chore(deps): update go dependencies

[red-hat-konflux]

This PR contains the following updates:

Package	Type	Update	Change
github.com/containerd/stargz-snapshotter/estargz	indirect	minor	v0.16.3 -> v0.18.1
github.com/docker/docker-credential-helpers	indirect	patch	v0.9.3 -> v0.9.4
github.com/go-logr/logr	require	patch	v1.4.2 -> v1.4.3
github.com/go-openapi/jsonpointer	indirect	minor	v0.21.1 -> v0.22.2
github.com/go-openapi/jsonreference	indirect	patch	v0.21.0 -> v0.21.3
github.com/go-openapi/swag	indirect	minor	v0.23.1 -> v0.25.1
github.com/google/certificate-transparency-go	require	patch	v1.3.1 -> v1.3.2
github.com/google/gnostic-models	indirect	minor	v0.6.9 -> v0.7.0
github.com/google/go-containerregistry	require	patch	v0.20.3 -> v0.20.6
github.com/google/pprof	indirect	digest	c008609 -> 4902fdd
github.com/klauspost/compress	indirect	patch	v1.18.0 -> v1.18.1
github.com/mailru/easyjson	indirect	patch	v0.9.0 -> v0.9.1
github.com/openshift/api	require	digest	7152b1b -> 6711368
github.com/operator-framework/api	require	minor	v0.31.0 -> v0.36.0
github.com/operator-framework/operator-lib	require	minor	v0.18.0 -> v0.19.0
github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring	require	minor	v0.81.0 -> v0.86.2
github.com/prometheus/client_golang	indirect	minor	v1.22.0 -> v1.23.2
github.com/prometheus/common	indirect	minor	v0.63.0 -> v0.67.2
github.com/prometheus/procfs	indirect	minor	v0.16.1 -> v0.19.2
github.com/spf13/pflag	indirect	patch	v1.0.6 -> v1.0.10
github.com/vbatts/tar-split	indirect	patch	v0.12.1 -> v0.12.2
golang.org/x/exp	require	digest	7e4ce0a -> e25ba8c
golang.org/x/net	require	minor	v0.39.0 -> v0.47.0
golang.org/x/oauth2	indirect	minor	v0.29.0 -> v0.33.0
golang.org/x/sync	indirect	minor	v0.13.0 -> v0.18.0
golang.org/x/sys	indirect	minor	v0.32.0 -> v0.38.0
golang.org/x/term	indirect	minor	v0.31.0 -> v0.37.0
golang.org/x/text	indirect	minor	v0.24.0 -> v0.31.0
golang.org/x/time	indirect	minor	v0.11.0 -> v0.14.0
golang.org/x/tools	indirect	minor	v0.32.0 -> v0.39.0
google.golang.org/genproto/googleapis/rpc	indirect	digest	10db94c -> 95abcf5
k8s.io/api	require	minor	v0.32.4 -> v0.34.2
k8s.io/apiextensions-apiserver	require	minor	v0.32.4 -> v0.34.2
k8s.io/apimachinery	require	minor	v0.32.4 -> v0.34.2
k8s.io/client-go	require	minor	v0.32.4 -> v0.34.2
k8s.io/kube-openapi	indirect	digest	c8a335a -> 589584f
k8s.io/utils	require	digest	0f33e8f -> bc988d5
sigs.k8s.io/controller-runtime	require	minor	v0.20.4 -> v0.22.4
sigs.k8s.io/json	indirect	digest	cfa47c3 -> 2d32026
sigs.k8s.io/yaml	require	minor	v1.4.0 -> v1.6.0

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

containerd/stargz-snapshotter (github.com/containerd/stargz-snapshotter/estargz)

v0.18.1

Compare Source

Notable Changes

• Avoid repeated decompression and further utilize the --GH option to speed up conversion (#​2145), thanks to @​escapefreeg
• Improved sortEntries performance (#​2153), thanks to @​wswsmao

