Bump github.com/cloudposse/atmos from 1.189.0 to 1.194.0

[dependabot]

Bumps github.com/cloudposse/atmos from 1.189.0 to 1.194.0.

Release notes

Sourced from github.com/cloudposse/atmos's releases.

v1.194.0

what

• Code Refactoring: Extracted common component processing logic into reusable helper functions, eliminating ~991 lines of duplicated code
• Auth Section Deep-Merging: Implemented complete deep-merge support for auth section following the same hierarchy as vars/env/settings:
  • Global → Component-Type-Specific → Base Component → Component → Overrides
  • Supports all three component types: Terraform, Helmfile, and Packer
  • Consistent with existing section merge behavior
• Comprehensive Testing: Created extensive test coverage for all new helper functions with 29 test cases

why

• The ProcessStackConfig function contained nearly identical logic repeated 3 times for Terraform, Helmfile, and Packer components
• This duplication made the codebase harder to maintain, more error-prone, and difficult to extend
• The auth section needed proper deep-merge support to enable hierarchical authentication configuration across the stack
• Centralized logic improves code quality, maintainability, and makes future enhancements easier
• Better test coverage ensures reliability and prevents regressions

changes

Auth Section Deep-Merge Implementation

Merge Hierarchy

The auth section now merges through the complete hierarchy (later values override earlier ones):

1. Global auth (auth: at stack root)
2. Component-type-specific auth (terraform.auth:, helmfile.auth:, or packer.auth:)
3. Base component auth (from component: inheritance)
4. Component auth (component-specific auth:)
5. Component overrides auth (overrides.auth:)

Test Coverage

• All existing test cases updated with auth fields
• Auth assertion added to test validation
• Tests verify auth merges correctly through the hierarchy
• ✅ All tests passing

Comprehensive test coverage with:

• TestProcessComponent

  • Terraform component with all sections
  • Helmfile component without Terraform-specific sections
  • Packer component
  • Component with overrides
  • Component with inheritance
  • Invalid configuration error cases

• TestProcessTerraformBackend

  • S3, GCS, Azure backend processing

... (truncated)

Commits

• f69c0b4 fix: single quote support #1362 (#1560)
• 997216c Improve Atmos Auth (#1602)
• aefb2b3 Add short test mode to skip long-running tests (#1605)
• 41200b0 fix: redirect telemetry notice to stderr instead of stdout (#1426)
• 088e325 Add --version flag as alias for version command (#1600)
• 72ea7ed Atmos terraform plan-diff ignore data (#1601)
• 8ccdd85 Add --provenance flag to atmos describe component (#1584)
• 96a7852 Atmos Auth Implementation (#1475)
• 94ad05f Add comprehensive test coverage for lifecycle hooks component scoping (#1583)
• 212186c fix: resolve invalid error wrapping with multiple %w verbs (#1530)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

⛔ Ignored keywords (3)

• Bump
• chore(deps)
• WIP

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[dependabot]

Superseded by #515.