580bb08dc5
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [github.com/getsops/sops/v3](https://redirect.github.com/getsops/sops) | require | minor | `v3.9.4` -> `v3.10.1` | --- ### Release Notes <details> <summary>getsops/sops (github.com/getsops/sops/v3)</summary> ### [`v3.10.1`](https://redirect.github.com/getsops/sops/releases/tag/v3.10.1) [Compare Source](https://redirect.github.com/getsops/sops/compare/v3.10.0...v3.10.1) #### Installation To install `sops`, download one of the pre-built binaries provided for your platform from the artifacts attached to this release. For instance, if you are using Linux on an AMD64 architecture: ```shell ### Download the binary curl -LO https://github.com/getsops/sops/releases/download/v3.10.1/sops-v3.10.1.linux.amd64 ### Move the binary in to your PATH mv sops-v3.10.1.linux.amd64 /usr/local/bin/sops ### Make the binary executable chmod +x /usr/local/bin/sops ``` ##### Verify checksums file signature The checksums file provided within the artifacts attached to this release is signed using [Cosign](https://docs.sigstore.dev/cosign/overview/) with GitHub OIDC. To validate the signature of this file, run the following commands: ```shell ### Download the checksums file, certificate and signature curl -LO https://github.com/getsops/sops/releases/download/v3.10.1/sops-v3.10.1.checksums.txt curl -LO https://github.com/getsops/sops/releases/download/v3.10.1/sops-v3.10.1.checksums.pem curl -LO https://github.com/getsops/sops/releases/download/v3.10.1/sops-v3.10.1.checksums.sig ### Verify the checksums file cosign verify-blob sops-v3.10.1.checksums.txt \ --certificate sops-v3.10.1.checksums.pem \ --signature sops-v3.10.1.checksums.sig \ --certificate-identity-regexp=https://github.com/getsops \ --certificate-oidc-issuer=https://token.actions.githubusercontent.com ``` ##### Verify binary integrity To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature: ```shell ### Verify the binary using the checksums file sha256sum -c sops-v3.10.1.checksums.txt --ignore-missing ``` ##### Verify artifact provenance The [SLSA provenance](https://slsa.dev/provenance/v0.2) of the binaries, packages, and SBOMs can be found within the artifacts associated with this release. It is presented through an [in-toto](https://in-toto.io/) link metadata file named `sops-v3.10.1.intoto.jsonl`. To verify the provenance of an artifact, you can utilize the [`slsa-verifier`](https://redirect.github.com/slsa-framework/slsa-verifier#artifacts) tool: ```shell ### Download the metadata file curl -LO https://github.com/getsops/sops/releases/download/v3.10.1/sops-v3.10.1.intoto.jsonl ### Verify the provenance of the artifact slsa-verifier verify-artifact <artifact> \ --provenance-path sops-v3.10.1.intoto.jsonl \ --source-uri github.com/getsops/sops \ --source-tag v3.10.1 ``` #### Container Images The `sops` binaries are also available as container images, based on Debian (slim) and Alpine Linux. The Debian-based container images include any dependencies which may be required to make use of certain key services, such as GnuPG, AWS KMS, Azure Key Vault, and Google Cloud KMS. The Alpine-based container images are smaller in size, but do not include these dependencies. These container images are available for the following architectures: `linux/amd64` and `linux/arm64`. ##### GitHub Container Registry - `ghcr.io/getsops/sops:v3.10.1` - `ghcr.io/getsops/sops:v3.10.1-alpine` ##### Quay.io - `quay.io/getsops/sops:v3.10.1` - `quay.io/getsops/sops:v3.10.1-alpine` ##### Verify container image signature The container images are signed using [Cosign](https://docs.sigstore.dev/cosign/overview/) with GitHub OIDC. To validate the signature of an image, run the following command: ```shell cosign verify ghcr.io/getsops/sops:v3.10.1 \ --certificate-identity-regexp=https://github.com/getsops \ --certificate-oidc-issuer=https://token.actions.githubusercontent.com \ -o text ``` ##### Verify container image provenance The container images include [SLSA provenance](https://slsa.dev/provenance/v0.2) attestations. For more information around the verification of this, please refer to the [`slsa-verifier` documentation](https://redirect.github.com/slsa-framework/slsa-verifier#containers). #### Software Bill of Materials The Software Bill of Materials (SBOM) for each binary is accessible within the artifacts enclosed with this release. It is presented as an [SPDX](https://spdx.dev/) JSON file, formatted as `<binary>.spdx.sbom.json`. #### What's Changed - build(deps): Bump the ci group with 2 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1826](https://redirect.github.com/getsops/sops/pull/1826) - Release 3.10.1 by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1827](https://redirect.github.com/getsops/sops/pull/1827) **Full Changelog**: https://github.com/getsops/sops/compare/v3.10.0...v3.10.1 ### [`v3.10.0`](https://redirect.github.com/getsops/sops/releases/tag/v3.10.0) [Compare Source](https://redirect.github.com/getsops/sops/compare/v3.9.4...v3.10.0) #### Installation To install `sops`, download one of the pre-built binaries provided for your platform from the artifacts attached to this release. For instance, if you are using Linux on an AMD64 architecture: ```shell ### Download the binary curl -LO https://github.com/getsops/sops/releases/download/v3.10.0/sops-v3.10.0.linux.amd64 ### Move the binary in to your PATH mv sops-v3.10.0.linux.amd64 /usr/local/bin/sops ### Make the binary executable chmod +x /usr/local/bin/sops ``` ##### Verify checksums file signature The checksums file provided within the artifacts attached to this release is signed using [Cosign](https://docs.sigstore.dev/cosign/overview/) with GitHub OIDC. To validate the signature of this file, run the following commands: ```shell ### Download the checksums file, certificate and signature curl -LO https://github.com/getsops/sops/releases/download/v3.10.0/sops-v3.10.0.checksums.txt curl -LO https://github.com/getsops/sops/releases/download/v3.10.0/sops-v3.10.0.checksums.pem curl -LO https://github.com/getsops/sops/releases/download/v3.10.0/sops-v3.10.0.checksums.sig ### Verify the checksums file cosign verify-blob sops-v3.10.0.checksums.txt \ --certificate sops-v3.10.0.checksums.pem \ --signature sops-v3.10.0.checksums.sig \ --certificate-identity-regexp=https://github.com/getsops \ --certificate-oidc-issuer=https://token.actions.githubusercontent.com ``` ##### Verify binary integrity To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature: ```shell ### Verify the binary using the checksums file sha256sum -c sops-v3.10.0.checksums.txt --ignore-missing ``` ##### Verify artifact provenance The [SLSA provenance](https://slsa.dev/provenance/v0.2) of the binaries, packages, and SBOMs can be found within the artifacts associated with this release. It is presented through an [in-toto](https://in-toto.io/) link metadata file named `sops-v3.10.0.intoto.jsonl`. To verify the provenance of an artifact, you can utilize the [`slsa-verifier`](https://redirect.github.com/slsa-framework/slsa-verifier#artifacts) tool: ```shell ### Download the metadata file curl -LO https://github.com/getsops/sops/releases/download/v3.10.0/sops-v3.10.0.intoto.jsonl ### Verify the provenance of the artifact slsa-verifier verify-artifact <artifact> \ --provenance-path sops-v3.10.0.intoto.jsonl \ --source-uri github.com/getsops/sops \ --source-tag v3.10.0 ``` #### Container Images The `sops` binaries are also available as container images, based on Debian (slim) and Alpine Linux. The Debian-based container images include any dependencies which may be required to make use of certain key services, such as GnuPG, AWS KMS, Azure Key Vault, and Google Cloud KMS. The Alpine-based container images are smaller in size, but do not include these dependencies. These container images are available for the following architectures: `linux/amd64` and `linux/arm64`. ##### GitHub Container Registry - `ghcr.io/getsops/sops:v3.10.0` - `ghcr.io/getsops/sops:v3.10.0-alpine` ##### Quay.io - `quay.io/getsops/sops:v3.10.0` - `quay.io/getsops/sops:v3.10.0-alpine` ##### Verify container image signature The container images are signed using [Cosign](https://docs.sigstore.dev/cosign/overview/) with GitHub OIDC. To validate the signature of an image, run the following command: ```shell cosign verify ghcr.io/getsops/sops:v3.10.0 \ --certificate-identity-regexp=https://github.com/getsops \ --certificate-oidc-issuer=https://token.actions.githubusercontent.com \ -o text ``` ##### Verify container image provenance The container images include [SLSA provenance](https://slsa.dev/provenance/v0.2) attestations. For more information around the verification of this, please refer to the [`slsa-verifier` documentation](https://redirect.github.com/slsa-framework/slsa-verifier#containers). #### Software Bill of Materials The Software Bill of Materials (SBOM) for each binary is accessible within the artifacts enclosed with this release. It is presented as an [SPDX](https://spdx.dev/) JSON file, formatted as `<binary>.spdx.sbom.json`. #### What's Changed - build(deps): Bump alpine from 3.18 to 3.21 in /.release in the docker group across 1 directory by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1700](https://redirect.github.com/getsops/sops/pull/1700) - Convert changelog to MarkDown by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1741](https://redirect.github.com/getsops/sops/pull/1741) - build(deps): Bump the go group with 7 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1743](https://redirect.github.com/getsops/sops/pull/1743) - build(deps): Bump the go group with 9 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1745](https://redirect.github.com/getsops/sops/pull/1745) - build(deps): Bump the