Skip to content

chore(deps)(deps): bump github.com/compose-spec/compose-go/v2 from 2.10.0 to 2.10.2#2095

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/compose-spec/compose-go/v2-2.10.2
Open

chore(deps)(deps): bump github.com/compose-spec/compose-go/v2 from 2.10.0 to 2.10.2#2095
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/compose-spec/compose-go/v2-2.10.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 3, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/compose-spec/compose-go/v2 from 2.10.0 to 2.10.2.

Release notes

Sourced from github.com/compose-spec/compose-go/v2's releases.

v2.10.2

What's Changed

New Contributors

Full Changelog: compose-spec/compose-go@v2.10.1...v2.10.2

v2.10.1

What's Changed

New Contributors

Full Changelog: compose-spec/compose-go@v2.10.0...v2.10.1

Commits
  • 65af4e5 Fix: Process includes before extends for proper attribute inheritance
  • d8a259c Bump actions/setup-go from 6.3.0 to 6.4.0
  • b9f4c49 Bump upload-artifact to v7 and download-artifact to v8
  • a5376f9 Pin GitHub Actions to commit SHA
  • 9e540fd migrate tests to attribute-specific test files
  • df29b8a replace tests based on a huge "full" example and use tests dedicated to each ...
  • 9dee8f4 Bump yaml/v4 v4.0.0-rc.4
  • ddb94f1 fix: avoid eager default interpolation
  • 8c75dbf Fix create_host_path default value is true
  • bb50e25 Bump actions/upload-artifact from 5 to 6
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/compose-spec/compose-go/v2](https://github.com/compose-spec/compose-go) from 2.10.0 to 2.10.2.
- [Release notes](https://github.com/compose-spec/compose-go/releases)
- [Commits](compose-spec/compose-go@v2.10.0...v2.10.2)

---
updated-dependencies:
- dependency-name: github.com/compose-spec/compose-go/v2
  dependency-version: 2.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 3, 2026
@k8s-ci-robot
k8s-ci-robot requested a review from cdrage April 3, 2026 14:23
@k8s-ci-robot

Copy link
Copy Markdown
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign tessaio for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot
k8s-ci-robot requested a review from TessaIO April 3, 2026 14:23
@k8s-ci-robot k8s-ci-robot added size/S Denotes a PR that changes 10-29 lines, ignoring generated files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. labels Apr 3, 2026
@k8s-triage-robot

Copy link
Copy Markdown

The Kubernetes project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle stale
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

@kubernetes-prow kubernetes-prow Bot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Jul 2, 2026
@k8s-triage-robot

Copy link
Copy Markdown

The Kubernetes project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle stale
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. dependencies Pull requests that update a dependency file go Pull requests that update Go code lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. size/S Denotes a PR that changes 10-29 lines, ignoring generated files.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants