chore(deps): update pepr by renovate[bot] · Pull Request #1454 · defenseunicorns/uds-core

renovate · 2025-04-11T17:52:32Z

This PR contains the following updates:

Package	Type	Update	Change
defenseunicorns/pepr		minor	`v0.47.0` -> `v0.48.1`
lint-staged	devDependencies	patch	`15.5.0` -> `15.5.1`
pepr	dependencies	minor	`0.47.0` -> `0.48.1`
registry1.dso.mil/ironbank/opensource/defenseunicorns/pepr/controller (source)		minor	`v0.47.0` -> `v0.48.1`
ts-jest (source)	devDependencies	patch	`29.3.1` -> `29.3.2`

Release Notes

defenseunicorns/pepr (defenseunicorns/pepr)

Approving with Warnings

When(a.ConfigMap)
  .IsCreatedOrUpdated()
  .InNamespace("pepr-demo")
  .Validate(request => {
    const warnings = [];

    // Check for deprecated fields
    if (request.Raw.data && request.Raw.data["deprecated-field"]) {
      warnings.push("Warning: The 'deprecated-field' is being used and will be removed in future versions");
    }

    // Check for missing app label
    if (!request.HasLabel("app")) {
      warnings.push("Warning: Best practice is to include an 'app' label for resource identification");
    }

    // Return approval with warnings if any were generated
    return request.Approve(warnings.length > 0 ? warnings : undefined);
  });

Denying with Warnings

When(a.ConfigMap)
  .IsCreatedOrUpdated()
  .InNamespace("pepr-demo")
  .Validate(request => {
    // Check for dangerous settings
    if (request.Raw.data && request.Raw.data["dangerous-setting"] === "true") {
      const warnings = [
        "Warning: The 'dangerous-setting' field is set to 'true'",
        "Consider using a safer configuration option"
      ];

      return request.Deny(
        "ConfigMap contains dangerous settings that are not allowed",
        422,
        warnings
      );
    }

    return request.Approve();
  });

Warnings will be included in the Kubernetes API response and can be displayed to users by kubectl and other Kubernetes clients, providing helpful feedback while still enforcing policies.

What's Changed ♻️

fix: use consistent uuid length limit in docs by @samayer12 in https://github.com/defenseunicorns/pepr/pull/2000
chore: example to validate action by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2004
chore: account for unique dockerfile by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/1996
chore: build_version_no_exist by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2006
chore: shellcheck giving incorrect warning on nightlies.sh by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2009
chore: remove possible premature program exit from watch-processor by @samayer12 in https://github.com/defenseunicorns/pepr/pull/2010
chore: split watch-processor tests to separate test concerns by @samayer12 in https://github.com/defenseunicorns/pepr/pull/2014
chore: finalize example in actions docs by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2018
chore: reconcile and watch examples in action docs by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2019
chore: compliance reporting ADR by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/1824
chore: refactor watch-processor tests for clarity by @samayer12 in https://github.com/defenseunicorns/pepr/pull/2013
chore: make uds test use library by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2024
chore: removes the migrateAndSetupWatch out of store.ts for improved testability by @cmwylie19 in https://github.com/defenseunicorns/pepr/pull/2027

Dependabot 🤖

chore: bump step-security/harden-runner from 2.11.0 to 2.11.1 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2003
chore: bump @types/node from 22.13.14 to 22.13.17 in the development-dependencies group by @dependabot in https://github.com/defenseunicorns/pepr/pull/2001
chore: bump actions/dependency-review-action from 4.5.0 to 4.6.0 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2002
chore: bump the development-dependencies group with 2 updates by @dependabot in https://github.com/defenseunicorns/pepr/pull/2007
chore: bump kubernetes-fluent-client from 3.4.6 to 3.4.7 in the production-dependencies group by @dependabot in https://github.com/defenseunicorns/pepr/pull/2012
chore: bump trufflesecurity/trufflehog from 3.88.20 to 3.88.22 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2011
chore: bump library/node from 990d0ab to 047d633 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2016
chore: bump trufflesecurity/trufflehog from 3.88.22 to 3.88.23 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2015
chore: bump github/codeql-action from 3.28.13 to 3.28.15 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2021
chore: bump fast-check from 4.0.1 to 4.1.0 in the development-dependencies group by @dependabot in https://github.com/defenseunicorns/pepr/pull/2020
chore: bump fast-check from 4.1.0 to 4.1.1 in the development-dependencies group by @dependabot in https://github.com/defenseunicorns/pepr/pull/2026
chore: bump library/node from 047d633 to 73da8b4 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2025
chore: bump library/node from 73da8b4 to c5bfe90 by @dependabot in https://github.com/defenseunicorns/pepr/pull/2028
chore: bump undici from 7.7.0 to 7.8.0 in the development-dependencies group by @dependabot in https://github.com/defenseunicorns/pepr/pull/2031
chore: bump kfc and chainguard images by @dependabot in https://github.com/defenseunicorns/pepr/pull/2030
chore: bump @types/node from 22.14.0 to 22.14.1 in the development-dependencies group by @dependabot in https://github.com/defenseunicorns/pepr/pull/2032

Full Changelog: defenseunicorns/pepr@v0.47.0...v0.48.0

lint-staged/lint-staged (lint-staged)

`v15.5.1`

Compare Source

Patch Changes

#1533 5d53534 Thanks @iiroj! - Improve listing of staged files so that lint-staged doesn't crash when encountering an uninitialized submodule. This should result in less errors like:
```
✖ Failed to get staged files!
```

kulshekhar/ts-jest (ts-jest)

`v29.3.2`

Compare Source

Bug Fixes

fix: transpile js files from node_modules whenever Jest asks (968370e), closes #4637

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

| datasource | package | from | to | | ----------- | --------------------------------------------------------------------- | ------- | ------- | | github-tags | defenseunicorns/pepr | v0.47.0 | v0.48.1 | | npm | lint-staged | 15.5.0 | 15.5.1 | | npm | pepr | 0.47.0 | 0.48.1 | | docker | registry1.dso.mil/ironbank/opensource/defenseunicorns/pepr/controller | v0.47.0 | v0.48.1 | | npm | ts-jest | 29.3.1 | 29.3.2 |

renovate · 2025-04-18T14:03:29Z

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

🤖 I have created a release *beep* *boop* --- ## [0.41.0](v0.40.1...v0.41.0) (2025-04-28) ### Features * add conditional netpol for coredns ([#1501](#1501)) ([fc7ace3](fc7ace3)) * client credential registration default ([#1482](#1482)) ([894c5d9](894c5d9)) * keycloak fips mode ([#1469](#1469)) ([74e632e](74e632e)) * operator ambient mode ([#1496](#1496)) ([71f03fd](71f03fd)) * opt Grafana into ambient ([#1466](#1466)) ([dac2d3e](dac2d3e)) * opt logging into ambient ([#1472](#1472)) ([117d586](117d586)) * opt metrics-server into ambient ([#1458](#1458)) ([01c2ec6](01c2ec6)) * opt velero into ambient ([#1490](#1490)) ([a0591c7](a0591c7)) ### Bug Fixes * **ci:** permissions on release workflow ([#1507](#1507)) ([cb12f13](cb12f13)) * **ci:** renovate readiness version loop fix ([#1488](#1488)) ([a40c15b](a40c15b)) * update loki images to fips images ([#1502](#1502)) ([eb20b4e](eb20b4e)) ### Miscellaneous * **ci:** automated renovate readiness action checks ([#1465](#1465)) ([ed0ca6b](ed0ca6b)) * **ci:** switch eks CI to FIPS ami, update to 1.31 k8s testing ([#1474](#1474)) ([7307d03](7307d03)) * **deps:** update grafana ([#1489](#1489)) ([0c063f1](0c063f1)) * **deps:** update istio to v1.25.2 ([#1461](#1461)) ([1067560](1067560)) * **deps:** update istio to v1.3.0 ([#1491](#1491)) ([9066584](9066584)) * **deps:** update keycloak to v0.13.0 ([#1506](#1506)) ([04d42ef](04d42ef)) * **deps:** update keycloak to v26.2.0 ([#1452](#1452)) ([927a57b](927a57b)) * **deps:** update keycloak to v26.2.1 ([#1486](#1486)) ([d68cad8](d68cad8)) * **deps:** update loki ([#1483](#1483)) ([3a697df](3a697df)) * **deps:** update neuvector ([#1417](#1417)) ([4c0d95d](4c0d95d)) * **deps:** update pepr ([#1454](#1454)) ([a98640f](a98640f)) * **deps:** update support dependencies to v4.7.0 ([#1477](#1477)) ([dcee0a3](dcee0a3)) * **deps:** update support-deps ([#1473](#1473)) ([3d9d501](3d9d501)) * **deps:** update support-deps ([#1480](#1480)) ([c41f359](c41f359)) * **deps:** update support-deps ([#1481](#1481)) ([cc2af2b](cc2af2b)) * **deps:** update support-deps ([#1487](#1487)) ([cdcba75](cdcba75)) * **deps:** update support-deps ([#1493](#1493)) ([88cbf29](88cbf29)) * **deps:** update support-deps ([#1497](#1497)) ([f308176](f308176)) * **deps:** update velero ([#1453](#1453)) ([7330ea9](7330ea9)) * **deps:** update velero ([#1492](#1492)) ([ff504c0](ff504c0)) * **deps:** update velero to v1.32.4 ([#1484](#1484)) ([06709e8](06709e8)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

renovate Bot requested a review from a team as a code owner April 11, 2025 17:52

renovate Bot changed the title ~~chore(deps): update pepr to v15.5.1~~ chore(deps): update pepr Apr 13, 2025

renovate Bot force-pushed the renovate/pepr branch 2 times, most recently from 2ba7216 to 2a842bc Compare April 14, 2025 14:30

chance-coleman added the renovate-ready Label used to trigger Renovate PR CI label Apr 14, 2025

renovate Bot force-pushed the renovate/pepr branch from 3a50384 to 8d361a3 Compare April 14, 2025 15:46

chance-coleman added waiting on ironbank This PR is waiting on an image update for ironbank and removed renovate-ready Label used to trigger Renovate PR CI labels Apr 14, 2025

renovate Bot force-pushed the renovate/pepr branch from 8d361a3 to 0072504 Compare April 17, 2025 19:43

Merge branch 'main' into renovate/pepr

f69f6d0

chance-coleman added renovate-ready Label used to trigger Renovate PR CI and removed waiting on ironbank This PR is waiting on an image update for ironbank labels Apr 18, 2025

chance-coleman approved these changes Apr 18, 2025

View reviewed changes

Merge branch 'main' into renovate/pepr

bbf56b7

chance-coleman merged commit a98640f into main Apr 21, 2025
11 checks passed

chance-coleman deleted the renovate/pepr branch April 21, 2025 13:12

github-actions Bot mentioned this pull request Apr 21, 2025

chore(main): release 0.41.0 #1475

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update pepr#1454

chore(deps): update pepr#1454
chance-coleman merged 3 commits intomainfrom
renovate/pepr

renovate Bot commented Apr 11, 2025 •

edited

Loading

Uh oh!

renovate Bot commented Apr 18, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

renovate Bot commented Apr 11, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v0.48.1

What's Changed

v0.48.0

Features

What's Changed ♻️

Dependabot 🤖

v15.5.1

Patch Changes

v29.3.2

Bug Fixes

Configuration

Uh oh!

renovate Bot commented Apr 18, 2025

Edited/Blocked Notification

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate Bot commented Apr 11, 2025 •

edited

Loading

`v0.48.1`

`v0.48.0`

`v15.5.1`

`v29.3.2`