Update google.golang.org/genproto/googleapis/rpc digest to 925bb5d#277
Conversation
Signed-off-by: red-hat-konflux-kflux-prd-rh02 <190377777+red-hat-konflux-kflux-prd-rh02[bot]@users.noreply.github.com>
|
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here. DetailsNeeds approval from an approver in each of these files:Approvers can indicate their approval by writing |
|
Hi @red-hat-konflux-kflux-prd-rh02[bot]. Thanks for your PR. I'm waiting for a openshift-hyperfleet member to verify that this patch is reasonable to test. If it is, they should reply with Regular contributors should join the org to skip this step. Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. DetailsInstructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
📝 WalkthroughWalkthroughSupply chain risk assessment: unverified pseudo-version bump of an indirect dependency, google.golang.org/genproto/googleapis/rpc, from v0.0.0-20260401024825-9d38bb4040a9 to v0.0.0-20260630182238-925bb5da69e7. No go.sum diff provided — checksum integrity cannot be confirmed here. Pseudo-versions are untagged commits; provenance and CVE status of the referenced commit are unverifiable from this diff alone. Confirm go.sum hash matches and check for known CVEs against google.golang.org/genproto before merge (CWE-1104: Use of Unmaintained Third Party Components; CWE-829: Inclusion of Functionality from Untrusted Control Sphere). Estimated code review effort: 1 (Trivial) | ~2 minutes Compact metadata: No exported/public API changes. Lines changed: +1/-1. Related issues: None referenced. Related PRs: None referenced. Suggested labels: dependencies, go.mod, supply-chain Suggested reviewers: Assign whoever owns dependency/security review for the API component. Poem: 🚥 Pre-merge checks | ✅ 11✅ Passed checks (11 passed)
✨ Finishing Touches📝 Generate docstrings
🧪 Generate unit tests (beta)
✨ Simplify code
Comment |
|
Closing — Go 1.26 bump merged (HYPERFLEET-1310). Renovate will recreate with proper go.sum on next run. |
This PR contains the following updates:
9d38bb4→925bb5dConfiguration
📅 Schedule: (UTC)
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
To execute skipped test pipelines write comment
/ok-to-test.Documentation
Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.