chore(deps): bump the common group across 1 directory with 7 updates

[dependabot]

Bumps the common group with 7 updates in the / directory:

Package	From	To
github.com/moby/buildkit	0.14.1	0.15.0
github.com/owenrumney/go-sarif/v2	2.3.2	2.3.3
github.com/owenrumney/squealer	1.2.2	1.2.3
github.com/samber/lo	1.44.0	1.46.0
github.com/zclconf/go-cty	1.14.4	1.15.0
helm.sh/helm/v3	3.15.2	3.15.3
modernc.org/sqlite	1.30.1	1.30.2

Updates github.com/moby/buildkit from 0.14.1 to 0.15.0

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.15.0

Welcome to the v0.15.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• Tõnis Tiigi
• Akihiro Suda
• Sebastiaan van Stijn
• Talon Bowler
• CrazyMax
• David Karlsson
• Aleksa Sarai
• Anthony Nandaa
• Erik Sipsma
• Jonathan A. Sternberg
• Justin Chadwell
• Alano Terblanche
• Brian Goff
• Jesper Noordsij
• Moritz "WanzenBug" Wanzenböck
• Nobi
• Paweł Gronowski
• Shaun Thompson
• fanjiyun.fjy
• retornam

Notable Changes

• Builtin Dockerfile frontend has been updated to v1.9.0 changelog
• History API now puts typed error information on a separate blob to reduce the size of the main record #5093 #5142
• History API supports new Finalize call for completing collection of tracing instead of waiting for time based expiration #5109
• Typed errors with source information now contain all description fields from failing vertex #5108
• Windows now supports exporting results that contain certain privileged files #4994
• Improve performance on calculating file-based checksums on certain cases #5060
• TOML config now allows configuring cgroup parent for containerd worker #5033
• Fix issue where files checked out from Git could have incorrect permission bits because of non-standard umask (regression from v0.13+) #5096
• Fix pulling Git commits by SHA if they point to unreferenced tags #5072
• Fix possible issue where result record could leak in cache database and not get released #5116
• Fix possible nil dereference on cancelling build on a specific time #5111
• Fix possible resource leak on cancelling build on a specific time #5031
• Fix possible issue where cancelling build on a specific time could have still kept the container step running #5106
• Fix theoretical telemetry record leak in case of database error #5136

... (truncated)

Commits

• e83d79a Merge pull request #5135 from daghack/copy-ignored-file-check
• 07fe324 Adds a rule check for copying files which match the .dockerignore patterns
• 62ba6fe Merge pull request #5150 from tonistiigi/dockerfile-no-stage-error
• 2a78bd3 Merge pull request #5149 from tonistiigi/update-gocsvvalue
• 262634c dockerfile: avoid frontend panic when no stages defined
• e38c064 Merge pull request #5141 from tonistiigi/testutil-mirror-fixes
• fcb9a53 vendor: update go-csvvalue to ddb21b71
• b6e33bc Merge pull request #5142 from tonistiigi/externalerr-release-fix
• 4096e93 Merge pull request #5140 from jsternberg/lint-constant-platform-disallowed
• 58753e8 checks: add check for constant in from platform flag
• Additional commits viewable in compare view

Updates github.com/owenrumney/go-sarif/v2 from 2.3.2 to 2.3.3

Release notes

Sourced from github.com/owenrumney/go-sarif/v2's releases.

v2.3.3

What's Changed

• fix: Update removed goreleaser flag by @​kaiwenleee in owenrumney/go-sarif#79

Full Changelog: owenrumney/go-sarif@v2.3.2...v2.3.3

Commits

• 87649aa Fix deprecated goreleaser flag
• See full diff in compare view

Updates github.com/owenrumney/squealer from 1.2.2 to 1.2.3

Release notes

Sourced from github.com/owenrumney/squealer's releases.

v1.2.3

What's Changed

• chore(deps): bump github.com/liamg/tml from 0.6.1 to 0.7.0 by @​dependabot in owenrumney/squealer#114
• chore(deps): bump alpine from 3.19.1 to 3.20.1 by @​dependabot in owenrumney/squealer#117
• chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @​dependabot in owenrumney/squealer#116
• chore(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @​dependabot in owenrumney/squealer#112
• chore(deps): bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 by @​dependabot in owenrumney/squealer#113

Full Changelog: owenrumney/squealer@v1.2.2...v1.2.3

Commits

• ecfe7b0 chore(deps): bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 (#113)
• 044312f chore(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (#112)
• 347c22f chore(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#116)
• 0a91022 chore(deps): bump alpine from 3.19.1 to 3.20.1 (#117)
• 00e1804 Update the dependencies
• f337428 chore(deps): bump github.com/liamg/tml from 0.6.1 to 0.7.0 (#114)
• See full diff in compare view

Updates github.com/samber/lo from 1.44.0 to 1.46.0

Release notes

Sourced from github.com/samber/lo's releases.

v1.46.0

What's Changed

• fix: chunk memory leak, bug fix by @​mihir20 in samber/lo#491
• feat: add WaitForWithContext by @​ccoVeille in samber/lo#480
• add ForEachCondition implement by @​Sianao in samber/lo#485

New Contributors

• @​mihir20 made their first contribution in samber/lo#491
• @​ccoVeille made their first contribution in samber/lo#480
• @​Sianao made their first contribution in samber/lo#485

Full Changelog: samber/lo@v1.45.0...v1.46.0

v1.45.0

What's Changed

• perf: preallocate in Assign by @​pmalek in samber/lo#484
• feat: adding EarliestBy and LatestBy functions by @​timych in samber/lo#489

New Contributors

• @​pmalek made their first contribution in samber/lo#484
• @​timych made their first contribution in samber/lo#489

Full Changelog: samber/lo@v1.44.0...v1.45.0

Commits

• 151a075 bump v1.46.0
• f6f43fb lint 💄
• cbfd1c6 add ForEachCondition implement (#485)
• 0f4679b feat: add WaitForWithContext (#480)
• 9e34397 fix: chunk memory leak (#491)
• 34537d5 feat: adding EarliestBy and LatestBy functions (#489)
• d93dd9a fix: Dockerfile to reduce vulnerabilities (#487)
• 8d3ddcf Update README.md
• 57c2d6d perf: preallocate in Assign (#484)
• See full diff in compare view

Updates github.com/zclconf/go-cty from 1.14.4 to 1.15.0

Changelog

Sourced from github.com/zclconf/go-cty's changelog.

1.15.0 (July 15, 2024)

• function/stdlib: The element function now accepts negative indices, extending the illusion of an infinitely-long list into the negative direction too.
• cty: The various "transform" functions were previously incorrectly propagating marks from a parent object down to attribute values when calling the caller-provided transform functions. The marks will now no longer be propagated downwards, which is consistent with the treatment of collection and tuple elements. If your transform function needs to take into account context about marks of upstream containers then you can maintain a stack of active marks in your Transformer implementation, pushing in Enter and popping in Exit. (#185)

Commits

• d4f2633 v1.15.0 release
• 0cccfb9 Update CHANGELOG.md
• 043bf38 cty: use unmarked val when Transform walks object attrs
• 7b73cce function/stdlib: element accepts negative indices
• 15a9d85 Prepare for a possible future v1.14.5 release
• See full diff in compare view

Updates helm.sh/helm/v3 from 3.15.2 to 3.15.3

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.15.3 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.15.3. The common platform binaries are here:

• MacOS amd64 (checksum / 68306cbd9808271cd95974328e4238c052c8495e09b0038828b65190491aeb9c)
• MacOS arm64 (checksum / 9ed53b19cfd935908c5269ba3e88028462fc4c249f85f937ae8cc04b6fe9cead)
• Linux amd64 (checksum / ad871aecb0c9fd96aa6702f6b79e87556c8998c2e714a4959bf71ee31282ac9c)
• Linux arm (checksum / 77a9c9699c836dd34fca3d9e783f9e70e0ddbe1a4b44aa13fac82f6193da452f)
• Linux arm64 (checksum / bd57697305ba46fef3299b50168a34faa777dd2cf5b43b50df92cca7ed118cce)
• Linux i386 (checksum / 60ee9fb18b3ecfee96cd680ff2a5dcab7f61b7c522efe0c7fc7a7e2c2577157c)
• Linux ppc64le (checksum / fac86a8a0515e1f4593d6288426c99f2b3edac946b7f118fcfe03e4a09523f25)
• Linux s390x (checksum / 5de47bc4fbae5a4d06d26c71f935334e5576954eed5c8ccef677607b59371c8e)
• Linux riscv64 (checksum / 096f773146abc7ef7348e32e74b7c27633bf063e117644bc9e0b75c50c9954e4)
• Windows amd64 (checksum / fd857635bbb38b20a91731e5d084c2e21503b0f797b153e3246de01676819f23)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.15.4 will contain only bug fixes and be released on August 14, 2024.
• 3.16.0 is the next feature release and will be on September 11, 2024.

Changelog

• fix(helm): Use burst limit setting for discovery 3bb50bbbdd9c946ba9989fbe4fb4104766302a64 (Evan Foster)
• fixed dependency_update_test.go f440d3b19ed772502b85ade33f7ee6bf4a35c85c (Suleiman Dibirov)
• fix(dependencyBuild): prevent race condition in concurrent helm dependency f262d80d30bd7c13f2ffe9719d23035adcbc7ede (Suleiman Dibirov)
• fix: respect proxy envvars on helm install/upgrade 7413819bb9c481707efa58b111ff0b85829b79f9 (Sidharth Menon)
• Merge pull request #13085 from alex-kattathra-johnson/issue-12961 eb4cf6051e5b97d48baf5b306ca1aaea1c33c2ae (Joe Julian)

Commits

• 3bb50bb fix(helm): Use burst limit setting for discovery
• f440d3b fixed dependency_update_test.go
• f262d80 fix(dependencyBuild): prevent race condition in concurrent helm dependency
• 7413819 fix: respect proxy envvars on helm install/upgrade
• eb4cf60 Merge pull request #13085 from alex-kattathra-johnson/issue-12961
• See full diff in compare view

Updates modernc.org/sqlite from 1.30.1 to 1.30.2

Commits

• d9a0871 revert to v1.30.1
• 8496be5 windows adjustments /n
• 77dde24 windows adjustments
• 15d87fe move func_test.go into repo root
• fea7666 WIPS
• 9e07ba9 vendor [email protected], support windows/386 /n
• 13ae74f vendor [email protected], support windows/386 /n
• 5008296 vendor [email protected], support windows/386 /n
• 8353ae5 vendor [email protected], support windows/386
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.