chore: bump duty to v1.0.1326

[flankbot]

Automated changes by create-pull-request GitHub action

[coderabbitai]

Warning

Review limit reached

@flankbot, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 25 minutes and 16 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 2e3fba77-51cd-438a-a6bc-f7bb2a5b4976

📥 Commits

Reviewing files that changed from the base of the PR and between ebaca72 and 9c955fb.

⛔ Files ignored due to path filters (1)

• go.sum is excluded by !**/*.sum

📒 Files selected for processing (1)

• go.mod

Walkthrough

This PR updates go.mod: bumps github.com/flanksource/commons→v1.53.0, github.com/flanksource/duty→v1.0.1325, github.com/flanksource/gomplate/v3→v3.24.82, github.com/flanksource/is-healthy→v1.0.88; aligns Kubernetes modules to v0.36.1; removes indirect github.com/gregjones/httpcache.

Changes

Dependency updates

Layer / File(s)	Summary
Flanksource package updates go.mod	Bumps direct Flanksource dependencies: github.com/flanksource/commons → v1.53.0, github.com/flanksource/duty → v1.0.1325, github.com/flanksource/gomplate/v3 → v3.24.82, github.com/flanksource/is-healthy → v1.0.88.
Kubernetes core modules go.mod	Upgrades direct Kubernetes modules: k8s.io/api, k8s.io/apimachinery, k8s.io/client-go → v0.36.1.
Indirect dependency cleanup and alignment go.mod	Removes indirect github.com/gregjones/httpcache; upgrades indirect k8s.io/apiextensions-apiserver and k8s.io/streaming → v0.36.1.

Possibly related PRs

• flanksource/canary-checker#2781: Also updates github.com/flanksource/duty in go.mod.
• flanksource/canary-checker#2892: Bumps github.com/flanksource/duty in go.mod to a nearby version.
• flanksource/canary-checker#2788: Another PR that only bumps github.com/flanksource/duty in go.mod.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The PR title references bumping 'duty to v1.0.1326', but the actual change shows duty was bumped to v1.0.1325, creating a version mismatch.	Correct the title to 'chore: bump duty to v1.0.1325' to accurately reflect the actual version change in the changeset.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch bump-duty-auto-pr

✨ Simplify code

• Create PR with simplified code
• Commit simplified code in branch bump-duty-auto-pr

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	github.com/​flanksource/​commons@​v1.52.0 ⏵ v1.53.1	+1
	k8s.io/​apimachinery@​v0.36.0 ⏵ v0.36.1
	github.com/​flanksource/​duty@​v1.0.1317 ⏵ v1.0.1326	+1
	k8s.io/​client-go@​v0.35.4 ⏵ v0.36.1	+1
	k8s.io/​api@​v0.35.4 ⏵ v0.36.1	+1
	github.com/​flanksource/​gomplate/​v3@​v3.24.81 ⏵ v3.24.82
	github.com/​flanksource/​is-healthy@​v1.0.87 ⏵ v1.0.88

View full report

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert  (click "▶" to expand/collapse)
Warn		Obfuscated code: golang k8s.io/client-go is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: go.mod → golang/k8s.io/client-go@v0.36.1 ℹ Read more on: This package | This alert | What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore golang/k8s.io/client-go@v0.36.1. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report