🌱 Update Builder Image group

[cluster-stack-bot]

This PR contains the following updates:

Package	Type	Update	Change
adrienverge/yamllint		minor	v1.33.0 -> v1.35.1
docker.io/aquasec/trivy (source)	stage	patch	0.49.0 -> 0.49.1
golangci/golangci-lint		minor	v1.55.2 -> v1.56.2
lycheeverse/lychee		patch	v0.14.2 -> v0.14.3

---

Release Notes

adrienverge/yamllint (adrienverge/yamllint)

v1.35.1

Compare Source

v1.35.0

Compare Source

v1.34.0

Compare Source

aquasecurity/trivy (docker.io/aquasec/trivy)

v0.49.1

Compare Source

Changelog

• 6ccc0a5 fix: check unescaped BomRef when matching PkgIdentifier (#​6025)
• 458c5d9 docs: Fix broken link to "pronunciation" (#​6057)
• 5c0ff6d chore(deps): bump actions/upload-artifact from 3 to 4 (#​6047)
• e2bd7f7 chore(deps): bump github.com/spf13/viper from 1.16.0 to 1.18.2 (#​6042)
• f95fbcb chore(deps): bump k8s.io/api from 0.29.0 to 0.29.1 (#​6043)
• 7651bf5 ci: reduce root-reserve-mb size for maximize-build-space (#​6064)
• fc20dfd chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.48.0 to 1.48.1 (#​6041)
• 3bd80e7 chore(deps): bump github.com/open-policy-agent/opa from 0.60.0 to 0.61.0 (#​6039)
• 2900a21 fix: fix cursor usage in Redis Clear function (#​6056)
• 85cb9a7 chore(deps): bump github.com/go-openapi/runtime from 0.26.0 to 0.27.1 (#​6037)
• 4e962c0 fix(nodejs): add local packages support for pnpm-lock.yaml files (#​6034)
• aa48a7b chore(deps): bump sigstore/cosign-installer from 3.3.0 to 3.4.0 (#​6046)
• 8aabbea chore(deps): bump github.com/go-openapi/strfmt from 0.21.7 to 0.22.0 (#​6044)
• ec02a65 chore(deps): bump actions/cache from 3.3.2 to 4.0.0 (#​6048)
• 27d35ba test: fix flaky TestDockerEngine (#​6054)
• c3a66da chore(deps): bump github.com/google/go-containerregistry from 0.17.0 to 0.19.0 (#​6040)
• 2000fe2 chore(deps): bump easimon/maximize-build-space from 9 to 10 (#​6049)
• 2be6421 chore(deps): bump alpine from 3.19.0 to 3.19.1 (#​6051)
• 41c0ef6 chore(deps): bump github.com/moby/buildkit from 0.11.6 to 0.12.5 (#​6028)

golangci/golangci-lint (golangci/golangci-lint)

v1.56.2

Compare Source

1. updated linters
   • go-critic: from 0.11.0 to 0.11.1
   • gosec: from 2.18.2 to 2.19.0
   • testifylint: from 1.1.1 to 1.1.2
   • usestdlibvars: from 1.24.0 to 1.25.0
   • wsl: from 4.2.0 to 4.2.1
2. misc.
   • Fix missing version in Docker image
3. Documentation
   • Explain the limitation of new-from-rev and new-from-patch

v1.56.1

Compare Source

1. updated linters
   • errcheck: from 1.6.3 to 1.7.0
   • govet: disable loopclosure with go1.22
   • revive: from 1.3.6 to 1.3.7
   • testifylint: from 1.1.0 to 1.1.1

v1.56.0

Compare Source

1. new linters
   • feat: add spancheck linter https://github.com/jjti/go-spancheck
2. updated linters
   • depguard: from 2.1.0 to 2.2.0
   • exhaustive: from 0.11.0 to 0.12.0
   • exhaustruct: from 3.1.0 to 3.2.0
   • gci: from 0.11.2 to 0.12.1
   • ginkgolinter: from 0.14.1 to 0.15.2
   • go-check-sumtype: from 0.1.3 to 0.1.4
   • go-critic: from 0.9.0 to 0.11.0
   • go-errorlint: from 1.4.5 to 1.4.8
   • go-spancheck: from 0.4.2 to 0.5.2
   • goconst: from 1.6.0 to 1.7.0
   • godot: from 1.4.15 to 1.4.16
   • gofumpt: from 0.5.0 to 0.6.0
   • inamedparam: from 0.1.2 to 0.1.3
   • ineffassign: from 0.0.0-20230610083614-0e73809eb601 to 0.1.0
   • ireturn: from 0.2.2 to 0.3.0
   • misspell: add mode option
   • musttag: from v0.7.2 to v0.8.0
   • paralleltest: from 1.0.8 to 1.0.9
   • perfsprint: from 0.2.0 to 0.6.0
   • protogetter: from 0.2.3 to 0.3.4
   • revive: from 1.3.4 to 1.3.6
   • sloglint: add static-msg option
   • sloglint: from 0.1.2 to 0.4.0
   • testifylint: from 0.2.3 to 1.1.0
   • unparam: from 2022122-7455f1af531d to 2024010-c549a3470d14
   • whitespace: update after moving to the analysis package
   • wsl: from 3.4.0 to 4.2.0
   • zerologlint: from 0.1.3 to 0.1.5
3. misc.
   • 🎉 go1.22 support
   • Implement stats per linter with a flag
   • fix: make versioning inside Docker image consistent with binaries
   • fix: parse Go RC version
4. Documentation
   • Add missing fields to .golangci.reference.yml
   • Fix noctx description
   • Improve .golangci.reference.yml defaults
   • Improve typecheck FAQ
   • Note that exhaustruct struct regular expressions are expected to match the entire package/name/structname
   • Adjust wrapcheck ignoreSigs to new defaults

Important

testifylint has breaking changes about enabling/disabling checks:

• If you were using the option enable with a filtered list of checks, you should either add disable-all: true (1) or use disable field (2).

Example (1)

  testifylint:
    disable-all: true
    enable:
      - bool-compare
      - compares
      - empty
      - error-is-as
      - error-nil
      - expected-actual
      - go-require
      - float-compare
      - len
      - nil-compare
      - require-error

- suite-dont-use-pkg

      - suite-extra-assert-call
      - suite-thelper
```

```yml

Example (2)

  testifylint:
    disable:
      - suite-dont-use-pkg
```

lycheeverse/lychee (lycheeverse/lychee)

v0.14.3: Version 0.14.3

Compare Source

What's Changed

Miscellaneous and Others 🔔

• fix(tests): update the expected output in cli tests by @​orhun in https://github.com/lycheeverse/lychee/pull/1362
• status.rs: Make json output more verbose by @​Asiderr in https://github.com/lycheeverse/lychee/pull/1367
• Set URI to HTTPS for ErrorKind::InsecureURL by @​Elkiwa in https://github.com/lycheeverse/lychee/pull/1369
• Fixed fragment generation for headings with inline code by @​HU90m in https://github.com/lycheeverse/lychee/pull/1370
• Move to workspace versioning by @​mre in https://github.com/lycheeverse/lychee/pull/1372

New Contributors

• @​Asiderr made their first contribution in https://github.com/lycheeverse/lychee/pull/1367
• @​Elkiwa made their first contribution in https://github.com/lycheeverse/lychee/pull/1369

Full Changelog: lycheeverse/lychee@v0.14.2...v0.14.3

---

Configuration

📅 Schedule: Branch creation - "on the first day of the month" in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

[cluster-stack-bot]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: undefined

Command failed: BUILD_IMAGE_TOKEN=**redacted** BUILD_IMAGE_USER=janiskemper CI=true ./hack/upgrade-builder-image.sh
+ git diff --exit-code .builder-image-version.txt images/builder/Dockerfile images/builder/build.sh
+ '[' true = true ']'
+ echo **redacted**
+ docker login ghcr.io -u janiskemper --password-stdin
WARNING! Your password will be stored unencrypted in /home/ubuntu/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store

++ git fetch --quiet origin main
++ git show origin/main:.builder-image-version.txt
+ VERSION=0.2.4
+ '[' -z 0.2.4 ']'
+ export VERSION
++ semver_upgrade patch 0.2.4
++ IFS=.
++ read -r version minor patch
++ case "$1" in
++ tag=0.2.5
++ echo 0.2.5
+ NEW_VERSION=0.2.5
+ export NEW_VERSION
+ docker manifest inspect ghcr.io/sovereigncloudstack/csctl-builder:0.2.4
manifest unknown
+ echo 'could not find image ghcr.io/sovereigncloudstack/csctl-builder:0.2.4'
+ exit 1

[kranurag7]

we will have to do it manually build and push the csctl-builder image after the rename of the project.

ghcr.io/sovereigncloudstack/csctl-builder:0.2.4

This is only for one time and after that renovate will take care of the same.

[kranurag7]

closing and running the bot again for the update.