chore(deps): update dependency siderolabs/talos to v1.9.5

[uniget-bot]

This PR contains the following updates:

Package	Update	Change
siderolabs/talos	patch	1.9.4 -> 1.9.5

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

siderolabs/talos (siderolabs/talos)

v1.9.5

Compare Source

Talos 1.9.5 (2025-03-12)

Welcome to the v1.9.5 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 6.12.18
• containerd: 2.0.3
• runc: 1.2.5
• Kubernetes: 1.32.3
• etcd: 3.5.19

Talos is built with Go 1.23.7.

Contributors

• Andrey Smirnov
• Dmitriy Matrenichev
• Dmitry Sharshakov
• Robin Elfrink
• Serge Logvinov

Changes

12 commits

• @​d07f6da release(v1.9.5): prepare release
• @​dd629ad chore: fix the mount cache ids in the Dockerfile
• @​456516f feat: update Flannel to 0.26.5
• @​82f3a8c feat: update etcd to 3.5.19
• @​46ab576 feat: add support for qla2xx
• @​7f89234 fix: handle dynamic HTTP proxy settings for discovery client
• @​9a29332 fix: multiple fixes for dashboard/no data
• @​9d3a2c8 fix: ignore digest part of images when checking version
• @​93180bf feat: support noclooud instance-id from dmi
• @​76832c2 chore: disable azure upload
• @​d4986d9 feat: update default Kubernetes to 1.32.3
• @​1fe0c2f feat: update Go, Linux, containerd, runc

Changes from siderolabs/discovery-api

1 commit

• siderolabs/discovery-api@64513a6 feat: rekres, regenerate proto files

Changes from siderolabs/discovery-client

1 commit

• siderolabs/discovery-client@b3632c4 feat: support extra dial options in the client

Changes from siderolabs/gen

1 commit

• siderolabs/gen@5ae3afe chore: update hashtriemap implementation from the latest upstream

Changes from siderolabs/pkgs

9 commits

• siderolabs/pkgs@792f5ca feat: update Linux firmware to 2025021
• siderolabs/pkgs@142de09 feat: update runc to 1.2.5
• siderolabs/pkgs@b39f244 feat: update Linux to 6.12.18
• siderolabs/pkgs@9a21d6c fix: backport MGLRU patch from Linux 6.13
• siderolabs/pkgs@1565250 feat: update Linux 6.12.17, containerd 2.0.3
• siderolabs/pkgs@fc5e81d feat: enable qla2xxx module
• siderolabs/pkgs@3ff0ab6 fix: patch Linux with blackhole patch
• siderolabs/pkgs@b4060f8 feat: update Go to 1.23.7
• siderolabs/pkgs@3349185 fix: patch musl to mitigate CVE-2025-26519

Changes from siderolabs/tools

1 commit

• siderolabs/tools@17d43b2 feat: update Go to 1.23.7

Dependency Changes

• github.com/siderolabs/discovery-api v0.1.5 -> v0.1.6
• github.com/siderolabs/discovery-client v0.1.10 -> v0.1.11
• github.com/siderolabs/gen v0.7.0 -> v0.8.0
• github.com/siderolabs/pkgs v1.9.0-27-g27017e0 -> v1.9.0-36-g792f5ca
• github.com/siderolabs/talos/pkg/machinery v1.9.4 -> v1.9.5
• github.com/siderolabs/tools v1.9.0-3-gb2ede52 -> v1.9.0-4-g17d43b2
• google.golang.org/grpc v1.68.1 -> v1.70.0
• google.golang.org/protobuf v1.35.2 -> v1.36.5

Previous release can be found at v1.9.4

Images

ghcr.io/siderolabs/flannel:v0.26.5
registry.k8s.io/coredns/coredns:v1.12.0
gcr.io/etcd-development/etcd:v3.5.19
registry.k8s.io/kube-apiserver:v1.32.3
registry.k8s.io/kube-controller-manager:v1.32.3
registry.k8s.io/kube-scheduler:v1.32.3
registry.k8s.io/kube-proxy:v1.32.3
ghcr.io/siderolabs/kubelet:v1.32.3
ghcr.io/siderolabs/installer:v1.9.5
registry.k8s.io/pause:3.10

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[nicholasdille-bot]

Auto-approved because label type/renovate is present.

[github-actions]

🔍 Vulnerabilities of ghcr.io/uniget-org/tools/talosctl:1.9.5

📦 Image Reference ghcr.io/uniget-org/tools/talosctl:1.9.5

digest	sha256:06ab52938b9d25171d03246b0776717dcafb27ba3c15b097e7c2e8a56b43c7ae
vulnerabilities
platform	linux/amd64
size	27 MB
packages	239

golang.org/x/crypto 0.32.0 (golang) pkg:golang/golang.org/x/crypto@0.32.0 Affected range <0.35.0 Fixed version 0.35.0 Description SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

golang.org/x/oauth2 0.24.0 (golang) pkg:golang/golang.org/x/oauth2@0.24.0 Affected range <0.27.0 Fixed version 0.27.0 Description An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.

[github-actions]

Attempting automerge. See https://github.com/uniget-org/tools/actions/runs/13816831371.

[github-actions]

PR is clean and can be merged. See https://github.com/uniget-org/tools/actions/runs/13816831371.