Bump the gomod-dependencies group across 1 directory with 7 updates #724

dependabot · 2025-03-24T13:30:16Z

Bumps the gomod-dependencies group with 6 updates in the / directory:

Package	From	To
github.com/prometheus/common	`0.62.0`	`0.63.0`
google.golang.org/protobuf	`1.36.5`	`1.36.6`
k8s.io/api	`0.32.2`	`0.32.3`
k8s.io/client-go	`0.32.2`	`0.32.3`
k8s.io/component-base	`0.32.2`	`0.32.3`
k8s.io/component-helpers	`0.32.2`	`0.32.3`

Updates github.com/prometheus/common from 0.62.0 to 0.63.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.63.0

What's Changed

Making the map a public variable for promtheus-operator by @dongjiang1989 in prometheus/common#741

setup ossf scorecard and codeql workflows by @mmorel-35 in prometheus/common#564

feat(promslog): implement reserved keys, rename duplicates by @tjhop in prometheus/common#746

Bump golang.org/x/oauth2 from 0.24.0 to 0.25.0 by @dependabot in prometheus/common#750

Bump golang.org/x/net from 0.33.0 to 0.34.0 by @dependabot in prometheus/common#749

Bump google.golang.org/protobuf from 1.36.1 to 1.36.3 by @dependabot in prometheus/common#751

promslog: Make AllowedLevel concurrency safe. by @bwplotka in prometheus/common#754

Fix typo 'the an' by @petern48 in prometheus/common#752

Synchronize common files from prometheus/prometheus by @prombot in prometheus/common#757

build(deps): bump google.golang.org/protobuf from 1.36.3 to 1.36.4 by @dependabot in prometheus/common#756

build(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by @dependabot in prometheus/common#761

build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 by @dependabot in prometheus/common#763

build(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 by @dependabot in prometheus/common#762

model: Clarify the purpose of model.NameValidationScheme by @ywwg in prometheus/common#765

Fix spelling mistake in godoc by @grobinson-grafana in prometheus/common#766

Synchronize common files from prometheus/prometheus by @prombot in prometheus/common#767

otlptranslator: Add dependency free package that translates OTLP data into Prometheus metric/label names by @ArthurSens in prometheus/common#768

New Contributors

@dongjiang1989 made their first contribution in prometheus/common#741

@petern48 made their first contribution in prometheus/common#752

Full Changelog: prometheus/common@v0.62.0...v0.63.0

Commits

cf3c56f Merge pull request #768 from prometheus/otlp-translator
b35ad99 Add test case for BuildCompliantMetricName with a metric that starts with a d...
227989c otlptranslator: Add dependency free package that translator OTLP data into Pr...
a9cc7f7 Update common Prometheus files (#767)
0decf1f Fix spelling mistake in godoc (#766)
6b9636c model: Clarify the purpose of model.NameValidationScheme (#765)
56f6f38 build(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 (#762)
b516f6d build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#763)
0db99da build(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5 (#761)
ca40aa0 build(deps): bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (#756)
Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.36.5 to 1.36.6

Updates k8s.io/api from 0.32.2 to 0.32.3

Commits

22c1e39 Update dependencies to v0.32.3 tag
40f4980 Merge pull request #129690pohly/automated-cherry-pick-of-#129661
a5598f8 DRA CEL: add missing size estimator
See full diff in compare view

Updates k8s.io/apimachinery from 0.32.2 to 0.32.3

Commits

See full diff in compare view

Updates k8s.io/client-go from 0.32.2 to 0.32.3

Commits

c106b23 Update dependencies to v0.32.3 tag
See full diff in compare view

Updates k8s.io/component-base from 0.32.2 to 0.32.3

Commits

c9cca2f Update dependencies to v0.32.3 tag
See full diff in compare view

Updates k8s.io/component-helpers from 0.32.2 to 0.32.3

Commits

41f945c Update dependencies to v0.32.3 tag
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the gomod-dependencies group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/prometheus/common](https://github.com/prometheus/common) | `0.62.0` | `0.63.0` | | google.golang.org/protobuf | `1.36.5` | `1.36.6` | | [k8s.io/api](https://github.com/kubernetes/api) | `0.32.2` | `0.32.3` | | [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.32.2` | `0.32.3` | | [k8s.io/component-base](https://github.com/kubernetes/component-base) | `0.32.2` | `0.32.3` | | [k8s.io/component-helpers](https://github.com/kubernetes/component-helpers) | `0.32.2` | `0.32.3` | Updates `github.com/prometheus/common` from 0.62.0 to 0.63.0 - [Release notes](https://github.com/prometheus/common/releases) - [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md) - [Commits](prometheus/common@v0.62.0...v0.63.0) Updates `google.golang.org/protobuf` from 1.36.5 to 1.36.6 Updates `k8s.io/api` from 0.32.2 to 0.32.3 - [Commits](kubernetes/api@v0.32.2...v0.32.3) Updates `k8s.io/apimachinery` from 0.32.2 to 0.32.3 - [Commits](kubernetes/apimachinery@v0.32.2...v0.32.3) Updates `k8s.io/client-go` from 0.32.2 to 0.32.3 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.32.2...v0.32.3) Updates `k8s.io/component-base` from 0.32.2 to 0.32.3 - [Commits](kubernetes/component-base@v0.32.2...v0.32.3) Updates `k8s.io/component-helpers` from 0.32.2 to 0.32.3 - [Commits](kubernetes/component-helpers@v0.32.2...v0.32.3) --- updated-dependencies: - dependency-name: github.com/prometheus/common dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod-dependencies - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-dependencies - dependency-name: k8s.io/api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-dependencies - dependency-name: k8s.io/apimachinery dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-dependencies - dependency-name: k8s.io/client-go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-dependencies - dependency-name: k8s.io/component-base dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-dependencies - dependency-name: k8s.io/component-helpers dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

k8s-ci-robot · 2025-03-24T13:30:26Z

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

cheftako · 2025-03-27T16:23:52Z

/ok-to-test

cheftako · 2025-03-27T16:59:34Z

/lgtm
/approve

k8s-ci-robot · 2025-03-27T16:59:41Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: cheftako, dependabot[bot]

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

~~OWNERS~~ [cheftako]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 24, 2025

k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Mar 24, 2025

k8s-ci-robot requested review from ipochi and tallclair March 24, 2025 13:30

k8s-ci-robot added the size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. label Mar 24, 2025

k8s-ci-robot added ok-to-test Indicates a non-member PR verified by an org member that is safe to test. and removed needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Mar 27, 2025

k8s-ci-robot assigned cheftako Mar 27, 2025

k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Mar 27, 2025

k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Mar 27, 2025

k8s-ci-robot merged commit 8748c9d into master Mar 27, 2025
22 checks passed

dependabot bot deleted the dependabot/go_modules/gomod-dependencies-d1c5798488 branch March 27, 2025 17:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the gomod-dependencies group across 1 directory with 7 updates #724

Bump the gomod-dependencies group across 1 directory with 7 updates #724

dependabot bot commented on behalf of github Mar 24, 2025

k8s-ci-robot commented Mar 24, 2025

cheftako commented Mar 27, 2025

cheftako commented Mar 27, 2025

k8s-ci-robot commented Mar 27, 2025

Bump the gomod-dependencies group across 1 directory with 7 updates #724

Bump the gomod-dependencies group across 1 directory with 7 updates #724

Conversation

dependabot bot commented on behalf of github Mar 24, 2025

v0.63.0

What's Changed

New Contributors

k8s-ci-robot commented Mar 24, 2025

cheftako commented Mar 27, 2025

cheftako commented Mar 27, 2025

k8s-ci-robot commented Mar 27, 2025