Bump the go-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the go-dependencies group with 2 updates in the / directory: github.com/BurntSushi/toml and github.com/GoogleContainerTools/kaniko.

Updates github.com/BurntSushi/toml from 1.3.2 to 1.4.0

Release notes

Sourced from github.com/BurntSushi/toml's releases.

v1.4.0

This version requires Go 1.18

• Add toml.Marshal() (#405)

• Require 2-digit hour (#320)

• Wrap UnmarshalTOML() and UnmarshalText() return values in ParseError for position information (#398)

• Fix inline tables with dotted keys inside inline arrays (e.g. k=[{a.b=1}]) (#400)

Commits

• 1e2c053 Undeprecate PrimitiveDecode and MetaData.PrimitiveDecode()
• f8f7e48 Update toml-test
• 9a80667 Add -json flag to tomlv
• 3203540 fuzz: move fuzz_targets from oss-fuzz (#406)
• 77ce858 Add Marshal Function (#405)
• 0e879cb Fix panic when trying to set subkey for a value that's not a table
• c299e75 Update toml-test
• 4223137 Fix inline tables with dotted keys inside inline arrays (#400)
• 45e7e49 Update toml-test
• c320c2d Fix utf8.RuneError test
• Additional commits viewable in compare view

Updates github.com/GoogleContainerTools/kaniko from 1.21.1 to 1.23.1

Release notes

Sourced from github.com/GoogleContainerTools/kaniko's releases.

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.1-slim

Highlights:

This patch release reverts recently changed behaviour it so that --no-push properly still pushes intermediate cache layers. Additionally documentation around the --no-push and --no-push-cache flag have been added to make the expected behaviour more clear. Additionally numerous dependencies have been updated.

Fixes:

• fix: Enable pushing cache with --no-push #3181

Docs Updates:

• docs: document --no-push-cache flag in README.md #3188

Dependency Updates::

• chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 #3187
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.17 to 1.16.21 #3179
• chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 #3170
• chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 #3168
• chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.2 to 1.54.2 #3169
• chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 #3171
• chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #3172
• chore(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible #3173

Huge thank you for this release towards our contributors:

• Aaron Prindle
• dependabot[bot]
• Leo Palmer Sunmo

v1.23.0 Release 2024-05-14

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.0
gcr.io/kaniko-project/executor:latest
</tr></table> 

... (truncated)

Changelog

Sourced from github.com/GoogleContainerTools/kaniko's changelog.

v1.23.1 Release 2024-06-07

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.23.1-slim

• Enable pushing cache with --no-push #3181
• docs: document --no-push-cache flag in README.md #3188
• chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 #3187
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.17 to 1.16.21 #3179
• chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 #3170
• chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 #3168
• chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.53.2 to 1.54.2 #3169
• chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 #3171
• chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 #3172
• chore(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible #3173

Huge thank you for this release towards our contributors:

• Aaron Prindle
• dependabot[bot]
• Leo Palmer Sunmo

v1.23.0 Release 2024-05-14

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.23.0
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.23.0-debug

... (truncated)

Commits

• c93ecd3 chore(release): release v1.23.1 (#3189)
• f087f4a docs: document --no-push-cache flag in README.md (#3188)
• 6a340c6 Enable pushing cache with --no-push (#3181)
• 942fbe6 chore(deps): bump google.golang.org/api from 0.181.0 to 0.182.0 (#3187)
• f671fca chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#3179)
• 9c08f1c chore(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 (#3170)
• 8237632 chore(deps): bump google-github-actions/auth from 2.1.2 to 2.1.3 (#3168)
• 5d1c088 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (#3169)
• b64e9a8 chore(deps): bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 (#3171)
• 96fa5ff chore(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 (#3172)
• Additional commits viewable in compare view

Updates github.com/awslabs/amazon-ecr-credential-helper/ecr-login from 0.0.0-20231213181459-b0fcec718dc6 to 0.0.0-20240419161514-af205d85bb44

Commits

• See full diff in compare view

Updates github.com/containerd/containerd from 1.7.14 to 1.7.17

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.17

Welcome to the v1.7.17 release of containerd!

The seventeenth patch release for containerd 1.7 contains various fixes and updates.

Highlights

• Use LOOP_CONFIGURE when creating loop devices (#10209)
• Update unpacker to fetch all provided content (#10233)
• Preserve CL_UNPRIVILEGED locked flags during remount of bind mounts (#10210)
• Update metadata snapshotter to lease on already exists (#10198)
• Handle unsupported config versions (#10165)
• Fix deadlock when writing to pipe blocks (containerd/ttrpc#168)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

• Stefan Berger
• Derek McGowan
• Austin Vazquez
• Alexandru Matei
• Maksym Pavlenko
• Akihiro Suda
• Bryant Biggs
• Kevin Parsons
• Kirtana Ashok
• Phil Estes
• Kazuyoshi Kato
• Kohei Tokunaga
• Swagat Bora

Changes

• Prepare release notes for v1.7.17 (#10235)
  • 114b07b97 Prepare release notes for v1.7.17
• Use LOOP_CONFIGURE when creating loop devices (#10209)
  • 803aaa680 Remove internal LoopConfig struct
  • 7bd3be948 Swap internal ioctl implementation with golang.org/x/sys
  • a0739dc0e Use LOOP_CONFIGURE when creating loop devices
• Update unpacker to fetch all provided content (#10233)
  • 1573ea598 Update ctr image pull all platforms
  • 32b594f1b Update unpacker to always fetch all
• Update hcsshim tag to v0.11.5 (#10232)
  • 5a03a3aee Update hcsshim tag to v0.11.5
• Update ttrpc tag to 1.2.4 (#10221)
  • 9a1eda40f update ttrpc tag to 1.2.4

... (truncated)

Commits

• 3a4de45 Merge pull request #10235 from dmcgowan/prepare-v1.7.17
• 114b07b Prepare release notes for v1.7.17
• 2441c2d Merge pull request #10209 from austinvazquez/cherry-pick-a782fd6da2fa9fa350ef...
• 62af107 Merge pull request #10233 from dmcgowan/1.7-unpack-fetch-all
• a3c0f2f Merge pull request #10232 from kiashok/update-shim-0.11.4
• 1573ea5 Update ctr image pull all platforms
• 32b594f Update unpacker to always fetch all
• 5a03a3a Update hcsshim tag to v0.11.5
• b5aec32 Merge pull request #10221 from kiashok/update-ttrpc-release-1.7
• 36bbb4d Merge pull request #10210 from swagatbora90/preserve-flags-cherry-pick-1.7
• Additional commits viewable in compare view

Updates github.com/docker/docker from 26.0.1+incompatible to 26.1.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v26.1.3

26.1.3

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 26.1.3 milestone
• moby/moby, 26.1.3 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

Bug fixes and enhancements

• Fix a regression that prevented the use of DNS servers within a --internal network. moby/moby#47832
• When the internal DNS server's own address is supplied as an external server address, ignore it to avoid unproductive recursion. moby/moby#47833

Packaging updates

• Allow runc to kill containers when confined to the runc profile in AppArmor version 4.0.0 and later. moby/moby#47829

v26.1.2

26.1.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 26.1.2 milestone
• moby/moby, 26.1.2 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

Bug fixes and enhancements

• Fix issue where the CLI process would sometimes hang when a container failed to start. docker/cli#5062

Packaging updates

• Update Go runtime to 1.21.10. moby/moby#47806

v26.1.1

26.1.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 26.1.1 milestone
• moby/moby, 26.1.1 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

Bug fixes and enhancements

• Fix docker run -d printing an context canceled spurious error when OTEL is configured. docker/cli#5044
• Experimental environment variable DOCKER_BRIDGE_PRESERVE_KERNEL_LL=1 will prevent the daemon from removing the kernel-assigned link local address on a Linux bridge. moby/moby#47775
• Resolve an issue preventing container creation on hosts with a read-only /proc/sys/net filesystem. If IPv6 cannot be disabled on an interface due to this, either disable IPv6 by default on the host or ensure /proc/sys/net is read-write. Otherwise, start dockerd with DOCKER_ALLOW_IPV6_ON_IPV4_INTERFACE=1 to bypass the error. moby/moby#47769

[!NOTE]

... (truncated)

Commits

• 8e96db1 Merge pull request #47832 from vvoland/v26.1-47821
• c21fe3e Forward DNS requests into --internal networks
• 86af4ed Merge pull request #47833 from vvoland/v26.1-47744
• 73511cd Merge pull request #47829 from vvoland/v26.1-47749
• 9326cda Do not forward DNS requests to self.
• 76fcf9a apparmor: Allow confined runc to kill containers
• ef1912d Merge pull request #47806 from vvoland/v26.1-47805
• 10739af update to go1.21.10
• ac2de55 Merge pull request #47775 from vvoland/v26.1-47771
• 9a2b531 Merge pull request #47774 from vvoland/v26.1-47769
• Additional commits viewable in compare view

Updates github.com/moby/buildkit from 0.13.1 to 0.13.2

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.13.2

buildkit 0.13.2

Welcome to the 0.13.2 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Notable Changes

• Default Dockerfile frontend has been updated to 1.7.1
• Fix regression on copying hardlinks from buildx context with filters moby/buildkit#4870 tonistiigi/fsutil#198
• Windows buildkitd now correctly handles --group flag #4875
• Windows buildkitd default GC is now based on disk size like in Linux #4865
• Fix issues with some path validation for Windows containers #4863
• Fix rewrite-timestamps option incompatibility with COPY --link #4804
• Fix issue where rewite-timestamps rewrites base image layers in some cases #4805

Dependency Changes

• github.com/tonistiigi/fsutil 7525a1af2bb5 -> 91a3fc46842c

Previous release can be found at v0.13.1

Commits

• 2e18d70 Merge pull request #4874 from tonistiigi/v0.13.2-picks
• 25108ab buildkitd: allow --group for windows
• 4d961ca vendor: update fsutil to 91a3fc4
• a0efecf vendor: github.com/tonistiigi/fsutil @ 497d33b
• 38e6fcd fix: gc policy for windows to use percentage of disk space
• d647910 frontend: missing compat check for TestCommandSourceMapping
• 6d689a3 dockerfile: fix missing source mapping for COPY --link command
• 4317777 Merge pull request #4867 from AkihiroSuda/dev-0.13
• dfe87d0 build(deps): bump golang.org/x/net from 0.18.0 to 0.23.0
• ecf1c42 util/converter: fix diffID computation
• Additional commits viewable in compare view

Updates golang.org/x/sys from 0.18.0 to 0.20.0

Commits

• 7d69d98 unix: extend support for z/OS
• 7758090 cpu: add support for sve2 detection
• 9a28524 windows: drop go version tags for unsupported versions
• 27dc90b unix: update to Linux kernel 6.4
• cabba82 windows: use uint32 for serial comm flags for consistency
• 1a50d97 windows: add serial comm functions
• 95f07ec x/sys/windows: add func windows.DisconnectNamedPipe(handle Handle) (err error)
• 4be02d3 unix: expose mmap calls on z/OS
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.