Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update module to go1.17 and enable dependabot updates #3262

Merged
merged 2 commits into from
Apr 5, 2022
Merged

Update module to go1.17 and enable dependabot updates #3262

merged 2 commits into from
Apr 5, 2022

Conversation

justaugustus
Copy link
Member

  • go.mod: Update module to go1.17
  • github: Add dependabot config

Signed-off-by: Stephen Augustus foo@auggie.dev

/assign @kikisdeliveryservice @jeremyrickard @mrbobbytables @palnabarun
cc: @kubernetes/enhancements-maintainers

@justaugustus
go.mod: Update module to go1.17
ea10e58 
Signed-off-by: Stephen Augustus <foo@auggie.dev>
@justaugustus
.github: Add dependabot config
cbff393 
Signed-off-by: Stephen Augustus <foo@auggie.dev>
@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels Apr 4, 2022
JamesLaverack
JamesLaverack reviewed Apr 4, 2022
View reviewed changes
Copy link
Member

@JamesLaverack JamesLaverack left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Apr 4, 2022
@kikisdeliveryservice
Copy link
Member

@justaugustus what is dependabot? I'm not familiar :)

@justaugustus
Copy link
Member Author

@justaugustus what is dependabot? I'm not familiar :)

Dependabot is an app that's now embedded in GitHub to handle dependency updates. More here: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/about-dependabot-version-updates

We use it for a bunch of Kubernetes org repos: https://cs.k8s.io/?q=package-ecosystem%3A&i=nope&files=&excludeFiles=&repos=

tl;dr -- our go.mod is pretty behind the times and we've likely got some outdated packages to fixup and maybe security vulns to address

@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: justaugustus, kikisdeliveryservice

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:
  • OWNERS [kikisdeliveryservice]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Apr 5, 2022
@k8s-ci-robot k8s-ci-robot merged commit b5cb35e into kubernetes:master Apr 5, 2022
@k8s-ci-robot k8s-ci-robot added this to the v1.24 milestone Apr 5, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JamesLaverack JamesLaverack JamesLaverack left review comments

@kikisdeliveryservice kikisdeliveryservice kikisdeliveryservice approved these changes

@jeremyrickard jeremyrickard Awaiting requested review from jeremyrickard

@johnbelamaric johnbelamaric Awaiting requested review from johnbelamaric

Assignees

@JamesLaverack JamesLaverack

@kikisdeliveryservice kikisdeliveryservice

@mrbobbytables mrbobbytables

@palnabarun palnabarun

@jeremyrickard jeremyrickard

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
v1.24
Development

Successfully merging this pull request may close these issues.
7 participants
@justaugustus @kikisdeliveryservice @k8s-ci-robot @JamesLaverack @mrbobbytables @palnabarun @jeremyrickard