Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the go group across 1 directory with 8 updates #283

Closed
wants to merge 1 commit into from
Closed

chore(deps): bump the go group across 1 directory with 8 updates #283

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 20, 2024
edited
Loading

Bumps the go group with 8 updates in the / directory:

Package From To
github.com/containerd/containerd 1.7.11 1.7.20
github.com/docker/cli 27.0.3+incompatible 27.1.2+incompatible
github.com/docker/docker 27.0.3+incompatible 27.1.2+incompatible
github.com/go-test/deep 1.0.8 1.1.1
github.com/google/go-containerregistry 0.19.2 0.20.2
github.com/sylabs/sif/v2 2.17.1 2.19.0
golang.org/x/crypto 0.25.0 0.26.0
github.com/docker/go-connections 0.4.0 0.5.0

Updates github.com/containerd/containerd from 1.7.11 to 1.7.20

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.20

Welcome to the v1.7.20 release of containerd!

The twentieth patch release for containerd 1.7 contains various fixes and updates.

Highlights

  • Support for dropping inheritable capabilities (#10469)

Container Runtime Interface (CRI)

  • Make PodSandboxStatus friendlier to shim crashes (#10461)
  • Handle empty DNSConfig differently than unspecified (#10462)
  • Fix for [cri] ttrpc: closed during ListPodSandboxStats (#10423)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Akihiro Suda
  • Phil Estes
  • Akhil Mohan
  • Bryant Biggs
  • Danny Canter
  • Davanum Srinivas
  • Mike Brown
  • Samuel Karp
  • Tim Hockin

Changes

  • Prepare release notes for v1.7.20 (#10481)
    • 7f2d4cd97 Prepare release notes for v1.7.20
  • deps: Update otelgrpc (#10413)
  • Make PodSandboxStatus friendlier to shim crashes (#10461)
    • df86bdd5d CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
  • Handle empty DNSConfig differently than unspecified (#10462)
    • 209ee4f10 CRI: An empty DNSConfig != unspecified
  • Support for dropping inheritable capabilities (#10469)
    • ce65228af Support for dropping inheritable capabilities
  • Fix for [cri] ttrpc: closed during ListPodSandboxStats (#10423)
    • 610498df7 Fix for [cri] ttrpc: closed during ListPodSandboxStats
  • update to go1.21.12 / go1.22.5 (#10426)

... (truncated)

Changelog

Sourced from github.com/containerd/containerd's changelog.

Versioning and Release

This document details the versioning and release plan for containerd. Stability is a top goal for this project, and we hope that this document and the processes it entails will help to achieve that. It covers the release process, versioning numbering, backporting, API stability and support horizons.

If you rely on containerd, it would be good to spend time understanding the areas of the API that are and are not supported and how they impact your project in the future.

This document will be considered a living document. Supported timelines, backport targets and API stability guarantees will be updated here as they change.

If there is something that you require or this document leaves out, please reach out by filing an issue.

Releases

Releases of containerd will be versioned using dotted triples, similar to Semantic Version. For the purposes of this document, we will refer to the respective components of this triple as <major>.<minor>.<patch>. The version number may have additional information, such as alpha, beta and release candidate qualifications. Such releases will be considered "pre-releases".

Major and Minor Releases

Major and minor releases of containerd will be made from main. Releases of containerd will be marked with GPG signed tags and announced at https://github.com/containerd/containerd/releases. The tag will be of the format v<major>.<minor>.<patch> and should be made with the command git tag -s v<major>.<minor>.<patch>.

After a minor release, a branch will be created, with the format release/<major>.<minor> from the minor tag. All further patch releases will be done from that branch. For example, once we release v1.0.0, a branch release/1.0 will be created from that tag. All future patch releases will be done against that branch.

Pre-releases

Pre-releases, such as alphas, betas and release candidates will be conducted from their source branch. For major and minor releases, these releases will be done from main. For patch releases, these pre-releases should be done within the corresponding release branch.

While pre-releases are done to assist in the stabilization process, no guarantees are provided.

... (truncated)

Commits
  • 8fc6bcf Merge pull request #10481 from dmcgowan/prepare-v1.7.20
  • 7f2d4cd Prepare release notes for v1.7.20
  • 7eb0501 Merge pull request #10413 from austinvazquez/cherry-pick-78421616e0a6ba76ac25...
  • 34ea461 Merge pull request #10461dims/automated-cherry-pick-of-#8367
  • 87c908e Merge pull request #10462dims/automated-cherry-pick-of-#9730
  • b06e353 Merge pull request #10469dims/automated-cherry-pick-of-#8356
  • 209ee4f CRI: An empty DNSConfig != unspecified
  • ce65228 Support for dropping inheritable capabilities
  • df86bdd CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
  • 923bb1f Merge pull request #10423 from dims/cri-ttrpc-closed-during-ListPodSandboxStats
  • Additional commits viewable in compare view

Updates github.com/docker/cli from 27.0.3+incompatible to 27.1.2+incompatible

Commits
  • d01f264 Merge pull request #5333 from thaJeztah/27.x_bump_engine
  • 65dec14 vendor: github.com/docker/docker f9522e5e96c3 (v27.1.2-dev)
  • 1f80c54 Merge pull request #5339 from thaJeztah/27.x_backport_fix_bps_limit
  • 33573e2 Merge pull request #5343 from dvdksn/cp-docs-manuals-refactor-linkfix
  • 73452e3 docs: update internal links after refactor
  • bcd90be docs: fix link to http proxy document
  • f62c68e Merge pull request #5337 from vvoland/5327-27.x
  • 946d109 run: fix GetList return empty issue for throttledevice
  • 096e42b Merge pull request #5335 from vvoland/5310-27.x
  • 984ef90 plugins: don't panic on Close if PluginServer nil
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 27.0.3+incompatible to 27.1.2+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.1.2

27.1.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • Fix a regression that could result in a ResourceExhausted desc = grpc: received message larger than max error when building from a large Dockerfile. moby/moby#48245
  • CLI: Fix docker attach printing a spurious context cancelled error message. docker/cli#5296
  • CLI: Fix docker attach exiting on SIGINT instead of forwarding the signal to the container and waiting for it to exit. docker/cli#5302
  • CLI: Fix --device-read-bps and --device-write-bps options not taking effect. docker/cli#5339
  • CLI: Fix a panic happening in some cases while running a plugin. docker/cli#5337

Packaging updates

v27.1.1

27.1.1

Security

This release contains a fix for CVE-2024-41110 / GHSA-v23v-6jw2-98fq that impacted setups using authorization plugins (AuthZ) for access control. No other changes are included in this release, and this release is otherwise identical for users not using AuthZ plugins.

Packaging updates

Full Changelog: moby/moby@v27.1.0...v27.1.1

v27.1.0

27.1.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

... (truncated)

Commits
  • f9522e5 Merge pull request #48315 from vvoland/48169-27.x
  • a037b72 Merge pull request #48314 from vvoland/48275-27.x
  • fc0150b daemon/containerd: rm use of regexp
  • 73c01d0 image/v1: rm regexp use
  • c93fe4a layer: rm regexp use
  • 31459c8 docs/api: swagger: fix x-nullable for SystemInfo.Containerd (api v1.46)
  • 35d430c api/swagger: fix x-nullable for SystemInfo.Containerd
  • f5fa090 Merge pull request #48308 from thaJeztah/27.x_backport_migrate_userns
  • a17f5d4 Merge pull request #48294 from austinvazquez/cherry-pick-2b5ffa0b63c76e8bb4eb...
  • 80a59c2 migrate to github.com/moby/sys/userns
  • Additional commits viewable in compare view

Updates github.com/go-test/deep from 1.0.8 to 1.1.1

Release notes

Sourced from github.com/go-test/deep's releases.

v1.1.1

What's Changed

New Contributors

Full Changelog: go-test/deep@v1.1.0...v1.1.1

v1.1.0

New minor release, v1.1, that adds support for optional flags.

What's Changed

Full Changelog: go-test/deep@v1.0.9...v1.1.0

v1.0.9

What's Changed

Full Changelog: go-test/deep@v1.0.8...v1.0.9

Changelog

Sourced from github.com/go-test/deep's changelog.

v1.1.1 released 2024-06-23

  • Added NilPointersAreZero option: causes a nil pointer to be equal to a zero value (PR #61) (@​seveas)
  • Updated test matrix to go1.22, go1.21, and go1.20

v1.1.0 released 2022-12-09

  • Add optional flags: Equal(a, b, flags..) and FLAG_IGNORE_SLICE_ORDER (issue #28, PR #56) (@​alenkacz)

v1.0.9 released 2022-12-09

  • Fixed issue #45: Panic when comparing errors in unexported fields (PR #54) (@​seveas)
  • Fixed issue #46: Functions are handled differently from reflect.DeepEqual (PR #55) (@​countcb)
  • Updated test matrix to go1.17, go1.18, and go1.19 and moved testing to GitHub Actions
Commits
  • 9e863ff Release v1.1.1
  • dc5b2f6 Update SECURITY.md
  • 185886d Restore 100% test coverage (NilPointersAreZero case)
  • 47ae1b8 Merge pull request #61 from seveas/nil-pointers-are-zero
  • 93c35ac Merge branch 'master' into nil-pointers-are-zero
  • 2982c5c Update test matrix to latest 3 Go versions
  • 2b8252e Add an option to consider nil pointers to be equivalent to zero values
  • 95fb3b1 Merge pull request #58 from bartleyg/patch-1
  • 1127c84 fix copy pasta test
  • 7ff4e92 Update changelog for v1.1.0
  • Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.19.2 to 0.20.2

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.2

What's Changed

Full Changelog: google/go-containerregistry@v0.20.1...v0.20.2

v0.20.1

What's Changed

Full Changelog: google/go-containerregistry@v0.20.0...v0.20.1

v0.20.0

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.19.2...v0.20.0

Commits

Updates github.com/sylabs/sif/v2 from 2.17.1 to 2.19.0

Release notes

Sourced from github.com/sylabs/sif/v2's releases.

v2.19.0

This release drops support for Go 1.21.

What's Changed

Full Changelog: sylabs/sif@v2.18.0...v2.19.0

v2.18.0

What's Changed

Full Changelog: sylabs/sif@v2.17.1...v2.18.0

Commits
  • 518b3a3 build(deps): bump github.com/sigstore/sigstore from 1.8.4 to 1.8.8 (#381)
  • afa5a4e Merge pull request #382 from tri-adam/go-1.23
  • 9a07943 chore: bump module to Go 1.22
  • dae7b25 build(deps): bump github.com/google/go-containerregistry (#380)
  • 99e2ac5 build(deps): bump github.com/sebdah/goldie/v2 from 2.5.3 to 2.5.5 (#379)
  • 7204492 build(deps): bump github.com/google/go-containerregistry (#378)
  • a2a8352 Merge pull request #374 from tri-adam/delete-objects
  • 68683b4 feat: add DeleteObjects
  • 94b0b65 build(deps): bump github.com/google/go-containerregistry (#376)
  • 48f265f Merge pull request #373 from tri-adam/compaction
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.25.0 to 0.26.0

Commits
  • 5bcd010 go.mod: update golang.org/x dependencies
  • 3375612 ssh: add support for unpadded RSA signatures
  • bb80217 ssh: don't use dsa keys in integration tests
  • 6879722 ssh: remove go 1.21+ dependency on slices
  • e983fa2 sha3: Avo port of keccakf_amd64.s
  • 80fd972 LICENSE: update per Google Legal
  • f2bc3a6 x509roots/fallback/internal/goissue52287: delete
  • d66d9c3 x509roots/fallback: update bundle
  • See full diff in compare view

Updates github.com/docker/go-connections from 0.4.0 to 0.5.0

Commits
  • fa09c95 Merge pull request #108 from thaJeztah/carry_6
  • 7a67a58 Swap CloseRead and CloseWrite
  • 481d3d2 Merge pull request #107 from thaJeztah/drop_legacy_go
  • 9548f9f tlsconfig: remove deprecated io/ioutil
  • c564c21 drop support for go1.17 and older
  • 7cbebcf gha: update actions
  • 2cf423f tlsconfig: move allTLSVersions var
  • dca283b tlsconfig: drop support for go1.12 and older
  • 21876c5 tlsconfig: drop support for go1.6 and older
  • 4d174db tlsconfig: drop support for go1.4 and older
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 20, 2024
@wagoodman
Copy link
Contributor

@dependabot rebase

@dependabot
chore(deps): bump the go group across 1 directory with 8 updates
dc5406b 
Bumps the go group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/containerd/containerd](https://github.com/containerd/containerd) | `1.7.11` | `1.7.20` |
| [github.com/docker/cli](https://github.com/docker/cli) | `27.0.3+incompatible` | `27.1.2+incompatible` |
| [github.com/docker/docker](https://github.com/docker/docker) | `27.0.3+incompatible` | `27.1.2+incompatible` |
| [github.com/go-test/deep](https://github.com/go-test/deep) | `1.0.8` | `1.1.1` |
| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.19.2` | `0.20.2` |
| [github.com/sylabs/sif/v2](https://github.com/sylabs/sif) | `2.17.1` | `2.19.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.26.0` |
| [github.com/docker/go-connections](https://github.com/docker/go-connections) | `0.4.0` | `0.5.0` |



Updates `github.com/containerd/containerd` from 1.7.11 to 1.7.20
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](containerd/containerd@v1.7.11...v1.7.20)

Updates `github.com/docker/cli` from 27.0.3+incompatible to 27.1.2+incompatible
- [Commits](docker/cli@v27.0.3...v27.1.2)

Updates `github.com/docker/docker` from 27.0.3+incompatible to 27.1.2+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v27.0.3...v27.1.2)

Updates `github.com/go-test/deep` from 1.0.8 to 1.1.1
- [Release notes](https://github.com/go-test/deep/releases)
- [Changelog](https://github.com/go-test/deep/blob/master/CHANGES.md)
- [Commits](go-test/deep@v1.0.8...v1.1.1)

Updates `github.com/google/go-containerregistry` from 0.19.2 to 0.20.2
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](google/go-containerregistry@v0.19.2...v0.20.2)

Updates `github.com/sylabs/sif/v2` from 2.17.1 to 2.19.0
- [Release notes](https://github.com/sylabs/sif/releases)
- [Changelog](https://github.com/sylabs/sif/blob/main/.goreleaser.yml)
- [Commits](sylabs/sif@v2.17.1...v2.19.0)

Updates `golang.org/x/crypto` from 0.25.0 to 0.26.0
- [Commits](golang/crypto@v0.25.0...v0.26.0)

Updates `github.com/docker/go-connections` from 0.4.0 to 0.5.0
- [Commits](docker/go-connections@v0.4.0...v0.5.0)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/docker/cli
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/go-test/deep
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/google/go-containerregistry
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/sylabs/sif/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/docker/go-connections
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-b755bb79ed branch from 003e4cd to dc5406b Compare August 21, 2024 14:15
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 23, 2024

Superseded by #285.

@dependabot dependabot bot closed this Aug 23, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/go-b755bb79ed branch August 23, 2024 20:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@wagoodman