Bump the gomod-version group with 14 updates

[dependabot]

Bumps the gomod-version group with 14 updates:

Package	From	To
github.com/authzed/controller-idioms	0.9.1	0.10.0
github.com/cespare/xxhash/v2	2.2.0	2.3.0
github.com/evanphx/json-patch	5.7.0+incompatible	5.9.0+incompatible
github.com/go-logr/logr	1.3.0	1.4.2
github.com/jzelinskie/stringz	0.0.2	0.0.3
github.com/stretchr/testify	1.8.4	1.9.0
k8s.io/api	0.28.3	0.30.2
k8s.io/apimachinery	0.28.3	0.30.2
k8s.io/apiserver	0.28.3	0.30.2
k8s.io/cli-runtime	0.28.3	0.30.2
k8s.io/component-base	0.28.3	0.30.2
k8s.io/controller-manager	0.28.3	0.30.2
k8s.io/klog/v2	2.110.1	2.120.1
k8s.io/kubectl	0.28.3	0.30.2

Updates github.com/authzed/controller-idioms from 0.9.1 to 0.10.0

Release notes

Sourced from github.com/authzed/controller-idioms's releases.

v0.10.0

What's Changed

• Add non-panicing versions of ListerFor, IndexerFor by @​ecordell in authzed/controller-idioms#66

Full Changelog: authzed/controller-idioms@v0.9.1...v0.10.0

Commits

• 510bcee Merge pull request #66 from ecordell/must-star
• 596172c fix linter errors
• be1010f Add non-panicing versions of ListerFor, IndexerFor and prefix
• See full diff in compare view

Updates github.com/cespare/xxhash/v2 from 2.2.0 to 2.3.0

Commits

• 998dce2 Add initial support for custom seeds
• 21fc82b feat: add badger to the projects using this package on README.md
• 66b1409 feat: add ristretto to the Projects using this package on README.md
• fe2f6e8 Update Go versions for GH action
• See full diff in compare view

Updates github.com/evanphx/json-patch from 5.7.0+incompatible to 5.9.0+incompatible

Release notes

Sourced from github.com/evanphx/json-patch's releases.

v5.9.0

What's Changed

• Validate that the partialDoc is decoded correctly by @​evanphx in evanphx/json-patch#201
• Add option to control if the output is HTMLEscaped by @​evanphx in evanphx/json-patch#202

Full Changelog: evanphx/json-patch@v5.8.1...v5.9.0

Fix API breakage

This PR fixes Operation containing a reference to internal/json and breaking the ability to manually compose one. This restores that ability using a type alias.

Full Changelog: evanphx/json-patch@v5.8.0...v5.8.1

Blargh Phixs and Empathyprovements

This release fixes a few stray panics, addresses large number accuracy, and improves performance!

What's Changed

• Compare strings after decoding them to handle unicode correctly. Fixes #172 by @​evanphx in evanphx/json-patch#195
• Always use UseNumber() to avoid float64 lossyness by @​evanphx in evanphx/json-patch#194
• Handle null correctly when introduced by replace. Fixes #171 by @​evanphx in evanphx/json-patch#196
• Handle from="" more properly. Fixes #192 by @​evanphx in evanphx/json-patch#193
• Improve performance by @​evanphx in evanphx/json-patch#197

Full Changelog: evanphx/json-patch@v5.7.0...v5.8.0

Commits

• b7a4e4a Merge pull request #202 from evanphx/f-html-escape
• 7eef36c Guard using options to avoid a crash bug
• 1bcbd0f Merge pull request #201 from evanphx/b-null
• 9d7ba23 Add option to control if the output is HTMLEscaped
• 009bc56 Validate that the partialDoc is decoded correctly
• b82b685 Use a type alias for RawMessage to avoid breaking the public API of Operation
• 05c9526 Merge pull request #197 from evanphx/f-perf
• 7a438a6 Minor simplifications
• 2a122d1 More optimizations
• 174e1d7 Add MergePatch benchmark
• Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.3.0 to 1.4.2

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.2

What's Changed

• Fix lint: named but unused params by @​thockin in go-logr/logr#268
• Add a Go report card, fix lint by @​thockin in go-logr/logr#271
• funcr: Handle nested empty groups properly by @​thockin in go-logr/logr#274

