Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Pending Status Checks

These updates await pending status checks. To force their creation now, click the checkbox below.

• chore(deps): update module google.golang.org/grpc to v1.69.4

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• chore(deps): update gcr.io/distroless/static:nonroot docker digest to 6ec5aa9
• chore(deps-dev): update actions/checkout digest to 11bd719
• chore(deps-dev): update pascalgn/size-label-action digest to 6ec5bd0
• chore(deps-dev): update github/codeql-action action to v3.28.1
• chore(deps-dev): update step-security/harden-runner action to v2.10.3
• chore(deps-dev): update zgosalvez/github-actions-ensure-sha-pinned-actions action to v3.0.20
• chore(deps): update kubernetes packages to v0.32.0 (k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/client-go)
• chore(deps): update module github.com/fluxcd/pkg/runtime to v0.52.0
• chore(deps): update opentelemetry-go monorepo to v1.33.0 (go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc, go.opentelemetry.io/otel/sdk)
• chore(deps-dev): update actions/upload-artifact action to v4.6.0
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

dockerfile

Dockerfile

• gcr.io/distroless/static nonroot@sha256:8dd8d3ca2cf283383304fd45a5c9c74d5f2cd9da8d3b077d720e264880077c65

proxy/Dockerfile

• gcr.io/distroless/static nonroot@sha256:8dd8d3ca2cf283383304fd45a5c9c74d5f2cd9da8d3b077d720e264880077c65

github-actions

.github/workflows/main.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/setup-go v5.2.0@3041bf56c941b39c61721a86cd11f3bb1338122a
• shogo82148/actions-goveralls v1.9.0@785c9d68212c91196d3994652647f8721918ba11

.github/workflows/pr-actions.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• zgosalvez/github-actions-ensure-sha-pinned-actions v3.0.19@6ae615f6475d2ede5ad88bea6baa7a1d5e93ffaa

.github/workflows/pr-build.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• actions/setup-python v5.3.0@0b93645e9fea7318ecaed2b359559ac225c90a2b
• helm/chart-testing-action v2.6.1@e6669bcd63d7cb57cb4380c33043eebe5d111992
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/setup-go v5.2.0@3041bf56c941b39c61721a86cd11f3bb1338122a
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/setup-go v5.2.0@3041bf56c941b39c61721a86cd11f3bb1338122a
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/setup-go v5.2.0@3041bf56c941b39c61721a86cd11f3bb1338122a
• actions/upload-artifact v4.5.0@6f51ac03b9356f520e9adb1b1b7802705f340c2b
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• engineerd/setup-kind v0.5.0@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0
• actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16
• imranismail/setup-kustomize v2.1.0@2ba527d4d055ab63514ba50a99456fc35684947f
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• actions/setup-python v5.3.0@0b93645e9fea7318ecaed2b359559ac225c90a2b
• helm/chart-testing-action v2.6.1@e6669bcd63d7cb57cb4380c33043eebe5d111992
• helm/kind-action v1.12.0@a1b0e391336a6ee6713a0583f8c6240d70863de3
• actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16

.github/workflows/pr-goreleaser.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• goreleaser/goreleaser-action v6.1.0@9ed2f89a662bf1735a48bc8557fd212fa902bebf

.github/workflows/pr-label.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• pascalgn/size-label-action bbbaa0d5ccce8e2e76254560df5c64b82dac2e12

.github/workflows/pr-stale.yaml

• actions/stale v9.0.0@28ca1036281a5e5922ead5184a1bbf96e5fc984e

.github/workflows/pr-trivy.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• aquasecurity/trivy-action 0.29.0@18f2510ee396bbf400402947b394f2dd8c87dbb0
• github/codeql-action v3.28.0@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169

.github/workflows/rebase.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• cirrus-actions/rebase 1.8@b87d48154a87a85666003575337e27b8cd65f691

.github/workflows/release.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• actions/setup-go v5.2.0@3041bf56c941b39c61721a86cd11f3bb1338122a
• docker/login-action v3.3.0@9780b0c442fbb1117ed29e0efdff1e18412f7567
• sigstore/cosign-installer v3.7.0@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da
• anchore/sbom-action v0.17.9@df80a981bc6edbc4e220a492d3cbe9f5547a6e75
• goreleaser/goreleaser-action v6.1.0@9ed2f89a662bf1735a48bc8557fd212fa902bebf
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• azure/setup-helm v3.5@5119fcb9089d432beecbf79bb2c7915207344b78
• sigstore/cosign-installer v3.7.0@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da

.github/workflows/report-on-vulnerabilities.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• aquasecurity/trivy-action 0.29.0@18f2510ee396bbf400402947b394f2dd8c87dbb0
• actions/upload-artifact v4.5.0@6f51ac03b9356f520e9adb1b1b7802705f340c2b
• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• actions/download-artifact v4.1.8@fa0a91b85d4f404e444e00e005971372dc801d16
• JasonEtco/create-an-issue v2.9.2@1b14a70e4d8dc185e5cc76d3bec9eab20257b2c5

.github/workflows/scan.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4@692973e3d937129bcbf40652eb9f2f61becf3332
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action codeql-bundle-20221020@f0a12816612c7306b485a22cb164feb43c6df818

.github/workflows/scorecard.yaml

• step-security/harden-runner v2.10.2@0080882f6c36860b6ba35c610c98ce87d4e2f26f
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• ossf/scorecard-action v2.4.0@62b2cac7ed8198b15735ed49ab1e5cf35480ba46
• actions/upload-artifact v4.5.0@6f51ac03b9356f520e9adb1b1b7802705f340c2b
• github/codeql-action v3.28.0@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169

gomod

go.mod

• go 1.22.0
• github.com/fluxcd/pkg/runtime v0.49.1
• github.com/go-logr/logr v1.4.2
• github.com/kylelemons/godebug v1.1.0
• github.com/onsi/ginkgo/v2 v2.22.2
• github.com/onsi/gomega v1.36.2
• github.com/spf13/pflag v1.0.5
• github.com/stretchr/testify v1.10.0
• github.com/tj/assert v0.0.3
• go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.58.0
• go.opentelemetry.io/otel v1.33.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.32.0
• go.opentelemetry.io/otel/sdk v1.32.0
• google.golang.org/grpc v1.69.2
• k8s.io/api v0.31.3
• k8s.io/apiextensions-apiserver v0.31.3
• k8s.io/apimachinery v0.31.4
• k8s.io/client-go v0.31.3
• sigs.k8s.io/controller-runtime v0.19.4

helm-values

chart/keycloak-controller/values.yaml

• quay.io/brancz/kube-rbac-proxy v0.18.2

kustomize

config/base/manager/kustomization.yaml

• ghcr.io/doodlescheduling/keycloak-controller v2.5.1

---

• Check this box to trigger a request for Renovate to run again on this repository