fix(deps): update module github.com/moby/buildkit to v0.13.1 - autoclosed #9
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.10.6->v0.13.1Release Notes
moby/buildkit (github.com/moby/buildkit)
v0.13.1Compare Source
buildkit 0.13.1
Welcome to the 0.13.1 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable Changes
./.gitsource path as Git URL. #4776Dependency Changes
This release has no dependency changes
Previous release can be found at v0.13.0
v0.13.0Compare Source
buildkit 0.13.0
Welcome to the 0.13.0 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Contributors
Notable Changes
Default Dockerfile frontend has been updated to v1.7.0
Experimental Windows Containers support is now available with containerd worker. Windows release artifacts now also contain the
buildkitd.exebinary. #3518 #3517 #4494 #4479 #4432 #4387 #4364 #4670 #4692 docsMultiple exporters(outputs) can now be specified with a single build request #4134
New option
rewrite-timestampsis available when exporting images that with convert files in exported layers according to the epoch time for reproducible builds #4057 docsThere is a new bridge network mode
--oci-worker-net=bridgethat can be used to set up CNI bridge networking with no external dependencies for better network isolation of build containers. It is expected that v0.14.0 release will enable this network mode by default. #4352 #4650 #4539SOURCE_DATE_EPOCHin now not applied to the layer records of the base image to keep them immutable #4663Github Actions cache backend now supports defining timeout in case the service gets rate-limited #4702
Gateway API has a new method
ResolveSourceMetathat will replace the previousResolveImageConfigmethod. The new method works with all LLB source types, not just images, and correctly handles policy conversions between sources. #4563 #4647When using host networking, local host DNS routes can also be used instead of the default #4524
Changing cache mount's ID property does not invalidate cache for the build step anymore #4585
Basic metrics support has been added via OpenTelemetry and Prometheus #4460
Token cache is no longer shared between parallel push requests #3592
Update insecure registry fallback logic to only fallback with previous host #4613
Build secrets can now avoid
noexecmount restrictions if file mode set execution bit #4670GRPC socket for OpenTelemetry tracing now defaults to runtime directory path #4078 #4619
LLB API now has new options to directly control how different mounts for container steps are cached #4624
Cancellation and timeout errors should now contain better stacktraces on
--debugmode #4587 #4457Edge case of empty multiplatform build result does not generate errors anymore #4526
Prune command now avoids taking database lock for a long time if deletion takes too much time #4413
Healthcheck service has been added to Control API #4145
Buildctl has new
quietandrawjsonprogress mode #4213 #4113Buildctl has new
--debug-json-cache-metricsdebug option #4464Buildctl now supports
--registry-auth-tlscontextflag for controlling the client authentication requests #4420 #4211Buildctl now propagates
SOURCE_DATE_EPOCHto build arg automatically if it is defined #4231LLB client now allows exposing local sources via
FSinterface instead of local path #4094Ensure only one platform is pulled on resolving image config, even if multiple match #4311
Rootless version supports new
--detach-netnsmode #4546Update default CNI config path for rootless mode to
~/.config/buildkit/cni.json#4547Ensure correct pinned commit is checked out if tags that have same path components #4473
Exporting caches for results with no layers is now skipped in OCI structures #4336
New debugging options have been added to the scheduler component #4410
Improve error messages on
StatFilerequests #4321Daemon logs can now be exported in JSON format #4044
Qemu emulation for loongarch64 is now detected if available #4392
Number of log lines per build step on TTY mode can now be configured with
BUILDKIT_TTY_LOG_LINES#4284Empty
OnBuildvalue is now omitted from image config #4648Fixes for bridge networking on Rootless mode #4655
Fix possible "missing lease requirement" error on canceling one of parallel exports #4529
Fix file permissions error if
ADD <tar.gz>used with User namespace #4712Fix possible permission error when using custom frontends with User namespace on certain systems #4714
Fixes for merging parallel build steps that generate the same cache keys #4559 #4285
Fix processing result map in LLB API if the evaluate option is set to true #4544
Fix hardlink issue with whiteout deletes in the merge snapshotter #4516
Fix issue with caching multiple mounts originating from the same source #4270 #4281
Fix possible panic condition on deleting history records #4451
Fix issue where same source image layer chains could end up in the provenance attestation multiple times #4433
Fix possible pull error caused by previous cache #4428
Fix possible data race on transfer progress handling #4726
Fix issues where session messages could grow bigger than maximum message size when transferring SBOM to client #4313
Fix issue where specific build steps could drop progress messages #4347
Fix possible wrong usage statitics in merged snapshotters #4389
Fix possible storage leak for compression variants #4353
Fix handling of certain SSH Git URLs #4326
Fix possible missing blob error on mapping files to SBOM packages #4210
Fix diffing layers when custom Gzip compression level is set #4275
Fix possible panic with stargz snapshotter #4187
Fix generation of cache checksums for Merge and Diff operations #4192
Fix possible negative pull time in progressbar on parallel pulls #4183
Fix handling of missing files in LLB File remove API #4051
Dependency Changes
43070de->ced1acd5330a85->8075edf8e51b8b-> v25.0.3e72429fnew8b29126->22c0c7a36ef4d8->7525a1a0bdeb6e->a0b64f37f2fa6f->49dd2c149dd2c1new49dd2c1newPrevious release can be found at v0.12.5
v0.12.5Compare Source
https://hub.docker.com/r/moby/buildkit
Notable changes:
This release contains following security fixes:
Runc has been updated to v1.1.12 addressing GHSA-xr7r-f8xq-vfvv
Fix possible race condition with accessing subpaths from cache mounts GHSA-m3r6-h7wv-7xxv
Fix possible host system access from mount stub cleaner GHSA-4v98-7qmw-rqr8
Fix interactive containers API validation against entitlements GHSA-wr6v-9f75-vh2g
Fix possible panic when incorrect parameters sent from frontend GHSA-9p26-698r-w4hx
v0.12.4Compare Source
Welcome to the 0.12.4 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes
v0.12.3Compare Source
Welcome to the 0.12.3 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes
v0.12.2Compare Source
Welcome to the 0.12.2 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes
v0.12.1Compare Source
Welcome to the 0.12.1 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes
v0.12.0Compare Source
buildkit 0.12.0
Welcome to the 0.12.0 release of buildkit!
This is a pre-release of buildkit
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Contributors
Notable Changes
image-manifest=true#3724platform-split=falseoption to merge all artifacts for multiple platforms to the same directory. #3161capture-usage=trueattestation option and is set automatically for History API records. This feature depends on CgroupV2, and some fields require kernel configured withCONFIG_PSIenabled. #3860 #3999SOURCE_DATE_EPOCHvalue for reproducible builds is now set as the creation timestamp when exporting image to containerd image store #3263buildctlhas new--waitflag to block RPCs until the connection becomes available #3586docker buildxflags without the need to copy code from Dockerfile frontend #3606Accept-Encodingdifferently for different HTTP methods #3745 #3788buildctlcommandsdebug historiesandprune-histories#3498registry.insecureoption like the Image exporter #3501oci-layoutfile when exporting uncompressed OCI layout #3729Dependency Changes
43070denew5330a85newc68fdcfnew98d3da7f57e95b-> v2.2.002efb9a-> v1.1.0-rc31c3f411-> v1.1.0-rc.2d6f5855-> v0.5.1fb43384->36ef4d88066bb9->f9a4f7e7780775->7f2fa6fPrevious release can be found at v0.11.6
v0.11.6Compare Source
https://hub.docker.com/r/moby/buildkit
Notable changes:
IssuedAtvalue #3779v0.11.5Compare Source
https://hub.docker.com/r/moby/buildkit
Notable changes:
v0.11.4Compare Source
https://hub.docker.com/r/moby/buildkit
Notable changes:
This release contains two security fixes.
Fix the issue where credentials inlined to Git URLs could end up in provenance attestation GHSA-gc89-7gcr-jxqc
Containerd has been updated to 1.6.18 , fixing issue with supplementary groups not being set up properly GHSA-hmfx-3pcx-653p #3651
Other updates
v0.11.3Compare Source
Welcome to the 0.11.3 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable Changes
SOURCE_DATE_EPOCH#3559Dependency Changes
1709cfe-> v1.6.16Previous release can be found at v0.11.2
v0.11.2Compare Source
Welcome to the 0.11.2 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes
Dependency Changes
1709cfePrevious release can be found at v0.11.1
v0.11.1Compare Source
Welcome to the 0.11.1 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes
v0.11.0Compare Source
Welcome to the 0.11.0 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable Changes
Builtin Dockerfile frontend has been updated to v1.5.0 https://github.com/moby/buildkit/releases/tag/dockerfile%2F1.5.0
BuildKit and compatible frontends can now produce SBOM (Software Bill of Materials) attestations for the build results to show the dependencies of the build. These attestations can be added to images and locally exported files. Using Dockerfiles, SBOM information can be configured to be produced also based on files in intermediate build stages or build context, or run processes that manually define the SBOM dependencies. When exporting an image, layer mapping is also produced that allows tracing a SBOM package to a specific build step. #3258 #3290 #3249 #2983 #3358 #3312 #3407 #3408 #3410 #3414 #3422 Read documentation
BuildKit can now produce a Provenance attestation for the build result in SLSA format. Provenance attestations describe how a build was produced, and what sources/parameters were used. In addition to fields part of the SLSA specification, Buildkit's provenance also exports BuildKit-specific metadata like LLB steps with their source- and layer mapping. Provenance attestation will capture all the build sources visible to BuildKit, for example, not only the Git repository where the project's source is coming from but also the digests of all the container images used during the build. #3240 #3428 #3428 #3462 Read documentation
BuildKit now supports reproducible builds by setting
SOURCE_DATE_EPOCHbuild argument orsource-date-epochexporter attribute. This deterministic date will be used in image metadata instead of the current time. #2918 #3262 #3152 Read documentationOCI annotations can now be set to build results exported as images or OCI layouts. Annotations can be set on both image manifests and indexes, as well as descriptors to them. #3283 #3061 #2975 #2879 Read documentation
New Build History API allows listening to events about builds starting and completing, and streaming progress of active builds. New commands
buildctl debug monitor,buildctl debug logsandbuildctl debug gethave been added to use this API. Build records also keep OpenTelemetry traces, provenance attestations, and image manifests if they were created by the build. #3294 #3339 #3440Build results exported with image, local or tar exporters now support attestations. In addition to builtin SBOM and Provenance attestations, frontends can produce custom attestations in in-toto format #3197 #3070 #3129 #3073 #3063 #2935 #3289 #3389 #3321 #3342 #3461 Read documentation
New Source type
oci-layout://allows builds to import images from OCI directory structure on the client side. This allows using local versions of the image. [#3112](https://togithub.com/moby/bConfiguration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.