Bump the tools group in /tools with 3 updates

[dependabot[bot]]

Bumps the tools group in /tools with 3 updates: github.com/docker/buildx, github.com/mikefarah/yq/v4 and helm.sh/helm/v3.

Updates github.com/docker/buildx from 0.14.1 to 0.15.0

Release notes

Sourced from github.com/docker/buildx's releases.

v0.15.0

Welcome to the 0.15.0 release of buildx!

Please try out the release binaries and report any issues at https://github.com/docker/buildx/issues.

Contributors

• Tõnis Tiigi
• CrazyMax
• Sebastiaan van Stijn
• Tim Smith
• Jonathan A. Sternberg
• Talon Bowler
• David Karlsson
• Akihiro Suda
• Shaun Thompson
• Arnold Sobanski
• Guillaume Lours
• Justin Chadwell
• Mitsuru Kariya
• Sumner Warren
• jaihwan104

Notable Changes

• New --call option allows setting evaluation method for a build, replacing the previous experimental --print flag. #2498 #2487 #2513 In addition to default "build", the following methods are implemented by Dockerfile frontend:
  • check - Run validation routines for your build configuration. These are the same validations that would show up as warnings during build. There is also shortcut flag --check for this option.
  • outline - Show configuration that would be used by current build, including all the build-args, secrets, SSH etc that your build would use.
  • targets- Show all available targets and their descriptions.
• New --prefer-index flag has been added to imagetools create command to control the behavior of creating image out of one single-platform image manifest. #2482
• Kubernetes driver allows configuring deployment timeout #2492
• New metrics definitions have been added for build warning types #2482 #2507
• Prune and Disk usage commands now support negative and prefix filters #2473
• Building Compose files with Bake now supports passing SSH forwarding configuration #2445
• Compose compatibility has been updated to v2.1.2 #2502 #2425
• Fix issue with configuring Kubernetes driver with custom TLS certificates #2454
• Fix concurrent kubeconfig access when loading nodes #2497

Dependency Changes

• github.com/Microsoft/go-winio v0.6.1 -> v0.6.2
• github.com/Microsoft/hcsshim v0.11.4 -> v0.11.5
• github.com/compose-spec/compose-go/v2 v2.0.2 -> v2.1.2
• github.com/containerd/containerd v1.7.15 -> v1.7.18
• github.com/containerd/errdefs v0.1.0 new
• github.com/containerd/ttrpc v1.2.3 -> v1.2.4
• github.com/creack/pty v1.1.18 -> v1.1.21

... (truncated)

Commits

• d3a5318 Merge pull request #2513 from tonistiigi/lint-fallback-1.8.0
• 0496dae build: update lint fallback image to dockerfile 1.8.0
• 40fcf99 Merge pull request #2512 from tonistiigi/0611-update-buildkit
• 85c25f7 vendor: update buildkit to v0.14.0
• 875e4cd Merge pull request #2510 from crazy-max/ci-ubuntu24.04
• 24cedc6 ci: switch to ubuntu-24.04 runner
• 59f52c9 Merge pull request #2507 from daghack/update-lint-metric-regex
• 1e916ae add length check for lint message regex result
• d342cb9 vendor golang.org/x/text dependency
• 9fdc99d Update the lint metrics to match agains the rule URL rather than a prefix on ...
• Additional commits viewable in compare view

Updates github.com/mikefarah/yq/v4 from 4.44.1 to 4.44.2

Release notes

Sourced from github.com/mikefarah/yq/v4's releases.

v4.44.2

• Handle numbers with underscores #2039
• Unique now works on maps and arrays #2068
• Added support for short hand splat with env[] expression #2071, as well as many other operators (split,select,eval,pick..)
• Bumped dependencies

Changelog

Sourced from github.com/mikefarah/yq/v4's changelog.

4.44.2:

• Handle numbers with underscores #2039
• Unique now works on maps and arrays #2068
• Added support for short hand splat with env[] expression #2071, as well as many other operators (split,select,eval,pick..)
• Bumped dependencies

Commits

• f15500b Bumping version
• b8aec71 Preparing release
• 68aafb6 Handle numbers with underscores #2039
• d58870b Adding splat[] short hand to explode,collect,flatten,groupby,path,pivot,selec...
• f1964de Adding splat[] short hand to collect,eval,map,omit,path,pick
• 45eda8d Added support for shorthand splat[] for filter,reverse,sort,shuffle
• d9af2dd Support env[] expression #2071
• 7bad2f4 Adding back in commented tests :facepalm
• 3ea19ad clean code
• 42120e1 Unique now works on maps and arrays #2068
• Additional commits viewable in compare view

Updates helm.sh/helm/v3 from 3.15.1 to 3.15.2

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.15.2 is a security (patch) release. Users are strongly recommended to update to this release.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.15.2. The common platform binaries are here:

• MacOS amd64 (checksum / e99a9266a5328cb575d81ef10247911f42d9e90c76ef6eef154c5c535565658b)
• MacOS arm64 (checksum / 30143dabc1da9d32c7d6c589fad04b1f1ecc73841393d5823fa21c5d7f5bf8f6)
• Linux amd64 (checksum / 2694b91c3e501cff57caf650e639604a274645f61af2ea4d601677b746b44fe2)
• Linux arm (checksum / 2b28fda1d8c6f087011bc7ec820051a13409dadce8385529f306476632e24e85)
• Linux arm64 (checksum / adcf07b08484b52508e5cbc8b5f4b0b0db50342f7bc487ecd88b8948b680e6a7)
• Linux i386 (checksum / 8e0bb5a08c7c227a8e285026b6283726ddc0e1f406e2af4d4d600fa1dd85c21e)
• Linux ppc64le (checksum / 9d95528fb797f6429f7f9b6dee0cf87bf8c71f6470e1db4a51e844c169c285a3)
• Linux s390x (checksum / 5b42bc3d08fd0ffaf4f9ed810f28464f52ec4ea431b809c7179071d76f3d6f16)
• Linux riscv64 (checksum / 2998bae9971a55f862c21bff337c325cb6a44f28ef76e11bffc93d16989e11e6)
• Windows amd64 (checksum / cbf40b79fa2a7dbd6e24201f8660b56261d10d6e7b5cadc3ff78100fb45b3c69)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.15.3 will contain only bug fixes and be released on July 10, 2024.
• 3.16.0 is the next feature release and will be on September 11, 2024.

Changelog

• fix: wrong cli description 1a500d5625419a524fdae4b33de351cc4f58ec35 (yyzxw)
• fix typo in load_plugins.go 70b225c9abc014cfeb73f7c9f506b0e73e912b61 (yxxhero)
• fix docs of DeployedAll b3640f196a2cf77136ab01295bffe76fa184991d (Daniel Strobusch)
• Bump github.com/docker/docker 46e2ba0341d43e19493b2f90c86126da8ad8a64e (dependabot[bot])
• bump oras minor version fb311d331f66f7f9153b5d0c7aa07a77bc9528ca (Austin Abro)
• feat(load.go): add warning on requirements.lock 23552a7de6f45aacec47bc2bfe70de02b9d7ab70 (Aaron U'Ren)

Commits

• 1a500d5 fix: wrong cli description
• 70b225c fix typo in load_plugins.go
• b3640f1 fix docs of DeployedAll
• 46e2ba0 Bump github.com/docker/docker
• fb311d3 bump oras minor version
• 23552a7 feat(load.go): add warning on requirements.lock
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions