chore(deps): bump the dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the dependencies group with 5 updates in the / directory:

Package	From	To
github.com/mark3labs/mcp-go	0.31.0	0.39.1
github.com/spf13/cobra	1.9.1	1.10.1
github.com/spf13/viper	1.20.1	1.21.0
k8s.io/apimachinery	0.33.1	0.34.0
k8s.io/client-go	0.33.1	0.34.0

Updates github.com/mark3labs/mcp-go from 0.31.0 to 0.39.1

Release notes

Sourced from github.com/mark3labs/mcp-go's releases.

Release v0.39.1

What's Changed

• fix(tool): Do not return empty outputSchema by @​alex210501 in mark3labs/mcp-go#573

Full Changelog: mark3labs/mcp-go@v0.39.0...v0.39.1

Release v0.39.0

What's Changed

• fix: use bufio.Scanner for stdio transport to avoid panic when stdio mcp server outputs a long line by @​WingT in mark3labs/mcp-go#464
• fix(tool): Return the OutputSchema from the tool definition by @​alex210501 in mark3labs/mcp-go#571
• feat: add resource handler middleware capability by @​tjhop in mark3labs/mcp-go#569
• feat: add tls support for streamable-http by @​opencow in mark3labs/mcp-go#568
• fix: prevent double-starting stdio transport in client by @​linw1995 in mark3labs/mcp-go#564
• docs(client): improve server reliability and error handling by @​appleboy in mark3labs/mcp-go#560
• oauth client example: skip DCR if MCP_CLIENT_ID is set by @​djoreilly in mark3labs/mcp-go#549

New Contributors

• @​WingT made their first contribution in mark3labs/mcp-go#464
• @​alex210501 made their first contribution in mark3labs/mcp-go#571
• @​tjhop made their first contribution in mark3labs/mcp-go#569
• @​opencow made their first contribution in mark3labs/mcp-go#568
• @​linw1995 made their first contribution in mark3labs/mcp-go#564
• @​appleboy made their first contribution in mark3labs/mcp-go#560
• @​djoreilly made their first contribution in mark3labs/mcp-go#549

Full Changelog: mark3labs/mcp-go@v0.38.0...v0.39.0

Release v0.38.0

What's Changed

• fix: resolve stdio transport race condition for concurrent tool calls by @​ezynda3 in mark3labs/mcp-go#529
• fix CallToolResult json marshaling and unmarshaling: need structuredC… by @​sunfuze in mark3labs/mcp-go#523
• feat: refactor constants for resource content types by @​CocaineCong in mark3labs/mcp-go#489
• feat: add missing SetPrompts, DeleteResources, and SetResources methods by @​vasayxtx in mark3labs/mcp-go#445
• feat: support creating tools using go-struct-style input schema by @​Grivn in mark3labs/mcp-go#534
• fix: remove duplicate methods server.SetPrompts & server.SetResources by @​matthisholleville in mark3labs/mcp-go#542

New Contributors

• @​sunfuze made their first contribution in mark3labs/mcp-go#523
• @​Grivn made their first contribution in mark3labs/mcp-go#534
• @​matthisholleville made their first contribution in mark3labs/mcp-go#542

Full Changelog: mark3labs/mcp-go@v0.37.0...v0.38.0

Release v0.37.0

⚠️ Breaking Changes

The Result.Meta field type has changed from map[string]any to *Meta. Code that directly accesses or sets this field will need to be updated:

</tr></table> 

... (truncated)

Commits

• 3d1bfca fix(tool): Do not return empty outputSchema (#573)
• 35fc389 Format
• 5298f64 oauth client example: skip DCR if MCP_CLIENT_ID is set (#549)
• 004ca9e docs(client): improve server reliability and error handling (#560)
• d2f81b6 fix: prevent double-starting stdio transport in client (#564)
• 40ce109 feat: add tls support for streamable-http (#568)
• ef80a50 feat: add resource handler middleware capability (#569)
• b924391 fix(tool): Return the OutputSchema from the tool definition (#571)
• 4e353ac fix: use bufio.Scanner for stdio transport to avoid panic when stdio mcp serv...
• 35ebaa5 Add releases notification
• Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.9.1 to 1.10.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.1

🐛 Fix

• chore: upgrade pflags v1.0.9 by @​jpmcb in spf13/cobra#2305

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

• Bump pflag to 1.0.8 by @​tomasaschan in spf13/cobra#2303

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

• If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
• or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

More details can be found here: spf13/cobra#2303

✨ Features

• Flow context to command in SetHelpFunc by @​Frassle in spf13/cobra#2241
• The default ShellCompDirective can be customized for a command and its subcommands by @​albers in spf13/cobra#2238

🐛 Fix

• Upgrade golangci-lint to v2, address findings by @​scop in spf13/cobra#2279

🪠 Testing

• Test with Go 1.24 by @​harryzcy in spf13/cobra#2236
• chore: Rm GitHub Action PR size labeler by @​jpmcb in spf13/cobra#2256

📝 Docs

• Remove traling curlybrace by @​yedayak in spf13/cobra#2237
• Update command.go by @​styee in spf13/cobra#2248
• feat: Add security policy by @​jpmcb in spf13/cobra#2253
• Update Readme (Warp) by @​ericdachen in spf13/cobra#2267
• Add Periscope to the list of projects using Cobra by @​anishathalye in spf13/cobra#2299

New Contributors

• @​harryzcy made their first contribution in spf13/cobra#2236
• @​yedayak made their first contribution in spf13/cobra#2237
• @​Frassle made their first contribution in spf13/cobra#2241

