build(deps): bump the k8s group across 1 directory with 7 updates

[dependabot]

Bumps the k8s group with 4 updates in the / directory: k8s.io/apimachinery, k8s.io/client-go, sigs.k8s.io/controller-runtime and sigs.k8s.io/kustomize/api.

Updates k8s.io/apimachinery from 0.28.3 to 0.31.0

Commits

• a8f449e Falls back to SPDY for gorilla/websocket https proxy error
• 62791ec Merge pull request #125571 from liggitt/filter-auth-02-sar
• cc2ba35 add field and label selectors to authorization attributes
• ce76a8f generate
• 35052c5 add subjectaccessreview field and label selectors
• ab06869 Merge pull request #126105 from benluddy/cbor-framer
• 429f4e4 Implement runtime.Framer for CBOR Sequences.
• d7e1c53 Merge pull request #126018 from aroradaman/bump-k8s-utils
• 07cb122 Merge pull request #125748 from benluddy/cbor-custom-marshalers
• dd17456 bump k8s.io/utils
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.28.3 to 0.31.0

Commits

• 02a19c3 Update dependencies to v0.31.0 tag
• 5e3e8ea informers: add comment that Start does not block
• f71a5cc Call non-blocking informerFactory.Start synchronously to avoid races
• 4536e5a Merge pull request #124012 from Jefftree/le-controller
• 93c6a5b Merge pull request #126353 from liggitt/fix-vendor
• 6a9911a revendor dependencies
• fe54892 Merge pull request #126243 from SergeyKanzhelev/devicePluginFailures
• 825f52e Change PingTime to be persistent
• f45c451 fix ordering issue in candidates
• 18dd587 feedback: leasecandidate clients
• Additional commits viewable in compare view

Updates k8s.io/utils from 0.0.0-20230726121419-3b25d923346b to 0.0.0-20240711033017-18e509b52bc8

Commits

• See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.16.3 to 0.19.0

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.19.0

⚠️ Deprecation Warnings

Please note that admission.Defaulter/Validator have been deprecated in favor of admission.CustomDefaulter/CustomValidator since v0.17 and will be removed with v0.20.

⚠️ Breaking Changes

• Bump to k8s.io/* v1.31 (#2798 #2858 #2867 #2872 #2883 #2900 #2906 #2924)
• Add generic TypedReconciler (#2799)
• client: Remove options.WarningHandler (#2887 #2903)
• controller: Validate controller names are unique & add SkipNameValidation option (#2902 #2918)

✨ New Features

• client: Add WithFieldValidation client (#2860 #2913)
• controller & webhook: Recover panics per default & add panic metrics (#2905)
• controllerutil: configure BlockOwnerDeletion when setting OwnerReference (#2847)
• fake client: Add scale subresource logic (#2855)
• predicate: Add missing generic version of ResourceVersionChangedPredicate (#2812)
• setup-envtest: Download binaries from controller-tools releases instead of GCS (#2811)
• setup-envtest: Publish setup-envtest binaries via release attachments (#2911)
• workqueue: Add controller label to workqueue metrics (#2895)

🐛 Bug Fixes

• apiutil.IsGVKNamespaced: Fix namespaced GVK check to use version (#2875)
• cache: Fix label defaulting of byObject when namespaces are configured (#2805)
• certwatcher: Recreate watcher if the file is unlinked and replaced (#2893)
• manager: Fix log in AddMetricsServerExtraHandler (#2874)
• manager: Quiet context.Canceled errors during shutdown (#2745)
• manager: Reintroduce AddMetricsServerExtraHandler (#2813)
• manager.Start: Prevent LeaderElector setup error from being swallowed (#2876)
• source.Kind: String() should return correct type (#2806)

🌱 Others

• actions: Add action to approve actions if /ok-to-test is set (#2908)
• controller: Add dynamic watcher tests (#2881)
• dependabot: disable go module bumps, bump all actions in a single PR (#2856)
• verify-modules: Verify go modules are in sync with upstream k/k (#2774)

📖 Additionally, there have been 5 contributions to our documentation. (#2830, #2849, #2863, #2894, #2899, #2910)

Dependencies

Added

• cel.dev/expr: v0.15.0
• github.com/antlr4-go/antlr/v4: v4.13.0

... (truncated)

Commits

• b901db1 Merge pull request #2924 from lucacome/bump-deps
• 0c7827e Bump k8s.io deps to v1.31.0
• 9f5afec Merge pull request #2918 from sbueringer/pr-add-skip-name-validation
• 96e8152 Merge pull request #2921 from kubernetes-sigs/dependabot/github_actions/all-g...
• 8f5faff 🌱 Bump actions/upload-artifact in the all-github-actions group
• 89bebe3 Add SkipNameValidation option
• 7857623 Merge pull request #2911 from sbueringer/pr-publish-setup-envtest
• fdc8bd7 Merge pull request #2913 from sbueringer/pr-test-cov-field-validation
• 7dfd3bb Fix WithFieldValidation client
• e882354 Merge pull request #2908 from sbueringer/pr-approve-action
• Additional commits viewable in compare view

Updates sigs.k8s.io/kustomize/api from 0.10.1 to 0.17.3

Release notes

Sourced from sigs.k8s.io/kustomize/api's releases.

api/v0.17.3

chore

#5506: fix some comments #5693: fix: always show accumulation errors #5699: chore: add deprecation comment to commonLabels #5698: fix(namereference): add configuration for new admission API

Dependencies

#5734: Update kyaml to v0.17.2

api/v0.17.2

Feature

#5294: feat: localize absolute paths #5556: feat: support labels key in transformer configuration

Bug fixes/Performance improvements

#5079: perf: improve applyOrdering by avoid call to GetByCurrentId #5500: add testcase that check yield malformed yaml errors

chore

#5625: fix: return error instead of log.Fatalf() #5651: fix: use fmt.Errorf instead of non-existing errors.New

Dependencies

#5672: chore(deps): bump dependencies of kustomize + sync go workspace #5680: chore: restore version for github.com/asaskevich/govalidator #5702: Update kyaml to v0.17.1

kyaml/v0.17.2

chore

#5413: chore(docs): fix grammar error in comment #5506: fix some comments

api/v0.17.1

#5644: fix version subcommand is not working after release build

kyaml/v0.17.1

Dependencies

#5672: chore(deps): bump dependencies of kustomize + sync go workspace #5680: chore: restore version for github.com/asaskevich/govalidator

api/v0.17.0

Breaking changes

#5519: Fix null YAML values being replaced by "null"

Features

#5539: Include exec plugin stderr with wrapped error #5542: fix: improve accumulation failure message #5550: use Strict unmarshal when read TransformerConfig

... (truncated)

Commits

• ddeb572 Merge pull request #5735 from koba1t/pinToCmdConfig
• 36d78f6 Update cmd/config to v0.14.2
• 4e52632 Merge pull request #5734 from koba1t/pinToKyaml
• 8eacab0 Update kyaml to v0.17.2
• 1a41303 Merge pull request #5628 from antoooks/release-helper-script
• 7cbaf78 fix:kustomize cfg grep with no arguments causes panic (#5707)
• 735ad0b Merge pull request #5682 from kozjan/add-label-include-templates
• c1de030 Merge pull request #5413 from crenshaw-dev/patch-1
• 5cfd3ab Merge pull request #5725 from kubernetes-sigs/dependabot/go_modules/hack/gola...
• dfb3064 build(deps): bump golang.org/x/image from 0.13.0 to 0.18.0 in /hack
• Additional commits viewable in compare view

Updates sigs.k8s.io/kustomize/kyaml from 0.13.0 to 0.17.2

Release notes

Sourced from sigs.k8s.io/kustomize/kyaml's releases.

api/v0.17.2

Feature

#5294: feat: localize absolute paths #5556: feat: support labels key in transformer configuration

Bug fixes/Performance improvements

#5079: perf: improve applyOrdering by avoid call to GetByCurrentId #5500: add testcase that check yield malformed yaml errors

chore

#5625: fix: return error instead of log.Fatalf() #5651: fix: use fmt.Errorf instead of non-existing errors.New

Dependencies

#5672: chore(deps): bump dependencies of kustomize + sync go workspace #5680: chore: restore version for github.com/asaskevich/govalidator #5702: Update kyaml to v0.17.1

kyaml/v0.17.2

chore

#5413: chore(docs): fix grammar error in comment #5506: fix some comments

api/v0.17.1

#5644: fix version subcommand is not working after release build

kyaml/v0.17.1

Dependencies

#5672: chore(deps): bump dependencies of kustomize + sync go workspace #5680: chore: restore version for github.com/asaskevich/govalidator

api/v0.17.0

Breaking changes

#5519: Fix null YAML values being replaced by "null"

Features

#5539: Include exec plugin stderr with wrapped error #5542: fix: improve accumulation failure message #5550: use Strict unmarshal when read TransformerConfig

Bug fixes/performance improvements

#5234: fix edit set image to parse both tag and digest #5236: Fix name in a configMapRef missing hash #5047 #5463: Fix version tag management #5510: Skip KUSTOMIZE_PLUGIN_CONFIG_* env variables when too large #5621: Use require for Error and NoError

Dependencies

#5044: Remove non-essential dependency imdario/mergo

... (truncated)

Commits

• 9cc25a5 Merge pull request #5703 from koba1t/pinToCmdConfig
• f6ad718 Update cmd/config to v0.14.1
• da14e76 Merge pull request #5702 from koba1t/pinToKyaml
• 7424956 Update kyaml to v0.17.1
• e244b83 Merge pull request #5688 from emirot/refactor/indexOf
• f983846 refactor: function in stdlib now
• 49a645f Merge pull request #5294 from typeid/localize_absolute_paths
• e7a1549 fix: use fmt.Errorf instead of non-existing errors.New (#5651)
• 0d7d830 Merge pull request #5681 from emirot/remove-string-in-slice
• e676d05 Merge pull request #5500 from charles-chenzz/kust-target-tc
• Additional commits viewable in compare view

Updates sigs.k8s.io/yaml from 1.3.0 to 1.4.0

Release notes

Sourced from sigs.k8s.io/yaml's releases.

v1.4.0

• Adds a goyaml.v2 subpackage containing a fork of gopkg.in/yaml.v2 at v2.4.0
• Adds a goyaml.v3 subpackage containing a fork of gopkg.in/yaml.v3 at v3.0.1
• Adds an Encoder#CompactSeqIndent() encoder option to sigs.k8.io/goyaml.v3 to allow opting into indentation compatible with gopkg.in/yaml.v2

Commits

• c3772b5 Merge pull request #97 from liggitt/owners
• 604031b Update owners
• eead467 Merge pull request #76 from natasha41575/go-yaml-fork
• f2c0229 add test demonstrating consistency between yaml.v2 and yaml.v3
• 20d25fa update LICENSE, owners, and readmes
• a7b5665 exclude forked libs from golint
• b6d8b45 fix leading newline issue
• 330e1e5 make sequence style configurable
• 70ebea7 change import paths to forked yaml libs
• b96582b fork go-yaml v2 and v3
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[openshift-ci]

@dependabot[bot]: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/ocp-latest-e2e	73558e0	link	true	/test ocp-latest-e2e

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[dependabot]

Superseded by #957.