Release notes
Sourced from crazy-max/ghaction-import-gpg's releases.
v6.2.0
- Bump
@actions/corefrom 1.10.1 to 1.11.1 in crazy-max/ghaction-import-gpg#209- Bump braces from 3.0.2 to 3.0.3 in crazy-max/ghaction-import-gpg#203
- Bump ip from 2.0.0 to 2.0.1 in crazy-max/ghaction-import-gpg#196
- Bump micromatch from 4.0.4 to 4.0.8 in crazy-max/ghaction-import-gpg#207
- Bump openpgp from 5.11.0 to 5.11.2 in crazy-max/ghaction-import-gpg#205
- Bump tar from 6.1.14 to 6.2.1 in crazy-max/ghaction-import-gpg#198
Full Changelog: https://github.com/crazy-max/ghaction-import-gpg/compare/v6.1.0...v6.2.0
Commits
cb9bde2Merge pull request #205 from crazy-max/dependabot/npm_and_yarn/openpgp-5.11.2652ac61chore: update generated content0404dfdbuild(deps): bump openpgp from 5.11.0 to 5.11.263a9470Merge pull request #209 from crazy-max/dependabot/npm_and_yarn/actions/core-1...e3a6456chore: update generated contentf0d6155Merge pull request #207 from crazy-max/dependabot/npm_and_yarn/micromatch-4.0.88812250build(deps): bump@actions/corefrom 1.10.1 to 1.11.135465dfbuild(deps): bump micromatch from 4.0.4 to 4.0.8ea88154Merge pull request #204 from crazy-max/dependabot/github_actions/docker/bake-...871d8a5build(deps): bump docker/bake-action from 4 to 5- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's releases.
v0.15.0
FEATURES:
- ephemeralvalidator: Introduce new package with declarative validators for ephemeral resource configurations (#242)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's changelog.
0.15.0 (October 31, 2024)
FEATURES:
- ephemeralvalidator: Introduce new package with declarative validators for ephemeral resource configurations (#242)
Commits
987f5acUpdate changelogb793fd3ephemeralvalidator: Introduce new package for common ephemeral resource confi...761f545build(deps): bump github.com/hashicorp/terraform-plugin-framework (#243)371aa75build(deps): bump github.com/hashicorp/terraform-plugin-go (#241)9765f80Result of tsccr-helper -log-level=info gha update -latest . (#240)- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from goreleaser/goreleaser-action's releases.
v6.1.0
What's Changed
- chore(deps): bump braces from 3.0.2 to 3.0.3 by
@dependabotin goreleaser/goreleaser-action#467- chore(deps): bump docker/bake-action from 4 to 5 by
@dependabotin goreleaser/goreleaser-action#468- chore(deps): bump semver from 7.6.2 to 7.6.3 by
@dependabotin goreleaser/goreleaser-action#470- chore(deps): bump
@actions/http-clientfrom 2.2.1 to 2.2.2 by@dependabotin goreleaser/goreleaser-action#473- chore(deps): bump
@actions/http-clientfrom 2.2.2 to 2.2.3 by@dependabotin goreleaser/goreleaser-action#474- chore(deps): bump micromatch from 4.0.5 to 4.0.8 by
@dependabotin goreleaser/goreleaser-action#475- chore(deps): bump
@actions/corefrom 1.10.1 to 1.11.1 by@dependabotin goreleaser/goreleaser-action#478- docs: bump upload-artifact version by
@dunglasin goreleaser/goreleaser-action#479- chore: update generated content by
@crazy-maxin goreleaser/goreleaser-action#480New Contributors
@dunglasmade their first contribution in goreleaser/goreleaser-action#479Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v6.0.0...v6.1.0
Commits
9ed2f89chore: update generated content (#480)cf63508docs: bump upload-artifact version (#479)f7623f3chore(deps): bump@actions/corefrom 1.10.1 to 1.11.1 (#478)006a7a4chore: updatee4066e6chore(deps): bump micromatch from 4.0.5 to 4.0.8 (#475)22f558echore(deps): bump@actions/http-clientfrom 2.2.2 to 2.2.3 (#474)6e33108chore(deps): bump@actions/http-clientfrom 2.2.1 to 2.2.2 (#473)7ca6450chore(deps): bump semver from 7.6.2 to 7.6.3 (#470)d33b6f6chore(deps): bump docker/bake-action from 4 to 5 (#468)85d0b9dchore(deps): bump braces from 3.0.2 to 3.0.3 (#467)- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-docs's releases.
v0.20.0
NOTES:
- all: This Go module has been updated to Go 1.22 per the Go support policy. It is recommended to review the Go 1.22 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#400)
FEATURES:
- generate: Add support for ephemeral resources (#415)
- migrate: Add support for ephemeral resources (#415)
- validate: Add support for ephemeral resources (#415)
BUG FIXES:
Changelog
Sourced from github.com/hashicorp/terraform-plugin-docs's changelog.
0.20.0 (November 06, 2024)
NOTES:
- all: This Go module has been updated to Go 1.22 per the Go support policy. It is recommended to review the Go 1.22 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#400)
FEATURES:
- generate: Add support for ephemeral resources (#415)
- migrate: Add support for ephemeral resources (#415)
- validate: Add support for ephemeral resources (#415)
BUG FIXES:
Commits
439e333Update changelog1350b10Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 in /tools (#417)933b4aeResult of tsccr-helper -log-level=info gha update -latest .github/ (#416)97bd6c7all: add support for ephemeral resources (#415)6c67ef2Validate: refactor internal methods to usefs.FSinterface for file handlin...d70acedBump github.com/hashicorp/terraform-json from 0.22.1 to 0.23.0 (#414)78dfe49Result of tsccr-helper -log-level=info gha update -latest . (#412)75372b2Bump github.com/yuin/goldmark from 1.7.4 to 1.7.7 (#410)6e81fd4Result of tsccr-helper -log-level=info gha update -latest . (#408)377bb21Bump github.com/bmatcuk/doublestar/v4 from 4.6.1 to 4.7.1 (#407)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/stretchr/testify's releases.
v1.10.0
What's Changed
Functional Changes
- Add PanicAssertionFunc by
@fahimbagarin stretchr/testify#1337- assert: deprecate CompareType by
@dolmenin stretchr/testify#1566- assert: make YAML dependency pluggable via build tags by
@dolmenin stretchr/testify#1579- assert: new assertion NotElementsMatch by
@hendrywirantoin stretchr/testify#1600- mock: in order mock calls by
@ReyOrtizin stretchr/testify#1637- Add assertion for NotErrorAs by
@palsivertsenin stretchr/testify#1129- Record Return Arguments of a Call by
@jayd3ein stretchr/testify#1636- assert.EqualExportedValues: accepts everything by
@redachlin stretchr/testify#1586Fixes
- assert: make tHelper a type alias by
@dolmenin stretchr/testify#1562- Do not get argument again unnecessarily in Arguments.Error() by
@TomWrightin stretchr/testify#820- Fix time.Time compare by
@myxoin stretchr/testify#1582- assert.Regexp: handle []byte array properly by
@kevinburkesegmentin stretchr/testify#1587- assert: collect.FailNow() should not panic by
@marshall-leein stretchr/testify#1481- mock: simplify implementation of FunctionalOptions by
@dolmenin stretchr/testify#1571- mock: caller information for unexpected method call by
@spirinin stretchr/testify#1644- suite: fix test failures by
@stevenhin stretchr/testify#1421- Fix issue #1662 (comparing infs should fail) by
@ybrustinin stretchr/testify#1663- NotSame should fail if args are not pointers #1661 by
@sikehishin stretchr/testify#1664- Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by
@sikehishin stretchr/testify#1667- fix: compare functional option names for indirect calls by
@arjun-1in stretchr/testify#1626Documantation, Build & CI
- .gitignore: ignore "go test -c" binaries by
@dolmenin stretchr/testify#1565- mock: improve doc by
@dolmenin stretchr/testify#1570- mock: fix FunctionalOptions docs by
@sniryein stretchr/testify#1433- README: link out to the excellent testifylint by
@brackendawsonin stretchr/testify#1568- assert: fix typo in comment by
@JohnEndsonin stretchr/testify#1580- Correct the EventuallyWithT and EventuallyWithTf example by
@JonCrowtherin stretchr/testify#1588- CI: bump softprops/action-gh-release from 1 to 2 by
@dependabotin stretchr/testify#1575- mock: document more alternatives to deprecated AnythingOfTypeArgument by
@dolmenin stretchr/testify#1569- assert: Correctly document EqualValues behavior by
@brackendawsonin stretchr/testify#1593- fix: grammar in godoc by
@miparnisariin stretchr/testify#1607- .github/workflows: Run tests for Go 1.22 by
@HaraldNordgrenin stretchr/testify#1629- Document suite's lack of support for t.Parallel by
@brackendawsonin stretchr/testify#1645- assert: fix typos in comments by
@alexandearin stretchr/testify#1650- mock: fix doc comment for NotBefore by
@alexandearin stretchr/testify#1651- Generate better comments for require package by
@Neokilin stretchr/testify#1610- README: replace Testify V2 notice with
@dolmen's V2 manifesto by@hendrywirantoin stretchr/testify#1518New Contributors
@fahimbagarmade their first contribution in stretchr/testify#1337@TomWrightmade their first contribution in stretchr/testify#820@sniryemade their first contribution in stretchr/testify#1433@myxomade their first contribution in stretchr/testify#1582@JohnEndsonmade their first contribution in stretchr/testify#1580
... (truncated)
Commits
89cbdd9Merge pull request #1626 from arjun-1/fix-functional-options-diff-indirect-calls07bac60Merge pull request #1667 from sikehish/flaky716de8dIncrease timeouts in Test_Mock_Called_blocks to reduce flakiness in CI118fb83NotSame should fail if args are not pointers #1661 (#1664)7d99b2battempt 205f87c0more similarea7129ebetter fmta1b9c9eMerge pull request #1663 from ybrustin/master8302de9Merge branch 'master' into master89352f7Merge pull request #1518 from hendrywiranto/adjust-readme-remove-v2- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-testing's releases.
