Skip to content

chore(deps): bump github.com/elastic/elastic-package from 0.124.0 to 0.125.0#19721

Merged
teresaromero merged 1 commit into
mainfrom
dependabot/go_modules/github.com/elastic/elastic-package-0.125.0
Jun 24, 2026
Merged

chore(deps): bump github.com/elastic/elastic-package from 0.124.0 to 0.125.0#19721
teresaromero merged 1 commit into
mainfrom
dependabot/go_modules/github.com/elastic/elastic-package-0.125.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/elastic/elastic-package from 0.124.0 to 0.125.0.

Release notes

Sourced from github.com/elastic/elastic-package's releases.

v0.125.0

Changelog

  • be05aebd0b0829845cdf0aeefbe567ad96433d5a Wire elastic-package to package-spec validation modes (#3617)
  • f2f08311f813f22c0e0ab78ba68b095ca65ad65b Chore(deps): bump github.com/elastic/package-spec/v3 from 3.6.4 to 3.6.5 (#3695)
  • 24e2d046b76cec3c89940b7cf0655d67638a07dc chore: [updatecli] Update latest snapshot to 9.5.0-3fe5c0ff (#3694)
  • 0abd819fbaa39b93b508383ce8f2576f79969f3f chore: [updatecli] Update latest snapshot to 8.19.17-c56a4823 (#3693)
  • 4f27ff1166678969475b36b9fec3069d46dca64b Chore(deps): bump actions/checkout from 6 to 7 (#3692)
  • 54018660cccea85830f259668bee92d1915ea8c8 Chore(deps): bump helm.sh/helm/v3 from 3.21.1 to 3.21.2 (#3691)
  • bf6b012a8cc61d6ccdc8e9d04aabb3be0533cad8 chore: [updatecli] Update latest snapshot to 9.5.0-f86bedde (#3690)
  • 1939fa6c1faa3cdb97ac99325cf49ed7d8f3ab8e chore: [updatecli] Update latest snapshot to 8.19.17-7a0a4472 (#3689)
  • 97f1554f797c50b6edd3093446ac2d9cd727ccc2 Chore(deps): bump github.com/elastic/package-spec/v3 from 3.6.3 to 3.6.4 (#3685)
  • 4defdede2131bb8be751a21eb399068e2302ae2e Chore(deps): bump google.golang.org/adk from 1.3.0 to 1.4.0 (#3624)
  • 28896e188572a8139de09b7e14b33bc9e3dbb832 chore: [updatecli] Update latest snapshot to 9.5.0-8f204d58 (#3684)
  • de24d3efd2ca09aded622befbfb8129e78827e52 chore: [updatecli] Update latest snapshot to 8.19.17-8cd61c4b (#3683)
  • 1a17900bd21eee11836abf7a03239f36d7d32fd6 Chore(deps): bump google.golang.org/genai from 1.60.0 to 1.61.0 (#3682)
  • f38d49becf1a66ac113266a9c59458ba65a94063 feat: add --changelog flag to requires update command (#3626)
  • 74e41b7ba85f427c9feccee6005dc196a5b5a43a chore: [updatecli] Update latest snapshot to 8.19.17-7a80671d (#3680)
  • 9d0f5258af3c065e6fcc084cb3ee78d707a11a8e chore: [updatecli] Update latest snapshot to 9.5.0-335b21fa (#3681)
  • b9c11173cf61daaee0379c1b85d1ec8a0c88c40d Chore(deps): bump helm.sh/helm/v3 from 3.21.0 to 3.21.1 (#3650)
  • 4bb8a9b183b10de692178e707856321b2c657051 chore: [updatecli] Update latest snapshot to 8.19.17-0dcc2d0e (#3677)
  • 972b82b26440890e9c7e15d548a708a1e26608fe chore: [updatecli] Update latest snapshot to 9.5.0-9698cc82 (#3678)
  • 978dff8f865b2b49d7c2ecd8a5c9c16275be7d03 Set FLEET_SERVER_TIMEOUT to 5m in fleet-server container (#3675)
  • 70423b3856a7be5e11fbfc4fba33a10d8e92aab0 Migrate ai-github-actions workflows to use copilot-requests permission (#3676)
  • e4108b57c03bc9952f150776625bdd435db258e4 Set show_user to false in bundled variables (#3661)
  • b49a9061c0474cee6785f4a9fa1a7d16d4780a90 Chore(deps): bump the k8s group with 3 updates (#3666)
  • 10a07fff3d8c8e6cd8d2b033f6c1e890adb5c3ce chore: [updatecli] Update latest snapshot to 9.5.0-39e22de5 (#3670)
  • 4a8da236f5ad6110cc225aff9788c9c1615f0a86 chore: [updatecli] Update latest snapshot to 8.19.17-87e6cec3 (#3669)
  • 2fecfbd4541180896e58020f0c5ec7ae4f844eb4 Chore(deps): bump google.golang.org/genai from 1.59.0 to 1.60.0 (#3647)
  • c5997359fbe7ede9d150dc4ab4949cd06e03ef25 Bundle input package templates only at the stream level (#3648)
  • 43cba350fc9b82dd9b44800964dfa96eb1a06241 internal/{servicedeployer,testrunner,validation},docs: generate on-disk TLS certs for mock services (#3623)
  • d026a22e6f8a9decec97fb9cac5d3e922a9250d8 Chore(deps): bump golang.org/x/tools from 0.45.0 to 0.46.0 (#3649)
  • c163dd2ef8abf9e0f6bde88187b2d7eb54b10d1f [updatecli] Update latest snapshot to 9.5.0-a2f77283 (#3643)
  • a9ad8d4667bd0594e7a5a816adb8b4af28c91c2e [updatecli] Update latest snapshot to 8.19.17-c0b547ea (#3642)
  • d70c845e9fe0d7b664b082df8cd649c6f624b5bb Add AI Agentic Workflow for Buildkite build failure analysis (#3641)
  • 485c5611920e08739305459dfd4bf8976ccbf0bc Chore(deps): bump updatecli/updatecli-action from 3.2.0 to 3.3.0 (#3644)
  • 6158fcdc6c5e0036aa29bb0538eef94050535452 chore: [updatecli] Update latest snapshot to 8.19.17-0e9f8ff1 (#3637)
  • d3854ac335e902387f1fd6a45c41d7bdec950b13 chore: [updatecli] Update latest snapshot to 9.5.0-b0498fab (#3638)
  • 7ece1a48f48f5a12c7aadd683d7c7960c09becef chore: [updatecli] Update latest snapshot to 8.19.17-28fe46e8 (#3632)
  • d721976b34dd44cb6ed488d9a7237ebc43d066d7 Add interactive mode to AI documentation generation (#3554)
  • ff0099f8daf379fc8873b0ab8301a2c4abae40a4 Chore(deps): bump google.golang.org/genai from 1.58.0 to 1.59.0 (#3634)
  • 6ec459cfa5c74f120dedfbac9ef7884c8f1cd339 chore: [updatecli] Update latest snapshot to 9.5.0-35cf6fa6 (#3633)
  • 63ccb4e10824e4792296f39fd28ac10d5a42653e update CODEOWNERS (#3629)
  • b314e52d3b8da431f7941336cd8e3554f262d192 chore: [updatecli] Update latest snapshot to 9.5.0-0de8b5fc (#3628)
  • e4c5addee4fc4bfac323c17a575049ae202fd47d feat: add elastic-package requires update command to bump requires pins from the registry (#3593)
  • df9b3aa62b08ff46a2f46d1ba1f59c161744f5ce chore: [updatecli] Update latest snapshot to 9.5.0-bc8b28d6 (#3625)
  • 02bf5bd120383fdd67630d51a35bee0ef549cff3 chore: [updatecli] Update latest snapshot to 9.5.0-9c32c917 (#3622)
  • c78c57cc4dfcb02badcd022bd78df98ffb4f6e0b Chore(deps): bump github.com/rogpeppe/go-internal from 1.14.1 to 1.15.0 (#3619)
  • 8c99d19b27471d2a05036546a7413f4408794f09 chore: [updatecli] Update default stack version to 9.4.2 (#3620)
  • 10db9520ec3debb8cd9b92e134a81a0cb2e50749 chore: [updatecli] Update latest snapshot to 8.19.16-e7a53188 (#3621)
  • 13785cc9379a8f5a5f4fd8cdc2234e0225ca4084 Chore(deps): bump go.opentelemetry.io/otel/trace from 1.43.0 to 1.44.0 (#3608)

