Skip to content

build(deps): bump the misc-dependencies group across 1 directory with 10 updates#7817

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/misc-dependencies-07bbdea3be
Closed

build(deps): bump the misc-dependencies group across 1 directory with 10 updates#7817
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/misc-dependencies-07bbdea3be

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Feb 27, 2026
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the misc-dependencies group with 9 updates in the / directory:

Package From To
go.etcd.io/etcd/api/v3 3.6.7 3.6.8
go.etcd.io/etcd/client/pkg/v3 3.6.7 3.6.8
go.etcd.io/etcd/client/v3 3.6.7 3.6.8
go.etcd.io/etcd/server/v3 3.6.7 3.6.8
go.etcd.io/etcd/tests/v3 3.6.7 3.6.8
google.golang.org/api 0.258.0 0.269.0
gopkg.in/ini.v1 1.67.0 1.67.1
kubevirt.io/api 1.7.0 1.7.1
kubevirt.io/containerized-data-importer-api 1.63.1 1.64.0

Updates go.etcd.io/etcd/api/v3 from 3.6.7 to 3.6.8

Release notes

Sourced from go.etcd.io/etcd/api/v3's releases.

v3.6.8

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version
start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64
</tr></table>

... (truncated)

Commits
  • 4e814e2 version: bump up to 3.6.8
  • d552466 Merge pull request #21257 from nwnt/bump-3.6-to-gov1.24.3
  • 2d3c79c [release-3.6] Bump go version to 1.24.13
  • b17ff7e Merge pull request #21241 from ahrtr/20260203_metadata_3.6
  • bf78336 Remove the use of grpc-go's Metadata field
  • 451c7d5 Merge pull request #21216 from ahrtr/20260130_go_3.6
  • ef87996 Bump go version to 1.24.11
  • cb073ab Merge pull request #21163 from ahrtr/20260119_snapshot_count_3.6
  • e830821 Keep the --snapshot-count flag
  • 45dbe3c Merge pull request #21161 from ahrtr/20260119_max_snapshots_3.6
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/client/pkg/v3 from 3.6.7 to 3.6.8

Release notes

Sourced from go.etcd.io/etcd/client/pkg/v3's releases.

v3.6.8

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version
start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64
</tr></table>

... (truncated)

Commits
  • 4e814e2 version: bump up to 3.6.8
  • d552466 Merge pull request #21257 from nwnt/bump-3.6-to-gov1.24.3
  • 2d3c79c [release-3.6] Bump go version to 1.24.13
  • b17ff7e Merge pull request #21241 from ahrtr/20260203_metadata_3.6
  • bf78336 Remove the use of grpc-go's Metadata field
  • 451c7d5 Merge pull request #21216 from ahrtr/20260130_go_3.6
  • ef87996 Bump go version to 1.24.11
  • cb073ab Merge pull request #21163 from ahrtr/20260119_snapshot_count_3.6
  • e830821 Keep the --snapshot-count flag
  • 45dbe3c Merge pull request #21161 from ahrtr/20260119_max_snapshots_3.6
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/client/v3 from 3.6.7 to 3.6.8

Release notes

Sourced from go.etcd.io/etcd/client/v3's releases.

v3.6.8

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version
start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64
</tr></table>

... (truncated)

Commits
  • 4e814e2 version: bump up to 3.6.8
  • d552466 Merge pull request #21257 from nwnt/bump-3.6-to-gov1.24.3
  • 2d3c79c [release-3.6] Bump go version to 1.24.13
  • b17ff7e Merge pull request #21241 from ahrtr/20260203_metadata_3.6
  • bf78336 Remove the use of grpc-go's Metadata field
  • 451c7d5 Merge pull request #21216 from ahrtr/20260130_go_3.6
  • ef87996 Bump go version to 1.24.11
  • cb073ab Merge pull request #21163 from ahrtr/20260119_snapshot_count_3.6
  • e830821 Keep the --snapshot-count flag
  • 45dbe3c Merge pull request #21161 from ahrtr/20260119_max_snapshots_3.6
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/server/v3 from 3.6.7 to 3.6.8

Release notes

Sourced from go.etcd.io/etcd/server/v3's releases.

v3.6.8

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version
start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64
</tr></table>

... (truncated)

Commits
  • 4e814e2 version: bump up to 3.6.8
  • d552466 Merge pull request #21257 from nwnt/bump-3.6-to-gov1.24.3
  • 2d3c79c [release-3.6] Bump go version to 1.24.13
  • b17ff7e Merge pull request #21241 from ahrtr/20260203_metadata_3.6
  • bf78336 Remove the use of grpc-go's Metadata field
  • 451c7d5 Merge pull request #21216 from ahrtr/20260130_go_3.6
  • ef87996 Bump go version to 1.24.11
  • cb073ab Merge pull request #21163 from ahrtr/20260119_snapshot_count_3.6
  • e830821 Keep the --snapshot-count flag
  • 45dbe3c Merge pull request #21161 from ahrtr/20260119_max_snapshots_3.6
  • Additional commits viewable in compare view

Updates go.etcd.io/etcd/tests/v3 from 3.6.7 to 3.6.8

Release notes

Sourced from go.etcd.io/etcd/tests/v3's releases.

v3.6.8

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1 --no-same-owner
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version
/tmp/etcd-download-test/etcdutl version
start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)
ETCD_VER=v3.6.8
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
mv /tmp/etcd-${ETCD_VER}-darwin-amd64/* /tmp/etcd-download-test && rm -rf mv /tmp/etcd-${ETCD_VER}-darwin-amd64
</tr></table>

... (truncated)

Commits
  • 4e814e2 version: bump up to 3.6.8
  • d552466 Merge pull request #21257 from nwnt/bump-3.6-to-gov1.24.3
  • 2d3c79c [release-3.6] Bump go version to 1.24.13
  • b17ff7e Merge pull request #21241 from ahrtr/20260203_metadata_3.6
  • bf78336 Remove the use of grpc-go's Metadata field
  • 451c7d5 Merge pull request #21216 from ahrtr/20260130_go_3.6
  • ef87996 Bump go version to 1.24.11
  • cb073ab Merge pull request #21163 from ahrtr/20260119_snapshot_count_3.6
  • e830821 Keep the --snapshot-count flag
  • 45dbe3c Merge pull request #21161 from ahrtr/20260119_max_snapshots_3.6
  • Additional commits viewable in compare view

Updates google.golang.org/api from 0.258.0 to 0.269.0

Release notes

Sourced from google.golang.org/api's releases.

v0.269.0

0.269.0 (2026-02-24)

Features

Bug Fixes

  • generator: Handle preview version pkg name (#3511) (2a249ce)

v0.268.0

0.268.0 (2026-02-23)

Features

v0.267.0

0.267.0 (2026-02-17)

Features

v0.266.0

0.266.0 (2026-02-10)

Features

... (truncated)

Changelog

Sourced from google.golang.org/api's changelog.

0.269.0 (2026-02-24)

Features

Bug Fixes

  • generator: Handle preview version pkg name (#3511) (2a249ce)

0.268.0 (2026-02-23)

Features

0.267.0 (2026-02-17)

Features

0.266.0 (2026-02-10)

Features

... (truncated)

Commits

Updates google.golang.org/grpc from 1.77.0 to 1.79.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.79.1

Bug Fixes

Release 1.79.0

API Changes

  • mem: Add experimental API SetDefaultBufferPool to change the default buffer pool. (#8806)
  • experimental/stats: Update MetricsRecorder to require embedding the new UnimplementedMetricsRecorder (a no-op struct) in all implementations for forward compatibility. (#8780)

Behavior Changes

  • balancer/weightedtarget: Remove handling of Addresses and only handle Endpoints in resolver updates. (#8841)

New Features

  • experimental/stats: Add support for asynchronous gauge metrics through the new AsyncMetricReporter and RegisterAsyncReporter APIs. (#8780)
  • pickfirst: Add support for weighted random shuffling of endpoints, as described in gRFC A113.
    • This is enabled by default, and can be turned off using the environment variable GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING. (#8864)
  • xds: Implement :authority rewriting, as specified in gRFC A81. (#8779)
  • balancer/randomsubsetting: Implement the random_subsetting LB policy, as specified in gRFC A68. (#8650)

Bug Fixes

  • credentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (#8726)
  • xds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in CONNECTING state. (#8813)
  • health: Fix a bug where health checks failed for clients using legacy compression options (WithDecompressor or RPCDecompressor). (#8765)
  • transport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (#8769)
  • server: Propagate status detail headers, if available, when terminating a stream during request header processing. (#8754)

Performance Improvements

  • credentials/alts: Optimize read buffer alignment to reduce copies. (#8791)
  • mem: Optimize pooling and creation of buffer objects. (#8784)
  • transport: Reduce slice re-allocations by reserving slice capacity. (#8797)

Release 1.78.0

Behavior Changes

  • client: Align URL validation with Go 1.26+ to now reject target URLs with unbracketed colons in the hostname. (#8716)
  • transport/client : Return status code Unknown on malformed grpc-status. (#8735)
    • xds/resolver:
  • Drop previous route resources and report an error when no matching virtual host is found.

... (truncated)

Commits

Updates gopkg.in/ini.v1 from 1.67.0 to 1.67.1

Updates kubevirt.io/api from 1.7.0 to 1.7.1

Commits
  • 1b0ce12 api update by KubeVirt Prow build 2025971498979692544
  • 7181296 api update by KubeVirt Prow build 2025623327841718272
  • b78eadc api update by KubeVirt Prow build 2023563730209476608
  • 0849955 api update by KubeVirt Prow build 2023108915075485696
  • 71b1caa api update by KubeVirt Prow build 2021885782423244800
  • 83b64c2 api update by KubeVirt Prow build 2021523891029020672
  • d7b35da api update by KubeVirt Prow build 2021230973928083456
  • 1626f7b api update by KubeVirt Prow build 2019548935764316160
  • 87e5611 api update by KubeVirt Prow build 2019164436505300992
  • fe5ef70 api update by KubeVirt Prow build 2017196388718219264
  • Additional commits viewable in compare view

Updates kubevirt.io/containerized-data-importer-api from 1.63.1 to 1.64.0

Commits
  • 1a95c6c containerized-data-importer-api update by KubeVirt Prow build 199851477366210...
  • 0b4e9b5 containerized-data-importer-api update by KubeVirt Prow build 198980925953724...
  • 86cc2be containerized-data-importer-api update by KubeVirt Prow build 198899711142894...
  • 53a8fca containerized-data-importer-api update by KubeVirt Prow build 198621978117852...
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by CodeRabbit

  • Chores
    • Updated core dependencies across multiple libraries (etcd, Google APIs & gRPC, Kubernetes/KubeVirt, OpenTelemetry, YAML, genproto/GAX and related modules) to newer minor/patch versions for fixes, performance and security updates.
  • Notes
    • No changes to exported/public APIs.

@dependabot dependabot Bot added area/ci-tooling Indicates the PR includes changes for CI or tooling ok-to-test Indicates a non-member PR verified by an org member that is safe to test. labels Feb 27, 2026
@openshift-ci-robot
Copy link
Copy Markdown

openshift-ci-robot commented Feb 27, 2026

Pipeline controller notification
This repo is configured to use the pipeline controller. Second-stage tests will be triggered either automatically or after lgtm label is added, depending on the repository configuration. The pipeline controller will automatically detect which contexts are required and will utilize /test Prow commands to trigger the second stage.

For optional jobs, comment /test ? to see a list of all defined jobs. To trigger manually all jobs from second stage use /pipeline required command.

This repository is configured in: LGTM mode

@coderabbitai
Copy link
Copy Markdown
Contributor

coderabbitai Bot commented Feb 27, 2026
edited
Loading

Walkthrough

go.mod dependency versions were updated across multiple families: etcd (3.6.7→3.6.8), Google APIs and gRPC, OpenTelemetry (→v1.39.0), kubevirt/CDI APIs, cel/expr, gax/gcloud-related packages, genproto pseudo-versions, and yaml.v3, plus several indirect bumps. No exported APIs changed.

Changes

Cohort / File(s) Summary
Single manifest
go.mod		 Bumped multiple direct and indirect module versions: go.etcd.io/etcd components 3.6.7→3.6.8; google.golang.org/api v0.258.0→v0.269.0 and google.golang.org/grpc v1.77.0→v1.79.1; OpenTelemetry packages →v1.39.0; kubevirt.io/api and kubevirt.io/containerized-data-importer-api minor bumps; cel.dev/expr, cloud.google.com/go/auth, github.com/googleapis/* (gax, enterprise-certificate-proxy) updated; gopkg.in/yaml.v3 v3.0.1→v3.0.4; genproto pseudo-version updates and other transitive dependency increments. No code/API changes.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Title check ✅ Passed The title accurately reflects the main change—a dependency version bump of multiple packages in the misc-dependencies group, which is the core purpose of this automated Dependabot PR.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Stable And Deterministic Test Names ✅ Passed This PR only modifies go.mod with dependency version updates and contains no test code changes, making the test stability check not applicable.
Test Structure And Quality ✅ Passed This PR only modifies go.mod for dependency updates with no changes to test files, making the Ginkgo test quality check not applicable.
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
  • 📝 Generate docstrings (stacked PR)
  • 📝 Generate docstrings (commit on current branch)
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch dependabot/go_modules/misc-dependencies-07bbdea3be

Comment @coderabbitai help to get the list of available commands and usage tips.

@openshift-ci
Copy link
Copy Markdown
Contributor

openshift-ci Bot commented Feb 27, 2026

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-ci openshift-ci Bot requested review from bryan-cox and muraee February 27, 2026 01:09
@openshift-ci
Copy link
Copy Markdown
Contributor

openshift-ci Bot commented Feb 27, 2026

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign jparrill for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

hypershift-jira-solve-ci Bot pushed a commit to hypershift-community/hypershift that referenced this pull request Mar 2, 2026
@dependabot
chore(deps): bump the misc-dependencies group across 1 directory with…
41d073a 
… 10 updates

Bumps etcd from 3.6.7 to 3.6.8, google.golang.org/api from 0.258.0 to 0.269.0,
gopkg.in/ini.v1 from 1.67.0 to 1.67.1, kubevirt.io/api from 1.7.0 to 1.7.1,
kubevirt.io/containerized-data-importer-api from 1.63.1 to 1.64.0.

PR: openshift#7817

Co-Authored-By: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
hypershift-jira-solve-ci Bot pushed a commit to hypershift-community/hypershift that referenced this pull request Mar 2, 2026
chore: regenerate files for PR openshift#7817
e946cb8
@hypershift-jira-solve-ci hypershift-jira-solve-ci Bot mentioned this pull request Mar 2, 2026
Closed
@openshift-merge-robot openshift-merge-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Mar 4, 2026
@openshift-merge-robot
Copy link
Copy Markdown
Contributor

openshift-merge-robot commented Mar 4, 2026

rebase

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@dependabot dependabot Bot force-pushed the dependabot/go_modules/misc-dependencies-07bbdea3be branch from a0be82f to c9af7c0 Compare March 4, 2026 13:20
@openshift-merge-robot openshift-merge-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Mar 4, 2026
coderabbitai[bot]
coderabbitai Bot reviewed Mar 4, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@go.mod`:
- Line 285: Update the go.opentelemetry.io/otel/sdk dependency from v1.39.0 to
v1.40.0 (or later) in go.mod and ensure the related modules
go.opentelemetry.io/otel, go.opentelemetry.io/otel/metric, and
go.opentelemetry.io/otel/trace are aligned to the same v1.40.x release line;
after changing the version entry for go.opentelemetry.io/otel/sdk, refresh
module metadata (e.g., run go get/update and go mod tidy) so go.sum is updated
and the PATH hijacking vulnerability is resolved.
ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository: openshift/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 8901b573-c871-467e-b137-4d6eac974221

📥 Commits

Reviewing files that changed from the base of the PR and between a0be82f and c9af7c0.

⛔ Files ignored due to path filters (19)
  • go.sum is excluded by !**/*.sum
  • vendor/cel.dev/expr/BUILD.bazel is excluded by !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/MODULE.bazel is excluded by !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/checked.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/eval.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/explain.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/syntax.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/value.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/CHANGES.md is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/credentials/detect.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/credentials/filetypes.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/credentials/internal/gdch/gdch.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/httptransport/httptransport.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/credsfile/credsfile.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/credsfile/filetype.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/credsfile/parse.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/internal.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/jwt/jwt.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/version.go is excluded by !**/vendor/**, !vendor/**
📒 Files selected for processing (1)
  • go.mod

Comment thread go.mod
go.opentelemetry.io/otel/sdk v1.38.0 // indirect
go.opentelemetry.io/otel/trace v1.38.0 // indirect
go.opentelemetry.io/otel/metric v1.39.0 // indirect
go.opentelemetry.io/otel/sdk v1.39.0 // indirect
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "Checking OSV for go.opentelemetry.io/otel/sdk@1.39.0 ..."
curl -sS https://api.osv.dev/v1/query \
  -H 'content-type: application/json' \
  -d '{
    "package": {"name":"go.opentelemetry.io/otel/sdk","ecosystem":"Go"},
    "version":"1.39.0"
  }' | python3 <<'PY'
import json,sys
data=json.load(sys.stdin)
print("Vulns found:", len(data.get("vulns", [])))
for v in data.get("vulns", []):
    print("-", v.get("id"), "|", v.get("summary","").strip())
    for a in v.get("affected", []):
        if a.get("package", {}).get("name") == "go.opentelemetry.io/otel/sdk":
            for r in a.get("ranges", []):
                if r.get("type") == "SEMVER":
                    print("  SEMVER events:", r.get("events", []))
PY

echo
echo "Current OTel versions in go.mod:"
rg -n 'go\.opentelemetry\.io/otel($|/metric|/sdk|/trace)' go.mod

Repository: openshift/hypershift

Length of output: 889

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "=== Current OTel versions in go.mod ==="
rg -n 'go\.opentelemetry\.io/otel' go.mod

echo
echo "=== Full go.mod around line 285 ==="
sed -n '275,295p' go.mod

Repository: openshift/hypershift

Length of output: 1623

🌐 Web query:

GO-2026-4394 GHSA-9h8m-3fm2-qjrq opentelemetry otel/sdk vulnerability

💡 Result:

GO-2026-4394 / GHSA-9h8m-3fm2-qjrq / CVE-2026-24051 is an arbitrary code execution (ACE) via local PATH hijacking issue in the OpenTelemetry Go SDK on macOS/Darwin. (github.com)

  • Root cause: sdk/resource/host_id.go runs the ioreg command by name (PATH search); a local attacker who can influence PATH could cause a malicious ioreg to be executed. (github.com)
  • Affected (Go modules):
    • go.opentelemetry.io/otel/sdk/resource: >= 1.21.0 and <= 1.39.0 (github.com)
    • go.opentelemetry.io/otel/sdk: v1.21.0 before v1.40.0 (pkg.go.dev)
  • Severity: High (CVSS 3.1: 7.0); AV:L/AC:H/PR:L/UI:N. (github.com)
  • Fix: upgrade to v1.40.0 (patched by using the full path /usr/sbin/ioreg). (github.com)

Citations:

Upgrade go.opentelemetry.io/otel/sdk to v1.40.0+ to fix high-severity PATH hijacking vulnerability.

go.opentelemetry.io/otel/sdk v1.39.0 (line 285) is affected by GO-2026-4394 / GHSA-9h8m-3fm2-qjrq (CVSS 7.0), a PATH hijacking issue on macOS/Darwin. Upgrade to v1.40.0 and keep go.opentelemetry.io/otel, go.opentelemetry.io/otel/metric, and go.opentelemetry.io/otel/trace aligned to the same release line.

🧰 Tools
🪛 OSV Scanner (2.3.3)

[HIGH] 285-285: go.opentelemetry.io/otel/sdk 1.39.0: OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking in go.opentelemetry.io/otel/sdk

(GO-2026-4394)

[HIGH] 285-285: go.opentelemetry.io/otel/sdk 1.39.0: OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking

(GHSA-9h8m-3fm2-qjrq)

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@go.mod` at line 285, Update the go.opentelemetry.io/otel/sdk dependency from
v1.39.0 to v1.40.0 (or later) in go.mod and ensure the related modules
go.opentelemetry.io/otel, go.opentelemetry.io/otel/metric, and
go.opentelemetry.io/otel/trace are aligned to the same v1.40.x release line;
after changing the version entry for go.opentelemetry.io/otel/sdk, refresh
module metadata (e.g., run go get/update and go mod tidy) so go.sum is updated
and the PATH hijacking vulnerability is resolved.

This was referenced Mar 4, 2026
Closed
Closed
Closed
Merged
@dependabot
build(deps): bump the misc-dependencies group across 1 directory with…
3fe06da 
… 10 updates

Bumps the misc-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [go.etcd.io/etcd/api/v3](https://github.com/etcd-io/etcd) | `3.6.7` | `3.6.8` |
| [go.etcd.io/etcd/client/pkg/v3](https://github.com/etcd-io/etcd) | `3.6.7` | `3.6.8` |
| [go.etcd.io/etcd/client/v3](https://github.com/etcd-io/etcd) | `3.6.7` | `3.6.8` |
| [go.etcd.io/etcd/server/v3](https://github.com/etcd-io/etcd) | `3.6.7` | `3.6.8` |
| [go.etcd.io/etcd/tests/v3](https://github.com/etcd-io/etcd) | `3.6.7` | `3.6.8` |
| [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.258.0` | `0.269.0` |
| gopkg.in/ini.v1 | `1.67.0` | `1.67.1` |
| [kubevirt.io/api](https://github.com/kubevirt/api) | `1.7.0` | `1.7.1` |
| [kubevirt.io/containerized-data-importer-api](https://github.com/kubevirt/containerized-data-importer-api) | `1.63.1` | `1.64.0` |



Updates `go.etcd.io/etcd/api/v3` from 3.6.7 to 3.6.8
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Commits](etcd-io/etcd@v3.6.7...v3.6.8)

Updates `go.etcd.io/etcd/client/pkg/v3` from 3.6.7 to 3.6.8
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Commits](etcd-io/etcd@v3.6.7...v3.6.8)

Updates `go.etcd.io/etcd/client/v3` from 3.6.7 to 3.6.8
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Commits](etcd-io/etcd@v3.6.7...v3.6.8)

Updates `go.etcd.io/etcd/server/v3` from 3.6.7 to 3.6.8
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Commits](etcd-io/etcd@v3.6.7...v3.6.8)

Updates `go.etcd.io/etcd/tests/v3` from 3.6.7 to 3.6.8
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Commits](etcd-io/etcd@v3.6.7...v3.6.8)

Updates `google.golang.org/api` from 0.258.0 to 0.269.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.258.0...v0.269.0)

Updates `google.golang.org/grpc` from 1.77.0 to 1.79.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.77.0...v1.79.1)

Updates `gopkg.in/ini.v1` from 1.67.0 to 1.67.1

Updates `kubevirt.io/api` from 1.7.0 to 1.7.1
- [Commits](kubevirt/api@v1.7.0...v1.7.1)

Updates `kubevirt.io/containerized-data-importer-api` from 1.63.1 to 1.64.0
- [Commits](kubevirt/containerized-data-importer-api@v1.63.1...v1.64.0)

---
updated-dependencies:
- dependency-name: go.etcd.io/etcd/api/v3
  dependency-version: 3.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: go.etcd.io/etcd/client/pkg/v3
  dependency-version: 3.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: go.etcd.io/etcd/client/v3
  dependency-version: 3.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: go.etcd.io/etcd/server/v3
  dependency-version: 3.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: go.etcd.io/etcd/tests/v3
  dependency-version: 3.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.269.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: misc-dependencies
- dependency-name: google.golang.org/grpc
  dependency-version: 1.79.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: misc-dependencies
- dependency-name: gopkg.in/ini.v1
  dependency-version: 1.67.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: kubevirt.io/api
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: misc-dependencies
- dependency-name: kubevirt.io/containerized-data-importer-api
  dependency-version: 1.64.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: misc-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/misc-dependencies-07bbdea3be branch from c9af7c0 to 3fe06da Compare March 6, 2026 01:05
coderabbitai[bot]
coderabbitai Bot reviewed Mar 6, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

♻️ Duplicate comments (1)
go.mod (1)

283-288: ⚠️ Potential issue | 🔴 Critical

Upgrade OpenTelemetry SDK from v1.39.0; current version is vulnerable.

go.opentelemetry.io/otel/sdk v1.39.0 on Line 287 is flagged by OSV (GO-2026-4394 / GHSA-9h8m-3fm2-qjrq). Please bump SDK to v1.40.0+ and keep otel, otel/metric, and otel/trace on the same release line.

Suggested go.mod update 
- go.opentelemetry.io/otel v1.39.0 // indirect
+ go.opentelemetry.io/otel v1.40.0 // indirect
...
- go.opentelemetry.io/otel/metric v1.39.0 // indirect
- go.opentelemetry.io/otel/sdk v1.39.0 // indirect
- go.opentelemetry.io/otel/trace v1.39.0 // indirect
+ go.opentelemetry.io/otel/metric v1.40.0 // indirect
+ go.opentelemetry.io/otel/sdk v1.40.0 // indirect
+ go.opentelemetry.io/otel/trace v1.40.0 // indirect
#!/bin/bash
set -euo pipefail

echo "Check current OTel versions in go.mod:"
rg -n 'go\.opentelemetry\.io/otel($|/metric|/sdk|/trace)' go.mod

echo
echo "Verify OSV status for otel/sdk version from go.mod:"
ver=$(rg -n 'go\.opentelemetry\.io/otel/sdk v' go.mod | sed -E 's/.* v([^ ]+).*/\1/' | head -n1)
curl -sS https://api.osv.dev/v1/query \
  -H 'content-type: application/json' \
  -d "{\"package\":{\"name\":\"go.opentelemetry.io/otel/sdk\",\"ecosystem\":\"Go\"},\"version\":\"${ver}\"}" \
  | python3 -c 'import sys,json; d=json.load(sys.stdin); print("Version:", "'"${ver}"'"); print("Vulns:", len(d.get("vulns", []))); [print("-", v.get("id")) for v in d.get("vulns", [])]'
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@go.mod` around lines 283 - 288, The go.mod lists OpenTelemetry SDK and
related modules at v1.39.0 which is vulnerable; update
go.opentelemetry.io/otel/sdk to v1.40.0 or newer and align the companion modules
(go.opentelemetry.io/otel, go.opentelemetry.io/otel/metric,
go.opentelemetry.io/otel/trace and otlptrace packages) to the same compatible
release line (e.g., v1.40.0+), then run go mod tidy to ensure dependency graph
consistency and rebuild to verify no breakages.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Duplicate comments:
In `@go.mod`:
- Around line 283-288: The go.mod lists OpenTelemetry SDK and related modules at
v1.39.0 which is vulnerable; update go.opentelemetry.io/otel/sdk to v1.40.0 or
newer and align the companion modules (go.opentelemetry.io/otel,
go.opentelemetry.io/otel/metric, go.opentelemetry.io/otel/trace and otlptrace
packages) to the same compatible release line (e.g., v1.40.0+), then run go mod
tidy to ensure dependency graph consistency and rebuild to verify no breakages.
ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository: openshift/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: f669b75b-3ffe-4e92-9a03-2c05e6d24694

📥 Commits

Reviewing files that changed from the base of the PR and between c9af7c0 and 3fe06da.

⛔ Files ignored due to path filters (67)
  • go.sum is excluded by !**/*.sum
  • vendor/cel.dev/expr/BUILD.bazel is excluded by !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/MODULE.bazel is excluded by !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/checked.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/eval.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/explain.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/syntax.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cel.dev/expr/value.pb.go is excluded by !**/*.pb.go, !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/CHANGES.md is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/credentials/detect.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/credentials/filetypes.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/credentials/internal/gdch/gdch.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/httptransport/httptransport.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/credsfile/credsfile.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/credsfile/filetype.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/credsfile/parse.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/internal.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/jwt/jwt.go is excluded by !**/vendor/**, !vendor/**
  • vendor/cloud.google.com/go/auth/internal/version.go is excluded by !**/vendor/**, !vendor/**
  • vendor/github.com/googleapis/gax-go/v2/CHANGES.md is excluded by !**/vendor/**, !vendor/**
  • vendor/github.com/googleapis/gax-go/v2/feature.go is excluded by !**/vendor/**, !vendor/**
  • vendor/github.com/googleapis/gax-go/v2/internal/version.go is excluded by !**/vendor/**, !vendor/**
  • vendor/github.com/googleapis/gax-go/v2/invoke.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.etcd.io/etcd/api/v3/version/version.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.etcd.io/etcd/client/v3/naming/endpoints/endpoints.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.etcd.io/etcd/server/v3/embed/config.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/.codespellignore is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/.golangci.yml is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/.lycheeignore is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/CHANGELOG.md is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/CONTRIBUTING.md is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/Makefile is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/README.md is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/RELEASING.md is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/VERSIONING.md is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/attribute/encoder.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/attribute/hash.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/attribute/internal/xxhash/xxhash.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/attribute/set.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/attribute/type_string.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/baggage/baggage.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/dependencies.Dockerfile is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/internal/global/meter.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/metric.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/metric/config.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/propagation/trace_context.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/internal/x/features.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/internal/x/x.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/host_id_bsd.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/host_id_linux.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/host_id_unsupported.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/host_id_windows.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/os_release_unix.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/os_unix.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/resource/os_unsupported.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/batch_span_processor.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/doc.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/env/env.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/observ/batch_span_processor.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/observ/doc.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/observ/simple_span_processor.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/observ/tracer.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/x/README.md is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/internal/x/x.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/provider.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/simple_span_processor.go is excluded by !**/vendor/**, !vendor/**
  • vendor/go.opentelemetry.io/otel/sdk/trace/span.go is excluded by !**/vendor/**, !vendor/**
📒 Files selected for processing (1)
  • go.mod

@openshift-ci
Copy link
Copy Markdown
Contributor

openshift-ci Bot commented Mar 6, 2026

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/verify 3fe06da link true /test verify
ci/prow/e2e-azure-self-managed 3fe06da link true /test e2e-azure-self-managed
ci/prow/images 3fe06da link true /test images

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@openshift-merge-robot openshift-merge-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Mar 6, 2026
@openshift-merge-robot
Copy link
Copy Markdown
Contributor

openshift-merge-robot commented Mar 6, 2026

rebase

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@bryan-cox
Copy link
Copy Markdown
Member

bryan-cox commented Mar 6, 2026

/close

@openshift-ci openshift-ci Bot closed this Mar 6, 2026
@openshift-ci
Copy link
Copy Markdown
Contributor

openshift-ci Bot commented Mar 6, 2026

@bryan-cox: Closed this PR.

Details

In response to this:

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Mar 6, 2026

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot Bot deleted the dependabot/go_modules/misc-dependencies-07bbdea3be branch March 6, 2026 14:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@bryan-cox bryan-cox Awaiting requested review from bryan-cox

@muraee muraee Awaiting requested review from muraee

Assignees

No one assigned

Labels

area/ci-tooling Indicates the PR includes changes for CI or tooling needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. ok-to-test Indicates a non-member PR verified by an org member that is safe to test.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@openshift-ci-robot @openshift-merge-robot @bryan-cox