build(deps): bump github.com/containers/buildah from 1.35.4 to 1.37.4

Bumps github.com/containers/buildah from 1.35.4 to 1.37.4.

Release notes

Sourced from github.com/containers/buildah's releases.

v1.37.4

What's Changed

Notable changes

[release-1.37] Fix CVE-2024-9407 and CVE-2024-9341 by @Luap99 in containers/buildah#5764

Full Changelog: https://github.com/containers/buildah/compare/v1.37.3...v1.37.4

v1.37.3

What's Changed

Notable changes

[release-1.37] Bump Buildah to v1.37.2, c/common v0.60.2, c/image v5.32.2 by @TomSweeneyRedHat in containers/buildah#5696

[release-1.37] Use Epoch: 2 and respect the epoch in dependencies. by @openshift-cherrypick-robot in containers/buildah#5699

[release-1.37] imagebuildah.StageExecutor: clean up volumes/volumeCache by @nalind in containers/buildah#5740

[release-1.37] manifest add --artifact: handle multiple values by @openshift-cherrypick-robot in containers/buildah#5739

[skip-ci] Release 1.37 packit backports by @lsm5 in containers/buildah#5735

[release-1.37] Do not error on trying to write IMA xattr as rootless by @mheon in containers/buildah#5746

Full Changelog: https://github.com/containers/buildah/compare/v1.37.2...v1.37.3

v1.37.2

What's Changed

Notable changes

[release-1.37] Bump Buildah to v1.37.2, c/common v0.60.2, c/image v5.32.2 by @TomSweeneyRedHat in containers/buildah#5696

Full Changelog: https://github.com/containers/buildah/compare/v1.37.1...v1.37.2

v1.37.1

[release-1.37] Bump c/common v0.60.1, c/image v5.32.1 [release-1.37] Bump to Buildah v1.37.1

Full Changelog: https://github.com/containers/buildah/compare/v1.37.0...v1.37.1

v1.37.0

What's Changed

Notable changes

Bump to Buildah v1.36.0 by @TomSweeneyRedHat in containers/buildah#5545

... (truncated)

Changelog

Sourced from github.com/containers/buildah's changelog.

v1.37.4 (2024-10-07)

Fixed CVE-2024-9407 and CVE-2024-934

v1.37.3 (2024-09-20)

Do not error on trying to write IMA xattr as rootless
imagebuildah.StageExecutor: clean up volumes/volumeCache
`manifest add --artifact`: handle multiple values
Packit: split out ELN jobs and reuse fedora downstream targets
Packit: Enable sidetags for bodhi updates
Use Epoch: 2 and respect the epoch in dependencies.

v1.37.2 (2024-08-20)

[release-1.37] Bump c/common to v0.60.2, c/image to v5.32.2

v1.37.1 (2024-08-12)

[release-1.37] Bump c/common v0.60.1, c/image v5.32.1

vv1.37.0 (2024-07-26)

Bump c/storage, c/image, c/common for v1.37.0
"build with basename resolving user arg" tests: correct ARG use
bud-multiple-platform-no-run test: correct ARG use
imagebuildah: always have default values for $TARGET... args ready
bump github.com/openshift/imagebuilder to v1.2.14
fix(deps): update module github.com/docker/docker to v27.1.1+incompatible
fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.1
fix(deps): update module github.com/docker/docker to v27.1.0+incompatible
CI: use local registry, part 2 of 2
CI: use local registry, part 1 of 2
fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.1
Revert "fix(deps): update github.com/containers/image/v5 to v5.31.1"
Replace libimage.LookupReferenceFunc with the manifests version
conformance tests: enable testing CompatVolumes
conformance tests: add a test that tries to chown a volume
imagebuildah: make traditional volume handling not the default
StageExecutor.prepare(): mark base image volumes for preservation
fix(deps): update module github.com/containers/image/v5 to v5.31.1
Vendor in latest containers/(common, storage, image)
fix(deps): update module golang.org/x/term to v0.22.0
fix(deps): update module golang.org/x/sys to v0.22.0
fix(deps): update golang.org/x/exp digest to 7f521ea
fix(deps): update github.com/containers/luksy digest to a8846e2
imagebuildah.StageExecutor.Copy(): reject new flags for now
bump github.com/openshift/imagebuilder to v1.2.11
Rework parsing of --pull flags
fix(deps): update module github.com/containers/image/v5 to v5.31.1

... (truncated)

Commits

df9247c Merge pull request #5768 from nalind/release-v1.37.4
9dfacbb Tag v1.37.4
e4e2ad5 Merge pull request #5764 from Luap99/release-1.37
b55cbb8 vendor: update c/common to v0.60.4
e289e28 CVE-2024-9407: validate "bind-propagation" flag settings
138ca25 Merge pull request #5749 from TomSweeneyRedHat/dev/tsweeney/v1.37.3
956095e [release-1.37] Bump to Buildah v1.37.3
f0e0653 Merge pull request #5746 from mheon/backport_5741
8165aae Do not error on trying to write IMA xattr as rootless
b67fa45 Merge pull request #5735 from lsm5/release-1.37-packit-backports
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Vanilla-OS / ABRoot