v0.18.0

Compare Source

Notable Changes

• Fixed restoring error of snapshots on unexpected restart of stargz snapshotter (#​2091, #​2092), thanks to @​wswsmao
• Added FadvDontNeed option to reduce pagecache consumption in stargz snapshotter (#​2095), thanks to @​wswsmao
• Removed testing dependency from code outside tests (#​2098), thanks to @​rosstimothy
• Added all option for the ctr-remote's --gpus flag (#​2102, #​2118), thanks to @​wswsmao
• Added --prefetch-list flag to ctr-remote (#​2113, #​2148), thanks to @​wswsmao
• Enabled deduplication in ImageRecorder.Record (#​2116), thanks to @​wswsmao
• Fixed potential data race in nativeconverter/estargz (#​2133), thanks to @​escapefreeg
• Added support of decompression helpers in ctr-remote for better conversion speed (#​2117), thanks to @​escapefreeg
• Improved logging behaviour in fusemanager (#​2135), thanks to @​mmonaco
• Fixed to preserve normal snapshots during cleanup in stargz snapshotter (#​2127), thanks to @​ChengyuZhu6
• Fixed lazy pulling failure on images with empty layers (#​2137)
• Fixed stargz snapshotter to run without depending on fusermount by default (#​2146)
• Enabled ctr-remote to capture early file access (#​2129), thanks to @​wswsmao
• Refactors and document fixes (#​2112, #​2150), thanks to @​wswsmao

v0.17.0

Compare Source

Notable Changes

• New features
  • Added support for FUSE passthourgh (#​1868, #​1870, #​1874, #​1876, #​1881, #​1923, #​1987, #​2012, #​2045, #​2068), thanks to @​wswsmao
  • Added support for detaching FUSE server as a separated processs (FUSE manager), thanks to @​wswsmao (#​1892, #​1912, #​1905) and @​ilyee (#​1892)
  • Expanded support for graceful restarting of Stargz Snapshotter (#​2077)
  • Added arm64 KIND node image (ghcr.io/containerd/stargz-snapshotter:0.17.0-kind) (#​1983)
• Fixes and changes
  • Set maximum filename length to 255 bytes (#​2024), thanks to @​wswsmao
  • Fixed EOPNOTSUPP issue on getdents64 (#​2063), thanks to @​wswsmao
  • Fixed TTLCache failed to release resources on exit (#​2076)
  • Fixed the configuration and docs to prevent GC failures in CRI plugin (#​1893)
  • Refactored blob manipulation logic to make it more modular (#​1955), thanks to @​ChengyuZhu6
  • Fix zstd:chunked converter error on duplicated blobs (#​1885), thanks to @​apostasie
• Document updates
  • Added docs about how to use Stargz Snapshotter on Lima (#​1967)
  • Added docs about how to use Stargz Snapshotter with Transfer Service (#​2084)
  • Improved legibility in docs/overview.md (#​2061), thanks to @​soulshake
• CI updates
  • Added tests for wider configrations (FUSE passthrough and FUSE manager) (#​2074, #​2083, #​1914)
  • Fixed dependabot's configuration to avoid CI failures in gomod PRs (#​1920, #​1941), thanks to @​djdongjin
  • Bump up containerd/project-checks to v1.2.2 (#​2004), thanks to @​wswsmao
• Dependencies
  • Replace harshicorp/multierror with errors.Join (#​1921), thanks to @​djdongjin
  • Bump up Kubernetes to v1.33 (#​2078)
  • go.mod dependency updates (#​1936, #​1942), thanks to @​thaJeztah

For other changes, refer to the full diff: containerd/stargz-snapshotter@v0.16.3...v0.17.0

docker/docker-credential-helpers (github.com/docker/docker-credential-helpers)

v0.9.4

Compare Source

What's Changed

• update to go1.25.1 #​387
• wincred: fix unsafe uintptr usage to be GC-safe on go1.25 #​386
• gha: add macos-15-intel, remove macos-13 (deprecated) #​384
• deb: Dockerfile: update to debian bookworm, ubuntu jammy (22.04) #​385
• Dockerfile: update xx to v1.7.0 #​383
• Dockerfile: update golangci-lint to v2.5 #​386
• Dockerfile: merge build stages #​249
• build(deps): bump github.com/danieljoos/wincred v1.2.3 #​388
• build(deps): bump softprops/action-gh-release from 2.2.1 to 2.3.2 #​373
• build(deps): bump actions/checkout from 4 to 5 #​376
• build(deps): bump actions/setup-go from 5 to 6 #​377
• build(deps): bump actions/github-script from 7 to 8 #​378
• build(deps): bump softprops/action-gh-release from 2.3.2 to 2.3.3 #​379

Full Changelog: docker/docker-credential-helpers@v0.9.3...v0.9.4

go-logr/logr (github.com/go-logr/logr)

v1.4.3

Compare Source

Minor release.

What's Changed

• Fix slog tests for 1.25 by @​hoeppi-google in #​361
• Remove one exception from Slog testing by @​thockin in #​362

New Contributors

• @​hoeppi-google made their first contribution in #​361

Full Changelog: go-logr/logr@v1.4.2...v1.4.3

go-openapi/jsonpointer (github.com/go-openapi/jsonpointer)

v0.22.2

Compare Source

0.22.2 - 2025-11-14

Full Changelog: go-openapi/jsonpointer@v0.22.1...v0.22.2

12 commits in this release.

---

Documentation

• ci: fixed typo by @​fredbi ...
• docs: fixed typo in NOTICE by @​fredbi in #​62 ...
• Licensing: added NOTICE by @​fredbi in #​61 ...

Code quality

• chore(lint): code quality by @​fredbi in #​64 ...

Testing

• test: added fuzz test for parsing by @​fredbi in #​69 ...
• test: improved test coverage by @​fredbi in #​68 ...

Miscellaneous tasks

• ci: fixed sarif file by @​fredbi ...
• chore(deps): removed indirect test dependencies by @​fredbi in #​60 ...

Security

• ci: added govulscan security scanner tool by @​fredbi in #​67 ...
• doc: added examples to document simple use cases by @​fredbi in #​65 ...
• ci: added workflows by @​fredbi in #​63 ...

Updates

• chore(deps): bump the development-dependencies group with 5 updates by @​dependabot[bot] in #​66 ...

---

People who contributed to this release

• @​fredbi

---

jsonpointer license terms

v0.22.1

Compare Source

v0.22.0

Compare Source

v0.21.2

Compare Source

go-openapi/jsonreference (github.com/go-openapi/jsonreference)

v0.21.3

Compare Source

v0.21.2

Compare Source

v0.21.1

Compare Source

go-openapi/swag (github.com/go-openapi/swag)

v0.25.1

Compare Source

v0.25.0

Compare Source

v0.24.1

Compare Source

v0.24.0

Compare Source

google/certificate-transparency-go (github.com/google/certificate-transparency-go)

v1.3.2

Compare Source

Misc

• [migrillian] remove etcd support in #​1699
• Bump golangci-lint from 1.55.1 to 1.61.0 (developers should update to this version).
• Update ctclient tool to support SCT extensions field by @​liweitianux in #​1645
• Bump go to 1.23
• [ct_hammer] support HTTPS and Bearer token for Authentication.
• [preloader] support Bearer token Authentication for non temporal logs.
• [preloader] support end indexes
• [CTFE] Short cache max-age when get-entries returns fewer entries than requested by @​robstradling in #​1707
• [CTFE] Disalllow mismatching signature algorithm identifiers in #​702.
• [jsonclient] surface HTTP Do and Read errors #​1695 by @​FiloSottile

CTFE Storage Saving: Extra Data Issuance Chain Deduplication

• Suppress unnecessary duplicate key errors in the IssuanceChainStorage PostgreSQL implementation by @​robstradling in #​1678
• Only store IssuanceChain if not cached by @​robstradling in #​1679

CTFE Rate Limiting Of Non-Fresh Submissions

To protect a log from being flooded with requests for "old" certificates, optional rate limiting for "non-fresh submissions" can be configured by providing the following flags:

• non_fresh_submission_age
• non_fresh_submission_burst
• non_fresh_submission_limit

This can help to ensure that the log maintains its ability to (1) accept "fresh" submissions and (2) distribute all log entries to monitors.

• [CTFE] Configurable mechanism to rate-limit non-fresh submissions by @​robstradling in #​1698

Dependency updates

• Bump the docker-deps group across 5 directories with 3 updates (#​1705)
• Bump google.golang.org/grpc from 1.72.1 to 1.72.2 in the all-deps group (#​1704)
• Bump github.com/go-jose/go-jose/v4 in the go_modules group (#​1700)
• Bump the all-deps group with 7 updates (#​1701)
• Bump the all-deps group with 7 updates (#​1693)
• Bump the docker-deps group across 4 directories with 1 update (#​1694)
• Bump github/codeql-action from 3.28.13 to 3.28.16 in the all-deps group (#​1692)
• Bump the all-deps group across 1 directory with 7 updates (#​1688)
• Bump distroless/base-debian12 (#​1686)
• Bump golangci/golangci-lint-action from 6.5.1 to 7.0.0 in the all-deps group (#​1685)
• Bump the all-deps group with 4 updates (#​1681)
• Bump the all-deps group with 6 updates (#​1683)
• Bump the docker-deps group across 4 directories with 2 updates (#​1682)
• Bump github.com/golang-jwt/jwt/v4 in the go_modules group (#​1680)
• Bump golangci/golangci-lint-action in the all-deps group (#​1676)
• Bump the all-deps group with 2 updates (#​1677)
• Bump github/codeql-action from 3.28.10 to 3.28.11 in the all-deps group (#​1670)
• Bump the all-deps group with 8 updates (#​1672)
• Bump the docker-deps group across 4 directories with 1 update (#​1671)
• Bump the docker-deps group across 4 directories with 1 update (#​1668)
• Bump the all-deps group with 4 updates (#​1666)
• Bump golangci-lint from 1.55.1 to 1.61.0 (#​1667)
• Bump the all-deps group with 3 updates (#​1665)
• Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 in the all-deps group (#​1660)
• Bump the docker-deps group across 5 directories with 2 updates (#​1661)
• Bump golangci/golangci-lint-action in the all-deps group (#​1662)
• Bump the docker-deps group across 4 directories with 1 update (#​1656)
• Bump the all-deps group with 2 updates (#​1654)
• Bump the all-deps group with 4 updates (#​1657)
• Bump github/codeql-action from 3.28.5 to 3.28.8 in the all-deps group (#​1652)
• Bump github.com/spf13/pflag from 1.0.5 to 1.0.6 in the all-deps group (#​1651)
• Bump the all-deps group with 2 updates (#​1649)
• Bump the all-deps group with 5 updates (#​1650)
• Bump the docker-deps group across 5 directories with 3 updates (#​1648)
• Bump google.golang.org/protobuf in the all-deps group (#​1647)
• Bump golangci/golangci-lint-action in the all-deps group (#​1646)

google/gnostic-models (github.com/google/gnostic-models)

v0.7.0

Compare Source

google/go-containerregistry (github.com/google/go-containerregistry)

v0.20.6

Compare Source

What's Changed

• Ensure that tag name is not empty if name contains colon by @​SaschaSchwarze0 in #​2094
• Bump some deps by @​jonjohnsonjr in #​2110

New Contributors

• @​SaschaSchwarze0 made their first contribution in #​2094

Full Changelog: google/go-containerregistry@v0.20.4...v0.20.6

v0.20.5

Compare Source

What's Changed

• build(deps): bump docker/docker to v28.0.0+incompatible by @​luhring in #​2071
• Migrate linter to v2 by @​Subserial in #​2096
• bump go version + bump deps by @​Subserial in #​2093
• implement TextMarshaler/JSONMarshaler more consistently by @​imjasonh in #​2097
• Update CodeQL permissions by @​Subserial in #​2103
• Update goreleaser permissions by @​Subserial in #​2104
• Update provenance action in release by @​Subserial in #​2105
• Update validator action by @​Subserial in #​2106

New Contributors

• @​luhring made their first contribution in #​2071
• @​Subserial made their first contribution in #​2096

Full Changelog: google/go-containerregistry@v0.20.3...v0.20.5

v0.20.4: - Not usable as a go module

Compare Source

🚨 This release was published to the Go module proxy and then re-tagged with a different commit. This means it's not usable as a Go module (#​2107) -- please us v0.20.5 instead.

What's Changed

• build(deps): bump docker/docker to v28.0.0+incompatible by @​luhring in #​2071
• Migrate linter to v2 by @​Subserial in #​2096
• bump go version + bump deps by @​Subserial in #​2093
• implement TextMarshaler/JSONMarshaler more consistently by @​imjasonh in #​2097
• Update CodeQL permissions by @​Subserial in #​2103
• Update goreleaser permissions by @​Subserial in #​2104
• Update provenance action in release by @​Subserial in #​2105
• Update validator action by @​Subserial in #​2106

New Contributors

• @​luhring made their first contribution in #​2071
• @​Subserial made their first contribution in #​2096

