Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

PR Edited (Blocked)

The following updates have been manually edited so Renovate will no longer make changes. To discard all commits and start over, click on a checkbox below.

• fix(deps): update module sigs.k8s.io/controller-runtime to v0.23.3

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): update dependency b1nary-gr0up/nwa to v0.7.8
• chore(deps): update capsule-proxy docker tag to v0.12.0
• fix(deps): update module go.uber.org/zap to v1.28.0

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• fix(deps): update k8s.io/utils digest to 28399d8
• chore(deps): update all-ci-updates (argo-cd, kube-prometheus-stack)
• fix(deps): update kubernetes monorepo to v0.35.4 (k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/apiserver, k8s.io/client-go)
• fix(deps): update module github.com/onsi/gomega to v1.39.1
• chore(deps): update dependency golangci/golangci-lint to v2.11.4
• chore(deps): update dependency grafana/grafana-operator to v5.22.2
• chore(deps): update dependency prometheus-operator/prometheus-operator to v0.90.1
• fix(deps): update module github.com/onsi/ginkgo/v2 to v2.28.1
• fix(deps): update module golang.org/x/sync to v0.20.0
• fix(deps): update module sigs.k8s.io/cluster-api to v1.13.0
• fix(deps): update module sigs.k8s.io/gateway-api to v1.5.1
• chore(deps): update helm release pyroscope to v2
• Click on this checkbox to rebase all open PRs at once

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• chore(deps): update dependency kubernetes-sigs/controller-tools to v0.20.1
• chore(deps): update dependency alegrey91/harpoon to v0.11.0
• chore(deps): update dependency norwoodj/helm-docs to v0.15.0
• chore(deps): update dependency norwoodj/helm-docs to v1

Detected Dependencies

dockerfile (1)

Dockerfile.tracing

flux (5)

hack/distro/argocd/release.flux.yaml (1)

• argo-cd 9.5.2 → [Updates: 9.5.3]

hack/distro/capsule/release.flux.yaml (1)

• capsule 0.12.4

hack/distro/cert-manager/release.flux.yaml (1)

• cert-manager v1.20.2

hack/distro/monitoring/kube-prometheus-stack/release.flux.yaml (1)

• kube-prometheus-stack 83.6.0 → [Updates: 83.7.0, 84.5.0]

hack/distro/monitoring/pyroscope/release.flux.yaml (1)

• pyroscope 1.21.0 → [Updates: 2.0.0]

github-actions (14)

.github/actions/setup-caches/action.yaml (2)

• actions/cache v5.0.5@27d5ce7f107fe9357f9df03efb73ab90386fccae
• actions/cache v5.0.5@27d5ce7f107fe9357f9df03efb73ab90386fccae

.github/workflows/check-actions.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• zgosalvez/github-actions-ensure-sha-pinned-actions v5.0.4@ca46236c6ce584ae24bc6283ba8dcf4b3ec8a066

.github/workflows/check-commit.yml (3)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• wagoid/commitlint-github-action v6.2.1@b948419dd99f3fd78a6548d48f94e3df7f6bf3ed
• ubuntu 24.04

.github/workflows/check-pr.yml

.github/workflows/coverage.yml (12)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• fossas/fossa-action v1.9.0@ff70fe9fe17cbd2040648f1c45e8ec4e4884dcf3
• fossas/fossa-action v1.9.0@ff70fe9fe17cbd2040648f1c45e8ec4e4884dcf3
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• securego/gosec v2.25.0@223e19b8856e00f02cc67804499a83f77e208f3c → [Updates: v2.26.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• codecov/codecov-action v6.0.0@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2
• ubuntu 24.04
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/docker-build.yml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• aquasecurity/trivy-action 0.35.0@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 → [Updates: v0.36.0]

.github/workflows/docker-publish.yml (5)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• aquasecurity/trivy-action 0.35.0@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 → [Updates: v0.36.0]
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• peak-scale/github-actions v0.2.0@a441cca016861c546ab7e065277e40ce41a3eb84
• slsa-framework/slsa-github-generator v2.1.0

.github/workflows/e2e.yml (12)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• azure/setup-helm v5@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• azure/setup-helm v5@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• azure/setup-helm v5@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• azure/setup-helm v5@dda3372f752e03dde6b3237bc9431cdc2f7a02a2

.github/workflows/helm-publish.yml (8)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• stefanprodan/helm-gh-pages v1.7.0@0ad2bb377311d61ac04ad9eb6f252fb68e207260
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• peak-scale/github-actions v0.2.0@a441cca016861c546ab7e065277e40ce41a3eb84
• slsa-framework/slsa-github-generator v2.1.0
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/helm-test.yml (4)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• azure/setup-helm v5@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• ubuntu 24.04

.github/workflows/lint.yml (8)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• ubuntu 24.04
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/releaser.yml (5)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• creekorful/goreportcard-action v1.0@1f35ced8cdac2cba28c9a2f2288a16aacfd507f9
• sigstore/cosign-installer v4.1.1@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003
• goreleaser/goreleaser-action v7.1.0@e24998b8b67b290c2fa8b7c14fcfa7de2c5c9b8c → [Updates: v7.2.1]

.github/workflows/scorecard.yml (4)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• github/codeql-action v4.35.2@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 → [Updates: v4.35.3]

.github/workflows/stale.yml

gomod (1)

go.mod (21)

• go 1.25.4
• github.com/go-logr/logr v1.4.3
• github.com/onsi/ginkgo/v2 v2.27.5 → [Updates: v2.28.1]
• github.com/onsi/gomega v1.39.0 → [Updates: v1.39.1]
• github.com/pkg/errors v0.9.1
• github.com/prometheus/client_golang v1.23.2
• github.com/spf13/pflag v1.0.10
• github.com/stretchr/testify v1.11.1
• github.com/valyala/fasttemplate v1.2.2
• go.uber.org/automaxprocs v1.6.0
• go.uber.org/zap v1.27.1 → [Updates: v1.28.0]
• golang.org/x/sync v0.19.0 → [Updates: v0.20.0]
• k8s.io/api v0.35.0 → [Updates: v0.35.4]
• k8s.io/apiextensions-apiserver v0.35.0 → [Updates: v0.35.4]
• k8s.io/apimachinery v0.35.0 → [Updates: v0.35.4]
• k8s.io/apiserver v0.35.0 → [Updates: v0.35.4]
• k8s.io/client-go v0.35.0 → [Updates: v0.35.4]
• k8s.io/utils v0.0.0-20260108192941-914a6e750570@914a6e750570 → [Updates: v0.0.0-20260319190234-28399d86e0b5]
• sigs.k8s.io/cluster-api v1.12.2 → [Updates: v1.13.0]
• sigs.k8s.io/controller-runtime v0.23.0 → [Updates: v0.23.3]
• sigs.k8s.io/gateway-api v1.4.1 → [Updates: v1.5.1]

helm-values (1)

charts/capsule/values.yaml

helmv3 (1)

charts/capsule/Chart.yaml (1)

• capsule-proxy 0.10.0 → [Updates: 0.12.0]

regex (2)

.pre-commit-config.yaml (3)

• alessandrojcm/commitlint-pre-commit-hook v9.25.0
• pre-commit/pre-commit-hooks v6.0.0
• adrienverge/yamllint v1.38.0

Makefile (12)

• kubernetes-sigs/gateway-api v1.35.0
• grafana/grafana-operator v5.18.0 → [Updates: v5.22.2]
• prometheus-operator/prometheus-operator v0.88.0 → [Updates: v0.90.1]
• norwoodj/helm-docs 0.13.0-rc.2 → [Updates: v0.15.0, v1.14.2]
• kubernetes-sigs/controller-tools v0.20.0 → [Updates: v0.20.1]
• helm/chart-testing v3.14.0
• kubernetes-sigs/kind v0.31.0
• google/ko v0.18.1
• B1NARY-GR0UP/nwa v0.7.7 → [Updates: v0.7.8]
• golangci/golangci-lint v2.8.0 → [Updates: v2.11.4]
• fybrik/crdoc v0.6.4
• alegrey91/harpoon v0.10.2 → [Updates: v0.11.0]

---

• Check this box to trigger a request for Renovate to run again on this repository