diff --git a/Dockerfile.agent.local b/Dockerfile.agent.local index 2dd19e35..d066aaf1 100644 --- a/Dockerfile.agent.local +++ b/Dockerfile.agent.local @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 # the agent needs to run as root, there is no way around this USER 0 diff --git a/Dockerfile.controller.local b/Dockerfile.controller.local index 4b02857d..1f892593 100644 --- a/Dockerfile.controller.local +++ b/Dockerfile.controller.local @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 COPY ./bin/kvisor-controller /app/kvisor-controller diff --git a/Dockerfile.e2e b/Dockerfile.e2e index b0ae8b62..56fd2160 100644 --- a/Dockerfile.e2e +++ b/Dockerfile.e2e @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 RUN apk update && apk add curl bash RUN curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 && chmod 700 get_helm.sh && VERIFY_CHECKSUM=false ./get_helm.sh diff --git a/Dockerfile.event-generator b/Dockerfile.event-generator index bdc7249a..b305f9bd 100644 --- a/Dockerfile.event-generator +++ b/Dockerfile.event-generator @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 COPY ./bin/kvisor-event-generator /app/kvisor-event-generator diff --git a/Dockerfile.mock-server b/Dockerfile.mock-server index bf63e279..e061559d 100644 --- a/Dockerfile.mock-server +++ b/Dockerfile.mock-server @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 COPY ./bin/kvisor-mock-server /app/kvisor-mock-server diff --git a/Dockerfile.scanners b/Dockerfile.scanners index 0e4843b4..fb56d3c2 100644 --- a/Dockerfile.scanners +++ b/Dockerfile.scanners @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 # Needed for kube-bench. RUN apk --no-cache add procps diff --git a/Dockerfile.scanners.local b/Dockerfile.scanners.local index 4f50a411..96de04d0 100644 --- a/Dockerfile.scanners.local +++ b/Dockerfile.scanners.local @@ -1,4 +1,4 @@ -FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c +FROM alpine:3.23.3@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 # Needed for kube-bench. RUN apk --no-cache add procps diff --git a/charts/kvisor/values.yaml b/charts/kvisor/values.yaml index 078cda14..3722eee1 100644 --- a/charts/kvisor/values.yaml +++ b/charts/kvisor/values.yaml @@ -251,7 +251,7 @@ agent: enabled: true image: repository: us-docker.pkg.dev/castai-hub/library/reliability-metrics-otel-collector - tag: "v0.1.4" + tag: "v0.1.5@sha256:5c9ee7ab25bf3a2105e32fe483ed4ba0f722bdf42550bbdf6878ce9a49a81e41" resources: requests: memory: 128Mi @@ -406,7 +406,7 @@ controller: enabled: true image: repository: us-docker.pkg.dev/castai-hub/library/reliability-metrics-otel-collector - tag: "v0.1.4" + tag: "v0.1.5@sha256:5c9ee7ab25bf3a2105e32fe483ed4ba0f722bdf42550bbdf6878ce9a49a81e41" resources: requests: cpu: 250m @@ -466,7 +466,7 @@ clickhouse: image: repository: clickhouse/clickhouse-server pullPolicy: IfNotPresent - tag: "25.2.1.3085-alpine@sha256:49e2bbe28760d0af142096d837ca2337b0265c910a07504a3175fc9326965bd7" + tag: "25.12.9.61-alpine@sha256:b86ee095d78e0a5509056b11b99160abd6ced1d82e841565015ef66fd7fea177" nodeSelector: {} tolerations: [] diff --git a/devbox.json b/devbox.json