build(deps): bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible in /tools/src/buf #61

dependabot · 2024-08-01T17:18:26Z

Bumps github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v25.0.6

25.0.6

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

docker/cli, 25.0.6 milestone

moby/moby, 25.0.6 milestone

Deprecated and removed features, see Deprecated Features.

Changes to the Engine API, see API version history.

Security

This release contains a fix for CVE-2024-41110 / GHSA-v23v-6jw2-98fq that impacted setups using authorization plugins (AuthZ) for access control.

Bug fixes and enhancements

[25.0] remove erroneous platform from image config OCI descriptor in docker save output. moby/moby#47695

[25.0 backport] Fix a nil dereference when getting image history for images having layers without the Created value set. moby/moby#47759

[25.0 backport] apparmor: Allow confined runc to kill containers. moby/moby#47830

[25.0 backport] Fix an issue where rapidly promoting a Swarm node after another node was demoted could cause the promoted node to fail its promotion. moby/moby#47869

[25.0 backport] don't depend on containerd platform.Parse to return a typed error. moby/moby#47890

[25.0 backport] builder/mobyexporter: Add missing nil check moby/moby#47987

Packaging updates

Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver. moby/moby#47724

Update Go runtime to 1.21.12, which contains security fixes for CVE-2024-24791 moby/moby#48146

Update Containerd (static binaries only) to v1.7.20. moby/moby#48199

Full Changelog: moby/moby@v25.0.5...v25.0.6

v25.0.5

25.0.5

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

docker/cli, 25.0.5 milestone

moby/moby, 25.0.5 milestone

Deprecated and removed features, see Deprecated Features.

Changes to the Engine API, see API version history.

Security

This release contains a security fix for CVE-2024-29018, a potential data exfiltration from 'internal' networks via authoritative DNS servers.

Bug fixes and enhancements

CVE-2024-29018: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. moby/moby#47589

plugin: fix mounting /etc/hosts when running in UserNS. moby/moby#47588

rootless: fix open /etc/docker/plugins: permission denied. moby/moby#47587

Fix multiple parallel docker build runs leaking disk space. moby/moby#47527

... (truncated)

Commits

b08a51f Merge pull request #48231 from austinvazquez/backport-vendor-otel-v0.46.1-to-...
d151b0f vendor: OTEL v0.46.1 / v1.21.0
c6ba9a5 Merge pull request #48225 from austinvazquez/backport-workflow-artifact-reten...
4673a3c Merge pull request #48227 from austinvazquez/backport-backport-branch-check-t...
30f8908 github/ci: Check if backport is opened against the expected branch
7454d6a ci: update workflow artifacts retention
65cc597 Merge commit from fork
b722836 Merge pull request #48199 from austinvazquez/update-containerd-binary-to-1.7.20
e8ecb9c update containerd binary to v1.7.20
e6cae1f update containerd binary to v1.7.19
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

…xy#1305) 0.4.0-rc.1: pin envoy and ratelimit Signed-off-by: AliceProxy <[email protected]>

https://github.com/envoyproxy/envoy/releases/tag/v1.26.0 Signed-off-by: Arko Dasgupta <[email protected]>

* Extension: fix pointer error (envoyproxy#1323) (cherry picked from commit 2bf9607) Signed-off-by: AliceProxy <[email protected]> * fix: add the namespace resource within helm templates (envoyproxy#1332) Add the namespace resource within helm templates This is unfortunate workaround due the difference in UX between `helm template` and `helm install` The project recommends `helm install` as a way to install EG which supports a `--create-namespace` flag to create a namespace However we also generate a static YAML using `helm template` as part of the release artficat so a user can install the YAML directly using `kubectl` instead of `helm` . The issue here is `helm template` does not support `--create-namespace`, so instead this commit adds a knob called `createNamespace` to the Helm chart which is `false` by default, but turned on during `make generate-manifests` Fixes: envoyproxy#1307 Signed-off-by: Arko Dasgupta <[email protected]> (cherry picked from commit 9d6d699) Signed-off-by: AliceProxy <[email protected]> --------- Signed-off-by: Arko Dasgupta <[email protected]> Signed-off-by: AliceProxy <[email protected]> Co-authored-by: Arko Dasgupta <[email protected]>

