skopeo

mirror of https://github.com/containers/skopeo.git synced 2025-04-28 03:10:18 +00:00

Author	SHA1	Message	Date
renovate[bot]	f346045d7b	fix(deps): update module github.com/containers/common to v0.57.1 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-12-07 17:01:23 +00:00
renovate[bot]	48d11dac3f	fix(deps): update golang.org/x/exp digest to 6522937 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-12-04 14:05:30 +00:00
renovate[bot]	9f52e728f7	fix(deps): update module golang.org/x/term to v0.15.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-27 19:58:24 +00:00
renovate[bot]	14496ba483	fix(deps): update module github.com/containers/common to v0.57.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-17 04:54:18 +00:00
renovate[bot]	e4b67e78fd	fix(deps): update module github.com/containers/image/v5 to v5.29.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-16 20:07:57 +00:00
Miloslav Trmač	518181e595	Update c/image and c/common to latest ... to include https://github.com/containers/image/pull/2173 and https://github.com/containers/common/pull/1731 . Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-11-16 18:21:43 +01:00
renovate[bot]	56b96a4d37	fix(deps): update module github.com/containers/storage to v1.51.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-16 16:52:53 +00:00
renovate[bot]	a8e7d94ebe	fix(deps): update module golang.org/x/term to v0.14.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-08 08:11:46 +00:00
renovate[bot]	50cffa386b	fix(deps): update module github.com/spf13/cobra to v1.8.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-04 23:05:35 +00:00
renovate[bot]	6ef8acff81	fix(deps): update github.com/containers/common digest to 3e5caa0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-01 15:29:29 +00:00
renovate[bot]	5d4e89ccbe	chore(deps): update module google.golang.org/grpc to v1.57.1 [security] Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-11-01 09:40:14 +00:00
renovate[bot]	5307dd6604	fix(deps): update module github.com/containers/ocicrypt to v1.1.9 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-31 17:06:37 +00:00
Miloslav Trmač	03c9425235	Update github.com/klauspost/compress to v1.17.2 ... to be consistent with the just-updated docker/docker's vendor.mod. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-10-30 19:19:54 +01:00
renovate[bot]	91611a3ac9	chore(deps): update module github.com/docker/docker to v24.0.7+incompatible [security] Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-30 17:39:47 +00:00
renovate[bot]	fa3e62f21b	chore(deps): update module golang.org/x/net to v0.17.0 [security] Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-16 14:21:02 +00:00
renovate[bot]	538dd6f3b4	fix(deps): update module golang.org/x/term to v0.13.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-05 19:58:47 +00:00
renovate[bot]	611db7c3dd	fix(deps): update module github.com/docker/distribution to v2.8.3+incompatible Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-02 19:50:28 +00:00
renovate[bot]	43e1a96e67	fix(deps): update github.com/containers/common digest to 745eaa4 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-10-02 13:14:32 +00:00
Daniel J Walsh	5703482600	vendor of containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2023-09-20 08:18:32 -04:00
renovate[bot]	7db8fbde98	fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc5 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-14 18:32:59 +00:00
renovate[bot]	4d921585f3	fix(deps): update module github.com/containers/common to v0.56.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-14 05:09:18 +00:00
renovate[bot]	32c8a05a24	fix(deps): update module github.com/containers/image/v5 to v5.28.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-13 19:19:23 +02:00
renovate[bot]	c1e7c974f8	fix(deps): update module github.com/containers/storage to v1.50.2 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-13 01:35:14 +00:00
renovate[bot]	9563e3b84b	fix(deps): update module github.com/containers/storage to v1.50.1 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-12 13:54:25 +00:00
renovate[bot]	427e58f5f5	fix(deps): update golang.org/x/exp digest to 9212866 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-06 00:23:35 +00:00
