build(deps): bump github.com/openshift-online/ocm-cli from 1.0.10 to 1.0.11

[dependabot]

Bumps github.com/openshift-online/ocm-cli from 1.0.10 to 1.0.11.

Release notes

Sourced from github.com/openshift-online/ocm-cli's releases.

Release 1.0.11

• Update CHANGES.md (#944)
• chore | updating konflux pipeline refs (#947)
• add validation retry for gcp service account file prompts (#948)
• add authentication type on cluster describe (#949)
• fix(deps): update module github.com/openshift-online/ocm-common to v0.0.34 (#938)
• fix(deps): update module github.com/openshift-online/ocm-sdk-go to v0.1.486 (#945)
• bump konflux references (#952)
• Bump golang.org/x/crypto from 0.31.0 to 0.45.0 (#936)
• fix(deps): update module github.com/openshift/rosa to v1.2.60 (#950)
• Update dependencies.
• chore(deps): update github.com/planetscale/vtprotobuf digest to ba97887
• chore(deps): update aws-sdk-go-v2 monorepo
• chore(deps): update module github.com/godbus/dbus/v5 to v5.2.2
• chore(deps): update module github.com/sirupsen/logrus to v1.9.4
• fix(deps): update module github.com/googleapis/gax-go/v2 to v2.16.0
• chore(deps): update module github.com/prometheus/common to v0.67.5
• chore(deps): update module golang.org/x/tools to v0.41.0
• chore(deps): update module golang.org/x/sys to v0.40.0 (#965)
• chore(deps): update konflux references (#962)
• fix(deps): update module github.com/onsi/ginkgo/v2 to v2.27.5 (#960)
• fix missing gcp credentials when using --service-account-file (#979)
• [OCM-21962](https://issues.redhat.com/browse/OCM-21962) | feat: Support create/edit clusters with channel flag (#1003)

Changelog

Sourced from github.com/openshift-online/ocm-cli's changelog.

1.0.11 Feb 10 2026

• Update CHANGES.md (#944)
• chore | updating konflux pipeline refs (#947)
• add validation retry for gcp service account file prompts (#948)
• add authentication type on cluster describe (#949)
• fix(deps): update module github.com/openshift-online/ocm-common to v0.0.34 (#938)
• fix(deps): update module github.com/openshift-online/ocm-sdk-go to v0.1.486 (#945)
• bump konflux references (#952)
• Bump golang.org/x/crypto from 0.31.0 to 0.45.0 (#936)
• fix(deps): update module github.com/openshift/rosa to v1.2.60 (#950)
• Update dependencies.
• chore(deps): update github.com/planetscale/vtprotobuf digest to ba97887
• chore(deps): update aws-sdk-go-v2 monorepo
• chore(deps): update module github.com/godbus/dbus/v5 to v5.2.2
• chore(deps): update module github.com/sirupsen/logrus to v1.9.4
• fix(deps): update module github.com/googleapis/gax-go/v2 to v2.16.0
• chore(deps): update module github.com/prometheus/common to v0.67.5
• chore(deps): update module golang.org/x/tools to v0.41.0
• chore(deps): update module golang.org/x/sys to v0.40.0 (#965)
• chore(deps): update konflux references (#962)
• fix(deps): update module github.com/onsi/ginkgo/v2 to v2.27.5 (#960)
• fix missing gcp credentials when using --service-account-file (#979)
• [OCM-21962](https://issues.redhat.com/browse/OCM-21962) | feat: Support create/edit clusters with channel flag (#1003)

Commits

• 6758645 Release v1.0.11 (#1007)
• 9384236 [OCM-21962](https://issues.redhat.com/browse/OCM-21962) | feat: Support create/edit clusters with channel flag (#1003)
• 8cfd3ae fix missing gcp credentials when using --service-account-file (#979)
• b464896 Merge pull request #810 from openshift-online/konflux/mintmaker/main/github.c...
• c625fe9 Merge pull request #958 from openshift-online/konflux/mintmaker/main/github.c...
• d3aab8f Merge pull request #957 from openshift-online/konflux/mintmaker/main/github.c...
• 707c063 Merge pull request #956 from openshift-online/konflux/mintmaker/main/github.c...
• f4a651f Merge pull request #955 from openshift-online/konflux/mintmaker/main/aws-sdk-...
• d0c3188 Merge pull request #954 from openshift-online/konflux/mintmaker/main/github.c...
• 6b5dc3f fix(deps): update module github.com/onsi/ginkgo/v2 to v2.27.5 (#960)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign typeid for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[coderabbitai]

Walkthrough

Updated go.mod with direct and indirect dependency version bumps across multiple modules. Key direct dependency updates include ocm-cli (v1.0.10 → v1.0.11), spf13/cobra (v1.10.1 → v1.10.2), and k8s.io/apimachinery (v0.30.3 → v0.34.3). Numerous indirect dependencies also received version upgrades.

Changes

Cohort / File(s)	Summary
Dependency Updates go.mod	Version bumps for direct dependencies (ocm-cli, spf13/cobra, k8s.io/apimachinery) and indirect dependencies (backoff, godbus/dbus/v5, google/gnostic-models, golang.org/x/oauth2, google.golang.org/protobuf, and others). Removal of some older indirects and addition of new indirect dependencies including al.essio.dev/pkg/shellescape and sigs.k8s.io/structured-merge-diff/v6.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dependabot/go_modules/github.com/openshift-online/ocm-cli-1.0.11

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@go.mod`:
- Around line 33-36: Update the Kubernetes dependency set so all k8s.io modules
use the same minor version: change the k8s.io/apimachinery entry from v0.34.3 to
v0.30.3 to match k8s.io/api, k8s.io/cli-runtime, and k8s.io/client-go; ensure
go.mod is updated accordingly and run `go mod tidy` to reconcile module graph
and vendor files.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

cat go.mod | head -50

Repository: openshift/backplane-cli

Length of output: 1949

---

🏁 Script executed:

rg -n "k8s\.io" go.mod

Repository: openshift/backplane-cli

Length of output: 712

---

🌐 Web query:

kubernetes k8s.io version compatibility requirements apimachinery api client-go alignment

💡 Result:

• Pin k8s.io/client-go, k8s.io/apimachinery, and k8s.io/api to the same Kubernetes minor (and ideally same patch) tag. These repos are synced from Kubernetes staging/ and are intended to be consumed as a matched set; mixing minors is a common cause of scheme/serialization/type and generated-client breakage. In particular, client-go explicitly depends on companion libs (apimachinery, api) and says they must be vendored in “correspondingly matching versions”. [1][2]
• Recommended alignment rule (Go modules): use the matching semver tags:
  • Kubernetes v1.X.Y ↔ k8s.io/client-go v0.X.Y (and typically k8s.io/api v0.X.Y, k8s.io/apimachinery v0.X.Y). client-go publishes matching tags and explains that kubernetes-1.X.Y and v0.X.Y correspond to the same staged code. [1]
• Do not rely on cross-version API compatibility guarantees for apimachinery (or other k8s.io/* staging libs). apimachinery states there are no compatibility guarantees and that branches track Kubernetes. Treat it as “must match Kubernetes/client-go”. [3]
• Cluster compatibility is broader than library compatibility. client-go provides a “compatibility matrix” showing “exact match” vs “skew” behavior across Kubernetes versions, and notes older clients often work with newer clusters due to Kubernetes’ backward compatibility—but that’s separate from the requirement to keep the Go modules (api/apimachinery/client-go) aligned with each other. [1]

Practical requirement: pick one Kubernetes minor X and keep all k8s.io/{client-go,api,apimachinery} at v0.X.* (same X; preferably same patch *) to avoid mismatched generated types/schemes/negotiation code. [1][3]

Sources:
[1] kubernetes/client-go README (versioning + compatibility matrix + matching tags) (github.com)
[2] “Introducing client-go version 6” (client-go requires matching api/apimachinery versions) (kubernetes.io)
[3] pkg.go.dev k8s.io/apimachinery (explicitly: no compatibility guarantees; tracks Kubernetes) (pkg.go.dev)

Citations:

• 1: https://github.com/kubernetes/client-go?utm_source=openai
• 2: https://kubernetes.io/blog/2018/01/introducing-client-go-version-6/?utm_source=openai
• 3: https://pkg.go.dev/k8s.io/apimachinery?utm_source=openai

---

Kubernetes package version mismatch: align k8s.io/apimachinery with other k8s.io packages.

k8s.io/apimachinery v0.34.3 is misaligned with k8s.io/api v0.30.3, k8s.io/cli-runtime v0.30.3, and k8s.io/client-go v0.30.3. These packages are synced from Kubernetes staging/ and must be consumed as a matched set at the same minor version. Kubernetes explicitly documents that mixing minors is a common cause of scheme, serialization, and type conflicts. Update k8s.io/apimachinery to v0.30.3 to match the others.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@go.mod` around lines 33 - 36, Update the Kubernetes dependency set so all
k8s.io modules use the same minor version: change the k8s.io/apimachinery entry
from v0.34.3 to v0.30.3 to match k8s.io/api, k8s.io/cli-runtime, and
k8s.io/client-go; ensure go.mod is updated accordingly and run `go mod tidy` to
reconcile module graph and vendor files.

[openshift-ci]

@dependabot[bot]: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/lint	7b0428f	link	true	/test lint
ci/prow/images	7b0428f	link	true	/test images
ci/prow/build	7b0428f	link	true	/test build
ci/prow/test	7b0428f	link	true	/test test
ci/prow/coverage	7b0428f	link	true	/test coverage

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.