chore(deps): bump pkg.package-operator.run/cardboard from 0.0.4 to 0.1.0 by dependabot[bot] · Pull Request #433 · package-operator/boxcutter

dependabot · 2026-02-05T16:24:43Z

Bumps pkg.package-operator.run/cardboard from 0.0.4 to 0.1.0.

Release notes

Sourced from pkg.package-operator.run/cardboard's releases.

v0.1.0

What's Changed

build(deps): bump golang.org/x/sys from 0.29.0 to 0.30.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#623

build(deps): bump golang.org/x/text from 0.21.0 to 0.22.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#625

build(deps): bump golang.org/x/sys from 0.29.0 to 0.30.0 by @dependabot[bot] in package-operator/cardboard#626

build(deps): bump golang.org/x/term from 0.28.0 to 0.29.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#621

build(deps): bump golang.org/x/oauth2 from 0.25.0 to 0.26.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#622

build(deps): bump golang.org/x/time from 0.9.0 to 0.10.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#624

chore(dependabot): add maintainer rotation by @erdii in package-operator/cardboard#627

build(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5 in /modules/kind by @dependabot[bot] in package-operator/cardboard#629

Update all the deps by @eqrx in package-operator/cardboard#631

build(deps): bump golang.org/x/net from 0.34.0 to 0.35.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#632

Update things by @eqrx in package-operator/cardboard#636

Run go mod tidy everywhere and go work sync on toplevel by @eqrx in package-operator/cardboard#637

build(deps): bump sigs.k8s.io/controller-runtime from 0.20.1 to 0.20.2 in /modules/kind by @dependabot[bot] in package-operator/cardboard#643

build(deps): bump github.com/klauspost/compress from 1.17.11 to 1.18.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#648

build(deps): bump github.com/rogpeppe/go-internal from 1.13.1 to 1.14.0 by @dependabot[bot] in package-operator/cardboard#658

build(deps): bump sigs.k8s.io/kind from 0.26.0 to 0.27.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#646

build(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#654

build(deps): bump github.com/rogpeppe/go-internal from 1.14.0 to 1.14.1 by @dependabot[bot] in package-operator/cardboard#661

Flip task and stream name around in log output to reduce vertical shifts when looking through multiple log lines. by @erdii in package-operator/cardboard#639

build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#686

build(deps): bump golang.org/x/oauth2 from 0.26.0 to 0.28.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#682

build(deps): bump golang.org/x/text from 0.22.0 to 0.23.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#681

build(deps): bump github.com/prometheus/client_golang from 1.20.5 to 1.21.1 in /modules/kind by @dependabot[bot] in package-operator/cardboard#671

build(deps): bump the kube group in /modules/kind with 4 updates by @dependabot[bot] in package-operator/cardboard#640

build(deps): bump golang.org/x/term from 0.29.0 to 0.30.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#685

build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0 by @dependabot[bot] in package-operator/cardboard#687

build(deps): bump al.essio.dev/pkg/shellescape from 1.5.1 to 1.6.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#695

build(deps): bump sigs.k8s.io/controller-runtime from 0.20.2 to 0.20.3 in /modules/kind by @dependabot[bot] in package-operator/cardboard#696

build(deps): bump gomodules.xyz/jsonpatch/v2 from 2.4.0 to 2.5.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#697

build(deps): bump github.com/go-openapi/jsonpointer from 0.21.0 to 0.21.1 in /modules/kind by @dependabot[bot] in package-operator/cardboard#701

build(deps): bump github.com/prometheus/common from 0.62.0 to 0.63.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#708

build(deps): bump golang.org/x/net from 0.35.0 to 0.37.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#684

build(deps): bump the kube group in /modules/kind with 4 updates by @dependabot[bot] in package-operator/cardboard#709

build(deps): bump github.com/emicklei/go-restful/v3 from 3.12.1 to 3.12.2 in /modules/kind by @dependabot[bot] in package-operator/cardboard#663

build(deps): bump golang.org/x/time from 0.10.0 to 0.11.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#680

build(deps): bump sigs.k8s.io/structured-merge-diff/v4 from 4.5.0 to 4.6.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#670

build(deps): bump github.com/spf13/cobra from 1.8.1 to 1.9.1 in /modules/kind by @dependabot[bot] in package-operator/cardboard#647

simplify dependabot configuration by @erdii in package-operator/cardboard#714

[PKO-230] Reduce gotestfmt output msgs by @trevorwilliams2025 in package-operator/cardboard#710

Update dependencies by @eqrx in package-operator/cardboard#717

build(deps): bump github.com/BurntSushi/toml from 1.4.0 to 1.5.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#712

build(deps): bump sigs.k8s.io/controller-runtime from 0.20.3 to 0.20.4 in /modules/kind by @dependabot[bot] in package-operator/cardboard#719

build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6 in /modules/kind by @dependabot[bot] in package-operator/cardboard#720

build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6 in /modules/kubeclients by @dependabot[bot] in package-operator/cardboard#718

build(deps): bump sigs.k8s.io/controller-runtime from 0.20.1 to 0.20.4 in /modules/kubeclients by @dependabot[bot] in package-operator/cardboard#721

build(deps): bump sigs.k8s.io/controller-runtime from 0.20.1 to 0.20.4 in /kubeutils by @dependabot[bot] in package-operator/cardboard#723

build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6 in /kubeutils by @dependabot[bot] in package-operator/cardboard#722

build(deps): bump github.com/fxamacker/cbor/v2 from 2.7.0 to 2.8.0 in /modules/kind by @dependabot[bot] in package-operator/cardboard#726

... (truncated)

Commits

204ea02 Update dependencies (#1004)
767e48a build(deps): bump the golangx group across 3 directories with 3 updates (#996)
a2c15ab build(deps): bump the golangx group across 4 directories with 1 update (#994)
0a56b0f build(deps): bump github.com/prometheus/common from 0.67.4 to 0.67.5 in /modu...
bba11de build(deps): bump github.com/prometheus/common from 0.67.4 to 0.67.5 in /modu...
c13e6bc build(deps): bump github.com/prometheus/common from 0.67.4 to 0.67.5 in /kube...
18d692a build(deps): bump sigs.k8s.io/kind in /modules/kind (#989)
f66ee03 build(deps): bump github.com/BurntSushi/toml in /modules/kind (#988)
c5706e4 build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 in /modu...
54330ee build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 in /modu...
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

coderabbitai · 2026-02-05T16:24:59Z

Walkthrough

The Go module dependency pkg.package-operator.run/cardboard was updated from v0.0.4 to v0.1.0 in go.mod. No other files or dependency changes were included.

Changes

Cohort / File(s)	Summary
Dependency Version Update `go.mod`	Updated require block: `pkg.package-operator.run/cardboard` bumped from `v0.0.4` to `v0.1.0`.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 3 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR description is generated by Dependabot and covers the dependency bump with release notes and commit details, but lacks a structured summary, change type classification, and pre-merge checklist required by the template.	Add a clear summary section, specify the change type (e.g., 'Dependency Update'), and include the pre-merge checklist with marks indicating test coverage and documentation status.

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: a dependency version bump of pkg.package-operator.run/cardboard from 0.0.4 to 0.1.0.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Merge Conflict Detection	✅ Passed	✅ No merge conflicts detected when merging into `main`

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings (stacked PR)
📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

Create PR with unit tests
Post copyable unit tests in a comment
Commit unit tests in branch dependabot/go_modules/pkg.package-operator.run/cardboard-0.1.0

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

coderabbitai

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@go.mod`:
- Around line 18-20: The go.mod pins for cardboard submodules are inconsistent:
pkg.package-operator.run/cardboard is at v0.1.0 but
pkg.package-operator.run/cardboard/kubeutils and
pkg.package-operator.run/cardboard/modules/kind remain at v0.0.4; update those
module versions (pkg.package-operator.run/cardboard/kubeutils and
pkg.package-operator.run/cardboard/modules/kind) to v0.1.0 in go.mod so all
cardboard modules match the root and pull in the dependency refresh (including
the modules/kind bump to sigs.k8s.io/kind v0.27.0).

go.mod

Bumps [pkg.package-operator.run/cardboard](https://github.com/package-operator/cardboard) from 0.0.4 to 0.1.0. - [Release notes](https://github.com/package-operator/cardboard/releases) - [Commits](package-operator/cardboard@v0.0.4...v0.1.0) --- updated-dependencies: - dependency-name: pkg.package-operator.run/cardboard dependency-version: 0.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot assigned thetechnick Feb 5, 2026

dependabot bot requested a review from a team as a code owner February 5, 2026 16:24

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Feb 5, 2026

coderabbitai bot reviewed Feb 5, 2026

View reviewed changes

go.mod Outdated Show resolved Hide resolved

dependabot bot force-pushed the dependabot/go_modules/pkg.package-operator.run/cardboard-0.1.0 branch 4 times, most recently from e139c5d to 4bfb9da Compare February 16, 2026 10:50

dependabot bot force-pushed the dependabot/go_modules/pkg.package-operator.run/cardboard-0.1.0 branch from 4bfb9da to e4316ce Compare March 5, 2026 12:26

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump pkg.package-operator.run/cardboard from 0.0.4 to 0.1.0#433

chore(deps): bump pkg.package-operator.run/cardboard from 0.0.4 to 0.1.0#433
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/pkg.package-operator.run/cardboard-0.1.0

dependabot bot commented on behalf of github Feb 5, 2026 •

edited

Loading

Uh oh!

coderabbitai bot commented Feb 5, 2026 •

edited

Loading

❌ Failed checks (1 warning)

Uh oh!

coderabbitai bot left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Feb 5, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v0.1.0

What's Changed

Uh oh!

coderabbitai bot commented Feb 5, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Walkthrough

Changes

Estimated code review effort

❌ Failed checks (1 warning)

Uh oh!

coderabbitai bot left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot bot commented on behalf of github Feb 5, 2026 •

edited

Loading

coderabbitai bot commented Feb 5, 2026 •

edited

Loading