kubernetes-sigs/security-profiles-operator v0.10.1 on GitHub

Welcome to our glorious v0.10.1 release of the security-profiles-operator! The general usage and setup can be found in our documentation. 🥳 👯

To install the operator, run:

$ kubectl apply -f https://raw.githubusercontent.com/kubernetes-sigs/security-profiles-operator/v0.10.1/deploy/operator.yaml

You can also verify the container image signature by using cosign:

$ cosign verify \
    --certificate-identity krel-trust@k8s-releng-prod.iam.gserviceaccount.com \
    --certificate-oidc-issuer https://accounts.google.com \
    registry.k8s.io/security-profiles-operator/security-profiles-operator:v0.10.1

Beside the operator image, we now also ship spoc, the official Security Profiles Operator Command Line Interface! Binaries for amd64 and arm64 are attached to this release.

To verify the signature of spoc. download all release artifacts and run for amd64 (works in the same way for arm64:

$ cosign verify-blob \
    --certificate-identity sgrunert@redhat.com \
    --certificate-oidc-issuer https://github.com/login/oauth \
    --certificate spoc.amd64.cert \
    --signature spoc.amd64.sig \
    spoc.amd64

To verify the Bill of Materials (BOM) using the bom tool, download the artifacts into a build directory and run:

> bom validate -e spoc.spdx -d build/
+-------------------+-------+-----------------------------+----------------+
|     FILENAME      | VALID |           MESSAGE           | INVALID HASHES |
+-------------------+-------+-----------------------------+----------------+
| spoc.amd64        | OK    | File validated successfully | -              |
| spoc.amd64.cert   | OK    | File validated successfully | -              |
| spoc.amd64.sha512 | OK    | File validated successfully | -              |
| spoc.amd64.sig    | OK    | File validated successfully | -              |
| spoc.arm64        | OK    | File validated successfully | -              |
| spoc.arm64.cert   | OK    | File validated successfully | -              |
| spoc.arm64.sha512 | OK    | File validated successfully | -              |
| spoc.arm64.sig    | OK    | File validated successfully | -              |
+-------------------+-------+-----------------------------+----------------+

The .spdx file is signed as well and we also provide .sha512 sum files for the binaries.

Feel free to provide us any kind of feedback in the official Kubernetes Slack #security-profiles-operator channel.

Changes by Kind

Cleanup

Require go 1.25 to build. (#3025, @saschagrunert)
Update runc seccomp base profile to match version v1.3.1. (#2993, @saschagrunert)
Bump operator-sdk from v1.37.0 to v1.42.2 and opm from v1.37.0 to v1.65.0. (#3131, @saschagrunert)

Bug

Update installation-usage.md to clarify audit log location. (#3024, @BhargaviGudi)

Dependencies

Added

al.essio.dev/pkg/shellescape: v1.6.0
buf.build/gen/go/bufbuild/protovalidate/protocolbuffers/go: 80ab13b
buf.build/go/protovalidate: v1.1.3
buf.build/go/protoyaml: v0.6.0
cloud.google.com/go/pubsub/v2: v2.3.0
connectrpc.com/connect: v1.19.1
cyphar.com/go-pathrs: v0.2.4
github.com/AliyunContainerService/ack-ram-tool/pkg/ecsmetadata: v0.0.10
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/privatedns/armprivatedns: v1.3.0
github.com/DataDog/go-libddwaf/v4: v4.3.2
github.com/MakeNowJust/heredoc/v2: v2.0.1
github.com/Masterminds/semver: v1.5.0
github.com/Masterminds/sprig: v2.22.0
github.com/akamai/AkamaiOPEN-edgegrid-golang/v13: v13.0.0
github.com/alibabacloud-go/tea-utils/v2: v2.0.7
github.com/aws/aws-sdk-go-v2/service/ec2: v1.279.2
github.com/aws/aws-sdk-go-v2/service/signin: v1.0.8
github.com/benbjohnson/clock: v1.3.5
github.com/bitfield/gotestdox: v0.2.2
github.com/buildkite/go-buildkite/v4: v4.13.1
github.com/buildkite/test-engine-client: v1.6.0
github.com/buildkite/zstash: v0.8.0
github.com/bytecodealliance/wasmtime-go/v39: v39.0.1
github.com/cenkalti/backoff: 309aa71
github.com/clipperhouse/displaywidth: v0.11.0
github.com/clipperhouse/uax29/v2: v2.7.0
github.com/decred/dcrd/crypto/blake256: v1.1.0
github.com/dgryski/go-farm: 3414d57
github.com/dnephin/pflag: v1.0.7
github.com/go-openapi/swag/cmdutils: v0.25.5
github.com/go-openapi/swag/conv: v0.25.5
github.com/go-openapi/swag/fileutils: v0.25.5
github.com/go-openapi/swag/jsonname: v0.25.5
github.com/go-openapi/swag/jsonutils: v0.25.5
github.com/go-openapi/swag/jsonutils/fixtures_test: v0.25.5
github.com/go-openapi/swag/loading: v0.25.5
github.com/go-openapi/swag/mangling: v0.25.5
github.com/go-openapi/swag/netutils: v0.25.5
github.com/go-openapi/swag/stringutils: v0.25.5
github.com/go-openapi/swag/typeutils: v0.25.5
github.com/go-openapi/swag/yamlutils: v0.25.5
github.com/go-openapi/testify/enable/yaml/v2: v2.4.1
github.com/go-openapi/testify/v2: v2.4.1
github.com/go-ozzo/ozzo-validation/v4: v4.3.0
github.com/graph-gophers/graphql-go: v1.9.0
github.com/hashicorp/go-hmac-drbg: a6e5a68
github.com/hashicorp/go-secure-stdlib/cryptoutil: v0.1.1
github.com/hashicorp/go-version: v1.7.0
github.com/huandu/go-clone: v1.7.3
github.com/huandu/go-sqlbuilder: v1.39.1
github.com/lestrrat-go/dsig: v1.0.0
github.com/lestrrat-go/dsig-secp256k1: v1.0.0
github.com/lestrrat-go/httprc/v3: v3.0.4
github.com/lestrrat-go/jwx/v3: v3.0.13
github.com/lestrrat-go/option/v2: v2.0.0
github.com/mndrix/tap-go: 629fa40
github.com/moby/moby/api: v1.54.1
github.com/moby/moby/client: v0.4.0
github.com/mwitkow/go-proto-validators: v0.2.0
github.com/natefinch/atomic: v1.0.1
github.com/nrdcg/goacmedns: v0.2.0
github.com/oklog/ulid/v2: v2.1.1
github.com/olekukonko/cat: 50322a0
github.com/pborman/getopt: 7148bc3
github.com/prometheus/otlptranslator: v1.0.0
github.com/pseudomuto/protoc-gen-doc: v1.5.1
github.com/pseudomuto/protokit: v0.2.0
github.com/redis/go-redis/extra/rediscmd/v9: v9.5.3
github.com/redis/go-redis/extra/redisotel/v9: v9.5.3
github.com/saracen/zipextra: f1aa42d
github.com/sigstore/rekor-tiles/v2: v2.2.1
github.com/sigstore/timestamp-authority/v2: v2.0.6
github.com/theckman/httpforwarded: v0.4.0
github.com/valyala/fastjson: v1.6.10
github.com/wolfeidau/quickzip: v1.0.2
github.com/xeipuuv/gojsonschema: v1.2.0
go.opentelemetry.io/collector/featuregate: v1.31.0
go.opentelemetry.io/collector/internal/telemetry: v0.125.0
go.opentelemetry.io/contrib/bridges/otelzap: v0.10.0
go.opentelemetry.io/otel/exporters/prometheus: v0.62.0
go.opentelemetry.io/otel/log: v0.11.0
go.podman.io/common: v0.67.1
go.podman.io/image/v5: v5.39.2
go.podman.io/storage: v1.62.0
go.uber.org/ratelimit: v0.3.1
gotest.tools/gotestsum: v1.13.0
mvdan.cc/gofumpt: v0.9.2
sigs.k8s.io/structured-merge-diff/v6: v6.3.2

Changed

cel.dev/expr: v0.24.0 → v0.25.1
chainguard.dev/go-grpc-kit: v0.17.10 → v0.17.15
chainguard.dev/sdk: v0.1.32 → v0.1.45
cloud.google.com/go: v0.121.1 → v0.123.0
cloud.google.com/go/auth: v0.16.2 → v0.18.2
cloud.google.com/go/compute/metadata: v0.7.0 → v0.9.0
cloud.google.com/go/iam: v1.5.2 → v1.5.3
cloud.google.com/go/kms: v1.22.0 → v1.26.0
cloud.google.com/go/longrunning: v0.6.7 → v0.8.0
cloud.google.com/go/monitoring: v1.24.2 → v1.24.3
cloud.google.com/go/profiler: v0.4.2 → v0.4.3
cloud.google.com/go/pubsub: v1.49.0 → v1.50.1
cloud.google.com/go/security: v1.18.5 → v1.19.2
cloud.google.com/go/spanner: v1.82.0 → v1.87.0
cloud.google.com/go/storage: v1.55.0 → v1.59.2
cloud.google.com/go/trace: v1.11.6 → v1.11.3
cloud.google.com/go/translate: v1.12.5 → v1.10.3
cuelabs.dev/go/oci/ociregistry: 2c00c10 → 3adeb86
cuelang.org/go: v0.12.1 → v0.16.0
drjosh.dev/zzglob: v0.4.0 → v0.4.2
filippo.io/edwards25519: v1.1.0 → v1.2.0
github.com/AliyunContainerService/ack-ram-tool/pkg/credentials/provider: v0.14.0 → v0.20.0
github.com/Azure/azure-sdk-for-go/sdk/azcore: v1.18.0 → v1.21.0
github.com/Azure/azure-sdk-for-go/sdk/azidentity: v1.10.1 → v1.13.1
github.com/Azure/azure-sdk-for-go/sdk/internal: v1.11.1 → v1.11.2
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys: v1.3.1 → v1.4.0
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/internal: v1.1.1 → v1.2.0
github.com/Azure/azure-sdk-for-go/sdk/storage/azblob: v1.6.1 → v1.6.4
github.com/Azure/go-autorest/autorest: v0.11.29 → v0.11.30
github.com/Azure/go-autorest/autorest/adal: v0.9.23 → v0.9.24
github.com/Azure/go-autorest/autorest/azure/auth: v0.5.12 → v0.5.13
github.com/Azure/go-autorest/autorest/azure/cli: v0.4.6 → v0.4.7
github.com/Azure/go-autorest/autorest/date: v0.3.0 → v0.3.1
github.com/Azure/go-autorest/logger: v0.2.1 → v0.2.2
github.com/Azure/go-autorest/tracing: v0.6.0 → v0.6.1
github.com/AzureAD/microsoft-authentication-library-for-go: v1.4.2 → v1.7.0
github.com/DataDog/datadog-agent/comp/core/tagger/origindetection: v0.64.2 → v0.67.0
github.com/DataDog/datadog-agent/pkg/obfuscate: v0.64.2 → v0.67.0
github.com/DataDog/datadog-agent/pkg/proto: v0.64.2 → v0.67.0
github.com/DataDog/datadog-agent/pkg/remoteconfig/state: v0.64.2 → v0.69.0
github.com/DataDog/datadog-agent/pkg/trace: v0.64.2 → v0.67.0
github.com/DataDog/datadog-agent/pkg/util/log: v0.64.2 → v0.67.0
github.com/DataDog/datadog-agent/pkg/util/scrubber: v0.64.2 → v0.67.0
github.com/DataDog/datadog-agent/pkg/version: v0.64.2 → v0.67.0
github.com/DataDog/datadog-go/v5: v5.6.0 → v5.8.3
github.com/DataDog/dd-trace-go/v2: v2.0.1 → v2.3.0
github.com/DataDog/go-runtime-metrics-internal: 81009b9 → fdf1ef8
github.com/DataDog/go-sqllexer: v0.1.3 → v0.1.6
github.com/DataDog/opentelemetry-mapping-go/pkg/otlp/attributes: v0.26.0 → v0.27.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp: v1.29.0 → v1.31.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric: v0.53.0 → v0.55.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping: v0.53.0 → v0.55.0
github.com/Masterminds/semver/v3: v3.3.1 → v3.4.0
github.com/Venafi/vcert/v5: v5.8.0 → v5.12.3
github.com/alecthomas/units: b94a6e3 → 0f3dac3
github.com/alibabacloud-go/debug: v1.0.0 → v1.0.1
github.com/alibabacloud-go/tea: v1.2.1 → v1.4.0
github.com/aliyun/credentials-go: v1.3.2 → v1.4.11
github.com/avast/retry-go/v4: v4.6.1 → v4.7.0
github.com/aws/aws-sdk-go: v1.55.7 → v1.55.8
github.com/aws/aws-sdk-go-v2: v1.36.5 → v1.41.4
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream: v1.6.10 → v1.7.4
github.com/aws/aws-sdk-go-v2/config: v1.29.17 → v1.32.12
github.com/aws/aws-sdk-go-v2/credentials: v1.17.70 → v1.19.12
github.com/aws/aws-sdk-go-v2/feature/ec2/imds: v1.16.32 → v1.18.20
github.com/aws/aws-sdk-go-v2/feature/s3/manager: v1.17.10 → v1.20.19
github.com/aws/aws-sdk-go-v2/internal/configsources: v1.3.36 → v1.4.20
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2: v2.6.36 → v2.7.20
github.com/aws/aws-sdk-go-v2/internal/ini: v1.8.3 → v1.8.6
github.com/aws/aws-sdk-go-v2/internal/v4a: v1.3.34 → v1.4.17
github.com/aws/aws-sdk-go-v2/service/ecr: v1.40.3 → v1.55.4
github.com/aws/aws-sdk-go-v2/service/ecrpublic: v1.31.2 → v1.38.11
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding: v1.12.4 → v1.13.7
github.com/aws/aws-sdk-go-v2/service/internal/checksum: v1.7.2 → v1.9.8
