraded from v1.14.0 to v1.17.0
• Crossplane provider updates: Helm updated to v0.20.0 and Kubernetes to v0.16.0
• Function updates: Multiple function versions updated including KCL (v0.9.4 to v0.10.10), auto-ready (v0.2.1 to v0.3.0), and sequencer (v0.1.2 to v0.2.1)

Potential Vulnerabilities

• File: crossplane.yaml:9-31
• Code: Multiple version updates across providers and functions
• Explanation: Version jumps across multiple dependencies simultaneously increase the attack surface and risk of introducing security vulnerabilities. Special attention should be paid to the changelog of each updated component, particularly the AWS providers jumping three minor versions.

Code Smells

None identified in this change. The modifications are strictly version updates in the configuration file.

Debug Logs

None identified in this change.

Unintended Consequences

• File: crossplane.yaml:20-31
• Code: ```
  • provider: xpkg.upbound.io/crossplane-contrib/provider-helm
    version: "v0.20.0"
  • provider: xpkg.upbound.io/crossplane-contrib/provider-kubernetes
    version: "v0.16.0"
    [...]
  • provider: xpkg.upbound.io/upbound/provider-aws-eks
    version: "v1.17.0"

- Explanation: Multiple provider version updates happening simultaneously could lead to compatibility issues between providers. The jump from v1.14.0 to v1.17.0 for AWS providers spans multiple versions and could introduce breaking changes or unexpected behaviors in the interaction between components.

- File: `crossplane.yaml:39-42`
- Code: ```
    - function: xpkg.upbound.io/crossplane-contrib/function-kcl
      version: "v0.10.10"

• Explanation: The KCL function update from v0.9.4 to v0.10.10 is a significant version jump that crosses major version boundaries (0.9 to 0.10), which could introduce breaking changes in function behavior.

Risk Score: 7

The relatively high risk score is attributed to:

1. Multiple simultaneous version updates across critical infrastructure components
2. Significant version jumps in AWS providers (3 minor versions)
3. Cross-version updates in function components
4. Lack of gradual migration path for these updates

[kaessert]

/test-examples

[kaessert]

/test-examples

[kaessert]

Stuck because of

  - lastTransitionTime: "2024-11-28T12:14:10Z"
    message: 'cannot resolve package dependencies: incompatible dependencies: existing
      package xpkg.upbound.io/upbound/[email protected] is incompatible with
      constraint v1.14.0; existing package xpkg.upbound.io/crossplane-contrib/[email protected]
      is incompatible with constraint v0.2.1'

[kaessert]

/test-examples

[kaessert]

/test-examples

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.