chore(deps): Bump the production-dependencies group across 1 directory with 3 updates

[dependabot[bot]]

Bumps the production-dependencies group with 3 updates in the / directory: github.com/containerd/errdefs, github.com/cyphar/filepath-securejoin and google.golang.org/protobuf.

Updates github.com/containerd/errdefs from 0.2.0 to 0.3.0

Release notes

Sourced from github.com/containerd/errdefs's releases.

v0.3.0

This release splits the errdefs package into the github.com/containerd/errdefs package which only contains error definitions as well as basic functions to check for those definitions and the github.com/containerd/errdefs/pkg package which containers functionality for using the errdefs, such as error serialization and adding more data to errors.

What's Changed

• Update GitHub Actions packages and runners by @​austinvazquez in containerd/errdefs#20
• Add errdefs/pkg package by @​dmcgowan in containerd/errdefs#19

Full Changelog: https://github.com/containerd/errdefs/compare/v0.2.0...v0.3.0

pkg/v0.3.0

What's Changed

• Update pkg errodefs to v0.3.0 by @​dmcgowan in containerd/errdefs#21

Full Changelog: https://github.com/containerd/errdefs/compare/v0.3.0...pkg/v0.3.0

Commits

• 9fd32fc Merge pull request #19 from dmcgowan/pkg-package
• 3dabb2b Merge pull request #20 from austinvazquez/upgrade-ci
• 303a6ea Update to Go 1.22.8 in CI
• e70104e Upgrade to [email protected]
• ffe5586 Upgrade to golangci/golangci-lint-action@v6
• 908b04b Upgrade to actions/checkout@v4
• 608b83c Upgrade to actions/setup-go@v5
• 8e82ae4 Upgrade macOS runner image to macOS 13
• 46a6522 Add errdefs/pkg package
• See full diff in compare view

Updates github.com/cyphar/filepath-securejoin from 0.3.3 to 0.3.4

Release notes

Sourced from github.com/cyphar/filepath-securejoin's releases.

v0.3.4

This release primarily includes a fix that blocked using filepath-securejoin in Kubernetes.

• Previously, some testing mocks we had resulted in us doing import "testing" in non-_test.go code, which made some downstreams like Kubernetes unhappy. This has been fixed. (#32)

Thanks to all of the contributors who made this release possible:

• Aleksa Sarai [email protected]
• Stephen Kitt [email protected]

Signed-off-by: Aleksa Sarai [email protected]

Changelog

Sourced from github.com/cyphar/filepath-securejoin's changelog.

[0.3.4] - 2024-10-09

Fixed

• Previously, some testing mocks we had resulted in us doing import "testing" in non-_test.go code, which made some downstreams like Kubernetes unhappy. This has been fixed. (#32)

Commits

• fd16ade VERSION: release v0.3.4
• 00e0710 godoc: update package documentation
• 0cd6be1 README: fix reference to open_tree kernel requirements
• 205046f README: add pkg.go.dev badge
• ecb1b8e tests: procfs: clean up mock test hook
• 3ec6eed CHANGELOG: mention #32 fix
• 86e6182 merge #32 into cyphar/filepath-securejoin:main
• 6864912 Isolate the testing import in test code
• 4348fee openat: remove unused function
• d0c7d67 merge #31 into cyphar/filepath-securejoin:main
• Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.34.2 to 1.35.1

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[kubevirt-bot]

Hi @dependabot[bot]. Thanks for your PR.

PRs from untrusted users cannot be marked as trusted with /ok-to-test in this repo meaning untrusted PR authors can never trigger tests themselves. Collaborators can still trigger tests on the PR using /test all.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[kubevirt-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: 0xFelix

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• ~~OWNERS~~ [0xFelix]

Approvers can indicate their approval by writing /approve in a comment Approvers can cancel approval by writing /approve cancel in a comment

[kubevirt-bot]

@dependabot[bot]: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
pull-containerdisks-test	8f49ba978a1a13b7b276dab894274305423d2b21	link	true	/test pull-containerdisks-test

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.