Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.<br>[View this repository on the Mend.io Web Portal](https://developer.mend.io/github/DevOpsHiveHQ/kustomize-plugin-merger).

## Config Migration Needed

 - [ ]  Select this checkbox to let Renovate create an automated Config Migration PR.

## Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

 - [ ] chore(deps): update codecov/codecov-action action to v6
 - [ ] chore(deps): update docker/login-action action to v4
 - [ ] chore(deps): update docker/setup-qemu-action action to v4
 - [ ] chore(deps): update github artifact actions to v7 (major)
 - [ ] chore(deps): update github/codeql-action action to v4
 - [ ] chore(deps): update golangci/golangci-lint-action action to v9
 - [ ] chore(deps): update googlecloudplatform/release-please-action action to v4
 - [ ] chore(deps): update goreleaser/goreleaser-action action to v7
 - [ ] fix(deps): update module github.com/knadh/koanf/parsers/yaml to v1
 - [ ] fix(deps): update module github.com/knadh/koanf/providers/file to v1
 - [ ] 🔐 **Create all awaiting schedule PRs at once** 🔐

## Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

 - [ ] [fix(deps): update all non-major dependencies](../pull/92) (`actions/cache`, `actions/checkout`, `actions/dependency-review-action`, `actions/setup-go`, `actions/upload-artifact`, `dario.cat/mergo`, `docker/login-action`, `docker/setup-qemu-action`, `github.com/knadh/koanf/v2`, `github.com/stretchr/testify`, `github/codeql-action`, `go`, `golangci/golangci-lint-action`, `k8s.io/apimachinery`, `k8s.io/kube-openapi`, `ossf/scorecard-action`, `renovate/renovate`, `sigs.k8s.io/kustomize/kyaml`, `sigstore/cosign-installer`, `step-security/harden-runner`, `ubuntu`)
 - [ ] [chore(deps): update actions/cache action to v5](../pull/93)
 - [ ] [chore(deps): update actions/checkout action to v6](../pull/94)
 - [ ] [chore(deps): update actions/setup-go action to v6](../pull/95)
 - [ ] **Click on this checkbox to rebase all open PRs at once**

## Detected Dependencies

<details><summary>dockerfile (1)</summary>
<blockquote>

<details><summary>Dockerfile (1)</summary>

 - `ubuntu latest@sha256:278628f08d4979fb9af9ead44277dbc9c92c2465922310916ad0c46ec9999295` → [Updates: `latest`]

</details>

</blockquote>
</details>

<details><summary>github-actions (7)</summary>
<blockquote>

<details><summary>.github/workflows/deps-renovate.yaml (2)</summary>

 - `actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683` → [Updates: `v6`, `v4`]
 - `renovate/renovate latest@sha256:213766a5c66a27813e589459ec282a16848f43bc3bd10b07b61a12eeacbe233f` → [Updates: `latest`]

</details>

<details><summary>.github/workflows/deps-review.yml (3)</summary>

 - `step-security/harden-runner v2.10.1@91182cccc01eb5e619899d80e4e971d6181294a7` → [Updates: `v2.16.1`]
 - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` → [Updates: `v4.3.1`, `v6.0.2`]
 - `actions/dependency-review-action v4.5.0@3b139cfc5fae8b618d3eae3675e383bb1769c019` → [Updates: `v4.9.0`]

</details>

<details><summary>.github/workflows/go-ci.yml (7)</summary>

 - `actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683` → [Updates: `v6`, `v4`]
 - `actions/setup-go v4@93397bea11091df50f3d7e59dc26a7711a8bcfbe` → [Updates: `v6`, `v4`]
 - `golangci/golangci-lint-action v6.1.1@971e284b6050e8a5849b72094c50ab08da042db8` → [Updates: `v6.5.2`, `v9.2.0`]
 - `codecov/codecov-action v3@ab904c41d6ece82784817410c45d8b8c02684457` → [Updates: `v6`]
 - `actions/cache v4.2.4@0400d5f644dc74513175e3cd8d07132dd4860809` → [Updates: `v4.3.0`, `v5.0.4`]
 - `actions/upload-artifact v4@ea165f8d65b6e75b540449e92b4886f43607fa02` → [Updates: `v7`]
 - `actions/upload-artifact v4@ea165f8d65b6e75b540449e92b4886f43607fa02` → [Updates: `v7`]

