build(deps): bump the github-dependencies group with 6 updates

[dependabot]

Bumps the github-dependencies group with 6 updates:

Package	From	To
github.com/kubernetes-csi/external-snapshotter/client/v6	6.2.0	6.3.0
github.com/miekg/dns	1.1.55	1.1.56
github.com/evanphx/json-patch	5.6.0+incompatible	5.7.0+incompatible
github.com/evanphx/json-patch/v5	5.6.0	5.7.0
github.com/google/cel-go	0.16.1	0.18.0
go.uber.org/zap	1.25.0	1.26.0

Updates github.com/kubernetes-csi/external-snapshotter/client/v6 from 6.2.0 to 6.3.0

Release notes

Sourced from github.com/kubernetes-csi/external-snapshotter/client/v6's releases.

client/v6.3.0

The release tag client/v6.3.0 is for VolumeSnapshot APIs and client library which are in a separate go package.

Full Changelog

https://github.com/kubernetes-csi/external-snapshotter/blob/v6.3.0/CHANGELOG/CHANGELOG-6.3.md

v6.3.0

Overall Status

Volume snapshotting has been a GA feature since Kubernetes v1.20.

Supported CSI Spec Versions

1.0-1.8

Minimum Kubernetes version

1.20

Recommended Kubernetes version

1.24

Container

docker pull registry.k8s.io/sig-storage/snapshot-controller:v6.3.0
docker pull registry.k8s.io/sig-storage/csi-snapshotter:v6.3.0
docker pull registry.k8s.io/sig-storage/snapshot-validation-webhook:v6.3.0

Full Changelog

https://github.com/kubernetes-csi/external-snapshotter/blob/v6.3.0/CHANGELOG/CHANGELOG-6.3.md

v6.2.2

Overall Status

Volume snapshotting has been a GA feature since Kubernetes v1.20.

Supported CSI Spec Versions

1.0-1.7

Minimum Kubernetes version

1.20

Recommended Kubernetes version

1.24

Container

docker pull registry.k8s.io/sig-storage/snapshot-controller:v6.2.2
docker pull registry.k8s.io/sig-storage/csi-snapshotter:v6.2.2
docker pull registry.k8s.io/sig-storage/snapshot-validation-webhook:v6.2.2

Full Changelog

... (truncated)

Commits

• a6ac2ee Merge pull request #908 from xing-yang/changelog_6.3.0
• de93167 Remove changes related to VolumeGroupSnapshot
• 350388a Add changelog for v6.3.0
• f7cc9e3 Merge pull request #907 from xing-yang/remove_k8s_dep
• fd03420 Remove direct dep on kubernetes
• 3cccd02 Merge pull request #904 from xing-yang/update_client_6.3
• 8c3a305 Merge pull request #898 from kubernetes-csi/dependabot/go_modules/google.gola...
• 5b12e86 Merge pull request #903 from kubernetes-csi/dependabot/go_modules/github.com/...
• 0667aa8 Update client lib version to 6.3.0
• 94b2103 Bump github.com/evanphx/json-patch
• Additional commits viewable in compare view

Updates github.com/miekg/dns from 1.1.55 to 1.1.56

Commits

• dfe9867 Release 1.1.56
• a9ed73a CanonicalName should casefold non-US-ASCII chars (#1470)
• 9ec1b44 Bump deps and fix pr template (#1480)
• 1bc6915 readme: add sdns to users (#1471)
• d00c672 Use correct string format IPv4 encoded as IPv6 for for AAAA records (#1457)
• a36acb4 Use proper section names when producing dig-like output for UPDATEs (#1479)
• See full diff in compare view

Updates github.com/evanphx/json-patch from 5.6.0+incompatible to 5.7.0+incompatible

Release notes

Sourced from github.com/evanphx/json-patch's releases.

The 2023 Release

What's Changed

• Fix invalid sprintf by @​howardjohn in evanphx/json-patch#152
• Add CIFuzz GitHub action by @​DavidKorczynski in evanphx/json-patch#167
• README: Remove Travis by @​ohkinozomu in evanphx/json-patch#164
• Updated min supported version to go 1.18 by @​Neo2308 in evanphx/json-patch#181
• Added dependabot by @​Neo2308 in evanphx/json-patch#182
• Pre-flight DecodePatch validation: Issue #177 by @​radwaretaltr in evanphx/json-patch#180
• Check if raw is a null pointer for findObject by @​JosieLi-Google in evanphx/json-patch#173
• Bump actions/checkout from 2 to 4 by @​dependabot in evanphx/json-patch#187
• Fix panic on test op by @​erickertz in evanphx/json-patch#158

New Contributors

• @​howardjohn made their first contribution in evanphx/json-patch#152
• @​DavidKorczynski made their first contribution in evanphx/json-patch#167
• @​ohkinozomu made their first contribution in evanphx/json-patch#164
• @​Neo2308 made their first contribution in evanphx/json-patch#181
• @​radwaretaltr made their first contribution in evanphx/json-patch#180
• @​JosieLi-Google made their first contribution in evanphx/json-patch#173
• @​dependabot made their first contribution in evanphx/json-patch#187
• @​erickertz made their first contribution in evanphx/json-patch#158

Full Changelog: evanphx/json-patch@v5.6.0...v5.7.0

Commits

• dc808d1 Merge pull request #158 from erickertz/master
• e8e8fb5 Merge pull request #187 from evanphx/dependabot/github_actions/actions/checko...
• be43a06 Merge pull request #173 from JosieLi-Google/master
• eed7579 Merge pull request #180 from radwaretaltr/master
• 1326418 Bump actions/checkout from 2 to 4
• 6775340 Non-modules are now deprecated due to ecosystem movement
• 858f374 Introduce with and without go modules testing
• 16760a7 Merge branch 'evanphx:master' into master
• 08317d1 Merge pull request #182 from Neo2308/feature/master/add-dependabot-config
• 78844ea Merge pull request #181 from Neo2308/feature/master/update-to-go-1.18
• Additional commits viewable in compare view

Updates github.com/evanphx/json-patch/v5 from 5.6.0 to 5.7.0

Release notes

Sourced from github.com/evanphx/json-patch/v5's releases.

The 2023 Release

What's Changed

• Fix invalid sprintf by @​howardjohn in evanphx/json-patch#152
• Add CIFuzz GitHub action by @​DavidKorczynski in evanphx/json-patch#167
• README: Remove Travis by @​ohkinozomu in evanphx/json-patch#164
• Updated min supported version to go 1.18 by @​Neo2308 in evanphx/json-patch#181
• Added dependabot by @​Neo2308 in evanphx/json-patch#182
• Pre-flight DecodePatch validation: Issue #177 by @​radwaretaltr in evanphx/json-patch#180
• Check if raw is a null pointer for findObject by @​JosieLi-Google in evanphx/json-patch#173
• Bump actions/checkout from 2 to 4 by @​dependabot in evanphx/json-patch#187
• Fix panic on test op by @​erickertz in evanphx/json-patch#158

New Contributors

• @​howardjohn made their first contribution in evanphx/json-patch#152
• @​DavidKorczynski made their first contribution in evanphx/json-patch#167
• @​ohkinozomu made their first contribution in evanphx/json-patch#164
• @​Neo2308 made their first contribution in evanphx/json-patch#181
• @​radwaretaltr made their first contribution in evanphx/json-patch#180
• @​JosieLi-Google made their first contribution in evanphx/json-patch#173
• @​dependabot made their first contribution in evanphx/json-patch#187
• @​erickertz made their first contribution in evanphx/json-patch#158

Full Changelog: evanphx/json-patch@v5.6.0...v5.7.0

Commits

• dc808d1 Merge pull request #158 from erickertz/master
• e8e8fb5 Merge pull request #187 from evanphx/dependabot/github_actions/actions/checko...
• be43a06 Merge pull request #173 from JosieLi-Google/master
• eed7579 Merge pull request #180 from radwaretaltr/master
• 1326418 Bump actions/checkout from 2 to 4
• 6775340 Non-modules are now deprecated due to ecosystem movement
• 858f374 Introduce with and without go modules testing
• 16760a7 Merge branch 'evanphx:master' into master
• 08317d1 Merge pull request #182 from Neo2308/feature/master/add-dependabot-config
• 78844ea Merge pull request #181 from Neo2308/feature/master/update-to-go-1.18
• Additional commits viewable in compare view

Updates github.com/google/cel-go from 0.16.1 to 0.18.0

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.18.0

Features

The latest release of CEL introduces validators (#775) and optimizers (#804, #827) and migrates the core CEL internals off of the protobuf expression and type representations (#789).

• String format validator #775
• Create a Function that Reverses a String #796
• Introduce pre-order / post-order visitor pattern #813
• Add Libraries() function to Env #822
• Static optimizer for constant folding #804
• Inlining optimizer #827
• FindStructTypeFields support for types.Provider #814

Breaking Changes

The following PR changes the API signature of the checker.AstNode method Expr to return an ast.Expr.

• Migrate the checker.Coster to the ast.Expr #798

Fixes

• Nil safety checks for cel.Ast #784
• Fix cost estimates to propagate result sizes #787
• Catch invalid literals created from expression factories #810
• Ensure stable ordering of overload candidates #817
• Clarify replace with/by empty string #820
• Fix functional exemptions for homogeneous literal checks #832
• Fix logical operator folding that only involve literals #833
• Upgrade go-genproto to latest #831

New Contributors

• @​bboogler made their first contribution in google/cel-go#796

Full Changelog: google/cel-go@v0.17.1...v0.18.0

Release v0.17.1

Minor release to address documentation gaps and additional methods to make unknowns more useful

Fixes

• Helpers for accessing unknown state information #781

Full Changelog: google/cel-go@v0.17.0...v0.17.1

Release v0.17.0

At a high-level this release introduces several changes which should improve ease of use while also improving the evaluation safety and quality:

... (truncated)

Commits

• 5db3640 Inlining optimizer (#827)
• 8943046 Upgrade go-genproto to latest (#831)
• 4eebcf3 Fix logical operator folding that only involve literals (#833)
• bfccebd Fix functional exemptions for homogeneous literal checks (#832)
• 705546a Static optimizer for constant folding (#804)
• 509c1d6 Document that string reverse was introduced in version 3 of ext.strings (#824)
• dd6d31d Fix slice handling in Env.Libraries() (#825)
• 8a45955 Add Libraries() function to Env (#822)
• 78039f1 Clarify replace with/by empty string (#820)
• 2de9952 Ensure stable ordering of overload candidates during dynamic dispatch (#817)
• Additional commits viewable in compare view

Updates go.uber.org/zap from 1.25.0 to 1.26.0

Release notes

Sourced from go.uber.org/zap's releases.

v1.26.0

Enhancements:

• #1297[]: Add Dict as a Field.
• #1319[]: Add WithLazy method to Logger which lazily evaluates the structured context.
• #1350[]: String encoding is much (~50%) faster now.

Thanks to @​hhk7734, @​jquirke, @​cdvr1993 for their contributions to this release.

#1297: uber-go/zap#1297 #1319: uber-go/zap#1319 #1350: uber-go/zap#1350

Changelog

Sourced from go.uber.org/zap's changelog.

1.26.0 (14 Sep 2023)

Enhancements:

• #1297[]: Add Dict as a Field.
• #1319[]: Add WithLazy method to Logger which lazily evaluates the structured context.
• #1350[]: String encoding is much (~50%) faster now.

Thanks to @​hhk7734, @​jquirke, and @​cdvr1993 for their contributions to this release.

#1297: uber-go/zap#1297 #1319: uber-go/zap#1319 #1350: uber-go/zap#1350

Commits

• 96038b7 Prepare for release v1.26.0 (#1355)
• c17272e Add WithLazy Logger method (#1319)
• 99f1811 exp: Add a changelog (#1353)
• 7728f39 chore(CHANGELOG): Move reference links to sections (#1352)
• 5a27bab perf: Faster string encoding (#1350)
• 82c728b Replace benbjohnson/clock with custom MockClock (#1349)
• b7aed24 zapslog: Handle empty attrs centrally (#1351)
• 2b35963 lint: Enable errcheck, fix failures (#1345)
• 9a36792 test: improve slog coverage (#1347)
• e5e8b70 build(deps): bump actions/checkout from 3 to 4 (#1346)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[k8s-ci-robot]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-csi member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign pohly for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
pull-kubernetes-csi-external-provisioner-unit	f20f477	link	true	/test pull-kubernetes-csi-external-provisioner-unit
pull-kubernetes-csi-external-provisioner-1-24-on-kubernetes-1-24	f20f477	link	true	/test pull-kubernetes-csi-external-provisioner-1-24-on-kubernetes-1-24
pull-kubernetes-csi-external-provisioner-distributed-on-kubernetes-1-26	f20f477	link	true	/test pull-kubernetes-csi-external-provisioner-distributed-on-kubernetes-1-26
pull-kubernetes-csi-external-provisioner-1-26-on-kubernetes-1-26	f20f477	link	false	/test pull-kubernetes-csi-external-provisioner-1-26-on-kubernetes-1-26
pull-kubernetes-csi-external-provisioner-1-25-on-kubernetes-1-25	f20f477	link	true	/test pull-kubernetes-csi-external-provisioner-1-25-on-kubernetes-1-25

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[dependabot]

The group that created this PR has been removed from your configuration.