cobaltcore-dev
diff --git a/‎.editorconfig‎
Lines changed: 2 additions & 2 deletions b/‎.editorconfig‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.envrc‎
Lines changed: 2 additions & 1 deletion b/‎.envrc‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎.github/renovate.json‎
Lines changed: 25 additions & 7 deletions b/‎.github/renovate.json‎
Lines changed: 25 additions & 7 deletions
diff --git a/‎.github/workflows/checks.yaml‎
Lines changed: 17 additions & 10 deletions b/‎.github/workflows/checks.yaml‎
Lines changed: 17 additions & 10 deletions
diff --git a/‎.github/workflows/ci.yaml‎
Lines changed: 30 additions & 7 deletions b/‎.github/workflows/ci.yaml‎
Lines changed: 30 additions & 7 deletions
diff --git a/‎.github/workflows/codeql.yaml‎
Lines changed: 7 additions & 7 deletions b/‎.github/workflows/codeql.yaml‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎.golangci.yaml‎
Lines changed: 16 additions & 3 deletions b/‎.golangci.yaml‎
Lines changed: 16 additions & 3 deletions
diff --git a/‎.license-scan-overrides.jsonl‎
Lines changed: 3 additions & 1 deletion b/‎.license-scan-overrides.jsonl‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎Dockerfile‎
Lines changed: 5 additions & 1 deletion b/‎Dockerfile‎
Lines changed: 5 additions & 1 deletion
@@ -1,4 +1,4 @@
-# SPDX-FileCopyrightText: SAP SE
+# SPDX-FileCopyrightText: SAP SE or an SAP affiliate company
 # SPDX-License-Identifier: Apache-2.0
 
 root = true
@@ -12,7 +12,7 @@ indent_size = 2
 
 [{Makefile,go.mod,go.sum,*.go}]
 indent_style = tab
-indent_size = 2
+indent_size = unset
 
 [*.md]
 trim_trailing_whitespace = false
 
@@ -1,5 +1,6 @@
 #!/usr/bin/env bash
-# SPDX-FileCopyrightText: 2019–2020 Target, Copyright 2021 The Nix Community
+# SPDX-FileCopyrightText: 2019–2020 Target
+# SPDX-FileCopyrightText: 2021 The Nix Community
 # SPDX-License-Identifier: Apache-2.0
 if type -P lorri &>/dev/null; then
   eval "$(lorri direnv)"
 
@@ -11,7 +11,7 @@
   ],
   "commitMessageAction": "Renovate: Update",
   "constraints": {
-    "go": "1.24"
+    "go": "1.25"
   },
   "dependencyDashboardOSVVulnerabilitySummary": "all",
   "osvVulnerabilityAlerts": true,
@@ -22,9 +22,13 @@
   "packageRules": [
     {
       "matchPackageNames": [
-        "golang"
+        "/.*/"
+      ],
+      "matchUpdateTypes": [
+        "minor",
+        "patch"
       ],
-      "allowedVersions": "1.24.x"
+      "groupName": "External dependencies"
     },
     {
       "matchPackageNames": [
@@ -35,16 +39,30 @@
     },
     {
       "matchPackageNames": [
-        "!/^github\\.com\\/sapcc\\/.*/",
-        "/.*/"
+        "go",
+        "golang",
+        "actions/go-versions"
       ],
-      "groupName": "External dependencies"
+      "groupName": "golang",
+      "separateMinorPatch": true
+    },
+    {
+      "matchPackageNames": [
+        "go",
+        "golang",
+        "actions/go-versions"
+      ],
+      "matchUpdateTypes": [
+        "minor",
+        "major"
+      ],
+      "dependencyDashboardApproval": true
     },
     {
       "matchPackageNames": [
         "/^k8s.io\\//"
       ],
-      "allowedVersions": "0.28.x"
+      "allowedVersions": "0.33.x"
     }
   ],
   "prHourlyLimit": 0,
 
@@ -3,7 +3,7 @@
 # Edit Makefile.maker.yaml instead.                                            #
 ################################################################################
 
-# Copyright 2024 SAP SE
+# SPDX-FileCopyrightText: 2024 SAP SE or an SAP affiliate company
 # SPDX-License-Identifier: Apache-2.0
 
 name: Checks
@@ -18,28 +18,29 @@ name: Checks
 permissions:
   checks: write
   contents: read
+  pull-requests: read
 jobs:
   checks:
     name: Checks
     runs-on: ubuntu-latest
     steps:
       - name: Check out code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
       - name: Set up Go
-        uses: actions/setup-go@v5
+        uses: actions/setup-go@v6
         with:
           check-latest: true
-          go-version: 1.24.2
+          go-version: 1.25.4
       - name: Run golangci-lint
-        uses: golangci/golangci-lint-action@v7
+        uses: golangci/golangci-lint-action@v9
         with:
           version: latest
+      - name: Delete pre-installed shellcheck
+        run: sudo rm -f $(which shellcheck)
+      - name: Run shellcheck
+        run: make run-shellcheck
       - name: Dependency Licenses Review
         run: make check-dependency-licenses
-      - name: Install govulncheck
-        run: go install golang.org/x/vuln/cmd/govulncheck@latest
-      - name: Run govulncheck
-        run: govulncheck -format text ./...
       - name: Check for spelling errors
         uses: reviewdog/action-misspell@v1
         with:
@@ -49,4 +50,10 @@ jobs:
           ignore: importas
           reporter: github-check
       - name: Check if source code files have license header
-        run: make check-license-headers
+        run: make check-addlicense
+      - name: REUSE Compliance Check
+        uses: fsfe/reuse-action@v6
+      - name: Install govulncheck
+        run: go install golang.org/x/vuln/cmd/govulncheck@latest
+      - name: Run govulncheck
+        run: govulncheck -format text ./...
@@ -3,7 +3,7 @@
 # Edit Makefile.maker.yaml instead.                                            #
 ################################################################################
 
-# Copyright 2024 SAP SE
+# SPDX-FileCopyrightText: 2024 SAP SE or an SAP affiliate company
 # SPDX-License-Identifier: Apache-2.0
 
 name: CI
@@ -27,26 +27,49 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Check out code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
       - name: Set up Go
-        uses: actions/setup-go@v5
+        uses: actions/setup-go@v6
         with:
           check-latest: true
-          go-version: 1.24.2
+          go-version: 1.25.4
       - name: Build all binaries
         run: make build-all
+  code_coverage:
+    name: Code coverage report
+    if: github.event_name == 'pull_request'
+    needs:
+      - test
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v6
+      - name: Post coverage report
+        uses: fgrosse/go-coverage-report@v1.2.0
+        with:
+          coverage-artifact-name: code-coverage
+          coverage-file-name: cover.out
+    permissions:
+      actions: read
+      contents: read
+      pull-requests: write
   test:
     name: Test
     needs:
       - build
     runs-on: ubuntu-latest
     steps:
       - name: Check out code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
       - name: Set up Go
-        uses: actions/setup-go@v5
+        uses: actions/setup-go@v6
         with:
           check-latest: true
-          go-version: 1.24.2
+          go-version: 1.25.4
       - name: Run tests and generate coverage report
         run: make build/cover.out
+      - name: Archive code coverage results
+        uses: actions/upload-artifact@v5
+        with:
+          name: code-coverage
+          path: build/cover.out
@@ -3,7 +3,7 @@
 # Edit Makefile.maker.yaml instead.                                            #
 ################################################################################
 
-# Copyright 2024 SAP SE
+# SPDX-FileCopyrightText: 2024 SAP SE or an SAP affiliate company
 # SPDX-License-Identifier: Apache-2.0
 
 name: CodeQL
@@ -27,18 +27,18 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Check out code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
       - name: Set up Go
-        uses: actions/setup-go@v5
+        uses: actions/setup-go@v6
         with:
           check-latest: true
-          go-version: 1.24.2
+          go-version: 1.25.4
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3
+        uses: github/codeql-action/init@v4
         with:
           languages: go
           queries: security-extended
       - name: Autobuild
-        uses: github/codeql-action/autobuild@v3
+        uses: github/codeql-action/autobuild@v4
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v3
+        uses: github/codeql-action/analyze@v4
@@ -3,7 +3,7 @@
 # Edit Makefile.maker.yaml instead.                                            #
 ################################################################################
 
-# Copyright 2024 SAP SE
+# SPDX-FileCopyrightText: 2024 SAP SE or an SAP affiliate company
 # SPDX-License-Identifier: Apache-2.0
 
 version: "2"
@@ -55,9 +55,10 @@ linters:
     - govet
     - ineffassign
     - intrange
+    - iotamixing
     - misspell
+    - modernize
     - nilerr
-    - noctx
     - nolintlint
     - nosprintfhostport
     - perfsprint
@@ -72,6 +73,9 @@ linters:
     - usetesting
     - whitespace
   settings:
+    dupword:
+      # Do not choke on SQL statements like `INSERT INTO things (foo, bar, baz) VALUES (TRUE, TRUE, TRUE)`.
+      ignore: [ "TRUE", "FALSE", "NULL" ]
     errcheck:
       check-type-assertions: false
       # Report about assignment of errors to blank identifier.
@@ -125,6 +129,8 @@ linters:
       replace-allow-list:
         # for go-pmtud
         - github.com/mdlayher/arp
+        # for github.com/sapcc/vpa_butler
+        - k8s.io/client-go
       toolchain-forbidden: true
       go-version-pattern: 1\.\d+(\.0)?$
     gosec:
@@ -139,6 +145,13 @@ linters:
       enable-all: true
     nolintlint:
       require-specific: true
+    modernize:
+      disable:
+        # omitzero requires removing omitempty tags in kubernetes api struct types which are nested, which is intepreted by controller-gen and breaks the CRDs.
+        - omitzero
+    perfsprint:
+      # modernize generates nicer fix code
+      concat-loop: false
     staticcheck:
       dot-import-whitelist:
         - github.com/majewsky/gg/option
@@ -163,13 +176,13 @@ linters:
   exclusions:
     generated: lax
     presets:
-      - comments
       - common-false-positives
       - legacy
       - std-error-handling
     rules:
       - linters:
           - bodyclose
+          - revive
         path: _test\.go
       # It is idiomatic Go to reuse the name 'err' with ':=' for subsequent errors.
       # Ref: https://go.dev/doc/effective_go#redeclaration
 
@@ -1,10 +1,12 @@
 {"name": "github.com/chzyer/logex", "licenceType": "MIT"}
+{"name": "github.com/grpc-ecosystem/go-grpc-middleware/v2", "licenceType": "Apache-2.0"}
 {"name": "github.com/hashicorp/vault/api/auth/approle", "licenceType": "MPL-2.0"}
 {"name": "github.com/jpillora/longestcommon", "licenceType": "MIT"}
+{"name": "github.com/logrusorgru/aurora", "licenceType": "Unlicense"}
 {"name": "github.com/mattn/go-localereader", "licenceType": "MIT"}
 {"name": "github.com/miekg/dns", "licenceType": "BSD-3-Clause"}
+{"name": "github.com/pashagolub/pgxmock/v4", "licenceType": "BSD-3-Clause"}
 {"name": "github.com/spdx/tools-golang", "licenceTextOverrideFile": "vendor/github.com/spdx/tools-golang/LICENSE.code"}
 {"name": "github.com/xeipuuv/gojsonpointer", "licenceType": "Apache-2.0"}
 {"name": "github.com/xeipuuv/gojsonreference", "licenceType": "Apache-2.0"}
 {"name": "github.com/xeipuuv/gojsonschema", "licenceType": "Apache-2.0"}
-{"name": "github.wdf.sap.corp/cc/nxos-gnmi-go", "licenceType": "Apache-2.0"}
 
@@ -1,5 +1,9 @@
+# SPDX-FileCopyrightText: 2025 SAP SE or an SAP affiliate company
+#
+# SPDX-License-Identifier: Apache-2.0
+
 # Build the manager binary
-FROM golang:1.24-alpine AS builder
+FROM golang:1.25-alpine AS builder
 
 WORKDIR /workspace
 ENV GOTOOLCHAIN=local