Bump the dev-dependencies group with 6 updates

[dependabot]

Bumps the dev-dependencies group with 6 updates:

Package	From	To
github.com/fatih/color	1.15.0	1.16.0
github.com/go-logr/logr	1.2.4	1.4.1
github.com/onsi/gomega	1.28.0	1.30.0
k8s.io/apimachinery	0.28.2	0.29.0
k8s.io/client-go	0.28.2	0.29.0
sigs.k8s.io/controller-runtime	0.16.2	0.16.3

Updates github.com/fatih/color from 1.15.0 to 1.16.0

Release notes

Sourced from github.com/fatih/color's releases.

v1.16.0

What's Changed

• Update dependabot.yml by @​ilyabrin in fatih/color#200
• color: add newline after wrapping text by @​fatih in fatih/color#192
• [Test] Nil check added by @​hyunsooda in fatih/color#203
• fixes #206 (using underline with a different fg color breaks) by @​gregpoirson in fatih/color#210

Dependency updates

• Bump dominikh/staticcheck-action from 1.2.0 to 1.3.0 by @​dependabot in fatih/color#201
• Bump github.com/mattn/go-isatty from 0.0.17 to 0.0.18 by @​dependabot in fatih/color#193
• Bump golang.org/x/sys from 0.6.0 to 0.8.0 by @​dependabot in fatih/color#195
• Bump github.com/mattn/go-isatty from 0.0.18 to 0.0.19 by @​dependabot in fatih/color#196
• Bump golang.org/x/sys from 0.8.0 to 0.10.0 by @​dependabot in fatih/color#199
• Bump github.com/mattn/go-isatty from 0.0.19 to 0.0.20 by @​dependabot in fatih/color#212
• Bump golang.org/x/sys from 0.10.0 to 0.13.0 by @​dependabot in fatih/color#209
• Bump actions/setup-go from 3 to 4 by @​dependabot in fatih/color#202
• Bump actions/checkout from 3 to 4 by @​dependabot in fatih/color#208
• Bump golang.org/x/sys from 0.13.0 to 0.14.0 by @​dependabot in fatih/color#213

New Contributors

• @​ilyabrin made their first contribution in fatih/color#200
• @​hyunsooda made their first contribution in fatih/color#203
• @​gregpoirson made their first contribution in fatih/color#210

Full Changelog: fatih/color@v1.15.0...v1.16.0

Commits

• 0f9779e Merge pull request #213 from fatih/dependabot/go_modules/golang.org/x/sys-0.14.0
• 0c78604 Bump golang.org/x/sys from 0.13.0 to 0.14.0
• 96e0f73 Merge pull request #208 from fatih/dependabot/github_actions/actions/checkout-4
• 4c66e32 Bump actions/checkout from 3 to 4
• 2fb03d6 Merge pull request #202 from fatih/dependabot/github_actions/actions/setup-go-4
• 8ba7bbd Bump actions/setup-go from 3 to 4
• e3f97f3 Merge pull request #209 from fatih/dependabot/go_modules/golang.org/x/sys-0.13.0
• e146575 Bump golang.org/x/sys from 0.10.0 to 0.13.0
• d2d7a5e Merge pull request #212 from fatih/dependabot/go_modules/github.com/mattn/go-...
• f3e45da Merge branch 'main' into dependabot/go_modules/github.com/mattn/go-isatty-0.0.20
• Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.2.4 to 1.4.1

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.1

What's Changed

• slogr: fix unintended API break in v1.4.0 by @​pohly in go-logr/logr#253

Full Changelog: go-logr/logr@v1.4.0...v1.4.1

v1.4.0

This release dramatically improves interoperability with Go's log/slog package. In particular, logr.NewContext and logr.NewContextWithSlogLogger use the same context key, which allows logr.FromContext and logr.FromContextAsSlogLogger to return logr.Logger or *slog.Logger respectively, including transparently converting each to the other as needed.

Functions logr/slogr.NewLogr and logr/slogr.ToSlogHandler have been superceded by logr.FromSlogHandler and logr.ToSlogHandler respectively, and type logr/slogr.SlogSink has been superceded by logr.SlogSink. All of the old names in logr/slogr remain, for compatibility.

Package logr/funcr now supports logr.SlogSink, meaning that it's output passes all but one of the Slog conformance tests (that exception being that funcr handles the timestamp itself).

