Skip to content

Bump the other-go-modules group across 1 directory with 3 updates#261

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/other-go-modules-fc50529d77
Open

Bump the other-go-modules group across 1 directory with 3 updates#261
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/other-go-modules-fc50529d77

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 2, 2026

Copy link
Copy Markdown
Contributor

Bumps the other-go-modules group with 3 updates in the / directory: github.com/BurntSushi/toml, github.com/samber/lo and helm.sh/helm/v3.

Updates github.com/BurntSushi/toml from 1.5.0 to 1.6.0

Release notes

Sourced from github.com/BurntSushi/toml's releases.

v1.6.0

TOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: https://github.com/toml-lang/toml/blob/main/CHANGELOG.md

Also two small fixes:

  • Encode large floats as exponent syntax so that round-tripping things like 5e+22 is correct.

  • Using duplicate array keys would not give an error:

    arr = [1]
    arr = [2]
    

    This will now correctly give a "Key 'arr' has already been defined" error.

Commits
  • 5253492 Enable TOML 1.1 by default (#457)
  • e954445 Reject duplicate arrays (#455)
  • 6b16cbd Update toml-test test cases from upstream (#456)
  • 011fa2b Ensure constant format strings in wf calls
  • 4b439bf Remove itemNil
  • a473c12 Add test for out of range float64
  • b535ff8 Add some boring tests for lex.go
  • 6011ef0 Remove unreachable condition in lexTableNameStart
  • c8ca9e6 Remove unreachable condition
  • 1121f81 Make tomlv read from stdin
  • Additional commits viewable in compare view

Updates github.com/samber/lo from 1.52.0 to 1.53.0

Release notes

Sourced from github.com/samber/lo's releases.

v1.53.0

Announcing the latest release of lo with lots of good gifts! 🎁

🌊 First, a big thanks to @​d-enk for making lots of performance improvements in the recent weeks.

🧪 Second, this release introduces a new simd experimental package. If you run on an amd64 architecture and a recent CPU, you can perform very fast operations thanks to SIMD CPU instructions. -> Documentation: https://lo.samber.dev/docs/experimental/simd

💥 Third, this version adds *Err variants of many lo helpers (like MapErr, FlatMapErr, ReduceErr, etc.) whose callbacks can return an error and short-circuit execution when one occurs.

[!NOTE] The simd sub-package is considered not stable. We might break the initial API based on developers' feedback in the coming months.


Features & improvements

Deprecation

Performance improvements

... (truncated)

Commits

Updates helm.sh/helm/v3 from 3.18.4 to 3.21.2

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.21.2 is a patch release to correct bump the Kubernetes client libraries (client-go, etc) to match the expected Kubernetes v1.36 release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Update Kubernetes client libraries to v1.36

Installation and Upgrading

Download Helm v3.21.2. The common platform binaries are here:

This release was signed by @​gjenkins8 with key BF88 8333 D96A 1C18 E268 2AAE D79D 67C9 EC01 6739, which can be found at https://keys.openpgp.org/vks/v1/by-fingerprint/BF888333D96A1C18E2682AAED79D67C9EC016739. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.21.3 will contain only bug fixes.
  • 3.22.0 is the next (and final) Helm 3 feature release

Changelog

  • chore(deps): bump the k8s-io group with 2 updates 125963406833fe0525be91f46c8b5b0f22fb9e32 (dependabot[bot])
  • fixes b52e27609b4420d206c1874ce9b0c75e271665e7 (Matheus Pimenta)
  • chore(deps): bump the k8s-io group across 1 directory with 2 updates 3342dbfec8f39776a9accd50fa91a52d68673af1 (dependabot[bot])

Full Changelog: helm/helm@v3.21.1...v3.21.2

Helm v3.21.1 is a patch release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

... (truncated)

Commits
  • 1259634 chore(deps): bump the k8s-io group with 2 updates
  • b52e276 fixes
  • 3342dbf chore(deps): bump the k8s-io group across 1 directory with 2 updates
  • c56dd00 fix(action): avoid nil REST client getter panic when installing CRDs
  • 702529f fix(registry): keep credentials on plain-HTTP fallback with oras-go v2.6.1
  • 178e120 chore(deps): bump oras.land/oras-go/v2 from 2.6.0 to 2.6.1
  • dcf35f8 chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0
  • 44aff8b chore(deps): bump golang.org/x/term from 0.43.0 to 0.44.0
  • ae2f31f chore(deps): bump golang.org/x/text from 0.37.0 to 0.38.0
  • 402225f Update .github/env
  • Additional commits viewable in compare view

Summary by CodeRabbit

  • Chores
    • Updated the Go toolchain version and refreshed several dependency versions across the project.
    • Included upgrades to Kubernetes, Helm, CLI, logging, YAML, JSON schema, and other supporting libraries.
    • No user-facing features or behavior changes were introduced.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ok-to-test Indicates a non-member PR verified by an org member that is safe to test. labels Mar 2, 2026
@openshift-ci

openshift-ci Bot commented Mar 2, 2026

Copy link
Copy Markdown

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-ci

openshift-ci Bot commented Mar 2, 2026

Copy link
Copy Markdown

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign nocturnalastro for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@dependabot dependabot Bot force-pushed the dependabot/go_modules/other-go-modules-fc50529d77 branch 2 times, most recently from e4ca626 to 5a97fb8 Compare March 11, 2026 17:54
@dependabot dependabot Bot force-pushed the dependabot/go_modules/other-go-modules-fc50529d77 branch from 5a97fb8 to fcbdf8d Compare March 20, 2026 17:54
@dependabot dependabot Bot force-pushed the dependabot/go_modules/other-go-modules-fc50529d77 branch from fcbdf8d to ff167cc Compare May 12, 2026 22:31
@coderabbitai

coderabbitai Bot commented May 12, 2026

Copy link
Copy Markdown

Walkthrough

This PR updates the Go toolchain directive and refreshes direct and indirect dependency versions in go.mod.

