codeready-toolchain · rsoaresd · Sep 16, 2025 · May 6, 2025 · Jul 27, 2025 · Sep 2, 2025
diff --git a/.golangci.yml b/.golangci.yml
@@ -30,6 +30,7 @@ linters:
     - testifylint
     - unparam
     - zerologlint
+    - copyloopvar
   disable:
     - contextcheck
     - noctx

diff --git a/.govulncheck.yaml b/.govulncheck.yaml
@@ -1,7 +1 @@
-ignored-vulnerabilities:
-  # Inconsistent handling of O_CREATE|O_EXCL on Unix and Windows in os in syscall
-  # Found in: os@go1.22.12
-  # Fixed in: os@go1.23.10
-  - id: GO-2025-3750
-    silence-until: 2025-10-02
-    info: https://pkg.go.dev/vuln/GO-2025-3750
+ignored-vulnerabilities: []
diff --git a/README.adoc b/README.adoc
@@ -8,7 +8,7 @@ For the API reference docs go xref:api/v1alpha1/docs/apiref.adoc[here]
 == Building
 Requires:
 
-* Go version 1.22.x (1.22.12 or higher) - download for your development environment https://golang.org/dl/[here].
+* Go version 1.23.x (1.23.12 or higher) - download for your development environment https://golang.org/dl/[here].
 
 CodeReady ToolChain API is built using https://github.com/golang/go/wiki/Modules[Go modules].
 

diff --git a/go.mod b/go.mod
@@ -1,30 +1,30 @@
 module github.com/codeready-toolchain/api
 
-go 1.22.0
+go 1.23.0
 
-toolchain go1.22.12
+toolchain go1.23.12
 
 require (
 	github.com/go-bindata/go-bindata v3.1.2+incompatible
-	// using latest commit from 'github.com/openshift/api branch release-4.18'
-	github.com/openshift/api v0.0.0-20250410062700-d6c84c55a124
-	k8s.io/api v0.31.2
-	k8s.io/apimachinery v0.31.2
-	k8s.io/code-generator v0.31.2
+	// using latest commit from 'github.com/openshift/api branch release-4.19'
+	github.com/openshift/api v0.0.0-20250903165707-ce7baf0afbc4
+	k8s.io/api v0.32.2
+	k8s.io/apimachinery v0.32.2
+	k8s.io/code-generator v0.32.2
 	k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01
-	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340
-	sigs.k8s.io/controller-runtime v0.19.7
-	sigs.k8s.io/controller-tools v0.16.5
+	k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f
+	sigs.k8s.io/controller-runtime v0.20.4
+	sigs.k8s.io/controller-tools v0.17.3
 )
 
 require (
 	github.com/emicklei/go-restful/v3 v3.11.0 // indirect
 	github.com/fatih/color v1.18.0 // indirect
 	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
 	github.com/go-logr/logr v1.4.2 // indirect
-	github.com/go-openapi/jsonpointer v0.19.6 // indirect
+	github.com/go-openapi/jsonpointer v0.21.0 // indirect
 	github.com/go-openapi/jsonreference v0.20.2 // indirect
-	github.com/go-openapi/swag v0.22.4 // indirect
+	github.com/go-openapi/swag v0.23.0 // indirect
 	github.com/gobuffalo/flect v1.0.3 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
@@ -38,24 +38,24 @@ require (
 	github.com/mattn/go-isatty v0.0.20 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
-	github.com/spf13/cobra v1.8.1 // indirect
-	github.com/spf13/pflag v1.0.5 // indirect
+	github.com/spf13/cobra v1.9.1 // indirect
+	github.com/spf13/pflag v1.0.6 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
-	golang.org/x/mod v0.21.0 // indirect
-	golang.org/x/net v0.33.0 // indirect
-	golang.org/x/sync v0.10.0 // indirect
-	golang.org/x/sys v0.28.0 // indirect
-	golang.org/x/text v0.21.0 // indirect
-	golang.org/x/tools v0.26.0 // indirect
-	google.golang.org/protobuf v1.34.2 // indirect
+	golang.org/x/mod v0.23.0 // indirect
+	golang.org/x/net v0.38.0 // indirect
+	golang.org/x/sync v0.12.0 // indirect
+	golang.org/x/sys v0.31.0 // indirect
+	golang.org/x/text v0.23.0 // indirect
+	golang.org/x/tools v0.30.0 // indirect
+	google.golang.org/protobuf v1.35.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/apiextensions-apiserver v0.31.2 // indirect
-	k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70 // indirect
+	k8s.io/apiextensions-apiserver v0.32.2 // indirect
+	k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9 // indirect
 	k8s.io/klog/v2 v2.130.1 // indirect
-	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect
-	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
+	k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
+	sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.4.2 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
 )