10000 build(deps): bump the dependencies group with 5 updates by dependabot[bot] · Pull Request #119 · actions-oss/act-cli · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

build(deps): bump the dependencies group with 5 updates #119

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump the dependencies group with 5 updates #119

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor
@dependabot dependabot bot commented on behalf of github Jul 1, 2025

Bumps the dependencies group with 5 updates:

Package From To
github.com/docker/cli 28.2.2+incompatible 28.3.0+incompatible
github.com/docker/docker 28.2.2+incompatible 28.3.0+incompatible
github.com/go-git/go-git/v5 5.16.0 5.16.2
go.etcd.io/bbolt 1.4.0 1.4.2
golang.org/x/crypto 0.38.0 0.39.0

Updates github.com/docker/cli from 28.2.2+incompatible to 28.3.0+incompatible

Commits
  • 38b7060 Merge pull request #6148 from thaJeztah/vendor_rc2
  • 2d46d16 vendor: github.com/docker/docker v28.3.0-rc.2
  • f03fb6c Merge pull request #6146 from thaJeztah/bump_docker
  • 5bb0d7f vendor: github.com/docker/docker 265f70964794 (v28.3.0-rc.2)
  • 575d4af vendor: github.com/docker/docker v28.3.0-rc.1
  • 4b202b9 Merge pull request #6141 from thaJeztah/login_no_tty
  • 80d1959 Merge pull request #6144 from thaJeztah/rm_top_level_remove
  • 19a5c5c remove undocumented top-level "docker remove" command
  • c882686 prevent login prompt on registry operations with no TTY attached
  • 747cb44 Merge pull request #6140 from vvoland/image-tree-used
  • Additional commits viewable in compare view

Updates github.com/docker/docker from 28.2.2+incompatible to 28.3.0+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

28.3.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

New

Bug fixes and enhancements

  • Ensure that the state of the container in the daemon database (used by /containers/json API) is up to date when the container is stopped using the /containers/{id}/stop API (before response of API). moby/moby#50136
  • Fix docker image inspect inspect omitting empty fields. moby/moby#50135
  • Fix docker images --tree not marking images as in-use when the containerd image store is disabled. docker/cli#6140
  • Fix docker pull/push hang in non-interactive when authentication is required caused by prompting for login credentials. docker/cli#6141
  • Fix a potential resource leak when a node leaves a Swarm. moby/moby#50115
  • Fix a regression where a login prompt on docker pull would show Docker Hub-specific hints when logging in on other registries. docker/cli#6135
  • Fix an issue where all new tasks in the Swarm could get stuck in the PENDING state forever after scaling up a service with placement preferences. moby/moby#50211
  • Remove an undocumented, hidden, top-level docker remove command that was accidentally introduced in Docker 23.0. docker/cli#6144
  • Validate registry-mirrors configuration as part of dockerd --validate and improve error messages for invalid mirrors. moby/moby#50240
  • dockerd-rootless-setuptool.sh: Fix the script from silently returning with no error message when subuid/subgid system requirements are not satisfied. moby/moby#50059
  • containerd image store: Fix docker push not creating a tag on the remote repository. moby/moby#50199
  • containerd image store: Improve handling of errors returned by the token server during docker pull/push. moby/moby#50176

Packaging updates

Networking

  • Revert Swarm related changes added in 28.2.x builds, due to a regression reported in moby/moby#50129. moby/moby#50169
    • Revert: Fix an issue where docker network inspect --verbose could sometimes crash the daemon (moby/moby#49937).
    • Revert: Fix an issue where the load-balancer IP address for an overlay network would not be released in certain cases if the Swarm was lacking an ingress network (moby/moby#49948).
    • Revert: Improve the reliability of NetworkDB in busy clusters and lossy networks (moby/moby#49932).
    • Revert: Improvements to the reliability and convergence speed of NetworkDB (moby/moby#49939).
  • Fix an issue that could cause container startup to fail, or lead to failed UDP port mappings, when some container ports are mapped to 0.0.0.0 and others are mapped to specific host addresses. moby/moby#50054
  • The network inspect response for an overlay network now reports that EnableIPv4 is true. moby/moby#50147
  • Windows: Improve daemon startup time in cases where the host has networks of type "Mirrored". moby/moby#50155
  • Windows: Make sure docker system prune and docker network prune only remove networks created by Docker. moby/moby#50154

... (truncated)

Commits
  • 265f709 Merge pull request #50247 from vvoland/50245-28.x
  • b2a9318 docs: cut api docs for v1.51
  • b3e2e22 Merge pull request #50244 from vvoland/50177-28.x
  • c571cd8 Merge pull request #50243 from vvoland/50238-28.x
  • 8c713c1 gha: lower timeouts on "build" and "merge" steps
  • 539c115 Merge pull request #50240 from thaJeztah/28.x_backport_validate_mirrors
  • 8e7ea47 vendor: update buildkit to v0.23.1
  • 222baf4 vendor: github.com/moby/buildkit v0.23.0
  • 1627e82 Merge pull request #50241 from thaJeztah/28.x_backport_update_cgroups
  • 4070ebd Merge pull request #50242 from thaJeztah/28.x_backport_fix_event_ordering
  • Additional commits viewable in compare view

Updates github.com/go-git/go-git/v5 from 5.16.0 to 5.16.2

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.2

What's Changed

Full Changelog: go-git/go-git@v5.16.1...v5.16.2

v5.16.1

What's Changed

New Contributors

Full Changelog: go-git/go-git@v5.16.0...v5.16.1

Commits
  • ed8216c Merge pull request #1567 from kane8n/backport-to-v5-patricsss/fix-1455
  • 4f35eba Merge pull request #1484 from patricsss/patricsss/fix-1455
  • fd1a836 Merge pull request #1561 from kane8n/backport-to-v5-fix-sparse-checkout-status
  • c3c8410 Merge pull request #1492 from onee-only/fix-sparse-checkout-status
  • See full diff in compare view

Updates go.etcd.io/bbolt from 1.4.0 to 1.4.2

Release notes

Sourced from go.etcd.io/bbolt's releases.

v1.4.2

See the CHANGELOG/v1.4.2 for more details.

v1.4.1

See the CHANGELOG/v1.4.1 for more details.

Commits
  • dca4b1d Update version to 1.4.2
  • 25e37c0 Merge pull request #1005 from ahrtr/20250626_meta_1.4
  • f32b06c Protect meta page when it's being written
  • b8ccd81 Merge pull request #1003 from Elbehery/20250625_1.4-use-temmplate-for-cross-b...
  • 61713a0 Add template to cross arch build tests
  • 992a56a Merge pull request #1000 from Elbehery/20250625_1.4-use-qemu-github-workflow
  • 0dcb047 chore(CI): Add QEMU to CI Workflow
  • 682819c Merge pull request #990 from ahrtr/20250615_maxMapSize_1.4
  • 2d2c8e4 Fix maxMapSize typo in aix, android and solaris
  • 2855a18 Merge pull request #985 from hwdef/release14-bump-go-12310
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.38.0 to 0.39.0

Commits
  • 3bf9d2a ssh/test: skip KEX test if unsupported by system SSH client
  • 9bab967 go.mod: update golang.org/x dependencies
  • 4f9f0ca x509roots/fallback: add init time benchmark
  • eac7cf0 x509roots/fallback: move parsing code to a non-generated file
  • 18228cd acme: return err from deprecated TLS-SNI-[01|02] functions
  • 73f6362 acme: remove dead code
  • ebc8e46 ssh: add server side support for Diffie Hellman Group Exchange
  • e944286 ssh: expose negotiated algorithms
  • 78a1fd7 ssh: automatically add curve25519-sha256@libssh.org KEX alias
  • ac58737 ssh: export supported algorithms
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the dependencies group with 5 updates
6d890ae 
Bumps the dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/docker/cli](https://github.com/docker/cli) | `28.2.2+incompatible` | `28.3.0+incompatible` |
| [github.com/docker/docker](https://github.com/docker/docker) | `28.2.2+incompatible` | `28.3.0+incompatible` |
| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.0` | `5.16.2` |
| [go.etcd.io/bbolt](https://github.com/etcd-io/bbolt) | `1.4.0` | `1.4.2` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.38.0` | `0.39.0` |


Updates `github.com/docker/cli` from 28.2.2+incompatible to 28.3.0+incompatible
- [Commits](docker/cli@v28.2.2...v28.3.0)

Updates `github.com/docker/docker` from 28.2.2+incompatible to 28.3.0+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v28.2.2...v28.3.0)

Updates `github.com/go-git/go-git/v5` from 5.16.0 to 5.16.2
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](go-git/go-git@v5.16.0...v5.16.2)

Updates `go.etcd.io/bbolt` from 1.4.0 to 1.4.2
- [Release notes](https://github.com/etcd-io/bbolt/releases)
- [Commits](etcd-io/bbolt@v1.4.0...v1.4.2)

Updates `golang.org/x/crypto` from 0.38.0 to 0.39.0
- [Commits](golang/crypto@v0.38.0...v0.39.0)

---
updated-dependencies:
- dependency-name: github.com/docker/cli
  dependency-version: 28.3.0+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github.com/docker/docker
  dependency-version: 28.3.0+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github.com/go-git/go-git/v5
  dependency-version: 5.16.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: go.etcd.io/bbolt
  dependency-version: 1.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: golang.org/x/crypto
  dependency-version: 0.39.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 1, 2025
@codecov Codecov
Copy link
codecov bot commented Jul 1, 2025

Codecov Report

All modified and coverable lines are covered by tests ✅

see 16 files with indirect coverage changes

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
35C7
Development

Successfully merging this pull request may close these issues.
0 participants
0