lifecycle icon indicating copy to clipboard operation
lifecycle copied to clipboard

Published 20 hours ago verified publisher icon buildpacks

Bump the go-dependencies group across 1 directory with 6 updates

Open dependabot[bot] opened this issue 1 year ago • 0 comments

Bumps the go-dependencies group with 5 updates in the / directory:

Package From To
github.com/GoogleContainerTools/kaniko 1.23.0 1.23.1
github.com/containerd/containerd 1.7.17 1.7.18
github.com/google/go-containerregistry 0.19.1 0.19.2
github.com/moby/buildkit 0.13.2 0.14.1
golang.org/x/sys 0.20.0 0.21.0

Updates github.com/GoogleContainerTools/kaniko from 1.23.0 to 1.23.1

Release notes

Sourced from github.com/GoogleContainerTools/kaniko's releases.

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.1-slim

Highlights:

This patch release reverts recently changed behaviour it so that --no-push properly still pushes intermediate cache layers. Additionally documentation around the --no-push and --no-push-cache flag have been added to make the expected behaviour more clear. Additionally numerous dependencies have been updated.

Fixes:

  • fix: Enable pushing cache with --no-push #3181

Docs Updates:

  • docs: document --no-push-cache flag in README.md #3188

Dependency Updates::

  • chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 #3187
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.17 to 1.16.21 #3179
  • chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 #3170
  • chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 #3168
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.2 to 1.54.2 #3169
  • chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 #3171
  • chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #3172
  • chore(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible #3173

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]
  • Leo Palmer Sunmo
Changelog

Sourced from github.com/GoogleContainerTools/kaniko's changelog.

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.1-slim
  • Enable pushing cache with --no-push #3181
  • docs: document --no-push-cache flag in README.md #3188
  • chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 #3187
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.17 to 1.16.21 #3179
  • chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 #3170
  • chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 #3168
  • chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.2 to 1.54.2 #3169
  • chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 #3171
  • chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #3172
  • chore(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible #3173

Huge thank you for this release towards our contributors:

  • Aaron Prindle
  • dependabot[bot]
  • Leo Palmer Sunmo
Commits
  • c93ecd3 chore(release): release v1.23.1 (#3189)
  • f087f4a docs: document --no-push-cache flag in README.md (#3188)
  • 6a340c6 Enable pushing cache with --no-push (#3181)
  • 942fbe6 chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 (#3187)
  • f671fca chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3179)
  • 9c08f1c chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 (#3170)
  • 8237632 chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 (#3168)
  • 5d1c088 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (#3169)
  • b64e9a8 chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 (#3171)
  • 96fa5ff chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 (#3172)
  • Additional commits viewable in compare view

Updates github.com/containerd/containerd from 1.7.17 to 1.7.18

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.18

Welcome to the v1.7.18 release of containerd!

The eighteenth patch release for containerd 1.7 contains various updates along with an updated version of Go. Go 1.22.4 and 1.21.11 include a fix for a symlink time of check to time of use race condition during directory removal.

Highlights

  • Update Go version to 1.21.11 (#10298)
  • Remove uses of platforms.Platform alias (#10277)
  • Migrate log imports to github.com/containerd/log (#10269)
  • Migrate errdefs package to github.com/containerd/errdefs (#10266)
  • Fix usage of "unknown" platform (#10261)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Sebastiaan van Stijn
  • Akhil Mohan
  • Austin Vazquez
  • Phil Estes

Changes

  • Prepare release notes for v1.7.18 (#10301)
    • 9426aab62 Prepare release notes for v1.7.18
  • Update Go version to 1.21.11 (#10298)
  • Remove uses of platforms.Platform alias (#10277)
    • 1e3c662d6 [release/1.7] remove uses of platforms.Platform alias
  • Migrate log imports to github.com/containerd/log (#10269)
    • 0af6825b1 migrate logs imports to github.com/containerd/log module
  • Migrate errdefs package to github.com/containerd/errdefs (#10266)
    • 308341a44 replace uses of github.com/containerd/containerd/errdefs
    • 47ff8cfce migrate errdefs package to github.com/containerd/errdefs module
  • Fix usage of "unknown" platform (#10261)
    • f4d11912a core/image: fix usage of "unknown" platform
  • Explicitly set release latest to true (#10265)
    • 5b0480009 Explicitly set release latest to true
    • d669b100d build(deps): bump softprops/action-gh-release from 1 to 2

Changes from containerd/errdefs

... (truncated)

Commits
  • ae71819 Merge pull request #10301 from dmcgowan/prepare-v1.7.18
  • 9426aab Prepare release notes for v1.7.18
  • 1d324db Merge pull request #10298 from dmcgowan/1.7-update-go
  • cdd3ea9 Update Go version to 1.21.11
  • 0a137f0 Merge pull request #10277 from thaJeztah/1.7_backport_remove_use_of_platform_...
  • 1e3c662 [release/1.7] remove uses of platforms.Platform alias
  • 300a6de Merge pull request #10269 from thaJeztah/1.7_migrate_containerd_log
  • 0af6825 migrate logs imports to github.com/containerd/log module
  • be820ac Merge pull request #10266 from thaJeztah/1.7_migrate_to_errdefs_module
  • 566c535 Merge pull request #10261 from k8s-infra-cherrypick-robot/cherry-pick-10257-t...
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v26.1.3

26.1.3

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • Fix a regression that prevented the use of DNS servers within a --internal network. moby/moby#47832
  • When the internal DNS server's own address is supplied as an external server address, ignore it to avoid unproductive recursion. moby/moby#47833

Packaging updates

  • Allow runc to kill containers when confined to the runc profile in AppArmor version 4.0.0 and later. moby/moby#47829
Commits
  • 8e96db1 Merge pull request #47832 from vvoland/v26.1-47821
  • c21fe3e Forward DNS requests into --internal networks
  • 86af4ed Merge pull request #47833 from vvoland/v26.1-47744
  • 73511cd Merge pull request #47829 from vvoland/v26.1-47749
  • 9326cda Do not forward DNS requests to self.
  • 76fcf9a apparmor: Allow confined runc to kill containers
  • See full diff in compare view

Updates github.com/google/go-containerregistry from 0.19.1 to 0.19.2

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.19.2

What's Changed

New Contributors

Full Changelog: https://github.com/google/go-containerregistry/compare/v0.19.1...v0.19.2

Commits

Updates github.com/moby/buildkit from 0.13.2 to 0.14.1

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.14.1

Welcome to the 0.14.1 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

  • Talon Bowler
  • Akihiro Suda
  • Tõnis Tiigi
  • Paweł Gronowski

Notable Changes

  • Builtin Dockerfile frontend has been updated to v1.8.1 changelog
  • Fix possible issue on pushing blobs with rewrite-timestamp=true option #5040
  • Fix possible concurrency issue on handling HTTPS to HTTP fallbacks for insecure registries #5044

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.14.0

v0.14.0

Welcome to the 0.14.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

  • Tõnis Tiigi
  • CrazyMax
  • Talon James Bowler
  • Akihiro Suda
  • Jonathan A. Sternberg
  • Justin Chadwell
  • David Karlsson
  • Sebastiaan van Stijn
  • Anthony Nandaa
  • Erik Sipsma
  • Aleksa Sarai
  • Adam Perlin
  • Shaun Thompson

... (truncated)

Commits
  • eb864a8 Merge pull request #5053 from tonistiigi/v0.14.1-cherry-picks
  • dedaef0 shell: handle empty string for var replacements
  • b45ab30 Initialize build args from stage base
  • e34c21a Consolidate instruction casing lint rules
  • 050e3b6 Updates lint output to print detail instead of description
  • 2bf5cbf util/resolver: Make httpFallback concurrent safe
  • 49dd5f4 Adds 'WARNING' prefix to the rule check output and update lint
  • 05bd56b Merge pull request #5040 from AkihiroSuda/cherrypick-5008-0.14
  • 5a7352c Fix content not found with push=true,rewrite-timestamp=true
  • 4d9a4e5 Merge pull request #5017 from crazy-max/fix-history-exporters
  • Additional commits viewable in compare view

Updates golang.org/x/sys from 0.20.0 to 0.21.0

Commits
  • 673e0f9 unix: skip ethtool driver test for busy interface
  • 6943ab6 unix/linux: update glibc to 2.39
  • 92f3ad6 unix: update to Linux kernel 6.9
  • f34bb9f windows: add net user enum
  • 6dfb94e unix: add types for SOCK_DIAG
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

dependabot[bot] avatar Jun 24 '24 23:06 dependabot[bot]