Bump github.com/google/ko from 0.18.0 to 0.18.1 in /hack/ko

[dependabot]

Bumps github.com/google/ko from 0.18.0 to 0.18.1.

Release notes

Sourced from github.com/google/ko's releases.

v0.18.1

What's Changed

• update labelsNode to match new labels interface in kube 1.34 by @​ecordell in ko-build/ko#1584

Other

• build(deps): bump k8s.io/apimachinery from 0.33.0 to 0.33.1 by @​dependabot[bot] in ko-build/ko#1513
• Revert "drop -m flag" to fix empty SBOM generation in v0.18.0 by @​0xiso in ko-build/ko#1514
• build(deps): bump github.com/google/go-containerregistry from 0.20.4-0.20250225234217-098045d5e61f to 0.20.4 by @​dependabot[bot] in ko-build/ko#1516
• build(deps): bump sigs.k8s.io/kind from 0.27.0 to 0.29.0 by @​dependabot[bot] in ko-build/ko#1517
• build(deps): bump github.com/google/go-containerregistry from 0.20.4 to 0.20.5 by @​dependabot[bot] in ko-build/ko#1518
• Update ko version used in CI by @​maboehm in ko-build/ko#1501
• build(deps): bump golang.org/x/sync from 0.14.0 to 0.15.0 by @​dependabot[bot] in ko-build/ko#1522
• build(deps): bump golang.org/x/tools from 0.33.0 to 0.34.0 by @​dependabot[bot] in ko-build/ko#1521
• build(deps): bump github.com/google/go-containerregistry from 0.20.5 to 0.20.6 by @​dependabot[bot] in ko-build/ko#1527
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @​dependabot[bot] in ko-build/ko#1529
• build(deps): bump github.com/sigstore/cosign/v2 from 2.5.0 to 2.5.1 by @​dependabot[bot] in ko-build/ko#1530
• build(deps): bump github.com/sigstore/cosign/v2 from 2.5.1 to 2.5.2 by @​dependabot[bot] in ko-build/ko#1531
• build(deps): bump k8s.io/apimachinery from 0.33.1 to 0.33.2 by @​dependabot[bot] in ko-build/ko#1532
• build(deps): bump github.com/docker/docker from 28.2.2+incompatible to 28.3.0+incompatible by @​dependabot[bot] in ko-build/ko#1533
• build(deps): bump github.com/docker/docker from 28.3.0+incompatible to 28.3.1+incompatible by @​dependabot[bot] in ko-build/ko#1535
• build(deps): bump golang.org/x/sync from 0.15.0 to 0.16.0 by @​dependabot[bot] in ko-build/ko#1537
• build(deps): bump github.com/docker/docker from 28.3.1+incompatible to 28.3.2+incompatible by @​dependabot[bot] in ko-build/ko#1538
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 by @​dependabot[bot] in ko-build/ko#1540
• build(deps): bump k8s.io/apimachinery from 0.33.2 to 0.33.3 by @​dependabot[bot] in ko-build/ko#1541
• build(deps): bump github.com/sigstore/cosign/v2 from 2.5.2 to 2.5.3 by @​dependabot[bot] in ko-build/ko#1542
• bump cosign and rekor to HEAD to fix cve for go-chi/chi dep by @​cpanato in ko-build/ko#1547
• build(deps): bump golang.org/x/tools from 0.34.0 to 0.36.0 by @​dependabot[bot] in ko-build/ko#1546
• build(deps): bump github.com/docker/docker from 28.3.2+incompatible to 28.3.3+incompatible by @​dependabot[bot] in ko-build/ko#1544
• build(deps): bump k8s.io/apimachinery from 0.33.3 to 0.33.4 by @​dependabot[bot] in ko-build/ko#1549
• build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by @​dependabot[bot] in ko-build/ko#1551
• build(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @​dependabot[bot] in ko-build/ko#1553
• build(deps): bump sigs.k8s.io/kind from 0.29.0 to 0.30.0 by @​dependabot[bot] in ko-build/ko#1552
• build(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by @​dependabot[bot] in ko-build/ko#1555
• build(deps): bump github.com/docker/docker from 28.3.3+incompatible to 28.4.0+incompatible by @​dependabot[bot] in ko-build/ko#1556
• build(deps): bump golang.org/x/tools from 0.36.0 to 0.37.0 by @​dependabot[bot] in ko-build/ko#1561
• Update go-chi by @​gcemaj in ko-build/ko#1567
• build(deps): bump github.com/spf13/viper from 1.20.1 to 1.21.0 by @​dependabot[bot] in ko-build/ko#1559
• build(deps): bump github.com/docker/docker from 28.4.0+incompatible to 28.5.0+incompatible by @​dependabot[bot] in ko-build/ko#1570
• build(deps): bump golang.org/x/tools from 0.37.0 to 0.38.0 by @​dependabot[bot] in ko-build/ko#1573
• build(deps): bump github.com/docker/docker from 28.5.0+incompatible to 28.5.1+incompatible by @​dependabot[bot] in ko-build/ko#1572
• Split stdout and stderr when running go env by @​DrJosh9000 in ko-build/ko#1574
• build(deps): bump github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible by @​dependabot[bot] in ko-build/ko#1575
• build(deps): bump golang.org/x/sync from 0.17.0 to 0.18.0 by @​dependabot[bot] in ko-build/ko#1576
• build(deps): bump github.com/awslabs/amazon-ecr-credential-helper/ecr-login from 0.10.1 to 0.11.0 by @​dependabot[bot] in ko-build/ko#1577
• build(deps): bump golang.org/x/tools from 0.38.0 to 0.39.0 by @​dependabot[bot] in ko-build/ko#1579
• build(deps): bump golang.org/x/crypto from 0.44.0 to 0.45.0 by @​dependabot[bot] in ko-build/ko#1581
• build(deps): bump github.com/google/go-containerregistry from 0.20.6 to 0.20.7 by @​dependabot[bot] in ko-build/ko#1582

... (truncated)

Commits

• 7f1ced6 bump govulncheck action go version
• f644f24 don't bump go-yit all the way
• 321f652 bump lint action + tool
• b9b24bc update deps
• 8fa7b39 update labelsNode to match new labels interface in kube 1.34
• 2bb8879 build(deps): bump golang.org/x/tools from 0.39.0 to 0.40.0 (#1585)
• ba4f980 build(deps): bump golang.org/x/sync from 0.18.0 to 0.19.0 (#1586)
• ffcf003 build(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 (#1583)
• 6508cef Merge pull request #1582 from ko-build/dependabot/go_modules/github.com/googl...
• c4d1c9b build(deps): bump github.com/google/go-containerregistry
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.97%. Comparing base (644a61c) to head (52360d3).
⚠️ Report is 3 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #514   +/-   ##
=======================================
  Coverage   72.97%   72.97%           
=======================================
  Files          28       28           
  Lines        1480     1480           
=======================================
  Hits         1080     1080           
  Misses        329      329           
  Partials       71       71           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.