Bump the global group across 1 directory with 8 updates

[dependabot]

Bumps the global group with 6 updates in the / directory:

Package	From	To
github.com/chia-network/go-chia-libs	0.18.1	0.20.1
github.com/onsi/ginkgo/v2	2.21.0	2.22.0
github.com/onsi/gomega	1.35.1	1.36.0
k8s.io/api	0.31.2	0.31.3
k8s.io/client-go	0.31.2	0.31.3
sigs.k8s.io/controller-runtime	0.19.1	0.19.3

Updates github.com/chia-network/go-chia-libs from 0.18.1 to 0.20.1

Release notes

Sourced from github.com/chia-network/go-chia-libs's releases.

v0.20.1

What's Changed

• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in the global group by @​dependabot in Chia-Network/go-chia-libs#183
• Don't return a ChiaRPCError if we don't have an actual resp from the … by @​cmmarslender in Chia-Network/go-chia-libs#184

Full Changelog: Chia-Network/go-chia-libs@v0.20.0...v0.20.1

v0.20.0

This release has a behavior change in the RPC package. Previously, if the RPC returned success: false, error: <message>, the err returned from the RPC client functions was nil, and it was up to the caller to check the response for success: false. This release checks for that automatically and returns a ChiaRPCError error with the message from the RPC automatically. This should make it easier and more familiar to check for errors in RPC responses.

The response struct will still be returned in these cases, so any existing code checking for Success: false will still work, though it may not be reached if errors were checked before those lines.

What's Changed

• RPC Refactor by @​cmmarslender in Chia-Network/go-chia-libs#182

Full Changelog: Chia-Network/go-chia-libs@v0.19.0...v0.20.0

v0.19.0

What's Changed

• Dont return nil, nil, nil when block record is nil - the response has… by @​cmmarslender in Chia-Network/go-chia-libs#181

Full Changelog: Chia-Network/go-chia-libs@v0.18.6...v0.19.0

v0.18.6

What's Changed

• Add IsTransactionBlock helper by @​cmmarslender in Chia-Network/go-chia-libs#180

Full Changelog: Chia-Network/go-chia-libs@v0.18.5...v0.18.6

v0.18.5

Fixes a bug where start_rpc_server is set to false instead of true if it was not in the config file at all

What's Changed

• Start wallet rpc to pointer since it may not be in some configs by @​cmmarslender in Chia-Network/go-chia-libs#178

Full Changelog: Chia-Network/go-chia-libs@v0.18.4...v0.18.5

v0.18.4

What's Changed

• Allows filling structs/maps/slices with the actual type in addition to string representations by @​cmmarslender in Chia-Network/go-chia-libs#177

Full Changelog: Chia-Network/go-chia-libs@v0.18.3...v0.18.4

v0.18.3

... (truncated)

Commits

• a34eef4 Don't return a ChiaRPCError if we don't have an actual resp from the … (#184)
• ee7ea7a Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in the global group (#183)
• c80025e RPC Refactor (#182)
• ba851ab Dont return nil, nil, nil when block record is nil - the response has… (#181)
• 7784312 Add IsTransactionBlock helper (#180)
• 86ba0cb Start wallet rpc to pointer since it may not be in some configs (#178)
• 3268fcc Allows filling structs/maps/slices with the actual type in addition t… (#177)
• eccfa8e Support setting entire slices when filling config values (#176)
• ead46cf Add latest config changes from main (#175)
• See full diff in compare view

Updates github.com/onsi/ginkgo/v2 from 2.21.0 to 2.22.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.22.0

2.22.0

Features

• Add label to serial nodes [0fcaa08]

This allows serial tests to be filtered using the label-filter

Maintenance

Various doc fixes

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.22.0

Features

• Add label to serial nodes [0fcaa08]

This allows serial tests to be filtered using the label-filter

Maintenance

Various doc fixes

Commits

• 9e2f337 v2.22.0
• 0fcaa08 Add label to serial nodes
• 38febf2 docs: remove extra erroneous backtick
• 7e753c4 fix: minor doc fixes
• 21765a2 fix: missing commas
• b101e0c Fix some typos in docs
• 7512021 fix: remove trailing comma
• 9d33507 fix: grammar
• 55f3de1 fix: typos
• 3d6e16d fix: missing comma
• Additional commits viewable in compare view