... (truncated)

Commits
  • be05aeb Wire elastic-package to package-spec validation modes (#3617)
  • f2f0831 Chore(deps): bump github.com/elastic/package-spec/v3 from 3.6.4 to 3.6.5 (#3695)
  • 24e2d04 chore: [updatecli] Update latest snapshot to 9.5.0-3fe5c0ff (#3694)
  • 0abd819 chore: [updatecli] Update latest snapshot to 8.19.17-c56a4823 (#3693)
  • 4f27ff1 Chore(deps): bump actions/checkout from 6 to 7 (#3692)
  • 5401866 Chore(deps): bump helm.sh/helm/v3 from 3.21.1 to 3.21.2 (#3691)
  • bf6b012 chore: [updatecli] Update latest snapshot to 9.5.0-f86bedde (#3690)
  • 1939fa6 chore: [updatecli] Update latest snapshot to 8.19.17-7a0a4472 (#3689)
  • 97f1554 Chore(deps): bump github.com/elastic/package-spec/v3 from 3.6.3 to 3.6.4 (#3685)
  • 4defded Chore(deps): bump google.golang.org/adk from 1.3.0 to 1.4.0 (#3624)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/elastic/elastic-package](https://github.com/elastic/elastic-package) from 0.124.0 to 0.125.0.
- [Release notes](https://github.com/elastic/elastic-package/releases)
- [Commits](elastic/elastic-package@v0.124.0...v0.125.0)

