Bump the security group across 1 directory with 6 updates

[dependabot]

Bumps the security group with 4 updates in the / directory: github.com/stretchr/testify, github.com/vmware-tanzu/velero, k8s.io/api and k8s.io/client-go.

Updates github.com/stretchr/testify from 1.9.0 to 1.10.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.10.0

What's Changed

Functional Changes

• Add PanicAssertionFunc by @​fahimbagar in stretchr/testify#1337
• assert: deprecate CompareType by @​dolmen in stretchr/testify#1566
• assert: make YAML dependency pluggable via build tags by @​dolmen in stretchr/testify#1579
• assert: new assertion NotElementsMatch by @​hendrywiranto in stretchr/testify#1600
• mock: in order mock calls by @​ReyOrtiz in stretchr/testify#1637
• Add assertion for NotErrorAs by @​palsivertsen in stretchr/testify#1129
• Record Return Arguments of a Call by @​jayd3e in stretchr/testify#1636
• assert.EqualExportedValues: accepts everything by @​redachl in stretchr/testify#1586

Fixes

• assert: make tHelper a type alias by @​dolmen in stretchr/testify#1562
• Do not get argument again unnecessarily in Arguments.Error() by @​TomWright in stretchr/testify#820
• Fix time.Time compare by @​myxo in stretchr/testify#1582
• assert.Regexp: handle []byte array properly by @​kevinburkesegment in stretchr/testify#1587
• assert: collect.FailNow() should not panic by @​marshall-lee in stretchr/testify#1481
• mock: simplify implementation of FunctionalOptions by @​dolmen in stretchr/testify#1571
• mock: caller information for unexpected method call by @​spirin in stretchr/testify#1644
• suite: fix test failures by @​stevenh in stretchr/testify#1421
• Fix issue #1662 (comparing infs should fail) by @​ybrustin in stretchr/testify#1663
• NotSame should fail if args are not pointers #1661 by @​sikehish in stretchr/testify#1664
• Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by @​sikehish in stretchr/testify#1667
• fix: compare functional option names for indirect calls by @​arjun-1 in stretchr/testify#1626

Documantation, Build & CI

• .gitignore: ignore "go test -c" binaries by @​dolmen in stretchr/testify#1565
• mock: improve doc by @​dolmen in stretchr/testify#1570
• mock: fix FunctionalOptions docs by @​snirye in stretchr/testify#1433
• README: link out to the excellent testifylint by @​brackendawson in stretchr/testify#1568
• assert: fix typo in comment by @​JohnEndson in stretchr/testify#1580
• Correct the EventuallyWithT and EventuallyWithTf example by @​JonCrowther in stretchr/testify#1588
• CI: bump softprops/action-gh-release from 1 to 2 by @​dependabot in stretchr/testify#1575
• mock: document more alternatives to deprecated AnythingOfTypeArgument by @​dolmen in stretchr/testify#1569
• assert: Correctly document EqualValues behavior by @​brackendawson in stretchr/testify#1593
• fix: grammar in godoc by @​miparnisari in stretchr/testify#1607
• .github/workflows: Run tests for Go 1.22 by @​HaraldNordgren in stretchr/testify#1629
• Document suite's lack of support for t.Parallel by @​brackendawson in stretchr/testify#1645
• assert: fix typos in comments by @​alexandear in stretchr/testify#1650
• mock: fix doc comment for NotBefore by @​alexandear in stretchr/testify#1651
• Generate better comments for require package by @​Neokil in stretchr/testify#1610
• README: replace Testify V2 notice with @​dolmen's V2 manifesto by @​hendrywiranto in stretchr/testify#1518

New Contributors

• @​fahimbagar made their first contribution in stretchr/testify#1337
• @​TomWright made their first contribution in stretchr/testify#820
• @​snirye made their first contribution in stretchr/testify#1433
• @​myxo made their first contribution in stretchr/testify#1582
• @​JohnEndson made their first contribution in stretchr/testify#1580

... (truncated)

Commits

• 89cbdd9 Merge pull request #1626 from arjun-1/fix-functional-options-diff-indirect-calls
• 07bac60 Merge pull request #1667 from sikehish/flaky
• 716de8d Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI
• 118fb83 NotSame should fail if args are not pointers #1661 (#1664)
• 7d99b2b attempt 2
• 05f87c0 more similar
• ea7129e better fmt
• a1b9c9e Merge pull request #1663 from ybrustin/master
• 8302de9 Merge branch 'master' into master
• 89352f7 Merge pull request #1518 from hendrywiranto/adjust-readme-remove-v2
• Additional commits viewable in compare view

Updates github.com/vmware-tanzu/velero from 1.14.1 to 1.15.1

Release notes

Sourced from github.com/vmware-tanzu/velero's releases.