Full Changelog: google/go-containerregistry@v0.20.3...v0.20.4

klauspost/compress (github.com/klauspost/compress)

v1.18.1

Compare Source

What's Changed

• zstd: Fix incorrect buffer size in dictionary encodes by @​klauspost in #​1059
• s2: check for cap, not len of buffer in EncodeBetter/Best by @​vdarulis in #​1080
• zstd: Add simple zstd EncodeTo/DecodeTo functions by @​klauspost in #​1079
• zlib: Avoiding extra allocation in zlib.reader.Reset by @​travelpolicy in #​1086
• gzhttp: remove redundant err check in zstdReader by @​ryanfowler in #​1090
• Run modernize. Deprecate Go 1.22 by @​klauspost in #​1095
• flate: Simplify matchlen by @​klauspost in #​1101
• flate: Add examples by @​klauspost in #​1102
• flate: Use exact sizes for huffman tables by @​klauspost in #​1103
• flate: Faster load+store by @​klauspost in #​1104
• Add notice to S2 about MinLZ by @​klauspost in #​1065

New Contributors

• @​wooffie made their first contribution in #​1069
• @​vdarulis made their first contribution in #​1080
• @​travelpolicy made their first contribution in #​1086
• @​ryanfowler made their first contribution in #​1090

Full Changelog: klauspost/compress@v1.18.0...v1.18.1

mailru/easyjson (github.com/mailru/easyjson)

v0.9.1

Compare Source

What's Changed

• Fix unmarshal null to existing value by @​neal in #​407
• Fix unmarshal null values for non-pointer fields by @​neal in #​411
• feat: Add version and commit information to easyjson generator by @​stickpro in #​424

New Contributors

• @​neal made their first contribution in #​407
• @​stickpro made their first contribution in #​424

Full Changelog: mailru/easyjson@v0.9.0...v0.9.1

operator-framework/api (github.com/operator-framework/api)

v0.36.0

Compare Source

What's Changed

• Bump sigs.k8s.io/controller-runtime from 0.22.1 to 0.22.2 in the k8s-dependencies group by @​dependabot[bot] in #​452
• Bump sigs.k8s.io/controller-runtime from 0.22.2 to 0.22.3 in the k8s-dependencies group by @​dependabot[bot] in #​453
• bump go version to fix GO-2025-3956 by @​grokspawn in #​455

Full Changelog: operator-framework/api@v0.35.0...v0.36.0

v0.35.0

Compare Source

Notice

This release updates to k8s 1.34

What's Changed

• Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by @​dependabot[bot] in #​445
• Bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @​dependabot[bot] in #​446
• Bump github.com/google/cel-go from 0.26.0 to 0.26.1 by @​dependabot[bot] in #​448
• Bump actions/setup-go from 5 to 6 by @​dependabot[bot] in #​449
• Bump actions/stale from 9 to 10 by @​dependabot[bot] in #​450
• Bump the k8s-dependencies group with 5 updates by @​dependabot[bot] in #​447
• Bump the k8s-dependencies group with 5 updates by @​dependabot[bot] in #​451

Full Changelog: operator-framework/api@v0.34.0...v0.35.0

v0.34.0

Compare Source

What's Changed

• Bump the k8s-dependencies group with 5 updates by @​dependabot[bot] in #​440
• Bump actions/checkout from 4 to 5 by @​dependabot[bot] in #​441
• Bump the k8s-dependencies group with 4 updates by @​dependabot[bot] in #​442
• Bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by @​dependabot[bot] in #​444

Full Changelog: operator-framework/api@v0.33.0...v0.34.0

v0.33.0

Compare Source

What's Changed

• Bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 in the k8s-dependencies group by @​dependabot[bot] in #​436
• Bump github.com/google/cel-go from 0.25.0 to 0.26.0 by @​dependabot[bot] in #​437
• normalize unit test targets across repos. add skip/target test args by @​grokspawn in #​438
• bump go version to fix https://pkg.go.dev/vuln/GO-2025-3751 by @​grokspawn in #​439

Full Changelog: operator-framework/api@v0.32.0...v0.33.0

v0.32.0

Compare Source

What's Changed

• 🌱 add go version check to protect us from accidentally upgraded by @​camilamacedo86 in #​423
• 🌱 fixup go-verdiff job by @​perdasilva in #​426
• 🌱 (cleanup): Update Owner Alias - remove inactive maintainers by @​camilamacedo86 in #​427
• 🌱 Owner: Add camilamacedo86 and tmshort as approver by @​camilamacedo86 in #​428
• 🌱 (ci) - Add stale config to close PRs and issues which are inactivity by @​camilamacedo86 in #​431
• 🌱 Allow override of go-verdiff result via label by @​tmshort in #​433
• ✨ Update k8s 1 33 by @​acornett21 in #​432
• ✨ Upgrade controller-gen from v0.17.2 to v0.18.0 and re-generate CRDs by @​camilamacedo86 in #​434
• ✨ Upgrade google.golang.org/genproto/googleapis/api and indirect dependencies by @​camilamacedo86 in #​435

Full Changelog: operator-framework/api@v0.31.0...v0.32.0

operator-framework/operator-lib (github.com/operator-framework/operator-lib)

v0.19.0

Compare Source

What's Changed

• 🌱 Bump github.com/operator-framework/api from 0.30.0 to 0.31.0 by @​dependabot in #​238
• 🌱 Bump github.com/go-logr/logr from 1.4.2 to 1.4.3 by @​dependabot in #​240
• updating dependencies to support k8s 1.33 by @​acornett21 in #​241

Full Changelog: operator-framework/operator-lib@v0.18.0...v0.19.0

prometheus-operator/prometheus-operator (github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring)

v0.86.2: 0.86.2 / 2025-11-07

Compare Source

• [CHANGE/BUGFIX] Fix operator's permissions to emit Kubernetes events. #​8077

v0.86.1: 0.86.1 / 2025-10-13

Compare Source

• [BUGFIX] Fix formatting of Kubernetes events. #​8015

v0.86.0: 0.86.0 / 2025-10-07

Compare Source

[!NOTE]
This release introduces the status subresource (behind the StatusForConfigurationResources feature gate) for ServiceMonitor, PodMonitor, Probe and Scrapeconfig custom resources. It is only supported for Prometheus resources.

[!IMPORTANT]
This release enables automatic UTF-8 character support in label names, metric names and PrometheusRule expressions for Prometheus/PrometheusAgent resources running with version >= 3.0.0.

To preserve backward compatibility, the admission webhook service validates PrometheusRule resources against the legacy Prometheus scheme by default (but it can be changed with the --name-validation-scheme flag).

• [CHANGE] Remove automatic addition of the metadata-wal-records feature flag for Prometheus versions >= 3.4. #​7893
• [CHANGE] Add miscellaneous validations to the ScrapeConfig CRD. #​7856 #​7823 #​7835 #​7838 #​7838 ##​7966
• [CHANGE/FEATURE] Add support for UTF-8 characters to label names and metric names in PrometheusRule resources and relabel configurations. #​7637 #​7985
• [FEATURE] Add the flag --name-validation-scheme to admission webhook to select between utf8 and legacy validations. #​7985
• [FEATURE] Add status subresource for ServiceMonitor custom resources (requires the StatusForConfigurationResources feature gate). #​7767 #​7836 #​7827 #​7795
• [FEATURE] Add status subresource for PodMonitor custom resources (requires the StatusForConfigurationResources feature gate). #​7929 #​7914 #​7936
• [FEATURE] Add status subresource for ScrapeConfig custom resources (requires the StatusForConfigurationResources feature gate). #​7958 #​7964 #​7969
• [FEATURE] Add status subresource for Probe custom resources (requires the StatusForConfigurationResources feature gate). #​7933 #​7934 #​7980
• [FEATURE] Add serviceDiscoveryRole field to ServiceMonitor. #​7982
• [FEATURE] Add useFIPSSTSEndpoint field to Sigv4 config. #​7987
• [FEATURE] Add UnderscoreEscapingWithoutSuffixes to the translationStrategy field for the Prometheus and PrometheusAgent CRDs. #​7947
• [FEATURE] Add promoteScopeMetadata field to the Prometheus and PrometheusAgent CRDs. #​7803
• [FEATURE] Add enableHttp2 field to Alertmanager and AlertmanagerConfig CRDs. #​7963
• [ENHANCEMENT] Add the related object to the events emitted by the operator. #​7867 #​7953
• [ENHANCEMENT] Add webhook validation for the MSTeams V2 receiver of AlertmanagerConfig CRD. [#​7906](https://redirect.github.com/pr

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[red-hat-konflux]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 5 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.23.6 -> 1.24.6
google.golang.org/grpc	v1.72.0 -> v1.73.0
google.golang.org/protobuf	v1.36.6 -> v1.36.10
github.com/docker/cli	v27.5.1+incompatible -> v28.2.2+incompatible
github.com/fxamacker/cbor/v2	v2.8.0 -> v2.9.0
github.com/modern-go/reflect2	v1.0.2 -> v1.0.3-0.20250322232337-35a7c28c31ee