... (truncated)

Commits

• 7da941c chore: Bump pflag to v1.0.9 (#2305)
• 51d6751 Bump pflag to 1.0.8 (#2303)
• 3f3b818 Update README.md with new logo
• dcaf42e Add Periscope to the list of projects using Cobra (#2299)
• 6dec1ae The default ShellCompDirective can be customized for a command and its subcom...
• c8289c1 chore(golangci-lint): add some exclusion presets
• 4af7b64 refactor: apply golangci-lint autofixes, work around false positives
• 75790e4 chore(golangci-lint): upgrade to v2
• db3ddb5 Adding sponsorship to README.md
• 67171d6 putting sponsorship below header
• Additional commits viewable in compare view

Updates github.com/spf13/viper from 1.20.1 to 1.21.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.21.0

What's Changed

Enhancements 🚀

• Add support for flags pflag.BoolSlice, pflag.UintSlice and pflag.Float64Slice by @​nmvalera in spf13/viper#2015
• feat: use maintained yaml library by @​sagikazarmark in spf13/viper#2040

Bug Fixes 🐛

• fix(config): get config type from v.configType or config file ext by @​GuillaumeBAECHLER in spf13/viper#2003
• fix: config type check when loading any config by @​sagikazarmark in spf13/viper#2007

Dependency Updates ⬆️

• Update dependencies by @​sagikazarmark in spf13/viper#1993
• build(deps): bump github.com/spf13/cast from 1.7.1 to 1.8.0 by @​dependabot[bot] in spf13/viper#2017
• build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.3 to 2.2.4 by @​dependabot[bot] in spf13/viper#2013
• build(deps): bump github.com/sagikazarmark/locafero from 0.8.0 to 0.9.0 by @​dependabot[bot] in spf13/viper#2008
• build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in /remote by @​dependabot[bot] in spf13/viper#2016
• build(deps): bump github.com/spf13/cast from 1.8.0 to 1.9.2 by @​dependabot[bot] in spf13/viper#2020
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @​dependabot[bot] in spf13/viper#2028
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 by @​dependabot[bot] in spf13/viper#2035
• build(deps): bump github.com/spf13/pflag from 1.0.6 to 1.0.7 by @​dependabot[bot] in spf13/viper#2036
• build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0 by @​dependabot[bot] in spf13/viper#2012
• build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @​dependabot[bot] in spf13/viper#2052
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in /remote by @​dependabot[bot] in spf13/viper#2048
• build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10 by @​dependabot[bot] in spf13/viper#2056
• chore: update dependencies by @​sagikazarmark in spf13/viper#2057

Other Changes

• Update update guide with mapstructure package replacement. by @​aldas in spf13/viper#2004
• refactor: use the built-in max/min to simplify the code by @​yingshanghuangqiao in spf13/viper#2029

New Contributors

• @​GuillaumeBAECHLER made their first contribution in spf13/viper#2003
• @​aldas made their first contribution in spf13/viper#2004
• @​nmvalera made their first contribution in spf13/viper#2015
• @​yingshanghuangqiao made their first contribution in spf13/viper#2029
• @​ccoVeille made their first contribution in spf13/viper#2046
• @​spacez320 made their first contribution in spf13/viper#2050

Full Changelog: spf13/viper@v1.20.0...v1.21.0

Commits

• 394040c ci: build on go 1.25
• 812f548 chore: update dependencies
• d5271ef ci: update stale workflow
• dff303b feat: add a stale issue scheduled action
• 1287976 build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10
• 38932cd build(deps): bump github.com/go-viper/mapstructure/v2 in /remote
• 6d014be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
• b74c7ee build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0
• acd05e1 fix: linting issues
• ae5a8e2 ci: upgrade golangci-lint
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.33.1 to 0.34.0

Commits

• b72d93d Merge remote-tracking branch 'origin/master' into release-1.34
• cd8b91c clarify that staging repos are automatically published
• 8c59599 add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
• ec3cea5 link to what a staging repository is
• e4db694 docs: clarify that this is a staging repository and not for direct contributions
• 04507a3 Merge pull request #132942 from thockin/kyaml
• 50e39b1 Merge pull request #132935 from benluddy/cbor-bump-custom-marshalers
• 7d108e8 Re-vendor sigs.k8s.io/yaml @ v1.6.0
• 58c4eb0 Merge pull request #133130 from ylink-lfs/chore/residual_boolptr_removal
• 38a24e6 chore: residual boolptr and intptr removal
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.33.1 to 0.34.0

Commits

• b1c7d7b Update dependencies to v0.34.0 tag
• 97396af Merge remote-tracking branch 'origin/master' into release-1.34
• 5f737f3 clarify that staging repos are automatically published
• 0b8655b add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
• c00384c link to what a staging repository is
• b53b1f8 docs: clarify that this is a staging repository and not for direct contributions
• 42e6182 KEP-5075: generated codes from make update
• da11948 Merge pull request #130653 from yliaog/master
• 3b7d818 extended resource backed by DRA: codegen
• bb11581 Merge pull request #130160 from KobayashiD27/dra-device-binding-conditions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Dependabot can't resolve your Go dependency files. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot]

Dependabot can't resolve your Go dependency files. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot can't resolve your Go dependency files. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot can't resolve your Go dependency files. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot can't resolve your Go dependency files. Because of this, Dependabot cannot update this pull request.

[dependabot]

Dependabot can't resolve your Go dependency files. Because of this, Dependabot cannot update this pull request.