Bump github.com/google/go-containerregistry from 0.5.1 to 0.6.0

[dependabot]

Bumps github.com/google/go-containerregistry from 0.5.1 to 0.6.0.

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.6.0

Changelog

9b2cec94 Add SECURITY.md (#1031) a27f4a44 Add WithTransport to gcrane (#1022) 8b535fa9 Add auth options to gcrane (#1021) b448abac Add crane recipe for listing files, add note about symlinks (#1072) b69114f9 Add google.com host suffix to gcrane keychain (#1039) 4759a5dd Add recipe to calculate image size (#1088) 6118d45d Add retry when commiting a manifest (#1041) 092caf0f Add static.NewLayer (#1093) 2f6fbf77 Allow mutate.Annotations to annotate an Image or ImageIndex (#1082) 68edb3a4 Avoid race in progress_test.go (#1081) 9e56ddd8 Avoid trying https for insecure registries (#1002) a0b94688 Bump github.com/containerd/stargz-snapshotter/estargz (#1083) 2b9ddcde Bump github.com/spf13/cobra from 1.1.3 to 1.2.1 (#1070) ce35c99b Create a k8schain directly from pull secrets (#1049) 628a2ff5 Document released images in release notes (#1069) 03f1bf46 Don't overwrite WithTransport option (#1077) acad0ede Drop error return for mutate.Annotations (#1058) e2daef5c Enable dependabot (#1052) 8395cdf4 Fix install instructions for crane (#1020) 0233fcda Fix typo in state GitHub Action (#1023) 596751a1 Handle multiple www-authenticate headers (#1075) 5f53e4ef Implement crane.Head (#1057) 0ffa4a5c Include a commit with K8s 1.20 libs (#1027) 13e1a6b0 Only verify size if we can (#1080) 426caf78 Plumb context through crane and gcrane (#995) eca1cd86 Reduce default catalog page size (#1092) d9ecc496 Remove report card (#1035) 11f87690 Revert "Avoid trying https for insecure registries (#1002)" (#1048) 5455b5b6 Revert "export manifest for tar file (#1033)" (#1043) 5ea35697 Set Content-Type to application/octet-stream (#1079) a3a06bb6 Straighten out remote.List{WithContext} (#1090) 162d96e1 Update dependencies (#1036) 45aaa6c0 Use Data field when fetching in remote (#1076) de6223d0 Verify size in verify.ReadCloser (#1044) fbb5e787 bump ggcr in gccr/k8schain what! (#1030) 529b4378 ci: test/build with go 1.14/1.15/1.16 (#1051) 3bfd0b5c crane: ignore TLS certificate validation when using --insecure flag (#1054) f0ce2270 export manifest for tar file (#1033) 764823af export manifest from tar file (#1046) 92e9e85a feat(mutate): added support for overriding manifest annotations (#1056) 3bfab55f update to add that crane retains the digest (#1037) c086c7f1 use K8s 1.20 libs 14e26bf4 use K8s 1.21 libs 100e16ab use go1.16's module aware install vs tools.go (#1028)

Container Images

... (truncated)

Commits

• 092caf0 Add static.NewLayer (#1093)
• 4759a5d Add recipe to calculate image size (#1088)
• a3a06bb Straighten out remote.List{WithContext} (#1090)
• eca1cd8 Reduce default catalog page size (#1092)
• 45aaa6c Use Data field when fetching in remote (#1076)
• 596751a Handle multiple www-authenticate headers (#1075)
• 2f6fbf7 Allow mutate.Annotations to annotate an Image or ImageIndex (#1082)
• a0b9468 Bump github.com/containerd/stargz-snapshotter/estargz (#1083)
• 13e1a6b Only verify size if we can (#1080)
• 5ea3569 Set Content-Type to application/octet-stream (#1079)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)