build(deps): bump github.com/containers/image/v5 from 5.33.1 to 5.36.2 #345

dependabot · 2025-09-04T02:35:40Z

Bumps github.com/containers/image/v5 from 5.33.1 to 5.36.2.

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.36.2

What's Changed

[release-5.36] Bump to c/image v5.36.1 by @TomSweeneyRedHat in containers/image#2920

[release-5.36] rekor: do not cancel http context by @TomSweeneyRedHat in containers/image#2943

Full Changelog: containers/image@v5.36.1...v5.36.2

v5.36.1

What's Changed

[release-5.36] Update the CI image, to match Skopeo's updated test code by @TomSweeneyRedHat in containers/image#2913

Full Changelog: containers/image@v5.36.0...v5.36.1

v5.36.0

What's Changed

Bump c/storage to v1.58.0, c/image to v5.35.0 by @TomSweeneyRedHat in containers/image#2828

chore(deps): update dependency golangci/golangci-lint to v2.1.2 by @renovate[bot] in containers/image#2827

fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.28 by @renovate[bot] in containers/image#2829

fix(deps): update module github.com/docker/docker to v28.1.0+incompatible by @renovate[bot] in containers/image#2834

fix(deps): update module github.com/docker/cli to v28.1.0+incompatible by @renovate[bot] in containers/image#2833

fix(deps): update module github.com/docker/cli to v28.1.1+incompatible by @renovate[bot] in containers/image#2836

fix(deps): update module github.com/docker/docker to v28.1.1+incompatible by @renovate[bot] in containers/image#2835

chore(deps): update dependency containers/automation_images to v20250422 by @renovate[bot] in containers/image#2839

chore(deps): update dependency golangci/golangci-lint to v2.1.5 by @renovate[bot] in containers/image#2840

fix(deps): update module github.com/sigstore/sigstore to v1.9.4 by @renovate[bot] in containers/image#2842

chore(deps): update dependency golangci/golangci-lint to v2.1.6 by @renovate[bot] in containers/image#2846

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0 by @renovate[bot] in containers/image#2845

fix(deps): update module golang.org/x/oauth2 to v0.30.0 by @renovate[bot] in containers/image#2847

fix(deps): update module golang.org/x/sync to v0.14.0 by @renovate[bot] in containers/image#2848

fix(deps): update module golang.org/x/term to v0.32.0 by @renovate[bot] in containers/image#2850

fix(deps): update module golang.org/x/crypto to v0.38.0 by @renovate[bot] in containers/image#2849

fix(deps): update module dario.cat/mergo to v1.0.2 by @renovate[bot] in containers/image#2851

vendor: update c/storage by @giuseppe in containers/image#2844

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1 by @renovate[bot] in containers/image#2853

Update old indirect dependencies by @mtrmac in containers/image#2787

Stop setting the btrfs_noversion build tag by @mtrmac in containers/image#2831

fix(deps): update module github.com/santhosh-tekuri/jsonschema/v6 to v6.0.2 by @renovate[bot] in containers/image#2855

fix(deps): update module github.com/docker/docker to v28.2.1+incompatible by @renovate[bot] in containers/image#2859

fix(deps): update module github.com/docker/cli to v28.2.1+incompatible by @renovate[bot] in containers/image#2858

fix(deps): update module github.com/docker/docker to v28.2.2+incompatible by @renovate[bot] in containers/image#2862

fix(deps): update module github.com/docker/cli to v28.2.2+incompatible by @renovate[bot] in containers/image#2861

INCOMPATIBLE: Remove the implementation of the ostree transport by @mtrmac in containers/image#2821

Only upload sigstore signatures to the sigstore tag schema by @mtrmac in containers/image#2717

Update old dependencies by @mtrmac in containers/image#2863

fix(deps): update github.com/containers/storage digest to 78f4258 by @renovate[bot] in containers/image#2864

Queue a partially-pulled layer for commit immediately after staging it by @mtrmac in containers/image#2799

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2 by @renovate[bot] in containers/image#2865

fix(deps): update module golang.org/x/sync to v0.15.0 by @renovate[bot] in containers/image#2866

... (truncated)

Commits

d464a25 Bump to v5.36.2
50a6b67 Merge pull request #2943 from TomSweeneyRedHat/dev/tsweeney/backport_2938
d3eb538 [release-5.36] rekor: do not cancel http context
6ed8326 Merge pull request #2920 from TomSweeneyRedHat/dev/tsweeney/v5.36.1
f6ca2da [release-5.36] Bump to c/image v5.36.1
d18da19 [release-5.36] Bump c/storage to v1.59.1
ae0c9f3 Merge pull request #2913 from TomSweeneyRedHat/dev/tsweeney/cherrypick2907
40d1027 [release-5.36] Update the CI image, to match Skopeo's updated test code
08ce6b4 Bump to c/image v5.36.0
b5e2b66 Bump to c/storage v1.59.0
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.33.1 to 5.36.2. - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.33.1...v5.36.2) --- updated-dependencies: - dependency-name: github.com/containers/image/v5 dependency-version: 5.36.2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added bot kind/dependencies labels Sep 4, 2025

dependabot bot requested a review from crazy-max as a code owner September 4, 2025 02:35

dependabot bot added bot kind/dependencies labels Sep 4, 2025

dependabot bot mentioned this pull request Sep 4, 2025

build(deps): bump github.com/containers/image/v5 from 5.33.1 to 5.36.1 #339

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

build(deps): bump github.com/containers/image/v5 from 5.33.1 to 5.36.2 #345

build(deps): bump github.com/containers/image/v5 from 5.33.1 to 5.36.2 #345

Uh oh!

dependabot bot commented on behalf of github Sep 4, 2025

Uh oh!

Uh oh!

Uh oh!

build(deps): bump github.com/containers/image/v5 from 5.33.1 to 5.36.2 #345

Are you sure you want to change the base?

build(deps): bump github.com/containers/image/v5 from 5.33.1 to 5.36.2 #345

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 4, 2025

v5.36.2

What's Changed

v5.36.1

What's Changed

v5.36.0

What's Changed

Uh oh!

Uh oh!