v1.11.0
NOTES:
- all: This Go module has been updated to Go 1.22 per the Go support policy. It is recommended to review the Go 1.22 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#371)
- echoprovider: The
echoproviderpackage is considered experimental and may be altered or removed in a subsequent release (#389)FEATURES:
Changelog
Sourced from github.com/hashicorp/terraform-plugin-testing's changelog.
1.11.0 (November 19, 2024)
NOTES:
- all: This Go module has been updated to Go 1.22 per the Go support policy. It is recommended to review the Go 1.22 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#371)
- echoprovider: The
echoproviderpackage is considered experimental and may be altered or removed in a subsequent release (#389)FEATURES:
Commits
7e23ebcUpdate changelogf1e790cResult of tsccr-helper -log-level=info gha update -latest .github/ (#391)862e9f3build(deps): Bump github.com/hashicorp/hcl/v2 from 2.22.0 to 2.23.0 (#392)33bf5cfechoprovider: Add a new test-only v6 provider that echoes ephemeral provider ...4a88926build(deps): Bump github.com/golang-jwt/jwt/v4 in /tools (#390)65f3a3ebuild(deps): Bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#387)918aea6tfversion: AddSkipIfNotAlphaversion check (#388)7f6b899Result of tsccr-helper -log-level=info gha update -latest .github/ (#385)5a23eaabuild(deps): Bump github.com/hashicorp/terraform-plugin-sdk/v2 (#384)c593ce4build(deps): Bump github.com/hashicorp/terraform-json (#381)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-docs's releases.
v0.20.1
BUG FIXES:
- validate: Fixed a bug that caused false positive validation errors for resource types that have the same name as the provider. (#419)
- generate: Fixed a bug that caused all generated resource documentation to have the same content when the provider has a resource type with the same name as the provider. (#419)
- generate: Fixed a bug that would return an error when a static file exists in both
templatesanddocs, which will now be ignored. (#421)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-docs's changelog.
0.20.1 (November 26, 2024)
BUG FIXES:
- validate: Fixed a bug that caused false positive validation errors for resource types that have the same name as the provider. (#419)
- generate: Fixed a bug that caused all generated resource documentation to have the same content when the provider has a resource type with the same name as the provider. (#419)
- generate: Fixed a bug that would return an error when a static file exists in both
templatesanddocs, which will now be ignored. (#421)
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/docker/docker's releases.
v27.4.0
27.4.0
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
API
GET /images/jsonwith themanifestsoption enabled now preserves the original order in which manifests appeared in the manifest-index. moby/moby#48712Bug fixes and enhancements
- When reading logs with the
jsonfileorlocallog drivers, any errors while trying to read or parse underlying log files will cause the rest of the file to be skipped and move to the next log file (if one exists) rather than returning an error to the client and closing the stream. The errors are viewable in the Docker Daemon logs and exported to traces when tracing is configured. moby/moby#48842- When reading log files, compressed log files are now only decompressed when needed rather than decompressing all files before starting the log stream. moby/moby#48842
- Fix an issue that meant published ports from one container on a bridge network were not accessible from another container on the same network with
userland-proxydisabled, if the kernel'sbr_netfiltermodule was not loaded and enabled. The daemon will now attempt to load the module and enablebridge-nf-call-iptablesorbridge-nf-call-ip6tableswhen creating a network with the userland proxy disabled. moby/moby#48685- Fix loading of
bridgeandbr_netfilterkernel modules. moby/moby#48966- containerd image store: Fix Docker daemon failing to fully start with a "context deadline exceeded error" with containerd snapshotter and many builds/images. moby/moby#48954
- containerd image-store: Fix partially pulled images not being garbage-collected. moby#48910, moby/moby#48957
- containerd image store: Fix
docker image inspectoutputting duplicate references inRepoDigests. moby/moby#48785- containerd image store: Fix not being able to connect to some insecure registries in cases where the HTTPS request failed due to a non-TLS related error. moby/moby#48758
- containerd image store: Remove a confusing warning log when tagging a non-dangling image. moby/moby#49010
- dockerd-rootless-setuptool.sh: let --force ignore smoke test errors moby/moby#48695
- Disable IPv6 Duplicate Address Detection (DAD) for addresses assigned to the bridges belonging to bridge networks. moby/moby#48684
- Remove BuildKit init timeout. moby/moby#48963
- Ignore "dataset does not exist" error when removing dataset on ZFS. moby/moby#48968
- Client: Prevent idle connections leaking FDs. moby/moby#48764
- Fix anonymous volumes being created through the
--mountoption not being marked as anonymous. moby/moby#48755- After a daemon restart with live-restore, ensure an iptables jump to the
DOCKER-USERchain is placed before other rules. moby/moby#48714- Fix a possible memory leak caused by OTel meters. moby/moby#48693
- Create distinct build history db for each store. moby/moby#48688
- Fix an issue that caused excessive memory usage when DNS resolution was made in a tight loop. moby/moby#48840
- containerd image store: Do not underline names in
docker image ls --tree. docker/cli#5519- containerd image store: Change name of
USEDcolumn indocker image ls --treetoIN USE. docker/cli#5518- Fix a bug preventing image pulls from being cancelled during
docker run. docker/cli#5654- Port some completions from the bash completion to the new cobra based completion. docker/cli#5618
- The
docker loginanddocker logoutcommand no longer update the configuration file if the credentials didn't change. docker/cli#5569- Optimise
docker statsto reduce flickering issues. docker/cli#5588, docker/cli#5635- Fix inaccessible plugins paths preventing plugins from being detected. docker/cli#5652
- Add support for
events --filterin cobra generated shell completions. docker/cli#5614- Fix bash completion for
events --filter daemon=. docker/cli#5563- Improve shell-completion of containers for
docker rm. docker/cli#5540- Add shell-completion for
--platformflags. docker/cli#5540- rootless: Make
/etc/cdiand/var/run/cdiaccessible by the Container Device Interface (CDI) integration. moby/moby#49027Removed
- Deprecate
Daemon.Exists()andDaemon.IsPaused(). These functions are no longer used and will be removed in the next release. moby/moby#48719- Deprecate
container.ErrNameReservedandcontainer.ErrNameNotReserved. moby/moby#48697
... (truncated)
Commits
92a8393Merge pull request #49027 from thaJeztah/27.x_backport_cdi-rootless9163aa3Merge pull request #49026 from thaJeztah/27.x_update_go_1.22.104775621Dockerd rootless: make {/etc,/var/run}/cdi available0176f4aMerge pull request #49024 from thaJeztah/27.x_vendor_buildkit_0.17.30e34b39update to go1.22.107919b80[27.x] vendor: github.com/moby/buildkit v0.17.3a92d4c5Merge pull request #49013 from vvoland/49006-27.x1cc1274Merge pull request #49010 from vvoland/49009-27.x525b929registry: deprecate RepositoryInfo.Classd6d43b2c8d/tag: Don't log a warning if the source image is not dangling- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from actions/setup-go's releases.
v5.2.0
What's Changed
- Leveraging the raw API to retrieve the version-manifest, as it does not impose a rate limit and hence facilitates unrestricted consumption without the need for a token for Github Enterprise Servers by
@Shegoxin actions/setup-go#496New Contributors
@Shegoxmade their first contribution in actions/setup-go#496Full Changelog: https://github.com/actions/setup-go/compare/v5...v5.2.0
Commits
3041bf5feat: fallback to "raw" endpoint for manifest when rate limit is reached (#496)- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's releases.
v0.16.0
FEATURES:
- listvalidator: Added
NoNullValuesvalidator (#245)- mapvalidator: Added
NoNullValuesvalidator (#245)- setvalidator: Added
NoNullValuesvalidator (#245)- dynamicvalidator: New package which contains
types.Dynamicspecific validators (#249)BUG FIXES:
- Fixed bug with
ConflictsWithandAlsoRequiresvalidators where unknown values would raise invalid diagnostics duringterraform validate. (#251)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's changelog.
0.16.0 (December 12, 2024)
FEATURES:
- listvalidator: Added
NoNullValuesvalidator (#245)- mapvalidator: Added
NoNullValuesvalidator (#245)- setvalidator: Added
NoNullValuesvalidator (#245)- dynamicvalidator: New package which contains
types.Dynamicspecific validators (#249)BUG FIXES:
- Fixed bug with
ConflictsWithandAlsoRequiresvalidators where unknown values would raise invalid diagnostics duringterraform validate. (#251)
Commits
89e17eeUpdate changelogb500ce7internal/schemavalidator: Fix bug where unknown values were returning error d...16687f3New packagedynamicvalidator(#249)7d19faaAddNoNullValuesvalidators (#246)e16013aResult of tsccr-helper -log-level=info gha update -latest .github/ (#248)6831a7cbuild(deps): bump github.com/golang-jwt/jwt/v4 in /tools (#247)c832d5dResult of tsccr-helper -log-level=info gha update -latest .github/ (#244)- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from golangci/golangci-lint-action's releases.
v6.2.0
What's Changed
Changes
- chore: use new build tag syntax by
@alexandearin golangci/golangci-lint-action#1133- feat: support linux arm64 public preview by
@ldezin golangci/golangci-lint-action#1144Documentation
- docs: update local development instructions by
@dmitrisin golangci/golangci-lint-action#1125Dependencies
- build(deps-dev): bump the dev-dependencies group with 3 updates by
@dependabotin golangci/golangci-lint-action#1112- build(deps): bump the dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1113- build(deps-dev): bump the dev-dependencies group with 3 updates by
@dependabotin golangci/golangci-lint-action#1114- build(deps): bump
@types/nodefrom 22.7.4 to 22.7.5 in the dependencies group by@dependabotin golangci/golangci-lint-action#1115- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1117- build(deps): bump
@types/nodefrom 22.7.5 to 22.7.7 in the dependencies group by@dependabotin golangci/golangci-lint-action#1118- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1119- build(deps): bump
@types/nodefrom 22.7.7 to 22.8.1 in the dependencies group by@dependabotin golangci/golangci-lint-action#1120- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1122- build(deps): bump the dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1123- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1126- build(deps): bump
@types/nodefrom 22.8.7 to 22.9.0 in the dependencies group by@dependabotin golangci/golangci-lint-action#1127- build(deps-dev): bump the dev-dependencies group with 3 updates by
@dependabotin golangci/golangci-lint-action#1128- build(deps): bump
@types/nodefrom 22.9.0 to 22.9.3 in the dependencies group by@dependabotin golangci/golangci-lint-action#1130- build(deps): bump
@types/nodefrom 22.9.3 to 22.10.1 in the dependencies group by@dependabotin golangci/golangci-lint-action#1131- build(deps-dev): bump the dev-dependencies group across 1 directory with 4 updates by
@dependabotin golangci/golangci-lint-action#1132- build(deps-dev): bump the dev-dependencies group with 3 updates by
@dependabotin golangci/golangci-lint-action#1134- build(deps): bump
@actions/cachefrom 3.3.0 to 4.0.0 in the dependencies group by@dependabotin golangci/golangci-lint-action#1135- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1136- build(deps): bump
@types/nodefrom 22.10.1 to 22.10.2 in the dependencies group by@dependabotin golangci/golangci-lint-action#1137- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1138- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1139- build(deps-dev): bump the dev-dependencies group with 2 updates by
@dependabotin golangci/golangci-lint-action#1141- build(deps): bump
@types/nodefrom 22.10.2 to 22.10.5 in the dependencies group by@dependabotin golangci/golangci-lint-action#1142- build(deps-dev): bump the dev-dependencies group with 3 updates by
@dependabotin golangci/golangci-lint-action#1143New Contributors
@dmitrismade their first contribution in golangci/golangci-lint-action#1125@alexandearmade their first contribution in golangci/golangci-lint-action#1133Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v6.1.1...v6.2.0
Commits
ec5d184feat: support linux arm64 public preview (#1144)a0297a1build(deps-dev): bump the dev-dependencies group with 3 updates (#1143)58eda26build(deps): bump@types/nodefrom 22.10.2 to 22.10.5 in the dependencies gro...44c2434build(deps-dev): bump the dev-dependencies group with 2 updates (#1141)2f13b80build(deps-dev): bump the dev-dependencies group with 2 updates (#1139)1ac3686build(deps-dev): bump the dev-dependencies group with 2 updates (#1138)9937fdfbuild(deps): bump@types/nodefrom 22.10.1 to 22.10.2 in the dependencies gro...cb60b26build(deps-dev): bump the dev-dependencies group with 2 updates (#1136)774c35bbuild(deps): bump@actions/cachefrom 3.3.0 to 4.0.0 in the dependencies grou...7ce5487build(deps-dev): bump the dev-dependencies group with 3 updates (#1134)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Commits
5ef5923Revert "CopyMethod" since it's not ready49b0b59Merge pull request #164 from eth-p/feat-copymethod-apif530620ci: Allow triggering Go workflow manuallyb4dd789refactor: Split common code out of CopyBytes9205813feat: Add FileCopyMethod option / API2f93b8fMerge pull request #159 from otiai10/dependabot/go_modules/main/golang.org/x/...87072f3Bump golang.org/x/sys from 0.23.0 to 0.24.0d0690cbMerge pull request #158 from otiai10/dependabot/go_modules/main/golang.org/x/...b87119dBump golang.org/x/sys from 0.22.0 to 0.23.0355527cMerge pull request #157 from otiai10/dependabot/go_modules/main/golang.org/x/...- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/docker/docker's releases.
v27.5.0
27.5.0
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Bugfixes and enhancements
- containerd image store: Fix passing a build context via tarball to the
/buildendpoint. moby/moby#49194- Builder garbage collection policies without a
keepStoragevalue now inherit thedefaultKeepStoragelimit as intended. moby/moby#49137- Preserve network labels during daemon startup. moby/moby#49200
- Fix a potential race condition error when deleting a container. moby/moby#49239
Go SDK
pkg/sysinfo: deprecateNumCPU. This utility has the same behavior asruntime.NumCPU. moby/moby#49247pkg/fileutils: deprecateGetTotalUsedFds: this function is only used internally and will be removed in the next release. moby/moby#49209pkg/ioutils: deprecateBytesPipe,NewBytesPipe,ErrClosed,WriteCounter,NewWriteCounter,NewReaderErrWrapper,NopFlusher,NopWriter,NopWriteCloser. They were only used internally and will be removed in the next release. moby/moby#49246, moby/moby#49255pkg/reexec: This package is deprecated and moved to a separate module. Usegithub.com/moby/sys/reexecinstead. moby/moby#49135Packaging updates
- Update containerd to v1.7.25 moby/moby#49253
- Update
runcto v1.2.4 moby/moby#49243- Update BuildKit to v0.18.2 moby/moby#48949
- Update Compose to v2.32.2 docker/docker-ce-packaging#1140
v27.5.0-rc.2
27.5.0-rc.2
This is a pre-release of the upcoming 27.5.0 release.
