Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

• Update github.com/awslabs/operatorpkg digest to c49b4ca
• Update module github.com/onsi/ginkgo/v2 to v2.28.3
• Update step-security/harden-runner action to v2.19.1
• Update dependency golangci-lint to v2.12.2
• Update dependency just to v1.50.0
• Update dependency kubectl to v1.36.0
• Update dependency kubernetes-helm to v3.20.2
• Update dependency tilt to v0.37.0
• Update module github.com/golangci/golangci-lint/v2 to v2.12.2
• Update module github.com/linode/linodego to v1.69.0
• Update module github.com/onsi/gomega to v1.40.0
• Update module golang.org/x/vuln to v1.3.0
• Update release-drafter/release-drafter action to v7.3.0
• 🔐 Create all awaiting schedule PRs at once 🔐

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Update kubernetes (k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/client-go, k8s.io/klog/v2, k8s.io/utils, sigs.k8s.io/controller-runtime, sigs.k8s.io/controller-tools, sigs.k8s.io/karpenter)

PR Closed (Blocked)

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• Update module github.com/imdario/mergo to v1

Detected Dependencies

devbox (1)

devbox.json (7)

• just 1.46.0 → [Updates: 1.50.0]
• kubectl 1.35.0 → [Updates: 1.36.0]
• kyverno-chainsaw 0.2.14
• kubernetes-helm 3.19.1 → [Updates: 3.20.2]
• tilt 0.36.3 → [Updates: 0.37.0]
• golangci-lint 2.10.1 → [Updates: 2.12.2]
• ko 0.18.1

github-actions (12)

.github/actions/e2e/action.yaml (3)

• docker/login-action v4.1.0@4907a6ddec9925e35a0a9e82d7399ccc52663121
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• jetify-com/devbox-install-action v0.15.0@8c6a66ed6273138b1915457069de78cb52fe3bd7

.github/workflows/ci-test.yml (8)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• dorny/paths-filter v4.0.1@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• jetify-com/devbox-install-action v0.15.0@8c6a66ed6273138b1915457069de78cb52fe3bd7
• codecov/codecov-action v6.0.0@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2

.github/workflows/ci.yml (7)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• dorny/paths-filter v4.0.1@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v6.4.0@4a3601121dd01d1626a1e23e37211e3254c1c06c
• golangci/golangci-lint-action v9.2.0@1e7e51e771db61008b38414a730f564565cf7c20

.github/workflows/e2e-main-trigger.yaml (3)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• dorny/paths-filter v4.0.1@fbd0ab8f3e69293af611ebaee6363fc25e6d187d

.github/workflows/e2e-pr-cleanup-trigger.yaml (2)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd

.github/workflows/e2e-pr-trigger.yaml (3)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• dorny/paths-filter v4.0.1@fbd0ab8f3e69293af611ebaee6363fc25e6d187d

.github/workflows/e2e.yaml (4)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd

.github/workflows/helm.yml (10)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• azure/setup-helm v5.0.0@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• actions/setup-python v6.2.0@a309ff8b426b58ec0e2a45f0f869d46889d02405
• helm/chart-testing-action v2.8.0@6ec842c01de15ebb84c8627d2744a0c2f2755c9f
• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• azure/setup-helm v5.0.0@dda3372f752e03dde6b3237bc9431cdc2f7a02a2
• helm/chart-releaser-action v1.7.0@cae68fefc6b5f367a0275617c9f83181ba54714f
• python 3.14

.github/workflows/image-build-push.yml (4)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• docker/login-action v4.1.0@4907a6ddec9925e35a0a9e82d7399ccc52663121
• jetify-com/devbox-install-action v0.15.0@8c6a66ed6273138b1915457069de78cb52fe3bd7

.github/workflows/pr-labeler.yml (2)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• release-drafter/release-drafter v7.2.0@5de93583980a40bd78603b6dfdcda5b4df377b32 → [Updates: v7.3.0]

.github/workflows/release-drafter.yml (2)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• release-drafter/release-drafter v7.2.0@5de93583980a40bd78603b6dfdcda5b4df377b32 → [Updates: v7.3.0]

.github/workflows/release.yml (4)

• step-security/harden-runner v2.19.0@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 → [Updates: v2.19.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• jetify-com/devbox-install-action v0.15.0@8c6a66ed6273138b1915457069de78cb52fe3bd7
• softprops/action-gh-release v3.0.0@b4309332981a82ec1c5618f44dd2e27cc8bfbfda

gomod (1)

go.mod (22)

• go 1.25.9
• github.com/Pallinder/go-randomdata v1.2.0
• github.com/awslabs/operatorpkg v0.0.0-20251222193911-34e9a1898737@34e9a1898737 → [Updates: v0.0.0-20260501204335-c49b4ca8d58d]
• github.com/google/uuid v1.6.0
• github.com/imdario/mergo v0.3.16 → [Updates: v1.0.2]
• github.com/linode/linodego v1.66.0 → [Updates: v1.69.0]
• github.com/mitchellh/hashstructure/v2 v2.0.2
• github.com/onsi/ginkgo/v2 v2.28.1 → [Updates: v2.28.3]
• github.com/onsi/gomega v1.39.1 → [Updates: v1.40.0]
• github.com/patrickmn/go-cache v2.1.0+incompatible
• github.com/prometheus/client_golang v1.23.2
• github.com/samber/lo v1.53.0
• github.com/stretchr/testify v1.11.1
• go.uber.org/multierr v1.11.0
• k8s.io/api v0.35.1 → [Updates: v0.36.0]
• k8s.io/apiextensions-apiserver v0.35.1 → [Updates: v0.36.0]
• k8s.io/apimachinery v0.35.1 → [Updates: v0.36.0]
• k8s.io/client-go v0.35.1 → [Updates: v0.36.0]
• k8s.io/klog/v2 v2.130.1 → [Updates: v2.140.0]
• k8s.io/utils v0.0.0-20260210185600-b8788abfbbc2@b8788abfbbc2 → [Updates: v0.0.0-20260507154919-ff6756f316d2]
• sigs.k8s.io/controller-runtime v0.22.4 → [Updates: v0.24.0]
• sigs.k8s.io/karpenter v1.9.0 → [Updates: v1.12.0]

helm-values (1)

charts/karpenter/values.yaml

regex (1)

Makefile (3)

• sigs.k8s.io/controller-tools v0.19.0 → [Updates: v0.21.0]
• golang.org/x/vuln v1.1.4 → [Updates: v1.3.0]
• github.com/golangci/golangci-lint/v2 v2.11.4 → [Updates: v2.12.2]

---

• Check this box to trigger a request for Renovate to run again on this repository