Bump github.com/buildpacks/lifecycle from 0.20.11 to 0.20.12

[dependabot]

Bumps github.com/buildpacks/lifecycle from 0.20.11 to 0.20.12.

Release notes

Sourced from github.com/buildpacks/lifecycle's releases.

lifecycle v0.20.12

Welcome to v0.20.12, a release of the Cloud Native Buildpacks Lifecycle.

Prerequisites

The lifecycle runs as a normal user in a series of unprivileged containers. To export images and cache image layers, it requires access to a Docker (compatible) daemon or an OCI registry.

Install

Extract the .tgz file and copy the lifecycle binaries into a build image. The build image can then be orchestrated by a platform implementation such as the pack CLI or tekton.

Lifecycle Image

An OCI image containing the lifecycle binaries is available at buildpacksio/lifecycle:0.20.12.

Chores

• Bump imgutil and docker by @​jabrown85 in buildpacks/lifecycle#1510
• Specify tool versions in go.mod by @​AidanDelaney in buildpacks/lifecycle#1511
• Bump github.com/docker/docker from 28.3.0+incompatible to 28.3.1+incompatible in the go-dependencies group by @​dependabot[bot] in buildpacks/lifecycle#1513
• Bump go to 1.24.5 by @​jabrown85 in buildpacks/lifecycle#1516
• Replace GoogleContainerTools/kaniko with chainguard-dev/kaniko by @​jabrown85 in buildpacks/lifecycle#1508

Full Changelog: buildpacks/lifecycle@v0.20.11...release/0.20.12

Contributors

We'd like to acknowledge that this release wouldn't be as good without the help of the following amazing contributors:

@​AidanDelaney @​jabrown85

Commits

• 3a692e4 Merge pull request #1517 from buildpacks/jab/debug-draft-release
• f8bf3ed debug draft step to see why it does not like recent release branch
• f992fd6 Merge pull request #1516 from buildpacks/jab/go-1-24-5
• 6696866 Bump go to 1.24.5
• 21a01a9 Merge pull request #1513 from buildpacks/dependabot/go_modules/go-dependencie...
• 187d655 Bump github.com/docker/docker in the go-dependencies group
• 096e921 Merge pull request #1511 from AidanDelaney/feature/use-go-tools
• 9f602ab Specify tool versions in go.mod
• eff4eb9 Merge pull request #1510 from buildpacks/jab/bump-imgutil-626
• ed61c00 Bump imgutil and docker
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)