v1.15.1

Download

https://github.com/vmware-tanzu/velero/releases/tag/v1.15.1

Container Image

velero/velero:v1.15.1

Documentation

https://velero.io/docs/v1.15/

Upgrading

https://velero.io/docs/v1.15/upgrade-to-1.15/

All Changes

• Fix backup post hook issue #8159 (caused by #7571): always execute backup post hooks after PVBs are handled (#8517, @​ywk253100)
• Fix issue #8125, log diagnostic info for data mover exposers when expose timeout (#8511, @​Lyndon-Li)
• Set hinting region to use for GetBucketRegion() in pkg/repository/config/aws.go (#8505, @​kaovilai)
• Fix issue #8433, add third party labels to data mover pods when the same labels exist in node-agent pods (#8501, @​Lyndon-Li)
• Fix issue #8485, add an accepted time so as to count the prepare timeout (#8496, @​Lyndon-Li)
• Add SecurityContext to restore-helper (#8495, @​reasonerjt)
• Add nil check for updating DataUpload VolumeInfo in finalizing phase. (#8465, @​blackpiglet)
• Fix issue #8391, check ErrCancelled from suffix of data mover pod's termination message (#8404, @​Lyndon-Li)
• Fix issue #8394, don't call closeDataPath in VGDP callbacks, otherwise, the VGDP cleanup will hang (#8402, @​Lyndon-Li)
• Reduce minimum required go toolchain in release-1.15 go.mod (#8399, @​kaovilai)
• Fix issue #8539, validate uploader types when o.CRDsOnly is set to false only since CRD installation doesn't rely on uploader types (#8540, @​Lyndon-Li)

v1.15.1-rc.1

v1.15.1

Download

https://github.com/vmware-tanzu/velero/releases/tag/v1.15.1

Container Image

velero/velero:v1.15.1

Documentation

https://velero.io/docs/v1.15/

Upgrading

https://velero.io/docs/v1.15/upgrade-to-1.15/

Known Issues

There are known issues that when the repository maintenance jobs continuously fail, the repository may undergo significant performance downgrade or even deny of service. Therefore, you need to monitor the status of maintenance jobs and make sure the failures are fixed to avoid impact to your backup/restore.

All Changes

• Fix backup post hook issue #8159 (caused by #7571): always execute backup post hooks after PVBs are handled (#8517, @​ywk253100)
• Fix issue #8125, log diagnostic info for data mover exposers when expose timeout (#8511, @​Lyndon-Li)
• Set hinting region to use for GetBucketRegion() in pkg/repository/config/aws.go (#8505, @​kaovilai)
• Fix issue #8433, add third party labels to data mover pods when the same labels exist in node-agent pods (#8501, @​Lyndon-Li)

... (truncated)

Commits

• 32499fc Merge pull request #8546 from blackpiglet/skip_deprecation_message
• b281ddb Skip the deprecation message for the dry-run install CLI JSON output.
• be14d4f Merge pull request #8547 from ywk253100/241223_ut
• 0e54406 Bug fix: increase the WaitGroup counter before start the goroutine
• 845f4ee Merge pull request #8545 from Lyndon-Li/release-1.15
• 6e9397d Pin the version of Golang and base image for v1.15.1
• 5ca1d18 Merge pull request #8544 from blackpiglet/migration_init_release_1.15
• 68e381d Modify the Init logic to fix the migration case error.
• b661ed7 Merge pull request #8540 from Lyndon-Li/release-1.15
• 11a2be6 hide restic deprecation warning for install with crd-only
• Additional commits viewable in compare view

Updates k8s.io/api from 0.31.1 to 0.32.0

Commits

• e622342 Update dependencies to v0.32.0 tag
• b0543a3 Merge remote-tracking branch 'origin/master' into release-1.32
• f6bae9a Drop use of winreadlinkvolume godebug option
• ea815d5 Merge remote-tracking branch 'origin/master' into release-1.32
• c331a79 Revert to go1.22 windows filesystem stdlib behavior
• f8e5e36 Merge pull request #128407 from ndixita/pod-level-resources
• 84e0db8 Merge pull request #127857 from Jefftree/cle-v1alpha2
• cbaf5a0 Merge pull request #128686 from thockin/take_over_pr-125233
• a503a4f Merge pull request #128687 from tallclair/allocated-status
• 3f43b5a Merge pull request #128240 from LionelJouin/KEP-4817
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.31.1 to 0.32.0

Commits

• 59e9003 Merge remote-tracking branch 'origin/master' into release-1.32
• 639247c Drop use of winreadlinkvolume godebug option
• 220d7c3 Merge remote-tracking branch 'origin/master' into release-1.32
• c199d3b Revert to go1.22 windows filesystem stdlib behavior
• 16af2ff implement unsafe deletion, and wire it
• 6ff8305 api: run codegen
• ca9b8b2 api: add a new field to meta/v1 DeleteOptions
• d941d9f Merge pull request #128503 from benluddy/cbor-codecs-featuregate
• 3b4250f Wire serving codecs to CBOR feature gate.
• daaad09 Merge pull request #128501 from benluddy/watch-cbor-seq
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.31.1 to 0.32.0

Commits

• 0d55461 Update dependencies to v0.32.0 tag
• 4765ade Merge remote-tracking branch 'origin/master' into release-1.32
• 692a511 Drop use of winreadlinkvolume godebug option
• 9df5099 Merge remote-tracking branch 'origin/master' into release-1.32
• 120beb2 Revert to go1.22 windows filesystem stdlib behavior
• 55d23e2 Align fake client-go clients with the main interface
• 646e79b Run codegen
• c475fe0 Generify fake clientsets
• 955401c Merge pull request #128407 from ndixita/pod-level-resources
• eddb107 Merge pull request #127857 from Jefftree/cle-v1alpha2
• Additional commits viewable in compare view

Updates k8s.io/utils from 0.0.0-20240711033017-18e509b52bc8 to 0.0.0-20241104100929-3ea5e8cea738

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.