Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

sync to upstream: 0b8ab80 #10

Merged
merged 39 commits into from
Jan 5, 2024
Merged

sync to upstream: 0b8ab80 #10

merged 39 commits into from
Jan 5, 2024

Conversation

izturn
Copy link
Collaborator

@izturn izturn commented Jan 5, 2024

No description provided.

dependabot bot and others added 30 commits December 4, 2023 15:29
@dependabot
build(deps): bump golang.org/x/oauth2 from 0.14.0 to 0.15.0 (#5993)
a46330f 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.14.0 to 0.15.0.
- [Commits](golang/oauth2@v0.14.0...v0.15.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump github.com/onsi/ginkgo/v2 from 2.13.1 to 2.13.2 (#5994
07dc0af 
)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.13.1 to 2.13.2.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](onsi/ginkgo@v2.13.1...v2.13.2)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot @skriss
build(deps): bump github.com/vektra/mockery/v2 from 2.37.1 to 2.38.0 (#…
4aee35a 
…5988)

* build(deps): bump github.com/vektra/mockery/v2 from 2.37.1 to 2.38.0

Bumps [github.com/vektra/mockery/v2](https://github.com/vektra/mockery) from 2.37.1 to 2.38.0.
- [Release notes](https://github.com/vektra/mockery/releases)
- [Changelog](https://github.com/vektra/mockery/blob/master/docs/changelog.md)
- [Commits](vektra/mockery@v2.37.1...v2.38.0)

---
updated-dependencies:
- dependency-name: github.com/vektra/mockery/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...


Also run make generate

Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: Steve Kriss <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Steve Kriss <[email protected]>
@skriss
implement Gateway infrastructure labels/annotations (#5968)
cf8fb1c 
Closes #5967.

Signed-off-by: Steve Kriss <[email protected]>
@sunjayBhatia
Use necojackarc/auto-request-review action to request reviews from no…
9d71639 
…n-maintainers (#5896)

Use this action which should not require the reviewers github team to
have owner permissions

Signed-off-by: Sunjay Bhatia <[email protected]>
@skriss @izturn
Gateway API: support request timeout (#5997)
f42a569 
Adds support for HTTPRoute request timeouts.

Closes #5921.

Signed-off-by: gang.liu <[email protected]>
Signed-off-by: Steve Kriss <[email protected]>
Co-authored-by: gang.liu <[email protected]>
@skriss
internal/provisioner: add Gateway label to generated resources (#5969)
eece587 
Adds the gateway.networking.k8s.io/gateway-name label
to generated resources.

Signed-off-by: Steve Kriss <[email protected]>
@dependabot
build(deps): bump aquasecurity/trivy-action from 0.14.0 to 0.16.0 (#6005
44dd9f4 
)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.14.0 to 0.16.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@0.14.0...0.16.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump actions/stale from 8 to 9 (#6006)
092e3f0 
Bumps [actions/stale](https://github.com/actions/stale) from 8 to 9.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](actions/stale@v8...v9)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump actions/setup-go from 4 to 5 (#6007)
95d3f09 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump sigs.k8s.io/kustomize/kyaml from 0.15.0 to 0.16.0 (#…
5bb85eb 
…6002)

Bumps [sigs.k8s.io/kustomize/kyaml](https://github.com/kubernetes-sigs/kustomize) from 0.15.0 to 0.16.0.
- [Release notes](https://github.com/kubernetes-sigs/kustomize/releases)
- [Commits](kubernetes-sigs/kustomize@api/v0.15.0...api/v0.16.0)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/kustomize/kyaml
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump github.com/cert-manager/cert-manager (#6003)
22714c6 
Bumps [github.com/cert-manager/cert-manager](https://github.com/cert-manager/cert-manager) from 1.13.2 to 1.13.3.
- [Release notes](https://github.com/cert-manager/cert-manager/releases)
- [Commits](cert-manager/cert-manager@v1.13.2...v1.13.3)

---
updated-dependencies:
- dependency-name: github.com/cert-manager/cert-manager
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@sunjayBhatia
site: Remove leaderelection from config file params (#6009)
30dd58f 
Should have been removed in #4332

Signed-off-by: Sunjay Bhatia <[email protected]>
@izturn
Gateway API: fix for failing GatewayWithAttachedRoutes conformance te…
ec46fff 
…st (#5961)


Signed-off-by: gang.liu <[email protected]>
@skriss
update Gateway API conformance exclusions (#6012)
4d48db7 
Adds comments for excluded Gateway API conformance
tests and syncs run-gateway-conformance.sh with
gateway_conformance_test.go.

Signed-off-by: Steve Kriss <[email protected]>
@dependabot
build(deps): bump github.com/google/uuid from 1.4.0 to 1.5.0 (#6018)
b17749b 
Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/google/uuid/releases)
- [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md)
- [Commits](google/uuid@v1.4.0...v1.5.0)

---
updated-dependencies:
- dependency-name: github.com/google/uuid
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump google.golang.org/grpc from 1.59.0 to 1.60.0 (#6019)
1f950b9 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.59.0 to 1.60.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.59.0...v1.60.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump github/codeql-action from 2 to 3 (#6023)
bf6b8c5 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@v2...v3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@skriss
dependabot: group upload/download artifact actions bumps (#6025)
bfd404f 
Signed-off-by: Steve Kriss <[email protected]>
@dependabot @sunjayBhatia
build(deps): bump the k8s-dependencies group with 2 updates (#6017)
2b1d01f 
* build(deps): bump the k8s-dependencies group with 2 updates

Bumps the k8s-dependencies group with 2 updates: [k8s.io/api](https://github.com/kubernetes/api) and [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver).


Updates `k8s.io/api` from 0.28.4 to 0.29.0
- [Commits](kubernetes/api@v0.28.4...v0.29.0)

Updates `k8s.io/apiextensions-apiserver` from 0.28.4 to 0.29.0
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases)
- [Commits](kubernetes/apiextensions-apiserver@v0.28.4...v0.29.0)

---
updated-dependencies:
- dependency-name: k8s.io/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: k8s-dependencies
- dependency-name: k8s.io/apiextensions-apiserver
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: k8s-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>

* re-run generate

Signed-off-by: Sunjay Bhatia <[email protected]>

---------

Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: Sunjay Bhatia <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sunjay Bhatia <[email protected]>
@dependabot
build(deps): bump the artifact-actions group with 2 updates (#6026)
38bec9c 
Bumps the artifact-actions group with 2 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact).


Updates `actions/upload-artifact` from 3 to 4
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v3...v4)

Updates `actions/download-artifact` from 3 to 4
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v3...v4)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: artifact-actions
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: artifact-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 (#6027)
00dc280 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.16.0 to 0.17.0.
- [Commits](golang/crypto@v0.16.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@KauzClay
allow configuration of upstream TLS connection settings (#5828)
b57fa06 
Just as you can configure TLS settings for downstream connections, like setting min/max TLS versions and cipher suites, you should be able to do that for upstream connections too.

For upstream connections, I would like the default Max TLS version to be 1.3, instead of the current Envoy default of 1.2

Fixes #5501
Fixes #3574

Signed-off-by: Clay Kauzlaric <[email protected]>
@skriss
update Kubernetes support for 1.29 (#6031)
111b7f9 
Signed-off-by: Steve Kriss <[email protected]>
@skriss
remove disabled ingress-conformance run from CI (#6032)
a579ec3 
Upstream Ingress conformance is flaky/poorly maintained and
unlikely to reach a state where it can reliably be run in CI.

Signed-off-by: Steve Kriss <[email protected]>
@tsaarni
Updated upstream TLS changelog entry (#6033)
7dd40af 
Signed-off-by: Tero Saarni <[email protected]>
@dependabot
build(deps): bump google.golang.org/grpc from 1.60.0 to 1.60.1 (#6045)
f8c4324 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.60.0 to 1.60.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.60.0...v1.60.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump github.com/go-logr/logr from 1.3.0 to 1.4.1 (#6044)
ddaf733 
Bumps [github.com/go-logr/logr](https://github.com/go-logr/logr) from 1.3.0 to 1.4.1.
- [Release notes](https://github.com/go-logr/logr/releases)
- [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md)
- [Commits](go-logr/logr@v1.3.0...v1.4.1)

---
updated-dependencies:
- dependency-name: github.com/go-logr/logr
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump github.com/vektra/mockery/v2 from 2.38.0 to 2.39.1 (#…
6f361a9 
…6043)

Bumps [github.com/vektra/mockery/v2](https://github.com/vektra/mockery) from 2.38.0 to 2.39.1.
- [Release notes](https://github.com/vektra/mockery/releases)
- [Changelog](https://github.com/vektra/mockery/blob/master/docs/changelog.md)
- [Commits](vektra/mockery@v2.38.0...v2.39.1)

---
updated-dependencies:
- dependency-name: github.com/vektra/mockery/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build(deps): bump google.golang.org/protobuf from 1.31.0 to 1.32.0 (#…
03a8239 
…6042)

Bumps google.golang.org/protobuf from 1.31.0 to 1.32.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot bot and others added 9 commits December 29, 2023 17:29
@dependabot
build(deps): bump github.com/prometheus/client_golang (#6049)
89d2856 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.17.0 to 1.18.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](prometheus/client_golang@v1.17.0...v1.18.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@davinci26
Adds support for global circuit budget (#6013)
b474d10 
Solves #6001

Signed-off-by: Sotiris Nanopoulos <[email protected]>
@dependabot
build(deps): bump github.com/envoyproxy/go-control-plane (#6050)
4a22d0c 
Bumps [github.com/envoyproxy/go-control-plane](https://github.com/envoyproxy/go-control-plane) from 0.11.2-0.20231019082134-6e4589f570e1 to 0.12.0.
- [Release notes](https://github.com/envoyproxy/go-control-plane/releases)
- [Changelog](https://github.com/envoyproxy/go-control-plane/blob/main/CHANGELOG.md)
- [Commits](https://github.com/envoyproxy/go-control-plane/commits/v0.12.0)

---
updated-dependencies:
- dependency-name: github.com/envoyproxy/go-control-plane
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@xiangpingjiang
clarify logic in endpointstranslator.go (#5927)
4871aaf 
Signed-off-by: pingjiang <[email protected]>
Signed-off-by: 钧羽 <[email protected]>
@sunjayBhatia
Add action for generating OpenSSF scorecard (#6048)
9d590b0 
Generates scorecard to ensure repo/project is passing open source best practices.

Signed-off-by: Sunjay Bhatia <[email protected]>
@sunjayBhatia
Use exact version number for ossf/scorecard-action (#6051)
054d169 
Signed-off-by: Sunjay Bhatia <[email protected]>
@sunjayBhatia
Bump go to 1.21.5 (#6053)
3dfb0a5 

Signed-off-by: Sunjay Bhatia <[email protected]>
@sunjayBhatia
Pin github actions using shas (#6052)
8d63b86 
Dependabot should be able to update these and preserve the tag in the comment, as per: dependabot/dependabot-core#5951

Workflows updated with: https://app.stepsecurity.io/secureworkflow

Signed-off-by: Sunjay Bhatia <[email protected]>
@dependabot
build(deps): bump aquasecurity/trivy-action from 0.16.0 to 0.16.1 (#6054
0b8ab80 
)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.16.0 to 0.16.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@91713af...d43c1f1)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@izturn izturn merged commit 52a93a5 into projectsesame:main Jan 5, 2024
7 of 8 checks passed
@izturn izturn changed the title sync with upstream sync to upstream: 0b8ab80 Jan 5, 2024
izturn added a commit that referenced this pull request Jan 5, 2024
@izturn
Revert "sync with upstream (#10)"
8d798a8 
This reverts commit 52a93a5.
@izturn izturn mentioned this pull request Jan 5, 2024
Merged
izturn added a commit that referenced this pull request Jan 5, 2024
@izturn
Revert "sync with upstream (#10)" (#11)
201757f 
This reverts commit 52a93a5.
izturn added a commit that referenced this pull request Jan 5, 2024
@izturn
Revert "Revert "sync with upstream (#10)" (#11)"
2ab0ff3 
This reverts commit 201757f.
izturn added a commit that referenced this pull request Jan 5, 2024
@izturn
Revert "Revert "sync with upstream (#10)" (#11)" (#12)
b23239b 
This reverts commit 201757f.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@izturn @skriss @sunjayBhatia @KauzClay @tsaarni @davinci26 @xiangpingjiang