</details>

<details><summary>.github/workflows/go-pre-release.yml (1)</summary>

 - `GoogleCloudPlatform/release-please-action v3@db8f2c60ee802b3748b512940dde88eabd7b7e01` → [Updates: `v4`]

</details>

<details><summary>.github/workflows/sec-codeql.yml (6)</summary>

 - `actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683` → [Updates: `v6`, `v4`]
 - `actions/setup-go v4@93397bea11091df50f3d7e59dc26a7711a8bcfbe` → [Updates: `v6`, `v4`]
 - `actions/cache v4.2.4@0400d5f644dc74513175e3cd8d07132dd4860809` → [Updates: `v4.3.0`, `v5.0.4`]
 - `github/codeql-action v2@5b62e7a9f186342c830e01bc69a4626fd1573b6e` → [Updates: `v4`, `v2`]
 - `github/codeql-action v2@5b62e7a9f186342c830e01bc69a4626fd1573b6e` → [Updates: `v4`, `v2`]
 - `github/codeql-action v2@5b62e7a9f186342c830e01bc69a4626fd1573b6e` → [Updates: `v4`, `v2`]

</details>

<details><summary>.github/workflows/sec-scorecard.yml (4)</summary>

 - `actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683` → [Updates: `v4.3.1`, `v6.0.2`]
 - `ossf/scorecard-action v2.4.0@62b2cac7ed8198b15735ed49ab1e5cf35480ba46` → [Updates: `v2.4.3`]
 - `actions/upload-artifact v3.2.1@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5` → [Updates: `v3.2.2`, `v7.0.0`]
 - `github/codeql-action v2.27.4@5b62e7a9f186342c830e01bc69a4626fd1573b6e` → [Updates: `v2.28.1`, `v4.35.1`]

</details>

<details><summary>.github/workflows/tpl-packaging.yml (9)</summary>

 - `actions/checkout v4@11bd71901bbe5b1630ceea73d27597364c9af683` → [Updates: `v6`, `v4`]
 - `actions/setup-go v4@93397bea11091df50f3d7e59dc26a7711a8bcfbe` → [Updates: `v6`, `v4`]
 - `actions/cache v4.2.4@0400d5f644dc74513175e3cd8d07132dd4860809` → [Updates: `v4.3.0`, `v5.0.4`]
 - `sigstore/cosign-installer main` → [Updates: `main`]
 - `docker/login-action v3@9780b0c442fbb1117ed29e0efdff1e18412f7567` → [Updates: `v4`, `v3`]
 - `docker/setup-qemu-action v3@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf` → [Updates: `v4`, `v3`]
 - `goreleaser/goreleaser-action v5@5742e2a039330cbb23ebf35f046f814d4c6ff811` → [Updates: `v7`]
 - `actions/delete-package-versions v5.0.0@e5bc658cc4c965c472efe991f8beea3981499c55`
 - `actions/cache v4.2.4@0400d5f644dc74513175e3cd8d07132dd4860809` → [Updates: `v4.3.0`, `v5.0.4`]

</details>

</blockquote>
</details>

<details><summary>gomod (1)</summary>
<blockquote>

<details><summary>go.mod (10)</summary>

 - `go 1.22.7`
 - `go 1.23.3` → [Updates: `1.26.1`]
 - `dario.cat/mergo v1.0.1` → [Updates: `v1.0.2`]
 - `github.com/knadh/koanf/parsers/yaml v0.1.0` → [Updates: `v1.1.0`]
 - `github.com/knadh/koanf/providers/file v0.1.0` → [Updates: `v1.2.1`]
 - `github.com/knadh/koanf/v2 v2.1.2` → [Updates: `v2.3.4`]
 - `github.com/stretchr/testify v1.9.0` → [Updates: `v1.11.1`]
 - `k8s.io/apimachinery v0.31.2` → [Updates: `v0.35.3`]
 - `k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f@32ad38e42d3f` → [Updates: `v0.0.0-20260330154417-16be699c7b31`]
 - `sigs.k8s.io/kustomize/kyaml v0.18.1` → [Updates: `v0.21.1`]

</details>

</blockquote>
</details>

---

- [ ] Check this box to trigger a request for Renovate to run again on this repository

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dependency Dashboard #7

Config Migration Needed

Awaiting Schedule

Open

Detected Dependencies

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Dependency Dashboard #7

Description

Config Migration Needed

Awaiting Schedule

Open

Detected Dependencies

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions