chore(deps): bump the security group with 4 updates #1588

dependabot · 2024-07-29T23:26:10Z

Bumps the security group with 4 updates: github.com/cilium/ebpf, github.com/containers/image/v5, golang.org/x/exp and oras.land/oras-go.

Updates github.com/cilium/ebpf from 0.11.0 to 0.16.0

Release notes

Sourced from github.com/cilium/ebpf's releases.

v0.16.0

program: automatic verifier log sizing and ProgramInfo.RecursionMisses()

For the longest time users had to specify ProgramOptions.LogSize to get the full verifier log for large programs. The library now automatically figures out the correct buffer size to use and the field is deprecated. It will be removed in the next version.

ProgramInfo now exposes how often a program didn't execute due to recursion limits via RecursionMisses.

perf, ringbuf: better control over wakeups, Flush()

There is a trade off between how fast samples are processed and how much CPU is used. Reading samples as quickly as possible uses more CPU, reading in batches is cheaper.

It's now possible to configure a "maximum time before a wakeup" by using Reader.SetDeadline(). This now guarantees that any pending samples are read at the end of the deadline, even if the Watermark wasn't reached.

It's also possible to manually flush the buffer using Flush().

Bugfixes

The various Copy() methods now to a full deep copy and all accept nil values.

link: kprobe and uprobe links can now be pinned.

What's Changed

perf: clean up error handling and bare fds by @lmb in cilium/ebpf#1444

[go.mod] Change go directive to 1.21 by @mx-psi in cilium/ebpf#1441

gh: don't use code blocks in Bug report template by @lmb in cilium/ebpf#1450

CI: Update kernel from v6.7 to v6.8 by @dylandreimerink in cilium/ebpf#1452

build(deps): bump mkdocs from 1.5.3 to 1.6.0 in /docs by @dependabot in cilium/ebpf#1455

build(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.1.0 by @dependabot in cilium/ebpf#1454

build(deps): bump mkdocs-material from 9.5.16 to 9.5.20 in /docs by @dependabot in cilium/ebpf#1456

build(deps): bump mkdocs-git-revision-date-localized-plugin from 1.2.4 to 1.2.5 in /docs by @dependabot in cilium/ebpf#1458

build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /docs by @dependabot in cilium/ebpf#1459

replace virtme by @lmb in cilium/ebpf#1321

ci: ignore kprobe_multi test failures on arm64 by @lmb in cilium/ebpf#1461

perf: flush Record when deadline is exceeded by @lmb in cilium/ebpf#1429

link: allow retrieving perf event file descriptor by @lmb in cilium/ebpf#1425

perf_event_open cpu should be -1 for valid PID by @brycekahle in cilium/ebpf#1464

link: add test suite for netkit by @brlbil in cilium/ebpf#1463

debug sporadic vimto hang by @lmb in cilium/ebpf#1466

build(deps): bump requests from 2.31.0 to 2.32.0 in /docs by @dependabot in cilium/ebpf#1469

ci: use stable-selftests tag by @lmb in cilium/ebpf#1472

link: add Info() method to all link types by @rgo3 in cilium/ebpf#1435

Add RecursionMisses to access ProgramInfo recursion misses counter by @olsajiri in cilium/ebpf#1465

elf: turn BTF map_extra into ErrNotSupported by @lmb in cilium/ebpf#1483

... (truncated)

Commits

061e86d map: remove misleading error message when creating without BTF
b689d28 btf: fix panic when copying nil Type
218b9f9 program: deprecate LogSize and VerifierError.Truncated
63c6cf8 map: do not allocate on lookup when key doesn't exist
a61222d fix a variety of Copy() problems
fbb9ed8 perf: do not add offline CPUs
7e18818 info: make it harder to add backwards incompatible API
88e8f88 link: fix nil pointer dereference in AttachXDP
5976561 map: fix flaky TestMapIteratorAllocations
9bd3c36 perf: fix panic when CPU is offline
Additional commits viewable in compare view

Updates github.com/containers/image/v5 from 5.31.1 to 5.32.0

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.32.0

What's Changed

Bump to c/storage v1.54.0 then c/image to v5.31.0 and then to v5.31.1-dev by @TomSweeneyRedHat in containers/image#2425

Bump to v5.32.0-dev by @TomSweeneyRedHat in containers/image#2430

fix(deps): update module github.com/docker/docker-credential-helpers to v0.8.2 by @renovate in containers/image#2433

fix(deps): update module github.com/burntsushi/toml to v1.4.0 by @renovate in containers/image#2434

[CI:DOCS] Update dependency golangci/golangci-lint to v1.59.0 by @renovate in containers/image#2427

fix(deps): update module github.com/sigstore/sigstore to v1.8.4 by @renovate in containers/image#2436

blobinfocache: add function to delete the cache directory by @giuseppe in containers/image#2435

chore(deps): update dependency containers/automation_images to v20240529 by @renovate in containers/image#2414

fix(deps): update module github.com/hashicorp/go-retryablehttp to v0.7.7 by @renovate in containers/image#2437

Update github.com/letsencrypt/boulder by @mtrmac in containers/image#2438

fix(deps): update golang.org/x/exp digest to fd00a4e by @renovate in containers/image#2439

Don't abort listing tags when we encounter a digest by @mtrmac in containers/image#2440

fix(deps): update module golang.org/x/oauth2 to v0.21.0 by @renovate in containers/image#2441

[Additional Layer Store] Enable Additional Layer Store to perform registry authentication by @ktock in containers/image#2417

fix(deps): update module golang.org/x/crypto to v0.24.0 by @renovate in containers/image#2442

fix(deps): update module github.com/docker/cli to v26.1.4+incompatible by @renovate in containers/image#2444

[CI:DOCS] Update dependency golangci/golangci-lint to v1.59.1 by @renovate in containers/image#2446

fix(deps): update module github.com/klauspost/compress to v1.17.9 by @renovate in containers/image#2448

fix(deps): update module github.com/sylabs/sif/v2 to v2.17.0 by @renovate in containers/image#2455

Add more context to errors when obtaining a registry access token by @mtrmac in containers/image#2454

fix(deps): update module github.com/docker/docker to v27 by @renovate in containers/image#2459

fix(deps): update module github.com/docker/cli to v27 by @renovate in containers/image#2457

fix(deps): update module github.com/docker/docker to v27.0.2+incompatible by @renovate in containers/image#2463

fix(deps): update module github.com/docker/cli to v27.0.2+incompatible by @renovate in containers/image#2462

Warn that docker-archive and oci-archive overwrite the whole file by @mtrmac in containers/image#2468

fix(deps): update golang.org/x/exp digest to 7f521ea by @renovate in containers/image#2470

fix(deps): update module github.com/sylabs/sif/v2 to v2.17.1 by @renovate in containers/image#2469

Improve the error message when MessageDetails.SignedBy == nil by @mtrmac in containers/image#2466

Drop the toolchain directive from go.mod by @mtrmac in containers/image#2473

fix(deps): update module github.com/docker/docker to v27.0.3+incompatible by @renovate in containers/image#2472

fix(deps): update module github.com/docker/cli to v27.0.3+incompatible by @renovate in containers/image#2471

fix(deps): update module github.com/containers/ocicrypt to v1.2.0 by @renovate in containers/image#2474

Preserve more-recently-added fields when copying/updating OCI indices by @mtrmac in containers/image#2475

fix(deps): update module golang.org/x/term to v0.22.0 by @renovate in containers/image#2476

fix(deps): update module golang.org/x/crypto to v0.25.0 by @renovate in containers/image#2477

fix(deps): update module github.com/sylabs/sif/v2 to v2.18.0 by @renovate in containers/image#2479

Allow matching of compressed blobs converted on the fly to zstd:chunked by @mtrmac in containers/image#2478

Beautify by @mtrmac in containers/image#2467

Clean up obtaining bearer tokens for registries by @mtrmac in containers/image#2480

chore(deps): update module google.golang.org/grpc to v1.64.1 [security] by @renovate in containers/image#2481

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.7.4 by @renovate in containers/image#2486

fix(deps): update module github.com/docker/docker to v27.1.0+incompatible by @renovate in containers/image#2489

fix(deps): update module github.com/docker/cli to v27.1.0+incompatible by @renovate in containers/image#2488

Trivial zstd:chunked-related cleanups by @mtrmac in containers/image#2490

fix(deps): update module github.com/docker/cli to v27.1.1+incompatible by @renovate in containers/image#2491

fix(deps): update module github.com/docker/docker to v27.1.1+incompatible by @renovate in containers/image#2492

... (truncated)

Commits

1bf67ef Bump to c/image v5.32.0
8a0da4c Bump c/storage to v1.55.0
948a118 Merge pull request #2492 from containers/renovate/github.com-docker-docker-27.x
ce8ec79 fix(deps): update module github.com/docker/docker to v27.1.1+incompatible
3ed27f5 Merge pull request #2491 from containers/renovate/github.com-docker-cli-27.x
45622ce fix(deps): update module github.com/docker/cli to v27.1.1+incompatible
f07be3b Merge pull request #2490 from mtrmac/bic-trivial
c7b3342 Clarify a comment
e5435e7 Avoid two consecutive ifs with the same condition
f107495 Fix a comment
Additional commits viewable in compare view

Updates golang.org/x/exp from 0.0.0-20240506185415-9bf2ced13842 to 0.0.0-20240613232115-7f521ea00fb8

Commits

See full diff in compare view

Updates oras.land/oras-go from 1.2.5 to 1.2.6

Release notes

Sourced from oras.land/oras-go's releases.

v1.2.6

[!IMPORTANT] v1.2.6 now requires Go 1.22.4 due to updated dependencies.

What's Changed

build(deps): bump github.com/opencontainers/image-spec from 1.1.0-rc6 to 1.1.0 by @dependabot in oras-project/oras-go#707

build(deps): bump golang.org/x/crypto from 0.18.0 to 0.19.0 by @dependabot in oras-project/oras-go#705

build(deps): bump github.com/docker/cli from 25.0.1+incompatible to 25.0.3+incompatible by @dependabot in oras-project/oras-go#706

build(deps): bump golang.org/x/crypto from 0.19.0 to 0.21.0 by @dependabot in oras-project/oras-go#719

build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @dependabot in oras-project/oras-go#718

build: update to Go 1.19 by @wangxiaoxuan273 in oras-project/oras-go#723

build(deps): bump github.com/docker/docker from 25.0.1+incompatible to 25.0.4+incompatible by @dependabot in oras-project/oras-go#722

build(deps): bump github.com/docker/cli from 25.0.3+incompatible to 25.0.4+incompatible by @dependabot in oras-project/oras-go#721

build: update to Go 1.20 by @wangxiaoxuan273 in oras-project/oras-go#724

build(deps): bump github.com/distribution/distribution/v3 from 3.0.0-20221208165359-362910506bc2 to 3.0.0-alpha.1 by @dependabot in oras-project/oras-go#702

build(deps): bump github.com/docker/cli from 25.0.4+incompatible to 26.0.0+incompatible by @dependabot in oras-project/oras-go#733

build(deps): bump github.com/docker/docker from 25.0.4+incompatible to 26.0.0+incompatible by @dependabot in oras-project/oras-go#732

build(deps): bump golang.org/x/sync from 0.6.0 to 0.7.0 by @dependabot in oras-project/oras-go#736

build(deps): bump golang.org/x/crypto from 0.21.0 to 0.22.0 by @dependabot in oras-project/oras-go#737

build(deps): bump github.com/docker/cli from 26.0.0+incompatible to 26.0.1+incompatible by @dependabot in oras-project/oras-go#743

build(deps): bump github.com/docker/docker from 26.0.0+incompatible to 26.0.1+incompatible by @dependabot in oras-project/oras-go#742

build(deps): bump github.com/docker/docker from 26.0.1+incompatible to 26.1.0+incompatible by @dependabot in oras-project/oras-go#746

build(deps): bump github.com/docker/cli from 26.0.1+incompatible to 26.1.0+incompatible by @dependabot in oras-project/oras-go#747

chore: fix logo in v1 README by @Wwwsylvia in oras-project/oras-go#754

build: upgrade go version to v1.21 by @Wwwsylvia in oras-project/oras-go#755

build(deps): bump github.com/docker/docker from 26.1.0+incompatible to 26.1.1+incompatible by @dependabot in oras-project/oras-go#758

build(deps): bump github.com/docker/cli from 26.1.0+incompatible to 26.1.1+incompatible by @dependabot in oras-project/oras-go#760

build(deps): bump golang.org/x/crypto from 0.22.0 to 0.23.0 by @dependabot in oras-project/oras-go#761

build(deps): bump github.com/containerd/containerd from 1.7.6 to 1.7.16 by @dependabot in oras-project/oras-go#759

build(deps): bump github.com/docker/docker from 26.1.1+incompatible to 26.1.2+incompatible by @dependabot in oras-project/oras-go#762

build(deps): bump github.com/docker/cli from 26.1.1+incompatible to 26.1.2+incompatible by @dependabot in oras-project/oras-go#763

build(deps): bump github.com/docker/docker from 26.1.2+incompatible to 26.1.3+incompatible by @dependabot in oras-project/oras-go#765

build(deps): bump github.com/docker/cli from 26.1.2+incompatible to 26.1.3+incompatible by @dependabot in oras-project/oras-go#766

build(deps): bump github.com/containerd/containerd from 1.7.16 to 1.7.17 by @dependabot in oras-project/oras-go#767

build(deps): bump github.com/containerd/containerd from 1.7.17 to 1.7.18 by @dependabot in oras-project/oras-go#773

build(deps): bump golang.org/x/crypto from 0.23.0 to 0.24.0 by @dependabot in oras-project/oras-go#770

build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in oras-project/oras-go#776

build(deps): bump github.com/docker/cli from 26.1.3+incompatible to 27.0.2+incompatible by @dependabot in oras-project/oras-go#782

build(deps): bump github.com/docker/docker from 26.1.3+incompatible to 27.0.2+incompatible by @dependabot in oras-project/oras-go#783

build(deps): bump github.com/docker/docker from 27.0.2+incompatible to 27.0.3+incompatible by @dependabot in oras-project/oras-go#784

build(deps): bump github.com/docker/cli from 27.0.2+incompatible to 27.0.3+incompatible by @dependabot in oras-project/oras-go#785

build(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0 by @dependabot in oras-project/oras-go#787

build(deps): bump github.com/containerd/containerd from 1.7.18 to 1.7.19 by @dependabot in oras-project/oras-go#786

build(go): upgrade go version to v1.22 by @Wwwsylvia in oras-project/oras-go#790

build(deps): bump github.com/distribution/distribution/v3 from 3.0.0-alpha.1 to 3.0.0-beta.1 by @Wwwsylvia in oras-project/oras-go#791

build(deps): bump github.com/containerd/containerd from 1.7.19 to 1.7.20 by @dependabot in oras-project/oras-go#792

build(deps): bump github.com/docker/docker from 27.0.3+incompatible to 27.1.0+incompatible by @dependabot in oras-project/oras-go#794

build(deps): bump github.com/docker/cli from 27.0.3+incompatible to 27.1.0+incompatible by @dependabot in oras-project/oras-go#795

... (truncated)

Commits

33602cb build(deps): bump github.com/docker/cli from 27.0.3+incompatible to 27.1.0+in...
9b335d9 build(deps): bump github.com/docker/docker from 27.0.3+incompatible to 27.1.0...
eed6b68 build(deps): bump github.com/containerd/containerd from 1.7.19 to 1.7.20 (#792)
fe1d951 build(deps): bump github.com/distribution/distribution/v3 from 3.0.0-alpha.1 ...
7b97f0f build(go): upgrade go version to v1.22 (#790)
34d9273 build(deps): bump github.com/containerd/containerd from 1.7.18 to 1.7.19 (#786)
05075fe build(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0 (#787)
09f3f35 build(deps): bump github.com/docker/cli from 27.0.2+incompatible to 27.0.3+in...
036fe14 build(deps): bump github.com/docker/docker from 27.0.2+incompatible to 27.0.3...
5c7f84c build(deps): bump github.com/docker/docker from 26.1.3+incompatible to 27.0.2...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the security group with 4 updates: [github.com/cilium/ebpf](https://github.com/cilium/ebpf), [github.com/containers/image/v5](https://github.com/containers/image), [golang.org/x/exp](https://github.com/golang/exp) and [oras.land/oras-go](https://github.com/oras-project/oras-go). Updates `github.com/cilium/ebpf` from 0.11.0 to 0.16.0 - [Release notes](https://github.com/cilium/ebpf/releases) - [Commits](cilium/ebpf@v0.11.0...v0.16.0) Updates `github.com/containers/image/v5` from 5.31.1 to 5.32.0 - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.31.1...v5.32.0) Updates `golang.org/x/exp` from 0.0.0-20240506185415-9bf2ced13842 to 0.0.0-20240613232115-7f521ea00fb8 - [Commits](https://github.com/golang/exp/commits) Updates `oras.land/oras-go` from 1.2.5 to 1.2.6 - [Release notes](https://github.com/oras-project/oras-go/releases) - [Commits](oras-project/oras-go@v1.2.5...v1.2.6) --- updated-dependencies: - dependency-name: github.com/cilium/ebpf dependency-type: direct:production update-type: version-update:semver-minor dependency-group: security - dependency-name: github.com/containers/image/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: security - dependency-name: golang.org/x/exp dependency-type: direct:production update-type: version-update:semver-patch dependency-group: security - dependency-name: oras.land/oras-go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: security ... Signed-off-by: dependabot[bot] <support@github.com>

replicated-ci

LGTM 👍

This PR was automatically approved and merged by the automated-prs-manager GitHub action

dependabot bot added dependencies go type::security labels Jul 29, 2024

replicated-ci approved these changes Jul 30, 2024

View reviewed changes

replicated-ci merged commit 16237e4 into main Jul 30, 2024
27 checks passed

replicated-ci deleted the dependabot/go_modules/security-f3d47c5bb7 branch July 30, 2024 00:20

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the security group with 4 updates #1588

chore(deps): bump the security group with 4 updates #1588

dependabot bot commented on behalf of github Jul 29, 2024

replicated-ci left a comment

chore(deps): bump the security group with 4 updates #1588

chore(deps): bump the security group with 4 updates #1588

Conversation

dependabot bot commented on behalf of github Jul 29, 2024

v0.16.0

program: automatic verifier log sizing and ProgramInfo.RecursionMisses()

perf, ringbuf: better control over wakeups, Flush()

Bugfixes

What's Changed

v5.32.0

What's Changed

v1.2.6

What's Changed

replicated-ci left a comment

Choose a reason for hiding this comment