Skip to content

fix(deps): update kubernetes go modules#71

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/kubernetes-go-modules
Open

fix(deps): update kubernetes go modules#71
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/kubernetes-go-modules

Conversation

@renovate

@renovate renovate Bot commented Apr 4, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
helm.sh/helm/v3 v3.20.0v3.21.2 age confidence
k8s.io/api v0.35.1v0.36.2 age confidence
k8s.io/apimachinery v0.35.1v0.36.2 age confidence
k8s.io/client-go v0.35.1v0.36.2 age confidence

Release Notes

helm/helm (helm.sh/helm/v3)

v3.21.2: Helm v3.21.2

Compare Source

Helm v3.21.2 is a feature release to correct bump the Kubernetes client libraries (client-go, etc) to match the expected Kubernetes v1.36 release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Update Kubernetes client libraries to v1.36

Installation and Upgrading

Download Helm v3.21.2. The common platform binaries are here:

This release was signed by @​gjenkins8 with key BF88 8333 D96A 1C18 E268 2AAE D79D 67C9 EC01 6739, which can be found at https://keys.openpgp.org/vks/v1/by-fingerprint/BF888333D96A1C18E2682AAED79D67C9EC016739. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.21.3 will contain only bug fixes.
  • 3.22.0 is the next (and final) Helm 3 feature release

Changelog

  • chore(deps): bump the k8s-io group with 2 updates 1259634 (dependabot[bot])
  • fixes b52e276 (Matheus Pimenta)
  • chore(deps): bump the k8s-io group across 1 directory with 2 updates 3342dbf (dependabot[bot])

Full Changelog: helm/helm@v3.21.1...v3.21.2

v3.21.1: Helm v3.21.1

Compare Source

Helm v3.21.1 is a patch release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Fixed nil pointer panic that could happen with helm template in ClientOnly flows. Now correctly returns a template error #​31920
  • Bumped golang.org/x/net to v0.55.0 to address GO-2026-5026 #​32152
  • Bumped Go from 1.25 to 1.26 #​32168
  • Dependency version updates

Installation and Upgrading

Download Helm v3.21.1. The common platform binaries are here:

This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at @​scottrigby keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 4.2.2 and 3.21.2 are the next patch releases scheduled for July 8, 2026
  • 4.3.0 and 3.22.0 are the next minor releases scheduled for September 9, 2026

Changelog

  • fix(action): avoid nil REST client getter panic when installing CRDs c56dd00 (sergiochan)
  • fix(registry): keep credentials on plain-HTTP fallback with oras-go v2.6.1 702529f (Terry Howe)
  • chore(deps): bump oras.land/oras-go/v2 from 2.6.0 to 2.6.1 178e120 (dependabot[bot])
  • chore(deps): bump golang.org/x/crypto from 0.52.0 to 0.53.0 dcf35f8 (dependabot[bot])
  • chore(deps): bump golang.org/x/term from 0.43.0 to 0.44.0 44aff8b (dependabot[bot])
  • chore(deps): bump golang.org/x/text from 0.37.0 to 0.38.0 ae2f31f (dependabot[bot])
  • Update .github/env 402225f (Terry Howe)
  • ci: bump golangci-lint to v2.11.3 for go 1.26 00eac21 (Terry Howe)
  • chore: bump go to 1.26 bec346a (Terry Howe)
  • chore(deps): bump github.com/lib/pq from 1.11.2 to 1.12.3 58b6ccf (dependabot[bot])
  • chore(deps): bump github.com/distribution/distribution/v3 30b9f51 (dependabot[bot])
  • chore(deps): bump github.com/containerd/containerd from 1.7.30 to 1.7.32 858aa47 (dependabot[bot])
  • chore(deps): bump github.com/Masterminds/semver/v3 from 3.4.0 to 3.5.0 1af25d4 (dependabot[bot])
  • chore(deps): bump github.com/mattn/go-shellwords from 1.0.12 to 1.0.13 97e4bc3 (dependabot[bot])
  • chore(deps): bump golang.org/x/crypto from 0.51.0 to 0.52.0 29bdd1b (dependabot[bot])
  • fix(deps): bump golang.org/x/net to v0.55.0 to address GO-2026-5026 bad6cd4 (Terry Howe)
  • chore(deps): bump k8s.io/klog/v2 from 2.130.1 to 2.140.0 75c2e9b (dependabot[bot])
  • chore(deps): bump golang.org/x/text from 0.35.0 to 0.37.0 cd4dac3 (dependabot[bot])

Full Changelog: helm/helm@v3.21.0...v3.21.1

v3.21.0: Helm v3.21.0

Compare Source

Helm v3.21.0 is a feature release. Users are encouraged to upgrade for the best experience.

