auto-created for helmfile

This commit was autocreated by AutoGits PR Review Bot

removing PRs:
 PR: pool/helmfile!4

.gitmodules

@@ -17562,10 +17562,6 @@
 	path = rlwrap
 	url = ../../pool/rlwrap
 	branch = leap-16.0
-[submodule "rmt-server"]
-	path = rmt-server
-	url = ../../pool/rmt-server
-	branch = leap-16.0
 [submodule "rmw"]
 	path = rmw
 	url = ../../pool/rmw
@@ -26134,3 +26130,7 @@
 	path = python-pyRFC3339
 	url = ../../pool/python-pyRFC3339
 	branch = leap-16.0
+[submodule "openQA-devel-container"]
+	path = openQA-devel-container
+	url =  ../../pool/openQA-devel-container
+	branch = leap-16.0

patchinfo.20251127113212085239.93181000773252/_patchinfo

@@ -0,0 +1,13 @@
+<patchinfo incident="packagehub-40">
+  <issue tracker="cve" id="2025-61659"/>
+  <issue tracker="bnc" id="1247489">VUL-0: CVE-2025-61659: bash-git-prompt: uses predictable file in /tmp for a copy of the git index</issue>
+  <packager>michals</packager>
+  <rating>moderate</rating>
+  <category>security</category>
+  <summary>Security update for bash-git-prompt</summary>
+  <description>This update for bash-git-prompt fixes the following issues:
+
+- CVE-2025-61659: Fixed an issue where predictable files in /tmp were used for a copy of the git index (bsc#1247489)
+</description>
+  <package>bash-git-prompt</package>
+</patchinfo>

patchinfo.20251127122850445245.93181000773252/_patchinfo

@@ -0,0 +1,65 @@
+<patchinfo incident="packagehub-38">
+  <issue tracker="bnc" id="1243954">VUL-0: CVE-2025-29785: shadowsocks-v2ray-plugin: github.com/quic-go/quic-go/internal/ackhandler: loss recovery logic for path probe packets can be used by a malicious QUIC client to trigger a null pointer dereference</issue>
+  <issue tracker="cve" id="2025-47911">cve#2025-47911 not resolved: 404 Client Error: Not Found for url: https://bugzilla.suse.com/api2/issues/?references__name=CVE-2025-47911</issue>
+  <issue tracker="bnc" id="1243946">VUL-0: CVE-2025-29785: v2ray-core: github.com/quic-go/quic-go/internal/ackhandler: loss recovery logic for path probe packets can be used by a malicious QUIC client to trigger a null pointer dereference</issue>
+  <issue tracker="cve" id="2025-297850">cve#2025-297850 not resolved: 404 Client Error: Not Found for url: https://bugzilla.suse.com/api2/issues/?references__name=CVE-2025-297850</issue>
+  <issue tracker="bnc" id="1251404">VUL-0: CVE-2025-47911: v2ray-core: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents</issue>
+  <issue tracker="bnc" id="1235164">VUL-0: CVE-2023-49295: v2ray-core: github.com/quic-go/quic-go: memory exhaustion attack against QUIC's path validation mechanism</issue>
+  <packager>hillwood</packager>
+  <rating>important</rating>
+  <category>security</category>
+  <summary>Security update for shadowsocks-v2ray-plugin, v2ray-core</summary>
+  <description>This update for shadowsocks-v2ray-plugin, v2ray-core fixes the following issues:
+
+Changes in shadowsocks-v2ray-plugin:
+
+- Update version to 5.25.0
+  * Update v2ray-core to v5.25.0
+- Add update-vendor.patch, update v2ray-core to v5.33.0 (boo#1243954 and CVE-2025-297850)
+
+Changes in v2ray-core:
+
+- Fix CVE-2025-47911 and boo#1251404
+  * Add fix-CVE-2025-47911.patch
+  * Update golang.org/x/net to 0.45.0 in vendor
+
+- Update version to 5.38.0
+  * TLSMirror Connection Enrollment System
+  * Add TLSMirror Sequence Watermarking
+  * LSMirror developer preview protocol is now a part of mainline V2Ray
+  * proxy dns with NOTIMP error
+  * Add TLSMirror looks like TLS censorship resistant transport protocol
+    as a developer preview transport
+  * proxy dns with NOTIMP error
+  * fix false success from SOCKS server when Dispatch() fails
+  * HTTP inbound: Directly forward plain HTTP 1xx response header
+  * add a option to override domain used to query https record
+  * Fix bugs
+  * Update vendor
+
+- Update version to 5.33.0
+  * bump github.com/quic-go/quic-go from 0.51.0 to 0.52.0(boo#1243946 and CVE-2025-297850)
+  * Update other vendor source
+
+- Update version to 5.31.0
+  * Add Dns Proxy Response TTL Control
+  * Fix call newError Base with a nil value error
+  * Update vendor (boo#1235164)
+
+- Update version to 5.29.3
+  * Enable restricted mode load for http protocol client
+  * Correctly implement QUIC sniffer when handling multiple initial packets
+  * Fix unreleased cache buffer in QUIC sniffing
+  * A temporary testing fix for the buffer corruption issue
+  * QUIC Sniffer Restructure
+
+- Update version to 5.22.0
+  * Add packetEncoding for Hysteria
+  * Add ECH Client Support
+  * Add support for parsing some shadowsocks links
+  * Add Mekya Transport
+  * Fix bugs
+</description>
+  <package>shadowsocks-v2ray-plugin</package>
+  <package>v2ray-core</package>
+</patchinfo>

patchinfo.20251127153254678434.93181000773252/_patchinfo

@@ -0,0 +1,90 @@
+<patchinfo incident="packagehub-39">
+  <packager>os-autoinst-obs-workflow</packager>
+  <rating>moderate</rating>
+  <category>recommended</category>
+  <summary>Recommended update for openQA, os-autoinst, openQA-devel-container</summary>
+  <description>This update for openQA, os-autoinst, openQA-devel-container fixes the following issues:
+
+Changes in openQA:
+
+- Update to version 5.1763743683.1da97aa2:
+  * Optimize Job Group dropdown database query
+  * Split dependency handling out of create_from_settings
+  * Give jobs with high MAX_JOB_TIME a priority malus
+  * Make the number of builds per group on the front page configurable
+  * docs: Feature auto-generated deepwiki less prominently
+  * apparmor: Additional perms for tests in osado to run
+
+- Update to version 5.1763153079.b36ac754:
+  * Skip a build if there are no jobs
+  * Remove unused variable
+
+- Update to version 5.1762879267.52145e9a:
+  * Avoid installing unwanted package versions
+  * Fix check in git_clone for dirty git dir
+  * Prevent `t/24-worker-webui-connection.t` from running into timeout
+  * Be explicit about certain aspects of archiving in the documentation
+  * Fix sporadic failures in `t/ui/10-tests_overview.t`
+  * Adapt os-autoinst-scripts reference after rename
+  * Properly conclude scheduling if there are no jobs
+
+- Update to version 5.1762193001.2f6e71ca:
+  * Potentially improve stability of `t/ui/16-tests_job_next_previous.t`
+  * Avoid failing check in `t/16-utils-runcmd.t`
+  * README: Add deepwiki badge
+  * Dependency cron 2025-10-27
+  * Retry image optimizations
+
+Changes in os-autoinst:
+
+- Update to version 5.1763561851.03e049d:
+  * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present
+  * Fix syntax errors in nft due to multiple interfaces in $ethernet
+  * README: Feature auto-generated deepwiki less prominently
+  * Install NetworkManager-ovs in os-autoinst-setup-multi-machine
+  * Add disconnect_usb (qemu only, for now)
+
+- Update to version 5.1763048144.30f43a0:
+  * Configure ftables in os-autoinst-setup-multi-machine
+  * Makefile: Fix reruns on incomplete build dir generations
+  * Propagate C++ exceptions to Perl in image write function
+  * Add support NICPCIADDR variable to QEMU backend
+  * Remove test which causes unhandled output
+  * Improve includes in tinycv library
+  * Handle OpenCV exceptions when writing an image
+  * Avoid ignoring errors silently when writing images
+  * Avoid saving test results referring to non-existent screenshots
+
+- Update to version 5.1762250353.5150272:
+  * Makefile: Fix reruns on incomplete build dir generations
+  * Propagate C++ exceptions to Perl in image write function
+  * Add support NICPCIADDR variable to QEMU backend
+  * Remove test which causes unhandled output
+  * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b
+  * Improve includes in tinycv library
+
+- Update to version 5.1761723693.2b88807:
+  * Propagate C++ exceptions to Perl in image write function
+  * Add support NICPCIADDR variable to QEMU backend
+  * Remove test which causes unhandled output
+  * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b
+  * Improve includes in tinycv library
+  * Handle OpenCV exceptions when writing an image
+  * Avoid ignoring errors silently when writing images
+
+Changes in openQA-devel-container:
+
+- Update to version 5.1763743683.1da97aa28:
+  * Update to latest openQA version
+</description>
+  <package>openQA</package>
+  <package>openQA:openQA-devel-test</package>
+  <package>openQA:openQA-test</package>
+  <package>openQA:openQA-worker-test</package>
+  <package>openQA:openQA-client-test</package>
+  <package>os-autoinst</package>
+  <package>os-autoinst:os-autoinst-test</package>
+  <package>os-autoinst:os-autoinst-devel-test</package>
+  <package>os-autoinst:os-autoinst-openvswitch-test</package>
+  <package>openQA-devel-container</package>
+</patchinfo>

patchinfo.20251203090458480140.187004354831441/_patchinfo

@@ -0,0 +1,73 @@
+<patchinfo>
+  <packager>manfred-h</packager>
+  <rating>moderate</rating>
+  <category>recommended</category>
+  <summary>Recommended update for helmfile</summary>
+  <description>This update for helmfile fixes the following issues:
+
+Changes in helmfile:
+
+Update to version 1.2.1:
+
+  * build(deps): bump azure/setup-helm from 4.3.0 to 4.3.1 by
+    @dependabot[bot] in #2274
+  * build(deps): bump github.com/helmfile/vals from 0.42.4 to
+    0.42.5 by @dependabot[bot] in #2272
+  * build(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0
+    by @dependabot[bot] in #2277
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from
+    1.90.2 to 1.91.1 by @dependabot[bot] in #2284
+  * Fix four critical issues: environment merging, kubeVersion
+    detection, lookup() with kustomize, and Helm 4 color flags by
+    @aditmeno in #2276
+  * build(deps): bump go.uber.org/zap from 1.27.0 to 1.27.1 by
+    @dependabot[bot] in #2283
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/config from
+    1.31.20 to 1.32.0 by @dependabot[bot] in #2282
+  * build(deps): bump actions/checkout from 5 to 6 by
+    @dependabot[bot] in #2287
+  * build(deps): bump k8s.io/client-go from 0.34.1 to 0.34.2 by
+    @dependabot[bot] in #2285
+  * Fix four critical bugs: array merging (#2281), AWS SDK logging
+    (#2270), helmDefaults skip flags (#2269), and OCI chart versions
+    (#2247) by @aditmeno in #2288
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from
+    1.91.1 to 1.92.0 by @dependabot[bot] in #2286
+
+Update to version 1.2.0:
+
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/config from
+    1.31.15 to 1.31.16 by @dependabot[bot] in #2242
+  * build(deps): bump github.com/hashicorp/go-getter from 1.8.2
+    to 1.8.3 by @dependabot[bot] in #2241
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from
+    1.89.0 to 1.89.1 by @dependabot[bot] in #2240
+  * build(deps): bump github.com/containerd/containerd from 1.7.28
+    to 1.7.29 by @dependabot[bot] in #2249
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from
+    1.89.1 to 1.90.0 by @dependabot[bot] in #2248
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/config from
+    1.31.16 to 1.31.17 by @dependabot[bot] in #2245
+  * build(deps): bump golang.org/x/sync from 0.17.0 to 0.18.0 by
+    @dependabot[bot] in #2251
+  * build(deps): bump golangci/golangci-lint-action from 8 to 9 by
+    @dependabot[bot] in #2250
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/config from
+    1.31.17 to 1.31.18 by @dependabot[bot] in #2253
+  * build(deps): bump golang.org/x/term from 0.36.0 to 0.37.0 by
+    @dependabot[bot] in #2256
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/config from
+    1.31.18 to 1.31.20 by @dependabot[bot] in #2259
+  * perf(app): Parallelize helmfile.d rendering and eliminate chdir
+    race conditions by @aditmeno in #2261
+  * build(deps): bump k8s.io/apimachinery from 0.34.1 to 0.34.2 by
+    @dependabot[bot] in #2264
+  * Issue-1883 fix by @zhaque44 in #2058
+  * feat: add Helm 4 support while maintaining Helm 3 compatibility
+    by @aditmeno in #2262
+  * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from
+    1.90.0 to 1.90.2 by @dependabot[bot] in #2258
+- Bump golang(API) to  1.25
+</description>
+  <package>helmfile</package>
+</patchinfo>