Bump github.com/containers/image/v5 from 5.33.1 to 5.34.0 #330

dependabot · 2025-01-31T21:52:39Z

Bumps github.com/containers/image/v5 from 5.33.1 to 5.34.0.

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.34.0

What's Changed

Bump c/storage to v1.56.0, c/image to v5.33.0 by @TomSweeneyRedHat in containers/image#2625

Update stubs to match signature of actual methods by @SpangleLabs in containers/image#2541

docker: add check for too many parts by @giuseppe in containers/image#2619

fix(deps): update module golang.org/x/crypto to v0.29.0 by @renovate in containers/image#2624

fix(deps): update module golang.org/x/oauth2 to v0.24.0 by @renovate in containers/image#2626

chore(deps): update dependency golangci/golangci-lint to v1.62.0 by @renovate in containers/image#2630

chore(deps): update dependency containers/automation_images to v20241107 by @renovate in containers/image#2631

fix(deps): update module github.com/sigstore/sigstore to v1.8.10 by @renovate in containers/image#2601

fix(deps): update module github.com/sylabs/sif/v2 to v2.20.0 by @renovate in containers/image#2611

docker: drop use of external distribution challenge pkg by @flavianmissi in containers/image#2629

Merge tag 'v5.33.0' into main by @mtrmac in containers/image#2634

Improve an error message by @mtrmac in containers/image#2595

Propagate CompressedDigest/CompressedSize when reusing data from another layer by @mtrmac in containers/image#2583

chore(deps): update dependency golangci/golangci-lint to v1.62.2 by @renovate in containers/image#2640

fix(deps): update module github.com/proglottis/gpgme to v0.1.4 by @renovate in containers/image#2638

fix(deps): update module github.com/stretchr/testify to v1.10.0 by @renovate in containers/image#2639

Two small lint updates by @mtrmac in containers/image#2642

Use testify's ErrorAs to simplify tests a bit by @mtrmac in containers/image#2641

Fix excessive memory and disk usage when sharing layers by @mtrmac in containers/image#2636

Fix a missing s.lock.Unlock() on an error path by @mtrmac in containers/image#2643

In pulls, compute DiffIDs earlier, and also for v2s2 by @mtrmac in containers/image#2635

Update module golang.org/x/sync to v0.10.0 by @renovate in containers/image#2650

Update golang.org/x/exp digest to 2d47ceb by @renovate in containers/image#2648

Update module golang.org/x/term to v0.27.0 by @renovate in containers/image#2651

Update module golang.org/x/crypto to v0.30.0 by @renovate in containers/image#2652

Update module github.com/docker/docker to v27.4.0+incompatible by @renovate in containers/image#2654

Update module github.com/docker/cli to v27.4.0+incompatible by @renovate in containers/image#2653

Update module golang.org/x/crypto to v0.31.0 by @renovate in containers/image#2655

Update module github.com/sylabs/sif/v2 to v2.20.1 by @renovate in containers/image#2656

Update module github.com/sigstore/sigstore to v1.8.11 by @renovate in containers/image#2657

Update module github.com/secure-systems-lab/go-securesystemslib to v0.9.0 by @renovate in containers/image#2658

Update module github.com/containers/ocicrypt to v1.2.1 by @renovate in containers/image#2659

Update module github.com/docker/docker to v27.4.1+incompatible by @renovate in containers/image#2662

Update module github.com/sylabs/sif/v2 to v2.20.2 by @renovate in containers/image#2660

Update module github.com/docker/cli to v27.4.1+incompatible by @renovate in containers/image#2661

Fix docker daemon on Windows trying to use https instead of http for named pipes by @brbayes-msft in containers/image#2666

Update dependency golangci/golangci-lint to v1.63.2 by @renovate in containers/image#2667

Update dependency golangci/golangci-lint to v1.63.3 by @renovate in containers/image#2668

Update dependency golangci/golangci-lint to v1.63.4 by @renovate in containers/image#2669

OCI layout extensions by @vrothberg in containers/image#2633

Update module golang.org/x/term to v0.28.0 by @renovate in containers/image#2671

Update module golang.org/x/oauth2 to v0.25.0 by @renovate in containers/image#2670

Update module golang.org/x/crypto to v0.32.0 by @renovate in containers/image#2674

Update module github.com/vbauerster/mpb/v8 to v8.9.1 by @renovate in containers/image#2675

Add a comment justifying lack of unit test coverage by @mtrmac in containers/image#2673

Move JSONFormatToInvalidSignatureError to an unconditionally-included file by @mtrmac in containers/image#2632

Update dependency containers/automation_images to v20250107 by @renovate in containers/image#2677

Update module github.com/sigstore/sigstore to v1.8.12 by @renovate in containers/image#2678

... (truncated)

Commits

51a5d96 Bump to c/image v5.34.0
771660e Bump c/storage to v1.57.1
7f0e59d Merge pull request #2696 from Luap99/ENOENT
3f17e2e ignore ENOENT errors when parsing .crt files
c9771a8 ignore ENOENT errors when parsing registries.conf.d files
1294122 ignore ENOENT errors when parsing registries.d files
b5c6aff Merge pull request #2693 from containers/renovate/github.com-docker-docker-27.x
1683fc2 Update module github.com/docker/docker to v27.5.1+incompatible
16f7e1e Merge pull request #2692 from containers/renovate/github.com-docker-cli-27.x
30f0d87 Update module github.com/docker/cli to v27.5.1+incompatible
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.33.1 to 5.34.0. - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.33.1...v5.34.0) --- updated-dependencies: - dependency-name: github.com/containers/image/v5 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Jan 31, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump github.com/containers/image/v5 from 5.33.1 to 5.34.0 #330

Bump github.com/containers/image/v5 from 5.33.1 to 5.34.0 #330

dependabot bot commented on behalf of github Jan 31, 2025

Bump github.com/containers/image/v5 from 5.33.1 to 5.34.0 #330

Are you sure you want to change the base?

Bump github.com/containers/image/v5 from 5.33.1 to 5.34.0 #330

Conversation

dependabot bot commented on behalf of github Jan 31, 2025

v5.34.0

What's Changed