chore(deps): bump github.com/kong/deck from 1.34.0 to 1.42.1

[dependabot]

Bumps github.com/kong/deck from 1.34.0 to 1.42.1.

Release notes

Sourced from github.com/kong/deck's releases.

v1.42.1

Changelog

• f73569d chore: update golang.org/x/net dep to avoid vulnerability (#1481)

v1.42.0

Changelog

• 63fd4c7 chore: release prep for v1.42.0 (#1478)
• ca82e63 fix: restore Gateway API generation (issue #1427). (#1431)
• ba07071 chore(deps): bump github.com/kong/kubernetes-configuration (#1475)
• c52a569 chore(deps): bump docker/metadata-action from 5.5.1 to 5.6.1 (#1443)
• 1031d1f chore(deps): bump sigs.k8s.io/gateway-api from 1.2.0 to 1.2.1 (#1476)
• 983b82e chore(ci): add kong 3.8 (#1472)
• 41c5236 chore(deps): bump golang from 1.23.3 to 1.23.4 (#1460)
• d21f8cf chore(deps): bump golang.org/x/sync from 0.8.0 to 0.10.0 (#1463)
• 1d60398 chore(deps): bump alpine from 3.20.3 to 3.21.0 (#1464)
• 3e60835 chore(deps): bump k8s.io/client-go from 0.31.2 to 0.32.0 (#1469)
• 18cbd8d ci: do not run Konnect integration tests in parallel (#1471)
• 9c52126 tests: add GOTESTFLAGS to test-integration Makefile target (#1462)
• 9c2f736 chore(cmd): enhance help message for generate-imports-for-control-plane-id flag (#1448)
• 3c24be7 chore: fixed integration tests for gw 3.9 release (#1470)
• 4c52f38 add feature online plugins filter flag (#1458)

v1.41.4

Changelog

• 4da4246 Updated go-apiops (#1452)
• 43eef06 chore(deps): import kubernetes-configuration instead of KIC (#1450)

v1.41.3

Changelog

• 63dc5b4 chore: updated go-database-reconciler to v1.16.1 (#1451)
• 07aa9ff chore(deps): bump go-database-reconciler and go-kong (#1439)
• 5cdea5d fix(tests): add lock_dictionary_name to expected Konnect state (#1449)
• 38e6449 chore(deps): bump github.com/kong/kubernetes-ingress-controller/v3 (#1386)
• 04bda87 chore(deps): bump k8s.io/api from 0.31.0 to 0.31.2 (#1426)
• 50699b6 chore(deps): bump k8s.io/apimachinery from 0.31.0 to 0.31.2 (#1425)
• aee6219 chore(deps): bump alpine from 3.20.2 to 3.20.3 (#1393)
• c08d039 chore(deps): bump golang from 1.23.2 to 1.23.3 (#1434)
• 6e03802 fix: make terraform imports keys order deterministic (#1433)
• f8d3d2a ci: add prealloc to linter rules (#1432)
• 3305886 chore(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 (#1411)

v1.41.2

Changelog

• c88f497 Fixing integration test failures for 3.8.1 release (#1428)
• 8e377a0 chore: updated go-apiops lib. (#1430)
• d10c338 chore(deps): bump github.com/docker/docker (#1419)
• 1fee2c4 chore(deps): bump golang from 1.23.0 to 1.23.2 (#1410)

v1.41.1

Changelog

... (truncated)

Changelog

Sourced from github.com/kong/deck's changelog.

[v1.42.1]

Release date: 2024/12/24

Fixed

• Updated golang.org/x/net to version v0.33.0 to account for vulnerability CVE-2024-45338 #1481

[v1.42.0]

Release date: 2024/12/13

Added

• Added a new flag --online-entities-list to validate the specified entities via deck gateway validate command. #1458
• Added feature to ignore entities tagged with konnect-managed during deck dump, sync and diff. This is valid for Konnect entities only. #1478 [go-database-reconciler #153](Kong/go-database-reconciler#153)
• Improved speed for deck sync/diff operations involving consumer-groups for gw 3.9+. The underlying API call to GET /consumer_group is called with query parameter list_consumers=false, making it faster for deck to deal with cases where a consumer-group holds many consumers. (#1475)[https://redirect.github.com/chore(deps): bump github.com/kong/kubernetes-configuration from 0.0.46 to 1.0.0 deck#1475] (go-kong #487)[https://redirect.github.com/feat: do not list consumers in a GET Consumer Group call go-kong#487]

Fixes

• Fixed issue where tags were not getting propagated to consumer-group plugins. #1478 [go-database-reconciler #151](Kong/go-database-reconciler#151) [go-kong #485](Kong/go-kong#485)
• Enhanced help message for generate-imports-for-control-plane-id flag #1448
• Restored to using Gateway API generation in deck file kong2kic, rather than Ingress API #1431

[v1.41.4]

Release date: 2024/11/26

Fixes

• Added validation for ensuring that cookie parameters in parameter schemas are skipped and a warning is logged for the user while using deck file openapi2kong command. #1452 [go-apiops #255](Kong/go-apiops#225)
• Fixed issue where creating arrays with mixed types using oneOf in OAS specifications were failing while using deck file openapi2kong command. #1452 [go-apiops #231](Kong/go-apiops#231)

... (truncated)

Commits

• f73569d chore: update golang.org/x/net dep to avoid vulnerability (#1481)
• 63fd4c7 chore: release prep for v1.42.0 (#1478)
• ca82e63 fix: restore Gateway API generation (issue #1427). (#1431)
• ba07071 chore(deps): bump github.com/kong/kubernetes-configuration (#1475)
• c52a569 chore(deps): bump docker/metadata-action from 5.5.1 to 5.6.1 (#1443)
• 1031d1f chore(deps): bump sigs.k8s.io/gateway-api from 1.2.0 to 1.2.1 (#1476)
• 983b82e chore(ci): add kong 3.8 (#1472)
• 41c5236 chore(deps): bump golang from 1.23.3 to 1.23.4 (#1460)
• d21f8cf chore(deps): bump golang.org/x/sync from 0.8.0 to 0.10.0 (#1463)
• 1d60398 chore(deps): bump alpine from 3.20.3 to 3.21.0 (#1464)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 27.95%. Comparing base (1cb04ae) to head (cfa5a0b).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #168   +/-   ##
=======================================
  Coverage   27.95%   27.95%           
=======================================
  Files         106      106           
  Lines       16358    16358           
=======================================
  Hits         4573     4573           
  Misses      11303    11303           
  Partials      482      482           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[Prashansa-K]

deck 1.42.x is buggy. deck gateway dump has some regressions.
Kong/deck#1483

The changes to fix this are merged but we are waiting for the release-audit to be completed to release a new version. Until then, we shouldn't merge this.

[dependabot]

A newer version of github.com/kong/deck exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.