Do not set network.host entitlement flag automatically on builder creation for container and kubernetes drivers if already set in buildkitd configuration #2685
Fix network field not omitted when empty in bake #2689
containerd image store: Fix non-container images being hidden in the docker image ls output. moby/moby#48402
containerd image store: Improve docker pull error message when the image platform doesn't match. moby/moby#48415
CLI: Fix issue causing docker login to not remove repository names from passed in registry addresses, resulting in credentials being stored under the wrong key. docker/cli#5385
CLI: Fix issue that will sometimes cause the browser-login flow to fail if the CLI process is suspended and then resumed while waiting for the user to authenticate. docker/cli#5376
CLI: docker login now returns an error instead of hanging if called non-interactively with --password or --password-stdin but without --user. docker/cli#5402
CLI: Add support for device-code flow login when authenticating to the official registry. docker/cli#5349
containerd image store: docker image ls now supports --tree flag that shows a multiplatform-aware image list. This is experimental and may change at any time without any backwards compatibility. docker/cli#5353
API
GET /images/json response now includes Manifests field, which contains information about the sub-manifests included in the image index. This includes things like platform-specific manifests and build attestations.
The new field will only be populated if the request also sets the manifests query parameter to true.
[!WARNING]
This is experimental and may change at any time without any backward compatibility.
Bug fixes and enhancements
CLI: Fix issue with remote contexts over SSH where the CLI would allocate a pseudoterminal when connecting to the remote host, which causes issues in rare situations. docker/cli#5351
Fix an issue that prevented network creation with a --ip-range ending on a 64-bit boundary. moby/moby#48326
... (truncated)
Commits
8b539b8 Merge pull request #48433 from vvoland/48432-27.x
e9a872629d4feda79d2fff23ddc1f410faff163e build(deps): bump github.com/Abirdcfly/dupword from 0.0.14 to 0.1.1 (#4954)
2813c451edd6b75098372dbb269ffed8df3a4ec6 build(deps): bump github.com/Crocmagnon/fatcontext from 0.4.0 to 0.5.2 (#4971)
48251f274a1e09fae524271662a30a47f4ddb242 build(deps): bump github.com/ckaznocha/intrange from 0.1.2 to 0.2.0 (#4996)
726b8153cac6c04238264b189f5b05ec059f9330 build(deps): bump github.com/daixiang0/gci from 0.13.4 to 0.13.5 (#4975)
2fcfe26fdb368ae0930bac909a0573277a6d2226 build(deps): bump github.com/go-viper/mapstructure/v2 from 2.0.0 to 2.1.0 (#4910)
5fa1b681e4518b09be4ebdbe635e044cf729b8a1 build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.2 to 2.2.3 (#4955)
a6fc686d733f339619b02de65ef4c782848eaff0 build(deps): bump github.com/quasilyte/go-ruleguard to 0fe6f58b47b1 (#4949)
57fa4dad326cd24b71fccd3fb9b8fc8a2788c994 build(deps): bump github.com/ryancurrah/gomodguard from 1.3.3 to 1.3.5 (#4992)
6e5dc28f52b76181f5c4f5c7d37dab20e09f59d1 build(deps): bump github.com/securego/gosec/v2 from 2.20.1-0.20240826145712-bcec04e78483 to 2.21.0 (#4981)
dd069d5578f3fb9eb298e5d397697c368a0e85f7 build(deps): bump github.com/securego/gosec/v2 from 2.21.0 to 2.21.1 (#4982)
a1d6c560de1a193a0c68ffed68cd5928ef39e884 build(deps): bump github.com/securego/gosec/v2 from 2.21.1 to 2.21.2 (#4997)
98b685cc0d3dcc956eb30bd7557c4c2ecf369f54 build(deps): bump github.com/securego/gosec/v2 from ab3f6c1c83a0 to bcec04e78483 (#4960)
bfc52476dd7b0b5111bcc17f7e2c103cfc0a15e0 build(deps): bump github.com/tetafro/godot from 1.4.16 to 1.4.17 (#4993)
04c19e6f4f8b04dae083c2923457bc911303d177 build(deps): bump golang.org/x/oauth2 from 0.22.0 to 0.23.0 in /scripts/gen_github_action_config in the all group (#4977)
e905c7a3e260abe5b984e532925dfa30ffe60a5b build(deps): bump peter-evans/create-pull-request from 6 to 7 in the all group (#4978)
2881c7178b62e75ac33df7747c40fabc75c62e2b build(deps): bump the all group across 4 directories with 8 updates (#4979)
0275389a64bd88fd37eb5f46993a8523ce4bf2f0 feat: add junit-xml-extended format (#4918)
Updates google.golang.org/protobuf from 1.34.2 to 1.35.1
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the other group with 7 updates in the / directory:
0.16.0
0.17.1
1.59.1
1.61.0
0.0.13
0.1.3
1.10.3
1.11.0
3.134.1
3.136.1
0.27.0
0.28.0
1.34.2
1.35.1
Updates
github.com/docker/buildx
from 0.16.0 to 0.17.1Release notes
Sourced from github.com/docker/buildx's releases.
... (truncated)
Commits
257815a
Merge pull request #2698 from tonistiigi/v0.17-cli-vendordbccfa6
Merge pull request #2690 from crazy-max/v0.17.1_cherry-picks59cb959
[v0.17] update docker/cli to 48a2cdff97dd0d53e
ci: fix golvulncheck job permissionse8ceaad
builder: do not set network.host entitlement flag if already set in buildkitd...e5a6b8e
bake: fix missing omitempty and optional tags for network field78c8c28
Merge pull request #2681 from crazy-max/v0.17.0_update-buildkit4173281
vendor: update buildkit to v0.16.040ef344
Merge pull request #2679 from tonistiigi/buildkit-v0.16.0-rc27213b2a
vendor: update buildkit to v0.16.0-rc2Updates
github.com/docker/cli
from 27.0.3+incompatible to 27.2.2-0.20240913085431-48a2cdff970d+incompatibleCommits
Updates
github.com/docker/docker
from 27.1.1+incompatible to 27.2.1+incompatibleRelease notes
Sourced from github.com/docker/docker's releases.
... (truncated)
Commits
8b539b8
Merge pull request #48433 from vvoland/48432-27.x37bf6e8
update to go1.22.7fefdb1b
Merge pull request #48430 from vvoland/48425-27.x3a4c589
vendor: github.com/opencontainers/runc v1.1.146eeb414
Merge pull request #48426 from thaJeztah/27.x_backport_bump_runc_1.1.1454af846
Merge pull request #48416 from thaJeztah/27.x_backport_update_go_1.2210cf2d6
update runc binary to 1.1.147b86f40
Merge pull request #48423 from vvoland/48422-27.x84cfcb0
docs/api: add documentation for API v1.47edeb6ba
golangci-lint: temporarily disable G115: integer overflow conversionUpdates
github.com/golangci/golangci-lint
from 1.59.1 to 1.61.0Release notes
Sourced from github.com/golangci/golangci-lint's releases.
... (truncated)
Changelog
Sourced from github.com/golangci/golangci-lint's changelog.
... (truncated)
Commits
a1d6c56
build(deps): bump github.com/securego/gosec/v2 from 2.21.1 to 2.21.2 (#4997)48251f2
build(deps): bump github.com/ckaznocha/intrange from 0.1.2 to 0.2.0 (#4996)bfc5247
build(deps): bump github.com/tetafro/godot from 1.4.16 to 1.4.17 (#4993)57fa4da
build(deps): bump github.com/ryancurrah/gomodguard from 1.3.3 to 1.3.5 (#4992)d302a30
dev: fix nancy24e6645
docs: add additionnal info about typecheck (#4985)bf4a66a
gosec: disable G407 (#4983)dd069d5
build(deps): bump github.com/securego/gosec/v2 from 2.21.0 to 2.21.1 (#4982)2813c45
build(deps): bump github.com/Crocmagnon/fatcontext from 0.4.0 to 0.5.2 (#4971)e9a8726
build(deps): bump github.com/Abirdcfly/dupword from 0.0.14 to 0.1.1 (#4954)Updates
github.com/moby/buildkit
from 0.15.0 to 0.16.0Release notes
Sourced from github.com/moby/buildkit's releases.
