Bump github.com/moby/buildkit from 0.9.3 to 0.10.6

[dependabot]

Bumps github.com/moby/buildkit from 0.9.3 to 0.10.6.

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.10.5

https://hub.docker.com/r/moby/buildkit

Notable changes:

This release contains two security fixes.

• Provide mitigation for Git vulnerability CVE-2022-39253. In systems with Git version lower than 2.38.1 invoking a build of a maliciously crafted Git repository with BUILDKIT_CONTEXT_KEEP_GIT_DIR=1 build-arg could lead to copying arbitrary file system paths into resulting containers/images.
• Add additional validation when loading content for image@digest references from the local build cache. The new validation makes sure that the same repository name populated the local data and invalid name and digest combinations are detected.

v0.10.4

https://hub.docker.com/r/moby/buildkit

Notable changes:

• Default Dockerfile frontend has been updated to v1.4.3 with fixes to handling platforms and timestamps for named image contexts. changelog
• Fix cancellation error not being detected and erroneously cached #2926
• Fix interactive containers not releasing resources when client doesn't gracefully disconnect them moby/buildkit#3025
• Fix possible panic on handling nil results moby/buildkit#3043
• Add logging to healthcheck monitoring and mitigate possibility of healthcheck failing under load2998
• Add fallback when rootless buildkitd cannot access containerd socket #2968

v0.10.3

https://hub.docker.com/r/moby/buildkit

Notable changes:

• Update the builtin Dockerfile frontend to 1.4.2 including a fix for image build contexts
• Fix performance regression in builtin Dockerfile frontend on accessing build options #2850

v0.10.2

https://hub.docker.com/r/moby/buildkit

Notable changes:

• Fix possible corruption of records created by Merge and Diff steps after a daemon restart moby/buildkit#2796

v0.10.1

https://hub.docker.com/r/moby/buildkit

Notable changes

• Builtin Dockerfile frontend updated to 1.4.1
• Fix buildinfo still including attributes for passed named contexts even if no opt-in #2716
• Fix possible panic on printing progress groups #2763
• Fix exporting/extracting certain multi-platform images to Containerd image store #2755
• Fix sending correct User-Agent #2776
• Update Continuity and Containerd to v1.6.2. Fixes regression on pulling certain images with native snapshotter and possible deadlocks on error handling. #2764
• Update Stargz snapshotter to v0.11.3. Fixes possible missing file issue #2732

... (truncated)

Commits

• 0c9b5ae Merge pull request #3272 from tonistiigi/v0.10-fsutil-go
• 9cf3b35 Merge pull request #3255 from AkihiroSuda/cherry-pick-3203
• cd96f90 v0.10: update main Dockerfile to Go 1.18
• 5cb269a vendor: update fsutil to 9ed61262
• 1e5948b Make SELinux labels opt-in (--oci-worker-selinux=\<BOOL>)
• f6c40a4 worker: move labels const to its own package
• e27c8e2 Merge pull request #3205 from thaJeztah/0.10_test_skips
• b34da50 testNamedImageContextPlatform skip direct push with dockerd
• d5dc1a3 ci(dockerd): fix symlink with dockerd bundle
• 2e035f3 ci: update buildx to 0.9.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)