upgrade the tektoncd/pipeline to v0.45.0 version

Signed-off-by: Nikolaos Moraitis <[email protected]>

Author: droslean

config/prow/cluster/prowjob-crd/prowjob_customresourcedefinition.yaml

@@ -437,8 +437,8 @@ func validateImagePushingImage(spec *coreapi.PodSpec) error {
 func TestTrustedJobSecretsRestricted(t *testing.T) {
 	type labels map[string]string
 
-	getSecretsFromPreset := func(labels labels) sets.String {
-		secrets := sets.NewString()
+	getSecretsFromPreset := func(labels labels) sets.Set[string] {
+		secrets := sets.New[string]()
 		for _, preset := range c.Presets {
 			match := true
 			for k, v1 := range preset.Labels {
@@ -465,11 +465,11 @@ func TestTrustedJobSecretsRestricted(t *testing.T) {
 	}
 
 	secretsRestricted := map[string]struct {
-		secrets            sets.String
+		secrets            sets.Set[string]
 		isTrusted          bool
 		allowedInPresubmit bool
 	}{
-		"kubernetes-sigs/sig-storage-local-static-provisioner": {secrets: sets.NewString("sig-storage-local-static-provisioner-pusher"), isTrusted: true},
+		"kubernetes-sigs/sig-storage-local-static-provisioner": {secrets: sets.New[string]("sig-storage-local-static-provisioner-pusher"), isTrusted: true},
 		"kubernetes-csi/csi-driver-nfs":                        {secrets: getSecretsFromPreset(labels{"preset-azure-cred": "true"}), allowedInPresubmit: true},
 		"kubernetes-csi/csi-driver-smb":                        {secrets: getSecretsFromPreset(labels{"preset-azure-cred": "true"}), allowedInPresubmit: true},
 		"kubernetes-sigs/azuredisk-csi-driver":                 {secrets: getSecretsFromPreset(labels{"preset-azure-cred": "true"}), allowedInPresubmit: true},
@@ -484,9 +484,9 @@ func TestTrustedJobSecretsRestricted(t *testing.T) {
 		"kubernetes/sig-release":                               {secrets: getSecretsFromPreset(labels{"preset-azure-cred": "true"})},
 		"kubernetes-sigs/cluster-api-provider-azure":           {secrets: getSecretsFromPreset(labels{"preset-azure-cred-only": "true"}), allowedInPresubmit: true},
 	}
-	allSecrets := sets.String{}
+	allSecrets := sets.Set[string]{}
 	for _, s := range secretsRestricted {
-		allSecrets.Insert(s.secrets.List()...)
+		allSecrets.Insert(sets.List(s.secrets)...)
 	}
 
 	isSecretUsedByContainer := func(secret string, container coreapi.Container) bool {
@@ -550,14 +550,14 @@ func TestTrustedJobSecretsRestricted(t *testing.T) {
 		org, project, _ := getJobOrgProjectBasename(job.SourcePath)
 		s, ok := secretsRestricted[filepath.Join(org, project)]
 		allowedInPresubmit := ok && s.allowedInPresubmit
-		for _, secret := range allSecrets.List() {
+		for _, secret := range sets.List(allSecrets) {
 			if isSecretUsed(secret, job.JobBase) && !allowedInPresubmit {
 				t.Errorf("%q defined in %q may not use secret %q in %q cluster", job.Name, job.SourcePath, secret, job.Cluster)
 			}
 		}
 	}
 
-	secretsCanUseByPath := func(path string) sets.String {
+	secretsCanUseByPath := func(path string) sets.Set[string] {
 		org, project, basename := getJobOrgProjectBasename(path)
 		s, ok := secretsRestricted[filepath.Join(org, project)]
 		if !ok || (s.isTrusted && basename != fmt.Sprintf("%s-trusted.yaml", project)) {
@@ -582,7 +582,7 @@ func TestTrustedJobSecretsRestricted(t *testing.T) {
 			continue
 		}
 		secretsCanUse := secretsCanUseByPath(job.SourcePath)
-		for _, secret := range allSecrets.List() {
+		for _, secret := range sets.List(allSecrets) {
 			if secretsCanUse != nil && secretsCanUse.Has(secret) {
 				t.Logf("allow secret %v for job %s defined in %s", secret, job.Name, job.SourcePath)
 				continue

config/tests/jobs/jobs_test.go

@@ -21,8 +21,8 @@ import (
 	"fmt"
 
 	secretmanager "cloud.google.com/go/secretmanager/apiv1"
+	"cloud.google.com/go/secretmanager/apiv1/secretmanagerpb"
 	"google.golang.org/api/iterator"
-	secretmanagerpb "google.golang.org/genproto/googleapis/cloud/secretmanager/v1"
 	"google.golang.org/genproto/protobuf/field_mask"
 )
 

experiment/clustersecretbackup/secretmanager/secretmanager.go

@@ -99,7 +99,7 @@ func getOpenAPISpec(url string) apiArray {
 	return parseOpenAPI(bytes)
 }
 
-//   I0919 15:34:14.943642    6611 round_trippers.go:414] GET https://172.27.138.63:6443/api/v1/namespaces/kube-system/replicationcontrollers
+// I0919 15:34:14.943642    6611 round_trippers.go:414] GET https://172.27.138.63:6443/api/v1/namespaces/kube-system/replicationcontrollers
 var reE2eAPILog = regexp.MustCompile(`round_trippers.go:\d+\] (GET|PUT|POST|DELETE|OPTIONS|HEAD|PATCH) (\S+)`)
 
 func parseE2eAPILog(fp io.Reader) apiArray {
@@ -127,7 +127,7 @@ func parseE2eAPILog(fp io.Reader) apiArray {
 	return apisLog
 }
 
-//   I0413 12:10:56.612005       1 wrap.go:42] PUT /apis/apiregistration.k8s.io/v1/apiservices/v1.apps/status: (1.671974ms) 200 [[kube-apiserver/v1.11.0 (linux/amd64) kubernetes/7297c1c] 127.0.0.1:44356]
+// I0413 12:10:56.612005       1 wrap.go:42] PUT /apis/apiregistration.k8s.io/v1/apiservices/v1.apps/status: (1.671974ms) 200 [[kube-apiserver/v1.11.0 (linux/amd64) kubernetes/7297c1c] 127.0.0.1:44356]
 var reAPIServerLog = regexp.MustCompile(`wrap.go:\d+\] (GET|PUT|POST|DELETE|OPTIONS|HEAD|PATCH) (\S+)`)
 
 func parseAPIServerLog(fp io.Reader) apiArray {
@@ -236,8 +236,8 @@ func getCoverageByLevel(apisTested, apisAll apiArray) coverageData {
 	return coverage
 }
 
-//NOTE: This is messy, but the regex doesn't support negative lookahead(?!) on golang.
-//This is just a workaround.
+// NOTE: This is messy, but the regex doesn't support negative lookahead(?!) on golang.
+// This is just a workaround.
 var reNotStableAPI = regexp.MustCompile(`\S+(alpha|beta)\S+`)
 var reAlphaAPI = regexp.MustCompile(`\S+alpha\S+`)
 var reBetaAPI = regexp.MustCompile(`\S+beta\S+`)

experiment/coverage/apicoverage.go

@@ -23,7 +23,7 @@ import (
 	"testing"
 )
 
-//NOTE: This method is for avoiding flake tests instead of using reflect.DeepEqual()
+// NOTE: This method is for avoiding flake tests instead of using reflect.DeepEqual()
 func equalAPIArray(a, b apiArray) bool {
 	if a == nil && b == nil {
 		return true

experiment/coverage/apicoverage_test.go

@@ -24,8 +24,8 @@ import (
 	"time"
 
 	automl "cloud.google.com/go/automl/apiv1"
+	"cloud.google.com/go/automl/apiv1/automlpb"
 	"google.golang.org/api/option"
-	automlpb "google.golang.org/genproto/googleapis/cloud/automl/v1"
 )
 
 func defaultPredictionClient(ctx context.Context) (*predictionClient, error) {

experiment/ml/analyze/client.go

@@ -17,22 +17,28 @@ limitations under the License.
 // Package main will create a CSV dataset by reading the specified zip file.
 //
 // Zip file is assumed to be created by generate-dataset.go, following this format:
-//   TRAIN/labelA/foo.txt
-//   VALIDATION/labelB/bar.txt
-//   TEST/labelA/whatever.txt
+//
+//	TRAIN/labelA/foo.txt
+//	VALIDATION/labelB/bar.txt
+//	TEST/labelA/whatever.txt
+//
 // aka <partition>/<label>/<name>, or alternatively leaving out the parition:
-//   labelA/foo.txt
-//   labelB/bar.txt
-//   labelA/whatever.txt
+//
+//	labelA/foo.txt
+//	labelB/bar.txt
+//	labelA/whatever.txt
 //
 // The corresponding CSV file rows will look like:
-//   TRAIN,"hello world",labelA
-//   VALIDATION,"contents of bar",labelB
-//   TEST,"more interesting stuff",labelA
+//
+//	TRAIN,"hello world",labelA
+//	VALIDATION,"contents of bar",labelB
+//	TEST,"more interesting stuff",labelA
+//
 // aka <parition>,<content of file>,<label>, possibly leaving the partition column blank:
-//   ,"hello world",labelA
-//   ,"contents of bar",labelB
-//   ,"more interesting stuff",labelA
+//
+//	,"hello world",labelA
+//	,"contents of bar",labelB
+//	,"more interesting stuff",labelA
 package main
 
 import (

experiment/ml/prowlog/csv/generate-dataset.go

@@ -43,8 +43,8 @@ import (
 )
 
 // TODO: parse testgrid config to catch
-//	- jobs that aren't prowjobs but are on release-informing dashboards
-//	- jobs that don't declare testgrid info via annotations
+//   - jobs that aren't prowjobs but are on release-informing dashboards
+//   - jobs that don't declare testgrid info via annotations
 var reportFormat = flag.String("format", "csv", "Output format [csv|json|html] defaults to csv")
 var reportDate = flag.String("date", "now", "Date to include in report ('now' is converted to today)")
 

experiment/prowjob-report/main.go

@@ -46,8 +46,8 @@ type options struct {
 	serviceAccount        string
 	addRoles              flagutil.Strings
 	removeRoles           flagutil.Strings
-	adds                  sets.String
-	removes               sets.String
+	adds                  sets.Set[string]
+	removes               sets.Set[string]
 	serviceAccountPrefix  string
 	serviceAccountProject string
 }
@@ -65,10 +65,10 @@ func (o options) validate() error {
 		return errors.New("--add or --remove required")
 	}
 
-	o.adds = sets.NewString(adds...)
-	o.removes = sets.NewString(removes...)
+	o.adds = sets.New[string](adds...)
+	o.removes = sets.New[string](removes...)
 	if both := o.adds.Intersection(o.removes); len(both) > 0 {
-		return fmt.Errorf("Cannot both add and remove roles: %v", both.List())
+		return fmt.Errorf("cannot both add and remove roles: %v", sets.List(both))
 	}
 	mat := re.FindStringSubmatch(o.serviceAccount)
 	if mat != nil {

experiment/service-account-creator/main.go

@@ -21,8 +21,8 @@ import (
 	"fmt"
 
 	secretmanager "cloud.google.com/go/secretmanager/apiv1"
+	"cloud.google.com/go/secretmanager/apiv1/secretmanagerpb"
 	"google.golang.org/api/iterator"
-	secretmanagerpb "google.golang.org/genproto/googleapis/cloud/secretmanager/v1"
 )
 
 // Client is a wrapper of secretmanager client

gencred/pkg/secretmanager/secretmanager.go

@@ -317,11 +317,15 @@ func (c *throttlingTransport) RoundTrip(req *http.Request) (*http.Response, erro
 // reach the cache layer in order to force the caching policy we require.
 //
 // By default github responds to PR requests with:
-//    Cache-Control: private, max-age=60, s-maxage=60
+//
+//	Cache-Control: private, max-age=60, s-maxage=60
+//
 // Which means the httpcache would not consider anything stale for 60 seconds.
 // However, we want to always revalidate cache entries using ETags and last
 // modified times so this RoundTripper overrides response headers to:
-//    Cache-Control: no-cache
+//
+//	Cache-Control: no-cache
+//
 // This instructs the cache to store the response, but always consider it stale.
 type upstreamTransport struct {
 	roundTripper http.RoundTripper