NO-JIRA: Bump the k8s-dependencies group across 1 directory with 3 updates

[dependabot]

Bumps the k8s-dependencies group with 1 update in the / directory: k8s.io/apiextensions-apiserver.

Updates k8s.io/apiextensions-apiserver from 0.35.3 to 0.36.1

Commits

• 5b822b1 Update dependencies to v0.36.1 tag
• 4cd8c3d Merge remote-tracking branch 'origin/master' into release-1.36
• c2fd557 Merge pull request #138346 from dashpole/update_otel_prop
• 1daa309 Merge remote-tracking branch 'origin/master' into release-1.36
• 1551264 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• 6c97d2b update go.opentelemetry.io/otel to v1.41.0
• 862c52a update google.golang.org/grpc to v1.79.3
• abac065 Merge pull request #137849 from bryantbiggs/deps/update-kube-openapi
• 7acee75 Merge pull request #137843 from pacoxu/cobra-v1.10.2
• 612f1d8 dependencies: bump kube-openapi to drop ginkgo/gomega indirect deps
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.35.4 to 0.36.1

Commits

• 7af103a Update dependencies to v0.36.1 tag
• efb7f26 Merge remote-tracking branch 'origin/master' into release-1.36
• d966e56 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• 79b3632 Merge pull request #137864 from yongruilin/dv-dra-mismatch
• a8822f7 Add slice and map union member support with tests
• 7dba2d0 Use IsZero instead of IsNil for union ratcheting check
• d95710f Fix union validation ratcheting when oldObj is nil
• 729062d Merge pull request #137849 from bryantbiggs/deps/update-kube-openapi
• 13b12e6 dependencies: bump kube-openapi to drop ginkgo/gomega indirect deps
• 27f4670 Merge pull request #136657 from Jefftree/sharding-test
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.35.3 to 0.36.1

Commits

• 55ef15a Update dependencies to v0.36.1 tag
• f22a53e Merge remote-tracking branch 'origin/master' into release-1.36
• a948641 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• 7e44ffc Add Workload-Aware Preemption fields to Workload and PodGroup APIs
• df2d882 Merge pull request #136989 from nojnhuh/podgroup-resourceclaim
• 4eece52 Workload API: PodGroup ResourceClaims (KEP-5729)
• 3d35c51 Merge pull request #137190 from everpeace/KEP-5491-alpha
• 0434117 Merge pull request #137028 from nmn3m/feature/dra-resource-pool-status
• ba785be Drop CSR analogy, mark ObjectMeta +required,reduce limits (maxItems=500, maxL...
• 4a9c878 Add ResourcePoolStatusRequest API types and generated code
• Additional commits viewable in compare view

Summary by CodeRabbit

• Chores
  • Updated Go version to 1.26.0
  • Updated Kubernetes dependencies (API, client-go, and apimachinery) to v0.36.1
  • Updated Protocol Buffers dependency to newer revision

[openshift-ci-robot]

@dependabot[bot]: This pull request explicitly references no jira issue.

Details

In response to this:

Bumps the k8s-dependencies group with 3 updates: k8s.io/apiextensions-apiserver, k8s.io/apimachinery and k8s.io/client-go.

Updates k8s.io/apiextensions-apiserver from 0.35.3 to 0.36.1

Commits

• 5b822b1 Update dependencies to v0.36.1 tag
• 4cd8c3d Merge remote-tracking branch 'origin/master' into release-1.36
• c2fd557 Merge pull request #138346 from dashpole/update_otel_prop
• 1daa309 Merge remote-tracking branch 'origin/master' into release-1.36
• 1551264 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• 6c97d2b update go.opentelemetry.io/otel to v1.41.0
• 862c52a update google.golang.org/grpc to v1.79.3
• abac065 Merge pull request #137849 from bryantbiggs/deps/update-kube-openapi
• 7acee75 Merge pull request #137843 from pacoxu/cobra-v1.10.2
• 612f1d8 dependencies: bump kube-openapi to drop ginkgo/gomega indirect deps
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.35.3 to 0.36.1

Commits

• 7af103a Update dependencies to v0.36.1 tag
• efb7f26 Merge remote-tracking branch 'origin/master' into release-1.36
• d966e56 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• 79b3632 Merge pull request #137864 from yongruilin/dv-dra-mismatch
• a8822f7 Add slice and map union member support with tests
• 7dba2d0 Use IsZero instead of IsNil for union ratcheting check
• d95710f Fix union validation ratcheting when oldObj is nil
• 729062d Merge pull request #137849 from bryantbiggs/deps/update-kube-openapi
• 13b12e6 dependencies: bump kube-openapi to drop ginkgo/gomega indirect deps
• 27f4670 Merge pull request #136657 from Jefftree/sharding-test
• Additional commits viewable in compare view

Updates k8s.io/client-go from 0.35.3 to 0.36.1

Commits

• 55ef15a Update dependencies to v0.36.1 tag
• f22a53e Merge remote-tracking branch 'origin/master' into release-1.36
• a948641 Update github.com/moby/spdystream from v0.5.0 to v0.5.1
• 7e44ffc Add Workload-Aware Preemption fields to Workload and PodGroup APIs
• df2d882 Merge pull request #136989 from nojnhuh/podgroup-resourceclaim
• 4eece52 Workload API: PodGroup ResourceClaims (KEP-5729)
• 3d35c51 Merge pull request #137190 from everpeace/KEP-5491-alpha
• 0434117 Merge pull request #137028 from nmn3m/feature/dra-resource-pool-status
• ba785be Drop CSR analogy, mark ObjectMeta +required,reduce limits (maxItems=500, maxL...
• 4a9c878 Add ResourcePoolStatusRequest API types and generated code
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[coderabbitai]

Walkthrough

go.mod updates the Go language directive to 1.26.0, bumps Kubernetes modules (k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/client-go) to v0.36.1, and updates google.golang.org/protobuf to a newer indirect revision.

Changes

Go and Kubernetes dependency upgrades

Layer / File(s)	Summary
Go and module version updates go.mod	Updates go directive to 1.26.0; bumps k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, and k8s.io/client-go to v0.36.1; upgrades google.golang.org/protobuf indirect revision.

🎯 2 (Simple) | ⏱️ ~10 minutes

• Suggested labels: lgtm
• Suggested reviewers:
  • kaovilai

🚥 Pre-merge checks | ✅ 15

✅ Passed checks (15 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: bumping Kubernetes dependencies to v0.36.1 in the go.mod file.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names	✅ Passed	This PR only updates Go module dependencies and does not add or modify any Ginkgo tests. The project uses Go's standard testing.T framework, not Ginkgo, so the check is not applicable.
Test Structure And Quality	✅ Passed	This PR only updates go.mod and vendor dependencies; it contains no Ginkgo test code. The custom check (Ginkgo test quality review) is not applicable to this pull request.
Microshift Test Compatibility	✅ Passed	PR only updates go.mod dependencies; no new Ginkgo e2e tests are added. This repository contains unit tests only, not e2e tests, making the MicroShift test compatibility check inapplicable.
Single Node Openshift (Sno) Test Compatibility	✅ Passed	PR contains only go.mod/go.sum dependency updates; no new Ginkgo e2e tests are added, so SNO compatibility check does not apply.
Topology-Aware Scheduling Compatibility	✅ Passed	PR only modifies go.mod (dependency versions), not deployment manifests, operator code, or controllers. No scheduling constraints are introduced.
Ote Binary Stdout Contract	✅ Passed	PR adds new code files but main.go has no stdout writes. init() function only panics on errors. logrus uses stderr by default. fmt.Println only in test functions.
Ipv6 And Disconnected Network Test Compatibility	✅ Passed	No new Ginkgo e2e tests are added in this PR. The PR only updates Kubernetes dependencies in go.mod (k8s.io modules upgraded to v0.36.1). The check is not applicable.
No-Weak-Crypto	✅ Passed	PR only bumps Kubernetes dependencies in go.mod. No weak crypto (MD5, SHA1, DES, RC4, 3DES, Blowfish, ECB), custom crypto implementations, or non-constant-time secret comparisons found in codebase.
Container-Privileges	✅ Passed	PR only modifies go.mod for dependency version bumps; no container manifests or privilege configurations (privileged, hostPID/Network/IPC, SYS_ADMIN, allowPrivilegeEscalation) were added or modified.
No-Sensitive-Data-In-Logs	✅ Passed	This PR only updates dependency versions in go.mod, go.sum, and adds GitHub configuration files. No code changes introduce logging of passwords, tokens, API keys, or other PII.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/go_modules/k8s-dependencies-10ce9c71a5

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign bryan-cox for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

rebase

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-ci]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/verify	aecf910	link	true	/test verify
ci/prow/build	aecf910	link	true	/test build
ci/prow/unit	aecf910	link	true	/test unit
ci/prow/images	aecf910	link	true	/test images

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.