Bump the go-modules group across 1 directory with 54 updates

Bumps the go-modules group with 32 updates in the / directory:

Package	From	To
github.com/BurntSushi/toml	`1.3.2`	`1.4.0`
github.com/onsi/gomega	`1.30.0`	`1.34.1`
github.com/paketo-buildpacks/occam	`0.18.0`	`0.18.7`
dario.cat/mergo	`1.0.0`	`1.0.1`
github.com/CycloneDX/cyclonedx-go	`0.7.2`	`0.9.0`
github.com/DataDog/zstd	`1.5.5`	`1.5.6`
github.com/Microsoft/hcsshim	`0.11.7`	`0.12.6`
github.com/andybalholm/brotli	`1.0.6`	`1.1.0`
github.com/cloudflare/circl	`1.3.7`	`1.4.0`
github.com/cyphar/filepath-securejoin	`0.2.4`	`0.3.1`
github.com/docker/cli	`27.0.2+incompatible`	`27.1.2+incompatible`
github.com/docker/docker-credential-helpers	`0.8.0`	`0.8.2`
github.com/gabriel-vasile/mimetype	`1.4.3`	`1.4.5`
github.com/go-git/go-git/v5	`5.11.0`	`5.12.0`
github.com/huandu/xstrings	`1.4.0`	`1.5.0`
github.com/klauspost/compress	`1.17.4`	`1.17.9`
github.com/knqyf263/go-rpmdb	`0.0.0-20230301153543-ba94b245509b`	`0.1.1`
github.com/mattn/go-runewidth	`0.0.15`	`0.0.16`
github.com/moby/sys/sequential	`0.5.0`	`0.6.0`
github.com/moby/sys/user	`0.1.0`	`0.3.0`
github.com/pierrec/lz4/v4	`4.1.19`	`4.1.21`
github.com/rivo/uniseg	`0.4.4`	`0.4.7`
github.com/sassoftware/go-rpmutils	`0.2.0`	`0.4.0`
github.com/shirou/gopsutil/v3	`3.23.12`	`3.24.5`
github.com/shopspring/decimal	`1.3.1`	`1.4.0`
github.com/spdx/tools-golang	`0.5.3`	`0.5.5`
github.com/spf13/cast	`1.6.0`	`1.7.0`
github.com/sylabs/sif/v2	`2.15.0`	`2.19.0`
github.com/tklauser/go-sysconf	`0.3.13`	`0.3.14`
github.com/vbatts/go-mtree	`0.5.3`	`0.5.4`
golang.org/x/sync	`0.7.0`	`0.8.0`
golang.org/x/text	`0.16.0`	`0.17.0`

Updates github.com/BurntSushi/toml from 1.3.2 to 1.4.0

Release notes

Sourced from github.com/BurntSushi/toml's releases.

v1.4.0

This version requires Go 1.18

Add toml.Marshal() (#405)

Require 2-digit hour (#320)

Wrap UnmarshalTOML() and UnmarshalText() return values in ParseError for position information (#398)

Fix inline tables with dotted keys inside inline arrays (e.g. k=[{a.b=1}]) (#400)

Commits

1e2c053 Undeprecate PrimitiveDecode and MetaData.PrimitiveDecode()
f8f7e48 Update toml-test
9a80667 Add -json flag to tomlv
3203540 fuzz: move fuzz_targets from oss-fuzz (#406)
77ce858 Add Marshal Function (#405)
0e879cb Fix panic when trying to set subkey for a value that's not a table
c299e75 Update toml-test
4223137 Fix inline tables with dotted keys inside inline arrays (#400)
45e7e49 Update toml-test
c320c2d Fix utf8.RuneError test
Additional commits viewable in compare view

Updates github.com/onsi/gomega from 1.30.0 to 1.34.1

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.34.1

1.34.1

Maintenance

Use slices from exp/slices to keep golang 1.20 compat [5e71dcd]

v1.34.0

1.34.0

Features

Add RoundTripper method to ghttp.Server [c549e0d]

Fixes

fix incorrect handling of nil slices in HaveExactElements (fixes #771) [878940c]

issue_765 - fixed bug in Hopcroft-Karp algorithm [ebadb67]

