simon.beck/talos
1
0
Fork 0
Code Issues 1 Pull requests 2 Projects Releases Packages Wiki Activity Actions

Update ghcr.io/dexidp/dex Docker tag to v2.45.0 #298

Open
renovate wants to merge 0 commits from renovate/ghcr.io-dexidp-dex-2.x into master
pull from: renovate/ghcr.io-dexidp-dex-2.x
merge into: simon.beck:master
Conversation 0 Commits - Files changed -
renovate commented 2026-02-24 04:20:32 +00:00
Collaborator
Copy link

This PR contains the following updates:

Package Update Change
ghcr.io/dexidp/dex minor v2.44.0v2.45.0

Release Notes

dexidp/dex (ghcr.io/dexidp/dex)

v2.45.0

Compare Source

Know Before Upgrade

  • The major version of gomplate has been bumped to v5.0.0, which includes breaking changes. Here is the full list.
  • There are two known CVEs in the gomplate binary - CVE-2025-68121 and CVE-2026-25934. gomplate is only used for preprocessing configuration files and is optional. Once the CVEs are fixed upstream, the version of gomplate in the dex image will be updated accordingly.
  • The ContinueOnConnectorFailure feature flag is now enabled by default. To disable it, use the following environment variable: DEX_CONTINUE_ON_CONNECTOR_FAILURE=false.
  • Pre-release versions of dex now use pseudo-versioning for identifying releases. Unreleased versions will follow the pattern v2.minor+1.0-yyyymmdd-commithash.

What's Changed

Exciting New Features 🎉
Enhancements 🚀
Bug Fixes 🐛
Dependency Updates ⬆️
Other Changes

New Contributors

Full Changelog: https://github.com/dexidp/dex/compare/v2.44.0...v2.45.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/dexidp/dex](https://github.com/dexidp/dex) | minor | `v2.44.0` → `v2.45.0` | --- ### Release Notes <details> <summary>dexidp/dex (ghcr.io/dexidp/dex)</summary> ### [`v2.45.0`](https://github.com/dexidp/dex/releases/tag/v2.45.0) [Compare Source](https://github.com/dexidp/dex/compare/v2.44.0...v2.45.0) <!-- Release notes generated using configuration in .github/release.yml at v2.45.x --> #### Know Before Upgrade - The major version of `gomplate` has been bumped to v5.0.0, which includes breaking changes. Here is [the full list](https://github.com/hairyhenderson/gomplate/releases/tag/v5.0.0). - There are two known CVEs in the `gomplate` binary - `CVE-2025-68121` and `CVE-2026-25934`. `gomplate` is only used for preprocessing configuration files and is optional. Once the CVEs are fixed upstream, the version of gomplate in the dex image will be updated accordingly. - The `ContinueOnConnectorFailure` feature flag is now enabled by default. To disable it, use the following environment variable: `DEX_CONTINUE_ON_CONNECTOR_FAILURE=false`. - Pre-release versions of dex now use pseudo-versioning for identifying releases. Unreleased versions will follow the pattern `v2.minor+1.0-yyyymmdd-commithash`. #### What's Changed ##### Exciting New Features 🎉 - Add support to PKCE in OIDC connector by [@&#8203;johnvan7](https://github.com/johnvan7) in [#&#8203;3777](https://github.com/dexidp/dex/pull/3777) - Add Vault signer for JWT by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4512](https://github.com/dexidp/dex/pull/4512) - Support groups and preferred\_username for static passwords by [@&#8203;Jabejixo](https://github.com/Jabejixo) in [#&#8203;4456](https://github.com/dexidp/dex/pull/4456) - Add name and email\_verified fields for static passwords by [@&#8203;Jabejixo](https://github.com/Jabejixo) in [#&#8203;4526](https://github.com/dexidp/dex/pull/4526) ##### Enhancements 🚀 - Example app pkce by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4284](https://github.com/dexidp/dex/pull/4284) - Only wrap IPv6 addresses in brackets by [@&#8203;rene-dekker](https://github.com/rene-dekker) in [#&#8203;4388](https://github.com/dexidp/dex/pull/4388) - Update distroless base image to debian13 by [@&#8203;loosebazooka](https://github.com/loosebazooka) in [#&#8203;4453](https://github.com/dexidp/dex/pull/4453) - Hide internal server error details from users by [@&#8203;Jabejixo](https://github.com/Jabejixo) in [#&#8203;4457](https://github.com/dexidp/dex/pull/4457) - Gitlab support custom rootCAData by [@&#8203;Jabejixo](https://github.com/Jabejixo) in [#&#8203;4496](https://github.com/dexidp/dex/pull/4496) - Enable `ContinueOnConnectorFailure` feature flag by [@&#8203;manojVivek](https://github.com/manojVivek) in [#&#8203;4495](https://github.com/dexidp/dex/pull/4495) - Extend example configs for idEnv and public by [@&#8203;cardoe](https://github.com/cardoe) in [#&#8203;4443](https://github.com/dexidp/dex/pull/4443) - Add unprivileged user setup in Dockerfile by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4517](https://github.com/dexidp/dex/pull/4517) - Add conformance tests for Vault signer integration by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4520](https://github.com/dexidp/dex/pull/4520) - Add CRD handling behavior and configuration options by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4543](https://github.com/dexidp/dex/pull/4543) - Enhance git-version script to generate pseudo-versions by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4553](https://github.com/dexidp/dex/pull/4553) - Validate redirect URIs and safely append parameters by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4559](https://github.com/dexidp/dex/pull/4559) - Refactor example-app with a new config by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4569](https://github.com/dexidp/dex/pull/4569) - Implement device code flow in example-app by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4570](https://github.com/dexidp/dex/pull/4570) ##### Bug Fixes 🐛 - Do not wrap Kubernetes Address in brackets by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4363](https://github.com/dexidp/dex/pull/4363) - Device callback URL needs to handle a / by [@&#8203;cardoe](https://github.com/cardoe) in [#&#8203;4448](https://github.com/dexidp/dex/pull/4448) - Suppress deprecation warning for userAttr when not set by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4539](https://github.com/dexidp/dex/pull/4539) - Use correct id value for label by [@&#8203;loganripplinger](https://github.com/loganripplinger) in [#&#8203;4541](https://github.com/dexidp/dex/pull/4541) - Respond with forbidden if failed to authenticate by [@&#8203;aljoshare](https://github.com/aljoshare) in [#&#8203;4200](https://github.com/dexidp/dex/pull/4200) ##### Dependency Updates ⬆️ - build(deps): bump github.com/dexidp/dex/api/v2 from 2.3.0 to 2.4.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4299](https://github.com/dexidp/dex/pull/4299) - build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4304](https://github.com/dexidp/dex/pull/4304) - build(deps): bump aquasecurity/trivy-action from 0.33.0 to 0.33.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4305](https://github.com/dexidp/dex/pull/4305) - build(deps): bump golang from 1.25.0-alpine3.22 to 1.25.1-alpine3.22 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4307](https://github.com/dexidp/dex/pull/4307) - build(deps): bump distroless/static-debian12 from `a9f88e0` to `e8a4044` by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4313](https://github.com/dexidp/dex/pull/4313) - build(deps): bump oras-project/setup-oras from 1.2.3 to 1.2.4 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4314](https://github.com/dexidp/dex/pull/4314) - build(deps): bump github/codeql-action from 3.29.11 to 3.30.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4320](https://github.com/dexidp/dex/pull/4320) - build(deps): bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4324](https://github.com/dexidp/dex/pull/4324) - build(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4302](https://github.com/dexidp/dex/pull/4302) - build(deps): bump github.com/prometheus/client\_golang from 1.23.0 to 1.23.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4309](https://github.com/dexidp/dex/pull/4309) - build(deps): bump tonistiigi/xx from 1.6.1 to 1.7.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4317](https://github.com/dexidp/dex/pull/4317) - build(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4310](https://github.com/dexidp/dex/pull/4310) - build(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4311](https://github.com/dexidp/dex/pull/4311) - build(deps): bump github/codeql-action from 3.30.3 to 3.30.4 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4339](https://github.com/dexidp/dex/pull/4339) - build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4335](https://github.com/dexidp/dex/pull/4335) - build(deps): bump golang.org/x/net from 0.43.0 to 0.44.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4334](https://github.com/dexidp/dex/pull/4334) - build(deps): bump anchore/sbom-action from 0.20.5 to 0.20.6 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4332](https://github.com/dexidp/dex/pull/4332) - build(deps): bump golang from 1.25.1-alpine3.22 to 1.25.3-alpine3.22 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4368](https://github.com/dexidp/dex/pull/4368) - build(deps): bump actions/dependency-review-action from 4.7.3 to 4.8.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4366](https://github.com/dexidp/dex/pull/4366) - build(deps): bump github/codeql-action from 3.30.4 to 4.30.8 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4365](https://github.com/dexidp/dex/pull/4365) - build(deps): bump google.golang.org/api from 0.248.0 to 0.252.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4360](https://github.com/dexidp/dex/pull/4360) - build(deps): bump google.golang.org/grpc from 1.75.0 to 1.76.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4357](https://github.com/dexidp/dex/pull/4357) - build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4350](https://github.com/dexidp/dex/pull/4350) - build(deps): bump docker/login-action from 3.5.0 to 3.6.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4348](https://github.com/dexidp/dex/pull/4348) - build(deps): bump actions/cache from 4.2.4 to 4.3.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4338](https://github.com/dexidp/dex/pull/4338) - build(deps): bump the etcd group with 2 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4333](https://github.com/dexidp/dex/pull/4333) - build(deps): bump alpine from 3.22.1 to 3.22.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4361](https://github.com/dexidp/dex/pull/4361) - build(deps): bump github.com/coreos/go-oidc/v3 from 3.15.0 to 3.16.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4354](https://github.com/dexidp/dex/pull/4354) - build(deps): bump google.golang.org/grpc from 1.75.0 to 1.76.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4355](https://github.com/dexidp/dex/pull/4355) - build(deps): bump golang.org/x/oauth2 from 0.31.0 to 0.32.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4362](https://github.com/dexidp/dex/pull/4362) - build(deps): bump github/codeql-action from 4.30.8 to 4.31.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4398](https://github.com/dexidp/dex/pull/4398) - build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4395](https://github.com/dexidp/dex/pull/4395) - build(deps): bump anchore/sbom-action from 0.20.6 to 0.20.9 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4393](https://github.com/dexidp/dex/pull/4393) - build(deps): bump tonistiigi/xx from 1.7.0 to 1.8.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4386](https://github.com/dexidp/dex/pull/4386) - build(deps): bump golang.org/x/crypto from 0.42.0 to 0.43.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4376](https://github.com/dexidp/dex/pull/4376) - build(deps): bump google.golang.org/grpc from 1.75.0 to 1.76.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4356](https://github.com/dexidp/dex/pull/4356) - build(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4380](https://github.com/dexidp/dex/pull/4380) - build(deps): bump golang.org/x/net from 0.44.0 to 0.46.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4374](https://github.com/dexidp/dex/pull/4374) - build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.2 to 4.1.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4373](https://github.com/dexidp/dex/pull/4373) - build(deps): bump golang from `20ee0b6` to `aee43c3` by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4371](https://github.com/dexidp/dex/pull/4371) - build(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4300](https://github.com/dexidp/dex/pull/4300) - build(deps): bump golang.org/x/oauth2 from 0.31.0 to 0.32.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4375](https://github.com/dexidp/dex/pull/4375) - build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.10 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4352](https://github.com/dexidp/dex/pull/4352) - build(deps): bump tonistiigi/xx from 1.8.0 to 1.9.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4430](https://github.com/dexidp/dex/pull/4430) - build(deps): bump distroless/static-debian12 from `e8a4044` to `2b7c93f` by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4427](https://github.com/dexidp/dex/pull/4427) - build(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4419](https://github.com/dexidp/dex/pull/4419) - build(deps): bump github/codeql-action from 4.31.2 to 4.31.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4414](https://github.com/dexidp/dex/pull/4414) - build(deps): bump actions/dependency-review-action from 4.8.1 to 4.8.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4411](https://github.com/dexidp/dex/pull/4411) - build(deps): bump docker/setup-qemu-action from 3.6.0 to 3.7.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4405](https://github.com/dexidp/dex/pull/4405) - build(deps): bump docker/metadata-action from 5.8.0 to 5.9.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4402](https://github.com/dexidp/dex/pull/4402) - build(deps): bump helm/kind-action from 1.12.0 to 1.13.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4399](https://github.com/dexidp/dex/pull/4399) - build(deps): bump alpine from 3.22.2 to 3.23.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4425](https://github.com/dexidp/dex/pull/4425) - build(deps): bump golang from 1.25.3-alpine3.22 to 1.25.5-alpine3.22 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4424](https://github.com/dexidp/dex/pull/4424) - build(deps): bump google.golang.org/api from 0.252.0 to 0.256.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4413](https://github.com/dexidp/dex/pull/4413) - build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.33.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4409](https://github.com/dexidp/dex/pull/4409) - build(deps): bump golang.org/x/crypto from 0.43.0 to 0.44.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4412](https://github.com/dexidp/dex/pull/4412) - build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.11 to 3.4.12 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4401](https://github.com/dexidp/dex/pull/4401) - build(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.34.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4431](https://github.com/dexidp/dex/pull/4431) - build(deps): bump google.golang.org/grpc from 1.76.0 to 1.77.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4417](https://github.com/dexidp/dex/pull/4417) - build(deps): bump google.golang.org/grpc from 1.76.0 to 1.77.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4416](https://github.com/dexidp/dex/pull/4416) - build(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4426](https://github.com/dexidp/dex/pull/4426) - build(deps): bump alpine from 3.23.0 to 3.23.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4455](https://github.com/dexidp/dex/pull/4455) - build(deps): bump google.golang.org/grpc from 1.77.0 to 1.78.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4460](https://github.com/dexidp/dex/pull/4460) - build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4449](https://github.com/dexidp/dex/pull/4449) - build(deps): bump github/codeql-action from 4.31.3 to 4.31.7 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4440](https://github.com/dexidp/dex/pull/4440) - build(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4439](https://github.com/dexidp/dex/pull/4439) - build(deps): bump golang.org/x/net from 0.47.0 to 0.48.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4438](https://github.com/dexidp/dex/pull/4438) - build(deps): bump actions/checkout from 5.0.0 to 6.0.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4437](https://github.com/dexidp/dex/pull/4437) - build(deps): bump anchore/sbom-action from 0.20.9 to 0.20.11 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4435](https://github.com/dexidp/dex/pull/4435) - build(deps): bump docker/metadata-action from 5.9.0 to 5.10.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4434](https://github.com/dexidp/dex/pull/4434) - build(deps): bump actions/setup-go from 6.0.0 to 6.1.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4433](https://github.com/dexidp/dex/pull/4433) - build(deps): bump github.com/coreos/go-oidc/v3 from 3.14.1 to 3.17.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4441](https://github.com/dexidp/dex/pull/4441) - build(deps): bump google.golang.org/protobuf from 1.36.10 to 1.36.11 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4450](https://github.com/dexidp/dex/pull/4450) - build(deps): bump github.com/coreos/go-oidc/v3 from 3.16.0 to 3.17.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4420](https://github.com/dexidp/dex/pull/4420) - build(deps): bump the etcd group with 2 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4436](https://github.com/dexidp/dex/pull/4436) - build(deps): bump golang from 1.25.5-alpine3.22 to 1.25.6-alpine3.22 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4481](https://github.com/dexidp/dex/pull/4481) - build(deps): bump distroless/static-debian13 from `b5b9fd0` to `f9f84bd` by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4468](https://github.com/dexidp/dex/pull/4468) - build(deps): bump actions/setup-go from 6.1.0 to 6.2.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4476](https://github.com/dexidp/dex/pull/4476) - build(deps): bump golang.org/x/crypto from 0.46.0 to 0.47.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4472](https://github.com/dexidp/dex/pull/4472) - build(deps): bump github.com/mattn/go-sqlite3 from 1.14.32 to 1.14.33 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4474](https://github.com/dexidp/dex/pull/4474) - build(deps): bump golang.org/x/net from 0.48.0 to 0.49.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4475](https://github.com/dexidp/dex/pull/4475) - build(deps): bump google.golang.org/grpc from 1.77.0 to 1.78.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4469](https://github.com/dexidp/dex/pull/4469) - build(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4477](https://github.com/dexidp/dex/pull/4477) - build(deps): bump actions/cache from 4.3.0 to 5.0.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4473](https://github.com/dexidp/dex/pull/4473) - build(deps): bump github/codeql-action from 4.31.7 to 4.31.10 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4470](https://github.com/dexidp/dex/pull/4470) - build(deps): bump docker/setup-buildx-action from 3.11.1 to 3.12.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4471](https://github.com/dexidp/dex/pull/4471) - build(deps): bump google.golang.org/api from 0.257.0 to 0.259.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4478](https://github.com/dexidp/dex/pull/4478) - build(deps): bump google.golang.org/grpc from 1.77.0 to 1.78.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4459](https://github.com/dexidp/dex/pull/4459) - build(deps): bump actions/cache from 5.0.1 to 5.0.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4484](https://github.com/dexidp/dex/pull/4484) - build(deps): bump golang from `d9c983d` to `ad295fc` by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4493](https://github.com/dexidp/dex/pull/4493) - build(deps): bump actions/attest-build-provenance from 3.0.0 to 3.1.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4485](https://github.com/dexidp/dex/pull/4485) - build(deps): bump anchore/sbom-action from 0.20.11 to 0.22.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4487](https://github.com/dexidp/dex/pull/4487) - build(deps): bump actions/checkout from 6.0.1 to 6.0.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4489](https://github.com/dexidp/dex/pull/4489) - build(deps): bump github/codeql-action from 4.31.10 to 4.31.11 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4492](https://github.com/dexidp/dex/pull/4492) - build(deps): bump google.golang.org/api from 0.260.0 to 0.263.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4494](https://github.com/dexidp/dex/pull/4494) - build(deps): bump github.com/lib/pq from 1.10.9 to 1.11.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4505](https://github.com/dexidp/dex/pull/4505) - build(deps): bump actions/cache from 5.0.2 to 5.0.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4504](https://github.com/dexidp/dex/pull/4504) - build(deps): bump github/codeql-action from 4.31.11 to 4.32.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4502](https://github.com/dexidp/dex/pull/4502) - build(deps): bump actions/attest-build-provenance from 3.1.0 to 3.2.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4501](https://github.com/dexidp/dex/pull/4501) - build(deps): bump anchore/sbom-action from 0.22.0 to 0.22.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4499](https://github.com/dexidp/dex/pull/4499) - build(deps): bump alpine from 3.23.2 to 3.23.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4498](https://github.com/dexidp/dex/pull/4498) - build(deps): bump google.golang.org/api from 0.263.0 to 0.265.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4508](https://github.com/dexidp/dex/pull/4508) - build(deps): bump docker/login-action from 3.6.0 to 3.7.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4503](https://github.com/dexidp/dex/pull/4503) - build(deps): bump golang from 1.25.6-alpine3.22 to 1.25.7-alpine3.22 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4514](https://github.com/dexidp/dex/pull/4514) - build(deps): bump golang.org/x/oauth2 from 0.34.0 to 0.35.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4515](https://github.com/dexidp/dex/pull/4515) - build(deps): bump github/codeql-action from 4.32.0 to 4.32.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4509](https://github.com/dexidp/dex/pull/4509) - build(deps): bump anchore/sbom-action from 0.22.1 to 0.22.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4510](https://github.com/dexidp/dex/pull/4510) - build(deps): bump golang.org/x/oauth2 from 0.34.0 to 0.35.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4516](https://github.com/dexidp/dex/pull/4516) - build(deps): bump golang.org/x/crypto from 0.47.0 to 0.48.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4518](https://github.com/dexidp/dex/pull/4518) - build(deps): bump golang.org/x/net from 0.49.0 to 0.50.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4519](https://github.com/dexidp/dex/pull/4519) - build(deps): bump google.golang.org/api from 0.265.0 to 0.266.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4523](https://github.com/dexidp/dex/pull/4523) - build(deps): bump docker/build-push-action from 6.18.0 to 6.19.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4530](https://github.com/dexidp/dex/pull/4530) - build(deps): bump golang from 1.25.7-alpine3.22 to 1.26.0-alpine3.22 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4522](https://github.com/dexidp/dex/pull/4522) - build(deps): bump github.com/mattn/go-sqlite3 from 1.14.33 to 1.14.34 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4524](https://github.com/dexidp/dex/pull/4524) - build(deps): bump github.com/lib/pq from 1.11.1 to 1.11.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4525](https://github.com/dexidp/dex/pull/4525) - build(deps): bump google.golang.org/grpc from 1.78.0 to 1.79.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4537](https://github.com/dexidp/dex/pull/4537) - build(deps): bump google.golang.org/grpc from 1.78.0 to 1.79.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4534](https://github.com/dexidp/dex/pull/4534) - build(deps): bump docker/build-push-action from 6.19.1 to 6.19.2 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4535](https://github.com/dexidp/dex/pull/4535) - build(deps): bump aquasecurity/trivy-action from 0.33.1 to 0.34.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4533](https://github.com/dexidp/dex/pull/4533) - build(deps): bump distroless/static-debian13 from `f9f84bd` to `01e550f` by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4546](https://github.com/dexidp/dex/pull/4546) - build(deps): bump google.golang.org/grpc from 1.79.0 to 1.79.1 in /examples by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4551](https://github.com/dexidp/dex/pull/4551) - build(deps): bump google.golang.org/grpc from 1.79.0 to 1.79.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4549](https://github.com/dexidp/dex/pull/4549) - build(deps): bump the etcd group with 2 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4548](https://github.com/dexidp/dex/pull/4548) - build(deps): bump github/codeql-action from 4.32.2 to 4.32.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4547](https://github.com/dexidp/dex/pull/4547) - build(deps): update gRPC to v1.79.1 and other dependencies by [@&#8203;nabokihms](https://github.com/nabokihms) in [#&#8203;4554](https://github.com/dexidp/dex/pull/4554) - build(deps): bump helm/kind-action from 1.13.0 to 1.14.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4557](https://github.com/dexidp/dex/pull/4557) - build(deps): bump google.golang.org/api from 0.266.0 to 0.267.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4558](https://github.com/dexidp/dex/pull/4558) - build(deps): bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4562](https://github.com/dexidp/dex/pull/4562) - build(deps): bump actions/dependency-review-action from 4.8.2 to 4.8.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4563](https://github.com/dexidp/dex/pull/4563) - build(deps): bump aquasecurity/trivy-action from 0.34.0 to 0.34.1 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4574](https://github.com/dexidp/dex/pull/4574) - build(deps): bump github/codeql-action from 4.32.3 to 4.32.4 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;4573](https://github.com/dexidp/dex/pull/4573) ##### Other Changes - Add Terrakube to Adopters by [@&#8203;shurup](https://github.com/shurup) in [#&#8203;4316](https://github.com/dexidp/dex/pull/4316) #### New Contributors - [@&#8203;Zash](https://github.com/Zash) made their first contribution in [#&#8203;4327](https://github.com/dexidp/dex/pull/4327) - [@&#8203;rene-dekker](https://github.com/rene-dekker) made their first contribution in [#&#8203;4388](https://github.com/dexidp/dex/pull/4388) - [@&#8203;loosebazooka](https://github.com/loosebazooka) made their first contribution in [#&#8203;4453](https://github.com/dexidp/dex/pull/4453) - [@&#8203;Jabejixo](https://github.com/Jabejixo) made their first contribution in [#&#8203;4456](https://github.com/dexidp/dex/pull/4456) - [@&#8203;loganripplinger](https://github.com/loganripplinger) made their first contribution in [#&#8203;4541](https://github.com/dexidp/dex/pull/4541) - [@&#8203;johnvan7](https://github.com/johnvan7) made their first contribution in [#&#8203;3777](https://github.com/dexidp/dex/pull/3777) - [@&#8203;aljoshare](https://github.com/aljoshare) made their first contribution in [#&#8203;4200](https://github.com/dexidp/dex/pull/4200) **Full Changelog**: <https://github.com/dexidp/dex/compare/v2.44.0...v2.45.0> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4zMS43IiwidXBkYXRlZEluVmVyIjoiNDMuMzEuNyIsInRhcmdldEJyYW5jaCI6Im1hc3RlciIsImxhYmVscyI6WyJtYWludGVuYW5jZSJdfQ==-->
This branch is already included in the target branch. There is nothing to merge.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin renovate/ghcr.io-dexidp-dex-2.x:renovate/ghcr.io-dexidp-dex-2.x
git switch renovate/ghcr.io-dexidp-dex-2.x

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch master
git merge --no-ff renovate/ghcr.io-dexidp-dex-2.x
git switch renovate/ghcr.io-dexidp-dex-2.x
git rebase master
git switch master
git merge --ff-only renovate/ghcr.io-dexidp-dex-2.x
git switch renovate/ghcr.io-dexidp-dex-2.x
git rebase master
git switch master
git merge --no-ff renovate/ghcr.io-dexidp-dex-2.x
git switch master
git merge --squash renovate/ghcr.io-dexidp-dex-2.x
git switch master
git merge --ff-only renovate/ghcr.io-dexidp-dex-2.x
git switch master
git merge renovate/ghcr.io-dexidp-dex-2.x
git push origin master
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
simon.beck/talos!298
No description provided.