Bump github.com/sylabs/sif/v2 from 2.16.0 to 2.17.0 in the go-modules group

[dependabot[bot]]

Bumps the go-modules group with 1 update: github.com/sylabs/sif/v2.

Updates github.com/sylabs/sif/v2 from 2.16.0 to 2.17.0

Release notes

Sourced from github.com/sylabs/sif/v2's releases.

v2.17.0

This release adds support for updating the digest of an OCI blob within a SIF.

Specifically, the following API has been added:

• func (*FileImage) SetOCIBlobDigest: updates the digest of the OCI blob object with id to h, according to opts.

What's Changed

• chore: bump golangci-lint to v1.57 by @​tri-adam in sylabs/sif#357
• build(deps): bump github.com/sigstore/sigstore from 1.8.2 to 1.8.3 by @​dependabot in sylabs/sif#358
• build(deps): bump github.com/sigstore/sigstore from 1.8.3 to 1.8.4 by @​dependabot in sylabs/sif#359
• ci: bump golangci-lint to v1.59 by @​tri-adam in sylabs/sif#360
• ci: update to use goreleaser v2 by @​tri-adam in sylabs/sif#361
• build(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 by @​dependabot in sylabs/sif#362
• build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @​dependabot in sylabs/sif#363
• refactor: split add/del/set code into files by @​tri-adam in sylabs/sif#364
• feat: add SetOCIBlobDigest by @​tri-adam in sylabs/sif#365

Full Changelog: https://github.com/sylabs/sif/compare/v2.16.0...v2.17.0

Commits

• d63ee14 Merge pull request #365 from tri-adam/set-blob-digest
• b85400b feat: add SetOCIBlobDigest
• 3c091b8 Merge pull request #364 from tri-adam/file-refactor
• 84ca397 refactor: split add/del/set code into files
• f2f07f5 build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#363)
• e9991e0 build(deps): bump github.com/google/go-containerregistry (#362)
• d2e4b56 Merge pull request #361 from tri-adam/bump-goreleaser
• c1a8618 ci: update to use goreleaser v2
• 30fa42b Merge pull request #360 from tri-adam/ci-updates
• f63936f ci: bump node to v22
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions