dependabot(deps): bump sigs.k8s.io/cluster-api from 1.11.1 to 1.12.0

[dependabot]

Bumps sigs.k8s.io/cluster-api from 1.11.1 to 1.12.0.

Release notes

Sourced from sigs.k8s.io/cluster-api's releases.

v1.12.0

👌 Kubernetes version support

• Management Cluster: v1.31.x -> v1.34.x
• Workload Cluster: v1.29.x -> v1.34.x

More information about version support can be found here

Highlights

• Bumped to Go 1.24, controller-runtime v0.22, k8s.io/* v0.34, controller-gen v0.19
• In-place updates
  • Cluster API introduces support for update extensions allowing users to execute changes on existing machines without deleting the machines and creating a new one.
  • Both KCP and Machine deployments support in-place updates based on the new update extension
  • Can be enabled with the new InPlaceUpdates feature gate
  • More details can be found in the proposal
• Chained upgrades
  • Clusters using managed topologies can now upgrade by more than one minor Kubernetes version by performing chained and efficient upgrades.
  • Upgrade plan will be computed using Kubernetes version from the ClusterClass or by calling a new runtimeExtension (also defined in the ClusterClass)
  • Existing lifecycle hooks have been adapted to the new workflow, new lifecycle hooks have been introduced to allow granular control of the upgrade steps.
  • More details can be found in the proposal
• MachineHealthCheck: Add support for checking Machine conditions (#12827)
• Machine: First part of the Taint propagation proposal (Machine/MachineSet/MachineDeployment) (#12936, #12966)
  • Feature tracking issue
  • Can be enabled with the new MachineTaintPropagation feature gate
• KCP/CABPK: Add EncryptionAlgorithm field to Kubeadmconfig to support keys generated with RSA-3072, RSA-4096, ECDSA-P256, ECDSA-P384 (#12859)
• Introduce ReconcilerRateLimiting feature (#13006)
  • Can be enabled with the new ReconcilerRateLimiting feature gate
  • Rate-limits all reconcilers to at most 1 request per second

Note: Cluster API is only supported on conformant Kubernetes Clusters and contract-relevant provider resources (e.g. InfraCluster) have to be implemented as CRDs (i.e. not via an aggregated apiserver).

Other changes

• clusterctl: Add conditions filter for clusterctl describe (#12991)
• clusterctl: clusterctl move blocks when Cluster or ClusterClass is paused (#12786)
• KCP: Enable websocket dialer with fallback to spdy (for communication with etcd) (#12902)
• Runtime SDK: Add defensive response status checking in runtime client (#12898)
• Improved logging across several controllers
• Improved e2e test coverage, e.g.: CAPD: Add scale from/to 0 support for CAPD (#12572)
• New providers in clusterctl: HCP (#12800) control plane provider, Metal3 IPAM provider (#12756), metal-stack infrastructure provider (#12925)

Deprecation and Removals Warning

• ClusterResourceSet: Remove deprecated ClusterResourceSet feature gate (#12950)
• Reminder: v1alpha3 & v1alpha4 will be removed in CAPI v1.13 (they are already not served since a while)
• Reminder: v1beta1 is on track to be unserved in CAPI v1.14
  • Reminder: Provider should start implementing the v1beta2 contract ASAP.

For additional details for providers, please take a look at Cluster API v1.11 compared to v1.12.

... (truncated)

Commits

• b52de69 Merge pull request #13126 from fabriziopandini/skip-test-using-outdated-docke...
• 24fc51d Skip test using outdated docker client
• 6f77fc5 Merge pull request #13119 from k8s-infra-cherrypick-robot/cherry-pick-13113-t...
• b9f4cb7 Merge pull request #13118 from k8s-infra-cherrypick-robot/cherry-pick-13016-t...
• 2564041 e2e: use crane to pre-pull images instead of docker pull
• f18bded Update in-place update implementation notes
• 5635dc2 Merge pull request #13116 from k8s-infra-cherrypick-robot/cherry-pick-13088-t...
• 24b1ef4 Merge pull request #13114 from k8s-infra-cherrypick-robot/cherry-pick-13079-t...
• 2d7e555 Address feedback
• d4a1de7 Update in-place update proposal
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: kind/cleanup, ok-to-test, release-note-none. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[dependabot]

Superseded by #105.