rust group in /functional-tests with 2 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1744](https://redirect.github.com/getsops/sops/pull/1744) - build(deps): Bump github/codeql-action from 3.28.5 to 3.28.8 in the ci group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1746](https://redirect.github.com/getsops/sops/pull/1746) - build(deps): Bump the go group with 12 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1751](https://redirect.github.com/getsops/sops/pull/1751) - build(deps): Bump the ci group with 4 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1750](https://redirect.github.com/getsops/sops/pull/1750) - Add --input-type option for filestatus subcommand by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1601](https://redirect.github.com/getsops/sops/pull/1601) - Use SOPS_EDITOR before EDITOR by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1611](https://redirect.github.com/getsops/sops/pull/1611) - Allow users to disable version check via environment variable by [@​nicklasfrahm](https://redirect.github.com/nicklasfrahm) in [https://github.com/getsops/sops/pull/1684](https://redirect.github.com/getsops/sops/pull/1684) - add duplicate section support to ini store by [@​reindlt](https://redirect.github.com/reindlt) in [https://github.com/getsops/sops/pull/1452](https://redirect.github.com/getsops/sops/pull/1452) - stores: test for duplicate keys, reserve keyword (yaml only now) by [@​holiman](https://redirect.github.com/holiman) in [https://github.com/getsops/sops/pull/1203](https://redirect.github.com/getsops/sops/pull/1203) - Add same process option for exec-env by [@​ricmatsui](https://redirect.github.com/ricmatsui) in [https://github.com/getsops/sops/pull/880](https://redirect.github.com/getsops/sops/pull/880) - outputs: add trailing newline at the end of JSON files by [@​duthils](https://redirect.github.com/duthils) in [https://github.com/getsops/sops/pull/1476](https://redirect.github.com/getsops/sops/pull/1476) - set subcommand: add --idempotent flag that will not write the file if no change happened by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1754](https://redirect.github.com/getsops/sops/pull/1754) - Encrypt and decrypt time.Time objects by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1759](https://redirect.github.com/getsops/sops/pull/1759) - build(deps): Bump the go group with 8 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1763](https://redirect.github.com/getsops/sops/pull/1763) - build(deps): Bump tempfile from 3.16.0 to 3.17.0 in /functional-tests in the rust group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1762](https://redirect.github.com/getsops/sops/pull/1762) - build(deps): Bump goreleaser/goreleaser-action from 6.1.0 to 6.2.1 in the ci group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1761](https://redirect.github.com/getsops/sops/pull/1761) - fix(docs): typo in README.rst by [@​Paredev](https://redirect.github.com/Paredev) in [https://github.com/getsops/sops/pull/1765](https://redirect.github.com/getsops/sops/pull/1765) - Add SSH support for age by [@​haoqixu](https://redirect.github.com/haoqixu) in [https://github.com/getsops/sops/pull/1692](https://redirect.github.com/getsops/sops/pull/1692) - make sure that tests do not pick keys.txt from user's HOME dir by [@​tomaszduda23](https://redirect.github.com/tomaszduda23) in [https://github.com/getsops/sops/pull/1766](https://redirect.github.com/getsops/sops/pull/1766) - support for age identity with passphrase by [@​tomaszduda23](https://redirect.github.com/tomaszduda23) in [https://github.com/getsops/sops/pull/1400](https://redirect.github.com/getsops/sops/pull/1400) - build(deps): Bump the rust group in /functional-tests with 4 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1768](https://redirect.github.com/getsops/sops/pull/1768) - build(deps): Bump the go group with 12 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1769](https://redirect.github.com/getsops/sops/pull/1769) - build(deps): Bump the ci group with 4 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1770](https://redirect.github.com/getsops/sops/pull/1770) - build(deps): Bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5 by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1773](https://redirect.github.com/getsops/sops/pull/1773) - feat: add age plugin support by [@​brianmcgee](https://redirect.github.com/brianmcgee) in [https://github.com/getsops/sops/pull/1641](https://redirect.github.com/getsops/sops/pull/1641) - Check GnuPG decryption result for non-empty size by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1776](https://redirect.github.com/getsops/sops/pull/1776) - vendored age code: consolidate passphrase reading functionality by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1775](https://redirect.github.com/getsops/sops/pull/1775) - Allow to encrypt and decrypt from stdin by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1690](https://redirect.github.com/getsops/sops/pull/1690) - build(deps): Bump the go group with 11 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1784](https://redirect.github.com/getsops/sops/pull/1784) - build(deps): Bump the ci group with 5 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1782](https://redirect.github.com/getsops/sops/pull/1782) - build(deps): Bump serde_json from 1.0.139 to 1.0.140 in /functional-tests in the rust group; bump Rust to 1.85.0 by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1783](https://redirect.github.com/getsops/sops/pull/1783) - build(deps): Bump the go group with 13 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1797](https://redirect.github.com/getsops/sops/pull/1797) - build(deps): Bump the rust group in /functional-tests with 3 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1796](https://redirect.github.com/getsops/sops/pull/1796) - build(deps): Bump github/codeql-action from 3.28.10 to 3.28.11 in the ci group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1795](https://redirect.github.com/getsops/sops/pull/1795) - build(deps): Bump the go group with 6 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1802](https://redirect.github.com/getsops/sops/pull/1802) - build(deps): Bump tempfile from 3.18.0 to 3.19.0 in /functional-tests in the rust group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1800](https://redirect.github.com/getsops/sops/pull/1800) - build(deps): Bump docker/login-action from 3.3.0 to 3.4.0 in the ci group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1801](https://redirect.github.com/getsops/sops/pull/1801) - build(deps): Bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1806](https://redirect.github.com/getsops/sops/pull/1806) - goreleaser: add windows arm64 by [@​duthils](https://redirect.github.com/duthils) in [https://github.com/getsops/sops/pull/1791](https://redirect.github.com/getsops/sops/pull/1791) - Add a way to set sops config location via envvar by [@​sledzikowy](https://redirect.github.com/sledzikowy) in [https://github.com/getsops/sops/pull/1701](https://redirect.github.com/getsops/sops/pull/1701) - build(deps): Bump the go group with 3 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1809](https://redirect.github.com/getsops/sops/pull/1809) - build(deps): Bump the ci group with 5 updates by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1808](https://redirect.github.com/getsops/sops/pull/1808) - build(deps): Bump tempfile from 3.19.0 to 3.19.1 in /functional-tests in the rust group by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/getsops/sops/pull/1807](https://redirect.github.com/getsops/sops/pull/1807) - Support --config option in publish subcommand by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1779](https://redirect.github.com/getsops/sops/pull/1779) - Fix caching of Metadata.DataKey by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1781](https://redirect.github.com/getsops/sops/pull/1781) - Lint by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1780](https://redirect.github.com/getsops/sops/pull/1780) - updatekeys subcommand: rename GroupQuorum to ShamirThreshold by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1631](https://redirect.github.com/getsops/sops/pull/1631) - If --filename-override is specified, convert it to an absolute path same as regular filenames by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1793](https://redirect.github.com/getsops/sops/pull/1793) - Add support for `oauth2.TokenSource` in GCP KMS by [@​matheuscscp](https://redirect.github.com/matheuscscp) in [https://github.com/getsops/sops/pull/1794](https://redirect.github.com/getsops/sops/pull/1794) - Added SOPS_AGE_KEY_CMD option to age, fixes [#​1323](https://redirect.github.com/getsops/sops/issues/1323) by [@​danilobuerger](https://redirect.github.com/danilobuerger) in [https://github.com/getsops/sops/pull/1811](https://redirect.github.com/getsops/sops/pull/1811) - chore: omitempty metadata to reduce the size of stored config by [@​cgetzen](https://redirect.github.com/cgetzen) in [https://github.com/getsops/sops/pull/1571](https://redirect.github.com/getsops/sops/pull/1571) - Improve Shamir Secret Sharing code by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1813](https://redirect.github.com/getsops/sops/pull/1813) - Update all dependencies by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1814](https://redirect.github.com/getsops/sops/pull/1814) - Run 'gofmt -w' on all .go files by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1817](https://redirect.github.com/getsops/sops/pull/1817) - Add option to explicitly check for the latest version; deprecate current default of always doing that unless disabled by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1816](https://redirect.github.com/getsops/sops/pull/1816) - Build using Go 1.24 and drop support for 1.22 by [@​hiddeco](https://redirect.github.com/hiddeco) in [https://github.com/getsops/sops/pull/1819](https://redirect.github.com/getsops/sops/pull/1819) - Support `GOOGLE_OAUTH_ACCESS_TOKEN` for Google Cloud Platform by [@​marensofier](https://redirect.github.com/marensofier) in [https://github.com/getsops/sops/pull/1578](https://redirect.github.com/getsops/sops/pull/1578) - Warn about `.sops.yml` files found while searching for `.sops.yaml` by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1820](https://redirect.github.com/getsops/sops/pull/1820) - Release 3.10.0 by [@​felixfontein](https://redirect.github.com/felixfontein) in [https://github.com/getsops/sops/pull/1815](https://redirect.github.com/getsops/sops/pull/1815) - Added support for multiarch windows release binaries by [@​sabre1041](https://redirect.github.com/sabre1041) in [https://github.com/getsops/sops/pull/1823](https://redirect.github.com/getsops/sops/pull/1823) #### New Contributors - [@​reindlt](https://redirect.github.com/reindlt) made their first contribution in [https://github.com/getsops/sops/pull/1452](https://redirect.github.com/getsops/sops/pull/1452) - [@​ricmatsui](https://redirect.github.com/ricmatsui) made their first contribution in [https://github.com/getsops/sops/pull/880](https://redirect.github.com/getsops/sops/pull/880) - [@​Paredev](https://redirect.github.com/Paredev) made their first contribution in [https://github.com/getsops/sops/pull/1765](https://redirect.github.com/getsops/sops/pull/1765) - [@​haoqixu](https://redirect.github.com/haoqixu) made their first contribution in [https://github.com/getsops/sops/pull/1692](https://redirect.github.com/getsops/sops/pull/1692) - [@​brianmcgee](https://redirect.github.com/brianmcgee) made their first contribution in [https://github.com/getsops/sops/pull/1641](https://redirect.github.com/getsops/sops/pull/1641) - [@​sledzikowy](https://redirect.github.com/sledzikowy) made their first contribution in [https://github.com/getsops/sops/pull/1701](https://redirect.github.com/getsops/sops/pull/1701) - [@​matheuscscp](https://redirect.github.com/matheuscscp) made their first contribution in [https://github.com/getsops/sops/pull/1794](https://redirect.github.com/getsops/sops/pull/1794) - [@​danilobuerger](https://redirect.github.com/danilobuerger) made their first contribution in [https://github.com/getsops/sops/pull/1811](https://redirect.github.com/getsops/sops/pull/1811) - [@​cgetzen](https://redirect.github.com/cgetzen) made their first contribution in [https://github.com/getsops/sops/pull/1571](https://redirect.github.com/getsops/sops/pull/1571) - [@​marensofier](https://redirect.github.com/marensofier) made their first contribution in [https://github.com/getsops/sops/pull/1578](https://redirect.github.com/getsops/sops/pull/1578) - [@​sabre1041](https://redirect.github.com/sabre1041) made their first contribution in [https://github.com/getsops/sops/pull/1823](https://redirect.github.com/getsops/sops/pull/1823) **Full Changelog**: https://github.com/getsops/sops/compare/v3.9.4...v3.10.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMiIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4yIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvbWlub3IiXX0=-->
299 lines
16 KiB
Modula-2
299 lines
16 KiB
Modula-2
module github.com/truecharts/public/clustertool
|
|
|
|
go 1.23.4
|
|
|
|
require (
|
|
filippo.io/age v1.2.1
|
|
github.com/Masterminds/semver/v3 v3.3.1
|
|
github.com/beevik/ntp v1.4.3
|
|
github.com/budimanjojo/talhelper/v3 v3.0.21
|
|
github.com/getsops/sops/v3 v3.10.1
|
|
github.com/go-git/go-git/v5 v5.14.0
|
|
github.com/go-logr/zerologr v1.2.3
|
|
github.com/go-playground/validator/v10 v10.26.0
|
|
github.com/invopop/jsonschema v0.13.0
|
|
github.com/joho/godotenv v1.5.1
|
|
github.com/knadh/koanf/parsers/yaml v0.1.0
|
|
github.com/knadh/koanf/providers/file v1.1.2
|
|
github.com/knadh/koanf/v2 v2.1.2
|
|
github.com/leaanthony/debme v1.2.1
|
|
github.com/rs/zerolog v1.33.0
|
|
github.com/siderolabs/talos/pkg/machinery v1.10.0-alpha.2
|
|
github.com/spf13/cobra v1.9.1
|
|
golang.org/x/crypto v0.36.0
|
|
gopkg.in/yaml.v3 v3.0.1
|
|
helm.sh/helm/v3 v3.17.2
|
|
k8s.io/api v0.32.3
|
|
k8s.io/apimachinery v0.32.3
|
|
k8s.io/client-go v0.32.3
|
|
sigs.k8s.io/controller-runtime v0.20.3
|
|
sigs.k8s.io/kustomize/api v0.19.0
|
|
sigs.k8s.io/kustomize/kyaml v0.19.0
|
|
sigs.k8s.io/yaml v1.4.0
|
|
)
|
|
|
|
require (
|
|
cel.dev/expr v0.19.1 // indirect
|
|
cloud.google.com/go v0.117.0 // indirect
|
|
cloud.google.com/go/auth v0.14.0 // indirect
|
|
cloud.google.com/go/auth/oauth2adapt v0.2.7 // indirect
|
|
cloud.google.com/go/compute/metadata v0.6.0 // indirect
|
|
cloud.google.com/go/iam v1.3.0 // indirect
|
|
cloud.google.com/go/kms v1.20.5 // indirect
|
|
cloud.google.com/go/longrunning v0.6.3 // indirect
|
|
cloud.google.com/go/monitoring v1.22.0 // indirect
|
|
cloud.google.com/go/storage v1.50.0 // indirect
|
|
dario.cat/mergo v1.0.1 // indirect
|
|
github.com/AdaLogics/go-fuzz-headers v0.0.0-20240806141605-e8a1dd7889d6 // indirect
|
|
github.com/Azure/azure-sdk-for-go/sdk/azcore v1.17.0 // indirect
|
|
github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.8.1 // indirect
|
|
github.com/Azure/azure-sdk-for-go/sdk/internal v1.10.0 // indirect
|
|
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys v1.3.0 // indirect
|
|
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/internal v1.1.0 // indirect
|
|
github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect
|
|
github.com/AzureAD/microsoft-authentication-library-for-go v1.3.2 // indirect
|
|
github.com/BurntSushi/toml v1.4.0 // indirect
|
|
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.25.0 // indirect
|
|
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric v0.49.0 // indirect
|
|
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping v0.49.0 // indirect
|
|
github.com/MakeNowJust/heredoc v1.0.0 // indirect
|
|
github.com/Masterminds/goutils v1.1.1 // indirect
|
|
github.com/Masterminds/sprig/v3 v3.3.0 // indirect
|
|
github.com/Masterminds/squirrel v1.5.4 // indirect
|
|
github.com/Microsoft/go-winio v0.6.2 // indirect
|
|
github.com/ProtonMail/go-crypto v1.1.5 // indirect
|
|
github.com/a8m/envsubst v1.4.2 // indirect
|
|
github.com/antlr4-go/antlr/v4 v4.13.1 // indirect
|
|
github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
|
|
github.com/aws/aws-sdk-go-v2 v1.33.0 // indirect
|
|
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.6.7 // indirect
|
|
github.com/aws/aws-sdk-go-v2/config v1.29.1 // indirect
|
|
github.com/aws/aws-sdk-go-v2/credentials v1.17.54 // indirect
|
|
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.24 // indirect
|
|
github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.17.53 // indirect
|
|
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.28 // indirect
|
|
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.28 // indirect
|
|
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.1 // indirect
|
|
github.com/aws/aws-sdk-go-v2/internal/v4a v1.3.28 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.12.1 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.5.2 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.12.9 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.18.9 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/kms v1.37.13 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/s3 v1.74.0 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/sso v1.24.11 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.28.10 // indirect
|
|
github.com/aws/aws-sdk-go-v2/service/sts v1.33.9 // indirect
|
|
github.com/aws/smithy-go v1.22.1 // indirect
|
|
github.com/bahlo/generic-list-go v0.2.0 // indirect
|
|
github.com/beorn7/perks v1.0.1 // indirect
|
|
github.com/blang/semver v3.5.1+incompatible // indirect
|
|
github.com/blang/semver/v4 v4.0.0 // indirect
|
|
github.com/buger/jsonparser v1.1.1 // indirect
|
|
github.com/cenkalti/backoff/v4 v4.3.0 // indirect
|
|
github.com/census-instrumentation/opencensus-proto v0.4.1 // indirect
|
|
github.com/cespare/xxhash/v2 v2.3.0 // indirect
|
|
github.com/chai2010/gettext-go v1.0.2 // indirect
|
|
github.com/cloudflare/circl v1.5.0 // indirect
|
|
github.com/cncf/xds/go v0.0.0-20241223141626-cff3c89139a3 // indirect
|
|
github.com/containerd/containerd v1.7.24 // indirect
|
|
github.com/containerd/errdefs v1.0.0 // indirect
|
|
github.com/containerd/go-cni v1.1.11 // indirect
|
|
github.com/containerd/log v0.1.0 // indirect
|
|
github.com/containerd/platforms v1.0.0-rc.1 // indirect
|
|
github.com/containernetworking/cni v1.2.3 // indirect
|
|
github.com/cosi-project/runtime v0.8.1 // indirect
|
|
github.com/cpuguy83/go-md2man/v2 v2.0.6 // indirect
|
|
github.com/cyphar/filepath-securejoin v0.3.6 // indirect
|
|
github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
|
|
github.com/distribution/reference v0.6.0 // indirect
|
|
github.com/docker/cli v27.5.0+incompatible // indirect
|
|
github.com/docker/distribution v2.8.3+incompatible // indirect
|
|
github.com/docker/docker v27.4.1+incompatible // indirect
|
|
github.com/docker/docker-credential-helpers v0.8.2 // indirect
|
|
github.com/docker/go-connections v0.5.0 // indirect
|
|
github.com/docker/go-metrics v0.0.1 // indirect
|
|
github.com/dustin/go-humanize v1.0.1 // indirect
|
|
github.com/emicklei/go-restful/v3 v3.12.1 // indirect
|
|
github.com/emirpasic/gods v1.18.1 // indirect
|
|
github.com/envoyproxy/go-control-plane v0.13.1 // indirect
|
|
github.com/envoyproxy/protoc-gen-validate v1.1.0 // indirect
|
|
github.com/evanphx/json-patch v5.9.11+incompatible // indirect
|
|