[!WARNING]
Helm v3 is approaching end-of-life. Please update to Helm v4.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Kubernetes client libraries to v1.36
  • notable changes here

Installation and Upgrading

Download Helm v3.21.0. The common platform binaries are here:

This release was signed by @​gjenkins8 with key BF88 8333 D96A 1C18 E268 2AAE D79D 67C9 EC01 6739, which can be found at https://keys.openpgp.org/vks/v1/by-fingerprint/BF888333D96A1C18E2682AAED79D67C9EC016739. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.21.1 will contain only bug fixes.
  • 3.22.0 is the next feature release for Kubernetes v1.37

Changelog

  • [v3] Bump to version v3.21 e0878d4 (George Jenkins)
  • fix: upgrade opentelemetry packages to patch CVEs 13d5fc4 (Terry Howe)
  • fix: Chart dot-name path bug 2552884 (George Jenkins)
  • fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow ec05dd5 (Terry Howe)
  • add image index test b0dfec5 (Pedro Tôrres)
  • fix pulling charts from OCI indices e629995 (Pedro Tôrres)
  • chore(deps): bump the k8s-io group with 7 updates 9c854fb (dependabot[bot])
  • chore(deps): bump golang.org/x/crypto from 0.47.0 to 0.48.0 a692247 (dependabot[bot])
  • chore(deps): bump golang.org/x/term from 0.39.0 to 0.40.0 9f2a7f6 (dependabot[bot])
  • chore(deps): bump github.com/lib/pq from 1.11.1 to 1.11.2 79f039b (dependabot[bot])
  • chore(deps): bump golang.org/x/text from 0.33.0 to 0.34.0 45210d5 (dependabot[bot])
  • Remove refactorring changes from coalesce_test.go e2df39f (Evans Mungai)
  • Fix import 97affe0 (Evans Mungai)
  • Update pkg/chart/common/util/coalesce_test.go c264166 (Evans Mungai)
  • Fix lint warning d409df8 (Evans Mungai)
  • Preserve nil values in chart already 6fdd101 (Evans Mungai)
  • fix(values): preserve nil values when chart default is empty map b13743c (Evans Mungai)
  • chore(deps): bump github.com/lib/pq from 1.10.9 to 1.11.1 703999d (dependabot[bot])
  • chore(deps): bump golang.org/x/crypto from 0.46.0 to 0.47.0 a04be96 (dependabot[bot])

New Contributors

Full Changelog: helm/helm@v3.20.0...v3.21.0

v3.20.2: Helm v3.20.2

Compare Source

v3.20.2

Helm v3.20.2 is a security patch release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Security fixes

  • GHSA-hr2v-4r36-88hr Helm Chart extraction output directory collapse via Chart.yaml name dot-segment

Installation and Upgrading

Download Helm v3.20.2. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 4.1.5 and 3.20.3 are the next patch (bug fix) releases and will be on April 8, 2026
  • 4.2.0 and 3.21.0 are the next minor (feature) releases and will be on May 13, 2026

Changelog

  • fix: Chart dot-name path bug 8fb76d6 (George Jenkins)
  • fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow 3a8927e (Terry Howe)

v3.20.1: Helm v3.20.1

Compare Source

Helm v3.20.1 is a patch release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Backport of #​31644: Fixed a bug where user-provided nil value was not preserved when chart has an empty map or no default for a key
  • Backport of #​31601: Fixed a bug where OCI references with tag+digest failed with "invalid byte" error

Installation and Upgrading

Download Helm v3.20.1. The common platform binaries are here:

This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at @​scottrigby keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 4.2.0 and 3.21.0 are the next minor releases and will be on May 13, 2026
  • 4.1.4 and 3.20.2 are the next patch releases and will be on April 8, 2026

Changelog

  • chore(deps): bump the k8s-io group with 7 updates a2369ca (dependabot[bot])
  • add image index test 90e1056 (Pedro Tôrres)
  • fix pulling charts from OCI indices 911f2e9 (Pedro Tôrres)
  • Remove refactorring changes from coalesce_test.go 76dad33 (Evans Mungai)
  • Fix import 45c12f7 (Evans Mungai)
  • Update pkg/chart/common/util/coalesce_test.go 26c6f19 (Evans Mungai)
  • Fix lint warning 09f5129 (Evans Mungai)
  • Preserve nil values in chart already 417deb2 (Evans Mungai)
  • fix(values): preserve nil values when chart default is empty map 5417bfa (Evans Mungai)
kubernetes/api (k8s.io/api)

v0.36.2

Compare Source

v0.36.1

Compare Source

v0.36.0

Compare Source

v0.35.6

Compare Source

v0.35.5

Compare Source

v0.35.4

Compare Source

v0.35.3

Compare Source

v0.35.2

Compare Source

kubernetes/apimachinery (k8s.io/apimachinery)

v0.36.2

Compare Source

v0.36.1

Compare Source

v0.36.0

Compare Source

v0.35.6

Compare Source

v0.35.5

Compare Source

v0.35.4

Compare Source

v0.35.3

Compare Source

v0.35.2

Compare Source

kubernetes/client-go (k8s.io/client-go)

v0.36.2

Compare Source

v0.36.1

Compare Source

v0.36.0

Compare Source

v0.35.6

Compare Source

v0.35.5

Compare Source

v0.35.4

Compare Source

v0.35.3

Compare Source

v0.35.2

Compare Source

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • "before 9am on saturday"
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch from def31e0 to 20068d7 Compare April 10, 2026 00:37
@renovate

renovate Bot commented Apr 10, 2026
edited
Loading

Copy link
Copy Markdown
Contributor Author

ℹ️ Artifact update notice

File name: cluster-bootstrap-cli/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 49 additional dependencies were updated
  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.25.0 -> 1.26.0
golang.org/x/term v0.40.0 -> v0.44.0
cel.dev/expr v0.24.0 -> v0.25.1
cloud.google.com/go/compute/metadata v0.8.4 -> v0.9.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.29.0 -> v1.31.0
github.com/Masterminds/semver/v3 v3.4.0 -> v3.5.0
github.com/cncf/xds/go v0.0.0-20250501225837-2ac532fd4443 -> v0.0.0-20251210132809-ee656c7534f5
github.com/containerd/containerd v1.7.30 -> v1.7.32
github.com/emicklei/go-restful/v3 v3.12.2 -> v3.13.0
github.com/envoyproxy/go-control-plane/envoy v1.32.4 -> v1.36.0
github.com/envoyproxy/protoc-gen-validate v1.2.1 -> v1.3.0
github.com/go-jose/go-jose/v4 v4.1.1 -> v4.1.3
github.com/klauspost/compress v1.18.0 -> v1.18.4
github.com/lib/pq v1.10.9 -> v1.12.3
github.com/prometheus/procfs v0.17.0 -> v0.20.1
github.com/sirupsen/logrus v1.9.3 -> v1.9.4
github.com/spiffe/go-spiffe/v2 v2.5.0 -> v2.6.0
go.opentelemetry.io/auto/sdk v1.1.0 -> v1.2.1
go.opentelemetry.io/contrib/detectors/gcp v1.36.0 -> v1.39.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 -> v0.65.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.61.0 -> v0.68.0
go.opentelemetry.io/otel v1.37.0 -> v1.43.0
go.opentelemetry.io/otel/metric v1.37.0 -> v1.43.0
go.opentelemetry.io/otel/sdk v1.37.0 -> v1.43.0
go.opentelemetry.io/otel/sdk/metric v1.37.0 -> v1.43.0
go.opentelemetry.io/otel/trace v1.37.0 -> v1.43.0
go.yaml.in/yaml/v2 v2.4.3 -> v2.4.4
golang.org/x/crypto v0.46.0 -> v0.53.0
golang.org/x/net v0.48.0 -> v0.55.0
golang.org/x/oauth2 v0.31.0 -> v0.35.0
golang.org/x/sync v0.19.0 -> v0.21.0
golang.org/x/sys v0.41.0 -> v0.46.0
golang.org/x/text v0.33.0 -> v0.38.0
golang.org/x/time v0.13.0 -> v0.14.0
google.golang.org/genproto/googleapis/api v0.0.0-20250818200422-3122310a409c -> v0.0.0-20260401024825-9d38bb4040a9
google.golang.org/genproto/googleapis/rpc v0.0.0-20250908214217-97024824d090 -> v0.0.0-20260406210006-6f92a3bedf2d
google.golang.org/grpc v1.75.1 -> v1.80.0
google.golang.org/protobuf v1.36.9 -> v1.36.12-0.20260120151049-f2248ac996af
k8s.io/apiextensions-apiserver v0.35.0 -> v0.36.2
k8s.io/apiserver v0.35.0 -> v0.36.2
k8s.io/cli-runtime v0.35.0 -> v0.36.2
k8s.io/component-base v0.35.0 -> v0.36.2
k8s.io/klog/v2 v2.130.1 -> v2.140.0
k8s.io/kube-openapi v0.0.0-20250910181357-589584f1c912 -> v0.0.0-20260317180543-43fb72c5454a
k8s.io/kubectl v0.35.0 -> v0.36.2
k8s.io/utils v0.0.0-20251002143259-bc988d571ff4 -> v0.0.0-20260210185600-b8788abfbbc2
oras.land/oras-go/v2 v2.6.0 -> v2.6.1
sigs.k8s.io/kustomize/api v0.20.1 -> v0.21.1
sigs.k8s.io/kustomize/kyaml v0.21.0 -> v0.21.1
sigs.k8s.io/structured-merge-diff/v6 v6.3.0 -> v6.3.2

@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch 2 times, most recently from c2dcd64 to 1801a2f Compare April 22, 2026 22:30
@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch 6 times, most recently from 2e7a576 to c04b1cf Compare May 19, 2026 18:08
@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch 4 times, most recently from d4cf722 to 525103c Compare May 26, 2026 12:32
@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch 4 times, most recently from 385b13a to 4024d85 Compare June 7, 2026 09:34
@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch 3 times, most recently from 73d5aaa to bb82152 Compare June 12, 2026 21:46
@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch 2 times, most recently from 4b1a7f7 to f925573 Compare June 19, 2026 15:57
@renovate renovate Bot force-pushed the renovate/kubernetes-go-modules branch from f925573 to b2b197b Compare June 20, 2026 05:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants