Skip to content

build(deps): bump sigs.k8s.io/promo-tools/v3 from 3.4.4 to 3.4.6#214

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/sigs.k8s.io/promo-tools/v3-3.4.6
Closed

build(deps): bump sigs.k8s.io/promo-tools/v3 from 3.4.4 to 3.4.6#214
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/sigs.k8s.io/promo-tools/v3-3.4.6

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Oct 19, 2022

Bumps sigs.k8s.io/promo-tools/v3 from 3.4.4 to 3.4.6.

Release notes

Sourced from sigs.k8s.io/promo-tools/v3's releases.

v3.4.6

Release Notes

Changes by Kind

Feature

  • Kpromo now logs timestamps before each step in the image promotion process (#638, @​puerco) [SIG Release]

Bug or Regression

  • Crane copy operations in kpromo now use gcrane.Keychain to authenticate. (#609, @​upodroid) [SIG Release]

Other (Cleanup or Flake)

  • Display log timestamps and their diffs to the previous message during the promotion. (#640, @​saschagrunert) [SIG Release]

Dependencies

Added

  • github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream: v1.4.3
  • github.com/aws/aws-sdk-go-v2/internal/v4a: v1.0.5
  • github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding: v1.9.3
  • github.com/aws/aws-sdk-go-v2/service/internal/checksum: v1.1.9
  • github.com/aws/aws-sdk-go-v2/service/internal/s3shared: v1.13.8
  • github.com/aws/aws-sdk-go-v2/service/s3: v1.27.1
  • github.com/vmihailenco/msgpack/v5: v5.3.5
  • github.com/vmihailenco/tagparser/v2: v2.0.0

Changed

  • cloud.google.com/go/aiplatform: v1.22.0 → v1.24.0
  • cloud.google.com/go/analytics: v0.11.0 → v0.12.0
  • cloud.google.com/go/area120: v0.5.0 → v0.6.0
  • cloud.google.com/go/artifactregistry: v1.6.0 → v1.7.0
  • cloud.google.com/go/asset: v1.5.0 → v1.7.0
  • cloud.google.com/go/assuredworkloads: v1.5.0 → v1.6.0
  • cloud.google.com/go/automl: v1.5.0 → v1.6.0
  • cloud.google.com/go/billing: v1.4.0 → v1.5.0
  • cloud.google.com/go/binaryauthorization: v1.1.0 → v1.2.0
  • cloud.google.com/go/cloudtasks: v1.5.0 → v1.6.0
  • cloud.google.com/go/compute: v1.7.0 → v1.10.0
  • cloud.google.com/go/datacatalog: v1.5.0 → v1.6.0
  • cloud.google.com/go/dataflow: v0.6.0 → v0.7.0
  • cloud.google.com/go/dataform: v0.3.0 → v0.4.0
  • cloud.google.com/go/datalabeling: v0.5.0 → v0.6.0
  • cloud.google.com/go/dataqna: v0.5.0 → v0.6.0

... (truncated)

Changelog

Sourced from sigs.k8s.io/promo-tools/v3's changelog.

Releasing the artifact promoter tools

This is a draft document to describe the release process for artifact promotion tooling.

(If there are improvements you'd like to see, please comment on the tracking issue.)

Tracking

As the first task, a Release Manager should open a tracking issue for the release.

We don't currently have a template for releasing, but the following issue is a good example to draw inspiration from.

We're not striving for perfection with the template, but the tracking issue will serve as a reference point to aggregate feedback, so try your best to be as descriptive as possible.

Validation

TODO: Talk about canaries

Tagging

There are two tags that we care about:

  • git tags
  • image tags

We use with SemVer-compliant versions for git tags and GitHub releases, prefixed with v. SemVer is described in detail here.

Example:

v3.4.0

Image tags are derived from the git tag, with the addition of a revision.

... (truncated)

Commits
  • 6440ee9 Merge pull request #640 from saschagrunert/timestamps
  • 390010d Merge pull request #641 from saschagrunert/parallel-actions
  • 0ea3c8d Bump max parallel actions to 100
  • 7fd5b64 Add logrus hook to show all timestamps and their diffs
  • b4fc93c Merge pull request #639 from puerco/canary
  • 010fa07 Promote bom v0.3.0 to test registry to trigger canary
  • 3933736 Merge pull request #638 from puerco/timestamps
  • 95e2459 Log timestamps of main image promotion steps
  • 6d6281c Merge pull request #636 from kubernetes-sigs/dependabot/go_modules/google.gol...
  • 6b64a3a build(deps): bump google.golang.org/api from 0.99.0 to 0.100.0
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump sigs.k8s.io/promo-tools/v3 from 3.4.4 to 3.4.6
0f153f3 
Bumps [sigs.k8s.io/promo-tools/v3](https://github.com/kubernetes-sigs/promo-tools) from 3.4.4 to 3.4.6.
- [Release notes](https://github.com/kubernetes-sigs/promo-tools/releases)
- [Changelog](https://github.com/kubernetes-sigs/promo-tools/blob/main/RELEASE.md)
- [Commits](kubernetes-sigs/promo-tools@v3.4.4...v3.4.6)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/promo-tools/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Oct 19, 2022

The following labels could not be found: area/dependency, release-note-none, ok-to-test.

@dependabot dependabot bot mentioned this pull request Oct 19, 2022
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Oct 28, 2022

Superseded by #222.

@dependabot dependabot bot closed this Oct 28, 2022
@dependabot dependabot bot deleted the dependabot/go_modules/sigs.k8s.io/promo-tools/v3-3.4.6 branch October 28, 2022 23:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants