Skip to content

Bump the gardener-dependencies group across 1 directory with 2 updates#376

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/gardener-dependencies-dc62753d24
Open

Bump the gardener-dependencies group across 1 directory with 2 updates#376
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/gardener-dependencies-dc62753d24

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 15, 2026
edited
Loading

Bumps the gardener-dependencies group with 1 update in the / directory: github.com/gardener/gardener.

Updates github.com/gardener/gardener from 1.139.1 to 1.141.1

Release notes

Sourced from github.com/gardener/gardener's releases.

v1.141.1

[github.com/gardener/gardener:v1.141.1]

🐛 Bug Fixes

  • [OPERATOR] An issue causing the guestbook TM test to fail against IPv6 Shoot clusters in now fixed. by @​plkokanov [#14705]
  • [DEPENDENCY] The reconcileSeedWebhookConfig function now correctly reconciles both MutatingWebhookConfiguration and ValidatingWebhookConfiguration for extensions that register both mutating and validating admission webhooks. Previously, only the first configuration was reconciled due to a premature return in the loop. by @​Roncossek [#14688]

🏃 Others

  • [OPERATOR] Add resourceId for image istio-basic-auth-server to fix overwrite image lookup by @​MartinWeindel [#14721]
  • [OPERATOR] Certain best-practice Envoy settings for HTTP2 protocol options have been applied to istio-ingressgateways. by @​oliver-goetz [#14685]
  • [DEPENDENCY] The following dependencies have been updated:

application/spdx+json

  • admission-controller-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller@sha256:a533cff53ce26faae8d16ce777e42acfaec59f37b14e037f3df49897eb6e37a6
  • admission-controller-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller@sha256:f9a88c4286072181ba44333dae0899fd7f04e6109deee7649b7ec4225d061c2e
  • apiserver-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver@sha256:e4a314c878793de9230de8e578f4affde97f13669773b1038a1cedb542e3a46f
  • apiserver-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver@sha256:ec09bb23be84cdc04592a29db374e1107b91114c4420523bb8ad52a07777d2e2
  • controller-manager-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager@sha256:2f4e2274461634f42f90fb5787cf2176d00079b0dcb1cbd6d6b06b5e8bfa3243
  • controller-manager-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager@sha256:a20de14a51d7512cf7e4658a4e52a2c60dff17efbf2965ef20565a696619aa6a
  • gardenadm-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenadm@sha256:0723efdd00b677215935e8d86c5568c7c583afbecc130f1a281bd1da4ccacb67
  • gardenadm-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenadm@sha256:e1ddbc08706eb9ac4af03811a12553cadeb00915f890883572ba7c267173473f
  • gardenlet-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet@sha256:2904444a43a685fee5e601b621603114585857c6205d3d9286921a114110849c
  • gardenlet-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet@sha256:a592e08ced947cda1565a4bf3800785c2596880940542843787388baf0ad51ee
  • node-agent-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent@sha256:63efdd9693ec670ba326fd4c3f70f88702aa41aaac69c268c83ab4a69820eea1
  • node-agent-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent@sha256:f61bcb10bfbd98c0a17d944d061357b78a59e09f79bc207db64203488bfb6ebd
  • operator-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/operator@sha256:358db949d83420843f863158d5b97d6a7d2d6df8ed48e4ac4a442e883387c0d9
  • operator-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/operator@sha256:90d8da86f54ce63dd043285388d7acce0f9b3fb30f15e040ae4452f59d1d5b02
  • resource-manager-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager@sha256:1c50c5a130190374ed9ddf8244e48585ef15fc4bed428817b7db101e8b14d747
  • resource-manager-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager@sha256:9b1947be7ce2fe329591e02acb40960aadb1c41a88f9b8b9e10824ed5dd85787
  • scheduler-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler@sha256:0406036d984dcb000eb4a7af85a453ca7ec8a5cf7772c0cf7dfdbd6e576ba881
  • scheduler-spdx-ref: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler@sha256:c5272548e8a05a13aeaf02d69bc1b10a57fd0e3de0ce44cf51433b43d00f964b

Helm Charts

  • controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.141.1
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.141.1
  • operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.141.1
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.141.1

Container (OCI) Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.141.1
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.141.1
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.141.1
  • gardenadm: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenadm:v1.141.1
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.141.1
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.141.1
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.141.1
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.141.1
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.141.1

v1.141.0

[github.com/gardener/gardener:v1.141.0]

... (truncated)

Commits
  • 6aaca64 release v1.141.1
  • a95f247 Update dependency gardener/ext-authz-server to v0.3.0 (#14728)
  • b63b99e Add resourceId for image istio-basic-auth-server to fix overwrite image l...
  • dbfd298 Fix guestbook test for IPv6 clusters (#14705)
  • d38c511 [release-v1.141] Fix premature return in reconcileSeedWebhookConfig (#14688)
  • ac5b859 Apply best-practices of envoy as edge-proxy to istio-ingressgateway configu...
  • 6b34d3d next version: v1.141.1-dev
  • d3824a3 release v1.141.0
  • 9dc3f80 Fix TM kubernetes update test when upgrading from 1.34 to 1.35 (#14656)
  • ed65cf6 Fix logging testmachinery tests after istio-native exposure (#14673)
  • Additional commits viewable in compare view

Updates github.com/gardener/gardener/pkg/apis from 1.139.1 to 1.140.0

Release notes

Sourced from github.com/gardener/gardener/pkg/apis's releases.

v1.140.0

[github.com/gardener/gardener:v1.140.0]

⚠️ Breaking Changes

  • [OPERATOR] The UseUnifiedHTTPProxyPort feature gate has been promoted to Beta and is enabled by default. If using the Gardener ACL Extension you need make sure that at least version v1.15.0 is installed and all Shoots are reconciled before the upgrade. by @​jamand [#14422]
  • [DEVELOPER] The generate-admin-kubeconf.sh script has been renamed to generate-kubeconfig.sh. It now supports generating both admin (default) and viewer kubeconfigs. by @​timuthy [#14464]
  • [DEVELOPER] The gardenadm machine pods have their state persisted in a unified PVC. Existing local gardenadm setups need to be recreated. To reset a local machine pod, delete both the pod and its corresponding PVC. by @​LucaBernstein [#14359]
  • [DEVELOPER] GEN_CRD_API_REFERENCE_DOCS make command has been replaced with CRD_REF_DOCS. by @​acumino [#14324]
  • [DEPENDENCY] The pkg/utils/time package is now removed. Use k8s.io/utils/clock.Clock instead. by @​shafeeqes [#14515]

📰 Noteworthy

  • [OPERATOR] The SeedAuthorizer now enforces field/label selectors for gardenlet list/watch requests on ControllerInstallation, Bastion, Gardenlet, Seed, Shoot, and ManagedSeed resources, restricting each gardenlet to only observe resources belonging to its own seed. by @​rfranzke [#14452]
  • [OPERATOR] The gardener-resource-manager's NetworkPolicy controller now only creates policies in namespaces that have pods with matching to-* labels, significantly reducing the number of NetworkPolicy objects on seeds. by @​rfranzke [#14410]
  • [OPERATOR] RemoveVali FeatureGate has been introduced. When enabled, every Vali instance will be removed. This feature gate is available for both the gardenlet and the gardener-operator. by @​rrhubenov [#14279]
  • [DEVELOPER] The sast and sast-report checks have been removed from verify and verify-extended make targets. Please call them explicitly when required. by @​oliver-goetz [#14443]

✨ New Features

  • [OPERATOR] The Project API now has a .status.conditions field for allowing controllers to report conditions on Project objects. by @​jamand [#14403]
  • [DEVELOPER] The local setup has been augmented to make the self-hosted shoot's API server directly accessible from the host machine without kubectl port-forward. A new unified hack/usage/generate-admin-kubeconfig-local.sh script supports generating kubeconfigs for both the virtual garden and the self-hosted shoot. by @​rfranzke [#14370]

🐛 Bug Fixes

  • [OPERATOR] The formatting of event-logger logs when the OpenTelemetryCollector feature gate is enabled is now partially fixed. The event-logger logs are now properly structured with fields as attributes, but to make them searchable with the unpack feature a change in the fluent-bit output plugin is required. by @​iypetrov [#14423]
  • [OPERATOR] The gardenlet reconciler in the gardener-operator now uses the virtual cluster client to fetch the pull secret and CA bundle secret. It was wrongly using the runtime cluster client earlier. by @​shafeeqes [#14331]
  • [OPERATOR] Fix a bug where the shoot-care controller cannot reconcile shoots with spec.maintenance.confineSpecUpdateRollout=true and updated DNS credentials, i.e. shoot.spec.dns.providers[].credentialsRef, until the shoot is reconciled. by @​vpnachev [#14397]
  • [USER] Fixed EveryNodeReady shoot condition incorrectly reporting NodeAgentUnhealthy for nodes not managed by MCM. by @​acumino [#14509]
  • [DEVELOPER] Pull secrets in the remote setup are labeled correctly to be automatically propagated by @​matthias-horne [#14502]
  • [DEPENDENCY] Extension shoot webhook configs are now always produced even when mergeShootWebhooksIntoSeedWebhooks is true, so that a self-hosted Shoot promoted to a Seed has the correct shoot webhooks registered. by @​rfranzke [#14389]

