paketo-buildpacks / go-dist

A Cloud Native Buildpack for Go
Apache License 2.0
25 stars 12 forks source link

Bump github.com/docker/docker from 26.1.4+incompatible to 27.2.1+incompatible #885

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 2 months ago

Bumps github.com/docker/docker from 26.1.4+incompatible to 27.2.1+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v27.2.1

27.2.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • containerd image store: Fix non-container images being hidden in the docker image ls output. moby/moby#48402
  • containerd image store: Improve docker pull error message when the image platform doesn't match. moby/moby#48415
  • CLI: Fix issue causing docker login to not remove repository names from passed in registry addresses, resulting in credentials being stored under the wrong key. docker/cli#5385
  • CLI: Fix issue that will sometimes cause the browser-login flow to fail if the CLI process is suspended and then resumed while waiting for the user to authenticate. docker/cli#5376
  • CLI: docker login now returns an error instead of hanging if called non-interactively with --password or --password-stdin but without --user. docker/cli#5402

Packaging updates

v27.2.0

27.2.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

New

  • CLI: Add support for device-code flow login when authenticating to the official registry. docker/cli#5349
  • containerd image store: docker image ls now supports --tree flag that shows a multiplatform-aware image list. This is experimental and may change at any time without any backwards compatibility. docker/cli#5353

API

  • GET /images/json response now includes Manifests field, which contains information about the sub-manifests included in the image index. This includes things like platform-specific manifests and build attestations. The new field will only be populated if the request also sets the manifests query parameter to true.

[!WARNING]

This is experimental and may change at any time without any backward compatibility.

Bug fixes and enhancements

  • CLI: Fix issue with remote contexts over SSH where the CLI would allocate a pseudoterminal when connecting to the remote host, which causes issues in rare situations. docker/cli#5351
  • Fix an issue that prevented network creation with a --ip-range ending on a 64-bit boundary. moby/moby#48326

... (truncated)

Commits
  • 8b539b8 Merge pull request #48433 from vvoland/48432-27.x
  • 37bf6e8 update to go1.22.7
  • fefdb1b Merge pull request #48430 from vvoland/48425-27.x
  • 3a4c589 vendor: github.com/opencontainers/runc v1.1.14
  • 6eeb414 Merge pull request #48426 from thaJeztah/27.x_backport_bump_runc_1.1.14
  • 54af846 Merge pull request #48416 from thaJeztah/27.x_backport_update_go_1.22
  • 10cf2d6 update runc binary to 1.1.14
  • 7b86f40 Merge pull request #48423 from vvoland/48422-27.x
  • 84cfcb0 docs/api: add documentation for API v1.47
  • edeb6ba golangci-lint: temporarily disable G115: integer overflow conversion
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 month ago

Superseded by #890.