github.com/evanphx/json-patch/v5 v5.9.0 // indirect
|
|
github.com/exponent-io/jsonpath v0.0.0-20210407135951-1de76d718b3f // indirect
|
|
github.com/fatih/color v1.18.0 // indirect
|
|
github.com/felixge/httpsnoop v1.0.4 // indirect
|
|
github.com/fsnotify/fsnotify v1.8.0 // indirect
|
|
github.com/fxamacker/cbor/v2 v2.7.0 // indirect
|
|
github.com/gabriel-vasile/mimetype v1.4.8 // indirect
|
|
github.com/gertd/go-pluralize v0.2.1 // indirect
|
|
github.com/getsops/gopgagent v0.0.0-20241224165529-7044f28e491e // indirect
|
|
github.com/ghodss/yaml v1.0.0 // indirect
|
|
github.com/go-errors/errors v1.4.2 // indirect
|
|
github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376 // indirect
|
|
github.com/go-git/go-billy/v5 v5.6.2 // indirect
|
|
github.com/go-gorp/gorp/v3 v3.1.0 // indirect
|
|
github.com/go-jose/go-jose/v4 v4.0.4 // indirect
|
|
github.com/go-logr/logr v1.4.2 // indirect
|
|
github.com/go-logr/stdr v1.2.2 // indirect
|
|
github.com/go-openapi/jsonpointer v0.21.0 // indirect
|
|
github.com/go-openapi/jsonreference v0.21.0 // indirect
|
|
github.com/go-openapi/swag v0.23.0 // indirect
|
|
github.com/go-playground/locales v0.14.1 // indirect
|
|
github.com/go-playground/universal-translator v0.18.1 // indirect
|
|
github.com/go-viper/mapstructure/v2 v2.2.1 // indirect
|
|
github.com/gobwas/glob v0.2.3 // indirect
|
|
github.com/gogo/protobuf v1.3.2 // indirect
|
|
github.com/golang-jwt/jwt/v5 v5.2.1 // indirect
|
|
github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8 // indirect
|
|
github.com/golang/protobuf v1.5.4 // indirect
|
|
github.com/google/btree v1.1.3 // indirect
|
|
github.com/google/cel-go v0.22.1 // indirect
|
|
github.com/google/gnostic-models v0.6.9 // indirect
|
|
github.com/google/go-cmp v0.6.0 // indirect
|
|
github.com/google/gofuzz v1.2.0 // indirect
|
|
github.com/google/s2a-go v0.1.9 // indirect
|
|
github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
|
|
github.com/google/uuid v1.6.0 // indirect
|
|
github.com/googleapis/enterprise-certificate-proxy v0.3.4 // indirect
|
|
github.com/googleapis/gax-go/v2 v2.14.1 // indirect
|
|
github.com/gookit/filter v1.2.2 // indirect
|
|
github.com/gookit/goutil v0.6.18 // indirect
|
|
github.com/gookit/validate v1.5.4 // indirect
|
|
github.com/gorilla/mux v1.8.0 // indirect
|
|
github.com/gorilla/websocket v1.5.0 // indirect
|
|
github.com/gosuri/uitable v0.0.4 // indirect
|
|
github.com/goware/prefixer v0.0.0-20160118172347-395022866408 // indirect
|
|
github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
|
|
github.com/grpc-ecosystem/grpc-gateway/v2 v2.24.0 // indirect
|
|
github.com/hashicorp/errwrap v1.1.0 // indirect
|
|
github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
|
|
github.com/hashicorp/go-multierror v1.1.1 // indirect
|
|
github.com/hashicorp/go-retryablehttp v0.7.7 // indirect
|
|
github.com/hashicorp/go-rootcerts v1.0.2 // indirect
|
|
github.com/hashicorp/go-secure-stdlib/parseutil v0.1.8 // indirect
|
|
github.com/hashicorp/go-secure-stdlib/strutil v0.1.2 // indirect
|
|
github.com/hashicorp/go-sockaddr v1.0.7 // indirect
|
|
github.com/hashicorp/hcl v1.0.1-vault-5 // indirect
|
|
github.com/hashicorp/vault/api v1.15.0 // indirect
|
|
github.com/hexops/gotextdiff v1.0.3 // indirect
|
|
github.com/huandu/xstrings v1.5.0 // indirect
|
|
github.com/inconshreveable/mousetrap v1.1.0 // indirect
|
|
github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 // indirect
|
|
github.com/jmoiron/sqlx v1.4.0 // indirect
|
|
github.com/josharian/intern v1.0.0 // indirect
|
|
github.com/josharian/native v1.1.0 // indirect
|
|
github.com/jsimonetti/rtnetlink/v2 v2.0.3-0.20241216183107-2d6e9f8ad3f2 // indirect
|
|
github.com/json-iterator/go v1.1.12 // indirect
|
|
github.com/kevinburke/ssh_config v1.2.0 // indirect
|
|
github.com/klauspost/compress v1.17.11 // indirect
|
|
github.com/knadh/koanf/maps v0.1.1 // indirect
|
|
github.com/kylelemons/godebug v1.1.0 // indirect
|
|
github.com/lann/builder v0.0.0-20180802200727-47ae307949d0 // indirect
|
|
github.com/lann/ps v0.0.0-20150810152359-62de8c46ede0 // indirect
|
|
github.com/leodido/go-urn v1.4.0 // indirect
|
|
github.com/lib/pq v1.10.9 // indirect
|
|
github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
|
|
github.com/mailru/easyjson v0.7.7 // indirect
|
|
github.com/mattn/go-colorable v0.1.13 // indirect
|
|
github.com/mattn/go-isatty v0.0.20 // indirect
|
|
github.com/mattn/go-runewidth v0.0.9 // indirect
|
|
github.com/mdlayher/ethtool v0.2.0 // indirect
|
|
github.com/mdlayher/genetlink v1.3.2 // indirect
|
|
github.com/mdlayher/netlink v1.7.2 // indirect
|
|
github.com/mdlayher/socket v0.5.1 // indirect
|
|
github.com/mitchellh/copystructure v1.2.0 // indirect
|
|
github.com/mitchellh/go-homedir v1.1.0 // indirect
|
|
github.com/mitchellh/go-wordwrap v1.0.1 // indirect
|
|
github.com/mitchellh/mapstructure v1.5.0 // indirect
|
|
github.com/mitchellh/reflectwalk v1.0.2 // indirect
|
|
github.com/moby/locker v1.0.1 // indirect
|
|
github.com/moby/spdystream v0.5.0 // indirect
|
|
github.com/moby/term v0.5.0 // indirect
|
|
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
|
|
github.com/modern-go/reflect2 v1.0.2 // indirect
|
|
github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
|
|
github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
|
|
github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f // indirect
|
|
github.com/opencontainers/go-digest v1.0.0 // indirect
|
|
github.com/opencontainers/image-spec v1.1.0 // indirect
|
|
github.com/opencontainers/runtime-spec v1.2.0 // indirect
|
|
github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
|
|
github.com/pjbgf/sha1cd v0.3.2 // indirect
|
|
github.com/pkg/browser v0.0.0-20240102092130-5ac0b6a4141c // indirect
|
|
github.com/pkg/errors v0.9.1 // indirect
|
|
github.com/planetscale/vtprotobuf v0.6.1-0.20241121165744-79df5c4772f2 // indirect
|
|
github.com/prometheus/client_golang v1.20.5 // indirect
|
|
github.com/prometheus/client_model v0.6.1 // indirect
|
|
github.com/prometheus/common v0.60.1 // indirect
|
|
github.com/prometheus/procfs v0.15.1 // indirect
|
|
github.com/rubenv/sql-migrate v1.7.1 // indirect
|
|
github.com/russross/blackfriday/v2 v2.1.0 // indirect
|
|
github.com/ryanuber/go-glob v1.0.0 // indirect
|
|
github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06 // indirect
|
|
github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3 // indirect
|
|
github.com/shopspring/decimal v1.4.0 // indirect
|
|
github.com/siderolabs/crypto v0.5.1 // indirect
|
|
github.com/siderolabs/gen v0.8.0 // indirect
|
|
github.com/siderolabs/go-blockdevice/v2 v2.0.13 // indirect
|
|
github.com/siderolabs/go-pointer v1.0.0 // indirect
|
|
github.com/siderolabs/image-factory v0.6.7 // indirect
|
|
github.com/siderolabs/net v0.4.0 // indirect
|
|
github.com/siderolabs/protoenc v0.2.1 // indirect
|
|
github.com/sirupsen/logrus v1.9.3 // indirect
|
|
github.com/skeema/knownhosts v1.3.0 // indirect
|
|
github.com/spf13/cast v1.7.0 // indirect
|
|
github.com/spf13/pflag v1.0.5 // indirect
|
|
github.com/stoewer/go-strcase v1.3.0 // indirect
|
|
github.com/urfave/cli v1.22.16 // indirect
|
|
github.com/wk8/go-ordered-map/v2 v2.1.8 // indirect
|
|
github.com/x448/float16 v0.8.4 // indirect
|
|
github.com/xanzy/ssh-agent v0.3.3 // indirect
|
|
github.com/xeipuuv/gojsonpointer v0.0.0-20190905194746-02993c407bfb // indirect
|
|
github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
|
|
github.com/xeipuuv/gojsonschema v1.2.0 // indirect
|
|
github.com/xlab/treeprint v1.2.0 // indirect
|
|
go.opentelemetry.io/auto/sdk v1.1.0 // indirect
|
|
go.opentelemetry.io/contrib/detectors/gcp v1.33.0 // indirect
|
|
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.58.0 // indirect
|
|
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.58.0 // indirect
|
|
go.opentelemetry.io/otel v1.33.0 // indirect
|
|
go.opentelemetry.io/otel/metric v1.33.0 // indirect
|
|
go.opentelemetry.io/otel/sdk v1.33.0 // indirect
|
|
go.opentelemetry.io/otel/sdk/metric v1.33.0 // indirect
|
|
go.opentelemetry.io/otel/trace v1.33.0 // indirect
|
|
go.uber.org/multierr v1.11.0 // indirect
|
|
go.uber.org/zap v1.27.0 // indirect
|
|
golang.org/x/exp v0.0.0-20241108190413-2d47ceb2692f // indirect
|
|
golang.org/x/mod v0.23.0 // indirect
|
|
golang.org/x/net v0.34.0 // indirect
|
|
golang.org/x/oauth2 v0.25.0 // indirect
|
|
golang.org/x/sync v0.11.0 // indirect
|
|
golang.org/x/sys v0.30.0 // indirect
|
|
golang.org/x/term v0.29.0 // indirect
|
|
golang.org/x/text v0.22.0 // indirect
|
|
golang.org/x/time v0.9.0 // indirect
|
|
google.golang.org/api v0.218.0 // indirect
|
|
google.golang.org/genproto v0.0.0-20241223144023-3abc09e42ca8 // indirect
|
|
google.golang.org/genproto/googleapis/api v0.0.0-20241223144023-3abc09e42ca8 // indirect
|
|
google.golang.org/genproto/googleapis/rpc v0.0.0-20250115164207-1a7da9e5054f // indirect
|
|
google.golang.org/grpc v1.70.0 // indirect
|
|
google.golang.org/protobuf v1.36.4 // indirect
|
|
gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
|
|
gopkg.in/inf.v0 v0.9.1 // indirect
|
|
gopkg.in/ini.v1 v1.67.0 // indirect
|
|
gopkg.in/warnings.v0 v0.1.2 // indirect
|
|
gopkg.in/yaml.v2 v2.4.0 // indirect
|
|
k8s.io/apiextensions-apiserver v0.32.0 // indirect
|
|
k8s.io/apiserver v0.32.0 // indirect
|
|
k8s.io/cli-runtime v0.32.0 // indirect
|
|
k8s.io/component-base v0.32.0 // indirect
|
|
k8s.io/klog/v2 v2.130.1 // indirect
|
|
k8s.io/kube-openapi v0.0.0-20241212222426-2c72e554b1e7 // indirect
|
|
k8s.io/kubectl v0.32.0 // indirect
|
|
k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
|
|
oras.land/oras-go v1.2.5 // indirect
|
|
sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
|
|
sigs.k8s.io/structured-merge-diff/v4 v4.4.2 // indirect
|
|
)
|