search

sozercan / aikit

🏗️ Fine-tune, build, and deploy open-source LLMs easily!
https://sozercan.github.io/aikit/
MIT License
305 stars 27 forks source link

chore(deps): Bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #232

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps github.com/containerd/containerd from 1.7.16 to 1.7.17.

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.17

Welcome to the v1.7.17 release of containerd!

The seventeenth patch release for containerd 1.7 contains various fixes and updates.

Highlights

  • Use LOOP_CONFIGURE when creating loop devices (#10209)
  • Update unpacker to fetch all provided content (#10233)
  • Preserve CL_UNPRIVILEGED locked flags during remount of bind mounts (#10210)
  • Update metadata snapshotter to lease on already exists (#10198)
  • Handle unsupported config versions (#10165)
  • Fix deadlock when writing to pipe blocks (containerd/ttrpc#168)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Stefan Berger
  • Derek McGowan
  • Austin Vazquez
  • Alexandru Matei
  • Maksym Pavlenko
  • Akihiro Suda
  • Bryant Biggs
  • Kevin Parsons
  • Kirtana Ashok
  • Phil Estes
  • Kazuyoshi Kato
  • Kohei Tokunaga
  • Swagat Bora

Changes

  • Prepare release notes for v1.7.17 (#10235)
    • 114b07b97 Prepare release notes for v1.7.17
  • Use LOOP_CONFIGURE when creating loop devices (#10209)
    • 803aaa680 Remove internal LoopConfig struct
    • 7bd3be948 Swap internal ioctl implementation with golang.org/x/sys
    • a0739dc0e Use LOOP_CONFIGURE when creating loop devices
  • Update unpacker to fetch all provided content (#10233)
    • 1573ea598 Update ctr image pull all platforms
    • 32b594f1b Update unpacker to always fetch all
  • Update hcsshim tag to v0.11.5 (#10232)
  • Update ttrpc tag to 1.2.4 (#10221)

... (truncated)

Commits
  • 3a4de45 Merge pull request #10235 from dmcgowan/prepare-v1.7.17
  • 114b07b Prepare release notes for v1.7.17
  • 2441c2d Merge pull request #10209 from austinvazquez/cherry-pick-a782fd6da2fa9fa350ef...
  • 62af107 Merge pull request #10233 from dmcgowan/1.7-unpack-fetch-all
  • a3c0f2f Merge pull request #10232 from kiashok/update-shim-0.11.4
  • 1573ea5 Update ctr image pull all platforms
  • 32b594f Update unpacker to always fetch all
  • 5a03a3a Update hcsshim tag to v0.11.5
  • b5aec32 Merge pull request #10221 from kiashok/update-ttrpc-release-1.7
  • 36bbb4d Merge pull request #10210 from swagatbora90/preserve-flags-cherry-pick-1.7
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
socket-security[bot] commented 2 months ago

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@types/express-serve-static-core@4.17.41 None +4 4.05 MB types
npm/@types/express@4.17.21 None +4 4.01 MB types
npm/@types/mime@1.3.5 None 0 3.78 kB types
npm/@types/serve-static@1.15.5 None +2 4 MB types
npm/@webassemblyjs/ast@1.11.6 None +5 341 kB xtuc
npm/@webassemblyjs/wasm-parser@1.11.6 None +7 329 kB xtuc
npm/accepts@1.3.8 None +3 268 kB dougwilson
npm/content-type@1.0.5 None 0 10.5 kB dougwilson
npm/get-stream@6.0.1 None 0 12.2 kB sindresorhus
npm/parseurl@1.3.3 None 0 10.3 kB dougwilson

🚮 Removed packages: npm/resolve@1.22.8, npm/safe-buffer@5.2.1, npm/semver@7.5.4, npm/serialize-javascript@6.0.2, npm/shell-quote@1.8.1, npm/string-width@5.1.2, npm/svgo@2.8.0, npm/tapable@2.2.1, npm/terser-webpack-plugin@5.3.10, npm/terser@5.27.0, npm/tslib@2.6.2, npm/type-fest@2.19.0, npm/unified@11.0.4, npm/unpipe@1.0.0, npm/util-deprecate@1.0.2, npm/vfile@6.0.1, npm/webpack-sources@3.2.3, npm/wrap-ansi@8.1.0, npm/xdg-basedir@5.1.0, npm/yaml@1.10.2

View full report↗︎

dependabot[bot] commented 2 months ago

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

sozercan commented 2 months ago

@dependabot recreate