index c768999d..86c8aa12 100644 --- a/devbox.json +++ b/devbox.json @@ -1,18 +1,18 @@ { "$schema": "https://raw.githubusercontent.com/jetpack-io/devbox/0.10.4/.schema/devbox.schema.json", "packages": [ - "go@1.24.0", + "go@1.26.1", "llvm_14@14.0.6", "clang_14@14.0.6", "protobuf@32.0", - "protoc-gen-go@1.36.9", - "protoc-gen-go-grpc@1.5.1", - "tilt@0.33.21", - "bpftrace@0.22.1", + "protoc-gen-go@1.36.11", + "protoc-gen-go-grpc@1.6.1", + "tilt@0.36.3", + "bpftrace@0.25.0", "bpftool@5.19.12", - "kind@0.27.0", - "kubectl@1.32.2", - "golangci-lint@2.0.0" + "kind@0.31.0", + "kubectl@1.35.3", + "golangci-lint@2.11.3" ], "env": { "GOROOT": "$PWD/.devbox/nix/profile/default/share/go" diff --git a/docker-compose.yaml b/docker-compose.yaml index 188342e9..6fbc1781 100644 --- a/docker-compose.yaml +++ b/docker-compose.yaml @@ -1,7 +1,7 @@ version: '3.8' services: clickhouse: - image: clickhouse/clickhouse-server:25.2.1.3085-alpine@sha256:49e2bbe28760d0af142096d837ca2337b0265c910a07504a3175fc9326965bd7 + image: clickhouse/clickhouse-server:25.12.9.61-alpine@sha256:b86ee095d78e0a5509056b11b99160abd6ced1d82e841565015ef66fd7fea177 restart: always environment: - CLICKHOUSE_USER=storage diff --git a/go.mod b/go.mod index a9e65982..46814a30 100644 --- a/go.mod +++ b/go.mod @@ -4,67 +4,67 @@ go 1.24.6 require ( cloud.google.com/go/compute v1.52.0 - github.com/ClickHouse/clickhouse-go/v2 v2.32.2 - github.com/aquasecurity/trivy v0.61.1 - github.com/aws/aws-sdk-go-v2 v1.41.1 - github.com/aws/aws-sdk-go-v2/config v1.29.13 - github.com/aws/aws-sdk-go-v2/service/ec2 v1.279.1 + github.com/ClickHouse/clickhouse-go/v2 v2.43.0 + github.com/aquasecurity/trivy v0.69.3 + github.com/aws/aws-sdk-go-v2 v1.41.4 + github.com/aws/aws-sdk-go-v2/config v1.32.12 + github.com/aws/aws-sdk-go-v2/service/ec2 v1.296.0 github.com/castai/image-analyzer v0.10.0 - github.com/castai/logging v0.3.0 + github.com/castai/logging v0.4.0 github.com/castai/metrics v0.0.0-20250917084341-1533777a055a - github.com/cenkalti/backoff/v5 v5.0.2 + github.com/cenkalti/backoff/v5 v5.0.3 github.com/cespare/xxhash/v2 v2.3.0 - github.com/cilium/cilium v1.17.0-pre.2 - github.com/cilium/ebpf v0.17.3 - github.com/containerd/containerd v1.7.29 - github.com/containerd/containerd/api v1.8.0 + github.com/cilium/cilium v1.19.2 + github.com/cilium/ebpf v0.21.0 + github.com/containerd/containerd v1.7.30 + github.com/containerd/containerd/api v1.10.0 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc github.com/elastic/go-freelru v0.16.0 - github.com/fatih/color v1.18.0 - github.com/florianl/go-conntrack v0.4.0 - github.com/go-playground/validator/v10 v10.26.0 + github.com/fatih/color v1.19.0 + github.com/florianl/go-conntrack v0.7.0 + github.com/go-playground/validator/v10 v10.30.1 github.com/golang/glog v1.2.5 - github.com/google/go-containerregistry v0.20.3 + github.com/google/go-containerregistry v0.21.3 github.com/google/gopacket v1.1.19 github.com/google/uuid v1.6.0 - github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus v1.0.1 - github.com/hamba/avro/v2 v2.27.0 + github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus v1.1.0 + github.com/hamba/avro/v2 v2.31.0 github.com/iancoleman/strcase v0.3.0 - github.com/jedib0t/go-pretty/v6 v6.6.7 + github.com/jedib0t/go-pretty/v6 v6.7.8 github.com/joho/godotenv v1.5.1 github.com/json-iterator/go v1.1.12 github.com/kelseyhightower/envconfig v1.4.0 - github.com/labstack/echo/v4 v4.13.3 - github.com/magiconair/properties v1.8.9 + github.com/labstack/echo/v4 v4.15.1 + github.com/magiconair/properties v1.8.10 github.com/mattn/go-shellwords v1.0.12 - github.com/miekg/dns v1.1.62 + github.com/miekg/dns v1.1.72 github.com/onsi/ginkgo v1.16.5 - github.com/prometheus/client_golang v1.21.1 - github.com/redis/go-redis/v9 v9.7.3 - github.com/samber/lo v1.49.1 - github.com/sirupsen/logrus v1.9.3 - github.com/spf13/cobra v1.9.1 - github.com/spf13/pflag v1.0.6 - github.com/spf13/viper v1.20.1 + github.com/prometheus/client_golang v1.23.2 + github.com/redis/go-redis/v9 v9.18.0 + github.com/samber/lo v1.53.0 + github.com/sirupsen/logrus v1.9.4 + github.com/spf13/cobra v1.10.2 + github.com/spf13/pflag v1.0.10 + github.com/spf13/viper v1.21.0 github.com/stretchr/testify v1.11.1 - github.com/testcontainers/testcontainers-go v0.35.0 - github.com/tklauser/go-sysconf v0.3.15 + github.com/testcontainers/testcontainers-go v0.41.0 + github.com/tklauser/go-sysconf v0.3.16 github.com/vishvananda/netns v0.0.5 github.com/yl2chen/cidranger v1.0.2 go.uber.org/atomic v1.11.0 go.uber.org/goleak v1.3.0 - golang.org/x/net v0.46.0 - golang.org/x/sync v0.19.0 - golang.org/x/sys v0.37.0 - golang.org/x/time v0.14.0 - golang.stackrox.io/kube-linter v0.7.3-0.20250507172404-3f4b9037f56f - google.golang.org/grpc v1.76.0 - google.golang.org/protobuf v1.36.10 + golang.org/x/net v0.52.0 + golang.org/x/sync v0.20.0 + golang.org/x/sys v0.42.0 + golang.org/x/time v0.15.0 + golang.stackrox.io/kube-linter v0.8.3 + google.golang.org/grpc v1.79.3 + google.golang.org/protobuf v1.36.11 gopkg.in/yaml.v3 v3.0.1 - k8s.io/api v0.32.3 - k8s.io/apimachinery v0.32.3 - k8s.io/client-go v0.32.3 - k8s.io/cri-api v0.32.2 + k8s.io/api v0.35.3 + k8s.io/apimachinery v0.35.3 + k8s.io/client-go v0.35.3 + k8s.io/cri-api v0.35.3 ) require ( @@ -421,12 +421,12 @@ require ( go.uber.org/zap v1.27.0 // indirect golang.org/x/crypto v0.43.0 // indirect golang.org/x/exp v0.0.0-20250210185358-939b2ce775ac // indirect - golang.org/x/mod v0.28.0 + golang.org/x/mod v0.34.0 golang.org/x/oauth2 v0.33.0 // indirect golang.org/x/term v0.36.0 // indirect golang.org/x/text v0.30.0 // indirect golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da - google.golang.org/api v0.256.0 + google.golang.org/api v0.273.0 google.golang.org/genproto v0.0.0-20250603155806-513f23925822 // indirect google.golang.org/genproto/googleapis/api v0.0.0-20251111163417-95abcf5c77ba // indirect google.golang.org/genproto/googleapis/rpc v0.0.0-20251103181224-f26f9409b101 // indirect @@ -445,4 +445,4 @@ require ( ) // Needed by keda https://github.com/kedacore/keda/blob/main/go.mod#L140 -replace github.com/prometheus/prometheus => github.com/prometheus/prometheus v0.54.0 +replace github.com/prometheus/prometheus => github.com/prometheus/prometheus v0.310.0