Changes

Dependency Version Updates

Layer / File(s) Summary
Toolchain and direct requirements
go.mod
The Go directive and top-level required module versions are updated together, including direct Kubernetes, Helm, Cobra, and lo version changes.
Indirect dependency block
go.mod
The indirect requirement block updates semver, logging, Kubernetes support libraries, YAML, protobuf, and golang.org/x modules.

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 15
✅ Passed checks (15 passed)
Check name Status Explanation
Title check ✅ Passed The title matches the Dependabot dependency bump and correctly reflects the grouped updates in go.mod.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names ✅ Passed PR diff updates go.mod/go.sum and vendored deps only; no project *_test.go files or Ginkgo titles were changed.
Test Structure And Quality ✅ Passed PASS: This PR is a dependency-bump commit (go.mod versions only); no Ginkgo test logic was changed to review for structure or timeout issues.
Microshift Test Compatibility ✅ Passed This PR only updates go.mod dependencies/toolchain; no new Ginkgo e2e tests or MicroShift-sensitive test code were added.
Single Node Openshift (Sno) Test Compatibility ✅ Passed Only go.mod/go.sum changed outside vendor; no new e2e/Ginkgo test files or SNO-sensitive tests were added, so the check is not applicable.
Topology-Aware Scheduling Compatibility ✅ Passed No new topology-sensitive scheduling logic found; changes are dependency bumps plus addon-tool/testdata/docs, with no required anti-affinity, spread, or CP node targeting.
Ote Binary Stdout Contract ✅ Passed PR only bumps go.mod/go.sum and vendored deps; no repo-owned main/init/suite stdout/stderr changes were introduced.
Ipv6 And Disconnected Network Test Compatibility ✅ Passed Only go.mod/go.sum and vendored deps changed; no new Ginkgo e2e tests or IPv4/external-network test code were added.
No-Weak-Crypto ✅ Passed No first-party weak-crypto APIs or constant-time secret compares were found; the PR only updates go.mod dependency versions.
Container-Privileges ✅ Passed No changed container/K8s manifests set privileged/root flags; the YAML/JSON diffs are vendored metadata/testdata, not runtime manifests.
No-Sensitive-Data-In-Logs ✅ Passed No new log statements emit passwords/tokens/API keys/PII; the debug round-tripper masks Authorization headers, and other logs are generic addresses/URLs.
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
✨ Finishing Touches
📝 Generate docstrings
  • Create stacked PR
  • Commit on current branch
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch dependabot/go_modules/other-go-modules-fc50529d77

Comment @coderabbitai help to get the list of available commands.

@openshift-ci openshift-ci Bot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jun 24, 2026
@openshift-ci

openshift-ci Bot commented Jun 24, 2026

Copy link
Copy Markdown

rebase

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@dependabot dependabot Bot force-pushed the dependabot/go_modules/other-go-modules-fc50529d77 branch from ff167cc to c0ec867 Compare June 24, 2026 17:53
@openshift-ci openshift-ci Bot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jun 24, 2026
@lack

lack commented Jun 24, 2026

Copy link
Copy Markdown
Member

/retest

Bumps the other-go-modules group with 3 updates in the / directory: [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml), [github.com/samber/lo](https://github.com/samber/lo) and [helm.sh/helm/v3](https://github.com/helm/helm).


Updates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0
- [Release notes](https://github.com/BurntSushi/toml/releases)
- [Commits](BurntSushi/toml@v1.5.0...v1.6.0)

Updates `github.com/samber/lo` from 1.52.0 to 1.53.0
- [Release notes](https://github.com/samber/lo/releases)
- [Commits](samber/lo@v1.52.0...v1.53.0)

Updates `helm.sh/helm/v3` from 3.18.4 to 3.21.2
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.18.4...v3.21.2)

---
updated-dependencies:
- dependency-name: github.com/BurntSushi/toml
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: other-go-modules
- dependency-name: github.com/samber/lo
  dependency-version: 1.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: other-go-modules
- dependency-name: helm.sh/helm/v3
  dependency-version: 3.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: other-go-modules
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/other-go-modules-fc50529d77 branch from c0ec867 to 9d1b26e Compare June 25, 2026 17:54
@openshift-ci

openshift-ci Bot commented Jun 25, 2026

Copy link
Copy Markdown

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/images 9d1b26e link true /test images
ci/prow/verify-deps 9d1b26e link true /test verify-deps
ci/prow/modtidy 9d1b26e link true /test modtidy
ci/prow/unit 9d1b26e link true /test unit
ci/prow/golint 9d1b26e link true /test golint

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file ok-to-test Indicates a non-member PR verified by an org member that is safe to test.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant