Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Renovate: Update actions/checkout digest to 34e1148
• Renovate: Update actions/setup-go digest to 40f1582
• Renovate: Update k8s.io/utils digest to 28399d8
• Renovate: Update External dependencies (github.com/go-logr/logr, github.com/goccy/go-yaml, github.com/gophercloud/gophercloud/v2, github.com/onsi/ginkgo/v2, github.com/onsi/gomega, k8s.io/api, k8s.io/apimachinery, k8s.io/client-go, kubernetes-sigs/controller-tools, kubernetes-sigs/kustomize, sigs.k8s.io/controller-runtime)
• Renovate: Update actions/checkout action to v6
• Renovate: Update actions/setup-go action to v6
• Click on this checkbox to rebase all open PRs at once

Vulnerabilities

Important

2/2 CVEs have Renovate fixes.

gomod

go.mod

golang.org/x/net

• GO-2026-4440 (fixed in >= 0.45.0)
• GO-2026-4441 (fixed in >= 0.45.0)

Detected Dependencies

github-actions (6)

.github/workflows/checks.yaml (6)

• actions/checkout v6
• actions/setup-go v6
• golangci/golangci-lint-action v9
• crate-ci/typos v1
• fsfe/reuse-action v6
• go 1.26.2

.github/workflows/ci.yaml (9)

• actions/checkout v6
• actions/setup-go v6
• actions/checkout v6
• fgrosse/go-coverage-report v1.3.0
• actions/checkout v6
• actions/setup-go v6
• actions/upload-artifact v7
• go 1.26.2
• go 1.26.2

.github/workflows/codeql.yaml (6)

• actions/checkout v6
• actions/setup-go v6
• github/codeql-action v4
• github/codeql-action v4
• github/codeql-action v4
• go 1.26.2

.github/workflows/container-registry-ghcr.yaml (6)

• actions/checkout v6
• docker/login-action v4
• docker/metadata-action v6
• docker/setup-qemu-action v4
• docker/setup-buildx-action v4
• docker/build-push-action v7

.github/workflows/goreleaser.yaml (5)

• actions/checkout v6
• actions/setup-go v6
• anchore/sbom-action v0
• goreleaser/goreleaser-action v7
• go 1.26.2

.github/workflows/unit-test.yaml (2)

• actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683 → [Updates: v6, v4]
• actions/setup-go v5@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 → [Updates: v6, v5]

gomod (1)

go.mod (12)

• go 1.24.0
• github.com/go-logr/logr v1.4.2 → [Updates: v1.4.3]
• github.com/goccy/go-yaml v1.17.1 → [Updates: v1.19.2]
• github.com/gophercloud/gophercloud/v2 v2.7.0 → [Updates: v2.12.0]
• github.com/onsi/ginkgo/v2 v2.23.4 → [Updates: v2.28.1]
• github.com/onsi/gomega v1.37.0 → [Updates: v1.39.1]
• github.com/pkg/errors v0.9.1
• k8s.io/api v0.33.0 → [Updates: v0.33.11]
• k8s.io/apimachinery v0.33.1 → [Updates: v0.33.11]
• k8s.io/client-go v0.33.0 → [Updates: v0.33.11]
• k8s.io/utils v0.0.0-20250502105355-0f33e8f1c979@0f33e8f1c979 → [Updates: v0.0.0-20250502105355-0f33e8f1c979]
• sigs.k8s.io/controller-runtime v0.20.4 → [Updates: v0.23.3]

kustomize (1)

deploy/kustomize/config/manager/kustomization.yaml

regex (2)

Makefile (1)

• kubernetes-sigs/kustomize 5.6.0 → [Updates: 5.8.1]

Makefile (1)

• kubernetes-sigs/controller-tools 0.18.0 → [Updates: 0.20.1]

---

• Check this box to trigger a request for Renovate to run again on this repository