---
updated-dependencies:
- dependency-name: github.com/elastic/elastic-package
  dependency-version: 0.125.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot requested a review from a team as a code owner June 23, 2026 13:33
@elasticmachine

elasticmachine commented Jun 23, 2026

Copy link
Copy Markdown

💔 Build Failed

Failed CI Steps

History

@github-actions

Copy link
Copy Markdown
Contributor

TL;DR

The netbox system tests fail because Fleet rejects the generated package policy: the required disable_keep_alive input var is missing. This was exposed by the elastic-package/package-spec update in this PR; add a default for the hidden required var instead of only patching the system test config.

Remediation

  • Add default: false to packages/netbox/manifest.yml under policy_templates[0].inputs[0].vars[].name: disable_keep_alive.
  • Re-run the NetBox package check/system tests for packages/netbox after the manifest change.
Investigation details

Root Cause

packages/netbox/manifest.yml:84-90 declares disable_keep_alive as required: true and show_user: false, but it does not provide a default value. The stream templates consume it at packages/netbox/data_stream/devices/agent/stream/httpjson.yml.hbs:9 and packages/netbox/data_stream/ips/agent/stream/httpjson.yml.hbs:9.

With the updated elastic-package dependency, the system test generated package-policy requests do not include inputs.httpjson.vars.disable_keep_alive, and Kibana/Fleet rejects the policy as invalid. Similar integrations that use the same var, such as packages/1password/manifest.yml:89-96 and packages/okta/manifest.yml:201-208, set default: false.

Evidence

Error: failed to process results: 2 test case(s) failed:

FAIL: netbox/devices/default (system)
    error: could not add data stream config to policy: could not create package policy ... API status code = 400; response body = {"statusCode":400,"error":"Bad Request","message":"Package policy is invalid: inputs.httpjson.vars.disable_keep_alive: [\"Disable HTTP Keep-Alives is required\"]"}

FAIL: netbox/ips/default (system)
    error: could not add data stream config to policy: could not create package policy ... API status code = 400; response body = {"statusCode":400,"error":"Bad Request","message":"Package policy is invalid: inputs.httpjson.vars.disable_keep_alive: [\"Disable HTTP Keep-Alives is required\"]"}

The PR only changes go.mod/go.sum, including github.com/elastic/elastic-package v0.124.0 -> v0.125.0 and github.com/elastic/package-spec/v3 v3.6.3 -> v3.6.5, so this is a package configuration issue surfaced by stricter/newer tooling rather than a NetBox code change in the PR.

Verification

  • Not run locally: the failing coverage is a system test that starts the Elastic stack, and this workflow environment does not support Docker-in-Docker.

What is this? | From workflow: PR Buildkite Detective

Give us feedback! React with 🚀 if perfect, 👍 if helpful, 👎 if not.

@elastic-vault-github-plugin-prod

Copy link
Copy Markdown
Contributor

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport

@teresaromero

Copy link
Copy Markdown
Contributor

Root Cause: disable_keep_alive required field with no default in netbox

Both netbox/devices/default and netbox/ips/default system tests fail at policy-creation time with the same error:

"Package policy is invalid: inputs.httpjson.vars.disable_keep_alive:
["Disable HTTP Keep-Alives is required"]"

The netbox package's manifest.yml declares disable_keep_alive as required: true but provides no default: value. Kibana
Fleet rejects the policy creation with HTTP 400.

Why did this surface now? elastic-package 0.125.0 (this PR) pulls in package-spec v3.6.5 (via elastic-package#3695
(elastic/elastic-package#3695)), which wires stricter validation modes. This didn't change the
netbox bug — it just makes the validation fail earlier and more visibly.


Known tracking issues / PRs

This is a long-standing known failure with 6 open daily-fail tracker issues and 2 open fix PRs, both green:

@teresaromero teresaromero merged commit 52660ec into main Jun 24, 2026
8 of 9 checks passed
@teresaromero teresaromero deleted the dependabot/go_modules/github.com/elastic/elastic-package-0.125.0 branch June 24, 2026 06:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants