fix(deps): bump github.com/fluxcd/notification-controller/api from 1.5.0 to 1.6.0

[dependabot]

Bumps github.com/fluxcd/notification-controller/api from 1.5.0 to 1.6.0.

Release notes

Sourced from github.com/fluxcd/notification-controller/api's releases.

v1.6.0

Changelog

v1.6.0 changelog

Container images

• docker.io/fluxcd/notification-controller:v1.6.0
• ghcr.io/fluxcd/notification-controller:v1.6.0

Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.

The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC. To verify the images and their provenance (SLSA level 3), please see the security documentation.

Changelog

Sourced from github.com/fluxcd/notification-controller/api's changelog.

1.6.0

Release date: 2025-05-27

This minor release comes with various bug fixes and improvements.

Provider

The azureeventhub provider now supports workload identity both at the controller and object levels. For object level, the .spec.serviceAccountName field can be set to the name of a service account in the same namespace that was configured with a Managed Identity. For object level to work, the controller feature gate ObjectLevelWorkloadIdentity must be enabled. See a complete guide here.

The github and githubdispatch providers now support authenticating with a GitHub App. See docs here and here.

For commit status providers it is now possible to define a custom status string by defining a CEL expression in the .spec.commitStatusExpr field. The variables event, alert and provider are available for the CEL expression. See docs.

General updates

In addition, the Kubernetes dependencies have been updated to v1.33 and various other controller dependencies have been updated to their latest version. The controller is now built with Go 1.24.

Fixes:

• Fix Slack chat.postMessage error handling #1086
• Fix pass 'certPool' to Gitea client on creation #1084
• CrossNamespaceObjectReference: Fix MaxLength validation to kubernetes max size of 253 #1108
• Sanitize proxy error logging #1093

Improvements:

• [RFC-0010] Workload Identity support for azureeventhub provider #1106 #1116 #1120

... (truncated)

Commits

• 3a6de1f Merge pull request #1121 from fluxcd/release-v1.6.0
• a52f071 Release v1.6.0
• 0e0e912 Add changelog entry for v1.6.0
• 7383fe8 Merge pull request #1108 from larhauga/fix-crossnamespaceobjectref-maxlength
• 2284a0d CrossNamespaceObjectReference: Fix MaxLength validation to kubernetes max siz...
• d32f5e2 Merge pull request #1101 from fluxcd/dependabot/github_actions/ci-4c7c75f92f
• b416d68 build(deps): bump the ci group across 1 directory with 14 updates
• 3842f0c Merge pull request #1120 from fluxcd/rfc-0010-docs
• f2e2340 [RFC-0010] Link workload identity docs to complete guide
• 01dfe12 Merge pull request #1119 from fluxcd/upgrade-deps
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)