Dependencies:

• build(deps): bump github/codeql-action from 3.22.11 to 3.22.12 by @​dependabot in go-logr/logr#254
• build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 by @​dependabot in go-logr/logr#256
• build(deps): bump actions/upload-artifact from 4.0.0 to 4.1.0 by @​dependabot in go-logr/logr#257
• build(deps): bump github/codeql-action from 3.23.0 to 3.23.1 by @​dependabot in go-logr/logr#259
• build(deps): bump actions/upload-artifact from 4.1.0 to 4.2.0 by @​dependabot in go-logr/logr#260
• build(deps): bump actions/upload-artifact from 4.2.0 to 4.3.0 by @​dependabot in go-logr/logr#263
• build(deps): bump github/codeql-action from 3.23.1 to 3.23.2 by @​dependabot in go-logr/logr#262
• build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by @​dependabot in go-logr/logr#264
• build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 by @​dependabot in go-logr/logr#266
• build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 by @​dependabot in go-logr/logr#267
• build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 by @​dependabot in go-logr/logr#270
• build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by @​dependabot in go-logr/logr#272
• build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by @​dependabot in go-logr/logr#275
• build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @​dependabot in go-logr/logr#276
• build(deps): bump github/codeql-action from 3.24.6 to 3.24.7 by @​dependabot in go-logr/logr#277
• build(deps): bump github/codeql-action from 3.24.7 to 3.24.9 by @​dependabot in go-logr/logr#278
• build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by @​dependabot in go-logr/logr#279
• build(deps): bump actions/upload-artifact from 4.3.1 to 4.3.2 by @​dependabot in go-logr/logr#280
• build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by @​dependabot in go-logr/logr#281
• build(deps): bump github/codeql-action from 3.24.10 to 3.25.1 by @​dependabot in go-logr/logr#282
• build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 by @​dependabot in go-logr/logr#283
• build(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 by @​dependabot in go-logr/logr#284
• build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by @​dependabot in go-logr/logr#285
• build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 by @​dependabot in go-logr/logr#286
• build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by @​dependabot in go-logr/logr#288
• build(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.3.0 by @​dependabot in go-logr/logr#289
• build(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.1 by @​dependabot in go-logr/logr#293
• build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @​dependabot in go-logr/logr#292
• build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @​dependabot in go-logr/logr#291
• build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @​dependabot in go-logr/logr#290
• build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @​dependabot in go-logr/logr#294
• build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @​dependabot in go-logr/logr#295

Full Changelog: go-logr/logr@v1.4.1...v1.4.2

v1.4.1

What's Changed

• slogr: fix unintended API break in v1.4.0 by @​pohly in go-logr/logr#253

Full Changelog: go-logr/logr@v1.4.0...v1.4.1

... (truncated)

Commits

• 1205f42 Merge pull request #295 from go-logr/dependabot/github_actions/actions/checko...
• ccedcbd Merge pull request #294 from go-logr/dependabot/github_actions/github/codeql-...
• bead577 build(deps): bump actions/checkout from 4.1.5 to 4.1.6
• a492d95 build(deps): bump github/codeql-action from 3.25.4 to 3.25.5
• 19ad07c build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3
• 1c97a21 build(deps): bump actions/checkout from 4.1.4 to 4.1.5
• f70c5b5 build(deps): bump github/codeql-action from 3.25.3 to 3.25.4
• 4ade8d3 build(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.1
• 88d98bd Merge pull request #289 from go-logr/dependabot/github_actions/golangci/golan...
• 432cd86 Merge pull request #288 from go-logr/dependabot/github_actions/actions/setup-...
• Additional commits viewable in compare view

Updates github.com/jzelinskie/stringz from 0.0.2 to 0.0.3

Release notes

Sourced from github.com/jzelinskie/stringz's releases.

v0.0.3

Full Changelog: jzelinskie/stringz@v0.0.2...v0.0.3

Commits

• 5903ada add LastCut
• See full diff in compare view

Updates github.com/stretchr/testify from 1.8.4 to 1.9.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.9.0

What's Changed

• Fix Go modules version by @​SuperQ in stretchr/testify#1394
• Document that require is not safe to call in created goroutines by @​programmer04 in stretchr/testify#1392
• Remove myself from MAINTAINERS.md by @​mvdkleijn in stretchr/testify#1367
• Correct spelling/grammar by @​echarrod in stretchr/testify#1389
• docs: Update URLs in README by @​davidjb in stretchr/testify#1349
• Update mockery link to Github Pages in README by @​LandonTClipp in stretchr/testify#1346
• docs: Fix typos in tests and comments by @​alexandear in stretchr/testify#1410
• CI: tests from go1.17 by @​SuperQ in stretchr/testify#1409
• Fix adding ? when no values passed by @​lesichkovm in stretchr/testify#1320
• codegen: use standard header for generated files by @​dolmen in stretchr/testify#1406
• mock: AssertExpectations log reason only on failure by @​hikyaru-suzuki in stretchr/testify#1360
• assert: fix flaky TestNeverTrue by @​dolmen in stretchr/testify#1417
• README: fix typos "set up" vs "setup" by @​ossan-dev in stretchr/testify#1428
• mock: move regexp compilation outside of Called by @​aud10slave in stretchr/testify#631
• assert: refactor internal func getLen() by @​dolmen in stretchr/testify#1445
• mock: deprecate type AnythingOfTypeArgument (#1434) by @​dolmen in stretchr/testify#1441
• Remove no longer needed assert.canConvert by @​alexandear in stretchr/testify#1470
• assert: ObjectsAreEqual: use time.Equal for time.Time types by @​tscales in stretchr/testify#1464
• Bump actions/checkout from 3 to 4 by @​dependabot in stretchr/testify#1466
• Bump actions/setup-go from 3.2.0 to 4.1.0 by @​dependabot in stretchr/testify#1451
• fix: make EventuallyWithT concurrency safe by @​czeslavo in stretchr/testify#1395
• assert: fix httpCode and HTTPBody occur panic when http.Handler read Body by @​hidu in stretchr/testify#1484
• assert.EqualExportedValues: fix handling of arrays by @​zrbecker in stretchr/testify#1473
• .github: use latest Go versions by @​kevinburkesegment in stretchr/testify#1489
• assert: Deprecate EqualExportedValues by @​HaraldNordgren in stretchr/testify#1488
• suite: refactor test assertions by @​alexandear in stretchr/testify#1474
• suite: fix SetupSubTest and TearDownSubTest execution order by @​linusbarth in stretchr/testify#1471
• docs: Fix deprecation comments for http package by @​alexandear in stretchr/testify#1335
• Add map support doc comments to Subset and NotSubset by @​jedevc in stretchr/testify#1306
• TestErrorIs/TestNotErrorIs: check error message contents by @​craig65535 in stretchr/testify#1435
• suite: fix subtest names (fix #1501) by @​dolmen in stretchr/testify#1504
• assert: improve unsafe.Pointer tests by @​dolmen in stretchr/testify#1505
• assert: simplify isNil implementation by @​dolmen in stretchr/testify#1506
• assert.InEpsilonSlice: fix expected/actual order and other improvements by @​dolmen in stretchr/testify#1483
• Fix dependency cycle with objx #1292 by @​dolmen in stretchr/testify#1453
• mock: refactor TestIsArgsEqual by @​dolmen in stretchr/testify#1444
• mock: optimize argument matching checks by @​dolmen in stretchr/testify#1416
• assert: fix TestEventuallyTimeout by @​dolmen in stretchr/testify#1412
• CI: add go 1.21 in GitHub Actions by @​dolmen in stretchr/testify#1450
• suite: fix recoverAndFailOnPanic to report test failure at the right location by @​dolmen in stretchr/testify#1502
• Update maintainers by @​brackendawson in stretchr/testify#1533
• assert: Fix EqualValues to handle overflow/underflow by @​arjunmahishi in stretchr/testify#1531
• assert: better formatting for Len() error by @​kevinburkesegment in stretchr/testify#1485
• Ensure AssertExpectations does not fail in skipped tests by @​ianrose14 in stretchr/testify#1331
• suite: fix deadlock in suite.Require()/Assert() by @​arjunmahishi in stretchr/testify#1535
• Revert "assert: ObjectsAreEqual: use time.Equal for time.Time type" by @​brackendawson in stretchr/testify#1537
• [chore] Add issue templates by @​arjunmahishi in stretchr/testify#1538
• Update the build status badge by @​brackendawson in stretchr/testify#1540

