chore(deps): bump the go group across 1 directory with 8 updates

[dependabot]

Bumps the go group with 8 updates in the / directory:

Package	From	To
github.com/containerd/containerd	1.7.11	1.7.20
github.com/docker/cli	27.0.3+incompatible	27.1.2+incompatible
github.com/docker/docker	27.1.1+incompatible	27.1.2+incompatible
github.com/go-test/deep	1.0.8	1.1.1
github.com/google/go-containerregistry	0.19.2	0.20.2
github.com/sylabs/sif/v2	2.17.1	2.19.1
golang.org/x/crypto	0.25.0	0.26.0
github.com/docker/go-connections	0.4.0	0.5.0

Updates github.com/containerd/containerd from 1.7.11 to 1.7.20

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.20

Welcome to the v1.7.20 release of containerd!

The twentieth patch release for containerd 1.7 contains various fixes and updates.

Highlights

• Support for dropping inheritable capabilities (#10469)

Container Runtime Interface (CRI)

• Make PodSandboxStatus friendlier to shim crashes (#10461)
• Handle empty DNSConfig differently than unspecified (#10462)
• Fix for [cri] ttrpc: closed during ListPodSandboxStats (#10423)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

• Derek McGowan
• Akihiro Suda
• Phil Estes
• Akhil Mohan
• Bryant Biggs
• Danny Canter
• Davanum Srinivas
• Mike Brown
• Samuel Karp
• Tim Hockin

Changes

• Prepare release notes for v1.7.20 (#10481)
  • 7f2d4cd97 Prepare release notes for v1.7.20
• deps: Update otelgrpc (#10413)
  • 3a02c523d deps: Update otelgrpc
• Make PodSandboxStatus friendlier to shim crashes (#10461)
  • df86bdd5d CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
• Handle empty DNSConfig differently than unspecified (#10462)
  • 209ee4f10 CRI: An empty DNSConfig != unspecified
• Support for dropping inheritable capabilities (#10469)
  • ce65228af Support for dropping inheritable capabilities
• Fix for [cri] ttrpc: closed during ListPodSandboxStats (#10423)
  • 610498df7 Fix for [cri] ttrpc: closed during ListPodSandboxStats
• update to go1.21.12 / go1.22.5 (#10426)
  • e61c7932e update to go1.21.12 / go1.22.5

... (truncated)

Changelog

Sourced from github.com/containerd/containerd's changelog.

Versioning and Release

This document details the versioning and release plan for containerd. Stability is a top goal for this project, and we hope that this document and the processes it entails will help to achieve that. It covers the release process, versioning numbering, backporting, API stability and support horizons.

If you rely on containerd, it would be good to spend time understanding the areas of the API that are and are not supported and how they impact your project in the future.

This document will be considered a living document. Supported timelines, backport targets and API stability guarantees will be updated here as they change.

If there is something that you require or this document leaves out, please reach out by filing an issue.

Releases

Releases of containerd will be versioned using dotted triples, similar to Semantic Version. For the purposes of this document, we will refer to the respective components of this triple as <major>.<minor>.<patch>. The version number may have additional information, such as alpha, beta and release candidate qualifications. Such releases will be considered "pre-releases".

Major and Minor Releases

Major and minor releases of containerd will be made from main. Releases of containerd will be marked with GPG signed tags and announced at https://github.com/containerd/containerd/releases. The tag will be of the format v<major>.<minor>.<patch> and should be made with the command git tag -s v<major>.<minor>.<patch>.

After a minor release, a branch will be created, with the format release/<major>.<minor> from the minor tag. All further patch releases will be done from that branch. For example, once we release v1.0.0, a branch release/1.0 will be created from that tag. All future patch releases will be done against that branch.

Pre-releases

Pre-releases, such as alphas, betas and release candidates will be conducted from their source branch. For major and minor releases, these releases will be done from main. For patch releases, these pre-releases should be done within the corresponding release branch.

While pre-releases are done to assist in the stabilization process, no guarantees are provided.

... (truncated)

Commits

• 8fc6bcf Merge pull request #10481 from dmcgowan/prepare-v1.7.20
• 7f2d4cd Prepare release notes for v1.7.20
• 7eb0501 Merge pull request #10413 from austinvazquez/cherry-pick-78421616e0a6ba76ac25...
• 34ea461 Merge pull request #10461dims/automated-cherry-pick-of-#8367
• 87c908e Merge pull request #10462dims/automated-cherry-pick-of-#9730
• b06e353 Merge pull request #10469dims/automated-cherry-pick-of-#8356
• 209ee4f CRI: An empty DNSConfig != unspecified
• ce65228 Support for dropping inheritable capabilities
• df86bdd CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
• 923bb1f Merge pull request #10423 from dims/cri-ttrpc-closed-during-ListPodSandboxStats
• Additional commits viewable in compare view

Updates github.com/docker/cli from 27.0.3+incompatible to 27.1.2+incompatible

Commits

• d01f264 Merge pull request #5333 from thaJeztah/27.x_bump_engine
• 65dec14 vendor: github.com/docker/docker f9522e5e96c3 (v27.1.2-dev)
• 1f80c54 Merge pull request #5339 from thaJeztah/27.x_backport_fix_bps_limit
• 33573e2 Merge pull request #5343 from dvdksn/cp-docs-manuals-refactor-linkfix
• 73452e3 docs: update internal links after refactor
• bcd90be docs: fix link to http proxy document
• f62c68e Merge pull request #5337 from vvoland/5327-27.x
• 946d109 run: fix GetList return empty issue for throttledevice
• 096e42b Merge pull request #5335 from vvoland/5310-27.x
• 984ef90 plugins: don't panic on Close if PluginServer nil
• Additional commits viewable in compare view

Updates github.com/docker/docker from 27.1.1+incompatible to 27.1.2+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.1.2

27.1.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.1.2 milestone
• moby/moby, 27.1.2 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

Bug fixes and enhancements

• Fix a regression that could result in a ResourceExhausted desc = grpc: received message larger than max error when building from a large Dockerfile. moby/moby#48245
• CLI: Fix docker attach printing a spurious context cancelled error message. docker/cli#5296
• CLI: Fix docker attach exiting on SIGINT instead of forwarding the signal to the container and waiting for it to exit. docker/cli#5302
• CLI: Fix --device-read-bps and --device-write-bps options not taking effect. docker/cli#5339
• CLI: Fix a panic happening in some cases while running a plugin. docker/cli#5337

Packaging updates

• Update BuildKit to v0.15.1. moby/moby#48246
• Update Buildx to v0.16.2. docker/docker-ce-packaging#1043
• Update Go runtime to 1.21.13. moby/moby#48301, docker/cli#5325, docker/docker-ce-packaging#1046
• Remove unused docker-proxy.exe binary from Windows packages. docker/docker-ce-packaging#1045

Commits

• f9522e5 Merge pull request #48315 from vvoland/48169-27.x
• a037b72 Merge pull request #48314 from vvoland/48275-27.x
• fc0150b daemon/containerd: rm use of regexp
• 73c01d0 image/v1: rm regexp use
• c93fe4a layer: rm regexp use
• 31459c8 docs/api: swagger: fix x-nullable for SystemInfo.Containerd (api v1.46)
• 35d430c api/swagger: fix x-nullable for SystemInfo.Containerd
• f5fa090 Merge pull request #48308 from thaJeztah/27.x_backport_migrate_userns
• a17f5d4 Merge pull request #48294 from austinvazquez/cherry-pick-2b5ffa0b63c76e8bb4eb...
• 80a59c2 migrate to github.com/moby/sys/userns
• Additional commits viewable in compare view

Updates github.com/go-test/deep from 1.0.8 to 1.1.1

Release notes

Sourced from github.com/go-test/deep's releases.

v1.1.1

What's Changed

• Fix copy pasta error in TestNilMapsAreEmpty by @​bartleyg in go-test/deep#58
• Add an option to consider nil pointers to be equivalent to zero values by @​seveas in go-test/deep#61

New Contributors

• @​bartleyg made their first contribution in go-test/deep#58
• @​seveas made their first contribution in go-test/deep#61

Full Changelog: go-test/deep@v1.1.0...v1.1.1

v1.1.0

New minor release, v1.1, that adds support for optional flags.

What's Changed

• Implment issue 28 with FLAG_IGNORE_SLICE_ORDER by @​daniel-nichter in go-test/deep#56

Full Changelog: go-test/deep@v1.0.9...v1.1.0

v1.0.9

What's Changed

• Remove Travis CI, use GitHub Actinos instead by @​daniel-nichter in go-test/deep#53
• Fix issue 45: don't try to call Error method on unexported field by @​daniel-nichter in go-test/deep#54
• Add CompareFunctions (issue 46) by @​daniel-nichter in go-test/deep#55

Full Changelog: go-test/deep@v1.0.8...v1.0.9

Changelog

Sourced from github.com/go-test/deep's changelog.

v1.1.1 released 2024-06-23

• Added NilPointersAreZero option: causes a nil pointer to be equal to a zero value (PR #61) (@​seveas)
• Updated test matrix to go1.22, go1.21, and go1.20

v1.1.0 released 2022-12-09

• Add optional flags: Equal(a, b, flags..) and FLAG_IGNORE_SLICE_ORDER (issue #28, PR #56) (@​alenkacz)

---

v1.0.9 released 2022-12-09

• Fixed issue #45: Panic when comparing errors in unexported fields (PR #54) (@​seveas)
• Fixed issue #46: Functions are handled differently from reflect.DeepEqual (PR #55) (@​countcb)
• Updated test matrix to go1.17, go1.18, and go1.19 and moved testing to GitHub Actions

Commits

• 9e863ff Release v1.1.1
• dc5b2f6 Update SECURITY.md
• 185886d Restore 100% test coverage (NilPointersAreZero case)
• 47ae1b8 Merge pull request #61 from seveas/nil-pointers-are-zero
• 93c35ac Merge branch 'master' into nil-pointers-are-zero
• 2982c5c Update test matrix to latest 3 Go versions
• 2b8252e Add an option to consider nil pointers to be equivalent to zero values
• 95fb3b1 Merge pull request #58 from bartleyg/patch-1
• 1127c84 fix copy pasta test
• 7ff4e92 Update changelog for v1.1.0
• Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.19.2 to 0.20.2

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.2

What's Changed

• deps: bump docker dep by @​imjasonh in google/go-containerregistry#1991

Full Changelog: google/go-containerregistry@v0.20.1...v0.20.2

v0.20.1

What's Changed

• Create remote.Push by @​mattmoor in google/go-containerregistry#1978

Full Changelog: google/go-containerregistry@v0.20.0...v0.20.1

v0.20.0

What's Changed

• Referrer API must return correct Content-Type by @​GregoireW in google/go-containerregistry#1968
• 🚨 POTENTIALLY BREAKING: Restore blind-write to remote.Put by @​jonjohnsonjr in google/go-containerregistry#1970

New Contributors

• @​GregoireW made their first contribution in google/go-containerregistry#1968

Full Changelog: google/go-containerregistry@v0.19.2...v0.20.0

Commits

• c195f15 deps: bump docker dep (#1991)
• c3d1dcc Create remote.Push (#1978)
• d36047a Restore blind-write to remote.Put (#1970)
• 9915a85 Referrer API must return correct Content-Type (#1968)
• See full diff in compare view

Updates github.com/sylabs/sif/v2 from 2.17.1 to 2.19.1

Release notes

Sourced from github.com/sylabs/sif/v2's releases.

v2.19.1

What's Changed

• chore: bump golangci-lint to v1.60 by @​tri-adam in sylabs/sif#383
• fix: correct the range check for descriptor IDs by @​tri-adam in sylabs/sif#384

Full Changelog: sylabs/sif@v2.19.0...v2.19.1

v2.19.0

This release drops support for Go 1.21.

What's Changed

• build(deps): bump github.com/google/go-containerregistry from 0.20.0 to 0.20.1 by @​dependabot in sylabs/sif#378
• build(deps): bump github.com/sebdah/goldie/v2 from 2.5.3 to 2.5.5 by @​dependabot in sylabs/sif#379
• build(deps): bump github.com/google/go-containerregistry from 0.20.1 to 0.20.2 by @​dependabot in sylabs/sif#380
• chore: bump module to Go 1.22 by @​tri-adam in sylabs/sif#382
• build(deps): bump github.com/sigstore/sigstore from 1.8.4 to 1.8.8 by @​dependabot in sylabs/sif#381

Full Changelog: sylabs/sif@v2.18.0...v2.19.0

v2.18.0

What's Changed

• docs: update links to Go docs by @​tri-adam in sylabs/sif#375
• refactor: improve compaction logic by @​tri-adam in sylabs/sif#373
• build(deps): bump github.com/google/go-containerregistry from 0.19.2 to 0.20.0 by @​dependabot in sylabs/sif#376
• feat: add DeleteObjects by @​tri-adam in sylabs/sif#374

Full Changelog: sylabs/sif@v2.17.1...v2.18.0

Commits

• 1ed3ce5 Merge pull request #384 from tri-adam/overflow-fix
• 6f00aba fix: check descriptor capacity during SIF creation
• c1fcc37 fix: correct the range check for descriptor IDs
• fd8a090 Merge pull request #383 from tri-adam/golangci-lint-v1.60
• d2a9ddc fix: address lint with golangci-lint v1.60
• f4453b3 ci: remove deprecated exportloopref linter
• dd77d01 chore: bump golangci-lint to v1.60
• 518b3a3 build(deps): bump github.com/sigstore/sigstore from 1.8.4 to 1.8.8 (#381)
• afa5a4e Merge pull request #382 from tri-adam/go-1.23
• 9a07943 chore: bump module to Go 1.22
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.25.0 to 0.26.0

Commits

• 5bcd010 go.mod: update golang.org/x dependencies
• 3375612 ssh: add support for unpadded RSA signatures
• bb80217 ssh: don't use dsa keys in integration tests
• 6879722 ssh: remove go 1.21+ dependency on slices
• e983fa2 sha3: Avo port of keccakf_amd64.s
• 80fd972 LICENSE: update per Google Legal
• f2bc3a6 x509roots/fallback/internal/goissue52287: delete
• d66d9c3 x509roots/fallback: update bundle
• See full diff in compare view

Updates github.com/docker/go-connections from 0.4.0 to 0.5.0

Commits

• fa09c95 Merge pull request #108 from thaJeztah/carry_6
• 7a67a58 Swap CloseRead and CloseWrite
• 481d3d2 Merge pull request #107 from thaJeztah/drop_legacy_go
• 9548f9f tlsconfig: remove deprecated io/ioutil
• c564c21 drop support for go1.17 and older
• 7cbebcf gha: update actions
• 2cf423f tlsconfig: move allTLSVersions var
• dca283b tlsconfig: drop support for go1.12 and older
• 21876c5 tlsconfig: drop support for go1.6 and older
• 4d174db tlsconfig: drop support for go1.4 and older
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #286.

[dependabot]

Superseded by #286.