nova icon indicating copy to clipboard operation
nova copied to clipboard

Published 20 hours ago verified publisher icon FairwindsOps

Bump github.com/google/go-containerregistry from 0.10.0 to 0.11.0

Open dependabot[bot] opened this issue 3 years ago • 1 comments

Bumps github.com/google/go-containerregistry from 0.10.0 to 0.11.0.

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.11.0

Changelog

  • b7b4eada Add unit test covering .dockerconfigjson secrets (#1335)
  • 31786c6c Bump deps using ./hack/bump-deps.sh (#1410)
  • f79ec219 Deprecate transport.New (#1337)
  • 2b1087ab Do not check /v2 endpoint on registry when RoundTripper is provided (#1396)
  • 59b5c06e Don't annotate refs by default, switch to OCI key (#1401)
  • ddd39fb9 Fall back to no mount if registry misbehaves (#1406)
  • d187a716 Implement crane edit (#1403)
  • 4d7b65b0 Include builds for Go 1.18 in CI matrixes (#1319)
  • 03194c5a Preserve descriptors when writing to layout (#1400)
  • 53e6bea5 Redact sensitive information in redirected URLs (#1408)
  • ae256b58 Use go-digest to validate digests (#1395)
  • 86f0c4a3 Wrap progress updates in a mutex (#1402)
  • e7a9f2b9 bump deps using ./hack/bump-deps.sh (#1389)

Container Images

https://gcr.io/go-containerregistry/crane:v0.11.0 https://gcr.io/go-containerregistry/gcrane:v0.11.0

For example:

docker pull gcr.io/go-containerregistry/crane:v0.11.0
docker pull gcr.io/go-containerregistry/gcrane:v0.11.0
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Aug 22 '22 15:08 dependabot[bot]

Fairwinds Insights CI Report

View the Full Report

:white_check_mark: No new Action Items detected!

fairwinds-insights[bot] avatar Aug 22 '22 15:08 fairwinds-insights[bot]

Superseded by #168.

dependabot[bot] avatar Oct 24 '22 11:10 dependabot[bot]