Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Repository Problems

These problems occurred while renovating this repository. View logs.

• ⚠️ WARN: Package lookup failures

Abandoned Dependencies

The following dependencies have not received updates for an extended period and may be unmaintained.

View abandoned dependencies (18)

[!NOTE]
Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release. Unlike deprecated packages with official notices, abandonment is detected by release inactivity.

Datasource	Package	Last Updated
github-actions	contributor-assistant/github-action	2024-09-26
github-actions	mauroalderete/action-assign-labels	2024-04-04
gomod	github.com/dlmiddlecote/sqlstats	2021-02-08
gomod	github.com/ghodss/yaml	2017-03-27
gomod	github.com/glebarez/go-sqlite	2023-12-26
gomod	github.com/glebarez/sqlite	2024-03-14
gomod	github.com/go-errors/errors	2023-09-15
gomod	github.com/go-pg/migrations/v8	2021-03-22
gomod	github.com/go-playground/universal-translator	2023-01-30
gomod	github.com/golang/mock	2022-05-12
gomod	github.com/google/uuid	2024-01-23
gomod	github.com/knadh/koanf/providers/confmap	2025-04-15
gomod	github.com/mitchellh/mapstructure	2022-04-20
gomod	github.com/pkg/errors	2020-01-14
gomod	github.com/proullon/ramsql	2024-07-24
gomod	github.com/rcrowley/go-metrics	2025-04-01
gomod	github.com/xdg/scram	2022-01-16
gomod	gopkg.in/yaml.v3	2022-05-27

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): update ghcr.io/netcracker/qubership-core-base docker tag to v2.2.13
• chore(deps): update golang docker tag to v1.26.3
• chore(deps): update dependency no.nav.security:mock-oauth2-server to v4

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package netcracker/qubership-workflow-hub).

Files affected: .github/workflows/pr-assigner.yml

---

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency org.postgresql:postgresql to v42.7.11 [security]
• chore(deps): update module golang.org/x/net to v0.55.0 [security]
• fix(deps): update module golang.org/x/crypto to v0.52.0 [security]
• chore(deps): pin dependencies (confluentinc/cp-kafka, confluentinc/cp-zookeeper, ghcr.io/netcracker/qubership-core-base, ghcr.io/netcracker/qubership-docker-kafka, golang, provectuslabs/kafka-ui)
• chore(deps): pin dependencies (IEvangelist/profanity-filter, actions/cache, actions/checkout, actions/upload-artifact, amannn/action-semantic-pull-request, go, lycheeverse/lychee-action, mauroalderete/action-assign-labels, netcracker/qubership-core-infra, netcracker/qubership-workflow-hub, super-linter/super-linter, webiny/action-conventional-commits)
• fix(deps): update golang.org/x/exp digest to 74f9aab
• chore(deps): update go module directive to v1.26.3
• fix(deps): update maven (no.nav.security:mock-oauth2-server, org.apache.commons:commons-lang3, com.fasterxml.jackson.dataformat:jackson-dataformat-yaml, com.fasterxml.jackson.core:jackson-databind, org.projectlombok:lombok, org.testcontainers:testcontainers-bom)
• fix(deps): update go-minor (github.com/IBM/sarama, github.com/lib/pq, github.com/onsi/gomega, github.com/testcontainers/testcontainers-go, github.com/testcontainers/testcontainers-go/modules/postgres)
• fix(deps): update module github.com/netcracker/qubership-core-lib-go/v3 to v3.9.1
• chore(deps): update github-actions (major) (IEvangelist/profanity-filter, actions/setup-go, golangci/golangci-lint-action, netcracker/qubership-core-infra)
• fix(deps): update module github.com/gofiber/fiber/v2 to v3
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

docker-compose (2)

dev/docker-compose-cluster.yml (5)

• confluentinc/cp-zookeeper latest → [Updates: latest]
• confluentinc/cp-kafka latest → [Updates: latest]
• confluentinc/cp-kafka latest → [Updates: latest]
• confluentinc/cp-kafka latest → [Updates: latest]
• provectuslabs/kafka-ui latest → [Updates: latest]

dev/docker-compose.yml (2)

• ghcr.io/netcracker/qubership-docker-kafka main → [Updates: main]
• provectuslabs/kafka-ui latest → [Updates: latest]

dockerfile (2)

maas/Dockerfile (2)

• golang 1.26.2 → [Updates: 1.26.3, 1.26.2]
• ghcr.io/netcracker/qubership-core-base 2.2.12 → [Updates: 2.2.13, 2.2.12]

validation-image/Dockerfile (1)

• ghcr.io/netcracker/qubership-core-base 2.2.12 → [Updates: 2.2.13, 2.2.12]

github-actions (13)

.github/workflows/automatic-pr-labeler.yaml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• mauroalderete/action-assign-labels v1 → [Updates: v1]

.github/workflows/cla.yaml (1)

• contributor-assistant/github-action v2.6.1@ca4a40a7d1004f18d9960b404b97e5f30a505a08

.github/workflows/cleanup-old-docker-container.yml (1)

• netcracker/qubership-workflow-hub v2.1.1 → [Updates: v2.2.2, v2.1.1]

.github/workflows/docker-release.yaml (4)

• netcracker/qubership-workflow-hub v2.1.1 → [Updates: v2.2.2, v2.1.1]
• netcracker/qubership-workflow-hub v2.1.1 → [Updates: v2.2.2, v2.1.1]
• netcracker/qubership-workflow-hub v2.1.1 → [Updates: v2.2.2, v2.1.1]
• netcracker/qubership-workflow-hub v2.1.1 → [Updates: v2.2.2, v2.1.1]

.github/workflows/link-checker.yaml (3)

• actions/checkout v6 → [Updates: v6]
• actions/cache v5 → [Updates: v5]
• lycheeverse/lychee-action v2 → [Updates: v2]

.github/workflows/maas---build-on-push.yaml (3)

• netcracker/qubership-core-infra v1.3.3 → [Updates: v2.4.1, v1.3.3]
• netcracker/qubership-core-infra v1.3.3 → [Updates: v2.4.1, v1.3.3]
• netcracker/qubership-core-infra v1.3.3 → [Updates: v2.4.1, v1.3.3]

.github/workflows/pr-assigner.yml (2)

• actions/checkout v6 → [Updates: v6]
• netcracker/qubership-workflow-hub 2.1.1@5edd67e98d2f0eec5ab77b4deca0e1d481137462 → [Updates: v2.2.2]

.github/workflows/pr-conventional-commits.yaml (2)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• webiny/action-conventional-commits v1.3.1 → [Updates: v1.4.2, v1.3.1]

.github/workflows/pr-lint-title.yaml (1)

• amannn/action-semantic-pull-request v6 → [Updates: v6]

.github/workflows/profanity-filter.yaml (1)

• IEvangelist/profanity-filter 10.0 → [Updates: 13.3.0, 10.0]

.github/workflows/renovate-config-lint.yaml (1)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd

.github/workflows/super-linter.yaml (9)

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
• super-linter/super-linter v8.5.0@61abc07d755095a68f4987d1c2c3d1d64408f1f9 → [Updates: v8.6.0]
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-go v5@40f1582b2485089dde7abd97c1529aa768e1baff → [Updates: v6]
• golangci/golangci-lint-action v7@9fae48acfc02a90574d7c304a1758ef9895495fa → [Updates: v9]
• go 1.26.1 → [Updates: 1.26.3]

.github/workflows/validation-image---build-on-push.yaml (1)

• netcracker/qubership-core-infra v1.3.1@48158cb845bca0d124fdcb12ce51eb578312daf9 → [Updates: v1.3.3, v2.4.1]

gomod (1)

maas/maas-service/go.mod (39)