Pre-releases are intended for testing new releases: only install in a test environment!
curl -fsSL https://get.docker.com -o get-docker.sh sudo CHANNEL=test sh get-docker.shKnown issues:
- There is no changelog yet; an overview of pull requests included in this release can be found on GitHub:
- docker cli: all pull requests for 27.5.0 / all "changelog" pull requests for 27.5.0
- docker engine: all pull requests for 27.5.0 / all "changelog" pull requests for 27.5.0
- There are no packages available yet for the s390x and ppc64le architectures
Bugs and regressions can be reported in these issue trackers:
... (truncated)
Commits
38b84dcMerge pull request #49255 from thaJeztah/27.x_backport_ioutils_more_deprecationsae82113Merge pull request #49253 from thaJeztah/27.x_backport_bump_containerd_binary...8a2fd51pkg/ioutils: deprecate NopWriteClosercf37b66pkg/ioutils: deprecate NopWriterc83f658Dockerfile: update containerd to v1.7.25931be8eMerge pull request #49246 from thaJeztah/27.x_backport_ioutils_deprecations2e1aee3Merge pull request #49249 from robmry/backport-27.x/fix_unit_tests_for_nftabl...f53d72eFix unit tests for an nftables host55f7055Merge pull request #49243 from thaJeztah/27.x_backport_bump_runc_binary_1.2.436ad318Merge pull request #49247 from thaJeztah/27.x_backport_deprecate_runtime_numcpu- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Commits
dfc720dgo.mod: update golang.org/x dependencies8e66b04html: use strings.EqualFold instead of lowering ourselvesb935f7bhtml: avoid endless loop on error token9af49efroute: remove unused sizeof* consts6705db9quic: clean up crypto streams when dropping packet protection keys4ef7588quic: handle ACK frame in packet which drops number space552d8acRevert "route: change from syscall to x/sys/unix"13a7c01Revert "route: remove unused sizeof* consts on freebsd"285e1cfgo.mod: update golang.org/x dependenciesd0a1049route: remove unused sizeof* consts on freebsd- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/coder/coder/v2's releases.
v2.18.3
Stable (since January 18, 2025)
Changelog
Bugfixes
- Fix a regression causing the "Groups" page to not show up in deployment settings (#16185, fbc2a73be)
Compare:
v2.18.2...v2.18.3Container image
docker pull ghcr.io/coder/coder:v2.18.3Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
v2.18.2
Changelog
Stable (since Jan 7, 2025)
Bugfixes
- Server: Correctly evaluate dynamic workspace tag values (#15897, dcf51535) (
@johnstcn)- CLI: Allow entering non-default values in multi-select (#15935, 638247c9) (
@joobisb)- Terraform Parser: Skip evaluation of unrelated parameters (#16023, 1ab10cf8) (
@johnstcn)Compare:
v2.18.1...v2.18.2Container image
docker pull ghcr.io/coder/coder:v2.18.2Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
Commits
a5a7326chore: add cherry picks for v2.18.3 (#16187)d15c470chore: add cherry-picks for patch 2.18.2 (#16061)- See full diff in compare view
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] |Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/coder/coder/v2's releases.
v2.18.4
Stable (since January 23, 2025)
Changelog
Bug fixes
- Return first workspace agent script timing per script (#16203, bd6f4266a) (
@DanielleMaywood)Fixes a memory leak in the dashboard and prevents startup scripts from running if the agent crashes.
- Change precedence order between coder_workspace_tags and request_tags (#16119, 803e2c767) (
@johnstcn)Fixes an issue where setting workspace tags using variables would fail.
- Fetch custom roles from workspace agent context to fix broken endpoints (#16237, 612535856) (
@Emyrk)- Examples: Persist
/home/coderinstead of/home/${local.user}on Docker template (#16190, 075269a94) (@phorcys420)Compare:
v2.18.3...v2.18.4Container image
docker pull ghcr.io/coder/coder:v2.18.4Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
Commits
6125358fix: fetch custom roles from workspace agent context (cherry-pick #16237) (#1...803e2c7fix: change precedence order between coder_workspace_tags and request_tags (#...bd6f426fix: return first workspace agent script timing per script (cherry-pick #1620...075269afix(examples/templates/docker): persist/home/coderinstead of `/home/${loc...- See full diff in compare view
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] |Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-go's releases.
v0.26.0
BREAKING CHANGES:
- tfprotov5+tfprotov6:
EphemeralResourceServerinterface is now required inProviderServer. Implementations not needing ephemeral resource support can return errors from the*EphemeralResourcemethods. (#442)- tfprotov5+tfprotov6: Removed temporary
ProviderServerWithEphemeralResourcesinterface type. UseEphemeralResourceServerinstead. (#442)NOTES:
- all: To prevent compilation errors, ensure your Go module is updated to at least terraform-plugin-framework@v1.13.0, terraform-plugin-mux@v0.17.0, terraform-plugin-sdk/v2@v2.35.0, and terraform-plugin-testing@v1.11.0 before upgrading this dependency. (#442)
FEATURES:
- tfprotov5+tfprotov6: Upgraded protocols and added types to support write-only attributes (#462)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-go's changelog.
0.26.0 (January 22, 2025)
BREAKING CHANGES:
- tfprotov5+tfprotov6:
EphemeralResourceServerinterface is now required inProviderServer. Implementations not needing ephemeral resource support can return errors from the*EphemeralResourcemethods. (#442)- tfprotov5+tfprotov6: Removed temporary
ProviderServerWithEphemeralResourcesinterface type. UseEphemeralResourceServerinstead. (#442)NOTES:
- all: To prevent compilation errors, ensure your Go module is updated to at least terraform-plugin-framework@v1.13.0, terraform-plugin-mux@v0.17.0, terraform-plugin-sdk/v2@v2.35.0, and terraform-plugin-testing@v1.11.0 before upgrading this dependency. (#442)
FEATURES:
- tfprotov5+tfprotov6: Upgraded protocols and added types to support write-only attributes (#462)
Commits
a106af9Update changelogeeca0d0build(deps): Bump golang.org/x/net from 0.29.0 to 0.33.0 in /tools (#464)7ff6ef6tfprotov5+tfprotov6: RequireEphemeralResourceServerinProviderServer(#...afd18f1tfprotov5+tfprotov6: Write-only Attribute Implementation (#462)707c7afbuild(deps): Bump google.golang.org/protobuf from 1.36.2 to 1.36.3 (#461)f9370f2build(deps): Bump github.com/hashicorp/terraform-registry-address (#460)5da0acfbuild(deps): Bump google.golang.org/grpc from 1.69.2 to 1.69.4 (#459)a54e1ccbuild(deps): Bump google.golang.org/protobuf from 1.36.1 to 1.36.2 (#458)54b2010Result of tsccr-helper -log-level=info gha update -latest .github/ (#457)f946e2abuild(deps): Bump google.golang.org/protobuf from 1.35.2 to 1.36.1 (#455)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/coder/coder/v2's releases.
v2.18.5
Stable (since January 29, 2025)
Changelog
- Migrate to coder/websocket 1.8.12 (#15898, 2c7f8ac65) (
@spikecurtis)- Update coder/tailscale to latest main (#15927, 2bba3d7b7) (
@Emyrk)Resolves SSH panic.
- Provisioner: Add support for built-in Terraform functions (#16183, 4ba0b39f0) (
@johnstcn)- Provisioner: Allow empty values in
coder_workspace_tagdefaults (#16303, 76adde91d)Compare:
v2.18.4...v2.18.5Container image
docker pull ghcr.io/coder/coder:v2.18.5Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
Commits
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] |Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from goreleaser/goreleaser-action's releases.
v6.2.1
What's Changed
This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the
-prosuffix). Older versions should work fine.[!WARNING] This version is required for GoReleaser Pro v2.7.0+. Read more here.
Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v6.2.0...v6.2.1
v6.2.0
What's Changed
This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the
-prosuffix). Older versions should work fine.[!WARNING] This version is required for GoReleaser Pro v2.7.0+. Read more here.
Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v6.1.0...v6.2.0
Commits
90a3faachore(deps): bake vendor0262998test: fixes450d3a4test: fix configs25b92abchore(deps): update semver and tool-cachebc0ac76chore(deps): update actions842e7ccfeat: update for goreleaser v2.7d28c982chore(deps): bump cross-spawn from 7.0.3 to 7.0.6 (#482)- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/go-jose/go-jose/v4's releases.
v4.0.5
What's Changed
- Don't allow unbounded amounts of splits by
@mcpherrinmin go-jose/go-jose#167Fixes https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78
Various other dependency updates, small fixes, and documentation updates in the full changelog
New Contributors
@tgeogheganmade their first contribution in go-jose/go-jose#161Full Changelog: https://github.com/go-jose/go-jose/compare/v4.0.4...v4.0.5
Version 4.0.4
Fixed
- Reverted "Allow unmarshalling JSONWebKeySets with unsupported key types" as a breaking change. See #136 / #137.
Version 4.0.3
Changed
Changelog
Sourced from github.com/go-jose/go-jose/v4's changelog.
v4.0.4
Fixed
- Reverted "Allow unmarshalling JSONWebKeySets with unsupported key types" as a breaking change. See #136 / #137.
v4.0.3
Changed
Commits
99b346cDon't allow unbounded amounts of splits (#167)22811e7Fix broken link in README.md (#161)9dde849Remove CLA mentions from CONTRIBUTING.md (#160)89172c5Bump golang.org/x/crypto from 0.31.0 to 0.32.0 (#158)ee05e01Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#157)c0aef3eBump golang.org/x/crypto from 0.25.0 to 0.31.0 (#156)fdc2cebRemove export disclaimer (#146)10c69efShort circuit return errors fromJSONWebKey.UnmarshalJSON()(#141)15bc4c2Update CHANGELOG for 4.0.4 (#138)f3534caRevert #130: JSONWebKeySet: ignore unsupported key types (#137)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/docker/docker's releases.
v28.0.0
28.0.0
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
- docker/cli, 28.0.0 milestone
- moby/moby, 28.0.0 milestone
- Deprecated and removed features, see Deprecated Features.
- Changes to the Engine API, see API version history.
New
- Add ability to mount an image inside a container via
--mount type=image. moby/moby#48798
- You can also specify
--mount type=image,image-subpath=[subpath],...option to mount a specific path from the image. docker/cli#5755docker images --treenow shows metadata badges. docker/cli#5744docker load,docker save, anddocker historynow support a--platformflag allowing you to choose a specific platform for single-platform operations on multi-platform images. docker/cli#5331- Add
OOMScoreAdjtodocker service createanddocker stack. docker/cli#5145docker buildx prunenow supportsreserved-space,max-used-space,min-free-spaceandkeep-bytesfilters. moby/moby#48720- Windows: Add support for running containerd as a child process of the daemon, instead of using a system-installed containerd. moby/moby#47955
Networking
- The
docker-proxybinary has been updated, older versions will not work with the updateddockerd. moby/moby#48132
- Close a window in which the userland proxy (
docker-proxy) could accept TCP connections, that would then fail afteriptablesNAT rules were set up.- The executable
rootlesskit-docker-proxyis no longer used, it has been removed from the build and distribution.- DNS nameservers read from the host's
/etc/resolv.confare now always accessed from the host's network namespace. moby/moby#48290
- When the host's
/etc/resolv.confcontains no nameservers and there are no--dnsoverrides, Google's DNS servers are no longer used, apart from by the default bridge network and in build containers.- Container interfaces in bridge and macvlan networks now use randomly generated MAC addresses. moby/moby#48808
- Gratuitous ARP / Neighbour Advertisement messages will be sent when the interfaces are started so that, when IP addresses are reused, they're associated with the newly generated MAC address.
- IPv6 addresses in the default bridge network are now IPAM-assigned, rather than being derived from the MAC address.
- The deprecated OCI
prestarthook is now only used by build containers. For other containers, network interfaces are added to the network namespace after task creation is complete, before the container task is started. moby/moby#47406- Add a new
gw-priorityoption todocker run,docker container create, anddocker network connect. This option will be used by the Engine to determine which network provides the default gateway for a container. Ondocker run, this option is only available through the extended--networksyntax. docker/cli#5664- Add a new netlabel
com.docker.network.endpoint.ifnameto customize the interface name used when connecting a container to a network. It's supported by all built-in network drivers on Linux. moby/moby#49155
- When a container is created with multiple networks specified, there's no guarantee on the order networks will be connected to the container. So, if a custom interface name uses the same prefix as the auto-generated names, for example
eth, the container might fail to start.- The recommended practice is to use a different prefix, for example
en0, or a numerical suffix high enough to never collide, for exampleeth100.- This label can be specified on
docker network connectvia the--driver-optflag, for exampledocker network connect --driver-opt=com.docker.network.endpoint.ifname=foobar ….- Or via the long-form
--networkflag ondocker run, for exampledocker run --network=name=bridge,driver-opt=com.docker.network.endpoint.ifname=foobar …- If a custom network driver reports capability
GwAllocCheckerthen, before a network is created, it will get aGwAllocCheckerRequestwith the network's options. The custom driver may then reply that no gateway IP address should be allocated. moby/moby#49372Port publishing in bridge networks
dockerdnow requiresipsetsupport in the Linux kernel. moby/moby#48596
- The
iptablesandip6tablesrules used to implement port publishing and network isolation have been extensively modified. This enables some of the following functional changes, and is a first step in refactoring to enable nativenftablessupport in a future release. moby/moby#48815- If it becomes necessary to downgrade to an earlier version of the daemon, some manual cleanup of the new rules will be necessary. The simplest and surest approach is to reboot the host, or use
iptables -Fandip6tables -Fto flush all existingiptablesrules from thefiltertable before starting the older version of the daemon. When that is not possible, run the following commands as root:
iptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPTiptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -j DOCKER; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -j DOCKER- If you were previously running with the iptables filter-FORWARD policy set to
ACCEPTand need to restore access to unpublished ports, also delete per-bridge-network rules from theDOCKERchains. For example,iptables -D DOCKER ! -i docker0 -o docker0 -j DROP.- Fix a security issue that was allowing remote hosts to connect directly to a container on its published ports. moby/moby#49325
- Fix a security issue that was allowing neighbor hosts to connect to ports mapped on a loopback address. moby/moby#49325
... (truncated)
Commits
af898abMerge pull request #49495 from vvoland/update-buildkitd67f035vendor: github.com/moby/buildkit v0.20.000ab386Merge pull request #49491 from vvoland/update-buildkit1fde8c4builder-next: fix cdi managercde9f07vendor: github.com/moby/buildkit v0.20.0-rc389e1429Merge pull request #49490 from thaJeztah/dockerfile_lintingb2b5590Dockerfile: fix linting warnings62bc597Merge pull request #49480 from thaJeztah/docs_api_1.48670cd81Merge pull request #49485 from vvoland/c8d-list-panica3628f3docs/api: add documentation for API v1.48- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's releases.
v0.17.0
FEATURES:
- boolvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- dynamicvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- float32validator: Added
PreferWriteOnlyAttributevalidator (#263)- float64validator: Added
PreferWriteOnlyAttributevalidator (#263)- int32validator: Added
PreferWriteOnlyAttributevalidator (#263)- int64validator: Added
PreferWriteOnlyAttributevalidator (#263)- listvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- mapvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- numbervalidator: Added
PreferWriteOnlyAttributevalidator (#263)- objectvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- resourcevalidator: Added
PreferWriteOnlyAttributevalidator (#263)- setvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- stringvalidator: Added
PreferWriteOnlyAttributevalidator (#263)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's changelog.
0.17.0 (February 19, 2025)
FEATURES:
- boolvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- dynamicvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- float32validator: Added
PreferWriteOnlyAttributevalidator (#263)- float64validator: Added
PreferWriteOnlyAttributevalidator (#263)- int32validator: Added
PreferWriteOnlyAttributevalidator (#263)- int64validator: Added
PreferWriteOnlyAttributevalidator (#263)- listvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- mapvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- numbervalidator: Added
PreferWriteOnlyAttributevalidator (#263)- objectvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- resourcevalidator: Added
PreferWriteOnlyAttributevalidator (#263)- setvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- stringvalidator: Added
PreferWriteOnlyAttributevalidator (#263)
Commits
75974fcUpdate changelog13b6d4dAddPreferWriteOnlyAttribute()validators toresourcevalidatorand all va...6be3c39build(deps): bump github.com/hashicorp/terraform-plugin-framework (#266)47cad1bResult of tsccr-helper -log-level=info gha update -latest .github/ (#264)e0fa613Update golangci config and resolvecopyloopvar(#265)e0dda54Result of tsccr-helper -log-level=info gha update -latest .github/ (#262)08b59e2Result of tsccr-helper -log-level=info gha update -latest .github/ (#261)c534568build(deps): bump github.com/hashicorp/copywrite in /tools (#260)bcaf368build(deps): bump golang.org/x/net from 0.23.0 to 0.33.0 in /tools (#259)9d17e39Result of tsccr-helper -log-level=info gha update -latest .github/ (#257)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-framework's releases.
v1.14.1
BUG FIXES:
- internal/fwserver: fixed bug where write-only attributes set in configuration would cause perpetual diffs for computed attributes. (#1097)
v1.14.0
NOTES:
- Write-only attribute support is in technical preview and offered without compatibility promises until Terraform 1.11 is generally available. (#1044)
- ephemeral: Ephemeral resources are now considered generally available and protected by compatibility promises. (#1052)
FEATURES:
- resource/schema: Added
WriteOnlyschema field for managed resource schemas to indicate a write-only attribute. Write-only attribute values are not saved to the Terraform plan or state artifacts. (#1044)BUG FIXES:
Changelog
Sourced from github.com/hashicorp/terraform-plugin-framework's changelog.
1.14.1 (February 20, 2025)
BUG FIXES:
- internal/fwserver: fixed bug where write-only attributes set in configuration would cause perpetual diffs for computed attributes. (#1097)
1.14.0 (February 19, 2025)
NOTES:
- Write-only attribute support is in technical preview and offered without compatibility promises until Terraform 1.11 is generally available. (#1044)
- ephemeral: Ephemeral resources are now considered generally available and protected by compatibility promises. (#1052)
FEATURES:
- resource/schema: Added
WriteOnlyschema field for managed resource schemas to indicate a write-only attribute. Write-only attribute values are not saved to the Terraform plan or state artifacts. (#1044)BUG FIXES:
Commits
083644cUpdate changelog3000d8cinternal/fwserver: Move write-only nullification to earlier in PlanResourceCh...7c9193dUpdate changelog8288f62Result of tsccr-helper -log-level=info gha update -latest .github/ (#1094)ecd80f6resource/schema: Add validation to prevent write-only attributes in sets and ...0724df1Improve dynamic attribute internal validation handling (#1090)d91ccc1docs: Remove experimental verbiage from ephemeral resources (#1092)fbfbe5cchore: Update golangci-lint linters and apply fixes (#1091)bf1d023internal/fwschemadata: RewriteSetValuesemantic equality logic to ignore o...e1e6866Add support for write only attributes (#1044)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-docs's releases.
v0.21.0
FEATURES:
- generate: Add support for write-only arguments (#434)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-docs's changelog.
0.21.0 (February 27, 2025)
FEATURES:
- generate: Add support for write-only arguments (#434)
Commits
34ba7c2Update changelog660c8d8Result of tsccr-helper -log-level=info gha update -latest .github/ (#452)2ad3f4cBump github.com/hashicorp/copywrite from 0.20.0 to 0.21.0 in /tools (#450)e36f96dgenerate: Add hyperlinks to user documentation and version callouts for write...80d1c8eResult of tsccr-helper -log-level=info gha update -latest .github/ (#449)411d870Added write-only support to generate (#434)40e402fBump golang.org/x/text from 0.21.0 to 0.22.0 (#444)e77d9f6Bump github.com/hashicorp/cli from 1.1.6 to 1.1.7 (#441)ecbdcf3Result of tsccr-helper -log-level=info gha update -latest .github/ (#443)301169aBump github.com/bmatcuk/doublestar/v4 from 4.8.0 to 4.8.1 (#440)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/docker/docker's releases.
v28.0.1
28.0.1
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Networking
- Remove dependency on kernel modules
ip_set,ip_set_hash_netandnetfilter_xt_set.
- The dependency was introduced in release 28.0.0 but proved too disruptive. The iptables rules using these modules have been replaced. moby/moby#49530
- Allow daemon startup on a host with IPv6 disabled without requiring
--ip6tables=false. moby/moby#49525- Fix a bug that was causing containers with
--restart=alwaysand a published port already in use to restart in a tight loop. moby/moby#49507- Fix an issue with Swarm ingress, caused by incorrect ordering of iptables rules. moby/moby#49538
- Fix creation of a swarm-scoped network from a
--config-onlynetwork. moby/moby#49521- Fix
docker network inspectreporting an IPv6 gateway with CIDR suffix for a newly created network with no specific IPAM config, until a daemon restart. moby/moby#49520- Improve the error reported when kernel modules
ip_set,ip_set_hash_netandnetilter_xt_setare not available. moby/moby#49524- Move most of Docker's iptables rules out of the filter-FORWARD chain, so that other applications are free to append rules that must follow Docker's rules. moby/moby#49518
- Update
--helpoutput and man page lo state which options only apply to the default bridge network. moby/moby#49522Bug fixes and enhancements
- Fix
docker context createalways returning an error when using the"skip-tls-verify"option. docker/cli#5850- Fix shell completion suggesting IDs instead of names for services and nodes. docker/cli#5848
- Fix unintentionally printing exit status to standard error output when
docker exec/runreturns a non-zero status. docker/cli#5854- Fix regression
protocol "tcp" is not supported by the RootlessKit port driver "slirp4netns". moby/moby#49514- containerd image store: Fix
docker inspectnot being able to show multi-platform images with missing layers for all platforms. moby/moby#49533- containerd image store: Fix
docker images --treereporting wrong content size. moby/moby#49535- Fix compilation on i386 moby/moby#49526
Packaging updates
- Update
github.com/go-jose/go-jose/v4to v4.0.5 to address. GHSA-c6gw-w398-hv78 / CVE-2025-27144 docker/cli#5867- Update Buildx to v0.21.1. docker/docker-ce-packaging#1167
- Update Compose to v2.33.1. docker/docker-ce-packaging#1168
API
- containerd image store: Fix
GET /images/json?manifests=1not fillingManifestsfor index-only images. moby/moby#49533- containerd image store: Fix
GET /images/json and /images/<name>/jsonSize.Contentfield including the size of content that's not available locally. moby/moby#49535
Commits
bbd0a17Merge pull request #49538 from robmry/docker_ingress8ae4858Merge pull request #49545 from robmry/revert_check-config_ipset1814363Revert "contrib/check-config: add ipset related flags"558da63Jump to DOCKER-INGRESS from DOCKER-FORWARDf92fdfeMerge pull request #49530 from robmry/disable_ip_set88bc9a3Merge pull request #49535 from vvoland/c8d-fixcontentsize76417bfDon't use ipsetc35159ec8d/manifests: Fix Content size including missing content0510499Merge pull request #49533 from vvoland/c8d-inspectlist-indeximg0274c63Merge pull request #49518 from robmry/docker_forward_chain- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Commits
85d1d54go.mod: update golang.org/x dependenciescde1ddaproxy, http/httpproxy: do not mismatch IPv6 zone ids against hostsfe7f039publicsuffix: spruce up code gen and speed up PublicSuffix459513dinternal/http3: move more common stream processing to genericConnaad0180http2: fix flakiness from t.Log when GOOS=jsb73e574http2: don't log expected errors from writing invalid trailers5f45c77internal/http3: make read-data tests usable for server handlers43c2540http2, internal/httpcommon: reject userinfo in :authority1d78a08http2, internal/httpcommon: factor out server header logic for h2/h30d7dc54quic: add Conn.ConnectionState- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/coder/coder/v2's releases.
v2.20.0
Changelog
[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our latest stable release while we refine this version. Learn more about our Release Schedule.
BREAKING CHANGES
- Enforce agent names be case-insensitive-unique per-workspace (#16614, 3fddfef87) (
@ethanndickson)- Enforce regex for agent names (#16641, 9469b7829) (
@deansheather)Underscores and trailing, leading and double hyphens are now blocked in agent names.
Features
Organizations have reached general availability and Workspace Presets are available in beta. Read more about how to get started with these features in our monthly changelog.
- Orgs IDP sync - add combobox to select claim field value when sync field is set (#16335, 7f44189ed) (
@jaaydenh)Improves UX of entering IDP sync claims via the dashboard.
- Show warning on unrecognized idp org mapping claims (#16478, bcfeb726d) (
@aslilac)- Show warning on unrecognized idp group and role mapping claims (#16485, 323559ba8) (
@aslilac)
- Add combobox for selecting claim field value for group/role idp sync (#16459, 7076c4e4a) (
@jaaydenh)Automatically detects IDP claims once a provider is configured for entry in the dashboard.
- Improve resources_monitoring for OOM & OOD monitoring (#16241, 7cbd77fd9) (
@defelmnq)- Integrate agentAPI with resources monitoring logic (#16438, bc609d005) (
@defelmnq)Adds "resource alerts" as a native notification. Set thresholds on memory, disk to alert users when their workspaces are running low on resources.
- Add agentapi endpoint to report connections for audit (#16507, b07b33ec9) (
@mafredri)- Add workspace agent connect and app open audit types (#16493, b5329ae1c) (
@mafredri)Administrators and Auditors may now see agent connections and app opens in the audit log.
- Add notifications troubleshooting tab (#16650, e8a7b7e8c) (
@mtojek)- Add CLI tool to send a test notification (#16611, d2419c89a) (
@DanielleMaywood)
- Support the OAuth2 device flow with GitHub for signing in (#16585, 8c5e7007c) (
@hugodutka)- Show dialog with a redirect if permissions are required (#16661, 39f42bc11) (
@brettkolodny)- Enable soft delete for organizations (#16584, 546a549dc) (
@jaaydenh)Previously, administrators could not delete organizations, even if all contained resources were removed or deleted. This resolves that issue and allows administrators to clean up organizations.
- Implement sign up with GitHub for the first user (#16629, 67d89bb10) (
@hugodutka)- Enable GitHub OAuth2 login by default on new deployments (#16662, d3a56ae3e) (
@hugodutka)Users may now sign up with Github on a fresh deployment of Coder.
- Extend
OverrideVSCodeConfigsto support additional VS Code IDEs (#16654, 763921bc6) (@matifali)- Add provisioner tags field on template creation (#16656, 38ad8d1f3) (
@BrunoQuaresma)- Include winres metadata in Windows binaries (#16742, 36186bbb7)
- Implement WorkspaceCreationBan organization role (#16786, 4633658d5) (
@Emyrk)Allows administrators to assign the native "Workspace creation ban" to users and prevent them from creating workspaces.
- Agent: Add container list handler (#16346, 31b1ff7d3) (
@johnstcn)This PR adds an API endpoint to coderd
/api/v2/workspaceagents/:id/containersthat allows listing containers visible to the agent. Optional filtering by labels is supported.- Agent: Add
CODER_AGENT_DEVCONTAINERS_ENABLEoption (#16525, 35901028d) (@johnstcn)
... (truncated)
Commits
03b5012feat: update default audit log avatar (cherry-pick #16774) (#16805)a5eb06efix: add org role read perm to site template admins and auditors (cherry-pick...8aec4f2chore: create collapsible summary component (cherry-pick #16705) (#16794)e54e31echore: add an unassign action for roles (cherry-pick #16728) (#16791)32dc903fix: allow viewOrgRoles for custom roles page (cherry-pick #16722) (#16789)7381f9achore: warn user without permissions to view org members (cherry-pick #16721)...4633658feat: implement WorkspaceCreationBan org role (cherry-pick #16686) (#16786)6da3c9dfix: allow orgs with default github provider (cherry-pick #16755) (#16784)99a5d72docs: suggest disabling the default GitHub OAuth2 provider on k8s (cherry-pic...fc0db40docs: document default GitHub OAuth2 configuration and device flow (2.20) (#1...- Additional commits viewable in compare view
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] |Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from actions/setup-go's releases.
v5.4.0
What's Changed
Dependency updates :
- Upgrade semver from 7.6.0 to 7.6.3 by
@dependabotin actions/setup-go#535- Upgrade eslint-config-prettier from 8.10.0 to 10.0.1 by
@dependabotin actions/setup-go#536- Upgrade
@action/cachefrom 4.0.0 to 4.0.2 by@aparnajyothi-yin actions/setup-go#568- Upgrade undici from 5.28.4 to 5.28.5 by
@dependabotin actions/setup-go#541New Contributors
@aparnajyothi-ymade their first contribution in actions/setup-go#568Full Changelog: https://github.com/actions/setup-go/compare/v5...v5.4.0
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/coder/coder/v2's releases.
v2.20.2
Changelog
[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our latest stable release while we refine this version. Learn more about our Release Schedule.
Bug fixes
- Hide deleted users from org members query (#16830, 3569e56cf) (
@aslilac)- Fix deployment settings navigation issues (#16780, 8a3ebaca0) (
@aslilac)Compare:
v2.20.1...v2.20.2Container image
docker pull ghcr.io/coder/coder:v2.20.2Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
v2.20.1
Changelog
[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our latest stable release while we refine this version. Learn more about our Release Schedule.
Bug fixes
- Remove provisioners from deployment sidebar (#16927, bdd7794e8)
- Prevent audit log search from crashing with regular use (#16944, dba881fc7)
Compare:
v2.20.0...v2.20.1Container image
docker pull ghcr.io/coder/coder:v2.20.1Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
Commits
8a3ebacfix: fix deployment settings navigation issues (cherry-pick #16780) (#16790)3569e56fix: hide deleted users from org members query (cherry-pick #16830) (#16832)dba881ffix: fix audit log search (cherry-pick #16944) (#16945)b615a35chore: use org-scoped roles for organization user e2e tests (cherry-pick #166...bdd7794fix: remove provisioners from deployment sidebar (cherry-pick #16717) (#16927)- See full diff in compare view
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] |Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/hashicorp/terraform-plugin-testing's releases.
v1.12.0
NOTES:
- all: This Go module has been updated to Go 1.23 per the Go support policy. It is recommended to review the Go 1.23 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#454)
FEATURES:
- knownvalue: added function checks for custom validation of resource attribute or output values. (#412)
ENHANCEMENTS:
- knownvalue: Updated the
ObjectExacterror message to report extra/missing attributes from the actual object. (#451)- plancheck: Improved the unknown value plan check error messages to include a known value if one exists. (#450)
BUG FIXES:
- plancheck: Fixed bug with all unknown value plan checks where a valid path would return a "path not found" error. (#450)
Changelog
Sourced from github.com/hashicorp/terraform-plugin-testing's changelog.
1.12.0 (March 18, 2025)
NOTES:
- all: This Go module has been updated to Go 1.23 per the Go support policy. It is recommended to review the Go 1.23 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#454)
FEATURES:
- knownvalue: added function checks for custom validation of resource attribute or output values. (#412)
ENHANCEMENTS:
- knownvalue: Updated the
ObjectExacterror message to report extra/missing attributes from the actual object. (#451)- plancheck: Improved the unknown value plan check error messages to include a known value if one exists. (#450)
BUG FIXES:
- plancheck: Fixed bug with all unknown value plan checks where a valid path would return a "path not found" error. (#450)
Commits
1ffb3e0Update changelogb0b505eplancheck: Include known value in error message when asserting an unknown val...41b2d19Add the missing/extra attribute names to the error message for `knownvalue.Ob...b505110build(deps): Bump github.com/hashicorp/go-cty from 1.4.1 to 1.5.0 (#457)b940385chore: Update minimum Go version in module (#454)96ff574knownvalue: Introduce function checks for primitive types (#412)5f414d2Result of tsccr-helper -log-level=info gha update -latest .github/ (#447)2113550chore: FIx golangci linters (#446)13c4fb0build(deps): Bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#437)9a146e5build(deps): Bump github.com/hashicorp/terraform-plugin-sdk/v2 (#433)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/docker/docker's releases.
v28.0.4
28.0.4
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Bug fixes and enhancements
- Fix a regression causing
docker pull/pushto fail when interacting with a private repository. docker/cli#5964v28.0.3
28.0.3
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Bug fixes and enhancements
- Fix
docker runtruncating theSTDOUT/STDERRprematurely when the container exits before the data is consumed. docker/cli#5957Packaging updates
- Update BuildKit to v0.20.2. moby/moby#49698
- Update
runcto v1.2.6 (static packages only). moby/moby#49682- Update containerd to v1.7.26. docker/containerd-packaging#409
v28.0.2
28.0.2
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Bug fixes and enhancements
- Fix CLI-specific attributes (
docker.cli.*) being unintentionally passed to downstream OTel services. docker/cli#5842- Fix an issue where user-specified
OTEL_RESOURCE_ATTRIBUTESwere being overridden by CLI's internal telemetry attributes. The CLI now properly merges user-specified attributes with internal ones, allowing both to coexist. docker/cli#5842- Fix daemon failing to start on Windows when a container created before v28.0.0 was present. moby/moby#49626
- Fix possible error on
docker buildx prunewith the--min-free-space. moby/moby#49623- Fix spurious
io: read/write on closed pipeerror in the daemon log when closing container. moby/moby#49590- Fix the Docker daemon failing too early if the containerd socket isn't immediately available. moby/moby#49603
- Mask Linux thermal interrupt info in a container's
/procand/sysby default. moby/moby#49560- Update
contrib/check-config.shto check for more kernel modules related to iptables. moby/moby#49622- containerd image store: Fix integer overflow in User ID handling passed via
--user. moby/moby#49652- containerd image store: Fix spurious
reference for unknown type: application/vnd.in-toto+jsonwarning being logged to the daemon's log. moby/moby#49652
... (truncated)
Commits
6430e49Merge pull request #49700 from vvoland/missing-buildtagscc90726Add missing go1.22 build constraints330857aMerge pull request #49698 from jsternberg/buildkit-0.20.22fce935vendor: github.com/moby/buildkit v0.20.2ecb03c4Merge pull request #49691 from thaJeztah/bump_selinuxaccda31Merge pull request #49562 from thaJeztah/switch_cgroups6a0f71cMerge pull request #49686 from thaJeztah/attach_nitse2011afMerge pull request #49692 from thaJeztah/rm_aliases3e957c6remove some redundant import-aliases4db84b1switch to github.com/opencontainers/cgroups- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from crazy-max/ghaction-import-gpg's releases.
v6.3.0
- Bump openpgp from 5.11.2 to 6.1.0 in crazy-max/ghaction-import-gpg#215
- Bump cross-spawn from 7.0.3 to 7.0.6 in crazy-max/ghaction-import-gpg#212
Full Changelog: https://github.com/crazy-max/ghaction-import-gpg/compare/v6.2.0...v6.3.0
Commits
e89d409Merge pull request #215 from crazy-max/dependabot/npm_and_yarn/openpgp-6.1.09239589fix README177db9dchore: update generated content78b11f3build(deps): bump openpgp from 5.11.2 to 6.1.0bc96911Merge pull request #218 from crazy-max/bake-v6b70aa9bci: update bake-action to v6d690cc9Merge pull request #212 from crazy-max/dependabot/npm_and_yarn/cross-spawn-7.0.69e887f4Merge pull request #211 from crazy-max/dependabot/github_actions/codecov/code...442980bci: fix deprecated codecov inputa0098b6Merge pull request #217 from crazy-max/gha-perms- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from goreleaser/goreleaser-action's releases.
v6.3.0
- Bump undici from 5.28.3 to 5.28.5 in goreleaser/goreleaser-action#488
Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v6.2.1...v6.3.0
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Commits
e1fcd82html: properly handle trailing solidus in unquoted attribute value in foreign...ebed060internal/http3: fix build of tests with GOEXPERIMENT=nosynctest1f1fa29publicsuffix: regenerate table1215081http2: improve error when server sends HTTP/1312450ehtml: ensure <search> tag closes <p> and update tests09731f9http2: improve handling of lost PING in Server55989e2http2/h2c: use ResponseController for hijacking connections2914f46websocket: re-recommend gorilla/websocket- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Release notes
Sourced from github.com/docker/docker's releases.
v28.1.1
28.1.1
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Bug fixes and enhancements
- Fix
dockerd-rootless-setuptool.shincorrectly reporting missingiptables. moby/moby#49833- containerd image store: Fix a potential daemon crash when using
docker loadwith archives containing zero-size tar headers. moby/moby#49837Packaging updates
- Update Buildx to v0.23.0. docker/docker-ce-packaging#1185
- Update Compose to v2.35.1. docker/docker-ce-packaging#1188
Networking
- Add a warning to a container's
/etc/resolv.confwhen no upstream DNS servers were found. moby/moby#49827v28.1.0
28.1.0
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
- docker/cli, 28.1.0 milestone
- moby/moby, 28.1.0 milestone
- Changes to the Engine API, see API version history.
New
- Add
docker bakesub-command as alias fordocker buildx bake. docker/cli#5947- Experimental: add a new
--use-api-socketflag ondocker runanddocker createto enable access to Docker socket from inside a container and to share credentials from the host with the container. docker/cli#5858docker image inspectnow supports a--platformflag to inspect a specific platform of a multi-platform image. docker/cli#5934Bug fixes and enhancements
- Add CLI shell-completion for context names. docker/cli#6016
- Fix
docker images --treenot including non-container images content size in the total image content size. docker/cli#6000- Fix
docker loadnot preserving replaced images. moby/moby#49650- Fix
docker loginhints when logging in to a custom registry. docker/cli#6015- Fix
docker statsnot working properly on machines with high CPU core count. moby/moby#49734- Fix a regression causing
docker pull/pushto fail when interacting with a private repository. docker/cli#5964- Fix an issue preventing rootless Docker setup on a host with no
ip_tableskernel module. moby/moby#49727- Fix an issue that could lead to unwanted iptables rules being restored and never deleted following a firewalld reload. moby/moby#49728
- Improve CLI completion of
docker service scale. docker/cli#5968docker images --treenow hides both untagged and dangling images by default. docker/cli#5924docker system infowill provide an exit code if a connection cannot be established to the Docker daemon. docker/cli#5918
... (truncated)
Commits
01f442bMerge pull request #49588 from thaJeztah/bump_go_build_tagse03c0f0Merge pull request #49834 from thaJeztah/cleanup_ignore8dde918Merge pull request #49837 from thaJeztah/bump_containerd_2.0.5e70ce7aMerge pull request #49833 from vvoland/rootless-iptables-checkfc8361cvendor: github.com/containerd/containerd v2.0.562f51e4vendor: golang.org/x/oauth2 v0.29.0bbbb003cleanup ignore filesead379acontrib/rootless-setuptool: Fix iptables detection7c52c4dupdate go:build tags to go1.23 to align with vendor.mod6573a13Merge pull request #49827 from robmry/warn_no_ext_nameservers- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show