fix(deps): update module k8s.io/apimachinery to v0.36.1

[red-hat-konflux]

This PR contains the following updates:

Package	Change	Age	Confidence
k8s.io/apimachinery	v0.34.3 → v0.36.1

---

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

---

Release Notes

kubernetes/apimachinery (k8s.io/apimachinery)

v0.36.1

Compare Source

v0.36.0

Compare Source

v0.35.5

Compare Source

v0.35.4

Compare Source

v0.35.3

Compare Source

v0.35.2

Compare Source

v0.35.1

Compare Source

v0.35.0

Compare Source

v0.34.8

Compare Source

v0.34.7

Compare Source

v0.34.6

Compare Source

v0.34.5

Compare Source

v0.34.4

Compare Source

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

Walkthrough

Go toolchain bumped from 1.24.6 to 1.25.0. k8s.io/apimachinery updated from v0.34.3 to v0.35.2. Indirect dependency github.com/gogo/protobuf v1.3.2 removed from go.mod.

Changes

Cohort / File(s)	Summary
Dependency Updates go.mod	Bumped Go toolchain to 1.25.0; updated k8s.io/apimachinery to v0.35.2; removed indirect github.com/gogo/protobuf v1.3.2 entry.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The PR title claims to update k8s.io/apimachinery to v0.36.1, but the actual summary shows updates to v0.35.2 and Go toolchain changes, creating a discrepancy.	Update the title to accurately reflect the actual changes, such as 'fix(deps): update k8s.io/apimachinery to v0.35.2 and Go toolchain to 1.25.0'.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Description check	✅ Passed	The pull request description clearly documents a dependency update from k8s.io/apimachinery v0.34.3 to v0.36.1, with detailed release notes and configuration information.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch konflux/mintmaker/main/kubernetes-go

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[openshift-ci]

Hi @red-hat-konflux[bot]. Thanks for your PR.

I'm waiting for a openshift-online member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[red-hat-konflux]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.24.13 -> 1.25.0

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@go.mod`:
- Line 3: The go.mod change to "go 1.25.0" introduces several platform and
toolchain changes you must verify: confirm container and CI runtimes tolerate
dynamic GOMAXPROCS (or set GODEBUG=containermaxprocs=0,updatemaxprocs=0), run
ASAN-enabled builds/tests and add ASAN_OPTIONS=detect_leaks=0 if needed, audit
code paths for unsafe ordering that relied on pre-1.25 nil-check behavior
(search for functions/locations that perform nil checks then use values),
validate DWARF v5 compatibility with your debuggers or opt-out with
GOEXPERIMENT=nodwarf5, ensure TLS peers accept SHA-1 or set GODEBUG=tlssha1=1
for legacy compatibility, verify macOS build environments meet Monterey+
requirement, and review the bumped dependency k8s.io/apimachinery v0.35.0 for
API changes—make configuration/environment updates and test runs accordingly
before merging.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@go.mod`:
- Line 3: go.mod requires Go 1.25.0 but CI and Docker use older versions; update
the GitHub workflow files and Dockerfile to match: change go-version entries in
.github/workflows/check-pull-request.yaml (both matrix entries currently
1.22/1.23) and .github/workflows/publish-release.yaml (currently 1.23) to
1.25.0, and update docker/Dockerfile to use a base image that provides Go 1.25.0
(replace ubi9/go-toolset:latest with a pinned image/tag that includes Go 1.25.0)
so the build environment matches go.mod.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Find Go version references in CI, build, and config files
echo "=== Searching for Go version references ==="

# Common locations for Go version pins
rg -i 'go.?version|golang|GO_VERSION' --type yaml --type yml --type json --type dockerfile --type sh --type toml -n | head -50

echo ""
echo "=== Checking CI workflows directory ==="
fd -t f '\.(yml|yaml|json)$' '.github/workflows' 2>/dev/null | head -20

echo ""
echo "=== Checking for Dockerfile ==="
fd -t f 'Dockerfile' | head -10

echo ""
echo "=== Checking for build scripts ==="
fd -t f '\.(sh|mk|Makefile)$' | grep -E '(build|Make|script)' | head -20

echo ""
echo "=== Checking for .go-version or similar files ==="
fd -t f '\.go-version|go-version\.txt|\.tool-versions'

echo ""
echo "=== Checking go.mod for Go version directive ==="
head -5 go.mod

Repository: openshift-online/ocm-cli

Length of output: 609

---

🏁 Script executed:

#!/bin/bash
echo "=== Checking GitHub Actions workflows for Go version ==="
cat .github/workflows/check-pull-request.yaml | grep -A 5 -B 5 'go-version\|golang\|setup-go' -i

echo ""
echo "=== Checking Dockerfile for Go base image ==="
head -20 docker/Dockerfile

echo ""
echo "=== Checking build scripts for Go version ==="
grep -n 'go\|golang\|1\.2[0-9]' hack/build_image.sh | head -20

echo ""
echo "=== Checking all workflow files ==="
cat .github/workflows/publish-release.yaml | grep -A 5 -B 5 'go-version\|golang\|setup-go' -i

Repository: openshift-online/ocm-cli

Length of output: 2531

---

Fix Go version mismatch: CI workflows use Go 1.22 and 1.23, but go.mod requires 1.25.0.

Update CI workflows and Dockerfile to match the Go 1.25.0 requirement in go.mod:

• .github/workflows/check-pull-request.yaml: Change go-version from 1.22 and 1.23 to 1.25.0
• .github/workflows/publish-release.yaml: Change go-version from 1.23 to 1.25.0
• docker/Dockerfile: Replace ubi9/go-toolset:latest with a pinned version that includes Go 1.25.0

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@go.mod` at line 3, go.mod requires Go 1.25.0 but CI and Docker use older
versions; update the GitHub workflow files and Dockerfile to match: change
go-version entries in .github/workflows/check-pull-request.yaml (both matrix
entries currently 1.22/1.23) and .github/workflows/publish-release.yaml
(currently 1.23) to 1.25.0, and update docker/Dockerfile to use a base image
that provides Go 1.25.0 (replace ubi9/go-toolset:latest with a pinned image/tag
that includes Go 1.25.0) so the build environment matches go.mod.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: red-hat-konflux[bot]
Once this PR has been reviewed and has the lgtm label, please assign miguelhbrito for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[red-hat-konflux]

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 3 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.25.9 -> 1.26.0
google.golang.org/protobuf	v1.36.11 -> v1.36.12-0.20260120151049-f2248ac996af
k8s.io/klog/v2	v2.130.1 -> v2.140.0
k8s.io/utils	v0.0.0-20251002143259-bc988d571ff4 -> v0.0.0-20260210185600-b8788abfbbc2

[openshift-ci]

@red-hat-konflux[bot]: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/images-images	7c1996b	link	true	/test images-images

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.