Updates github.com/onsi/gomega from 1.35.1 to 1.36.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.36.0

1.36.0

Features

• new: make collection-related matchers Go 1.23 iterator aware [4c964c6]

Maintenance

• Replace min/max helpers with built-in min/max [ece6872]
• Fix some typos in docs [8e924d7]

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.36.0

Features

• new: make collection-related matchers Go 1.23 iterator aware [4c964c6]

Maintenance

• Replace min/max helpers with built-in min/max [ece6872]
• Fix some typos in docs [8e924d7]

Commits

• f1ff459 v1.36.0
• 4c964c6 new: make collection-related matchers Go 1.23 iterator aware
• ece6872 Replace min/max helpers with built-in min/max
• 8e924d7 Fix some typos in docs
• See full diff in compare view

Updates github.com/stretchr/testify from 1.9.0 to 1.10.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.10.0

What's Changed

Functional Changes

• Add PanicAssertionFunc by @​fahimbagar in stretchr/testify#1337
• assert: deprecate CompareType by @​dolmen in stretchr/testify#1566
• assert: make YAML dependency pluggable via build tags by @​dolmen in stretchr/testify#1579
• assert: new assertion NotElementsMatch by @​hendrywiranto in stretchr/testify#1600
• mock: in order mock calls by @​ReyOrtiz in stretchr/testify#1637
• Add assertion for NotErrorAs by @​palsivertsen in stretchr/testify#1129
• Record Return Arguments of a Call by @​jayd3e in stretchr/testify#1636
• assert.EqualExportedValues: accepts everything by @​redachl in stretchr/testify#1586

Fixes

• assert: make tHelper a type alias by @​dolmen in stretchr/testify#1562
• Do not get argument again unnecessarily in Arguments.Error() by @​TomWright in stretchr/testify#820
• Fix time.Time compare by @​myxo in stretchr/testify#1582
• assert.Regexp: handle []byte array properly by @​kevinburkesegment in stretchr/testify#1587
• assert: collect.FailNow() should not panic by @​marshall-lee in stretchr/testify#1481
• mock: simplify implementation of FunctionalOptions by @​dolmen in stretchr/testify#1571
• mock: caller information for unexpected method call by @​spirin in stretchr/testify#1644
• suite: fix test failures by @​stevenh in stretchr/testify#1421
• Fix issue #1662 (comparing infs should fail) by @​ybrustin in stretchr/testify#1663
• NotSame should fail if args are not pointers #1661 by @​sikehish in stretchr/testify#1664
• Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by @​sikehish in stretchr/testify#1667
• fix: compare functional option names for indirect calls by @​arjun-1 in stretchr/testify#1626

Documantation, Build & CI

• .gitignore: ignore "go test -c" binaries by @​dolmen in stretchr/testify#1565
• mock: improve doc by @​dolmen in stretchr/testify#1570
• mock: fix FunctionalOptions docs by @​snirye in stretchr/testify#1433
• README: link out to the excellent testifylint by @​brackendawson in stretchr/testify#1568
• assert: fix typo in comment by @​JohnEndson in stretchr/testify#1580
• Correct the EventuallyWithT and EventuallyWithTf example by @​JonCrowther in stretchr/testify#1588
• CI: bump softprops/action-gh-release from 1 to 2 by @​dependabot in stretchr/testify#1575
• mock: document more alternatives to deprecated AnythingOfTypeArgument by @​dolmen in stretchr/testify#1569
• assert: Correctly document EqualValues behavior by @​brackendawson in stretchr/testify#1593
• fix: grammar in godoc by @​miparnisari in stretchr/testify#1607
• .github/workflows: Run tests for Go 1.22 by @​HaraldNordgren in stretchr/testify#1629
• Document suite's lack of support for t.Parallel by @​brackendawson in stretchr/testify#1645
• assert: fix typos in comments by @​alexandear in stretchr/testify#1650
• mock: fix doc comment for NotBefore by @​alexandear in stretchr/testify#1651
• Generate better comments for require package by @​Neokil in stretchr/testify#1610
• README: replace Testify V2 notice with @​dolmen's V2 manifesto by @​hendrywiranto in stretchr/testify#1518

New Contributors

• @​fahimbagar made their first contribution in stretchr/testify#1337
• @​TomWright made their first contribution in stretchr/testify#820
• @​snirye made their first contribution in stretchr/testify#1433
• @​myxo made their first contribution in stretchr/testify#1582
• @​JohnEndson made their first contribution in stretchr/testify#1580

... (truncated)

Commits

• 89cbdd9 Merge pull request #1626 from arjun-1/fix-functional-options-diff-indirect-calls
• 07bac60 Merge pull request #1667 from sikehish/flaky
• 716de8d Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI
• 118fb83 NotSame should fail if args are not pointers #1661 (#1664)
• 7d99b2b attempt 2
• 05f87c0 more similar
• ea7129e better fmt
• a1b9c9e Merge pull request #1663 from ybrustin/master
• 8302de9 Merge branch 'master' into master
• 89352f7 Merge pull request #1518 from hendrywiranto/adjust-readme-remove-v2
• Additional commits viewable in compare view

Updates k8s.io/api from 0.31.2 to 0.31.3

Commits

• b7783ab Update dependencies to v0.31.3 tag
• See full diff in compare view

Updates k8s.io/apimachinery from 0.31.2 to 0.31.3

Commits

• See full diff in compare view

Updates k8s.io/client-go from 0.31.2 to 0.31.3

Commits

• ef98edc Update dependencies to v0.31.3 tag
• See full diff in compare view

Updates sigs.k8s.io/controller-runtime from 0.19.1 to 0.19.3

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.19.3

What's Changed

• 🐛 Refactor certificate watcher to use polling, instead of fsnotify by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3023
• 🐛 Use leader elector with client timeout by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3031

Full Changelog: kubernetes-sigs/controller-runtime@v0.19.2...v0.19.3

v0.19.2

What's Changed

• ✨ Add EnableWatchBookmarks option to cache informers by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#3018

Full Changelog: kubernetes-sigs/controller-runtime@v0.19.1...v0.19.2

Commits

• 3e66810 Merge pull request #3037 from kubernetes-sigs/backport019-watch
• 2085acc add watch deprecated to certwatcher
• 0823530 Merge pull request #3031 from k8s-infra-cherrypick-robot/cherry-pick-3028-to-...
• e727239 [release-0.19] 🐛 Refactor certificate watcher to use polling, instead of fsno...
• 2a0ce59 🌱 Make using leader elector with client timeout non-breaking
• 4bc3811 🐛 Fix RenewDeadline typo in leader election
• 0170742 warning: Use leader elector with client timeout
• bfd1cf9 [release-0.19] ✨ Add EnableWatchBookmarks option to cache informers (#3018)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: go, Changed.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
golang/github.com/chia-network/[email protected]	environment, network, unsafe	0	601 kB
golang/github.com/onsi/ginkgo/[email protected]	environment, filesystem, network, shell, unsafe	0	2.4 MB
golang/github.com/onsi/[email protected]	environment, filesystem, network, shell, unsafe	0	1.27 MB
golang/github.com/stretchr/[email protected]	filesystem, network, shell, unsafe	0	641 kB
golang/k8s.io/[email protected]	unsafe	0	23.9 MB
golang/k8s.io/[email protected]	environment, filesystem, network, shell, unsafe	0	4.17 MB
golang/k8s.io/[email protected]	environment, filesystem, network, shell, unsafe	0	13.9 MB
golang/sigs.k8s.io/[email protected]	environment, filesystem, network, shell, unsafe	0	2.39 MB

🚮 Removed packages: golang/github.com/chia-network/[email protected], golang/github.com/onsi/ginkgo/[email protected], golang/github.com/onsi/[email protected], golang/github.com/stretchr/[email protected], golang/k8s.io/[email protected], golang/k8s.io/[email protected], golang/k8s.io/[email protected], golang/sigs.k8s.io/[email protected]

View full report↗︎

[socket-security]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: golang/github.com/onsi/ginkgo/[email protected], golang/k8s.io/[email protected], golang/k8s.io/[email protected], golang/k8s.io/[email protected], golang/github.com/stretchr/[email protected], golang/github.com/onsi/[email protected], golang/github.com/chia-network/[email protected], golang/sigs.k8s.io/[email protected]

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

[Starttoaster]

@SocketSecurity ignore-all