Maintenance

bump ginkgo [8af2ece]

Fix typo in docs [123a071]

Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.17.3 (#756) [0e69083]

Bump google.golang.org/protobuf from 1.33.0 to 1.34.1 (#755) [2675796]

Bump golang.org/x/net from 0.24.0 to 0.25.0 (#754) [4160c0f]

Bump github-pages from 230 to 231 in /docs (#748) [892c303]

v1.33.1

1.33.1

Fixes

fix confusing eventually docs [3a66379]

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.17.1 to 2.17.2 [e9bc35a]

v1.33.0

1.33.0

Features

Receive not accepts Receive(<POINTER>, MATCHER>), allowing you to pick out a specific value on the channel that satisfies the provided matcher and is stored in the provided pointer.

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.15.0 to 2.17.1 (#745) [9999deb]

Bump github-pages from 229 to 230 in /docs (#735) [cb5ff21]

Bump golang.org/x/net from 0.20.0 to 0.23.0 (#746) [bac6596]

v1.32.0

1.32.0

Maintenance

Migrate github.com/golang/protobuf to google.golang.org/protobuf [436a197]

... (truncated)

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.34.1

Maintenance

Use slices from exp/slices to keep golang 1.20 compat [5e71dcd]

1.34.0

Features

Add RoundTripper method to ghttp.Server [c549e0d]

Fixes

fix incorrect handling of nil slices in HaveExactElements (fixes #771) [878940c]

issue_765 - fixed bug in Hopcroft-Karp algorithm [ebadb67]

Maintenance

bump ginkgo [8af2ece]

Fix typo in docs [123a071]

Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.17.3 (#756) [0e69083]

Bump google.golang.org/protobuf from 1.33.0 to 1.34.1 (#755) [2675796]

Bump golang.org/x/net from 0.24.0 to 0.25.0 (#754) [4160c0f]

Bump github-pages from 230 to 231 in /docs (#748) [892c303]

1.33.1

Fixes

fix confusing eventually docs [3a66379]

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.17.1 to 2.17.2 [e9bc35a]

1.33.0

Features

Receive not accepts Receive(<POINTER>, MATCHER>), allowing you to pick out a specific value on the channel that satisfies the provided matcher and is stored in the provided pointer.

Maintenance

Bump github.com/onsi/ginkgo/v2 from 2.15.0 to 2.17.1 (#745) [9999deb]

Bump github-pages from 229 to 230 in /docs (#735) [cb5ff21]

Bump golang.org/x/net from 0.20.0 to 0.23.0 (#746) [bac6596]

1.32.0

Maintenance

Migrate github.com/golang/protobuf to google.golang.org/protobuf [436a197]

This release drops the deprecated github.com/golang/protobuf and adopts google.golang.org/protobuf. Care was taken to ensure the release is backwards compatible (thanks @jbduncan !). Please open an issue if you run into one.

chore: test with Go 1.22 (#733) [32ef35e]

Bump golang.org/x/net from 0.19.0 to 0.20.0 (#717) [a0d0387]

... (truncated)

Commits

fa057b8 v1.34.1
5e71dcd Use slices from exp/slices to keep golang 1.20 compat
32e5498 v1.34.0
cb3fa6a run go mod tidy and wonder why go get doesnt just run it for me in the first ...
8af2ece bump ginkgo
878940c fix incorrect handling of nil slices in HaveExactElements (fixes #771)
f5bec80 clean up bipartitegraph tests
ebadb67 issue_765 - fixed bug in Hopcroft-Karp algorithm
123a071 Fix typo in docs
c549e0d Add RoundTripper method to ghttp.Server
Additional commits viewable in compare view

Updates github.com/paketo-buildpacks/occam from 0.18.0 to 0.18.7

Release notes

Sourced from github.com/paketo-buildpacks/occam's releases.

v0.18.7

What's Changed

Bump github.com/docker/docker from 26.1.3+incompatible to 26.1.4+incompatible by @dependabot in paketo-buildpacks/occam#305

Updates go mod toolchain version to 1.22.4 by @paketo-bot in paketo-buildpacks/occam#306

Buildpack packaging should always target linux by @ForestEckhardt in paketo-buildpacks/occam#307

Full Changelog: https://github.com/paketo-buildpacks/occam/compare/v0.18.6...v0.18.7

v0.18.6

What's Changed

Bump github.com/docker/docker from 26.0.1+incompatible to 26.0.2+incompatible by @dependabot in paketo-buildpacks/occam#290

Bump github.com/onsi/gomega from 1.32.0 to 1.33.0 by @dependabot in paketo-buildpacks/occam#291

Bump github.com/paketo-buildpacks/packit/v2 from 2.12.0 to 2.13.0 by @dependabot in paketo-buildpacks/occam#292

Bump github.com/docker/docker from 26.0.2+incompatible to 26.1.0+incompatible by @dependabot in paketo-buildpacks/occam#293

Bump github.com/onsi/gomega from 1.33.0 to 1.33.1 by @dependabot in paketo-buildpacks/occam#294

Bump github.com/docker/docker from 26.1.0+incompatible to 26.1.1+incompatible by @dependabot in paketo-buildpacks/occam#295

Bump github.com/paketo-buildpacks/packit/v2 from 2.13.0 to 2.14.0 by @dependabot in paketo-buildpacks/occam#296

Bump github.com/docker/docker from 26.1.1+incompatible to 26.1.2+incompatible by @dependabot in paketo-buildpacks/occam#298

Bump github.com/testcontainers/testcontainers-go from 0.30.0 to 0.31.0 by @dependabot in paketo-buildpacks/occam#297

Bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible by @dependabot in paketo-buildpacks/occam#299

Updates github-config by @paketo-bot in paketo-buildpacks/occam#289

Updates github-config by @paketo-bot in paketo-buildpacks/occam#303

Adds support of buildpackages in buildpack store and updates freezer by @ForestEckhardt in paketo-buildpacks/occam#302

Full Changelog: https://github.com/paketo-buildpacks/occam/compare/v0.18.5...v0.18.6

v0.18.5

What's Changed

use go 1.20 by @sophiewigmore in paketo-buildpacks/occam#288

Full Changelog: https://github.com/paketo-buildpacks/occam/compare/v0.18.4...v0.18.5

v0.18.4

What's Changed

remove toolchain from go.mod by @sophiewigmore in paketo-buildpacks/occam#287

Full Changelog: https://github.com/paketo-buildpacks/occam/compare/v0.18.3...v0.18.4

v0.18.3

What's Changed

Bump google.golang.org/protobuf from 1.31.0 to 1.33.0 by @dependabot in paketo-buildpacks/occam#280

Bump github.com/testcontainers/testcontainers-go from 0.26.0 to 0.30.0 by @dependabot in paketo-buildpacks/occam#285

Bump github.com/onsi/gomega from 1.30.0 to 1.32.0 by @dependabot in paketo-buildpacks/occam#282

Bump github.com/docker/docker from 25.0.5+incompatible to 26.0.1+incompatible by @dependabot in paketo-buildpacks/occam#286

Bump github.com/google/go-containerregistry from 0.14.0 to 0.19.1 by @dependabot in paketo-buildpacks/occam#281

... (truncated)

Commits

aff3030 Buildpack packaging should always target linux
7b8692d Updates go mod toolchain version to 1.22.4
ddf2781 Bump github.com/docker/docker
e9fee75 Adds support of buildpackages in buildpack store and updates freezer (#302)
dda57be Updating github-config
f0b937b Use stable go version everywhere.
354d744 Bump to go 1.21
64bc107 Updating github-config
d00fe4b Bump github.com/docker/docker
37502e4 Bump github.com/testcontainers/testcontainers-go from 0.30.0 to 0.31.0
Additional commits viewable in compare view

Updates github.com/paketo-buildpacks/packit/v2 from 2.12.0 to 2.14.0

Release notes

Sourced from github.com/paketo-buildpacks/packit/v2's releases.

v2.14.0

What's Changed

Fixes mirror bug when originalHost is excluded by @TisVictress in paketo-buildpacks/packit#569

Bump github.com/onsi/gomega from 1.33.0 to 1.33.1 by @dependabot in paketo-buildpacks/packit#571

Support reading service bindings from VCAP_SERVICES env var by @pbusko in paketo-buildpacks/packit#566