Release - 0.4.0: Add Release Notes and Versioned Docs (envoyproxy#1349) release 0.4.0: add release notes and versioned docs (cherry picked from commit 843d555) Signed-off-by: AliceProxy <[email protected]>

Previously the name of the first tcp or tls route to be processed was used as the listener name. This lead to envoy draining when the tcp listener name changed which was caused by routes being added/removed or routes being processed in a different order.

Add support for ALPN routing via TLSRoute annotation

…#4)

Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.7 to 0.3.8. - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.3.7...v0.3.8) --- updated-dependencies: - dependency-name: golang.org/x/text dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…buf (#24) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.4.0 to 0.7.0. - [Commits](golang/net@v0.4.0...v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.0.0-20220209214540-3681064d5158 to 0.1.0. - [Commits](https://github.com/golang/sys/commits/v0.1.0) --- updated-dependencies: - dependency-name: golang.org/x/sys dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Signed-off-by: Mike Jensen <[email protected]>

Bumps [go.mongodb.org/mongo-driver](https://github.com/mongodb/mongo-go-driver) from 1.1.2 to 1.5.1. - [Release notes](https://github.com/mongodb/mongo-go-driver/releases) - [Commits](mongodb/mongo-go-driver@v1.1.2...v1.5.1) --- updated-dependencies: - dependency-name: go.mongodb.org/mongo-driver dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.0.0-20210630005230-0f9fa26af87c to 0.1.0. - [Commits](https://github.com/golang/sys/commits/v0.1.0) --- updated-dependencies: - dependency-name: golang.org/x/sys dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/docker/distribution](https://github.com/docker/distribution) from 2.8.1+incompatible to 2.8.2+incompatible. - [Release notes](https://github.com/docker/distribution/releases) - [Commits](distribution/distribution@v2.8.1...v2.8.2) --- updated-dependencies: - dependency-name: github.com/docker/distribution dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.5.0 to 0.7.0. - [Commits](golang/net@v0.5.0...v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20220722155237-a158d28d115b to 0.7.0. - [Commits](https://github.com/golang/net/commits/v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.4 to 0.3.8. - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.3.4...v0.3.8) --- updated-dependencies: - dependency-name: golang.org/x/text dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.7 to 0.3.8. - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.3.7...v0.3.8) --- updated-dependencies: - dependency-name: golang.org/x/text dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 20.10.24+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.21...v20.10.24) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20220127200216-cd36cc0744dd to 0.7.0. - [Commits](https://github.com/golang/net/commits/v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20201110031124-69a78807bb2b to 0.7.0. - [Commits](https://github.com/golang/net/commits/v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Previously any re-sync of a resource triggers a push to envoy even when nothing changes. This seems to be caused by re-ordering of the routes/listeners. This change sorts the listeners so that they are able to be checked for changes properly.

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.7.0 to 0.17.0. - [Commits](golang/net@v0.7.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.8.0 to 0.17.0. - [Commits](golang/net@v0.8.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.7.0 to 0.17.0. - [Commits](golang/net@v0.7.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

* build(deps): bump google.golang.org/grpc from 1.54.0 to 1.56.3 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.54.0 to 1.56.3. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.54.0...v1.56.3) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> * Run teleport-generate --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: David Boslee <[email protected]>

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.24+incompatible to 24.0.7+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.24...v24.0.7) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](golang/crypto@v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps google.golang.org/protobuf from 1.28.0 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps google.golang.org/protobuf from 1.27.1 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps google.golang.org/protobuf from 1.30.0 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps google.golang.org/protobuf from 1.28.2-0.20220831092852-f930b1dc76e8 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps google.golang.org/protobuf from 1.28.1 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.7+incompatible to 24.0.9+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v24.0.7...v24.0.9) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.17.0 to 0.23.0. - [Commits](golang/net@v0.17.0...v0.23.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

…g.org/x/net-0.23.0 build(deps): bump golang.org/x/net from 0.17.0 to 0.23.0

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.17.0 to 0.23.0. - [Commits](golang/net@v0.17.0...v0.23.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 24.0.9+incompatible to 25.0.6+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v24.0.9...v25.0.6) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Alice Wasko and others added 30 commits April 13, 2023 15:12

0.4.0-rc.1: Pin Envoy Proxy and Envoy Ratelimit for release (envoypro…

274d221

…xy#1305) 0.4.0-rc.1: pin envoy and ratelimit Signed-off-by: AliceProxy <[email protected]>

[release/v0.4] chore: bump envoy proxy to v1.26 (envoyproxy#1327)

36839fd

https://github.com/envoyproxy/envoy/releases/tag/v1.26.0 Signed-off-by: Arko Dasgupta <[email protected]>

Cherry-pick 0.4.0 release notes to release/v0.4.0 (envoyproxy#1351)

c4eb8da

Release - 0.4.0: Add Release Notes and Versioned Docs (envoyproxy#1349) release 0.4.0: add release notes and versioned docs (cherry picked from commit 843d555) Signed-off-by: AliceProxy <[email protected]>

Add github actions and make teleport workflows (#1)

4f01034

Fix helm versioning (#2)

e044de7

Add support ALPN routing via TLSRoute annotation

d8e77b4

Improve tests

9e25185

Fix variable

6ac1a3d

Add missing deepcopy regen

ed681cf

Merge pull request #5 from gravitational/sclevine/alpn-routing

100a9ad

Add support for ALPN routing via TLSRoute annotation

Add TLSRoute annotations to handle proxy protocol and max connections (…

fc498d8

…#4)

Cherry pick support for envoy pod affinity and tolerations (#7)

19ab826

Create initial codeql workflow configuration

b2b2d38

Signed-off-by: Mike Jensen <[email protected]>

Add support for downstream proxy protocol (#28)

ab2e6aa

dependabot bot and others added 27 commits October 12, 2023 13:51

Run cd action for teleport branch (#38)

02a15f0

build(deps): bump google.golang.org/protobuf in /tools/src/golangci-lint

88fab01

Bumps google.golang.org/protobuf from 1.28.0 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

build(deps): bump google.golang.org/protobuf in /tools/src/setup-envtest

e9cee2b

Bumps google.golang.org/protobuf from 1.27.1 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.33.0

be8b8a8

Bumps google.golang.org/protobuf from 1.30.0 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

build(deps): bump google.golang.org/protobuf

e93e143

Bumps google.golang.org/protobuf from 1.28.1 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

Merge pull request #53 from gravitational/dependabot/go_modules/golan…

bca4011

…g.org/x/net-0.23.0 build(deps): bump golang.org/x/net from 0.17.0 to 0.23.0

cd: fix iam role name

192dd1b

cd: mark registry as public

e5eb146

cd: fix public ecr region

718b58d

cd: fix ecr public region, attempt 2 (#59)

98d3233

dependabot bot added the dependencies Pull requests that update a dependency file label Aug 1, 2024

dependabot bot mentioned this pull request Aug 1, 2024

build(deps): bump github.com/docker/docker from 24.0.9+incompatible to 26.1.4+incompatible in /tools/src/buf #60

Closed

bpdohall force-pushed the teleport branch from 72f4363 to b177e40 Compare January 31, 2025 15:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible in /tools/src/buf #61

build(deps): bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible in /tools/src/buf #61

dependabot bot commented on behalf of github Aug 1, 2024

build(deps): bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible in /tools/src/buf #61

Are you sure you want to change the base?

build(deps): bump github.com/docker/docker from 24.0.9+incompatible to 25.0.6+incompatible in /tools/src/buf #61

Conversation

dependabot bot commented on behalf of github Aug 1, 2024

v25.0.6

25.0.6

Security

Bug fixes and enhancements

Packaging updates

v25.0.5

25.0.5

Security

Bug fixes and enhancements