• go 1.26.2 → [Updates: 1.26.3]
• github.com/IBM/sarama v1.47.0 → [Updates: v1.48.2]
• github.com/dlmiddlecote/sqlstats v1.0.2
• github.com/docker/docker v28.5.2+incompatible
• github.com/ghodss/yaml v1.0.0
• github.com/glebarez/go-sqlite v1.22.0
• github.com/glebarez/sqlite v1.11.0
• github.com/go-errors/errors v1.5.1
• github.com/go-pg/migrations/v8 v8.1.0
• github.com/go-pg/pg/v10 v10.15.0
• github.com/go-playground/universal-translator v0.18.1
• github.com/go-playground/validator/v10 v10.30.2
• github.com/go-resty/resty/v2 v2.17.2
• github.com/gofiber/fiber/v2 v2.52.13 → [Updates: v3.2.0]
• github.com/golang-jwt/jwt/v5 v5.3.1
• github.com/golang/mock v1.6.0
• github.com/google/uuid v1.6.0
• github.com/jackc/pgx/v5 v5.9.2
• github.com/jucardi/go-streams/v2 v2.0.3
• github.com/knadh/koanf/providers/confmap v1.0.0
• github.com/lib/pq v1.11.2 → [Updates: v1.12.3]
• github.com/mitchellh/mapstructure v1.5.0
• github.com/netcracker/qubership-core-lib-go/v3 v3.7.0 → [Updates: v3.9.1]
• github.com/onsi/gomega v1.39.1 → [Updates: v1.40.0]
• github.com/pkg/errors v0.9.1
• github.com/prometheus/client_golang v1.23.2
• github.com/proullon/ramsql v0.1.4
• github.com/rcrowley/go-metrics v0.0.0-20250401214520-65e299d6c5c9@65e299d6c5c9
• github.com/stretchr/testify v1.11.1
• github.com/swaggo/swag v1.16.6
• github.com/testcontainers/testcontainers-go v0.41.0 → [Updates: v0.42.0]
• github.com/testcontainers/testcontainers-go/modules/postgres v0.41.0 → [Updates: v0.42.0]
• github.com/xdg/scram v1.0.5
• golang.org/x/crypto v0.49.0 → [Updates: v0.52.0]
• golang.org/x/exp v0.0.0-20260312153236-7ab1446f8b90@7ab1446f8b90 → [Updates: v0.0.0-20260508232706-74f9aab9d74a]
• gopkg.in/yaml.v3 v3.0.1
• gorm.io/driver/postgres v1.6.0
• gorm.io/gorm v1.31.1
• golang.org/x/net v0.52.0 → [Updates: v0.55.0]

maven (2)

maas-integration-tests/pom.xml (21)

• org.testcontainers:testcontainers-bom 2.0.3 → [Updates: 2.0.5]
• org.hamcrest:hamcrest 3.0
• org.junit.jupiter:junit-jupiter-engine 6.0.3
• com.squareup.okhttp3:okhttp 4.12.0
• org.apache.curator:curator-recipes 5.9.0
• org.apache.httpcomponents:httpclient 4.5.14
• org.postgresql:postgresql 42.7.10 → [Updates: 42.7.11]
• com.rabbitmq:amqp-client 5.27.1
• org.projectlombok:lombok 1.18.42 → [Updates: 1.18.46]
• org.apache.kafka:kafka-clients 4.1.2
• com.google.code.gson:gson 2.13.2
• org.yaml:snakeyaml 2.5
• org.slf4j:slf4j-api 2.0.17
• org.slf4j:slf4j-simple 2.0.17
• net.jodah:failsafe 2.4.4
• com.fasterxml.jackson.core:jackson-annotations 2.21
• com.fasterxml.jackson.core:jackson-databind 2.21.1 → [Updates: 2.21.2]
• com.fasterxml.jackson.dataformat:jackson-dataformat-yaml 2.21.1 → [Updates: 2.21.2]
• org.apache.commons:commons-lang3 3.19.0 → [Updates: 3.20.0]
• no.nav.security:mock-oauth2-server 3.0.1 → [Updates: 3.0.3, 4.0.0]
• org.apache.maven.plugins:maven-surefire-plugin 3.5.5

pom.xml

renovate-config (1)

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository