skopeo

mirror of https://github.com/containers/skopeo.git synced 2025-09-24 11:26:59 +00:00

Author	SHA1	Message	Date
Lokesh Mandvekar	55fcc610f3	Fix for CVE-2023-39325 Updated golang.org/x/net to v0.17.0 Skopeo isn't affected by the vulnerability, but this change will help to silence security scanners. Ref: https://github.com/advisories/GHSA-4374-p667-p6c8 Signed-off-by: Lokesh Mandvekar <lsm5@redhat.com>	2023-11-08 15:11:40 +05:30
Miloslav Trmač	06be7a1559	Vendor in c/image with sigstore support Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-07-12 13:46:56 +02:00
Daniel J Walsh	923c58a8ee	Update the vendor of containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-01-20 13:30:07 -05:00
Miloslav Trmač	e19b57c3b9	Update github.com/containerd/containerd to v1.5.7 ... to include a fix for https://github.com/advisories/GHSA-c2h3-6mxw-7mvq . (Note that Skopeo doesn't depend on the vulnerable code, so this is primarily to avoid dependency checker warnings.) Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2021-10-05 18:45:24 +02:00
dependabot-preview[bot]	5485daff13	Bump github.com/containers/storage from 1.26.0 to 1.29.0 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.26.0 to 1.29.0. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/master/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.26.0...v1.29.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2021-04-15 14:05:51 -04:00
dependabot-preview[bot]	131b2b8c63	Bump github.com/containers/common from 0.31.0 to 0.31.1 Bumps [github.com/containers/common](https://github.com/containers/common) from 0.31.0 to 0.31.1. - [Release notes](https://github.com/containers/common/releases) - [Commits](https://github.com/containers/common/compare/v0.31.0...v0.31.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2020-12-21 15:58:05 -05:00
dependabot-preview[bot]	325327dc3f	Bump github.com/containers/image/v5 from 5.3.1 to 5.4.0 Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.3.1 to 5.4.0. - [Release notes](https://github.com/containers/image/releases) - [Commits](https://github.com/containers/image/compare/v5.3.1...v5.4.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2020-03-31 22:19:09 +02:00
Valentin Rothberg	700b3102af	update github.com/containers/{image,storage} Signed-off-by: Valentin Rothberg <rothberg@redhat.com>	2019-08-06 14:13:03 +02:00
Miloslav Trmač	3e57660394	Revert mis-merged reverts of vendor.conf PR #440 reverted the vendor.conf edits of #426. This passed CI because the corresponding vendor/* subpackages were not modified. Restore the vendor.conf changes, and re-run full (vndr) to ensure the two are consistent again. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2017-11-07 19:34:26 +01:00
Miloslav Trmač	700199c944	Update image-tools, and remove the duplicate Sirupsen/logrus vendor	2017-10-30 17:24:44 +01:00
Miloslav Trmač	2c1ede8449	Update to image-spec v1.0.0 and revendor	2017-07-19 23:50:50 +02:00
Miloslav Trmač	0caee746fb	Vendor after merging mtrmac/image:openpgp, + other updates Primarily vendor after merging mtrmac/image:openpgp. Then update for the SigningMechanism API change. Also skip signing tests if the GPG mechanism does not support signing. Also abort some of the tests early instead of trying to use invalid (or nil) values. The current master of image-tools does not build with Go 1.6, so keep using an older release. Also requires adding a few more dependencies of our updated dependencies.	2017-03-29 20:54:18 +02:00
Erik Hollensbe	1ee74864e9	Vendor after merging erikh/image:kube-fix Based on https://github.com/projectatomic/skopeo/pull/289 by Erik Hollensbe <github@hollensbe.org> Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2017-01-19 20:17:36 +01:00

13 Commits