chore(deps): bump the common group across 1 directory with 11 updates

[dependabot]

Bumps the common group with 11 updates in the / directory:

Package	From	To
github.com/Azure/azure-sdk-for-go/sdk/azcore	1.11.1	1.12.0
github.com/aws/aws-sdk-go-v2/service/ec2	1.163.1	1.164.0
github.com/containerd/containerd	1.7.17	1.7.18
github.com/docker/docker	26.1.3+incompatible	27.0.0+incompatible
github.com/moby/buildkit	0.13.2	0.14.0
github.com/tetratelabs/wazero	1.7.2	1.7.3
golang.org/x/mod	0.17.0	0.18.0
google.golang.org/protobuf	1.34.1	1.34.2
helm.sh/helm/v3	3.15.1	3.15.2
k8s.io/api	0.30.1	0.30.2
modernc.org/sqlite	1.30.0	1.30.1

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.11.1 to 1.12.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.12.0

1.12.0 (2024-06-06)

Features Added

• Added field StatusCodes to runtime.FetcherForNextLinkOptions allowing for additional HTTP status codes indicating success.
• Added func NewUUID to the runtime package for generating UUIDs.

Bugs Fixed

• Fixed an issue that prevented pollers using the Operation-Location strategy from unmarshaling the final result in some cases.

Other Changes

• Updated dependencies.

Commits

• e58902b Prep azcore v1.12.0 for release (#23005)
• 9ad32c5 Increment package version after release of internal (#23004)
• 897e903 Update ignore-links.txt (#23003)
• ac7cc04 [keyvault] fix test recording sanitizers (#22911)
• 276cf8c update readme (#22971)
• 5eb479f [azopenai] Updating hash to merged PR. (#22998)
• 9c4f5c5 Prepare sdk/internal v1.9.0 for release (#22991)
• b407f56 Increment version for messaging/azwebpubsub releases (#22466)
• 3af4c7e update mgmt live test (#22996)
• b7d018e fix sdk/resourcemanager/internal module (#22994)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ec2 from 1.163.1 to 1.164.0

Commits

• 177d1a4 Release 2024-06-12
• 26b21b2 Regenerated Clients
• 368c7c5 Update endpoints model
• 7e72f2b Update API model
• d93559e Merge pull request #2676 from aws/feat-remove-backupstorage
• f872f7c Add changelog
• d3c676c remove backupstorage service
• fb05d1e Release 2024-06-11
• 09720de Regenerated Clients
• fbb0a5a Update endpoints model
• Additional commits viewable in compare view

Updates github.com/containerd/containerd from 1.7.17 to 1.7.18

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.18

Welcome to the v1.7.18 release of containerd!

The eighteenth patch release for containerd 1.7 contains various updates along with an updated version of Go. Go 1.22.4 and 1.21.11 include a fix for a symlink time of check to time of use race condition during directory removal.

Highlights

• Update Go version to 1.21.11 (#10298)
• Remove uses of platforms.Platform alias (#10277)
• Migrate log imports to github.com/containerd/log (#10269)
• Migrate errdefs package to github.com/containerd/errdefs (#10266)
• Fix usage of "unknown" platform (#10261)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

• Derek McGowan
• Sebastiaan van Stijn
• Akhil Mohan
• Austin Vazquez
• Phil Estes

Changes

• Prepare release notes for v1.7.18 (#10301)
  • 9426aab62 Prepare release notes for v1.7.18
• Update Go version to 1.21.11 (#10298)
  • cdd3ea913 Update Go version to 1.21.11
• Remove uses of platforms.Platform alias (#10277)
  • 1e3c662d6 [release/1.7] remove uses of platforms.Platform alias
• Migrate log imports to github.com/containerd/log (#10269)
  • 0af6825b1 migrate logs imports to github.com/containerd/log module
• Migrate errdefs package to github.com/containerd/errdefs (#10266)
  • 308341a44 replace uses of github.com/containerd/containerd/errdefs
  • 47ff8cfce migrate errdefs package to github.com/containerd/errdefs module
• Fix usage of "unknown" platform (#10261)
  • f4d11912a core/image: fix usage of "unknown" platform
• Explicitly set release latest to true (#10265)
  • 5b0480009 Explicitly set release latest to true
  • d669b100d build(deps): bump softprops/action-gh-release from 1 to 2

Changes from containerd/errdefs

... (truncated)

Commits

• ae71819 Merge pull request #10301 from dmcgowan/prepare-v1.7.18
• 9426aab Prepare release notes for v1.7.18
• 1d324db Merge pull request #10298 from dmcgowan/1.7-update-go
• cdd3ea9 Update Go version to 1.21.11
• 0a137f0 Merge pull request #10277 from thaJeztah/1.7_backport_remove_use_of_platform_...
• 1e3c662 [release/1.7] remove uses of platforms.Platform alias
• 300a6de Merge pull request #10269 from thaJeztah/1.7_migrate_containerd_log
• 0af6825 migrate logs imports to github.com/containerd/log module
• be820ac Merge pull request #10266 from thaJeztah/1.7_migrate_to_errdefs_module
• 566c535 Merge pull request #10261 from k8s-infra-cherrypick-robot/cherry-pick-10257-t...
• Additional commits viewable in compare view

Updates github.com/docker/docker from 26.1.3+incompatible to 27.0.0+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.0.0-rc.1

27.0.0-rc.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.0.0 milestone
• moby/moby, 27.0.0 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

New

• Add support to docker stack deploy for driver_opts in a service's networks. docker/cli#5125
• containerd image store: Add --platform flag to docker image push and improve the default behavior when not all platforms of the multi-platform image are available locally. docker/cli#4984, moby/moby#47679

Bug fixes and enhancements

• Fix a bug causing the docker CLI to leak UNIX sockets in $TMPDIR in some cases. docker/cli#5146
• Don't ignore a custom seccomp profile when used in conjunction with --privileged moby/moby#47500
• rootless: overlay2: support native overlay diff when using rootless-mode in kernel 5.11 and above moby/moby#47605
• Fix the StartInterval default value of healthcheck to reflect the documented value of 5s. moby/moby#47799
• Allow sysctls to be set per-interface during container creation and network connection. moby/moby#47686
• A ULA base prefix is automatically added to default-address-pools if this parameter wasn't manually configured, or if it contains no IPv6 prefixes. This ULA prefix is derived from the Engine host ID such that it's unique across hosts and over time. moby/moby#47853
• Enable ip6tables by default, it is no longer --experimental. moby/moby#47747
• Introduce a new subnet allocator that can deal with IPv6 address pools of any size moby/moby#47768
• For IPv6-enabled bridge networks, do not attempt to replace the bridge's kernel-assigned link local address with fe80::1. moby/moby#47787
• Fix docker save and docker load not ending on the daemon side when the operation was cancelled (eg. Ctrl+C) moby/moby#47629
• Container's StartedAt property is now recorded before container startup, guaranteeing that the StartedAt is always before FinishedAt. moby/moby#47003
• Run an internal resolver on the default bridge network to forward DNS requests to external resolvers, even if they are on localhost addresses, or IPv6 addresses when the default bridge does not have IPv6 connectivity. To preserve existing behavior, the internal resolver on the default bridge will not resolve container names, unlike the resolver on user-defined networks. Do not use Google's DNS servers as a fallback when no external DNS servers are supplied in configuration via --dns or available from the host's resolv.conf. moby/moby#47602
• If firewalld is running on the host, create policy docker-forwarding to allow forwarding from any zone to the docker zone. This makes it possible to configure a bridge network with a routable IPv6 address, and no masquerading. moby/moby#47745
• IPv6 can now be enabled by default on all custom networks using dockerd --default-network-opt=bridge=com.docker.network.enable_ipv6=true (and the matching json option). moby/moby#47867
• The internal DNS resolver used by Windows containers on Windows will now forward requests to external DNS servers by-default, this enables nslookup to resolve external hostnames. This behaviour can be disabled via daemon.json, using "features": { "windows-dns-proxy": false }, the feature flag will be removed in a future release. moby/moby#47826
• Document the use of driver-opt in the CLI for setting per-interface sysctls. docker/cli#4994
• Print a warning when the CLI does not have permissions to read the configuration file. docker/cli#5077

API

• containerd image store: POST /images/{name}/push now supports a platform parameter (JSON encoded OCI Platform type) that allows selecting a specific platform-manifest from the multi-platform image. This is experimental and may change in future API versions. moby/moby#47679
• ContainerList api returns container annotations. moby/moby#47866
• Deprecate the daemon flag --api-cors-header and the corresponding daemon.json config param. These will be removed in the next major release. moby/moby#45313
• Client API callback functions client.RequestPrivilegeFunc, client.ImageSearchOptions.AcceptPermissionsFunc and image.ImportOptions.PrivilegeFunc now require a context parameter. moby/moby#47536
• Remove deprecated ImageImportOptions, ImageCreateOptions, ImagePullOptions, ImagePushOptions, ImageListOptions, ImageRemoveOptions aliases for Image types. moby/moby#47900
• Move ExecConfig, ContainerExecInspect, ContainersPruneReport, ContainerPathStat, CopyToContainerOptions, ExecStartCheck and ContainerStats to api/types/container; ImagesPruneReport, ImageImportSource and ImageLoadResponse to api/types/image; ExecStartOptions to api/types/backend; VolumesPruneReport to api/types/volume; EventsOptions to api/types/events; ImageSearchOptions to api/types/registry. moby/moby#47936
• Deprecate non-standard (config) fields in image inspect output. The Config field returned by this endpoint (used for "image inspect") returned additional fields that are not part of the image's configuration and not part of the [Docker Image Spec] and the [OCI Image Spec]. These fields are never set (and always return the default value for the type), but are not omitted in the response when left empty. As these fields were not intended to be part of the image configuration response, they are deprecated, and will be removed in the future API versions. The following fields are currently included in the API response, but are not part of the underlying image's Config, and deprecated:
  • Hostname

... (truncated)

Commits

• See full diff in compare view

Updates github.com/moby/buildkit from 0.13.2 to 0.14.0

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.14.0

Welcome to the 0.14.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• Tõnis Tiigi
• CrazyMax
• Talon James Bowler
• Akihiro Suda
• Jonathan A. Sternberg
• Justin Chadwell
• David Karlsson
• Sebastiaan van Stijn
• Anthony Nandaa
• Erik Sipsma
• Aleksa Sarai
• Adam Perlin
• Shaun Thompson
• Paweł Gronowski
• Burt Holzman
• Derek McGowan
• Adrien Delorme
• Ahmon Dancy
• Billy Owire
• Dennis Haney
• Felix Fontein
• Félix Mattrat
• Gabriel Samfira
• Höhl, Lukas
• Kirill A. Korinsky
• Petteri Räty
• Salim B
• Stephen Day
• Swagat Bora
• Zhizhen He
• cuiyourong
• guoguangwu
• racequite
• yzewei

Notable Changes

• Default Dockerfile frontend has been updated to v1.8.0 docs
• New validation rules have been added to verify that Frontend returned build results for expected platforms #4908
• Allow configuring cache of scanned emulator support for better performance #4949
• LLB FileOp now supports configuring the behavior of copy conflicts between incompatible file types #4455

... (truncated)

Commits

• 4d9a4e5 Merge pull request #5017 from crazy-max/fix-history-exporters
• 6b6fa9d history: fix empty Exporters attribute
• eed17a4 Merge pull request #5014 from tonistiigi/0610-testifylint
• fc936ae lint: more testifylint fixes
• 715276d Merge pull request #5012 from daghack/lint-cleanup
• b4c1b71 Merge branch 'master' into lint-cleanup
• 7da4d59 Merge pull request #5013 from crazy-max/docs-fix-dockerfile-checks-links
• ff10dcc minor lint formatting cleanups
• e779094 dockerfile: fix lint rules links in index
• 5760de7 Merge pull request #5010 from tonistiigi/flightcontrol-timeout-fix
• Additional commits viewable in compare view

Updates github.com/tetratelabs/wazero from 1.7.2 to 1.7.3

Release notes

Sourced from github.com/tetratelabs/wazero's releases.

v1.7.3

Time to celebrate the new wazero release! This time has not only the important bugs fixes just like before, but more importantly comes with the drastic "compilation time" performance improvements!

Bug fixes

• Various WASI related bug fixes contributed by @​yagehu #2244 #2229 #2223
• Syscall compatibility fix on Windows by @​ncruces #2218
• api.Memory.Grow call bug introduced in v1.7.0 by @​mathetake #2216 (thanks to @​mark-pictor-csec for reporting)

Compilation perf improvements

@​mathetake worked so hard to improve the compilation performance which some users had raised issue about since the release of the optimizing compiler in 1.7.0. The idea is that even though this is partly because it is "optimizing", there are still rooms for improvements in its codebase to use less CPU/memory.

The below is the compilation time benchmark on the various standard library tests for Zig, Go and TinyGo compared to the previous v1.7.2. You can see the huge results up to like 50% faster and ~50% less memory usage. Note that this doesn't affect any runtime performance -- that means your code runs just exactly like before while having faster compilation!😎

goos: darwin
goarch: arm64
pkg: github.com/tetratelabs/wazero/internal/integration_test/stdlibs
                                                   │   old.txt    │              new.txt               │
                                                   │    sec/op    │   sec/op     vs base               │
Zig/Compile/test-opt.wasm-10                           4.872 ± 2%    3.389 ± 3%  -30.44% (p=0.001 n=7)
Zig/Compile/test.wasm-10                               5.926 ± 2%    4.162 ± 1%  -29.76% (p=0.001 n=7)
TinyGo/Compile/container_heap.test-10                 677.2m ± 0%   306.3m ± 1%  -54.76% (p=0.001 n=7)
TinyGo/Compile/container_list.test-10                 673.2m ± 1%   309.3m ± 8%  -54.05% (p=0.001 n=7)
TinyGo/Compile/container_ring.test-10                 665.1m ± 1%   299.5m ± 0%  -54.97% (p=0.001 n=7)
TinyGo/Compile/crypto_des.test-10                     686.4m ± 0%   311.6m ± 0%  -54.61% (p=0.001 n=7)
TinyGo/Compile/crypto_md5.test-10                     685.5m ± 1%   312.7m ± 4%  -54.38% (p=0.001 n=7)
TinyGo/Compile/crypto_rc4.test-10                     666.5m ± 0%   297.9m ± 0%  -55.31% (p=0.001 n=7)
TinyGo/Compile/crypto_sha1.test-10                    683.7m ± 0%   310.1m ± 0%  -54.65% (p=0.001 n=7)
TinyGo/Compile/crypto_sha256.test-10                  692.0m ± 1%   315.0m ± 2%  -54.48% (p=0.001 n=7)
TinyGo/Compile/crypto_sha512.test-10                  692.7m ± 0%   316.6m ± 1%  -54.29% (p=0.001 n=7)
TinyGo/Compile/encoding_ascii85.test-10               680.6m ± 1%   309.3m ± 1%  -54.55% (p=0.001 n=7)
TinyGo/Compile/encoding_base32.test-10               1637.6m ± 1%   650.8m ± 0%  -60.26% (p=0.001 n=7)
TinyGo/Compile/encoding_csv.test-10                   740.0m ± 1%   333.5m ± 0%  -54.92% (p=0.001 n=7)
TinyGo/Compile/encoding_hex.test-10                   708.7m ± 3%   320.9m ± 0%  -54.72% (p=0.001 n=7)
TinyGo/Compile/go_scanner.test-10                     773.2m ± 1%   347.1m ± 6%  -55.11% (p=0.001 n=7)
TinyGo/Compile/hash.test-10                           951.8m ± 1%   410.8m ± 0%  -56.84% (p=0.001 n=7)
TinyGo/Compile/hash_adler32.test-10                   665.8m ± 1%   297.5m ± 0%  -55.32% (p=0.001 n=7)
TinyGo/Compile/hash_crc64.test-10                     893.9m ± 1%   385.1m ± 1%  -56.92% (p=0.001 n=7)
TinyGo/Compile/hash_fnv.test-10                       695.8m ± 2%   312.4m ± 0%  -55.10% (p=0.001 n=7)
TinyGo/Compile/html.test-10                            2.426 ± 1%    2.012 ± 1%  -17.07% (p=0.001 n=7)
TinyGo/Compile/internal_itoa.test-10                  662.5m ± 1%   296.0m ± 1%  -55.32% (p=0.001 n=7)
TinyGo/Compile/internal_profile.test-10               893.6m ± 1%   417.9m ± 0%  -53.24% (p=0.001 n=7)
TinyGo/Compile/math.test-10                           821.1m ± 0%   398.4m ± 0%  -51.48% (p=0.001 n=7)
TinyGo/Compile/math_cmplx.test-10                     701.7m ± 0%   338.8m ± 1%  -51.71% (p=0.001 n=7)
TinyGo/Compile/net.test-10                            755.4m ± 1%   356.5m ± 3%  -52.81% (p=0.001 n=7)
TinyGo/Compile/net_http_internal_ascii.test-10        661.5m ± 1%   296.8m ± 2%  -55.14% (p=0.001 n=7)
TinyGo/Compile/net_mail.test-10                       927.1m ± 2%   398.9m ± 2%  -56.97% (p=0.001 n=7)
TinyGo/Compile/os.test-10                             754.9m ± 0%   370.5m ± 0%  -50.92% (p=0.001 n=7)
</tr></table> 

... (truncated)

Commits

• 8b3af37 wasi: path_open should accept a dir with RIGHT_FD_WRITE (#2244)
• 0fa14a6 Add wazero user: wescale (#2239)
• 507493b ssa: optimizes findValue function (#2245)
• 5c8366f ssa: optimizes slice allocations (#2242)
• d059981 Fixes flaky TestEngine_sortedCompiledModules (#2241)
• 56e2a43 regalloc: removes map from RegAllocFunction (#2240)
• 981e71d fix typo in the cache example test function name (#2238)
• 9995367 regalloc: removes unnecessary Instruction.Uses (#2237)
• 0649820 Removes non-static locals collection (#2236)
• 747609b ssa: removes map use for block traversals (#2235)
• Additional commits viewable in compare view

Updates golang.org/x/mod from 0.17.0 to 0.18.0

Commits

• c0bdc7b modfile: add API for godebug lines
• 6686f41 module: add COM0 and LPT0 to badWindowsNames
• See full diff in compare view

Updates google.golang.org/protobuf from 1.34.1 to 1.34.2

Updates helm.sh/helm/v3 from 3.15.1 to 3.15.2

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.15.2 is a security (patch) release. Users are strongly recommended to update to this release.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.15.2. The common platform binaries are here:

• MacOS amd64 (checksum / e99a9266a5328cb575d81ef10247911f42d9e90c76ef6eef154c5c535565658b)
• MacOS arm64 (checksum / 30143dabc1da9d32c7d6c589fad04b1f1ecc73841393d5823fa21c5d7f5bf8f6)
• Linux amd64 (checksum / 2694b91c3e501cff57caf650e639604a274645f61af2ea4d601677b746b44fe2)
• Linux arm (checksum / 2b28fda1d8c6f087011bc7ec820051a13409dadce8385529f306476632e24e85)
• Linux arm64 (checksum / adcf07b08484b52508e5cbc8b5f4b0b0db50342f7bc487ecd88b8948b680e6a7)
• Linux i386 (checksum / 8e0bb5a08c7c227a8e285026b6283726ddc0e1f406e2af4d4d600fa1dd85c21e)
• Linux ppc64le (checksum / 9d95528fb797f6429f7f9b6dee0cf87bf8c71f6470e1db4a51e844c169c285a3)
• Linux s390x (checksum / 5b42bc3d08fd0ffaf4f9ed810f28464f52ec4ea431b809c7179071d76f3d6f16)
• Linux riscv64 (checksum / 2998bae9971a55f862c21bff337c325cb6a44f28ef76e11bffc93d16989e11e6)
• Windows amd64 (checksum / cbf40b79fa2a7dbd6e24201f8660b56261d10d6e7b5cadc3ff78100fb45b3c69)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.15.3 will contain only bug fixes and be released on July 10, 2024.
• 3.16.0 is the next feature release and will be on September 11, 2024.

Changelog

• fix: wrong cli description 1a500d5625419a524fdae4b33de351cc4f58ec35 (yyzxw)
• fix typo in load_plugins.go 70b225c9abc014cfeb73f7c9f506b0e73e912b61 (yxxhero)
• fix docs of DeployedAll b3640f196a2cf77136ab01295bffe76fa184991d (Daniel Strobusch)
• Bump github.com/docker/docker 46e2ba0341d43e19493b2f90c86126da8ad8a64e (dependabot[bot])
• bump oras minor version fb311d331f66f7f9153b5d0c7aa07a77bc9528ca (Austin Abro)
• feat(load.go): add warning on requirements.lock 23552a7de6f45aacec47bc2bfe70de02b9d7ab70 (Aaron U'Ren)

Commits

• 1a500d5 fix: wrong cli description
• 70b225c fix typo in load_plugins.go
• b3640f1 fix docs of DeployedAll
• 46e2ba0 Bump github.com/docker/docker
• fb311d3 bump oras minor version
• 23552a7 feat(load.go): add warning on requirements.lock
• See full diff in compare view

Updates k8s.io/api from 0.30.1 to 0.30.2

Commits

• 118f81c Update dependencies to v0.30.2 tag
• See full diff in compare view

Updates modernc.org/sqlite from 1.30.0 to 1.30.1

Commits

• 504e519 fix linux/arm64 regression, updates #100, updates #185
• da1e35d vfs_linux_arm64: adjust for libc@v1.52.1, updates #185
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.