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url: v1.12.17 → v1.13.20
github.com/aws/aws-sdk-go-v2/service/internal/s3shared: v1.18.15 → v1.19.17
github.com/aws/aws-sdk-go-v2/service/kms: v1.41.2 → v1.50.3
github.com/aws/aws-sdk-go-v2/service/route53: v1.44.0 → v1.62.2
github.com/aws/aws-sdk-go-v2/service/s3: v1.80.1 → v1.96.0
github.com/aws/aws-sdk-go-v2/service/sso: v1.25.5 → v1.30.13
github.com/aws/aws-sdk-go-v2/service/ssooidc: v1.30.3 → v1.35.17
github.com/aws/aws-sdk-go-v2/service/sts: v1.34.0 → v1.41.9
github.com/aws/smithy-go: v1.22.4 → v1.24.2
github.com/awslabs/amazon-ecr-credential-helper/ecr-login: v0.9.1 → v0.12.0
github.com/beevik/ntp: v1.4.3 → v1.5.0
github.com/brunoscheufler/aws-ecs-metadata-go: 67e37ae → b6b31c6
github.com/buildkite/agent/v3: v3.102.1 → v3.119.1
github.com/buildkite/go-pipeline: v0.14.0 → v0.16.0
github.com/buildkite/roko: v1.3.1 → v1.4.0
github.com/buildkite/shellwords: v1.0.0 → v1.0.1
github.com/cenkalti/backoff/v5: v5.0.2 → v5.0.3
github.com/cert-manager/cert-manager: v1.18.2 → v1.20.1
github.com/chainguard-dev/clog: v1.7.0 → v1.8.0
github.com/checkpoint-restore/checkpointctl: v1.3.0 → v1.4.0
github.com/cncf/udpa/go: c52dc94 → 269d4d4
github.com/cncf/xds/go: 2ac532f → ee656c7
github.com/containerd/console: v1.0.4 → v1.0.5
github.com/containerd/containerd/v2: v2.1.1 → v2.2.1
github.com/containerd/platforms: v1.0.0-rc.1 → v1.0.0-rc.2
github.com/containerd/stargz-snapshotter/estargz: v0.16.3 → v0.18.2
github.com/containernetworking/plugins: v1.7.1 → v1.8.0
github.com/coreos/go-oidc/v3: v3.14.1 → v3.17.0
github.com/coreos/go-systemd/v22: v22.5.0 → v22.7.0
github.com/creack/pty: v1.1.19 → v1.1.24
github.com/cyphar/filepath-securejoin: v0.4.1 → v0.6.1
github.com/danieljoos/wincred: v1.2.2 → v1.2.3
github.com/decred/dcrd/dcrec/secp256k1/v4: v4.4.0 → v4.4.1
github.com/dgraph-io/badger/v4: v4.7.0 → v4.9.1
github.com/dgraph-io/ristretto/v2: v2.2.0 → v2.4.0
github.com/digitalocean/godo: v1.125.0 → v1.176.0
github.com/digitorus/pkcs7: 3a137a8 → ffadbf3
github.com/docker/cli: v28.2.2 → v29.4.0
github.com/docker/docker: v28.3.2 → v28.5.1
github.com/docker/docker-credential-helpers: v0.9.3 → v0.9.5
github.com/docker/go-connections: v0.5.0 → v0.6.0
github.com/ebitengine/purego: v0.8.3 → v0.8.4
github.com/eggsampler/acme/v3: v3.6.0 → v3.6.2
github.com/emicklei/go-restful/v3: v3.12.1 → v3.13.0
github.com/emicklei/proto: v1.13.4 → v1.14.3
github.com/envoyproxy/go-control-plane: v0.13.4 → v0.14.0
github.com/envoyproxy/go-control-plane/envoy: v1.32.4 → v1.36.0
github.com/envoyproxy/protoc-gen-validate: v1.2.1 → v1.3.0
github.com/foxcpp/go-mockdns: v1.1.0 → v1.2.0
github.com/fxamacker/cbor/v2: v2.8.0 → v2.9.0
github.com/gabriel-vasile/mimetype: v1.4.8 → v1.4.13
github.com/go-asn1-ber/asn1-ber: v1.5.6 → 2923003
github.com/go-chi/chi/v5: v5.2.2 → v5.2.5
github.com/go-jose/go-jose/v4: v4.1.1 → v4.1.4
github.com/go-ldap/ldap/v3: v3.4.8 → v3.4.12
github.com/go-openapi/analysis: v0.23.0 → v0.24.3
github.com/go-openapi/errors: v0.22.1 → v0.22.7
github.com/go-openapi/jsonpointer: v0.21.0 → v0.22.5
github.com/go-openapi/jsonreference: v0.21.0 → v0.21.5
github.com/go-openapi/loads: v0.22.0 → v0.23.3
github.com/go-openapi/runtime: v0.28.0 → v0.29.3
github.com/go-openapi/spec: v0.21.0 → v0.22.4
github.com/go-openapi/strfmt: v0.23.0 → v0.26.1
github.com/go-openapi/swag: v0.23.1 → v0.25.5
github.com/go-openapi/validate: v0.24.0 → v0.25.2
github.com/go-piv/piv-go/v2: v2.3.0 → v2.5.0
github.com/go-playground/validator/v10: v10.26.0 → v10.30.2
github.com/go-quicktest/qt: v1.101.0 → c6c8733
github.com/go-sql-driver/mysql: v1.9.2 → v1.9.3
github.com/go-viper/mapstructure/v2: v2.3.0 → v2.5.0
github.com/goccy/go-json: v0.10.3 → v0.10.5
github.com/godbus/dbus/v5: v5.1.0 → v5.2.2
github.com/gofrs/flock: v0.12.1 → v0.13.0
github.com/golang-jwt/jwt/v5: v5.2.2 → v5.3.1
github.com/golang/snappy: v0.0.4 → v1.0.0
github.com/google/cel-go: v0.23.2 → v0.27.0
github.com/google/certificate-transparency-go: v1.3.2 → v1.3.3
github.com/google/flatbuffers: v25.2.10 → v25.12.19
github.com/google/gnostic-models: v0.6.9 → v0.7.1
github.com/google/go-containerregistry: v0.20.6 → v0.21.5
github.com/google/go-querystring: v1.1.0 → v1.2.0
github.com/google/pprof: 27863c8 → f64d9cf
github.com/google/rpmpack: v0.6.0 → v0.7.1
github.com/googleapis/enterprise-certificate-proxy: v0.3.6 → v0.3.14
github.com/googleapis/gax-go/v2: v2.14.2 → v2.19.0
github.com/grpc-ecosystem/go-grpc-middleware/v2: v2.3.2 → v2.3.3
github.com/grpc-ecosystem/grpc-gateway/v2: v2.27.1 → v2.28.0
github.com/hashicorp/hcl: 5 → 7
github.com/hashicorp/vault/api: v1.16.0 → v1.22.0
github.com/hashicorp/vault/sdk: v0.14.0 → v0.23.0
github.com/in-toto/in-toto-golang: v0.9.0 → v0.10.0
github.com/jackc/pgx/v5: v5.7.5 → v5.8.0
github.com/jedisct1/go-minisign: 661be99 → d2f9f49
github.com/klauspost/compress: v1.18.0 → v1.18.5
github.com/lestrrat-go/blackmagic: v1.0.3 → v1.0.4
github.com/letsencrypt/borp: 6cc6ce5 → 89c6927
github.com/letsencrypt/boulder: de9c061 → v0.20260303.0
github.com/letsencrypt/challtestsrv: v1.2.1 → v1.4.2
github.com/lib/pq: v1.10.9 → v1.11.2
github.com/mailru/easyjson: v0.9.0 → v0.9.1
github.com/mattn/go-runewidth: v0.0.16 → v0.0.20
github.com/mattn/go-sqlite3: v1.14.28 → v1.14.32
github.com/matttproud/golang_protobuf_extensions: v1.0.4 → v1.0.1
github.com/maxbrunsfeld/counterfeiter/v6: v6.11.3 → v6.12.2
github.com/miekg/dns: v1.1.62 → v1.1.72
github.com/miekg/pkcs11: v1.1.1 → v1.1.2
github.com/mistifyio/go-zfs/v3: v3.0.1 → v3.1.0
github.com/modern-go/reflect2: v1.0.2 → 35a7c28
github.com/montanaflynn/stats: 1bf9dbc → v0.7.0
github.com/olekukonko/errors: v1.1.0 → v1.2.0
github.com/olekukonko/ll: v0.0.9 → v0.1.7
github.com/olekukonko/tablewriter: v1.0.9 → v1.1.4
github.com/onsi/ginkgo/v2: v2.23.4 → v2.28.0
github.com/onsi/gomega: v1.37.0 → v1.39.1
github.com/open-policy-agent/opa: v1.6.0 → v1.14.0
github.com/opencontainers/cgroups: v0.0.4 → v0.0.6
github.com/opencontainers/runc: v1.3.0 → v1.4.2
github.com/opencontainers/runtime-spec: v1.2.1 → v1.3.0
github.com/opencontainers/runtime-tools: 0ea5ed0 → edf4cb3
github.com/opencontainers/selinux: v1.12.0 → v1.13.1
github.com/openshift/api: c1fdeb0 → fa4ca2f
github.com/proglottis/gpgme: v0.1.4 → v0.1.5
github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring: v0.84.1 → v0.90.1
github.com/prometheus/client_golang: v1.23.0 → v1.23.2
github.com/prometheus/common: v0.65.0 → v0.67.5
github.com/prometheus/procfs: v0.16.1 → v0.20.1
github.com/protocolbuffers/txtpbfmt: 20d2c9e → a481f6a
github.com/rcrowley/go-metrics: cf1acfc → 65e299d
github.com/redis/go-redis/v9: v9.7.3 → v9.17.2
github.com/sagikazarmark/locafero: v0.7.0 → v0.12.0
github.com/secure-systems-lab/go-securesystemslib: v0.9.0 → v0.10.0
github.com/segmentio/asm: v1.2.0 → v1.2.1
github.com/sergi/go-diff: v1.3.1 → v1.4.0
github.com/shirou/gopsutil/v4: v4.25.3 → v4.25.8
github.com/sigstore/cosign/v2: v2.5.3 → v2.6.3
github.com/sigstore/fulcio: v1.7.1 → v1.8.5
github.com/sigstore/rekor: v1.3.10 → v1.5.0
github.com/sigstore/sigstore: v1.9.5 → v1.10.5
github.com/sigstore/sigstore-go: v1.1.0 → v1.1.4
github.com/sigstore/sigstore/pkg/signature/kms/aws: v1.9.5 → v1.10.5
github.com/sigstore/sigstore/pkg/signature/kms/azure: v1.9.5 → v1.10.5
github.com/sigstore/sigstore/pkg/signature/kms/gcp: v1.9.5 → v1.10.5
github.com/sigstore/sigstore/pkg/signature/kms/hashivault: v1.9.5 → v1.10.5
github.com/sirupsen/logrus: v1.9.3 → v1.9.4
github.com/skeema/knownhosts: v1.3.1 → v1.3.2
github.com/sourcegraph/conc: v0.3.0 → 5f936ab
github.com/spf13/afero: v1.12.0 → v1.15.0
github.com/spf13/cast: v1.7.1 → v1.10.0
github.com/spf13/cobra: v1.9.1 → v1.10.2
github.com/spf13/pflag: v1.0.6 → v1.0.10
github.com/spf13/viper: v1.20.1 → v1.21.0
github.com/spiffe/go-spiffe/v2: v2.5.0 → v2.6.0
github.com/stoewer/go-strcase: v1.3.0 → v1.3.1
github.com/stretchr/testify: v1.10.0 → v1.11.1
github.com/sylabs/sif/v2: v2.21.1 → v2.22.0
github.com/tetratelabs/wazero: v1.6.0 → v1.11.0
github.com/theupdateframework/go-tuf/v2: v2.1.1 → v2.4.1
github.com/tink-crypto/tink-go-hcvault/v2: v2.3.0 → v2.4.0
github.com/tink-crypto/tink-go/v2: v2.4.0 → v2.6.0
github.com/transparency-dev/formats: bb8ad4d → v0.1.0
github.com/transparency-dev/tessera: 8ee4e93 → v1.0.2
github.com/ulikunitz/xz: v0.5.12 → v0.5.15
github.com/vbatts/tar-split: v0.12.1 → v0.12.2
github.com/vektah/gqlparser/v2: v2.5.28 → v2.5.32
github.com/weppos/publicsuffix-go: 5f1d033 → v0.50.2
github.com/xrash/smetrics: 686a1a2 → 55b8f29
github.com/youmark/pkcs8: 3c2c787 → a2c0da2
github.com/yuin/goldmark: v1.7.8 → v1.4.13
github.com/zalando/go-keyring: v0.2.3 → v0.2.6
github.com/zmap/zcrypto: a1f61fb → 03c45d0
github.com/zmap/zlint/v3: v3.6.0 → v3.6.6
gitlab.com/gitlab-org/api/client-go: v0.134.0 → v1.46.0
go.etcd.io/bbolt: v1.4.2 → v1.4.3
go.etcd.io/etcd/api/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/client/pkg/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/client/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/etcdctl/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/etcdutl/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/pkg/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/server/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/tests/v3: v3.6.0 → v3.6.8
go.etcd.io/etcd/v3: v3.6.0 → v3.6.8
go.mongodb.org/mongo-driver: v1.14.0 → v1.17.6
go.opentelemetry.io/auto/sdk: v1.1.0 → v1.2.1
go.opentelemetry.io/collector/component: v1.27.0 → v1.31.0
go.opentelemetry.io/collector/pdata: v1.27.0 → v1.31.0
go.opentelemetry.io/collector/semconv: v0.123.0 → v0.125.0
go.opentelemetry.io/contrib/detectors/gcp: v1.36.0 → v1.40.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc: v0.61.0 → v0.66.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp: v0.61.0 → v0.66.0
go.opentelemetry.io/contrib/propagators/aws: v1.37.0 → v1.40.0
go.opentelemetry.io/contrib/propagators/b3: v1.37.0 → v1.40.0
go.opentelemetry.io/contrib/propagators/jaeger: v1.37.0 → v1.40.0
go.opentelemetry.io/contrib/propagators/ot: v1.37.0 → v1.40.0
go.opentelemetry.io/otel: v1.37.0 → v1.43.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace: v1.37.0 → v1.41.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc: v1.37.0 → v1.41.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp: v1.37.0 → v1.40.0
go.opentelemetry.io/otel/metric: v1.37.0 → v1.43.0
go.opentelemetry.io/otel/sdk: v1.37.0 → v1.43.0
go.opentelemetry.io/otel/sdk/metric: v1.37.0 → v1.43.0
go.opentelemetry.io/otel/trace: v1.37.0 → v1.43.0
go.opentelemetry.io/proto/otlp: v1.7.0 → v1.9.0
go.step.sm/crypto: v0.67.0 → v0.77.2
go.uber.org/mock: v0.5.2 → v0.6.0
go.uber.org/zap: v1.27.0 → v1.27.1
go.yaml.in/yaml/v2: v2.4.2 → v2.4.4
go.yaml.in/yaml/v3: v3.0.3 → v3.0.4
goa.design/goa/v3: v3.20.1 → v3.23.4
golang.org/x/crypto: v0.41.0 → v0.50.0
golang.org/x/exp: 7e4ce0a → 3dfff04
golang.org/x/lint: 6edffad → d0100b6
golang.org/x/mod: v0.27.0 → v0.35.0
golang.org/x/net: v0.43.0 → v0.53.0
golang.org/x/oauth2: v0.30.0 → v0.36.0
golang.org/x/sync: v0.16.0 → v0.20.0
golang.org/x/sys: v0.35.0 → v0.43.0
golang.org/x/telemetry: 8d8967a → be6f6cb
golang.org/x/term: v0.34.0 → v0.42.0
golang.org/x/text: v0.28.0 → v0.36.0
golang.org/x/time: v0.12.0 → v0.15.0
golang.org/x/tools: v0.35.0 → v0.44.0
golang.org/x/tools/go/expect: v0.1.0-deprecated → v0.1.1-deprecated
golang.org/x/xerrors: 93cc26a → 7835f81
gonum.org/v1/gonum: v0.16.0 → v0.17.0
google.golang.org/api: v0.241.0 → v0.272.0
google.golang.org/genproto: f936aa4 → 0b37fe3
google.golang.org/genproto/googleapis/api: 8d1bb00 → 0b37fe3
google.golang.org/genproto/googleapis/bytestream: 513f239 → 84a4fc4
google.golang.org/genproto/googleapis/rpc: 8d1bb00 → d00831a
google.golang.org/grpc: v1.75.0 → v1.80.0
google.golang.org/grpc/cmd/protoc-gen-go-grpc: v1.5.1 → v1.6.1
google.golang.org/grpc/examples: 3775f63 → b368379
google.golang.org/protobuf: v1.36.7 → v1.36.11
gopkg.in/DataDog/dd-trace-go.v1: v1.74.2 → v1.74.8
gopkg.in/evanphx/json-patch.v4: v4.12.0 → v4.13.0
gopkg.in/ini.v1: v1.67.0 → v1.67.1
honnef.co/go/tools: v0.1.3 → ea95bdf
k8s.io/api: v0.33.4 → v0.35.3
k8s.io/apiextensions-apiserver: v0.33.2 → v0.35.2
k8s.io/apimachinery: v0.33.4 → v0.35.3
k8s.io/apiserver: v0.33.2 → v0.35.2
k8s.io/cli-runtime: v0.33.4 → v0.35.3
k8s.io/client-go: v0.33.4 → v0.35.3
k8s.io/code-generator: v0.33.2 → v0.35.2
k8s.io/component-base: v0.33.2 → v0.35.2
k8s.io/gengo/v2: 1244d31 → 5ee0d03
k8s.io/klog/v2: v2.130.1 → v2.140.0
k8s.io/kms: v0.33.2 → v0.35.2
k8s.io/kube-aggregator: v0.31.1 → v0.35.2
k8s.io/kube-openapi: c8a335a → 43fb72c
k8s.io/utils: 4c0f3b2 → b8788ab
sigs.k8s.io/apiserver-network-proxy/konnectivity-client: v0.31.2 → v0.34.0
sigs.k8s.io/controller-runtime: v0.21.0 → v0.23.3
sigs.k8s.io/controller-tools: v0.18.0 → v0.20.1
sigs.k8s.io/gateway-api: v1.1.0 → v1.5.0
sigs.k8s.io/json: cfa47c3 → 2d32026
sigs.k8s.io/kustomize/api: v0.19.0 → v0.20.1
sigs.k8s.io/kustomize/kyaml: v0.19.0 → v0.20.1
sigs.k8s.io/release-utils: v0.12.1 → v0.12.4
software.sslmate.com/src/go-pkcs12: v0.5.0 → v0.7.0

Removed

cloud.google.com/go/accessapproval: v1.8.6
cloud.google.com/go/accesscontextmanager: v1.9.6
cloud.google.com/go/aiplatform: v1.85.0
cloud.google.com/go/analytics: v0.28.0
cloud.google.com/go/apigateway: v1.7.6
cloud.google.com/go/apigeeconnect: v1.7.6
cloud.google.com/go/apigeeregistry: v0.9.6
cloud.google.com/go/apikeys: v0.6.0
cloud.google.com/go/appengine: v1.9.6
cloud.google.com/go/area120: v0.9.6
cloud.google.com/go/artifactregistry: v1.17.1
cloud.google.com/go/asset: v1.21.0
cloud.google.com/go/assuredworkloads: v1.12.6
cloud.google.com/go/automl: v1.14.7
cloud.google.com/go/baremetalsolution: v1.3.6
cloud.google.com/go/batch: v1.12.2
cloud.google.com/go/beyondcorp: v1.1.6
cloud.google.com/go/bigquery: v1.67.0
cloud.google.com/go/bigtable: v1.37.0
cloud.google.com/go/billing: v1.20.4
cloud.google.com/go/binaryauthorization: v1.9.5
cloud.google.com/go/certificatemanager: v1.9.5
cloud.google.com/go/channel: v1.19.5
cloud.google.com/go/cloudbuild: v1.22.2
cloud.google.com/go/clouddms: v1.8.7
cloud.google.com/go/cloudtasks: v1.13.6
cloud.google.com/go/compute: v1.37.0
cloud.google.com/go/contactcenterinsights: v1.17.3
cloud.google.com/go/container: v1.42.4
cloud.google.com/go/containeranalysis: v0.14.1
cloud.google.com/go/datacatalog: v1.26.0
cloud.google.com/go/dataflow: v0.10.6
cloud.google.com/go/dataform: v0.11.2
cloud.google.com/go/datafusion: v1.8.6
cloud.google.com/go/datalabeling: v0.9.6
cloud.google.com/go/dataplex: v1.25.2
cloud.google.com/go/dataproc: v1.12.0
cloud.google.com/go/dataproc/v2: v2.11.2
cloud.google.com/go/dataqna: v0.9.6
cloud.google.com/go/datastore: v1.20.0
cloud.google.com/go/datastream: v1.14.1
cloud.google.com/go/deploy: v1.27.1
cloud.google.com/go/dialogflow: v1.68.2
cloud.google.com/go/dlp: v1.22.1
cloud.google.com/go/documentai: v1.37.0
cloud.google.com/go/domains: v0.10.6
cloud.google.com/go/edgecontainer: v1.4.3
cloud.google.com/go/errorreporting: v0.3.2
cloud.google.com/go/essentialcontacts: v1.7.6
cloud.google.com/go/eventarc: v1.15.5
cloud.google.com/go/filestore: v1.10.2
cloud.google.com/go/firestore: v1.18.0
cloud.google.com/go/functions: v1.19.6
cloud.google.com/go/gaming: v1.9.0
cloud.google.com/go/gkebackup: v1.7.0
cloud.google.com/go/gkeconnect: v0.12.4
cloud.google.com/go/gkehub: v0.15.6
cloud.google.com/go/gkemulticloud: v1.5.3
cloud.google.com/go/grafeas: v0.2.0
cloud.google.com/go/gsuiteaddons: v1.7.7
cloud.google.com/go/iap: v1.11.1
cloud.google.com/go/ids: v1.5.6
cloud.google.com/go/iot: v1.8.6
cloud.google.com/go/language: v1.14.5
cloud.google.com/go/lifesciences: v0.10.6
cloud.google.com/go/logging: v1.13.0
cloud.google.com/go/managedidentities: v1.7.6
cloud.google.com/go/maps: v1.20.4
cloud.google.com/go/mediatranslation: v0.9.6
cloud.google.com/go/memcache: v1.11.6
cloud.google.com/go/metastore: v1.14.6
cloud.google.com/go/networkconnectivity: v1.17.1
cloud.google.com/go/networkmanagement: v1.19.1
cloud.google.com/go/networksecurity: v0.10.6
cloud.google.com/go/notebooks: v1.12.6
cloud.google.com/go/optimization: v1.7.6
cloud.google.com/go/orchestration: v1.11.9
cloud.google.com/go/orgpolicy: v1.15.0
cloud.google.com/go/osconfig: v1.14.5
cloud.google.com/go/oslogin: v1.14.6
cloud.google.com/go/phishingprotection: v0.9.6
cloud.google.com/go/policytroubleshooter: v1.11.6
cloud.google.com/go/privatecatalog: v0.10.7
cloud.google.com/go/pubsublite: v1.8.2
cloud.google.com/go/recaptchaenterprise: v1.3.1
cloud.google.com/go/recaptchaenterprise/v2: v2.20.4
cloud.google.com/go/recommendationengine: v0.9.6
cloud.google.com/go/recommender: v1.13.5
cloud.google.com/go/redis: v1.18.2
cloud.google.com/go/resourcemanager: v1.10.6
cloud.google.com/go/resourcesettings: v1.8.3
cloud.google.com/go/retail: v1.20.0
cloud.google.com/go/run: v1.9.3
cloud.google.com/go/scheduler: v1.11.7
cloud.google.com/go/secretmanager: v1.14.7
cloud.google.com/go/securitycenter: v1.36.2
cloud.google.com/go/servicecontrol: v1.11.1
cloud.google.com/go/servicedirectory: v1.12.6
cloud.google.com/go/servicemanagement: v1.8.0
cloud.google.com/go/serviceusage: v1.6.0
cloud.google.com/go/shell: v1.8.6
cloud.google.com/go/speech: v1.27.1
cloud.google.com/go/storagetransfer: v1.12.4
cloud.google.com/go/talent: v1.8.3
cloud.google.com/go/texttospeech: v1.12.1
cloud.google.com/go/tpu: v1.8.3
cloud.google.com/go/video: v1.23.5
cloud.google.com/go/videointelligence: v1.12.6
cloud.google.com/go/vision: v1.2.0
cloud.google.com/go/vision/v2: v2.9.5
cloud.google.com/go/vmmigration: v1.8.6
cloud.google.com/go/vmwareengine: v1.3.5
cloud.google.com/go/vpcaccess: v1.8.6
cloud.google.com/go/webrisk: v1.11.1
cloud.google.com/go/websecurityscanner: v1.7.6
cloud.google.com/go/workflows: v1.14.2
dmitri.shuralyov.com/gpu/mtl: 666a987
gioui.org: 57750fc
git.sr.ht/~sbinet/gg: v0.3.1
github.com/BurntSushi/xgb: 27f1227
github.com/DataDog/appsec-internal-go: v1.11.2
github.com/DataDog/go-libddwaf/v3: v3.5.4
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/trace: v1.28.0
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/cloudmock: v0.53.0
github.com/JohnCGriffin/overflow: 46fa312
github.com/Microsoft/hcsshim: v0.13.0
github.com/OneOfOne/xxhash: v1.2.2
github.com/RobinUS2/golang-moving-average: v1.0.0
github.com/ahmetb/gen-crd-api-reference-docs: v0.3.0
github.com/ajstarks/deck: 30c9fc6
github.com/ajstarks/deck/generate: c3f852c
github.com/ajstarks/svgo: 1546f12
github.com/akamai/AkamaiOPEN-edgegrid-golang: v1.2.2
github.com/andybalholm/brotli: v1.0.4
github.com/apache/arrow/go/v10: v10.0.1
github.com/apache/arrow/go/v11: v11.0.0
github.com/apache/thrift: v0.16.0
github.com/boombuler/barcode: v1.0.1
github.com/bytecodealliance/wasmtime-go/v3: v3.0.2
github.com/cespare/xxhash: v1.1.0
github.com/checkpoint-restore/go-criu/v6: v6.3.0
github.com/containerd/cgroups/v3: v3.0.5
github.com/containers/common: v0.64.1
github.com/containers/image/v5: v5.36.1
github.com/containers/storage: v1.59.1
github.com/cpu/goacmedns: v0.1.1
github.com/docopt/docopt-go: ee0de3b
github.com/eapache/queue/v2: 75960ed
github.com/fogleman/gg: v1.3.0
github.com/gdamore/encoding: v1.0.1
github.com/gdamore/tcell/v2: v2.8.1
github.com/ghodss/yaml: v1.0.0
github.com/globocom/go-buffer: v1.2.2
github.com/go-fonts/dejavu: v0.1.0
github.com/go-fonts/latin-modern: v0.2.0
github.com/go-fonts/liberation: v0.2.0
github.com/go-fonts/stix: v0.1.0
github.com/go-gl/glfw: e6da0ac
github.com/go-gl/glfw/v3.3/glfw: 6f7a984
github.com/go-latex/latex: c0d11ff
github.com/go-pdf/fpdf: v0.6.0
github.com/golang/freetype: e2365df
github.com/google/martian: v2.1.0
github.com/google/martian/v3: v3.3.3
github.com/google/renameio: v0.1.0
github.com/googleapis/go-type-adapters: v1.0.0
github.com/googleapis/google-cloud-go-testing: bcd43fb
github.com/grpc-ecosystem/grpc-gateway: v1.16.0
github.com/hashicorp/golang-lru: v0.5.1
github.com/iancoleman/strcase: v0.3.0
github.com/jstemmer/go-junit-report: v0.9.1
github.com/jung-kurt/gofpdf: 24315ac
github.com/kisielk/errcheck: v1.5.0
github.com/kisielk/gotool: v1.0.0
github.com/klauspost/asmfmt: v1.3.2
github.com/klauspost/cpuid/v2: v2.0.9
github.com/lucasb-eyer/go-colorful: v1.2.0
github.com/lyft/protoc-gen-star: v0.6.1
github.com/lyft/protoc-gen-star/v2: 496ad1a
github.com/mattn/go-zglob: v0.0.6
github.com/minio/asm2plan9s: cdd7644
github.com/minio/c2goasm: 36a3d3b
github.com/moby/sys/atomicwriter: v0.1.0
github.com/morikuni/aec: v1.0.0
github.com/patrickmn/go-cache: v2.1.0
github.com/phpdave11/gofpdf: v1.4.2
github.com/phpdave11/gofpdi: v1.0.13
github.com/pierrec/lz4/v4: v4.1.15
github.com/pkg/diff: 20ebb0f
github.com/remyoudompheng/bigfft: eec4a21
github.com/rivo/tview: b0a7293
github.com/ruudk/golang-pdf417: a7e3863
github.com/sagikazarmark/slog-shim: v0.1.0
github.com/sclevine/agouti: v3.0.0
github.com/segmentio/ksuid: v1.0.4
github.com/sigstore/rekor-tiles: 98cd4a7
github.com/sigstore/timestamp-authority: v1.2.8
github.com/skratchdot/open-golang: eef8423
github.com/spaolacci/murmur3: f09979e
github.com/xdg-go/pbkdf2: v1.0.0
github.com/xdg-go/scram: v1.1.2
github.com/xdg-go/stringprep: v1.0.4
github.com/zeebo/assert: v1.3.0
github.com/zeebo/errs: v1.4.0
github.com/zeebo/xxh3: v1.0.2
go.etcd.io/etcd/client/v2: v2.305.21
go.etcd.io/etcd/raft/v3: v3.5.21
go.opentelemetry.io/collector/pdata/pprofile: v0.121.0
go.opentelemetry.io/contrib/detectors/aws/ec2: v1.36.0
go.opentelemetry.io/contrib/detectors/aws/ecs: v1.36.0
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc: v1.36.0
go.opentelemetry.io/otel/exporters/stdout/stdoutmetric: v1.36.0
golang.org/x/image: 723b81c
golang.org/x/mobile: d2bd2a2
gonum.org/v1/netlib: 8cb4219
gonum.org/v1/plot: v0.10.1
gopkg.in/errgo.v2: v2.1.0
k8s.io/gengo: 9cce18d
k8s.io/klog: v0.2.0
lukechampine.com/uint128: v1.2.0
modernc.org/cc/v3: v3.36.3
modernc.org/ccgo/v3: v3.16.9
modernc.org/ccorpus: v1.11.6
modernc.org/httpfs: v1.0.6
modernc.org/libc: v1.17.1
modernc.org/mathutil: v1.5.0
modernc.org/memory: v1.2.1
modernc.org/opt: v0.1.3
modernc.org/sqlite: v1.18.1
modernc.org/strutil: v1.1.3
modernc.org/tcl: v1.13.1
modernc.org/token: v1.0.0
modernc.org/z: v1.5.1
rsc.io/binaryregexp: v0.2.0
rsc.io/pdf: v0.1.1
rsc.io/quote/v3: v3.1.0
rsc.io/sampler: v1.3.0
sigs.k8s.io/structured-merge-diff/v4: v4.7.0