Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Pending Approval

The following branches are pending approval. To create them, click on a checkbox below.

• chore(deps): pin cloudoperators/common action to 07a6509
• chore(deps): update actions/checkout digest to 93cb6ef
• chore(deps): update actions/setup-python digest to ece7cb0
• chore(deps): update docker/build-push-action digest to 10e90e3
• chore(deps): update docker/login-action digest to c94ce9f
• chore(deps): update docker/metadata-action digest to c299e40
• chore(deps): update docker/setup-buildx-action digest to 8d2750c
• chore(deps): update docker/setup-qemu-action digest to c7c5346
• chore(deps): update github/codeql-action digest to dd903d2
• fix(deps): update github.com/sapcc/go-bits digest to 3999ce9
• fix(deps): update k8s.io/utils digest to be93311
• chore(deps): update golang docker tag to v1.25.10
• chore(deps): update sigstore/cosign-installer action to v3.10.1
• fix(deps): update kubernetes monorepo to v0.33.13 (k8s.io/api, k8s.io/apimachinery, k8s.io/client-go)
• fix(deps): update module github.com/jedib0t/go-pretty/v6 to v6.6.9
• chore(deps): update dependency python to 3.14
• chore(deps): update github actions (minor) (aquasecurity/trivy-action, helm/chart-testing-action)
• chore(deps): update golang docker tag to v1.26.3
• fix(deps): update kubernetes packages (minor) (k8s.io/api, k8s.io/apimachinery, k8s.io/client-go, sigs.k8s.io/controller-runtime)
• fix(deps): update module github.com/jedib0t/go-pretty/v6 to v6.8.1
• fix(deps): update module github.com/onsi/ginkgo/v2 to v2.32.0
• fix(deps): update module github.com/onsi/gomega to v1.42.1
• chore(deps): update github actions (major) (actions/checkout, azure/setup-helm, docker/build-push-action, docker/login-action, docker/metadata-action, docker/setup-buildx-action, docker/setup-qemu-action, github/codeql-action, sigstore/cosign-installer)
• fix(deps): update module gomodules.xyz/jsonpatch/v2 to v3
• fix(deps): update module gopkg.in/yaml.v2 to v3
• 🔐 Create all pending approval PRs at once 🔐

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package aquasecurity/trivy-action).

Files affected: .github/workflows/docker-build.yaml

---

Detected Dependencies

dockerfile (1)

Dockerfile (1)

• golang 1.25.1 → [Updates: 1.25.10, 1.26.3]

github-actions (10)

.github/workflows/codeql.yaml (1)

• cloudoperators/common main → [Updates: main]

.github/workflows/docker-build.yaml (9)

• actions/checkout v5@08c6903cd8c0fde910a37f88322edcfb5dd907a8 → [Updates: v6, v5]
• sigstore/cosign-installer v3.10.0@d7543c93d881b35a8faa02e8e3605f69b7a1ce62 → [Updates: v3.10.1, v4.1.2]
• docker/setup-qemu-action v3@29109295f81e9208d7d86ff1c6c12d2833863392 → [Updates: v4, v3]
• docker/setup-buildx-action v3@e468171a9de216ec08956ac3ada2f0791b6bd435 → [Updates: v4, v3]
• docker/login-action v3@184bdaa0721073962dff0199f1fb9940f07167d1 → [Updates: v4, v3]
• docker/metadata-action v5@c1e51972afc2121e065aed6d45c65596fe445f3f → [Updates: v6, v5]
• docker/build-push-action v6@263435318d21b8e681c14492fe198d362a7d2c83 → [Updates: v7, v6]
• aquasecurity/trivy-action 0.33.1@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 → [Updates: v0.36.0]
• github/codeql-action v3@755f44910c12a3d7ca0d8c6e42c048b3362f7cec → [Updates: v4, v3]

.github/workflows/e2e.yaml

.github/workflows/helm-lint.yaml (5)

• actions/checkout v5@08c6903cd8c0fde910a37f88322edcfb5dd907a8 → [Updates: v6, v5]
• azure/setup-helm v4.3.1@1a275c3b69536ee54be43f2070a358922e12c8d4 → [Updates: v5.0.0]
• actions/setup-python v6@e797f83bcb11b83ae66e0230d6156d7c80228e7c → [Updates: v6]
• helm/chart-testing-action v2.7.0@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b → [Updates: v2.8.0]
• python 3.9 → [Updates: 3.14]

.github/workflows/helm-push.yaml (5)

• actions/checkout v5@08c6903cd8c0fde910a37f88322edcfb5dd907a8 → [Updates: v6, v5]
• azure/setup-helm v4.3.1@1a275c3b69536ee54be43f2070a358922e12c8d4 → [Updates: v5.0.0]
• actions/setup-python v6@e797f83bcb11b83ae66e0230d6156d7c80228e7c → [Updates: v6]
• docker/login-action v3@184bdaa0721073962dff0199f1fb9940f07167d1 → [Updates: v4, v3]
• python 3.9 → [Updates: 3.14]

.github/workflows/issue-project-sync.yaml (1)

• cloudoperators/common main → [Updates: main]

.github/workflows/issue-triage.yaml (1)

• cloudoperators/common main → [Updates: main]

.github/workflows/license.yaml (1)

• cloudoperators/common main → [Updates: main]

.github/workflows/reuse.yaml (1)

• cloudoperators/common main → [Updates: main]

.github/workflows/stale.yaml (1)

• cloudoperators/common main → [Updates: main]

gomod (1)

go.mod (15)

• go 1.24.0
• github.com/evanphx/json-patch v0.5.2
• github.com/go-logr/logr v1.4.3
• github.com/jedib0t/go-pretty/v6 v6.6.7 → [Updates: v6.6.9, v6.8.1]
• github.com/onsi/ginkgo/v2 v2.23.4 → [Updates: v2.32.0]
• github.com/onsi/gomega v1.37.0 → [Updates: v1.42.1]
• github.com/pkg/errors v0.9.1
• github.com/sapcc/go-bits v0.0.0-20250807112417-2f28a08d3ddd@2f28a08d3ddd → [Updates: v0.0.0-20260626143732-3999ce9f8fdc]
• gomodules.xyz/jsonpatch/v2 v2.5.0 → [Updates: v3.0.1]
• gopkg.in/yaml.v2 v2.4.0 → [Updates: v3.0.1]
• k8s.io/api v0.33.0 → [Updates: v0.33.13, v0.36.2]
• k8s.io/apimachinery v0.33.0 → [Updates: v0.33.13, v0.36.2]
• k8s.io/client-go v0.33.0 → [Updates: v0.33.13, v0.36.2]
• k8s.io/utils v0.0.0-20250604170112-4c0f3b243397@4c0f3b243397 → [Updates: v0.0.0-20260626114624-be93311217bd]
• sigs.k8s.io/controller-runtime v0.21.0 → [Updates: v0.24.1]

helm-values (1)

charts/owner-label-injector/values.yaml

kustomize (1)

config/manager/kustomization.yaml

renovate-config (1)

.github/renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository