Bump k8s.io/autoscaler/vertical-pod-autoscaler from 0.14.0 to 1.1.2

[dependabot]

Bumps k8s.io/autoscaler/vertical-pod-autoscaler from 0.14.0 to 1.1.2.

Release notes

Sourced from k8s.io/autoscaler/vertical-pod-autoscaler's releases.

vertical-pod-autoscaler-1.1.2

What's Changed

• [vpa-release-1.1] Fix nil pointer panic in eviction admission by @​k8s-infra-cherrypick-robot in kubernetes/autoscaler#6833

Full Changelog: kubernetes/autoscaler@vertical-pod-autoscaler-1.1.1...vertical-pod-autoscaler-1.1.2

vertical-pod-autoscaler-1.1.1

What's Changed

• [vpa-release-1.1] Cherry-pick of #6712: Fix NPE in vpa-updater when Pod owner isn't scalable by @​voelzmo in kubernetes/autoscaler#6724

Full Changelog: kubernetes/autoscaler@vertical-pod-autoscaler-1.1.0...vertical-pod-autoscaler-1.1.1

vertical-pod-autoscaler-1.1.0

This version is built with Go 1.22.1

• Confirms VPA/Pod association by checking OwnerRef against TargetRef, instead of relying on labelSelector (see #6460)
• Removes vpa builder Dockerfile and switch dependabot to component Dockerfiles (see #6370)
• Switches to multistage build Dockerfiles for VPA (see #6338)
• Implements KEP-4831: Control VPA eviction behavior based on scaling direction and resource (see #5599)
• Fixes multiple run of informers created in fetcher.go (see #6157)

Full Changelog: kubernetes/autoscaler@vertical-pod-autoscaler-1.0.0...vertical-pod-autoscaler-1.1.0

vertical-pod-autoscaler-1.0.0

What's Changed

• VPA API Versions reported in the vpa_objects_count metric now include v1 VPAs (see #5864)
• Added the /status subresource to VPA. Action Required if installing VPA yourself: New cluster role and binding needed to update recommendation (see #5911)
• Basic auth added for Prometheus provider in VPA recommender. (see #6005)
• (Cleanup) Use vpaObject instead of vpaModel to reduce deps of post-processors. (see #6061)
• (Bug fix) Prevent empty resource propagation upstream (see #6062)
• (Alpha) External metrics support for VPA recommender (see #5576)
• Update VPA vendor (see #5904)
• Golang bump to 1.21.1 (see #6095)

Full Changelog

https://github.com/kubernetes/autoscaler/compare/vertical-pod-autoscaler-0.14.0..vertical-pod-autoscaler-1.0.0

Commits

• e821036 Bump CA version to 1.1.2
• d5e094d Merge pull request #693 from MaciekPytel/cherrypick_gpuexpander_1.1
• 930c210 Delay scale-up including GPU request
• 37ff773 Skip iteration if pending pods are too new
• 4e7f3a7 Ignore unfitness in price expander if using GPU
• d559af3 Merge pull request #664 from aleksandra-malinowska/cherry-pick-update-dockerf...
• c8dd214 Add installing libseccomp-devel to builder
• 9fbe337 Merge pull request #654 from aleksandra-malinowska/cherry-pick-update-dockerf...
• 3540efc Use Debian image
• 129f67f Merge pull request #611 from MaciekPytel/ca_1_1_1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[fairwinds-insights]

Fairwinds Insights Scan Results

View the full report at insights.fairwinds.com.

✅ No new Action Items detected!