🏃 Others

  • [OPERATOR] Fix KubePodNotReadyControlPlane alert to not trigger for pods in Completed state. by @​adenitiu [#14404]
  • [OPERATOR] Create pull secret in garden namespace of virtual garden for remote setup. by @​DockToFuture [#14449]
  • [OPERATOR] Introduce seed reconciliation alerts. by @​adenitiu [#14441]
  • [OPERATOR] Enable notification flexibility of EtcdDbSizeLimitApproaching and EtcdDbSizeLimitCrossed alert for seeds by @​adenitiu [#14384]
  • [OPERATOR] The following dependencies have been updated:
  • [OPERATOR] There is now maxConnectionDuration of 1 day for connections to kube-apiserver endpoints. Their maxConnections limit has been removed. by @​oliver-goetz [#14463]
  • [DEVELOPER] The default shoot for test machinery tests was adjusted to work with Kubernetes 1.35. by @​timuthy [#14439]
  • [DEVELOPER] In the remote setup Kyverno now always adds imagePullSecret for images in the remote registry. by @​matthias-horne [#14478]
  • [DEPENDENCY] The following dependencies have been updated:
    • registry.k8s.io/autoscaling/vpa-admission-controller from 1.5.1 to 1.6.0.
    • registry.k8s.io/autoscaling/vpa-recommender from 1.5.1 to 1.6.0.
    • registry.k8s.io/autoscaling/vpa-updater from 1.5.1 to 1.6.0. by @​gardener-ci-robot [#14036]
  • [DEPENDENCY] The following dependencies have been updated:
  • [DEPENDENCY] Istio charts and images are updated to v1.29.1 by @​axel7born [#14454]

... (truncated)

Commits
  • 0411619 release v1.140.0
  • e30f08a Enhance helper script for {Admin,Viewer}KubeconfigRequest (#14464)
  • e295fe7 Introduce SeedReconciliation alerts (#14441)
  • 52fcf66 Update module github.com/andybalholm/brotli to v1.2.1 (#14543)
  • 1ed5f7a Replace the ahmetb/gen-crd-api-reference-docs with elastic/crd-ref-docs (...
  • fdda0c2 Replace custom time interfaces with k8s.io/utils/clock (#14515)
  • e11998f Update quay.io/kiwigrid/k8s-sidecar Docker tag to v2.5.5 (#14480)
  • cf283e1 Remove backup and extensions configuration from gardenlet in remote s...
  • 3dcbdbd Update europe-docker.pkg.dev/gardener-project/releases/3rd/registry Docker ta...
  • a09a8d5 Update module github.com/distribution/distribution/v3 to v3.1.0 [SECURITY] (#...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added area/compliance Compliance related kind/enhancement Enhancement, improvement, extension labels Apr 15, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 15, 2026 07:53
@dependabot dependabot Bot added the area/compliance Compliance related label Apr 15, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 15, 2026 07:53
@dependabot dependabot Bot mentioned this pull request Apr 15, 2026
Closed
@gardener-prow
Copy link
Copy Markdown

gardener-prow Bot commented Apr 15, 2026

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign gagan16k for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@gardener-prow gardener-prow Bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Apr 15, 2026
@federated-github-access federated-github-access Bot added the needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. label Apr 15, 2026
@gardener-prow gardener-prow Bot added the cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. label Apr 15, 2026
@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented Apr 29, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

4 similar comments
@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented Apr 29, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented May 6, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented May 6, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented May 6, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

@gardener-prow gardener-prow Bot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label May 6, 2026
@gardener-prow
Copy link
Copy Markdown

gardener-prow Bot commented May 6, 2026

rebase

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@dependabot
Bump the gardener-dependencies group across 1 directory with 2 updates
1b4ee8a 
Bumps the gardener-dependencies group with 1 update in the / directory: [github.com/gardener/gardener](https://github.com/gardener/gardener).


Updates `github.com/gardener/gardener` from 1.139.1 to 1.141.1
- [Release notes](https://github.com/gardener/gardener/releases)
- [Commits](gardener/gardener@v1.139.1...v1.141.1)

Updates `github.com/gardener/gardener/pkg/apis` from 1.139.1 to 1.140.0
- [Release notes](https://github.com/gardener/gardener/releases)
- [Commits](gardener/gardener@v1.139.1...v1.140.0)

---
updated-dependencies:
- dependency-name: github.com/gardener/gardener
  dependency-version: 1.140.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gardener-dependencies
- dependency-name: github.com/gardener/gardener/pkg/apis
  dependency-version: 1.140.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gardener-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title Bump the gardener-dependencies group with 2 updates Bump the gardener-dependencies group across 1 directory with 2 updates May 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/go_modules/gardener-dependencies-dc62753d24 branch from 931c3b1 to 1b4ee8a Compare May 6, 2026 10:21
@gardener-prow gardener-prow Bot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels May 6, 2026
@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented May 6, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

2 similar comments
@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented May 6, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

@federated-github-access
Copy link
Copy Markdown
Contributor

federated-github-access Bot commented May 6, 2026

The PR needs to be labeled with ok-to-test by a maintainer to trigger the automated validation of the change

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

area/compliance Compliance related cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. kind/enhancement Enhancement, improvement, extension needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants