fix(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF	Age	Adoption	Passing	Confidence
github.com/aquasecurity/trivy	require	minor	v0.57.1 -> v0.58.1
github.com/containerd/containerd	require	patch	v1.7.24 -> v1.7.25
github.com/docker/docker	require	minor	v27.3.1+incompatible -> v27.4.1+incompatible
golang.org/x/sync	require	minor	v0.9.0 -> v0.10.0

---

Release Notes

aquasecurity/trivy (github.com/aquasecurity/trivy)

v0.58.1

Compare Source

⚡Release highlights and summary⚡

👉 https://github.com/aquasecurity/trivy/discussions/8171

Changelog

https://github.com/aquasecurity/trivy/blob/release/v0.58/CHANGELOG.md#0581-2024-12-24

v0.58.0

Compare Source

⚡Release highlights and summary⚡

👉 https://github.com/aquasecurity/trivy/discussions/8039

Changelog

https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0580-2024-12-02

containerd/containerd (github.com/containerd/containerd)

v1.7.25: containerd 1.7.25

Compare Source

Welcome to the v1.7.25 release of containerd!

The twenty-fifth patch release for containerd 1.7 contains various fixes
and updates.

Highlights

• Update runc binary to v1.2.4 (#​11238)
• Fix proto conflicts and update to 1.8 API (#​11184)

Container Runtime Interface (CRI)

• Fix ip_pref configuration option (#​11223)

Runtime

• Fix panic due to nil dereference cgroups v2 (#​11099)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Akihiro Suda
• Derek McGowan
• Sebastiaan van Stijn
• Wei Fu
• Maksym Pavlenko
• Akhil Mohan
• Henry Wang
• Jin Dong
• Phil Estes
• Sam Edwards
• Samuel Karp
• Brian Goff
• David Son
• Kohei Tokunaga
• Pierre Gimalac
• Yang Yang
• bo.jiang

Changes

32 commits

• Prepare release notes for v1.7.25 (#​11243)
  • bda53fc60 Prepare release notes for v1.7.25
• Update runc binary to v1.2.4 (#​11238)
  • d4a649130 update runc binary to v1.2.4
• Reduce shim plugin log level (#​11224)
  • 99c973791 runtime/v2: reduce shim plugin log
• Fix ip_pref configuration option (#​11223)
  • 0cfc1edf3 Fix "even if IPv4 comes first" test to have IPv4 first
  • 53d1fd0d9 Don't use To16() != nil to detect IPv6 addresses
• Add a build tag to disable std plugin import (#​11202) (#​11203)
  • 2b12ef2f4 chore: add a build tag to disable containerd plugin import
• bump github.com/containerd/continuity from 0.4.2 to 0.4.4 (#​11216)
  • b99091838 build(deps): bump github.com/containerd/continuity from 0.4.3 to 0.4.4
  • 9f48f7af0 build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.35.2
  • 79172ba16 go.mod: github.com/containerd/continuity v0.4.3
• deps: update golang.org/x/ (#​11178)
  • 2dfbe2c7c vendor: update golang.org/x/crypto dependencies
• Fix proto conflicts and update to 1.8 API (#​11184)
  • 3d7a50749 Replace use of deprecated api Envelope
  • 929e7bde6 Use api types over deprecated alias
  • 5a42503d1 Remove end of life api directory
  • c4069878e Update runtime/v2/runc/options to alias api type
  • 4d955223a Update to containerd api 1.8
  • efacd2ac7 Fix lint failures
• update runc binary to v1.2.3 (#​11143)
  • 957c31895 update runc binary to v1.2.3
• update build to go1.22.10, test go1.23.4 (#​11111)
  • 4c0db6ad6 update build to go1.22.10, test go1.23.4
• Fix panic due to nil dereference cgroups v2 (#​11099)
  • a40aa60a5 fix panic due to nil dereference cgroups v2
• Move rockylinux 9.4 to almalinux/9 in CI (#​11054)
  • b1ef1dda7 move rocky 9.4 to almalinux/9 in CI

Changes from containerd/continuity

40 commits

• go.mod: bump up (containerd/continuity#257)
  • 8ae2b5e Disable FUSE for FreeBSD
  • ef3b6f4 go.mod: bump up
• cmd/continuity/commands: MountCmd: remove macOS remnants (containerd/continuity#254)
  • 327ebdd cmd/continuity/commands: MountCmd: remove macOS remnants
• kind.String(): fix missing case statements for iota consts in switch (containerd/continuity#256)
  • 7d074e7 kind.String(): fix missing case statements for iota consts in switch
• go-fix: remove pre-go1.17 build-tags (containerd/continuity#252)
  • 433b975 go-fix: remove pre-go1.17 build-tags
• fs: properly handle ENOTSUP in copyXAttrs (containerd/continuity#245)
  • c494f3d fs: properly handle ENOTSUP in copyXAttrs
• gha: update CodeQL action to v3, run on go1.22 (containerd/continuity#251)
  • 3ca0c62 gha: update CodeQL action to v3, as v2 is deprecated
  • 1d06b76 gha: update CodeQL action to run on go1.22
• go.mod: prune indirect gopkg.in/yaml.v3 (containerd/continuity#250)
  • 3eb1ef4 cmd/continuity: tidy go.mod, go.sum
  • f0775b0 go.mod: prune indirect gopkg.in/yaml.v3
• gha: run CI on go1.22 (containerd/continuity#242)
  • f0f6869 gha: run CI on go1.22
• switch to github.com/containerd/log module (containerd/continuity#243)
  • 7d07d28 switch to github.com/containerd/log module
• Fix TestDiffDirChangeWithOverlayfs (also updates the CI to use Ubuntu 24.04) (containerd/continuity#249)
  • 97eff17 Fix TestDiffDirChangeWithOverlayfs
  • d934057 CI: use ubuntu-24.04
• fs: implement Atime for Windows (containerd/continuity#241)
  • 3cbda8c fs: implement Atime for Windows
• build(deps): bump google.golang.org/protobuf from 1.26.0 to 1.33.0 (containerd/continuity#238)
  • 31a50de build(deps): bump google.golang.org/protobuf from 1.26.0 to 1.33.0
• build(deps): bump google.golang.org/protobuf from 1.26.0 to 1.33.0 in /cmd/continuity (containerd/continuity#237)
  • b3e10e6 build(deps): bump google.golang.org/protobuf in /cmd/continuity
• support filesystem magic for linux (containerd/continuity#239)
  • 8df9930 support filesystem magic for linux
• fs: add DiffDirChanges function to get changeset fast (containerd/continuity#145)
  • 8b312bd fs: add DiffDirChanges function to get changeset fast
• update golangci-lint to vl.55.0 (containerd/continuity#233)
  • e08b7e4 update golangci-lint to vl.55.0 , matching the version used by containerd
• Add type to iterate directory (containerd/continuity#229)
  • 5c2d1b4 Add type to itterate directory
• Substitute deprecated rand.Seed() in Go 1.20 (containerd/continuity#231)
  • 242e29e Substitute deprecated rand.Seed() in Go 1.20

Dependency Changes

• github.com/containerd/containerd/api v1.7.19 -> v1.8.0
• github.com/containerd/continuity v0.4.2 -> v0.4.4
• golang.org/x/crypto v0.21.0 -> v0.31.0
• golang.org/x/mod v0.12.0 -> v0.17.0
• golang.org/x/net v0.23.0 -> v0.25.0
• golang.org/x/sync v0.5.0 -> v0.10.0
• golang.org/x/sys v0.18.0 -> v0.28.0
• golang.org/x/term v0.18.0 -> v0.27.0
• golang.org/x/text v0.14.0 -> v0.21.0
• google.golang.org/genproto/googleapis/rpc 995d672 -> c3f9821
• google.golang.org/protobuf v1.33.0 -> v1.35.2

Previous release can be found at v1.7.24

docker/docker (github.com/docker/docker)

v27.4.1+incompatible

Compare Source

v27.4.0+incompatible

Compare Source

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 69 additional dependencies were updated

Details:

Package	Change
cloud.google.com/go/compute/metadata	v0.3.0 -> v0.5.0
github.com/AdaLogics/go-fuzz-headers	v0.0.0-20230811130428-ced1acdcaa24 -> v0.0.0-20240806141605-e8a1dd7889d6
github.com/AdamKorcz/go-118-fuzz-build	v0.0.0-20230306123547-8075edf89bb0 -> v0.0.0-20231105174938-2b5cbb29f3e2
github.com/Azure/azure-sdk-for-go/sdk/azcore	v1.14.0 -> v1.16.0
github.com/Azure/azure-sdk-for-go/sdk/azidentity	v1.7.0 -> v1.8.0
github.com/CycloneDX/cyclonedx-go	v0.9.1 -> v0.9.2
github.com/Microsoft/hcsshim	v0.12.0 -> v0.12.9
github.com/agnivade/levenshtein	v1.1.1 -> v1.2.0
github.com/aquasecurity/go-version	v0.0.0-20240603093900-cf8a8d29271d -> v0.0.0-20241105054539-1951e80d786f
github.com/aquasecurity/trivy-checks	v1.2.2 -> v1.4.0
github.com/aquasecurity/trivy-db	v0.0.0-20240910133327-7e0f4d2ed4c1 -> v0.0.0-20241209111357-8c398f13db0e
github.com/aws/aws-sdk-go-v2	v1.31.0 -> v1.32.5
github.com/aws/aws-sdk-go-v2/config	v1.27.38 -> v1.28.5
github.com/aws/aws-sdk-go-v2/credentials	v1.17.36 -> v1.17.46
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	v1.16.14 -> v1.16.20
github.com/aws/aws-sdk-go-v2/internal/configsources	v1.3.18 -> v1.3.24
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	v2.6.18 -> v2.6.24
github.com/aws/aws-sdk-go-v2/service/ecr	v1.35.2 -> v1.36.6
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	v1.11.5 -> v1.12.1
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	v1.11.20 -> v1.12.5
github.com/aws/aws-sdk-go-v2/service/s3	v1.63.2 -> v1.68.0
github.com/aws/aws-sdk-go-v2/service/sso	v1.23.2 -> v1.24.6
github.com/aws/aws-sdk-go-v2/service/ssooidc	v1.27.2 -> v1.28.5
github.com/aws/aws-sdk-go-v2/service/sts	v1.31.2 -> v1.33.1
github.com/aws/smithy-go	v1.21.0 -> v1.22.1
github.com/bmatcuk/doublestar/v4	v4.6.1 -> v4.7.1
github.com/containerd/cgroups/v3	v3.0.2 -> v3.0.3
github.com/containerd/containerd/api	v1.7.19 -> v1.8.0
github.com/containerd/continuity	v0.4.3 -> v0.4.4
github.com/containerd/platforms	v0.2.1 -> v1.0.0-rc.0
github.com/containerd/ttrpc	v1.2.5 -> v1.2.6
github.com/containerd/typeurl/v2	v2.2.0 -> v2.2.2
github.com/cyphar/filepath-securejoin	v0.3.1 -> v0.3.4
github.com/docker/cli	v27.2.1+incompatible -> v27.3.1+incompatible
github.com/fatih/color	v1.17.0 -> v1.18.0
github.com/go-git/go-billy/v5	v5.5.0 -> v5.6.0
github.com/golang-jwt/jwt/v4	v4.5.0 -> v4.5.1
github.com/hashicorp/hcl/v2	v2.22.0 -> v2.23.0
github.com/klauspost/compress	v1.17.9 -> v1.17.11
github.com/moby/buildkit	v0.16.0 -> v0.17.2
github.com/moby/sys/sequential	v0.5.0 -> v0.6.0
github.com/open-policy-agent/opa	v0.68.1-0.20240903211041-76f7038ea2d1 -> v0.70.0
github.com/opencontainers/selinux	v1.11.0 -> v1.11.1
github.com/owenrumney/squealer	v1.2.4 -> v1.2.5
github.com/prometheus/client_golang	v1.20.2 -> v1.20.5
github.com/vmihailenco/msgpack/v5	v5.3.5 -> v5.4.1
github.com/zclconf/go-cty-yaml	v1.0.3 -> v1.1.0
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	v0.53.0 -> v0.56.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	v0.53.0 -> v0.56.0
go.opentelemetry.io/otel	v1.28.0 -> v1.31.0
go.opentelemetry.io/otel/metric	v1.28.0 -> v1.31.0
go.opentelemetry.io/otel/sdk	v1.28.0 -> v1.31.0
go.opentelemetry.io/otel/trace	v1.28.0 -> v1.31.0
golang.org/x/crypto	v0.27.0 -> v0.31.0
golang.org/x/mod	v0.21.0 -> v0.22.0
golang.org/x/net	v0.29.0 -> v0.33.0
golang.org/x/oauth2	v0.21.0 -> v0.22.0
golang.org/x/sys	v0.26.0 -> v0.28.0
golang.org/x/term	v0.25.0 -> v0.27.0
golang.org/x/text	v0.18.0 -> v0.21.0
golang.org/x/time	v0.6.0 -> v0.7.0
golang.org/x/tools	v0.24.0 -> v0.26.0
google.golang.org/genproto/googleapis/api	v0.0.0-20240701130421-f6361c86f094 -> v0.0.0-20241007155032-5fefd90f89a9
google.golang.org/genproto/googleapis/rpc	v0.0.0-20240701130421-f6361c86f094 -> v0.0.0-20241021214115-324edc3d5d38
google.golang.org/grpc	v1.66.0 -> v1.67.1
google.golang.org/protobuf	v1.34.2 -> v1.35.2
helm.sh/helm/v3	v3.16.1 -> v3.16.3
k8s.io/apiextensions-apiserver	v0.31.0 -> v0.31.1
k8s.io/apiserver	v0.31.0 -> v0.31.2