Update google.golang.org/genproto digest to b703f56

[red-hat-konflux-kflux-prd-rh02]

This PR contains the following updates:

Package	Type	Update	Change
google.golang.org/genproto	indirect	digest	0a33c5d → b703f56

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • "on monday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[red-hat-konflux-kflux-prd-rh02]

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 4 additional dependencies were updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.25.0 -> 1.25.8
golang.org/x/net	v0.54.0 -> v0.55.0
google.golang.org/genproto/googleapis/api	v0.0.0-20260526163538-3dc84a4a5aaa -> v0.0.0-20260618152121-87f3d3e198d3
google.golang.org/genproto/googleapis/rpc	v0.0.0-20260523011958-0a33c5d7ca68 -> v0.0.0-20260618152121-87f3d3e198d3
google.golang.org/grpc	v1.80.0 -> v1.81.1

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign sherine-k for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

Hi @red-hat-konflux-kflux-prd-rh02[bot]. Thanks for your PR.

I'm waiting for a openshift-hyperfleet member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[coderabbitai]

📝 Walkthrough

Walkthrough

go.mod receives two categories of changes: the Go toolchain directive advances from 1.25.0 to 1.25.8, and five indirect dependencies are bumped — golang.org/x/net (v0.54.0 → v0.55.0), google.golang.org/grpc (v1.80.0 → v1.81.1), and all three google.golang.org/genproto submodules to newer dated revisions. No direct dependencies or application code are modified.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

---

Supply chain surface — verify before merge.

• CWE-1357 / dependency confusion: Confirm all five bumped modules resolve to their canonical sum.golang.org checksums. Check go.sum was updated atomically with go.mod — partial go.sum updates are a known injection vector.
• grpc v1.80.0 → v1.81.1: Review the grpc changelog for any CVEs. gRPC has historically carried HTTP/2 DoS issues (e.g., CVE-2023-44487, CVE-2023-32731). Confirm no advisory covers v1.81.x.
• golang.org/x/net v0.55.0: x/net is a frequent CVE target (HTTP/2 CONTINUATION flood, etc.). Verify this release is not itself a vulnerable version — cross-reference pkg.go.dev/vuln.
• Toolchain 1.25.8: Ensure 1.25.8 is an official Go release and not a phantom version. At knowledge cutoff (March 2025), Go 1.25 had not been released; validate this is legitimate and not a tampered directive.
• go.sum integrity: The diff does not include go.sum. Confirm it is present in the PR and that all new hashes were generated via go mod tidy in a trusted environment, not hand-edited.

🚥 Pre-merge checks | ✅ 11

✅ Passed checks (11 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title matches the main supply-chain change: updating the google.golang.org/genproto digest.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Sec-02: Secrets In Log Output	✅ Passed	PASS: Only go.mod/go.sum changed; no log statements or secret-bearing fields/strings were added (CWE-532).
No Hardcoded Secrets	✅ Passed	PASS: Only go.mod/go.sum changed; no credential URLs, private keys, or secret/token/password literals found (CWE-798/CWE-321).
No Weak Cryptography	✅ Passed	Only go.mod/go.sum changed; no crypto/md5, des, rc4, SHA1-for-security, ECB, or weak secret compares. No CWE-327/CWE-759 indicators.
No Injection Vectors	✅ Passed	Only go.mod/dependency metadata changed; no SQL/exec/template/yaml sinks in modified files, so no CWE-89/78/79/502 injection vector.
No Privileged Containers	✅ Passed	Only go.mod and go.sum changed; no Kubernetes/OpenShift manifests or Dockerfiles were touched, so no privileged-container settings to flag.
No Pii Or Sensitive Data In Logs	✅ Passed	PASS: PR only updates go.mod dependency/toolchain versions; no logging code changed, so no CWE-532 PII-in-logs risk introduced.
Description check	✅ Passed	The description matches the dependency update changes in go.mod, including the genproto digest bump.

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch konflux/mintmaker/main/google.golang.org-genproto-digest

✨ Simplify code

• Create PR with simplified code
• Commit simplified code in branch konflux/mintmaker/main/google.golang.org-genproto-digest

---

_{Comment @coderabbitai help to get the list of available commands.}