Users who have a logr.Logger and need a *slog.Logger can call slog.New(logr.ToSlogHandler(...)) and all output will go through the same stack.

Users who have a *slog.Logger or slog.Handler can call logr.FromSlogHandler(...) and all output will go through the same stack.

What's Changed

• slog context support by @​pohly in go-logr/logr#237
• slog support: fix WithGroup + WithValues combination by @​pohly in go-logr/logr#243
• Add tests for context with slog by @​thockin in go-logr/logr#246
• sloghandler: unnamed groups should be inlined by @​thockin in go-logr/logr#245
• Add SlogSink support to funcr by @​thockin in go-logr/logr#241
• funcr: Add LogInfoLevel Option to skip logging level in the info log by @​spacewander in go-logr/logr#240

New Contributors

• @​spacewander made their first contribution in go-logr/logr#240

Full Changelog: go-logr/logr@v1.3.0...v1.4.0

v1.3.0

This release adds support for slog in a new, self-contained logr/slogr package. Implementers of a logr.LogSink are encouraged, but not required, to extend their implementation to improve the quality of log output coming from a slog API call.

Breaking change: the call depth for LogSink.Enabled when called via Logger.Enabled was fixed to be the same as for other call paths. Implementers of a LogSink who have worked around this bug will need to remove their workarounds.

Security best practices were improved. Only Go versions >= 1.18 are supported by this release.

What's Changed

• Fix golangci-lint fails by @​thockin in go-logr/logr#173
• Add minimal permissions to workflows by @​pnacht in go-logr/logr#177
• Add a security policy by @​pnacht in go-logr/logr#178
• Update security email by @​thockin in go-logr/logr#181
• docs: explain relationship between Logger{} and Discard() by @​pohly in go-logr/logr#182
• Add the OpenSSF Scorecard workflow by @​pnacht in go-logr/logr#186
• README: show of OpenSSF Scorecard badge by @​pohly in go-logr/logr#187
• Hash-pin workflow Actions by @​pnacht in go-logr/logr#189
• Bump go versions to 1.18+ by @​thockin in go-logr/logr#203
• slogr: add glue code for logging to slog.Handler and with slog.Logger by @​pohly in go-logr/logr#205
• slogr: restore original backend when converting back and forth by @​pohly in go-logr/logr#210
• slogr: add SlogSink by @​pohly in go-logr/logr#211

... (truncated)

Commits

• dcdc3f2 slogr: fix unintended API break in v0.8.0 (#253)
• 5d88f52 funcr: Add LogInfoLevel Option to skip logging level in the info log (#240)
• 177005d build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0
• e7f489a build(deps): bump github/codeql-action from 2.22.9 to 3.22.11
• cf56c3b build(deps): bump actions/setup-go from 4 to 5
• 2ad296e build(deps): bump github/codeql-action from 2.22.8 to 2.22.9
• d55b4e2 Merge pull request #241 from thockin/master
• 98ee9d9 Clean up slog testing and restore coverage
• b228ba8 Break examples to new file
• 6432877 Add benchmarks for slogSink
• Additional commits viewable in compare view

Updates github.com/onsi/gomega from 1.28.0 to 1.30.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.30.0

1.30.0

Features

• BeTrueBecause and BeFalseBecause allow for better failure messages [4da4c7f]

Maintenance

• Bump actions/checkout from 3 to 4 (#694) [6ca6e97]
• doc: fix type on gleak go doc [f1b8343]

v1.29.0

1.29.0

Features

• MatchError can now take an optional func(error) bool + description [2b39142]

v1.28.1

1.28.1

Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0 [635d196]
• Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 [14f8859]
• Bump golang.org/x/net from 0.14.0 to 0.17.0 [d8a6508]
• #703 doc(matchers): HaveEach() doc comment updated [2705bdb]
• Minor typos (#699) [375648c]

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.30.0

Features

• BeTrueBecause and BeFalseBecause allow for better failure messages [4da4c7f]

Maintenance

• Bump actions/checkout from 3 to 4 (#694) [6ca6e97]
• doc: fix type on gleak go doc [f1b8343]

1.29.0

Features

• MatchError can now take an optional func(error) bool + description [2b39142]