... (truncated)
Commits
0865fcc
Merge pull request #5320 from crazy-max/v0.16.0-picks274116a2
fix windows area label when modifications are under the vendor folder5c5dc59
vendor: github.com/docker/docker v27.2.1c9d08dd
Merge pull request #5315 from jsternberg/trace-id-in-logb2b8b1c
Merge pull request #5313 from tonistiigi/grpc-v1.62366c355
bklog: always enable trace id if it existse89d391
vendor: update grpc to v1.62.0a1993e8
Merge pull request #5306 from tonistiigi/cache-mount-mode-prune85668ff
Merge pull request #5307 from thompson-shaun/update-labeler436609d
Merge pull request #5302 from crazy-max/dockerfile-rootless-cacheUpdates
github.com/pulumi/providertest
from 0.0.13 to 0.1.3Release notes
Sourced from github.com/pulumi/providertest's releases.
... (truncated)
Commits
387f6b5
Add replace program utility (#94)c0ea332
Sanitize exported stack state by scrubbing secrets (#107)cecfbc7
Addprovider.ReplayInvokes
(#105)be10035
PassT
explicitly to all methods (#102)af0614e
Fix various warnings (#103)469a9fc
Rename Source to WorkingDir (#101)1b678cb
Don't ignore UpdateSource errors (#96)dddb527
upgrade tests with known source edits (#95)0ebd111
feat: allow passing additional args to import command (#93)38880e7
Merge pull request #92 from pulumi/mjeffryes-patch-1Updates
github.com/pulumi/pulumi-yaml
from 1.10.3 to 1.11.0Release notes
Sourced from github.com/pulumi/pulumi-yaml's releases.
Changelog
Sourced from github.com/pulumi/pulumi-yaml's changelog.
Commits
196e430
Changelog for v1.11.0 (#659)29af1aa
Release v1.11.0 of pulumi-yaml (#658)c872650
build statically linked binaries with CGO disabled (#657)d574b2b
Fix topological sort to take into account defaultProvider. (#652)5e605a7
update go version in github workflows (#651)dd0f078
Add parameterized provider support to YAML (#616)ce4239e
Fix loader lifetime (#640)Updates
github.com/pulumi/pulumi/pkg/v3
from 3.134.1 to 3.136.1Release notes
Sourced from github.com/pulumi/pulumi/pkg/v3's releases.
... (truncated)
Changelog
Sourced from github.com/pulumi/pulumi/pkg/v3's changelog.
... (truncated)
Commits
08dd376
Add docs on how to run language conformance tests (#17498)e9bb24c
[sdkgen/python-nodejs] Bump minimum required SDK version to v3.136.0 (#17501)ac7e4b0
Changelog and go.mod updates for v3.136.0 (#17504)76990f0
Freeze v3.136.0 (#17491)6315637
always run multiple stacks concurrently test locally (#17502)3d2b7de
Allow cancelling operations with SIGTERM (#17467)7865389
Hidepulumi preview
's--show-secrets
with--save-plan
(#17444)bd76b17
Prepare for v3.136.0 (#17490)cc59acd
run in local workspace when no PULUMI_ACCESS_TOKEN is set (#17393)2e73bff
[sdk/python] Handle nested structures properly when unwrapping secrets from i...Updates
github.com/pulumi/pulumi/sdk/v3
from 3.134.1 to 3.136.1Release notes
Sourced from github.com/pulumi/pulumi/sdk/v3's releases.
... (truncated)
Changelog
Sourced from github.com/pulumi/pulumi/sdk/v3's changelog.
... (truncated)
Commits
08dd376
Add docs on how to run language conformance tests (#17498)e9bb24c
[sdkgen/python-nodejs] Bump minimum required SDK version to v3.136.0 (#17501)ac7e4b0
Changelog and go.mod updates for v3.136.0 (#17504)76990f0
Freeze v3.136.0 (#17491)6315637
always run multiple stacks concurrently test locally (#17502)3d2b7de
Allow cancelling operations with SIGTERM (#17467)7865389
Hidepulumi preview
's--show-secrets
with--save-plan
(#17444)bd76b17
Prepare for v3.136.0 (#17490)cc59acd
run in local workspace when no PULUMI_ACCESS_TOKEN is set (#17393)2e73bff
[sdk/python] Handle nested structures properly when unwrapping secrets from i...Updates
golang.org/x/crypto
from 0.27.0 to 0.28.0Commits
adef4cc
go.mod: update golang.org/x dependenciesa0819fb
sha3: fix cSHAKE initialization for extremely large N and or S42ee18b
ssh: return ServerAuthError after too many auth failures9e92970
bn256: add missing symbols in commentUpdates
google.golang.org/protobuf
from 1.34.2 to 1.35.1Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show