Bump github.com/containers/image/v5 from 5.29.3 to 5.36.2 #773

dependabot · 2025-09-08T00:10:10Z

Bumps github.com/containers/image/v5 from 5.29.3 to 5.36.2.

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.36.2

What's Changed

[release-5.36] Bump to c/image v5.36.1 by @TomSweeneyRedHat in containers/image#2920

[release-5.36] rekor: do not cancel http context by @TomSweeneyRedHat in containers/image#2943

Full Changelog: containers/image@v5.36.1...v5.36.2

v5.36.1

What's Changed

[release-5.36] Update the CI image, to match Skopeo's updated test code by @TomSweeneyRedHat in containers/image#2913

Full Changelog: containers/image@v5.36.0...v5.36.1

v5.36.0

What's Changed

Bump c/storage to v1.58.0, c/image to v5.35.0 by @TomSweeneyRedHat in containers/image#2828

chore(deps): update dependency golangci/golangci-lint to v2.1.2 by @renovate[bot] in containers/image#2827

fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.28 by @renovate[bot] in containers/image#2829

fix(deps): update module github.com/docker/docker to v28.1.0+incompatible by @renovate[bot] in containers/image#2834

fix(deps): update module github.com/docker/cli to v28.1.0+incompatible by @renovate[bot] in containers/image#2833

fix(deps): update module github.com/docker/cli to v28.1.1+incompatible by @renovate[bot] in containers/image#2836

fix(deps): update module github.com/docker/docker to v28.1.1+incompatible by @renovate[bot] in containers/image#2835

chore(deps): update dependency containers/automation_images to v20250422 by @renovate[bot] in containers/image#2839

chore(deps): update dependency golangci/golangci-lint to v2.1.5 by @renovate[bot] in containers/image#2840

fix(deps): update module github.com/sigstore/sigstore to v1.9.4 by @renovate[bot] in containers/image#2842

chore(deps): update dependency golangci/golangci-lint to v2.1.6 by @renovate[bot] in containers/image#2846

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0 by @renovate[bot] in containers/image#2845

fix(deps): update module golang.org/x/oauth2 to v0.30.0 by @renovate[bot] in containers/image#2847

fix(deps): update module golang.org/x/sync to v0.14.0 by @renovate[bot] in containers/image#2848

fix(deps): update module golang.org/x/term to v0.32.0 by @renovate[bot] in containers/image#2850

fix(deps): update module golang.org/x/crypto to v0.38.0 by @renovate[bot] in containers/image#2849

fix(deps): update module dario.cat/mergo to v1.0.2 by @renovate[bot] in containers/image#2851

vendor: update c/storage by @giuseppe in containers/image#2844

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1 by @renovate[bot] in containers/image#2853

Update old indirect dependencies by @mtrmac in containers/image#2787

Stop setting the btrfs_noversion build tag by @mtrmac in containers/image#2831

fix(deps): update module github.com/santhosh-tekuri/jsonschema/v6 to v6.0.2 by @renovate[bot] in containers/image#2855

fix(deps): update module github.com/docker/docker to v28.2.1+incompatible by @renovate[bot] in containers/image#2859

fix(deps): update module github.com/docker/cli to v28.2.1+incompatible by @renovate[bot] in containers/image#2858

fix(deps): update module github.com/docker/docker to v28.2.2+incompatible by @renovate[bot] in containers/image#2862

fix(deps): update module github.com/docker/cli to v28.2.2+incompatible by @renovate[bot] in containers/image#2861

INCOMPATIBLE: Remove the implementation of the ostree transport by @mtrmac in containers/image#2821

Only upload sigstore signatures to the sigstore tag schema by @mtrmac in containers/image#2717

Update old dependencies by @mtrmac in containers/image#2863

fix(deps): update github.com/containers/storage digest to 78f4258 by @renovate[bot] in containers/image#2864

Queue a partially-pulled layer for commit immediately after staging it by @mtrmac in containers/image#2799

fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2 by @renovate[bot] in containers/image#2865

fix(deps): update module golang.org/x/sync to v0.15.0 by @renovate[bot] in containers/image#2866

... (truncated)

Commits

d464a25 Bump to v5.36.2
50a6b67 Merge pull request #2943 from TomSweeneyRedHat/dev/tsweeney/backport_2938
d3eb538 [release-5.36] rekor: do not cancel http context
6ed8326 Merge pull request #2920 from TomSweeneyRedHat/dev/tsweeney/v5.36.1
f6ca2da [release-5.36] Bump to c/image v5.36.1
d18da19 [release-5.36] Bump c/storage to v1.59.1
ae0c9f3 Merge pull request #2913 from TomSweeneyRedHat/dev/tsweeney/cherrypick2907
40d1027 [release-5.36] Update the CI image, to match Skopeo's updated test code
08ce6b4 Bump to c/image v5.36.0
b5e2b66 Bump to c/storage v1.59.0
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.29.3 to 5.36.2. - [Release notes](https://github.com/containers/image/releases) - [Commits](containers/image@v5.29.3...v5.36.2) --- updated-dependencies: - dependency-name: github.com/containers/image/v5 dependency-version: 5.36.2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the kind/dependabot Automatically suggested upgrades label Sep 8, 2025

dependabot bot mentioned this pull request Sep 8, 2025

Bump github.com/containers/image/v5 from 5.29.3 to 5.36.1 #758

Closed

dependabot bot force-pushed the dependabot/go_modules/github.com/containers/image/v5-5.36.2 branch 2 times, most recently from 1f3178b to ef799f5 Compare September 9, 2025 06:36

dependabot bot force-pushed the dependabot/go_modules/github.com/containers/image/v5-5.36.2 branch from ef799f5 to d319170 Compare September 15, 2025 09:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump github.com/containers/image/v5 from 5.29.3 to 5.36.2 #773

Bump github.com/containers/image/v5 from 5.29.3 to 5.36.2 #773

Uh oh!

dependabot bot commented on behalf of github Sep 8, 2025 •

edited

Loading

Uh oh!

Uh oh!

Bump github.com/containers/image/v5 from 5.29.3 to 5.36.2 #773

Are you sure you want to change the base?

Bump github.com/containers/image/v5 from 5.29.3 to 5.36.2 #773

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 8, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v5.36.2

What's Changed

v5.36.1

What's Changed

v5.36.0

What's Changed

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Sep 8, 2025 •

edited

Loading