[release-v1.18][gomod]: Bump the minor group across 1 directory with 8 updates

[dependabot]

Bumps the minor group with 4 updates in the / directory: github.com/IBM/sarama, github.com/cloudevents/sdk-go/v2, github.com/kedacore/keda/v2 and github.com/rickb777/date.

Updates github.com/IBM/sarama from 1.43.3 to 1.45.1

Release notes

Sourced from github.com/IBM/sarama's releases.

Version 1.45.1 (2025-03-02)

What's Changed

🎉 New Features / Improvements

• feat(producer): add MaxBufferBytes to limit retry buffer size by @​wanwenli in IBM/sarama#3088
• feat(producer): add sync pool for channel reuse by @​kasimtj in IBM/sarama#3109
• feat: exponential backoff for clients (KIP-580) by @​wanwenli in IBM/sarama#3099

🐛 Fixes

• fix(sasl): add nilguard around token to prevent panic by @​hoo47 in IBM/sarama#3076
• fix(test): consumer group fetch request messages by @​stsmurf in IBM/sarama#3081
• fix: remove redundant nil check by @​knbr13 in IBM/sarama#3089
• fix(consumer): add recovery from no leader partitions by @​liutao365 in IBM/sarama#3101
• produce: set MaxTimestamp by @​rockwotj in IBM/sarama#3108

📦 Dependency updates

• chore(deps): bump go.opentelemetry.io/otel from 1.24.0 to 1.29.0 in /examples/interceptors by @​dependabot in IBM/sarama#3071
• chore(deps): bump the otel group across 1 directory with 2 updates by @​dependabot in IBM/sarama#3072
• chore(deps): bump the golang-x group across 1 directory with 2 updates by @​dependabot in IBM/sarama#3098

🔧 Maintenance

• chore(deps): prevent otel upgrades for now by @​dnwe in IBM/sarama#3069
• chore: add version constant for kafka 3.7.2 by @​dnwe in IBM/sarama#3073
• chore(ci): fetch kafka 4.0 via tar.gz rather than git by @​dnwe in IBM/sarama#3079
• fix(ci): tighten up github workflows by @​dnwe in IBM/sarama#3080
• chore(ci): analyse actions in codeql by @​dnwe in IBM/sarama#3085
• chore(ci): bump golangci-lint version to v1.63.4 by @​dnwe in IBM/sarama#3090
• feat(ci): add dedicated staticcheck run by @​dnwe in IBM/sarama#3091

New Contributors

• @​hoo47 made their first contribution in IBM/sarama#3076
• @​stsmurf made their first contribution in IBM/sarama#3081
• @​knbr13 made their first contribution in IBM/sarama#3089
• @​liutao365 made their first contribution in IBM/sarama#3101
• @​rockwotj made their first contribution in IBM/sarama#3108
• @​kasimtj made their first contribution in IBM/sarama#3109

Full Changelog: IBM/sarama@v1.45.0...v1.45.1

Version 1.45.0 (2025-01-07)

[!NOTE]
The go.mod directive has been bumped to 1.21 as the minimum version of Go required for the module. This was necessary to continue to receive updates from some of the third party dependencies that Sarama makes use of for compression.

What's Changed

🐛 Fixes

• fix(admin): add retries for GroupCoordinator errors by @​dnwe in IBM/sarama#3053

📦 Dependency updates

• chore(deps): bump github.com/klauspost/compress from 1.17.9 to 1.17.11 by @​dependabot in IBM/sarama#2999
• chore(deps): bump golang.org/x/net from 0.33.0 to 0.34.0 in the golang-org-x group by @​dependabot in IBM/sarama#3054

🔧 Maintenance

... (truncated)

Commits

• 4001b2e chore(ci): bump ubi9/ubi-minimal from b870979 to 3902bab (#3095)
• 6e71c2f chore(deps): bump the golang-x group across 1 directory with 2 updates (#3098)
• 13c92aa feat: exponential backoff for clients (#3099)
• 4a028c4 chore(ci): bump github/codeql-action from 3.28.5 to 3.28.10 (#3104)
• f296379 chore(ci): bump docker/bake-action from 6.2.0 to 6.4.0 (#3105)
• c2e0d94 feat(producer): add sync pool for channel reuse (#3109)
• 3c67885 produce: set MaxTimestamp (#3108)
• 60592f6 fix(consumer): add recovery from no leader partitions (#3101)
• 9ae475a Merge pull request #3091 from IBM/dnwe/staticcheck
• b3aef99 fix(ci): update ignore directives for staticcheck
• Additional commits viewable in compare view

Updates github.com/cloudevents/sdk-go/v2 from 2.15.2 to 2.16.0

Release notes

Sourced from github.com/cloudevents/sdk-go/v2's releases.

Release v2.16.0

✨ Features & Enhancements

• Confluent Kafka binding #988 by @​yanmxa
  Added a new Confluent Kafka protocol binding for CloudEvents, supporting modern Kafka client features.

• Producer report channel for Confluent Kafka #1031 by @​yanmxa
  Exposed a producer report channel via Events() to allow users to track delivery status of Kafka messages.

• Support structured content type suffixes #1007 by @​dan-j
  Improved content type handling by recognizing structured syntax suffixes like +json, increasing compatibility with various encodings.

• Default timeout via context #992 by @​nkreiger
  Introduced support for configuring protocol default timeouts using context.Context.

• Benchmarks for CESQL #1050 by @​Cali0707
  Added benchmark tests to measure CESQL query performance.

• Optimized CESQL LIKE matching #1049 by @​Cali0707
  Improved the performance of CESQL's LIKE pattern matching logic.

• Expose AddFunction API for CESQL Parser [[testonly] CI stability experiments wrt parallel settings and TestBrokerWithManyTriggers flakiness #1047 / #1051] by @​dgeorgievski
  Enabled users to register custom functions in CESQL via the newly exposed AddFunction API.

• Flexible subject matching for NATS JetStream #1084 by @​evankanderson
  Added support for flexible subject pattern matching in NATS JetStream subscriptions.

• Add v3 version of NATS JetStream protocol #1095 by @​stephen-totty-hpe
  Introduced a new version of the NATS JetStream protocol (v3) with enhanced features and forward compatibility.

• Expose WithHost option #1070 by @​jaxtonw
  Added a configurable WithHost option for improved protocol initialization flexibility.

• Support dataref cloud event extension [[Dataref Extension #1018](https://redirect.github.com/Adding a simple dataref extension cloudevents/sdk-go#1018)] by @​matzew Implements the Dataref (Claim Check Pattern) as specified by the CloudEvent Extension Attributes spec.

---

🛠 Fixes

• Handle multiple AMQP data fields correctly #1034 by @​embano1
  Fixed parsing of AMQP messages containing multiple data fields to conform with spec expectations.

• Fix invalid ce- prefix in Confluent binding #1059 by @​embano1
  Corrected an issue where CloudEvents extensions were incorrectly prefixed in the Confluent Kafka binding.

• Fix LIKE expression error handling #1046 by @​Cali0707
  Prevented panics on malformed LIKE expressions in CESQL; now returns a parse error instead.

• Fix MQTT content-type issue #1063 by @​yanmxa

... (truncated)

Commits

• 6de37de Merge pull request #1139 from duglin/upgradeLint
• 25cdf94 upgrade-lint
• 240eb02 Merge pull request #1137 from duglin/fix-automerge
• 7b6701c fix automerge by giving better names
• d3e82a7 Merge pull request #1136 from cloudevents/dependabot/github_actions/golangci/...
• 00e3d7c chore(deps): Bump golangci/golangci-lint-action from 6.5.2 to 7.0.0
• 69cfc2d Merge pull request #1018 from matzew/add_dataref_extension
• 535da92 Adding a simple dataref extension, similar to the java sdk
• 74ac76d Merge pull request #1134 from cloudevents/dependabot/go_modules/observability...
• 6da042f chore: run go mod tidy
• Additional commits viewable in compare view

Updates github.com/kedacore/keda/v2 from 2.8.1 to 2.17.0

Release notes

Sourced from github.com/kedacore/keda/v2's releases.

v2.17.0

We are happy to release KEDA v2.17.0 🎉

Here are some highlights:

• Introduce new NSQ scaler (#3281)
• Introduce new Temporal scaler (#4724)

Here are the new breaking change(s) of this release:

• Change InitialCooldownPeriod from int32 to *int32 (#6423)
• Remove Prometheus metric deprecations (#6339)
• Remove deprecated tlsCertFile from External scaler (#4549)

Here are the new deprecation(s) as of this release:

• Deprecate NATS Streaming Server (aka Stan) (#6362)

Learn how to deploy KEDA by reading our documentation.

🗓️ The next KEDA release is currently being to be decided, learn more in our roadmap.

New Contributors

• @​smcavallo made their first contribution in kedacore/keda#6325
• @​omerap12 made their first contribution in kedacore/keda#6335
• @​Ulminator made their first contribution in kedacore/keda#6230
• @​HeavyWombat made their first contribution in kedacore/keda#6378
• @​maxbog made their first contribution in kedacore/keda#6134
• @​KrishnaSindhur made their first contribution in kedacore/keda#6396
• @​step-security-bot made their first contribution in kedacore/keda#6428
• @​ctccxxd made their first contribution in kedacore/keda#6420
• @​michemache made their first contribution in kedacore/keda#6373
• @​be0x74a made their first contribution in kedacore/keda#6498
• @​Prajithp made their first contribution in kedacore/keda#6191
• @​mpechner-akasa made their first contribution in kedacore/keda#6381
• @​y-rabie made their first contribution in kedacore/keda#6521
• @​Nohac made their first contribution in kedacore/keda#5839
• @​silviu-dinu made their first contribution in kedacore/keda#6519
• @​andrewhibbert made their first contribution in kedacore/keda#6505
• @​huochexizhan made their first contribution in kedacore/keda#6594
• @​gautierdelorme made their first contribution in kedacore/keda#6606
• @​ohhfishal made their first contribution in kedacore/keda#6611
• @​alingse made their first contribution in kedacore/keda#6662

Full Changelog: kedacore/keda@v2.16.1...v2.17.0

v2.16.1

We are happy to release KEDA v2.16.1 🎉

Here are some fixes:

• General: Centralize and improve automaxprocs configuration with proper structured logging (#5970)
• General: Paused ScaledObject count is reported correctly after operator restart (#6321)

... (truncated)

Changelog

Sourced from github.com/kedacore/keda/v2's changelog.

v2.17.0

New

• General: Add support for time-bound Kubernetes ServiceAccount tokens as a source for TriggerAuthentication (#6136)
• General: Introduce new NSQ scaler (#3281)
• General: Introduce new Temporal scaler (#4724)

Improvements

• General: Add Fallback option behavior for dynamic fallback calculation (#6450)
• General: Add SecretKey to AWS SecretsManager TriggerAuthentication to allow parsing JSON / Key/Value Pairs in secrets (#5940)
• General: Enable OpenSSF Scorecard to enhance security practices across the project (#5913)
• General: Operator flag to control patching of webhook resources certificates (#6184)
• Azure Log Analytics Scaler: Add custom HTTP client timeout (#6607)
• Azure Pipelines Scaler: Introduce requireAllDemandsAndIgnoreOthers to match job demands while ignoring extras (#5579)
• Elasticsearch Scaler: Support IgnoreNullValues at Elasticsearch scaler (#6599)
• GitHub Scaler: Add support to use ETag for conditional requests against the Github API (#6503)
• GitHub Scaler: Filter workflows via query parameter for improved queue count accuracy (#6519)
• IBMMQ Scaler: Handling StatusNotFound in IBMMQ scaler (#6472)
• MongoDB Scaler: Support float queryValue for MongoDB scaler (#6574)
• Prometheus Scaler: Add custom HTTP client timeout (#6607)
• RabbitMQ Scaler: Support use of the ‘vhostName’ parameter in the ‘TriggerAuthentication’ resource (#6369)
• Selenium Grid: Add trigger param for Node enables managed downloads capability (#6570)
• Selenium Grid: Add trigger param to set custom capabilities for matching specific Nodes (#6536)
• Selenium Grid: Selenium Grid: Trigger param enableManagedDownloads set as true by default (#6684)

Fixes

• General: Centralize and improve automaxprocs configuration with proper structured logging (#5970)
• General: Fix CVE-2025-27144 and CVE-2025-22868 (#6613)
• General: Fix CVE-2025-29786 (#6637)
• General: Fix CVE-2025-30204 (#6641)
• General: Fix event text when deactivation fails (#6469)
• General: Fix fallback validation check bug (#6407)
• General: Fix the check whether Fallback is enabled when using ScalingModifiers (#6521)
• General: Fix waiting to reach failureThreshold before fallback (#6520)
• General: Make sure the exposed metrics (from KEDA operator) are updated when there is a change to triggers (#6618)
• General: Paused ScaledObject count is reported correctly after operator restart (#6321)
• General: Reiterate fix (after #6407) for fallback validation in admission webhook. (#6538)
• General: ScaledJobs ready status set to true when recoverred problem (#6329)
• AWS Scalers: Add AWS region to the AWS Config Cache key (#6128)
• External Scaler: Support server TLS without custom CA (#6606)
• GCP Storage: GCP Storage scaler ignores folders (#6531)
• Metrics API: Fix text format parsing error resulting in unexpected end of input stream (#6559)
• NATS JetStream: Support for looking up account using an ID (#6611)
• Redis Streams: Allow default value of 0 for activationLagCount (#6478)
• Selenium Grid: Scaler logic on platformName is set empty or any (#6477)

Deprecations

... (truncated)

Commits

• dafd9a8 Clean changelog (#6692)
• 431a608 prepare release 2.17 (#6691)
• 8bb1c5f chore: Bump deps and golang version (#6689)
• c63e617 fix: ScalingModifiers admission checks the metric type correctly (#6687)
• 0375467 Selenium Grid: Trigger param enableManagedDownloads set as true by default ...
• 9299ea9 bump k8s to 0.31.7 & bump deps (#6652)
• ea3a33d Refactor Azure Monitor Scaler (#6646)
• c2d4c44 fix call log.Error with nil value error (#6662)
• c4a8651 chore(deps): update github actions (#6649)
• 3c49b36 chore: update Go version to v1.23.7 (#6651)
• Additional commits viewable in compare view

Updates github.com/rcrowley/go-metrics from 0.0.0-20201227073835-cf1acfcdf475 to 0.0.0-20250401214520-65e299d6c5c9

Commits

• See full diff in compare view

Updates github.com/rickb777/date from 1.14.1 to 1.21.1

Release notes

Sourced from github.com/rickb777/date's releases.

v1 ParseISO tweaked

ParseISO now accepts date-time inputs, ignoring the time field.

period.AddTo revised to reduce the impact of subtle behaviours of time.AddDate

Minor bugfix

• resolves issue #19
• updates dependencies

v1.20.2 updated dependencies

No release notes provided.

v1.20.0

No release notes provided.

v1.19.1

No release notes provided.

Bufix: MarshalJSON

Date.MarshalJSON incorrectly wrote the zero value as a blank string, which might raise difficulties at the receiver.

Code that relied on this incorrect behaviour might see this as a breaking change.

v1.18

No release notes provided.

updated dependencies

No release notes provided.

Bug fixed: integer overflow on 32bit architecture

No release notes provided.

Commits

• b7388c8 Minor test correction
• db08fef Date ParseISO & AutoParse now accept a date-time input (time is ignored)
• 9a7458e updated dependencies
• 02b87e1 another parse test case
• ff580cf more tests added to period.Between
• b6690e4 period.AddTo revised to reduce the impact of subtle behaviours of time.AddDate
• ad3aa70 Dependencies updated
• a792460 Bugfix: this resolves issue #19 fraction designator parsing bug
• fba60ed bumped up some dependencies
• 168141b Updated dependencies & re-fmt
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel from 1.34.0 to 1.35.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.35.0/0.57.0/0.11.0] 2025-03-05

This release is the last to support [Go 1.22]. The next release will require at least [Go 1.23].

Added

• Add ValueFromAttribute and KeyValueFromAttribute in go.opentelemetry.io/otel/log. (#6180)
• Add EventName and SetEventName to Record in go.opentelemetry.io/otel/log. (#6187)
• Add EventName to RecordFactory in go.opentelemetry.io/otel/log/logtest. (#6187)
• AssertRecordEqual in go.opentelemetry.io/otel/log/logtest checks Record.EventName. (#6187)
• Add EventName and SetEventName to Record in go.opentelemetry.io/otel/sdk/log. (#6193)
• Add EventName to RecordFactory in go.opentelemetry.io/otel/sdk/log/logtest. (#6193)
• Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc. (#6211)
• Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#6211)
• Emit Record.EventName field in go.opentelemetry.io/otel/exporters/stdout/stdoutlog (#6210)
• The go.opentelemetry.io/otel/semconv/v1.28.0 package. The package contains semantic conventions from the v1.28.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.27.0(#6236)
• The go.opentelemetry.io/otel/semconv/v1.30.0 package. The package contains semantic conventions from the v1.30.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.28.0(#6240)
• Document the pitfalls of using Resource as a comparable type. Resource.Equal and Resource.Equivalent should be used instead. (#6272)
• Support [Go 1.24]. (#6304)
• Add FilterProcessor and EnabledParameters in go.opentelemetry.io/otel/sdk/log. It replaces go.opentelemetry.io/otel/sdk/log/internal/x.FilterProcessor. Compared to previous version it additionally gives the possibility to filter by resource and instrumentation scope. (#6317)

Changed

• Update github.com/prometheus/common to v0.62.0, which changes the NameValidationScheme to NoEscaping. This allows metrics names to keep original delimiters (e.g. .), rather than replacing with underscores. This is controlled by the Content-Type header, or can be reverted by setting NameValidationScheme to LegacyValidation in github.com/prometheus/common/model. (#6198)

Fixes

• Eliminate goroutine leak for the processor returned by NewSimpleSpanProcessor in go.opentelemetry.io/otel/sdk/trace when Shutdown is called and the passed ctx is canceled and SpanExporter.Shutdown has not returned. (#6368)
• Eliminate goroutine leak for the processor returned by NewBatchSpanProcessor in go.opentelemetry.io/otel/sdk/trace when ForceFlush is called and the passed ctx is canceled and SpanExporter.Export has not returned. (#6369)

Commits

• 5ba5e7a Release v1.35.0/v0.57.0/v0.11.0 (#6407)
• 3908b67 chore(deps): update module github.com/securego/gosec/v2 to v2.22.2 (#6412)
• 50172b1 chore(deps): update module github.com/ryancurrah/gomodguard to v1.4.1 (#6411)
• cea6d2b fix(deps): update module google.golang.org/grpc to v1.71.0 (#6409)
• e2aee3a Move trace sdk tests from trace_test into trace package (#6400)
• 38f4f39 fix(deps): update build-tools to v0.20.0 (#6403)
• 2911449 Look at stale issues in ascending order (#6396)
• 7cb322a chore(deps): update github.com/golangci/dupl digest to 44c6a0b (#6398)
• 0c3651e fix(deps): update module github.com/golangci/golangci-lint to v1.64.6 (#6394)
• f04e951 chore(deps): update mvdan.cc/unparam digest to 0df0534 (#6391)
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/trace from 1.34.0 to 1.35.0

Changelog

Sourced from go.opentelemetry.io/otel/trace's changelog.

[1.35.0/0.57.0/0.11.0] 2025-03-05

This release is the last to support [Go 1.22]. The next release will require at least [Go 1.23].

Added

• Add ValueFromAttribute and KeyValueFromAttribute in go.opentelemetry.io/otel/log. (#6180)
• Add EventName and SetEventName to Record in go.opentelemetry.io/otel/log. (#6187)
• Add EventName to RecordFactory in go.opentelemetry.io/otel/log/logtest. (#6187)
• AssertRecordEqual in go.opentelemetry.io/otel/log/logtest checks Record.EventName. (#6187)
• Add EventName and SetEventName to Record in go.opentelemetry.io/otel/sdk/log. (#6193)
• Add EventName to RecordFactory in go.opentelemetry.io/otel/sdk/log/logtest. (#6193)
• Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc. (#6211)
• Emit Record.EventName field in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#6211)
• Emit Record.EventName field in go.opentelemetry.io/otel/exporters/stdout/stdoutlog (#6210)
• The go.opentelemetry.io/otel/semconv/v1.28.0 package. The package contains semantic conventions from the v1.28.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.27.0(#6236)
• The go.opentelemetry.io/otel/semconv/v1.30.0 package. The package contains semantic conventions from the v1.30.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.28.0(#6240)
• Document the pitfalls of using Resource as a comparable type. Resource.Equal and Resource.Equivalent should be used instead. (#6272)
• Support [Go 1.24]. (#6304)
• Add FilterProcessor and EnabledParameters in go.opentelemetry.io/otel/sdk/log. It replaces go.opentelemetry.io/otel/sdk/log/internal/x.FilterProcessor. Compared to previous version it additionally gives the possibility to filter by resource and instrumentation scope. (#6317)

Changed

• Update github.com/prometheus/common to v0.62.0, which changes the NameValidationScheme to NoEscaping. This allows metrics names to keep original delimiters (e.g. .), rather than replacing with underscores. This is controlled by the Content-Type header, or can be reverted by setting NameValidationScheme to LegacyValidation in github.com/prometheus/common/model. (#6198)

Fixes

• Eliminate goroutine leak for the processor returned by NewSimpleSpanProcessor in go.opentelemetry.io/otel/sdk/trace when Shutdown is called and the passed ctx is canceled and SpanExporter.Shutdown has not returned. (#6368)
• Eliminate goroutine leak for the processor returned by NewBatchSpanProcessor in go.opentelemetry.io/otel/sdk/trace when ForceFlush is called and the passed ctx is canceled and SpanExporter.Export has not returned. (#6369)

Commits

• 5ba5e7a Release v1.35.0/v0.57.0/v0.11.0 (#6407)
• 3908b67 chore(deps): update module github.com/securego/gosec/v2 to v2.22.2 (#6412)
• 50172b1 chore(deps): update module github.com/ryancurrah/gomodguard to v1.4.1 (#6411)
• cea6d2b fix(deps): update module google.golang.org/grpc to v1.71.0 (#6409)
• e2aee3a Move trace sdk tests from trace_test into trace package (#6400)
• 38f4f39 fix(deps): update build-tools to v0.20.0 (#6403)
• 2911449 Look at stale issues in ascending order (#6396)
• 7cb322a chore(deps): update github.com/golangci/dupl digest to 44c6a0b (#6398)
• 0c3651e fix(deps): update module github.com/golangci/golangci-lint to v1.64.6 (#6394)
• f04e951 chore(deps): update mvdan.cc/unparam digest to 0df0534 (#6391)
• Additional commits viewable in compare view

Updates go.uber.org/atomic from 1.10.0 to 1.11.0

Release notes

Sourced from go.uber.org/atomic's releases.

v1.11.0

Fixed

• Fix Swap and CompareAndSwap for Value wrappers without initialization.

Added

• Add String method to atomic.Pointer[T] type allowing users to safely print underlying values of pointers.

Changelog

Sourced from go.uber.org/atomic's changelog.

1.11.0 - 2023-05-02

Fixed

• Fix Swap and CompareAndSwap for Value wrappers without initialization.

Added

• Add String method to atomic.Pointer[T] type allowing users to safely print underlying values of pointers.

Commits

• 76f817c Update CHANGELOG.md
• 2a750c4 Preparing release v1.11.0
• 544d6aa Minimize permissions to CI workflows (#133)
• 1505d28 Fix Swap and CompareAndSwap for Value wrappers (#130)
• 78a3b8e Implement String method for pointers (#122)
• 159e329 chore(gen-*): Move templates into external files (#121)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign aliok for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift-knative member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.