renovate[bot]	897619f6b5	fix(deps): update github.com/containers/image/v5 digest to 58d5eb6 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-09-04 18:19:51 +00:00
renovate[bot]	4697991430	fix(deps): update module github.com/containers/common to v0.55.4 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-24 17:21:02 +00:00
renovate[bot]	3249973d37	fix(deps): update module github.com/containers/storage to v1.49.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-22 16:31:39 +00:00
renovate[bot]	78187ca816	fix(deps): update module github.com/containers/ocicrypt to v1.1.8 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-15 14:13:17 +00:00
renovate[bot]	df117e2838	fix(deps): update module github.com/containers/common to v0.55.3 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-15 12:52:32 +00:00
Miloslav Trmač	4ee2946bbc	Update c/image after https://github.com/containers/image/pull/2070 > go get github.com/containers/image/v5@main > make vendor This moves c/image to a commit that includes both the work on main that we were already vendoring, and the last tagged version 5.27.0. That should prevent Renovate from proposing downgrades which fail tests: - https://github.com/containers/skopeo/pull/2065 - https://github.com/containers/skopeo/pull/2066 Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-08-14 20:24:51 +02:00
renovate[bot]	e98561e243	fix(deps): update golang.org/x/exp digest to 352e893 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-10 04:08:25 +00:00
renovate[bot]	276b80955a	fix(deps): update module golang.org/x/term to v0.11.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-08-04 16:44:37 +00:00
Miloslav Trmač	60ee543f7f	Update c/image for golang.org/x/exp > go get github.com/containers/image/v5@main > go mod tidy && go mod vendor This updates c/image with a new version of x/exp. That package has changed API in an incompatible way, so just bumping x/exp (as in https://github.com/containers/skopeo/pull/2060 ) would break Skopeo builds. This updates both c/image and x/exp in lockstep (and nothing needs updating in Skopeo itself for the x/exp breakage). Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-08-02 22:41:44 +02:00
renovate[bot]	a0a340a12e	fix(deps): update module github.com/containers/common to v0.55.2 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-07-13 10:15:54 +00:00
renovate[bot]	2945e9e039	Update module golang.org/x/term to v0.10.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-07-06 13:10:13 +00:00
renovate[bot]	e9303879a8	Update module github.com/opencontainers/image-spec to v1.1.0-rc4 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-30 18:30:59 +00:00
renovate[bot]	3d8d212869	Update module github.com/containers/common to v0.55.1 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-30 14:18:42 +00:00
renovate[bot]	bfa04ea246	Update module github.com/containers/common to v0.54.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-28 23:02:07 +00:00
renovate[bot]	1d5458fa7c	Update module github.com/containers/image/v5 to v5.26.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-28 19:04:12 +00:00
renovate[bot]	d72d53cc51	Update module github.com/containers/storage to v1.47.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-27 00:12:20 +00:00
renovate[bot]	ceeeb67e6b	Update module golang.org/x/term to v0.9.0 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-14 16:09:34 +00:00
renovate[bot]	deee28a9c2	Update module github.com/sirupsen/logrus to v1.9.3 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-03 23:06:27 +00:00
renovate[bot]	73e7618d73	Update golang.org/x/exp digest to 2e198f4 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-01 14:24:34 +00:00
renovate[bot]	1c7388064a	Update github.com/containers/image/v5 digest to e14c1c5 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-06-01 01:10:03 +00:00
renovate[bot]	2e07073cf9	Update module github.com/stretchr/testify to v1.8.4 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2023-05-30 11:32:54 +00:00
renovate[bot]	c06aa5c6fd	Update module github.com/stretchr/testify to v1.8.3 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-05-19 01:23:31 +00:00
renovate[bot]	21b1dfee63	Update module github.com/sirupsen/logrus to v1.9.2 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-05-17 19:25:43 +00:00
renovate[bot]	ead979a91f	Update module github.com/docker/distribution to v2.8.2+incompatible Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-05-11 12:25:17 +00:00
Miloslav Trmač	44ed4cea0a	Update c/image with https://github.com/containers/image/pull/1944 ... to update github.com/opencontainers/image-spec to v1.1.0-rc3. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-05-05 20:07:59 +02:00
renovate[bot]	9213943ec9	Update module github.com/containers/common to v0.53.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-05-04 19:20:46 +00:00
renovate[bot]	2825ffd9ea	Update module golang.org/x/term to v0.8.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-05-04 17:54:52 +00:00
renovate[bot]	03e18aa99c	Update golang.org/x/exp digest to 47ecfdc Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-05-01 02:12:10 +00:00
renovate[bot]	5f0314f342	Update module github.com/containers/common to v0.52.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-04-11 17:35:08 +00:00
renovate[bot]	66157589c5	Update module github.com/containers/storage to v1.46.1 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-04-10 22:42:41 +00:00
renovate[bot]	ca0f8418e1	fix(deps): update module github.com/spf13/cobra to v1.7.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-04-05 16:29:43 +00:00
renovate[bot]	b0d339f0fd	fix(deps): update module github.com/containers/image/v5 to v5.25.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-04-05 16:14:44 +00:00
renovate[bot]	03ca2871fe	fix(deps): update module golang.org/x/term to v0.7.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-04-05 15:45:36 +00:00
Miloslav Trmač	bfe82593c8	Update c/image from the main branch > go get github.com/containers/image/v5@main > make vendor Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-04-01 12:24:04 +02:00
renovate[bot]	468ac6559e	Update module github.com/containers/common to v0.51.2 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-04-01 09:30:13 +00:00
renovate[bot]	aa9862a718	Update module github.com/containers/common to v0.51.1 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-03-22 15:11:42 +00:00
Lokesh Mandvekar	20447df139	bump golang.org/x/net to v0.8.0 Resolves: CVE-2022-41723 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-41723 Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>	2023-03-15 18:58:10 +05:30
renovate[bot]	3481a5b927	Update module golang.org/x/term to v0.6.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-03-05 03:40:10 +00:00
renovate[bot]	9a02c1eb57	Update module github.com/stretchr/testify to v1.8.2 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-02-27 10:52:05 +00:00
renovate[bot]	f1c03ef104	Update module github.com/containers/storage to v1.45.4 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-02-23 19:18:39 +00:00
renovate[bot]	64daedca6c	Update golang.org/x/exp digest to 5e25df0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-02-23 18:49:00 +00:00
Miloslav Trmač	2ef9cf6902	Replace gopkg.in/check.v1 by github.com/stretchr/testify/suite/ gopkg.in/check.v1 hasn't had any commit since Nov 2020. That's not a immediate issue for a test-only dependency, but because it hides access to the standard library testing.T, eventually it will become limiting. Also, using the same framework for unit and integration tests seems practical. This is mostly a batch copy&paste job, with a fairly high risk of unexpected breakage. Also, I didn't take much time at all to carefully choose between assert. and require.*; we can tune that as failures show up. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-02-17 02:35:51 +01:00
Miloslav Trmač	0ba164f072	Update c/image after https://github.com/containers/image/pull/1842 ... so that Renovate doesn't keep proposing a downgrade. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-02-15 19:20:03 +01:00
Miloslav Trmač	643a2359e4	Update c/image after https://github.com/containers/image/pull/1816 ... to work around some of the "unexpected EOF" failures. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-02-09 20:36:27 +01:00
renovate[bot]	2acac8a6c2	Update module golang.org/x/term to v0.5.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-02-07 21:58:55 +00:00
renovate[bot]	f9e2c67648	Update golang.org/x/exp digest to 46f607a Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-02-06 22:14:39 +00:00
Miloslav Trmač	f2b3a9c04b	Use golang.org/x/exp ... instead of open-coding loops. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-02-02 22:27:35 +01:00
renovate[bot]	afbdaf8ecb	Update module github.com/containers/common to v0.51.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-01-24 17:39:17 +01:00
renovate[bot]	c91142485e	Update module github.com/containers/image/v5 to v5.24.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-01-23 21:30:51 +00:00
Miloslav Trmač	48b9d94c87	Update c/image after https://github.com/containers/image/pull/1810 Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-01-23 17:39:09 +01:00
renovate[bot]	850bc49d27	Update module github.com/containers/storage to v1.45.3 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-01-20 17:46:01 +01:00
dependabot[bot]	63da8390f1	Bump github.com/containers/ocicrypt from 1.1.6 to 1.1.7 Bumps [github.com/containers/ocicrypt](https://github.com/containers/ocicrypt) from 1.1.6 to 1.1.7. - [Release notes](https://github.com/containers/ocicrypt/releases) - [Commits](https://github.com/containers/ocicrypt/compare/v1.1.6...v1.1.7) --- updated-dependencies: - dependency-name: github.com/containers/ocicrypt dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-19 09:03:20 +00:00
renovate[bot]	0698e82b30	fix(deps): update module github.com/containers/storage to v1.45.1 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-01-18 00:13:07 +00:00
Miloslav Trmač	bb1ac89327	Add support for Fulcio and Rekor, and --sign-by-sigstore=param-file (skopeo copy) and (skopeo sync) now support --sign-by-sigstore=param-file, using the containers-sigstore-signing-params.yaml(5) file format. That notably adds support for Fulcio and Rekor signing. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-01-14 13:33:57 +01:00
Miloslav Trmač	03b5bdec24	Update c/image after https://github.com/containers/image/pull/1787 Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2023-01-14 13:33:00 +01:00
renovate[bot]	1133a2a395	fix(deps): update module github.com/containers/storage to v1.45.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-01-13 01:15:34 +00:00
renovate[bot]	58bccf3882	fix(deps): update module golang.org/x/term to v0.4.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2023-01-04 18:38:35 +00:00
Colin Walters	960713da32	vendor: Bump golang.org/x/net to 4.0 I originally thought I needed this to fix a build, but that was apparently not the case. Signed-off-by: Colin Walters <walters@verbum.org>	2022-12-13 16:36:57 -05:00
renovate[bot]	46d48295fb	fix(deps): update module golang.org/x/term to v0.3.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2022-12-06 19:47:04 +00:00
renovate[bot]	563c91a2fd	fix(deps): update module github.com/containers/storage to v1.44.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2022-11-08 19:50:20 +00:00
renovate[bot]	8410bfdd91	fix(deps): update module golang.org/x/term to v0.2.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2022-11-07 22:25:08 +00:00
renovate[bot]	f968b2a890	fix(deps): update module github.com/spf13/cobra to v1.6.1 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2022-10-31 03:11:30 +00:00
Daniel J Walsh	5a8d72635c	Merge pull request #1791 from containers/renovate/golang.org-x-term-0.x fix(deps): update module golang.org/x/term to v0.1.0	2022-10-24 06:56:37 -04:00
renovate[bot]	d5327bced1	fix(deps): update module golang.org/x/term to v0.1.0 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2022-10-24 08:51:19 +00:00
renovate[bot]	6d3d9a3bb2	fix(deps): update module github.com/stretchr/testify to v1.8.1 Signed-off-by: Renovate Bot <bot@renovateapp.com>	2022-10-24 05:27:27 +00:00
Miloslav Trmač	5c69302d75	Update to c/image main branch > go get github.com/containers/image/v5@main > make vendor ... to make sure that we don't regress against Skopeo 1.9.3. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-10-20 20:09:25 +02:00
Miloslav Trmač	ae50898b8a	Include c/image after https://github.com/containers/image/pull/1299 > go get github.com/containers/image/v5@main > make vendor Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-10-12 22:56:18 +02:00
dependabot[bot]	4ccfb033fb	Bump github.com/spf13/cobra from 1.5.0 to 1.6.0 Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.5.0 to 1.6.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.5.0...v1.6.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-10-12 08:11:32 +00:00
dependabot[bot]	a495155030	Bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6 Bumps [github.com/containers/ocicrypt](https://github.com/containers/ocicrypt) from 1.1.5 to 1.1.6. - [Release notes](https://github.com/containers/ocicrypt/releases) - [Commits](https://github.com/containers/ocicrypt/compare/v1.1.5...v1.1.6) --- updated-dependencies: - dependency-name: github.com/containers/ocicrypt dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-10-10 08:10:52 +00:00
dependabot[bot]	e021b675e2	Bump github.com/opencontainers/image-spec from 1.1.0-rc1 to 1.1.0-rc2 Bumps [github.com/opencontainers/image-spec](https://github.com/opencontainers/image-spec) from 1.1.0-rc1 to 1.1.0-rc2. - [Release notes](https://github.com/opencontainers/image-spec/releases) - [Changelog](https://github.com/opencontainers/image-spec/blob/main/RELEASES.md) - [Commits](https://github.com/opencontainers/image-spec/compare/v1.1.0-rc1...v1.1.0-rc2) --- updated-dependencies: - dependency-name: github.com/opencontainers/image-spec dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-10-04 08:26:31 +00:00
Miloslav Trmač	7ebff0f533	Update for https://github.com/klauspost/pgzip/pull/50 ... to fix reads of compressed data by docker-archive: > go get github.com/klauspost/pgzip@master > make vendor Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-09-30 19:51:07 +02:00
Daniel J Walsh	ee84302b60	Update vendor containers/(common,image) Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-09-30 06:38:07 -04:00
dependabot[bot]	feabfac2a7	Bump github.com/containers/storage from 1.42.0 to 1.43.0 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.42.0 to 1.43.0. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.42.0...v1.43.0) --- updated-dependencies: - dependency-name: github.com/containers/storage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-09-29 08:12:13 +00:00
Miloslav Trmač	ba23a9162f	Stop using docker/docker/pkg/homedir in tests c/storage/pkg/homedir, which we need anyway for other purposes, should work just as well. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-08-23 22:30:12 +02:00
Miloslav Trmač	4b9ffac0cc	Update for c/image's update of github.com/gobuffalo/pop > go get github.com/containers/image/v5@main > go mod tidy -go=1.16 && go mod tidy -go=1.17 > make vendor The (go mod tidy) pair is necessary to keep c/image CI working. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-08-23 22:00:00 +02:00
dependabot[bot]	73a668e99d	Bump github.com/containers/common from 0.49.0 to 0.49.1 Bumps [github.com/containers/common](https://github.com/containers/common) from 0.49.0 to 0.49.1. - [Release notes](https://github.com/containers/common/releases) - [Commits](https://github.com/containers/common/compare/v0.49.0...v0.49.1) --- updated-dependencies: - dependency-name: github.com/containers/common dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-08-01 08:20:56 +00:00
Miloslav Trmač	08846d18cc	Update to github.com/containers/common v0.49.0 Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-07-25 18:13:11 +02:00
Miloslav Trmač	049163fcec	Update to github.com/containers/image/v5 v5.22.0 Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-07-25 18:05:03 +02:00
dependabot[bot]	b42e664854	Bump github.com/containers/storage from 1.41.0 to 1.42.0 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.41.0 to 1.42.0. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.41.0...v1.42.0) --- updated-dependencies: - dependency-name: github.com/containers/storage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-07-22 08:17:06 +00:00
dependabot[bot]	ee477d8877	Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0 Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) from 1.8.1 to 1.9.0. - [Release notes](https://github.com/sirupsen/logrus/releases) - [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md) - [Commits](https://github.com/sirupsen/logrus/compare/v1.8.1...v1.9.0) --- updated-dependencies: - dependency-name: github.com/sirupsen/logrus dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-07-19 08:11:51 +00:00
Miloslav Trmač	06be7a1559	Vendor in c/image with sigstore support Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-07-12 13:46:56 +02:00
Miloslav Trmač	62158a58bc	Vendor unreleased c/image with OCI artifact support including https://github.com/containers/image/pull/1574 . > go get github.com/containers/image/v5@main > make vendor Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-07-01 17:35:04 +02:00
dependabot[bot]	331162358b	Bump github.com/stretchr/testify from 1.7.5 to 1.8.0 Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.5 to 1.8.0. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.5...v1.8.0) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-30 08:17:49 +00:00
dependabot[bot]	899d3686f9	Bump github.com/stretchr/testify from 1.7.4 to 1.7.5 Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.4 to 1.7.5. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.4...v1.7.5) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-24 08:34:09 +00:00
Daniel J Walsh	1a98f253b4	Merge pull request #1687 from containers/dependabot/go_modules/github.com/stretchr/testify-1.7.4 Bump github.com/stretchr/testify from 1.7.2 to 1.7.4	2022-06-21 13:08:58 -04:00
dependabot[bot]	2f77d21343	Bump github.com/stretchr/testify from 1.7.2 to 1.7.4 Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.2 to 1.7.4. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.2...v1.7.4) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-21 08:13:03 +00:00
dependabot[bot]	2009d1c61e	Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-21 08:12:52 +00:00
Miloslav Trmač	a3a72342f2	Update go.mod to Go 1.17 > go mod tidy -go=1.17 > make vendor Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-06-08 16:46:38 +02:00
dependabot[bot]	e9379d15d2	Bump github.com/docker/docker Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.16+incompatible to 20.10.17+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md) - [Commits](https://github.com/docker/docker/compare/v20.10.16...v20.10.17) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-07 08:19:08 +00:00
dependabot[bot]	69840fd082	Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.1 to 1.7.2. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.1...v1.7.2) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-06 14:50:42 +00:00
dependabot[bot]	63622bc7c4	Bump github.com/containers/ocicrypt from 1.1.4 to 1.1.5 Bumps [github.com/containers/ocicrypt](https://github.com/containers/ocicrypt) from 1.1.4 to 1.1.5. - [Release notes](https://github.com/containers/ocicrypt/releases) - [Commits](https://github.com/containers/ocicrypt/compare/v1.1.4...v1.1.5) --- updated-dependencies: - dependency-name: github.com/containers/ocicrypt dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-06 08:16:08 +00:00
Miloslav Trmač	00a58e48b1	Update to github.com/opencontainers/runc >= 1.1.2 ... to silence Dependabot alerts about CVE-2022-29162 = GHSA-f3fp-gc8g-vw66. Note that the vulnerable code is not actually included in Skopeo at all, this is purely to silence imprecise vulnerability checkers. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-05-31 01:23:51 +02:00
Miloslav Trmač	0a3be734a9	Update to gopkg.in/yaml.v3 v3.0.0 ... to include a fix for CVE-2022-28948 = GHSA-hp87-p4gw-j4gq . Note that the package is only used for Skopeo's tests, so Skopeo's users can't reach the vulnerable code. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-05-26 20:30:59 +02:00
Miloslav Trmač	1ebb2520ca	Update c/image ... to bring in github.com/proglottis/gpgme 0.1.2. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-05-19 21:59:36 +02:00
dependabot[bot]	3eca480c2b	Bump github.com/docker/docker Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.15+incompatible to 20.10.16+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md) - [Commits](https://github.com/docker/docker/compare/v20.10.15...v20.10.16) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-05-13 08:17:07 +00:00
dependabot[bot]	149dea8dce	Bump github.com/containers/storage from 1.40.2 to 1.41.0 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.40.2 to 1.41.0. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.40.2...v1.41.0) --- updated-dependencies: - dependency-name: github.com/containers/storage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-05-12 08:10:20 +00:00
dependabot[bot]	13ceb93bdf	Bump github.com/docker/docker Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.14+incompatible to 20.10.15+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md) - [Commits](https://github.com/docker/docker/compare/v20.10.14...v20.10.15) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-05-07 12:22:43 +00:00
Daniel J Walsh	75d94e790c	Bump ocicrypt to v1.1.4 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-05-06 10:07:37 -04:00
Daniel J Walsh	737ed9c2a4	Vendor in containers/storage v1.40.2 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-05-03 13:06:55 -04:00
Daniel J Walsh	3c286dd1d1	Vendor in containers/(common, storage, image) Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-05-03 09:59:43 -04:00
Daniel J Walsh	8960ab3ce7	Update vendor of containers/(common,storage,image) Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-04-22 06:45:18 -04:00
James Hewitt	38ae81fa03	Bump containers/image to include sign identity option Signed-off-by: James Hewitt <james.hewitt@uk.ibm.com>	2022-03-30 22:02:40 +01:00
Lokesh Mandvekar	3bc062423e	Bump github.com/prometheus/client_golang to v1.11.1 Resolves: CVE-2022-21698 Skopeo isn't actually impacted by the CVE unless a Prometheus listener is set up, which is not a part of Skopeo's default behavior. Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>	2022-03-24 14:57:52 -04:00
dependabot[bot]	89cd19519f	Bump github.com/containers/common from 0.47.4 to 0.47.5 Bumps [github.com/containers/common](https://github.com/containers/common) from 0.47.4 to 0.47.5. - [Release notes](https://github.com/containers/common/releases) - [Commits](https://github.com/containers/common/compare/v0.47.4...v0.47.5) --- updated-dependencies: - dependency-name: github.com/containers/common dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-24 17:41:02 +00:00
dependabot[bot]	7f6b0e39d0	Bump github.com/containers/storage from 1.38.2 to 1.39.0 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.38.2 to 1.39.0. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.38.2...v1.39.0) --- updated-dependencies: - dependency-name: github.com/containers/storage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-24 17:14:41 +00:00
dependabot[bot]	f6bf57460d	Bump github.com/docker/docker Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.13+incompatible to 20.10.14+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md) - [Commits](https://github.com/docker/docker/compare/v20.10.13...v20.10.14) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-24 09:13:14 +00:00
dependabot[bot]	ac7edc7d10	Bump github.com/containers/ocicrypt from 1.1.2 to 1.1.3 Bumps [github.com/containers/ocicrypt](https://github.com/containers/ocicrypt) from 1.1.2 to 1.1.3. - [Release notes](https://github.com/containers/ocicrypt/releases) - [Commits](https://github.com/containers/ocicrypt/compare/v1.1.2...v1.1.3) --- updated-dependencies: - dependency-name: github.com/containers/ocicrypt dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-21 09:10:52 +00:00
Miloslav Trmač	f79cc8aeda	Update to Go 1.14 and revendor > go mod tidy -go=1.14 > make vendor Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-03-16 16:05:08 +01:00
dependabot[bot]	5aaf3a9e4c	Bump github.com/stretchr/testify from 1.7.0 to 1.7.1 Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.0 to 1.7.1. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-16 09:19:41 +00:00
Daniel J Walsh	0f701726bd	Merge pull request #1589 from containers/dependabot/go_modules/github.com/docker/docker-20.10.13incompatible Bump github.com/docker/docker from 20.10.12+incompatible to 20.10.13+incompatible	2022-03-11 05:01:09 -05:00
dependabot[bot]	ad3e8f407d	Bump github.com/spf13/cobra from 1.3.0 to 1.4.0 Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.3.0 to 1.4.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md) - [Commits](https://github.com/spf13/cobra/compare/v1.3.0...v1.4.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-11 09:11:45 +00:00
dependabot[bot]	0703ec6ce8	Bump github.com/docker/docker Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.12+incompatible to 20.10.13+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md) - [Commits](https://github.com/docker/docker/compare/v20.10.12...v20.10.13) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-11 09:11:37 +00:00
Miloslav Trmač	5200272846	Update github.com/containerd/containerd $ go get -u github.ccom/containerd/containerd $ make vendor ... to silence warnings about https://github.com/advisories/GHSA-crp2-qrr5-8pq7 , in code we don't use. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-03-04 19:26:12 +01:00
dependabot[bot]	0ad25b2d33	Bump github.com/containers/image/v5 from 5.19.1 to 5.20.0 Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.19.1 to 5.20.0. - [Release notes](https://github.com/containers/image/releases) - [Commits](https://github.com/containers/image/compare/v5.19.1...v5.20.0) --- updated-dependencies: - dependency-name: github.com/containers/image/v5 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-02 09:21:25 +00:00
tomsweeneyredhat	27b77f2bde	Bump c/common to v0.47.4 As the title says Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>	2022-02-09 19:23:20 -05:00
Daniel J Walsh	162bbab3a6	Bump version of containers/image and containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-02-02 14:40:05 -05:00
Daniel J Walsh	7f4db3db9d	Update vendor of containers/storage and containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-01-31 17:27:05 -05:00
Daniel J Walsh	042f481629	Update vendor of containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-01-26 12:49:18 -05:00
dependabot[bot]	b51707d50d	Bump github.com/containers/storage from 1.38.0 to 1.38.1 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.38.0 to 1.38.1. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.38.0...v1.38.1) --- updated-dependencies: - dependency-name: github.com/containers/storage dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-01-26 12:42:07 +00:00
Valentin Rothberg	bb49923af4	prompt-less signing via passphrase file To support signing images without prompting the user, add CLI flags for providing a passphrase file. Signed-off-by: Valentin Rothberg <rothberg@redhat.com>	2022-01-26 08:30:49 +01:00
Daniel J Walsh	923c58a8ee	Update the vendor of containers/common Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>	2022-01-20 13:30:07 -05:00
dependabot[bot]	1bf18b7ef8	Bump github.com/containers/storage from 1.37.0 to 1.38.0 Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.37.0 to 1.38.0. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.37.0...v1.38.0) --- updated-dependencies: - dependency-name: github.com/containers/storage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-01-20 09:10:51 +00:00
Miloslav Trmač	d32c56b47f	Update github.com/containerd/containerd to 1.5.9 > go get github.com/containerd/containerd@latest > make vendor ... because 1.5.9 contains a vulnerability fix, and we want to silence scanners. NOTE: Skopeo DOES NOT use the vulnerable code that was fixed in containerd 1.5.9, so it is NOT vulnerable to GHSA-mvff-h3cj-wj9c . Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-01-06 22:11:46 +01:00
Miloslav Trmač	6007e792e4	Fix the pseudo-version of github.com/opencontainers/image-spec > go get github.com/opencontainers/image-spec@a5463b7f9c8451553af3adcba2cab538469df00c > make vendor Primarily we want to use a 1.0.3-0... version rather than 1.0.2-0..., so that dependencies on 1.0.2 don't cause Skopeo to use 1.0.2 instead of the later main-branch code. Go has some logic to prevent using pseudo-version that don't follow a released version (which is the case here, where 1.0.2 is on a branch, and we want to use a main-branch commit instead); luckily some later PRs on the main branch include the full contents of the 1.0.2 branch. So, update a bit further along the main branch. This particular commit corresponds to the choice in https://github.com/containers/image/pull/1433 . Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-01-06 22:11:14 +01:00
Miloslav Trmač	5aa06a51f4	Update github.com/opencontainers/runc to v1.0.3 ... to silence warnings about CVE-2021-43784 / GHSA-v95c-p5hm-xq8f . NOTE: The vulnerable code was not used in this package, so Skopeo is has not been vulnerable to this issue. Signed-off-by: Miloslav Trmač <mitr@redhat.com>	2022-01-03 12:51:52 +01:00

1 2 3 4 5 ...

448 Commits