Bump docker/metadata-action from 4 to 5

[dependabot[bot]]

Bumps docker/metadata-action from 4 to 5.

Release notes

Sourced from docker/metadata-action's releases.

v5.0.0

• Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @​crazy-max in docker/metadata-action#328
• Bump @​actions/core from 1.10.0 to 1.10.1 in docker/metadata-action#333
• Bump csv-parse from 5.4.0 to 5.5.0 in docker/metadata-action#320
• Bump semver from 7.5.1 to 7.5.2 in docker/metadata-action#304
• Bump handlebars from 4.7.7 to 4.7.8 in docker/metadata-action#315

Full Changelog: https://github.com/docker/metadata-action/compare/v4.6.0...v5.0.0

v4.6.0

• Dedup and sort labels by @​crazy-max in docker/metadata-action#301
• Bump @​docker/actions-toolkit from 0.3.0 to 0.5.0 in docker/metadata-action#302

Full Changelog: https://github.com/docker/metadata-action/compare/v4.5.0...v4.6.0

v4.5.0

• Bump @​docker/actions-toolkit from 0.1.0 to 0.3.0 in docker/metadata-action#296
• Bump csv-parse from 5.3.8 to 5.4.0 in docker/metadata-action#294

Full Changelog: https://github.com/docker/metadata-action/compare/v4.4.0...v4.5.0

v4.4.0

• Add context input to define the metadata provider by @​neilime in docker/metadata-action#248
• Switch to actions-toolkit implementation by @​crazy-max in docker/metadata-action#266 docker/metadata-action#273 docker/metadata-action#284
• Bump csv-parse from 5.3.3 to 5.3.8 in docker/metadata-action#271 docker/metadata-action#286
• Bump moment-timezone from 0.5.40 to 0.5.43 in docker/metadata-action#268 docker/metadata-action#278 docker/metadata-action#281
• Bump semver from 7.4.0 to 7.5.0 in docker/metadata-action#285

Full Changelog: https://github.com/docker/metadata-action/compare/v4.3.0...v4.4.0

v4.3.0

• Provide outputs as env vars by @​crazy-max (#257)

Full Changelog: https://github.com/docker/metadata-action/compare/v4.2.0...v4.3.0

v4.2.0

• Add tz attribute to handlebar date function by @​chroju (#251)
• Bump minimatch from 3.0.4 to 3.1.2 (#242)
• Bump csv-parse from 5.3.1 to 5.3.3 (#245)
• Bump json5 from 2.2.0 to 2.2.3 (#252)

Full Changelog: https://github.com/docker/metadata-action/compare/v4.1.1...v4.2.0

v4.1.1

• Revert changes to set associated head sha on pull request event by @​crazy-max (#239)
  • User can still set associated head sha on PR by setting the env var DOCKER_METADATA_PR_HEAD_SHA=true
• Bump csv-parse from 5.3.0 to 5.3.1 (#237)

Full Changelog: https://github.com/docker/metadata-action/compare/v4.1.0...v4.1.1

... (truncated)

Upgrade guide

Sourced from docker/metadata-action's upgrade guide.

Upgrade notes

v2 to v3

• Repository has been moved to docker org. Replace crazy-max/ghaction-docker-meta@v2 with docker/metadata-action@v5
• The default bake target has been changed: ghaction-docker-meta > docker-metadata-action

v1 to v2

• inputs
  • tag-sha
  • tag-edge / tag-edge-branch
  • tag-semver
  • tag-match / tag-match-group
  • tag-latest
  • tag-schedule
  • tag-custom / tag-custom-only
  • label-custom
• Basic workflow
• Semver workflow

inputs

New	Unchanged	Removed
tags	images	tag-sha
flavor	sep-tags	tag-edge
labels	sep-labels	tag-edge-branch
		tag-semver
		tag-match
		tag-match-group
		tag-latest
		tag-schedule
		tag-custom
		tag-custom-only
		label-custom

tag-sha

tags: |
  type=sha

tag-edge / tag-edge-branch

tags: |
  # default branch
</tr></table> 

... (truncated)

Commits

• 8e5442c Merge pull request #382 from crazy-max/dont-set-cwd-prefix
• eda41b7 chore: update generated content
• 388c08f don't set cwd:// prefix for local bake files
• dbef880 Merge pull request #374 from docker/dependabot/npm_and_yarn/moment-timezone-0...
• b73e7a7 chore: update generated content
• b9fba69 chore(deps): Bump moment-timezone from 0.5.43 to 0.5.44
• ac82374 Merge pull request #373 from docker/dependabot/npm_and_yarn/moment-2.30.1
• c92519a chore: update generated content
• 3b4179d chore(deps): Bump moment from 2.29.4 to 2.30.1
• 0784993 Merge pull request #371 from docker/dependabot/npm_and_yarn/docker/actions-to...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)