Bump github.com/openshift-pipelines/pipelines-as-code from 0.40.0 to 0.41.0

[dependabot]

Bumps github.com/openshift-pipelines/pipelines-as-code from 0.40.0 to 0.41.0.

Release notes

Sourced from github.com/openshift-pipelines/pipelines-as-code's releases.

v0.41.0

Pipelines as Code version v0.41.0

OpenShift Pipelines as Code v0.41.0 has been released 🥳

Installation

To install this version you can install the release.yaml with kubectl for your platform :

Openshift

kubectl apply -f https://github.com/openshift-pipelines/pipelines-as-code/releases/download/v0.41.0/release.yaml

Kubernetes

kubectl apply -f https://github.com/openshift-pipelines/pipelines-as-code/releases/download/v0.41.0/release.k8s.yaml

✨ Features

• 🛡️ Enhanced CEL Expressions: Added direct access to custom parameter variables within CEL expressions, allowing for more flexible pipeline logic. e95b4e7bac4a15ffabbec70e783f57e51287bd6c

• 🌐 Advanced Token Scoping: Introduced glob pattern support for repositories when defining token scopes in GitHub. 18413b1b7840ae982266e8cd24b233ebb09b521e

• 🧠 Flexible Logic Support: Added support for arbitrary CEL expressions using the new cel: prefix for complex event matching. 751f9310d311b1f2b301292099caf817617268ec

🐛 Bug Fixes

• 🔄 Merge Commit Reliability: Implemented an exponential backoff retry mechanism for PR lookups to handle GitHub API indexing delays on merge commits. 618fac55c83ee5642ae8a566f76a52dcfe1243ee

• 🛑 Accurate Lifecycle Reporting: Fixed an issue where deleted PipelineRuns remained stuck in pending; the controller now explicitly reports a cancelled status upon deletion. c690b58da7b450c514e9c5f751715e301128dc57

• 🏷️ Improved Event Matching: Resolved a bug in the matcher to prevent CEL from unintentionally matching label events. 1a3b2412db248fccd24abb4f468618dec3c572b2

• 💬 Smarter GitLab Feedback: Reduced Merge Request noise by skipping comments for non-permission-related errors. 6a956e4f75d111e421ace4efc57bb539e7f22a62

• 🏗️ Concurrency Stability: Improved test reliability by ensuring PipelineRuns are correctly filtered by SHA in concurrency test suites. 9b8d81f9b413a04a30d2a17a0317df19db25ef7b

• 🔗 GitLab Provider Routing: Fixed an issue where the GitLab provider failed to retrieve URLs when hosted on the same host. bafda32047f8575b19caef58d1c0692337e5d51b

• 📡 Gitea/Forgejo Stability: Added retry logic for Gitea status updates and migrated Gitea integration to use the Forgejo SDK. 7a00a56ce2cee159c80e3231ce7e6cfb2303b45e, 152ce9341906249a7b9afd6e9db30b3dc38ad467

• 🧹 Catalog Cleanup: Removed the deprecated public Tekton Hub as a built-in catalog to favor modern repository standards. 882c31bb957369aad105fc51a1661cc539daef52

• 📊 Status Sync: Corrected logic to ensure pending and running commit statuses are accurately synchronized with the provider platform. 7ca0bd94aaa6ea89dd53f9a243ce8d7480cb03a2

• 🧩 Safety Checks: Added handling for nil bodies in CEL evaluations to prevent controller crashes during specific event processing. 8b8ddda52d17b3defb20e3fb6856eda82936e237

• 🚨 Linting Fixes: Resolved prealloc and other golangci-lint errors to maintain code quality standards. d6d9f4846063be03d437735350f463779002e1aa, d5d71cf0df53894bfd820001bd3d860067b6b6b5

... (truncated)

Commits

• 7ca0bd9 fix: correctly update pending and running commit status (#2341)
• c690b58 fix: report cancelled status when PipelineRun is deleted
• 618fac5 fix: Add retry logic for PR lookup on merge commits
• 7a00a56 fix: Add retry logic for Gitea status updates
• 63bd2d9 feat: Update base images to UBI 10
• 4961902 chore: Update golang version in Tekton configurations
• cff5590 chore: Update Vale style guide links
• f98d1d5 chore: Update dependencies
• 6a956e4 fix: skip MR comment for non-permission errors (#2340)
• 582d56d chore(deps): bump pyasn1 from 0.6.1 to 0.6.2 in /hack/pr-ci
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.