Dependency Dashboard #71
Description
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
Note
These dependencies have not received updates for an extended period and may be unmaintained:
View abandoned dependencies (4)
| Datasource | Name | Last Updated |
|---|---|---|
| gomod | github.com/go-slog/otelslog |
2024-10-20 |
| gomod | github.com/google/uuid |
2024-01-23 |
| gomod | github.com/gregjones/httpcache |
2019-06-11 |
| gomod | github.com/mattn/go-isatty |
2023-10-17 |
Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release.
Unlike deprecated packages with official notices, abandonment is detected by release inactivity.
Pending Status Checks
The following updates await pending status checks. To force their creation now, click on a checkbox below.
- chore(deps): update actions/checkout action to v6.0.1
- chore(deps): update github/codeql-action action to v4.31.6
- chore(deps): update golang docker tag to v1.25.5
- chore(deps): update step-security/harden-runner action to v2.13.3
Vulnerabilities
Renovate has not found any CVEs on osv.dev.
Detected dependencies
docker-compose
docker-compose.yml
dockerfile
Dockerfile
golang 1.25.4-alpine3.21@sha256:3289aac2aac769e031d644313d094dbda745f28af81cd7a94137e73eefd58b33
github-actions
.github/workflows/build.yml
step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/github-script v8.0.0@ed597411d8f924073f98dfc5c65a23a2325f34cdactions/checkout v6.0.0@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3docker/login-action v3.6.0@5e57cd118135c172c3672efd75eb46360885c0efdocker/setup-buildx-action v3.11.1@e468171a9de216ec08956ac3ada2f0791b6bd435docker/build-push-action v6.18.0@263435318d21b8e681c14492fe198d362a7d2c83anchore/sbom-action v0.20.10@fbfd9c6c189226748411491745178e0c2017392dactions/attest-sbom v3.0.0@4651f806c01d8637787e274ac3bdf724ef169f34actions/upload-artifact v5.0.0@330a01c490aca151604b8cf639adc76d48f6c5d4step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/download-artifact v6.0.0@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53docker/metadata-action v5.10.0@c299e40c65443455700f0fdfc63efafe5b349051docker/login-action v3.6.0@5e57cd118135c172c3672efd75eb46360885c0efactions/attest-build-provenance v3.0.0@977bb373ede98d70efdf65b84cb5f73e068dcc2aubuntu 24.04.github/workflows/codeql.yml
step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/checkout v6.0.0@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3github/codeql-action v4.31.5@fdbfb4d2750291e159f0156def62b853c2798ca2github/codeql-action v4.31.5@fdbfb4d2750291e159f0156def62b853c2798ca2github/codeql-action v4.31.5@fdbfb4d2750291e159f0156def62b853c2798ca2.github/workflows/dependency-review.yml
step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/checkout v6.0.0@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3actions/dependency-review-action v4@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261.github/workflows/scorecards.yml
step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/checkout v6.0.0@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205aactions/upload-artifact v5.0.0@330a01c490aca151604b8cf639adc76d48f6c5d4github/codeql-action v4.31.5@fdbfb4d2750291e159f0156def62b853c2798ca2.github/workflows/test-lint.yml
step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/checkout v6.0.0@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3actions/setup-go v6.1.0@4dc6199c7b1a012772edbd06daecab0f50c9053cgolangci/golangci-lint-action v9.1.0@e7fa5ac41e1cf5b7d48e45e42232ce7ada589601step-security/harden-runner v2.13.2@95d9a5deda9de15063e7595e9719c11c38c90ae2actions/checkout v6.0.0@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3DavidAnson/markdownlint-cli2-action v21.0.0@30a0e04f1870d58f8d717450cc6134995f993c63actions/cache v4.3.0@0057852bfaa89a56745cba8c7296529d2fc39830astral-sh/setup-uv v7.1.4@1e862dfacbd1d6d858c55d9b792c756523627244github/codeql-action v4.31.5@fdbfb4d2750291e159f0156def62b853c2798ca2
gomod
go.mod
go 1.25.0github.com/alecthomas/kong v1.13.0github.com/bradleyfalzon/ghinstallation/v2 v2.17.0github.com/fluxcd/kustomize-controller/api v1.7.3github.com/go-logr/logr v1.4.3github.com/go-slog/otelslog v0.3.0github.com/google/go-github/v79 v79.0.0github.com/google/uuid v1.6.0github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79@901d90724c79github.com/hashicorp/go-retryablehttp v0.7.8github.com/lmittmann/tint v1.1.2github.com/mattn/go-isatty v0.0.20github.com/migueleliasweb/go-github-mock v1.5.0github.com/samber/slog-multi v1.6.0github.com/stretchr/testify v1.11.1go.opentelemetry.io/contrib/bridges/otelslog v0.13.0go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.63.0go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.63.0go.opentelemetry.io/contrib/instrumentation/runtime v0.63.0go.opentelemetry.io/otel v1.38.0go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc v0.14.0go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc v1.38.0go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.38.0go.opentelemetry.io/otel/exporters/stdout/stdoutmetric v1.38.0go.opentelemetry.io/otel/exporters/stdout/stdouttrace v1.38.0go.opentelemetry.io/otel/log v0.14.0go.opentelemetry.io/otel/metric v1.38.0go.opentelemetry.io/otel/sdk v1.38.0go.opentelemetry.io/otel/sdk/log v0.14.0go.opentelemetry.io/otel/sdk/metric v1.38.0go.opentelemetry.io/otel/trace v1.38.0golang.org/x/oauth2 v0.33.0k8s.io/apimachinery v0.34.2k8s.io/client-go v0.34.2sigs.k8s.io/controller-runtime v0.22.4
Need help?
You can ask for more help in the following Slack channel: #proj-renovate-self-hosted. In that channel you can also find ADR and FAQ docs in the Resources section.