1.28.1

Maintenance

• Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0 [635d196]
• Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 [14f8859]
• Bump golang.org/x/net from 0.14.0 to 0.17.0 [d8a6508]
• #703 doc(matchers): HaveEach() doc comment updated [2705bdb]
• Minor typos (#699) [375648c]

Commits

• f804ac6 v1.30.0
• 4da4c7f BeTrueBecause and BeFalseBecause allow for better failure messages
• 6ca6e97 Bump actions/checkout from 3 to 4 (#694)
• f1b8343 doc: fix type on gleak go doc
• b94b195 v1.29.0
• 2b39142 MatchError can now take an optional func(error) bool + description
• ab6045c v1.28.1
• 635d196 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.13.0
• 14f8859 Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
• d8a6508 Bump golang.org/x/net from 0.14.0 to 0.17.0
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.28.2 to 0.29.0

Commits

• 3c8c1f2 update go.mod
• 12dc3f8 Merge pull request #113374 from ahmedtd/kep-3257-projected-types
• 03a1b4b LRUExpireCache: Allow removing multiple keys under lock
• bc0a03b Merge pull request #119762 from AxeZhan/PollUntilContextCancel
• 16d50e6 Merge pull request #121552 from pohly/klog-update
• 6b13b03 dependencies: klog v2.110.1
• 96ae302 Merge pull request #121575 from apelisse/update-smd
• 458fd90 Merge pull request #120707 from Jefftree/csa-openapiv3
• 850727f Merge pull request #120592 from AxeZhan/validation_sets
• 8dbf841 managedfields: Allow duplicates for built-in updates associative lists
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.28.2 to 0.29.0

Commits

• fb8b734 Update dependencies to v0.29.0 tag
• 288368e update go.mod
• 86d49e7 Merge pull request #113374 from ahmedtd/kep-3257-projected-types
• 59c256a Regenerate for ClusterTrustBundlePEM projected volume API
• ac369c3 Define ClusterTrustBundlePEM projected volume
• 66e57f7 Merge pull request #121552 from pohly/klog-update
• 8b96b9b dependencies: klog v2.110.1
• c13269d Merge pull request #116516 from aojea/servicecidr
• 7523a34 Merge pull request #121575 from apelisse/update-smd
• 965bc8d Merge pull request #121104 from carlory/kep-3751-api-changes
• Additional commits viewable in compare view

Updates sigs.k8s.io/controller-runtime from 0.16.2 to 0.16.3

Release notes

Sourced from sigs.k8s.io/controller-runtime's releases.

v0.16.3

What's Changed

• 🐛Update dependency go-restful to 3.11.0 by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2516
• 🐛 Correctly identify if patch call was made on status by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2515
• 🐛 Handle unstructured status update with fake client by @​troy0820 in kubernetes-sigs/controller-runtime#2523
• ✨ Cache: Allow defining options that apply to all namespaces that themselves have no explicit config by @​k8s-infra-cherrypick-robot in kubernetes-sigs/controller-runtime#2539
• 🐛 bump golang.org/x/net to v0.17.0 by @​joelanford in kubernetes-sigs/controller-runtime#2541
• 🌱 Bump k8s to 1.28.3 by @​varshaprasad96 in kubernetes-sigs/controller-runtime#2552

Full Changelog: kubernetes-sigs/controller-runtime@v0.16.2...v0.16.3

Commits

• 5f8d96b Merge pull request #2552 from varshaprasad96/bump/k8s-1.28.3
• 5572514 [fix]: Bump k8s to 1.28.3
• 7c1e2d9 Merge pull request #2541 from joelanford/0.16-golang-x-net
• 5201923 🐛 bump golang.org/x/net to v0.17.0
• 8b5b1a2 Merge pull request #2539 from k8s-infra-cherrypick-robot/cherry-pick-2528-to-...
• b9c691d sparkles: Cache: Allow defining options that apply to all namespaces that the...
• 8361246 Merge pull request #2523 from troy0820/troy0820/cherry-pick-to-release-0.16
• f7b7450 🐛 Handle unstructured status update with fake client (#2495)
• 2d6b699 [release-0.16] 🐛 Correctly identify if patch call was made on status (#2515)
• da31104 Merge pull request #2516 from k8s-infra-cherrypick-robot/cherry-pick-2507-to-...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependencies.

[dependabot]

Superseded by #53.