New Contributors

@pbusko made their first contribution in paketo-buildpacks/packit#566 🥳

Full Changelog: https://github.com/paketo-buildpacks/packit/compare/v2.13.0...v2.14.0

v2.13.0

What's Changed

Bump github.com/onsi/gomega from 1.28.1 to 1.29.0 by @dependabot in paketo-buildpacks/packit#531

Bump github.com/google/uuid from 1.3.1 to 1.4.0 by @dependabot in paketo-buildpacks/packit#533

Updates github-config by @paketo-bot in paketo-buildpacks/packit#532

Bump github.com/onsi/gomega from 1.29.0 to 1.30.0 by @dependabot in paketo-buildpacks/packit#536

Updates github-config by @paketo-bot in paketo-buildpacks/packit#534

Bump github.com/google/uuid from 1.4.0 to 1.5.0 by @dependabot in paketo-buildpacks/packit#541

Bump github.com/onsi/gomega from 1.30.0 to 1.31.0 by @dependabot in paketo-buildpacks/packit#544

Bump github.com/onsi/gomega from 1.31.0 to 1.31.1 by @dependabot in paketo-buildpacks/packit#547

Bump github.com/google/uuid from 1.5.0 to 1.6.0 by @dependabot in paketo-buildpacks/packit#548

Bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @dependabot in paketo-buildpacks/packit#556

Bump github.com/onsi/gomega from 1.31.1 to 1.32.0 by @dependabot in paketo-buildpacks/packit#560

Bump github.com/ulikunitz/xz from 0.5.11 to 0.5.12 by @dependabot in paketo-buildpacks/packit#562

Bump github.com/onsi/gomega from 1.32.0 to 1.33.0 by @dependabot in paketo-buildpacks/packit#568

Allows users to set a dependency mirror by @TisVictress in paketo-buildpacks/packit#563

New Contributors

@TisVictress made their first contribution in paketo-buildpacks/packit#563

Full Changelog: https://github.com/paketo-buildpacks/packit/compare/v2.12.0...v2.13.0

Commits

13393ec Support reading service bindings from VCAP_SERVICES env var (#566)
35d8f76 Bump github.com/onsi/gomega from 1.33.0 to 1.33.1
ce376b7 Fixes mirror bug when originalHost is excluded (#569)
4c9f338 Allows users to set a dependency mirror (#563)
4e9c21d Bump github.com/onsi/gomega from 1.32.0 to 1.33.0
dd77ec5 Bump github.com/ulikunitz/xz from 0.5.11 to 0.5.12
95b8056 Bump github.com/onsi/gomega from 1.31.1 to 1.32.0
777a503 Bump github.com/stretchr/testify from 1.8.4 to 1.9.0
c1b785b Bump github.com/google/uuid from 1.5.0 to 1.6.0
b31dc83 Bump github.com/onsi/gomega from 1.31.0 to 1.31.1
Additional commits viewable in compare view

Updates dario.cat/mergo from 1.0.0 to 1.0.1

Release notes

Sourced from dario.cat/mergo's releases.

v1.0.1

What's Changed

fixes issue #187 by @vsemichev in darccio/mergo#253

fix: WithoutDereference should respect non-nil struct pointers by @joshkaplinsky in darccio/mergo#251

New Contributors

@vsemichev made their first contribution in darccio/mergo#253

@joshkaplinsky made their first contribution in darccio/mergo#251

Full Changelog: https://github.com/darccio/mergo/compare/v1.0.0...v1.0.1

Commits

59ea6a9 Merge pull request #251 from joshkaplinsky/joshkaplinsky/without-dereference-...
96f24af Merge pull request #253 from vsemichev/master
2f1a615 fixes issue #187. adds test to verify the fix.
4da170b fixes issue #187. attempt #3
a13a117 fixes issue #187. attempt #2
6b830ff fixes issue #187
f33862a WithoutDereference should respect structs
cde9f0e Merge pull request #246 from darccio/darccio/v1-frozen
f1e2fe5 chore: frozen v1
7f7b4af Update FUNDING.yml
Additional commits viewable in compare view

Updates github.com/CycloneDX/cyclonedx-go from 0.7.2 to 0.9.0

Release notes

Sourced from github.com/CycloneDX/cyclonedx-go's releases.

v0.9.0

Changelog

Features

729c284798ebe341ced210b661362f77d68cd655: feat: Add CycloneDX 1.6 fields swhid and omniborId (@snyk-tim)

b5d35959767efce95f50e96bf752c47fbe374496: feat: add manufacturer and authors (@snyk-tim)

c52e698d2fe3fbd60df6ff397f44e7b0ea15a4bc: feat: raise baseline go version to 1.20 (@nscuro)

Fixes

9166e10fdecaadd8a97ceed9636261d351d90a65: fix: ioutil -> io (@nscuro)

349fc8cd072e90d81c0328f1d9dab16aa30fcf60: fix: add bom-ref to OrganizationalEntity/Contact (@snyk-tim)

c97da90e259e0051e02e07300c75ad5e37a0311b: fix: handle breaking changes in skywalking-eyes (@nscuro)

Building and Packaging

ec6291e9ce9efbbb5d0010de4d8668fcbd05d148: build(deps): bump actions/checkout from 4.1.1 to 4.1.5 (@dependabot[bot])

899fe391ca4d756f1d5ba84478d3bc8795003cba: build(deps): bump actions/checkout from 4.1.5 to 4.1.6 (@dependabot[bot])

8674ed5ecc38b65e03908b5a74308c95039068a9: build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 (@dependabot[bot])

db3a1144a2ce30b85e5985d2755fa3e4a81c5ca8: build(deps): bump apache/skywalking-eyes from 0.4.0 to 0.6.0 (@dependabot[bot])

a3bd05518575f14d917685a02c689f81eedaad5c: build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (@dependabot[bot])

1179dd9051112c3b44a6cc577964c7d501a7258b: build(deps): bump gitpod/workspace-go from 8b9a0f6 to 8d15123 (@dependabot[bot])

d98494ea11dbb6550705d46d2473aa2a4a18e642: build(deps): bump gitpod/workspace-go from 9118b93 to 8b9a0f6 (@dependabot[bot])

1e2a3a09e86d720729a3ab7ec55ed3ffa75164a5: build(deps): bump gitpod/workspace-go from 94ae638 to 9118b93 (@dependabot[bot])

d4d6e35fcfb08d14589b4a693aac3f28978b640b: build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 (@dependabot[bot])

521d1ce7b555013f2b78d8c4a21954815863ab44: build(deps): bump golangci/golangci-lint-action from 4.0.0 to 6.0.1 (@dependabot[bot])

f1ebafe5e2d2af3a3d551eb23c583a93b7ebccbf: build(deps): bump goreleaser/goreleaser-action from 5.0.0 to 5.1.0 (@dependabot[bot])

Others

16d2143b3d74b77af8a309b331e1bc46a445f495: Fix(1.6): Added missing omitempty in NistQuantumSecurityLevel (@Petzys)

ffec473428073e1266169e97c1c64de95e89981b: chore: add license header (@mcombuechen)

1f8fdcc0047611a8baacfcd214c5ba3821fefd51: feat(1.6): add BOM.Declarations (@mcombuechen)

62b53429289d6cc6884b111256588150e3fed308: feat(1.6): add BOM.Definitions (@mcombuechen)

c33b9cb58eaa14e89740182fbde2a0cc888bc457: feat(1.6): add CBOM types (@Petzys)

10e10c8bc8fcac6f90c914828786f11e404919b8: feat(1.6): add JSON schema, XML namespace (@mcombuechen)

2dc599a8ad0f2be20e9bfc55ba75764758e6c7b8: feat(1.6): add License.Acknowledgement (@mcombuechen)

7a32fde7e9e9e5fb44f8f8aafadd83a21ff82aaf: feat(1.6): add PostalAddress type (@mcombuechen)

b8e4529773c3d12b172729567574ea6201231682: feat(1.6): add SpecVersion for v1.6 (@mcombuechen)

c8778287f29dd21bff18a4f27f71f495de7b4991: feat(1.6): add environmentalConsiderations (@mcombuechen)

e0e9c670e1617adbdd147cff7cc0747769a4e723: feat(1.6): add schema definitions for CycloneDX 1.6 (@mcombuechen)

b1636c2d6bb8aca4161402958a8d894aab7d66b5: feat(1.6): extend EvidenceOccurrence (@mcombuechen)

b4b3b94a60b1665c1d0492744032a9375ef751b1: fix(1.6): convert occurrences of OrganizationalEntity (@mcombuechen)

9332ca660b772bc538b3c274ceb3d9f81caa0eb8: fix(1.6): fix json, xml labels on BOM.Definitions (@mcombuechen)

v0.8.0

This release ships with almost complete support for v1.5 of the CycloneDX specification.

The only exception being the extended data flow support, as used in SaaS BOMs.

Unfortunately, there are also breaking changes in this release:

The type of Metadata.Tools has changed from *[]Tool to *ToolsChoice, to facilitate the deprecation of Tool in the spec

ToolsChoice holds both legacy *[]Tool, as well as the new *[]Component and *[]Service fields

The Tool type, as well as the ToolsChoice.Tools field are marked as deprecated

During encoding and decoding, it is asserted that only one of both options can be present, in accordance with the "One of" constraint of the spec

When encoding to lower spec versions than v1.5 (using EncodeVersion), Components and Services are automatically converted to legacy Tools

... (truncated)

Commits

98a070d Merge pull request #184 from CycloneDX/go-1.20
07eb476 Merge pull request #139 from CycloneDX/dependabot/github_actions/apache/skywa...
9166e10 fix: ioutil -> io
c97da90 fix: handle breaking changes in skywalking-eyes
c52e698 feat: raise baseline go version to 1.20
b1ff85b Merge pull request #181 from CycloneDX/dependabot/docker/gitpod/workspace-go-...
64d6336 Merge pull request #182 from CycloneDX/spec/1.6
199cd18 Merge pull request #183 from snyk/fix/convert-lic-header
ffec473 chore: add license header
1179dd9 build(deps): bump gitpod/workspace-go from 8b9a0f6 to 8d15123
Additional commits viewable in compare view

Updates github.com/DataDog/zstd from 1.5.5 to 1.5.6

Release notes

Sourced from github.com/DataDog/zstd's releases.

zstd 1.5.6

What's Changed

Fix readme typo by @colinlyguo in DataDog/zstd#136

Update upperBound ratio when guessing the required decompression buffer size by @sfluor in DataDog/zstd#141

Update vendored zstd to 1.5.6 by @Viq111 in DataDog/zstd#143

Full Changelog: https://github.com/DataDog/zstd/compare/v1.5.5+patch1...v1.5.6

Commits

b52f603 Merge pull request #143 from DataDog/viq111/1.5.6
cf4778e Update Readme for 1.5.6
ed87d43 Update vendored zstd to 1.5.6
dd7b332 Merge pull request #136 from colinlyguo/fix-readme
beb4dfd Merge pull request #141 from DataDog/sfluor-patch-1
e75a26a Update upperBound ratio when guessing the required decompression buffer size
c9a5141 fix readme
869dae0 Merge pull request #132 from DataDog/viq111/bulk-fix-highlycompressed-payloads
bf7b920 [bulk] Add extra empty payload decompression test
9c0d33f [bulk] Fix naming
Additional commits viewable in compare view

Updates github.com/ForestEckhardt/freezer from 0.0.12 to 0.1.0

Release notes

Sourced from github.com/ForestEckhardt/freezer's releases.

v0.1.0

What's Changed

Updates fetchers to create buildpackages by @ForestEckhardt in ForestEckhardt/freezer#11

Full Changelog: https://github.com/ForestEckhardt/freezer/compare/v0.0.12...v0.1.0

Commits

a57bf55 Updates fetchers to create buildpackages
See full diff in compare view

Updates github.com/Microsoft/hcsshim from 0.11.7 to 0.12.6

Release notes

Sourced from github.com/Microsoft/hcsshim's releases.

v0.12.6

What's Changed

[release/0.12] Backport commits from hcsshim/main to update module versions by @kiashok in microsoft/hcsshim#2237

Full Changelog: https://github.com/microsoft/hcsshim/compare/v0.12.5...v0.12.6

v0.12.5

What's Changed

[release/0.12] Adding state attribute to the HNSEndpoint struct to support hyperv co… by @ritikaguptams in microsoft/hcsshim#2183

[release/0.12] vendor: github.com/containerd/containerd v17.18 by @thaJeztah in microsoft/hcsshim#2186

[release/0.12] Backport networking commits for L1VH feature by @princepereira in microsoft/hcsshim#2205

Full Changelog: https://github.com/microsoft/hcsshim/compare/v0.12.4...v0.12.5

v0.12.4

What's Changed

[release/0.12] Backport networking commits by @kiashok in microsoft/hcsshim#2157

Full Changelog: https://github.com/microsoft/hcsshim/compare/v0.12.3...v0.12.4

v0.12.3

What's Changed

[release/0.12] Update go-winio to v0.6.2 by @kiashok in microsoft/hcsshim#2114

Full Changelog: https://github.com/microsoft/hcsshim/compare/v0.12.2...v0.12.3

v0.12.2

No release notes provided.

v0.12.1

What's Changed

Add spans and drop large size high volume trace logs by @kiashok in microsoft/hcsshim#2068

Updating permissions and github release action versions (#2078) by @hgarvison in microsoft/hcsshim#2079

fix: move permissions to the correct job (#2080) by @anmaxvl in microsoft/hcsshim#2081

Full Changelog: https://github.com/microsoft/hcsshim/compare/v0.12.0...v0.12.1

v0.12.0

What's Changed

adding option of using buffered image reader for faster dmverity hashing by @SethHollandsworth in microsoft/hcsshim#2013

Fix process handle leak when launching a job container by @kevpar in microsoft/hcsshim#2020

Revert "gcs: Support routing container stdio to sidecar" by @kevpar in microsoft/hcsshim#2023

internal/exec: Fix stdio pipe problems by @kevpar in microsoft/hcsshim#2021

Allow mounting multiple dev nodes per assigned device by @katiewasnothere in microsoft/hcsshim#2003

tests: update docker images by @anmaxvl in microsoft/hcsshim#2012

... (truncated)

Commits

f922f2a Omnibus dependency updates (#2051)
7d25ce2 Update module versions
85a5a57 drop usage of deprecated package/methods
d4b1cc0 Bump opa/containerd to latest versions
6a5ebd3 Upgrade deps to resolve CVEs (#2225)
4f46058 Omnibus dependency update (#2166)
e970943 Modifying network flag EnableIov.
4f77a09 Hcsshim wrapper over HNS API needed for exclusion of management mac addresses...
3b5bd8a [release/0.12] vendor: github.com/containerd/containerd v17.18
40cdbc8 Adding state attribute to the HNSEndpoint struct to support hyperv containers...
Additional commits viewable in compare view

Updates github.com/andybalholm/brotli from 1.0.6 to 1.1.0

Commits

17e5901 Make my matchfinder work more accessible.
cf812c0 matchfinder: add M0
1b6cf36 matchfinder: remove MultiHash
265f3af matchfinder: penalize score for overlapping matches
a8d524a matchfinder: replace Score function with DistanceBitCost
578645e matchfinder: add MultiHash
24b2bfa matchfinder.M4: add Score function
4a024e3 matchfinder.M4: add match chain
3a1c5cd Fix typo in comment.
0d2aef3 matchfinder.M4: factor out extendMatch2
Additional commits viewable in compare view

Updates github.com/cenkalti/backoff/v4 from 4.2.1 to 4.3.0

Commits

720b789 remove travis badge from readme
a83af7f feat(backoff): Add functional options for ExponentialBackOff Closes #136
See full diff in compare view

Updates github.com/cloudflare/circl from 1.3.7 to 1.4.0

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.4.0

Changes

New: ML-KEM compatible with FIPS-203.

Commit History

eddilithium3: fix typos by @bwesterb in cloudflare/circl#503

Add ML-KEM (FIPS 203). by @bwesterb in cloudflare/circl#470

Add ML-KEM decapsulation key check. by @bwesterb in cloudflare/circl#507

Preparing for release v1.4.0 by @armfazh in cloudflare/circl#508

Full Changelog: https://github.com/cloudflare/circl/compare/v1.3.9...v1.4.0

CIRCL v1.3.9

Changes:

Fix bug on BLS12381 decoding elements.

Commit History

dilithium: fix typo by @bwesterb in cloudflare/circl#498

bls12381: Detects invalid prefix in G1 and G2 serialized elements by @armfazh in cloudflare/circl#500

Preparing CIRCL release v1.3.9 by @armfazh in cloudflare/circl#501

Full Changelog: https://github.com/cloudflare/circl/compare/v1.3.8...v1.3.9

CIRCL v1.3.8

New

BLS Signatures on top of BLS12-381.

Adopt faster squaring in pairings.

BlindRSA compliant with RFC9474.

(Verifiable) Secret Sharing compatible with the Group interface (elliptic curves).

Notice

Update on cpabe/tkn20 ciphertexts, read more at https://github.com/cloudflare/circl/wiki/tkn20-Ciphertext-Format-(v1.3.8)

What's Changed

Implement Granger-Scott faster squaring in the cyclotomic subgroup. by @armfazh in cloudflare/circl#449

Updates avo and CIRCL's own dependency. by @armfazh in cloudflare/circl#474

Updating documentation for OPRF package. by @armfazh in cloudflare/circl#475

group: removes order method from group interface by @armfazh in cloudflare/circl#356

zk/dleq: Adding DLEQ proofs for Qn, the subgroup of squares in (Z/nZ)* by @armfazh in cloudflare/circl#451

Reduce x/crypto and x/sys versions to match Go 1.21 by @Lekensteyn in cloudflare/circl#476

Bump GitHub Actions versions and use Go 1.22 and 1.21 by @Lekensteyn in cloudflare/circl#477

Adding rule for constant values by @armfazh in cloudflare/circl#478

Add BLS signatures over BLS12-381 by @armfazh in cloudflare/circl#446

group: Implements Shamir and Feldman secret sharing. by @armfazh in cloudflare/circl#348

... (truncated)

Commits

c311e46 Preparing for release v1.4.0
62385a8 Add ML-KEM decapsulation key check.
2b4626d Add ML-KEM (FIPS 203).
d26845f eddilithium3: fix typos
75b28ed Preparing CIRCL release v1.3.9
9e7c49b Detects invalid encodings of bls12381 elements.
5f94471 Test for invalid encodings of BLS12381.
456fe41 dilithium: fix typo
4bb5601 Serializing ciphertext with 32-bit prefixes.
a4252c7 Test functions working with ciphertext.
Additional commits viewable in compare view

Updates github.com/cyphar/filepath-securejoin from 0.2.4 to 0.3.1

Release notes

Sourced from github.com/cyphar/filepath-securejoin's releases.

v0.3.1

By allowing Open(at)InRoot to opt-out of the extra work done by MkdirAll to do the necessary "partial lookups", Open(at)InRoot now does less work for both implementations (resulting in a many-fold decrease in the number of ope... _Description has been truncated_

initializ-buildpacks / go-mod-vendor

Bump the go-modules group across 1 directory with 54 updates #71

v1.4.0

v1.34.1

1.34.1

Maintenance

v1.34.0

1.34.0

Features

Fixes

Maintenance

v1.33.1

1.33.1

Fixes

Maintenance

v1.33.0

1.33.0

Features

Maintenance

v1.32.0

1.32.0

Maintenance

1.34.1

Maintenance

1.34.0

Features

Fixes

Maintenance

1.33.1

Fixes

Maintenance

1.33.0

Features

Maintenance

1.32.0

Maintenance

v0.18.7

What's Changed

v0.18.6

What's Changed

v0.18.5

What's Changed

v0.18.4

What's Changed

v0.18.3

What's Changed

v2.14.0

What's Changed

New Contributors

v2.13.0

What's Changed

New Contributors

v1.0.1

What's Changed

New Contributors

v0.9.0

Changelog

Features

Fixes

Building and Packaging

Others

v0.8.0

zstd 1.5.6

What's Changed

v0.1.0

What's Changed

v0.12.6

What's Changed

v0.12.5

What's Changed

v0.12.4

What's Changed

v0.12.3

What's Changed

v0.12.2

v0.12.1

What's Changed

v0.12.0

What's Changed

CIRCL v1.4.0