... (truncated)

Commits

• bb548d0 Merge pull request #1552 from stretchr/dependabot/go_modules/github.com/stret...
• 814075f build(deps): bump github.com/stretchr/objx from 0.5.1 to 0.5.2
• e045612 Merge pull request #1339 from bogdandrutu/uintptr
• 5b6926d Merge pull request #1385 from hslatman/not-implements
• 9f97d67 Merge pull request #1550 from stretchr/release-notes
• bcb0d3f Include the auto-release notes in releases
• fb770f8 Merge pull request #1247 from ccoVeille/typos
• 85d8bb6 fix typos in comments, tests and github templates
• e2741fa Merge pull request #1548 from arjunmahishi/msgAndArgs
• 6e59f20 http_assertions: assert that the msgAndArgs actually works in tests
• Additional commits viewable in compare view

Updates k8s.io/api from 0.28.3 to 0.30.2

Commits

• 118f81c Update dependencies to v0.30.2 tag
• 0fd470c Merge pull request #124702aojea/automated-cherry-pick-of-#124572
• a669f18 Merge pull request #124694 from pmalek/backport-124553-to-release-1.30
• 15001b5 fix(api): make LocalObjectReference.Name and HostAlias.IP required (#124553)
• d9a08c5 tag service.spec.TrafficDistribution field as alpha
• d014286 Merge remote-tracking branch 'origin/master' into release-1.30
• 581c1b8 Update x/net for CVE-2023-45288
• 35ca1f4 Merge pull request #123932 from pohly/dra-api-resource-model-rename
• b048bd8 Merge pull request #123909 from AkihiroSuda/fix-123906
• f06d24a dra api: NodeResourceModel -> ResourceModel
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.28.3 to 0.30.2

Commits

• 37988e5 Merge remote-tracking branch 'origin/master' into release-1.30
• c857a38 Update x/net for CVE-2023-45288
• 0407311 followup to allow special characters
• 25164f7 Merge pull request #123435 from tallclair/apparmor-ga
• cbfe0a1 Merge pull request #123758 from liggitt/protobump
• 21d26b6 Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0
• 0c29f84 Merge pull request #123385 from HirazawaUi/allow-special-characters
• 60d24f2 Merge pull request #123708 from p0lyn0mial/upstream-const-watchlist-bookmark-...
• 513d23a apimachinery/meta/types.go: define InitialEventsAnnotationKey const
• 67cb3a8 Merge pull request #123413 from seans3/tunneling-spdy-websockets
• Additional commits viewable in compare view

Updates k8s.io/apiserver from 0.28.3 to 0.30.2

Commits

• 3b2ed79 Update dependencies to v0.30.2 tag
• 7a3db50 Merge pull request #124676cici37/automated-cherry-pick-of-#124675
• a30c80f Merge pull request #124802seantywork/automated-cherry-pick-of-#124662
• 1ce5268 Updated & added visibility to apiserver x509 test certificates expiring this ...
• e025ab4 Adding the feature gates to fix cost for VAP and webhook matchConditions.
• 15c77ce Merge remote-tracking branch 'origin/master' into release-1.30
• 61d3001 Rename cluster to storage_cluster_id for apiserver_storage_size_bytes metric
• d97582e Merge remote-tracking branch 'origin/master' into release-1.30
• 2071c4d Update x/net for CVE-2023-45288
• 341f6df Merge pull request #123994 from serathius/undo-double-run-test-watch-semantics
• Additional commits viewable in compare view

Updates k8s.io/cli-runtime from 0.28.3 to 0.30.2

Commits

• a93d336 Update dependencies to v0.30.2 tag
• ceb92ba Merge remote-tracking branch 'origin/master' into release-1.30
• 60fc039 Update x/net for CVE-2023-45288
• c8b7f6a Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0
• eeedba7 Merge pull request #123529 from thockin/go-workspaces
• ba82cfd Fix up go.mod files after reviews
• 76839ee Remove old gengo detritus
• 0e03d76 Re-vendor latest kube-openapi and gengo/v2
• 5f372cd Generate go.work files
• c66e3bf Merge pull request #122569 from IvoGoman/wrap-nomatcherror
• Additional commits viewable in compare view

Updates k8s.io/component-base from 0.28.3 to 0.30.2

Commits

• 244709c Update dependencies to v0.30.2 tag
• 0ac84ef Merge remote-tracking branch 'origin/master' into release-1.30
• 2e27a0c Update x/net for CVE-2023-45288
• ecbd1b6 Merge pull request #123732 from serathius/parallel-featureflags
• b0a6e40 Merge pull request #123758 from liggitt/protobump
• 0e945e3 Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0
• a626a5c Fix SetFeatureGateDuringTest handling of Parallel tests
• 15d726c Merge pull request #123529 from thockin/go-workspaces
• f3d8039 Fix up go.mod files after reviews
• e3050ed Remove old gengo detritus
• Additional commits viewable in compare view

Updates k8s.io/controller-manager from 0.28.3 to 0.30.2

Commits

• 5eff4af Update dependencies to v0.30.2 tag
• 03b86ed Merge remote-tracking branch 'origin/master' into release-1.30
• abe9d11 Update x/net for CVE-2023-45288
• c9f34cd Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0
• 2207feb Merge pull request #123529 from thockin/go-workspaces
• 794eaf0 Merge pull request #123613 from aojea/revert_ccm
• f149691 Revert "[cloud-provider] require providerID to initialize node"
• 05eba06 Merge pull request #123331 from aojea/ccm_update
• 8135342 Fix up go.mod files after reviews
• 3c1067c Merge pull request #123562 from jpbetz/bump-cel-go-0_17_8
• Additional commits viewable in compare view

Updates k8s.io/klog/v2 from 2.110.1 to 2.120.1

Release notes

Sourced from k8s.io/klog/v2's releases.

Prepare klog release for Kubernetes v1.30 (Take 2)

What's Changed

• textlogger: allow caller to override stack unwinding by @​pohly in kubernetes/klog#397

Full Changelog: kubernetes/klog@v2.120.0...v2.120.1

Prepare klog release for Kubernetes v1.30 (Take 1)

What's Changed

• OWNERS: remove serathius, add mengjiao-liu, promote pohly by @​pohly in kubernetes/klog#394
• docs: clarify relationship between different features by @​pohly in kubernetes/klog#395
• Add SafePtr wrapper by @​kaisoz in kubernetes/klog#393
• logr v1.4.1 + SetSlogLogger by @​pohly in kubernetes/klog#396

New Contributors

• @​kaisoz made their first contribution in kubernetes/klog#393

Full Changelog: kubernetes/klog@v2.110.1...v2.120.0

Commits

• 007e661 textlogger: allow caller to override stack unwinding
• 2d08296 Merge pull request #396 from pohly/slog-helper
• e4deee8 slog: use main logr package instead of logr/slogr
• 5d1d2d5 add SetSlogLogger
• 39afdba dependencies: logr v1.4.1
• 2086216 Merge pull request #393 from kaisoz/add-safeptr
• 881fa0b Add SafePtr wrapper
• 8dd3f2e Merge pull request #395 from pohly/readme-update
• d3dd725 docs: clarify relationship between different features
• 761b630 Merge pull request #394 from pohly/owners-update
• Additional commits viewable in compare view

Updates k8s.io/kubectl from 0.28.3 to 0.30.2

Commits

• a70106d Update dependencies to v0.30.2 tag
• 7b8c263 Merge pull request #125081ardaguclu/automated-cherry-pick-of-#124883
• 596b0a6 kubectl create cronjobs: Manually set OwnerReferences
• 0fe334a Merge remote-tracking branch 'origin/master' into release-1.30
• 2050251 Update x/net for CVE-2023-45288
• f1fd500 Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0
• d982873 Merge pull request #122653 from ardaguclu/interactive-delete-e2e-test
• 90ec7ff Merge pull request #120346 from ardaguclu/custom-debug-profile
• 49f3ec9 Add e2e test for kubectl interactive delete
• 14d23cc Add custom debug profiles on top of static profiles
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: area/dependencies.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.