chore(deps): bump the security group with 4 updates #1727

dependabot · 2025-02-03T23:25:01Z

Bumps the security group with 4 updates: github.com/cilium/ebpf, github.com/containers/image/v5, github.com/spf13/pflag and golang.org/x/exp.

Updates github.com/cilium/ebpf from 0.17.1 to 0.17.2

Release notes

Sourced from github.com/cilium/ebpf's releases.

v0.17.2

Another minor release to ship some bug fixes, notably for attaching bpf programs to symbols in kernel modules, and for reusing data sections across multiple Collections.

All users are encouraged to upgrade!

Features

link: support for kprobe session by @olsajiri in cilium/ebpf#1623

bpf2go: optionally add suffix in output file names by @mejedi in cilium/ebpf#1624

Bug Fixes

prog: fix tautological AttachTo condition in ProgramSpec.kernelModule by @brycekahle in cilium/ebpf#1640

map: check MapReplacements compatibility after applying BPF_F_MMAPABLE by @ti-mo in cilium/ebpf#1655

Other Changes

features: make HaveProgramHelper more accurate by @lmb in cilium/ebpf#1641

CI: only allow importing x/sys/unix in internal/unix by @lmb in cilium/ebpf#1648

pin: fix a bunch of fd leaks in tests by @lmb in cilium/ebpf#1651

linker: do not copy instructions when there is no reference in flattenInstructions by @paulcacheux in cilium/ebpf#1647

kallsyms: fix fd leak in AssignAddresses and AssignModules by @lmb in cilium/ebpf#1656

add windows CI by @lmb in cilium/ebpf#1650

Thanks to all who contributed and reported issues!

Full Changelog: cilium/ebpf@v0.17.1...v0.17.2

Commits

9f20115 internal: add OnLinux constant
923d34a CI: use latest main build of efW
dd845c5 CI: add windows job
b7c2bb8 internal/linux: skip some tests on non-Linux platforms
db50d22 internal/kallsyms: skip some tests on non-Linux platforms
ff8468e internal/tracefs: skip some tests on non-Linux platforms
55d4f2f unix: return ErrNotSupportedOnOS for non-Linux platforms
52120f3 cmd/bpf2go: disable on Windows
ac55f31 perf, ringbuf, epoll: add linux build tag
8d7c47f features: add linux build tag
Additional commits viewable in compare view

Updates github.com/containers/image/v5 from 5.33.1 to 5.34.0

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.34.0

What's Changed

Bump c/storage to v1.56.0, c/image to v5.33.0 by @TomSweeneyRedHat in containers/image#2625

Update stubs to match signature of actual methods by @SpangleLabs in containers/image#2541

docker: add check for too many parts by @giuseppe in containers/image#2619

fix(deps): update module golang.org/x/crypto to v0.29.0 by @renovate in containers/image#2624

fix(deps): update module golang.org/x/oauth2 to v0.24.0 by @renovate in containers/image#2626

chore(deps): update dependency golangci/golangci-lint to v1.62.0 by @renovate in containers/image#2630

chore(deps): update dependency containers/automation_images to v20241107 by @renovate in containers/image#2631

fix(deps): update module github.com/sigstore/sigstore to v1.8.10 by @renovate in containers/image#2601

fix(deps): update module github.com/sylabs/sif/v2 to v2.20.0 by @renovate in containers/image#2611

docker: drop use of external distribution challenge pkg by @flavianmissi in containers/image#2629

Merge tag 'v5.33.0' into main by @mtrmac in containers/image#2634

Improve an error message by @mtrmac in containers/image#2595

Propagate CompressedDigest/CompressedSize when reusing data from another layer by @mtrmac in containers/image#2583

chore(deps): update dependency golangci/golangci-lint to v1.62.2 by @renovate in containers/image#2640

fix(deps): update module github.com/proglottis/gpgme to v0.1.4 by @renovate in containers/image#2638

fix(deps): update module github.com/stretchr/testify to v1.10.0 by @renovate in containers/image#2639

Two small lint updates by @mtrmac in containers/image#2642

Use testify's ErrorAs to simplify tests a bit by @mtrmac in containers/image#2641

Fix excessive memory and disk usage when sharing layers by @mtrmac in containers/image#2636

Fix a missing s.lock.Unlock() on an error path by @mtrmac in containers/image#2643

In pulls, compute DiffIDs earlier, and also for v2s2 by @mtrmac in containers/image#2635

Update module golang.org/x/sync to v0.10.0 by @renovate in containers/image#2650

Update golang.org/x/exp digest to 2d47ceb by @renovate in containers/image#2648

Update module golang.org/x/term to v0.27.0 by @renovate in containers/image#2651

Update module golang.org/x/crypto to v0.30.0 by @renovate in containers/image#2652

Update module github.com/docker/docker to v27.4.0+incompatible by @renovate in containers/image#2654

Update module github.com/docker/cli to v27.4.0+incompatible by @renovate in containers/image#2653

Update module golang.org/x/crypto to v0.31.0 by @renovate in containers/image#2655

Update module github.com/sylabs/sif/v2 to v2.20.1 by @renovate in containers/image#2656

Update module github.com/sigstore/sigstore to v1.8.11 by @renovate in containers/image#2657

Update module github.com/secure-systems-lab/go-securesystemslib to v0.9.0 by @renovate in containers/image#2658

Update module github.com/containers/ocicrypt to v1.2.1 by @renovate in containers/image#2659

Update module github.com/docker/docker to v27.4.1+incompatible by @renovate in containers/image#2662

Update module github.com/sylabs/sif/v2 to v2.20.2 by @renovate in containers/image#2660

Update module github.com/docker/cli to v27.4.1+incompatible by @renovate in containers/image#2661

Fix docker daemon on Windows trying to use https instead of http for named pipes by @brbayes-msft in containers/image#2666

Update dependency golangci/golangci-lint to v1.63.2 by @renovate in containers/image#2667

Update dependency golangci/golangci-lint to v1.63.3 by @renovate in containers/image#2668

Update dependency golangci/golangci-lint to v1.63.4 by @renovate in containers/image#2669

OCI layout extensions by @vrothberg in containers/image#2633

Update module golang.org/x/term to v0.28.0 by @renovate in containers/image#2671

Update module golang.org/x/oauth2 to v0.25.0 by @renovate in containers/image#2670

Update module golang.org/x/crypto to v0.32.0 by @renovate in containers/image#2674

Update module github.com/vbauerster/mpb/v8 to v8.9.1 by @renovate in containers/image#2675

Add a comment justifying lack of unit test coverage by @mtrmac in containers/image#2673

Move JSONFormatToInvalidSignatureError to an unconditionally-included file by @mtrmac in containers/image#2632

Update dependency containers/automation_images to v20250107 by @renovate in containers/image#2677

Update module github.com/sigstore/sigstore to v1.8.12 by @renovate in containers/image#2678

... (truncated)

Commits

51a5d96 Bump to c/image v5.34.0
771660e Bump c/storage to v1.57.1
7f0e59d Merge pull request #2696 from Luap99/ENOENT
3f17e2e ignore ENOENT errors when parsing .crt files
c9771a8 ignore ENOENT errors when parsing registries.conf.d files
1294122 ignore ENOENT errors when parsing registries.d files
b5c6aff Merge pull request #2693 from containers/renovate/github.com-docker-docker-27.x
1683fc2 Update module github.com/docker/docker to v27.5.1+incompatible
16f7e1e Merge pull request #2692 from containers/renovate/github.com-docker-cli-27.x
30f0d87 Update module github.com/docker/cli to v27.5.1+incompatible
Additional commits viewable in compare view

Updates github.com/spf13/pflag from 1.0.5 to 1.0.6

Release notes

Sourced from github.com/spf13/pflag's releases.

v1.0.6

What's Changed

Add exported functions to preserve pkg/flag compatibility by @mckern in spf13/pflag#220

remove dead code for checking error nil by @yashbhutwala in spf13/pflag#282

Add IPNetSlice and unit tests by @rpothier in spf13/pflag#170

allow for blank ip addresses by @duhruh in spf13/pflag#316

add github actions by @sagikazarmark in spf13/pflag#419

New Contributors

@mckern made their first contribution in spf13/pflag#220

@yashbhutwala made their first contribution in spf13/pflag#282

@rpothier made their first contribution in spf13/pflag#170

@duhruh made their first contribution in spf13/pflag#316

@sagikazarmark made their first contribution in spf13/pflag#419

Full Changelog: spf13/pflag@v1.0.5...v1.0.6

Commits

5ca8134 Merge pull request #419 from spf13/ci
100ab0e disable unsupported dependency graph for now
a0f4ddd fix govet
f48cbd1 add github actions
d5e0c06 allow for blank ip addresses (#316)
85dd5c8 Add IPNetSlice and unit tests (#170)
6971c29 remove dead code for checking error nil (#282)
81378bb Add exported functions to preserve pkg/flag compatibility (#220)
See full diff in compare view

Updates golang.org/x/exp from 0.0.0-20241108190413-2d47ceb2692f to 0.0.0-20241217172543-b2144cdd0a67

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the security group with 4 updates: [github.com/cilium/ebpf](https://github.com/cilium/ebpf), [github.com/containers/image/v5](https://github.com/containers/image), [github.com/spf13/pflag](https://github.com/spf13/pflag) and [golang.org/x/exp](https://github.com/golang/exp). Updates `github.com/cilium/ebpf` from 0.17.1 to 0.17.2 - [Release notes](https://github.com/cilium/ebpf/releases) - [Commits](cilium/ebpf@v0.17.1...v0.17.2) Updates `github.com/containers/image/v5` from 5.33.1 to 5.34.0 - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.33.1...v5.34.0) Updates `github.com/spf13/pflag` from 1.0.5 to 1.0.6 - [Release notes](https://github.com/spf13/pflag/releases) - [Commits](spf13/pflag@v1.0.5...v1.0.6) Updates `golang.org/x/exp` from 0.0.0-20241108190413-2d47ceb2692f to 0.0.0-20241217172543-b2144cdd0a67 - [Commits](https://github.com/golang/exp/commits) --- updated-dependencies: - dependency-name: github.com/cilium/ebpf dependency-type: direct:production update-type: version-update:semver-patch dependency-group: security - dependency-name: github.com/containers/image/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: security - dependency-name: github.com/spf13/pflag dependency-type: direct:production update-type: version-update:semver-patch dependency-group: security - dependency-name: golang.org/x/exp dependency-type: direct:production update-type: version-update:semver-patch dependency-group: security ... Signed-off-by: dependabot[bot] <[email protected]>

xavpaice · 2025-02-10T05:29:25Z

@dependabot rebase

dependabot · 2025-02-10T05:31:04Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies go type::security labels Feb 3, 2025

dependabot bot closed this Feb 10, 2025

dependabot bot deleted the dependabot/go_modules/security-8bced43e7e branch February 10, 2025 05:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the security group with 4 updates #1727

chore(deps): bump the security group with 4 updates #1727

dependabot bot commented on behalf of github Feb 3, 2025 •

edited

Loading

xavpaice commented Feb 10, 2025

dependabot bot commented on behalf of github Feb 10, 2025

chore(deps): bump the security group with 4 updates #1727

chore(deps): bump the security group with 4 updates #1727

Conversation

dependabot bot commented on behalf of github Feb 3, 2025 • edited Loading

v0.17.2

Features

Bug Fixes

Other Changes

v5.34.0

What's Changed

v1.0.6

What's Changed

New Contributors

xavpaice commented Feb 10, 2025

dependabot bot commented on behalf of github Feb 10, 2025

dependabot bot commented on behalf of github Feb 3, 2025 •

edited

Loading