-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
⬆️ Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5 #332
⬆️ Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5 #332
Conversation
51a4064
to
850e172
Compare
Codecov Report
Additional details and impacted files@@ Coverage Diff @@
## develop #332 +/- ##
==========================================
Coverage ? 98.23%
==========================================
Files ? 10
Lines ? 680
Branches ? 0
==========================================
Hits ? 668
Misses ? 10
Partials ? 2
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
@dependabot recreate |
2e64be0
to
ef7b4c8
Compare
@dependabot recreat |
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.4 to 1.1.5. - [Release notes](https://github.com/opencontainers/runc/releases) - [Changelog](https://github.com/opencontainers/runc/blob/v1.1.5/CHANGELOG.md) - [Commits](opencontainers/runc@v1.1.4...v1.1.5) --- updated-dependencies: - dependency-name: github.com/opencontainers/runc dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>
ef7b4c8
to
91e84e9
Compare
* ⬆️ Bump Templum/govulncheck-action from 0.0.8 to 0.0.9 (#300) Bumps [Templum/govulncheck-action](https://github.com/Templum/govulncheck-action) from 0.0.8 to 0.0.9. - [Release notes](https://github.com/Templum/govulncheck-action/releases) - [Commits](Templum/govulncheck-action@v0.0.8...v0.0.9) --- updated-dependencies: - dependency-name: Templum/govulncheck-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump docker/build-push-action from 3.2.0 to 3.3.0 (#303) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.2.0 to 3.3.0. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v3.2.0...v3.3.0) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump docker/setup-buildx-action from 2.2.1 to 2.3.0 (#305) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.2.1 to 2.3.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@v2.2.1...v2.3.0) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump alpine from 3.17.0 to 3.17.1 (#301) Bumps alpine from 3.17.0 to 3.17.1. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump golang from 1.19.4-alpine to 1.19.5-alpine (#302) Bumps golang from 1.19.4-alpine to 1.19.5-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump alpine from 3.17.1 to 3.17.2 (#310) Bumps alpine from 3.17.1 to 3.17.2. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * 🐛 Newer version of golangci-lint * ⬆️ Upgrade golang 1.19 => 1.20 (#315) * 🧑💻 Devcontainer to 1.20 * 🧑💻 Dev Container Docker to 1.20 * 🔧 Github Actions to 1.20 * 🔧 Go Mod 1.20 * ⬆️ Upgrade go 1.19 => 1.20 * 🐛 Seems to be required As previous version ended up in go using 1.2 instead of 1.20 * ⬆️ Update openfaas/faas-provider to 0.21.0 (#317) * ⬆️ Upgraded testcontainers and containered (#318) * ⬆️ Update x/net to 0.7.0 (#320) * ⬆️ Bump actions/setup-go from 3 to 4 (#327) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump golang from 1.20.0-alpine to 1.20.2-alpine (#325) Bumps golang from 1.20.0-alpine to 1.20.2-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Update afero, testcontainers, fasthttp & testify (#329) * ⬆️ testcontainers-go to 0.18.0 * ⬆️ Update afero to 1.9.5 * ⬆️ fasthttp to 1.45.0 * ⬆️ Bump Templum/govulncheck-action from 0.0.9 to 0.10.0 (#331) Bumps [Templum/govulncheck-action](https://github.com/Templum/govulncheck-action) from 0.0.9 to 0.10.0. - [Release notes](https://github.com/Templum/govulncheck-action/releases) - [Commits](Templum/govulncheck-action@v0.0.9...v0.10.0) --- updated-dependencies: - dependency-name: Templum/govulncheck-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Updated containerd to 1.7.9 (#336) * ⬆️ Bump Templum/govulncheck-action from 0.10.0 to 0.10.1 (#337) Bumps [Templum/govulncheck-action](https://github.com/Templum/govulncheck-action) from 0.10.0 to 0.10.1. - [Release notes](https://github.com/Templum/govulncheck-action/releases) - [Commits](Templum/govulncheck-action@v0.10.0...v0.10.1) --- updated-dependencies: - dependency-name: Templum/govulncheck-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump golang from 1.20.2-alpine to 1.20.3-alpine (#334) Bumps golang from 1.20.2-alpine to 1.20.3-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump alpine from 3.17.2 to 3.17.3 (#333) Bumps alpine from 3.17.2 to 3.17.3. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ✨ Implemented selective Docker build (#338) * 🔧 Prevent docker build for irrelevant paths * 🔧 Added Github Action Extension * 🙈 changes to go.mod * ⬆️ Bump github.com/valyala/fasthttp from 1.45.0 to 1.46.0 (#335) * ⬆️ Bump github.com/valyala/fasthttp from 1.45.0 to 1.46.0 Bumps [github.com/valyala/fasthttp](https://github.com/valyala/fasthttp) from 1.45.0 to 1.46.0. - [Release notes](https://github.com/valyala/fasthttp/releases) - [Commits](valyala/fasthttp@v1.45.0...v1.46.0) --- updated-dependencies: - dependency-name: github.com/valyala/fasthttp dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> * Test --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Templum <[email protected]> * ⬆️ Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5 (#332) Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.4 to 1.1.5. - [Release notes](https://github.com/opencontainers/runc/releases) - [Changelog](https://github.com/opencontainers/runc/blob/v1.1.5/CHANGELOG.md) - [Commits](opencontainers/runc@v1.1.4...v1.1.5) --- updated-dependencies: - dependency-name: github.com/opencontainers/runc dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump go.uber.org/automaxprocs from 1.5.1 to 1.5.2 (#330) Bumps [go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs) from 1.5.1 to 1.5.2. - [Release notes](https://github.com/uber-go/automaxprocs/releases) - [Changelog](https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md) - [Commits](uber-go/automaxprocs@v1.5.1...v1.5.2) --- updated-dependencies: - dependency-name: go.uber.org/automaxprocs dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * 📌 Removed pinning of docker (#339) * ⬆️ Bump github.com/docker/docker (#340) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 23.0.1+incompatible to 23.0.3+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v23.0.1...v23.0.3) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * 🐛 Can only use branches or branches ignore (#342) * 🔧 Corrected path * ⬆️ Bump docker/setup-buildx-action from 2.3.0 to 2.5.0 (#326) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.3.0 to 2.5.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@v2.3.0...v2.5.0) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump docker/build-push-action from 3.3.0 to 4.0.0 (#306) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.3.0 to 4.0.0. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v3.3.0...v4.0.0) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps github.com/opencontainers/runc from 1.1.4 to 1.1.5.
Release notes
Sourced from github.com/opencontainers/runc's releases.
... (truncated)
Changelog
Sourced from github.com/opencontainers/runc's changelog.
Commits
f19387a
VERSION: release v1.1.558a9abe
Merge pull request from GHSA-m8cg-xc2p-r3fc27fb72c
merge branch 'pr-3776' into release-1.18ec02ea
nsexec: retry unshare on EINVAL059d773
merge branch 'pr-3785' into release-1.10abab45
Prohibit /proc and /sys to be symlinks0e6b818
rootless: fix /sys/fs/cgroup mountsc6781d1
Merge pull request #3721 from kinvolk/rata/nsfixes-backportf6e2cd3
nsexec: Check for errors in write_log()3775df9
Merge pull request #3731 from kolyshkin/1.1-fix-dev-nullDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.