Skip to content

Update google.golang.org/genproto/googleapis/rpc digest to 87f3d3e#191

Open
red-hat-konflux-kflux-prd-rh02[bot] wants to merge 1 commit into
mainfrom
konflux/mintmaker/main/google.golang.org-genproto-googleapis-rpc-digest
Open

Update google.golang.org/genproto/googleapis/rpc digest to 87f3d3e#191
red-hat-konflux-kflux-prd-rh02[bot] wants to merge 1 commit into
mainfrom
konflux/mintmaker/main/google.golang.org-genproto-googleapis-rpc-digest

Conversation

@red-hat-konflux-kflux-prd-rh02

@red-hat-konflux-kflux-prd-rh02 red-hat-konflux-kflux-prd-rh02 Bot commented Jun 15, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
google.golang.org/genproto/googleapis/rpc indirect digest 0a33c5d87f3d3e

Configuration

📅 Schedule: Branch creation - "on monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

To execute skipped test pipelines write comment /ok-to-test.

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

@openshift-ci openshift-ci Bot requested review from ciaranRoche and crizzo71 June 15, 2026 18:04
@openshift-ci

openshift-ci Bot commented Jun 15, 2026

Copy link
Copy Markdown

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign ciaranroche for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci

openshift-ci Bot commented Jun 15, 2026

Copy link
Copy Markdown

Hi @red-hat-konflux-kflux-prd-rh02[bot]. Thanks for your PR.

I'm waiting for a openshift-hyperfleet member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@coderabbitai

coderabbitai Bot commented Jun 15, 2026
edited
Loading

Copy link
Copy Markdown
📝 Walkthrough

Walkthrough

go.mod bumps the indirect dependency google.golang.org/genproto/googleapis/rpc from pseudo-version v0.0.0-20260523011958-0a33c5d7ca68 to v0.0.0-20260618152121-87f3d3e198d3. No other files are modified. go.sum is not included in this diff, which means the hash pinning for the new commit is not visible here.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Supply chain surface (CWE-829: Inclusion of Functionality from Untrusted Control Sphere):

  • go.sum is absent from this PR. The new pseudo-version 87f3d3e198d3 must be verified against the Go checksum database (sum.golang.org). Without go.sum changes visible, there is no on-record proof that the fetched module bytes match an audited hash.
  • Pseudo-versions are commit-pinned, not release-tagged. Confirm 87f3d3e198d3 is a legitimate upstream commit on the google.golang.org/genproto main branch and not an injected or typosquatted artifact.
  • Verify this bump was not triggered by an unvetted automated PR (e.g., Dependabot misconfiguration) without a corresponding CVE or security advisory — absent justification is a red flag for supply chain manipulation (CWE-494).
🚥 Pre-merge checks | ✅ 11
✅ Passed checks (11 passed)
Check name Status Explanation
Title check ✅ Passed The title 'Update google.golang.org/genproto/googleapis/rpc digest to 87f3d3e' accurately describes the primary change: a dependency digest update with specific commit hash reference.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.
Sec-02: Secrets In Log Output ✅ Passed No secrets (tokens, passwords, credentials) found in log statements across 23 logging calls. Verified against slog, log, logr, zap, fmt.Print* excluding test files.
No Hardcoded Secrets ✅ Passed No hardcoded secrets detected. go.mod contains only legitimate dependency declarations with public commit hashes in pseudo-version strings; no API keys, passwords, tokens, private keys, embedded cr...
No Weak Cryptography ✅ Passed No weak cryptographic primitives detected. PR only updates transitive dependency google.golang.org/genproto/googleapis/rpc digest. Existing code uses crypto/rand (jitter generation) and crypto/tls...
No Injection Vectors ✅ Passed PR updates indirect dependency google.golang.org/genproto/googleapis/rpc with no code changes; no SQL/command/template/YAML injection patterns introduced in application code.
No Privileged Containers ✅ Passed PR only modifies go.mod (dependency version update), not Kubernetes manifests, Helm templates, or Dockerfiles that the privileged container check applies to.
No Pii Or Sensitive Data In Logs ✅ Passed PR updates only go.mod (indirect dependency version bump); no source code changes, no new logging statements, no PII/sensitive data exposure vectors introduced.
Description check ✅ Passed The pull request description is directly related to the changeset, documenting a dependency update to google.golang.org/genproto/googleapis/rpc with specific version details.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
📝 Generate docstrings
  • Create stacked PR
  • Commit on current branch
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch konflux/mintmaker/main/google.golang.org-genproto-googleapis-rpc-digest
✨ Simplify code
  • Create PR with simplified code
  • Commit simplified code in branch konflux/mintmaker/main/google.golang.org-genproto-googleapis-rpc-digest

Comment @coderabbitai help to get the list of available commands and usage tips.

@red-hat-konflux-kflux-prd-rh02
Update google.golang.org/genproto/googleapis/rpc digest to 87f3d3e
c3a6c9b 
Signed-off-by: red-hat-konflux-kflux-prd-rh02 <190377777+red-hat-konflux-kflux-prd-rh02[bot]@users.noreply.github.com>
@red-hat-konflux-kflux-prd-rh02 red-hat-konflux-kflux-prd-rh02 Bot force-pushed the konflux/mintmaker/main/google.golang.org-genproto-googleapis-rpc-digest branch from 1d7a43c to c3a6c9b Compare June 22, 2026 00:17
@red-hat-konflux-kflux-prd-rh02 red-hat-konflux-kflux-prd-rh02 Bot changed the title Update google.golang.org/genproto/googleapis/rpc digest to 7ab31c2 Update google.golang.org/genproto/googleapis/rpc digest to 87f3d3e Jun 22, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ciaranRoche ciaranRoche Awaiting requested review from ciaranRoche

@crizzo71 crizzo71 Awaiting requested review from crizzo71

Assignees

No one assigned

Labels

needs-ok-to-test

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants