CRI-O v1.37.0

The release notes have been generated for the commit range v1.36.0…94420a8 on Wed, 17 Jun 2026 00:40:13 UTC.

Downloads

Release Bundles

Download one of our static release bundles via our Google Cloud Bucket. Each bundle includes a SHA-256 checksum, a cosign signature (.bundle), and a SPDX bill of materials (.spdx) with its own signature:

• cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz
  • cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.sha256sum
  • cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.bundle
  • cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx
  • cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx.bundle
• cri-o.arm64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz
  • cri-o.arm64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.sha256sum
  • cri-o.arm64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.bundle
  • cri-o.arm64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx
  • cri-o.arm64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx.bundle
• cri-o.ppc64le.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz
  • cri-o.ppc64le.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.sha256sum
  • cri-o.ppc64le.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.bundle
  • cri-o.ppc64le.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx
  • cri-o.ppc64le.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx.bundle
• cri-o.s390x.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz
  • cri-o.s390x.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.sha256sum
  • cri-o.s390x.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.bundle
  • cri-o.s390x.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx
  • cri-o.s390x.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx.bundle

Supply Chain Artifacts

The OpenVEX vulnerability report:

• cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.openvex.json
  • cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.openvex.json.bundle

The SLSA provenance attestation:

• cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.provenance.json
  • cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.provenance.json.bundle

OCI Distribution

All release artifacts are also available as signed OCI artifacts at ghcr.io/cri-o/bundle:94420a8330d9dd54d4656b050a1e2391c396a230.

Verification

To verify the artifact signatures via cosign, run:

> export COSIGN_EXPERIMENTAL=1
> cosign verify-blob cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz \
    --certificate-identity https://github.com/cri-o/packaging/.github/workflows/obs.yml@refs/heads/main \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-repository cri-o/packaging \
    --certificate-github-workflow-ref refs/heads/main \
    --bundle cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.bundle

To verify the bill of materials (SBOM) in SPDX format using the bom tool, run:

> tar xfz cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz
> bom validate -e cri-o.amd64.94420a8330d9dd54d4656b050a1e2391c396a230.tar.gz.spdx -d cri-o

To verify the OpenVEX vulnerability report, run:

> cosign verify-blob cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.openvex.json \
    --certificate-identity https://github.com/cri-o/packaging/.github/workflows/obs.yml@refs/heads/main \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-repository cri-o/packaging \
    --certificate-github-workflow-ref refs/heads/main \
    --bundle cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.openvex.json.bundle

To verify the SLSA provenance attestation, run:

> cosign verify-blob cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.provenance.json \
    --certificate-identity https://github.com/cri-o/packaging/.github/workflows/obs.yml@refs/heads/main \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-repository cri-o/packaging \
    --certificate-github-workflow-ref refs/heads/main \
    --bundle cri-o.94420a8330d9dd54d4656b050a1e2391c396a230.provenance.json.bundle

Changelog since v1.36.0

Changes by Kind

Feature

• Add enable_cni_status_monitoring config option (default false) and cni_status_grace_period (default 60s) to gate continuous CNI STATUS monitoring and tolerate brief plugin disruptions during upgrades. (#9918, @tsorya)
• Add btrfs storage driver support to static builds (#9993, @saschagrunert)
• CRI-O now reports runtimeFeatures.UserNamespacesHostNetwork as enabled on Linux and uses a recursively read-only /sys bind mount for containers running with both host network and user namespaces. (#9930, @HirazawaUi)

Documentation

• Removed incorrect deprecation notice of seccomp_profile configuration field (#9946, @EmilyShepherd)

Bug or Regression

• Fix a latent crash in pinns caused by a missing zero terminator on the getopt_long long options array. The crash surfaces on builds whose linker places non-zero data immediately after the array (observed with ThinLTO release builds on armv7 musl). (#9935, @cehoffman)
• Fixed a bug where ImageRef in container status changed from a repo@digest to a raw image ID hash after CRI-O restart. (#9925, @saschagrunert)
• Reduced the verbosity of debug logs for List* RPC calls to improve performance (#9919, @fmuyassarov)

Other (Cleanup or Flake)

• Optimized environment variable merging during container creation by eliminating redundant string operations, improving container startup performance. (#9687, @ankit98040)

Uncategorized

• Update gomaxprocs hook to ignore workload partitioning when considering whether to inject, as well as update the calculation to ensure containers get at least double the requested number of CPUs, to reduce potential go scheduler throttling. (#9961, @haircommander)

Dependencies

Added

• cloud.google.com/go/pubsub/v2: v2.0.0
• github.com/aws/aws-sdk-go-v2/service/signin: v1.0.5
• github.com/brianvoe/gofakeit/v7: v7.12.1
• github.com/decred/dcrd/dcrec/secp256k1/v4: v4.4.0
• github.com/go-openapi/swag/jsonutils/fixtures_test: v0.25.5
• github.com/go-openapi/testify/enable/yaml/v2: v2.4.1
• github.com/go-openapi/testify/v2: v2.4.1
• github.com/google/go-github/v73: v73.0.0
• github.com/google/go-github/v84: v84.0.0
• github.com/lestrrat-go/blackmagic: v1.0.4
• github.com/lestrrat-go/httpcc: v1.0.1
• github.com/lestrrat-go/httprc/v3: v3.0.0
• github.com/lestrrat-go/jwx/v3: v3.0.10
• github.com/lestrrat-go/option/v2: v2.0.0
• github.com/lestrrat-go/option: v1.0.1
• github.com/oklog/ulid/v2: v2.1.1
• github.com/pborman/getopt: 7148bc3
• github.com/segmentio/asm: v1.2.0
• github.com/sigstore/rekor-tiles/v2: v2.0.1
• github.com/sigstore/timestamp-authority/v2: v2.0.3
• github.com/transparency-dev/formats: 404c0d5
• github.com/valyala/fastjson: v1.6.4
• github.com/vektah/gqlparser/v2: v2.5.30

Changed

• chainguard.dev/sdk: v0.1.44 → v0.1.45
• cloud.google.com/go/accessapproval: v1.8.6 → v1.8.8
• cloud.google.com/go/accesscontextmanager: v1.9.6 → v1.9.7
• cloud.google.com/go/aiplatform: v1.89.0 → v1.109.0
• cloud.google.com/go/analytics: v0.28.1 → v0.30.1
• cloud.google.com/go/apigateway: v1.7.6 → v1.7.7
• cloud.google.com/go/apigeeconnect: v1.7.6 → v1.7.7
• cloud.google.com/go/apigeeregistry: v0.9.6 → v0.10.0
• cloud.google.com/go/appengine: v1.9.6 → v1.9.7
• cloud.google.com/go/area120: v0.9.6 → v0.9.7
• cloud.google.com/go/artifactregistry: v1.17.1 → v1.17.2
• cloud.google.com/go/asset: v1.21.1 → v1.22.0
• cloud.google.com/go/assuredworkloads: v1.12.6 → v1.13.0
• cloud.google.com/go/auth: v0.17.0 → v0.18.2
• cloud.google.com/go/automl: v1.14.7 → v1.15.0
• cloud.google.com/go/baremetalsolution: v1.3.6 → v1.4.0
• cloud.google.com/go/batch: v1.12.2 → v1.13.0
• cloud.google.com/go/beyondcorp: v1.1.6 → v1.2.0
• cloud.google.com/go/bigquery: v1.69.0 → v1.72.0
• cloud.google.com/go/bigtable: v1.37.0 → v1.40.1
• cloud.google.com/go/billing: v1.20.4 → v1.21.0
• cloud.google.com/go/binaryauthorization: v1.9.5 → v1.10.0
• cloud.google.com/go/certificatemanager: v1.9.5 → v1.9.6
• cloud.google.com/go/channel: v1.19.5 → v1.20.0
• cloud.google.com/go/cloudbuild: v1.22.2 → v1.23.1
• cloud.google.com/go/clouddms: v1.8.7 → v1.8.8
• cloud.google.com/go/cloudtasks: v1.13.6 → v1.13.7
• cloud.google.com/go/compute: v1.38.0 → v1.49.1
• cloud.google.com/go/contactcenterinsights: v1.17.3 → v1.17.4
• cloud.google.com/go/container: v1.43.0 → v1.45.0
• cloud.google.com/go/containeranalysis: v0.14.1 → v0.14.2
• cloud.google.com/go/datacatalog: v1.26.0 → v1.26.1
• cloud.google.com/go/dataflow: v0.11.0 → v0.11.1
• cloud.google.com/go/dataform: v0.12.0 → v0.12.1
• cloud.google.com/go/datafusion: v1.8.6 → v1.8.7
• cloud.google.com/go/datalabeling: v0.9.6 → v0.9.7
• cloud.google.com/go/dataplex: v1.25.3 → v1.28.0
• cloud.google.com/go/dataproc/v2: v2.11.2 → v2.15.0
• cloud.google.com/go/dataqna: v0.9.7 → v0.9.8
• cloud.google.com/go/datastore: v1.20.0 → v1.21.0
• cloud.google.com/go/datastream: v1.14.1 → v1.15.1
• cloud.google.com/go/deploy: v1.27.2 → v1.27.3
• cloud.google.com/go/dialogflow: v1.68.2 → v1.71.0
• cloud.google.com/go/dlp: v1.23.0 → v1.27.0
• cloud.google.com/go/documentai: v1.37.0 → v1.39.0
• cloud.google.com/go/domains: v0.10.6 → v0.10.7
• cloud.google.com/go/edgecontainer: v1.4.3 → v1.4.4
• cloud.google.com/go/essentialcontacts: v1.7.6 → v1.7.7
• cloud.google.com/go/eventarc: v1.15.5 → v1.17.0
• cloud.google.com/go/filestore: v1.10.2 → v1.10.3
• cloud.google.com/go/firestore: v1.18.0 → v1.20.0
• cloud.google.com/go/functions: v1.19.6 → v1.19.7
• cloud.google.com/go/gkebackup: v1.8.0 → v1.8.1
• cloud.google.com/go/gkeconnect: v0.12.4 → v0.12.5
• cloud.google.com/go/gkehub: v0.15.6 → v0.16.0
• cloud.google.com/go/gkemulticloud: v1.5.3 → v1.5.4
• cloud.google.com/go/gsuiteaddons: v1.7.7 → v1.7.8
• cloud.google.com/go/iam: v1.5.2 → v1.5.3
• cloud.google.com/go/iap: v1.11.2 → v1.11.3
• cloud.google.com/go/ids: v1.5.6 → v1.5.7
• cloud.google.com/go/iot: v1.8.6 → v1.8.7
• cloud.google.com/go/language: v1.14.5 → v1.14.6
• cloud.google.com/go/lifesciences: v0.10.6 → v0.10.7
• cloud.google.com/go/logging: v1.13.0 → v1.13.1
• cloud.google.com/go/longrunning: v0.6.7 → v0.7.0
• cloud.google.com/go/managedidentities: v1.7.6 → v1.7.7
• cloud.google.com/go/maps: v1.21.0 → v1.26.0
• cloud.google.com/go/mediatranslation: v0.9.6 → v0.9.7
• cloud.google.com/go/memcache: v1.11.6 → v1.11.7
• cloud.google.com/go/metastore: v1.14.7 → v1.14.8
• cloud.google.com/go/monitoring: v1.24.2 → v1.24.3
• cloud.google.com/go/networkconnectivity: v1.17.1 → v1.19.1
• cloud.google.com/go/networkmanagement: v1.19.1 → v1.21.0
• cloud.google.com/go/networksecurity: v0.10.6 → v0.10.7
• cloud.google.com/go/notebooks: v1.12.6 → v1.12.7
• cloud.google.com/go/optimization: v1.7.6 → v1.7.7
• cloud.google.com/go/orchestration: v1.11.9 → v1.11.10
• cloud.google.com/go/orgpolicy: v1.15.0 → v1.15.1
• cloud.google.com/go/osconfig: v1.14.6 → v1.15.1
• cloud.google.com/go/oslogin: v1.14.6 → v1.14.7
• cloud.google.com/go/phishingprotection: v0.9.6 → v0.9.7
• cloud.google.com/go/policytroubleshooter: v1.11.6 → v1.11.7
• cloud.google.com/go/privatecatalog: v0.10.7 → v0.10.8
• cloud.google.com/go/pubsub: v1.49.0 → v1.50.1
• cloud.google.com/go/recaptchaenterprise/v2: v2.20.4 → v2.20.5
• cloud.google.com/go/recommendationengine: v0.9.6 → v0.9.7
• cloud.google.com/go/recommender: v1.13.5 → v1.13.6
• cloud.google.com/go/redis: v1.18.2 → v1.18.3
• cloud.google.com/go/resourcemanager: v1.10.6 → v1.10.7
• cloud.google.com/go/retail: v1.21.0 → v1.25.1
• cloud.google.com/go/run: v1.10.0 → v1.12.1
• cloud.google.com/go/scheduler: v1.11.7 → v1.11.8
• cloud.google.com/go/secretmanager: v1.14.7 → v1.16.0
• cloud.google.com/go/securitycenter: v1.36.2 → v1.38.1
• cloud.google.com/go/servicedirectory: v1.12.6 → v1.12.7
• cloud.google.com/go/shell: v1.8.6 → v1.8.7
• cloud.google.com/go/spanner: v1.82.0 → v1.86.1
• cloud.google.com/go/speech: v1.27.1 → v1.28.1
• cloud.google.com/go/storagetransfer: v1.13.0 → v1.13.1
• cloud.google.com/go/talent: v1.8.3 → v1.8.4
• cloud.google.com/go/texttospeech: v1.13.0 → v1.16.0
• cloud.google.com/go/tpu: v1.8.3 → v1.8.4
• cloud.google.com/go/trace: v1.11.6 → v1.11.7
• cloud.google.com/go/translate: v1.12.5 → v1.12.7
• cloud.google.com/go/video: v1.24.0 → v1.27.1
• cloud.google.com/go/videointelligence: v1.12.6 → v1.12.7
• cloud.google.com/go/vision/v2: v2.9.5 → v2.9.6
• cloud.google.com/go/vmmigration: v1.8.6 → v1.9.1
• cloud.google.com/go/vmwareengine: v1.3.5 → v1.3.6
• cloud.google.com/go/vpcaccess: v1.8.6 → v1.8.7
• cloud.google.com/go/webrisk: v1.11.1 → v1.11.2
• cloud.google.com/go/websecurityscanner: v1.7.6 → v1.7.7
• cloud.google.com/go/workflows: v1.14.2 → v1.14.3
• cloud.google.com/go: v0.120.0 → v0.121.6
• cuelabs.dev/go/oci/ociregistry: b27552d → 49cab49
• cuelang.org/go: v0.12.1 → v0.14.1
• cyphar.com/go-pathrs: v0.2.1 → v0.2.4
• github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp: v1.30.0 → v1.31.0
• github.com/aws/aws-sdk-go-v2/config: v1.31.20 → v1.32.7
• github.com/aws/aws-sdk-go-v2/credentials: v1.18.24 → v1.19.7
• github.com/aws/aws-sdk-go-v2/feature/ec2/imds: v1.18.13 → v1.18.17
• github.com/aws/aws-sdk-go-v2/internal/configsources: v1.4.13 → v1.4.17
• github.com/aws/aws-sdk-go-v2/internal/endpoints/v2: v2.7.13 → v2.7.17
• github.com/aws/aws-sdk-go-v2/service/ecr: v1.42.0 → v1.45.1
• github.com/aws/aws-sdk-go-v2/service/ecrpublic: v1.32.0 → v1.33.2
• github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding: v1.13.3 → v1.13.4
• github.com/aws/aws-sdk-go-v2/service/internal/presigned-url: v1.13.13 → v1.13.17
• github.com/aws/aws-sdk-go-v2/service/kms: v1.48.2 → v1.49.1
• github.com/aws/aws-sdk-go-v2/service/sso: v1.30.3 → v1.30.9
• github.com/aws/aws-sdk-go-v2/service/ssooidc: v1.35.7 → v1.35.13
• github.com/aws/aws-sdk-go-v2/service/sts: v1.40.2 → v1.41.6
• github.com/aws/aws-sdk-go-v2: v1.39.6 → v1.41.1
• github.com/aws/smithy-go: v1.23.2 → v1.24.0
• github.com/awslabs/amazon-ecr-credential-helper/ecr-login: v0.9.1 → v0.10.1
• github.com/buildkite/agent/v3: v3.95.1 → v3.104.0
• github.com/buildkite/go-pipeline: v0.13.3 → v0.15.0
• github.com/buildkite/roko: v1.3.1 → v1.4.0
• github.com/clipperhouse/displaywidth: v0.6.0 → v0.10.0
• github.com/clipperhouse/uax29/v2: v2.3.0 → v2.6.0
• github.com/cloudflare/circl: v1.6.1 → v1.6.3
• github.com/containerd/containerd: v1.7.30 → v1.7.31
• github.com/containerd/nri: v0.11.0 → v0.12.0
• github.com/containerd/ttrpc: v1.2.7 → v1.2.8
• github.com/containernetworking/plugins: v1.9.0 → v1.9.1
• github.com/containers/ocicrypt: v1.2.1 → v1.3.0
• github.com/docker/cli: v29.1.5+incompatible → v29.2.1+incompatible
• github.com/emicklei/proto: v1.14.0 → v1.14.2
• github.com/fsnotify/fsnotify: v1.9.0 → v1.10.1
• github.com/go-git/go-billy/v5: v5.6.2 → v5.8.0
• github.com/go-git/go-git/v5: v5.16.3 → v5.18.0
• github.com/go-jose/go-jose/v4: v4.1.3 → v4.1.4
• github.com/go-openapi/analysis: v0.23.0 → v0.24.3
• github.com/go-openapi/errors: v0.22.2 → v0.22.7
• github.com/go-openapi/jsonpointer: v0.21.0 → v0.22.5
• github.com/go-openapi/jsonreference: v0.21.0 → v0.21.5
• github.com/go-openapi/loads: v0.22.0 → v0.23.3
• github.com/go-openapi/runtime: v0.28.0 → v0.29.3
• github.com/go-openapi/spec: v0.21.0 → v0.22.4
• github.com/go-openapi/strfmt: v0.23.0 → v0.26.0
• github.com/go-openapi/swag/cmdutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/conv: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/fileutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/jsonname: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/jsonutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/loading: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/mangling: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/netutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/stringutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/typeutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag/yamlutils: v0.24.0 → v0.25.5
• github.com/go-openapi/swag: v0.24.1 → v0.25.5
• github.com/go-openapi/validate: v0.24.0 → v0.25.2
• github.com/go-piv/piv-go/v2: v2.3.0 → v2.4.0
• github.com/go-viper/mapstructure/v2: v2.4.0 → v2.5.0
• github.com/goccy/go-json: v0.10.5 → v0.10.6
• github.com/google/go-containerregistry: v0.20.7 → v0.21.2
• github.com/google/go-querystring: v1.1.0 → v1.2.0
• github.com/google/pprof: 294ebfa → 545e8a4
• github.com/googleapis/enterprise-certificate-proxy: v0.3.7 → v0.3.12
• github.com/googleapis/gax-go/v2: v2.15.0 → v2.17.0
• github.com/in-toto/attestation: v1.1.1 → v1.1.2
• github.com/intel/goresctrl: v0.11.0 → v0.12.0
• github.com/klauspost/compress: v1.18.3 → v1.18.4
• github.com/magefile/mage: v1.15.0 → v1.16.1
• github.com/mailru/easyjson: v0.9.0 → v0.7.7
• github.com/mitchellh/mapstructure: 8508981 → v1.5.0
• github.com/olekukonko/errors: v1.1.0 → v1.2.0
• github.com/olekukonko/ll: v0.1.3 → v0.1.6
• github.com/olekukonko/tablewriter: v1.1.2 → v1.1.4
• github.com/onsi/ginkgo/v2: v2.28.1 → v2.28.3
• github.com/onsi/gomega: v1.39.1 → v1.40.0
• github.com/open-policy-agent/opa: v1.4.0 → v1.8.0
• github.com/opencontainers/runc: v1.4.0 → v1.4.1
• github.com/pelletier/go-toml/v2: v2.2.3 → v2.2.4
• github.com/protocolbuffers/txtpbfmt: 1ee4910 → f293424
• github.com/sagikazarmark/locafero: v0.7.0 → v0.11.0
• github.com/sigstore/cosign/v2: v2.5.0 → v2.6.2
• github.com/sigstore/fulcio: v1.8.3 → v1.8.5
• github.com/sigstore/rekor: v1.4.2 → v1.5.1
• github.com/sigstore/sigstore-go: v0.7.1 → v1.1.4
• github.com/sigstore/sigstore/pkg/signature/kms/aws: v1.10.0 → v1.10.3
• github.com/sigstore/sigstore/pkg/signature/kms/azure: v1.10.0 → v1.10.3
• github.com/sigstore/sigstore/pkg/signature/kms/gcp: v1.10.0 → v1.10.3
• github.com/sigstore/sigstore/pkg/signature/kms/hashivault: v1.10.0 → v1.10.3
• github.com/sigstore/sigstore: v1.10.3 → v1.10.4
• github.com/sourcegraph/conc: v0.3.0 → 5f936ab
• github.com/spf13/afero: v1.12.0 → v1.15.0
• github.com/spf13/cast: v1.7.1 → v1.10.0
• github.com/spf13/viper: v1.20.1 → v1.21.0
• github.com/tetratelabs/wazero: v1.10.1 → v1.11.0
• github.com/theupdateframework/go-tuf/v2: v2.0.2 → v2.4.1
• github.com/tink-crypto/tink-go/v2: v2.5.0 → v2.6.0
• gitlab.com/gitlab-org/api/client-go: v0.127.0 → v0.143.3
• go.mongodb.org/mongo-driver: v1.17.3 → v1.12.1
• go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc: v0.66.0 → v0.68.0
• go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc: v1.38.0 → v1.42.0
• go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp: v1.38.0 → v1.42.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc: v1.41.0 → v1.43.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace: v1.41.0 → v1.43.0
• go.opentelemetry.io/otel/exporters/stdout/stdoutmetric: v1.38.0 → v1.42.0
• go.opentelemetry.io/otel/metric: v1.41.0 → v1.43.0
• go.opentelemetry.io/otel/sdk/metric: v1.41.0 → v1.43.0
• go.opentelemetry.io/otel/sdk: v1.41.0 → v1.43.0
• go.opentelemetry.io/otel/trace: v1.41.0 → v1.43.0
• go.opentelemetry.io/otel: v1.41.0 → v1.43.0
• go.opentelemetry.io/proto/otlp: v1.9.0 → v1.10.0
• go.step.sm/crypto: v0.74.0 → v0.75.0
• goa.design/goa/v3: v3.22.6 → v3.23.4
• golang.org/x/crypto: v0.48.0 → v0.50.0
• golang.org/x/exp: b7579e2 → 8a7402a
• golang.org/x/mod: v0.32.0 → v0.35.0
• golang.org/x/net: v0.51.0 → v0.53.0
• golang.org/x/oauth2: v0.35.0 → v0.36.0
• golang.org/x/sync: v0.19.0 → v0.20.0
• golang.org/x/sys: v0.41.0 → v0.43.0
• golang.org/x/telemetry: bd525da → be6f6cb
• golang.org/x/term: v0.40.0 → v0.42.0
• golang.org/x/text: v0.34.0 → v0.36.0
• golang.org/x/tools: v0.41.0 → v0.44.0
• gonum.org/v1/gonum: v0.16.0 → v0.17.0
• google.golang.org/api: v0.256.0 → v0.269.0
• google.golang.org/genproto/googleapis/api: 4cfbd41 → 9d38bb4
• google.golang.org/genproto/googleapis/rpc: 4cfbd41 → 6f92a3b
• google.golang.org/genproto: 513f239 → ff82c1b
• google.golang.org/grpc: v1.79.3 → v1.80.0
• gopkg.in/ini.v1: v1.67.0 → v1.67.1
• k8s.io/api: v0.36.0-rc.0 → v0.36.0
• k8s.io/apimachinery: v0.36.0-rc.0 → v0.36.0
• k8s.io/client-go: v0.36.0-rc.0 → v0.36.0
• k8s.io/component-base: v0.36.0-rc.0 → v0.36.0
• k8s.io/cri-api: v0.36.0-rc.0 → v0.36.0
• k8s.io/cri-client: v0.36.0-rc.0 → v0.36.0
• k8s.io/cri-streaming: v0.36.0-rc.0 → v0.36.0
• k8s.io/kubelet: v0.36.0-rc.0 → v0.36.0
• k8s.io/streaming: v0.36.0-rc.0 → v0.37.0-alpha.0
• sigs.k8s.io/knftables: v0.0.20 → v0.0.21
• sigs.k8s.io/release-sdk: v0.12.5 → v0.12.6
• sigs.k8s.io/release-utils: v0.12.3 → v0.12.4
• sigs.k8s.io/structured-merge-diff/v4: v4.6.0 → v4.2.3

Removed

• github.com/google/go-github/v55: v55.0.0
• github.com/google/go-github/v75: v75.0.0
• github.com/montanaflynn/stats: v0.7.1
• github.com/niemeyer/pretty: a10e7ca
• github.com/sigstore/timestamp-authority: v1.2.5
• github.com/xdg-go/pbkdf2: v1.0.0
• github.com/xdg-go/scram: v1.1.2
• github.com/xdg-go/stringprep: v1.0.4
• github.com/youmark/pkcs8: a2c0da2
• github.com/zeebo/errs: v1.4.0