gomod(deps): Bump the go-deps group across 1 directory with 18 updates

[dependabot]

Bumps the go-deps group with 14 updates in the / directory:

Package	From	To
github.com/compose-spec/compose-go/v2	2.9.1	2.10.0
github.com/docker/cli	29.0.1+incompatible	29.1.2+incompatible
github.com/getsentry/sentry-go	0.38.0	0.40.0
github.com/google/go-containerregistry	0.20.6	0.20.7
github.com/moby/buildkit	0.25.1	0.26.2
github.com/onsi/ginkgo/v2	2.27.2	2.27.3
github.com/onsi/gomega	1.38.2	1.38.3
github.com/opencontainers/runc	1.3.3	1.4.0
github.com/spf13/cobra	1.10.1	1.10.2
golang.org/x/mod	0.30.0	0.31.0
golang.org/x/oauth2	0.33.0	0.34.0
golang.org/x/sys	0.38.0	0.39.0
k8s.io/apimachinery	0.34.1	0.34.2
k8s.io/apiserver	0.32.3	0.34.2

Updates github.com/compose-spec/compose-go/v2 from 2.9.1 to 2.10.0

Commits

• 3d3411d Allow importing compose file to override resource definition
• dbfe619 Introduced ability to skip env_file parsing with include
• 2837330 Bump actions/checkout from 5 to 6
• 61f9cea use go.yaml.in/yaml/v4
• dabd353 create_host_path must not be omitted when set to false
• 4405e68 Bump golangci/golangci-lint-action from 8 to 9
• 1b2139e feat(interpolate): Add cast to bool for 'depends_on' required and restart opt...
• ea0b69c introduce no-cache-filter
• f63fde4 fix apply !override while processing extends on services declared in same file
• See full diff in compare view

Updates github.com/docker/cli from 29.0.1+incompatible to 29.1.2+incompatible

Commits

• 890dcca Merge pull request #6688 from vvoland/update-go
• d544885 update to go1.25.5
• c197aa7 Merge pull request #6687 from thaJeztah/use_subtests
• ba683d8 opts/swarmopts: use sub-tests
• 0aedba5 Merge pull request #6669 from vvoland/29-norc
• dd2be02 gha/e2e: Switch to rc and 29 latest
• 360952c Merge pull request #6680 from thaJeztah/bump_modules
• 8fc15ea Merge pull request #6579 from dvdksn/doc-daemon-buildc-example
• 1abfbf2 vendor: github.com/moby/moby/client v0.2.1
• e0d30db docs: update buildgc example config to use new buildkit v0.17 options
• Additional commits viewable in compare view

Updates github.com/getsentry/sentry-go from 0.38.0 to 0.40.0

Release notes

Sourced from github.com/getsentry/sentry-go's releases.

0.40.0

The Sentry SDK team is happy to announce the immediate availability of Sentry Go SDK v0.40.0.

Bug Fixes

• Disable DisableTelemetryBuffer flag and noop Telemetry Buffer, to prevent a panic at runtime (#1149).

0.39.0

The Sentry SDK team is happy to announce the immediate availability of Sentry Go SDK v0.39.0.

Features

• Drop events from the telemetry buffer when rate-limited or transport is full, allowing the buffer queue to empty itself under load (#1138).

Bug Fixes

• Fix scheduler's hasWork() method to check if buffers are ready to flush. The previous implementation was causing CPU spikes (#1143).

Changelog

Sourced from github.com/getsentry/sentry-go's changelog.

0.40.0

The Sentry SDK team is happy to announce the immediate availability of Sentry Go SDK v0.40.0.

Bug Fixes

• Disable DisableTelemetryBuffer flag and noop Telemetry Buffer, to prevent a panic at runtime (#1149).

0.39.0

The Sentry SDK team is happy to announce the immediate availability of Sentry Go SDK v0.39.0.

Features

• Drop events from the telemetry buffer when rate-limited or transport is full, allowing the buffer queue to empty itself under load (#1138).

Bug Fixes

• Fix scheduler's hasWork() method to check if buffers are ready to flush. The previous implementation was causing CPU spikes (#1143).

Commits

• f3fc564 release: 0.40.0
• 9232f5d chore: prepare 0.40.0 (#1150)
• 55ee13e feat: disable Telemetry Buffer (#1149)
• 34261f3 Merge branch 'release/0.39.0'
• a362682 release: 0.39.0
• 2153b50 chore: prepare 0.39.0 (#1144)
• 112f257 fix: scheduler should check for ready to flush buffers (#1143)
• 03de096 feat: drop rate-limited events (#1138)
• a2066ef Merge branch 'release/0.38.0'
• See full diff in compare view

Updates github.com/google/go-containerregistry from 0.20.6 to 0.20.7

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.7

What's Changed

• Fix ArgsEscaped lint directive by @​Subserial in google/go-containerregistry#2137
• transport: Fix broken links to distribution docs by @​guzalv in google/go-containerregistry#2136
• fix(remote): using customized retry predicate func if provided by @​derekhjray in google/go-containerregistry#2135
• Adding docker file by @​HassanJasim in google/go-containerregistry#2138
• crane: Add timestamp to flatten layer by @​Stephanie0829 in google/go-containerregistry#2117
• feat(remote): pass retryBackoff option to transport by @​aslafy-z in google/go-containerregistry#1628
• Expose clobber refusal error by @​pjbgf in google/go-containerregistry#2146
• Build artifacts for riscv64 by @​ffgan in google/go-containerregistry#2159
• Update dependencies and deprecate DockerVersion field by @​Subserial in google/go-containerregistry#2164

New Contributors

• @​guzalv made their first contribution in google/go-containerregistry#2136
• @​derekhjray made their first contribution in google/go-containerregistry#2135
• @​HassanJasim made their first contribution in google/go-containerregistry#2138
• @​Stephanie0829 made their first contribution in google/go-containerregistry#2117
• @​pjbgf made their first contribution in google/go-containerregistry#2146
• @​ffgan made their first contribution in google/go-containerregistry#2159

Full Changelog: google/go-containerregistry@v0.20.6...v0.20.7

Commits

• e075f20 go mod tidy on dependabot update (#2171)
• 45aacf4 Bump the actions group across 1 directory with 3 updates (#2170)
• 073b936 Update dependencies and deprecate DockerVersion field (#2164)
• 390dacd Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (#2163)
• ca44d47 Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (#2162)
• 999cc1f Bump github.com/docker/docker (#2161)
• d1809c8 Build artifacts for riscv64 (#2159)
• 7471efd Bump the auxiliary-deps group across 3 directories with 4 updates (#2156)
• 2bb5bb0 Bump the actions group with 5 updates (#2155)
• 16371c1 Remove manual vendor setting for dependabot (#2151)
• Additional commits viewable in compare view

Updates github.com/moby/buildkit from 0.25.1 to 0.26.2

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.26.2

Welcome to the v0.26.2 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• CrazyMax
• Tõnis Tiigi

Notable Changes

• Fix possible error when uploading big files to S3 cache exporter #6373

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.26.1

v0.26.1

Welcome to the v0.26.1 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• Tõnis Tiigi

Notable Changes

• Fix excessive chunking when fetching blobs #6366

Dependency Changes

This release has no dependency changes

Previous release can be found at v0.26.0

v0.26.0

buildkit 0.26.0

Welcome to the v0.26.0 release of buildkit!

... (truncated)

Commits

• be1f38e Merge pull request #6374 from crazy-max/0.26_picks_0.26.2
• 8a34dcd cache(s3): request checksum calculation when required
• 29fc55f Merge pull request #6367 from tonistiigi/v0.26-picks
• 247e13c contentutil: avoid defaulting to ReadAt for fetch
• a8e548f Merge pull request #4673 from bpascard/master
• cc2d332 Merge pull request #6351 from thaJeztah/bump_tarsplit
• 640f8bb Merge pull request #6349 from tonistiigi/dockerd-test-fixes
• c3fd6a3 vendor: github.com/vbatts/tar-split v0.12.2
• 2224254 test: test updates for dockerd
• a2a940e Merge pull request #6345 from tonistiigi/cap-session-policy
• Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.27.2 to 2.27.3

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.27.3

2.27.3

Fixes

report exit result in case of failure [1c9f356] fix data race [ece19c8]

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.27.3

Fixes

report exit result in case of failure [1c9f356] fix data race [ece19c8]

Commits

• f331739 v2.27.3
• 1c9f356 ginkgo: report exit result in case of failure
• ece19c8 ginkgo: fix data race
• See full diff in compare view

Updates github.com/onsi/gomega from 1.38.2 to 1.38.3

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.38.3

1.38.3

Fixes

make string formatitng more consistent for users who use format.Object directly

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.38.3

Fixes

make string formatitng more consistent for users who use format.Object directly

Commits

• a3ca2ca v1.38.3
• 4dada36 fix failing have http tests
• d40c691 make string formatitng more consistent for users who use format.Object directly
• 2a37b46 doc: fix typos
• ee26170 docs: fix HaveValue example
• cc85c05 Bump actions/setup-go from 5 to 6 (#866)
• 8905788 Bump github.com/onsi/ginkgo/v2 from 2.25.1 to 2.25.3 (#865)
• 67552c5 chore: apply fixes from Go modernize command
• See full diff in compare view

Updates github.com/opencontainers/runc from 1.3.3 to 1.4.0

Release notes

Sourced from github.com/opencontainers/runc's releases.

runc v1.4.0 -- "路漫漫其修远兮，吾将上下而求索！"

This is the first release of the 1.4.z release branch of runc. It contains a few fixes for issues found in 1.4.0-rc.3. This version of runc supports runtime-spec v1.3 (see [docs/spec-conformance.md][] for the few features that are still missing).

This is the second release of runc following our new release and support policy (see [RELEASES.md][] for more details). This means that, as of this release:

• The runc 1.2.z release branch will now only receive high severity CVE fixes, and will no longer be supported in less than 6 months (end of April 2026).
• The runc 1.3.z release branch will now only receive security and "significant" bugfixes.
• Users are encouraged to plan migrating to runc 1.4.0 as soon as possible.
• Despite this release being delayed by a month, users should still expect a runc 1.5.0 release in late April 2026.

Deprecated

• Deprecate cgroup v1. (#4956)
• Deprecate CleanPath, StripRoot, WithProcfd, and WithProcfdFile from libcontainer/utils. (#4985)

Breaking

• The handling of pids.limit has been updated to match the newer guidance from the OCI runtime specification. In particular, now a maximum limit value of 0 will be treated as an actual limit (due to limitations with systemd, it will be treated the same as a limit value of 1). We only expect users that explicitly set pids.limit to 0 will see a behaviour change. opencontainers/cgroups#48#4949)

Fixed

• opencontainers/cgroups#43
• cgroups: retry DBus connection when it fails with EAGAIN. opencontainers/cgroups#45
• cgroups: improve cpuacct.usage_all resilience when parsing data from opencontainers/cgroups#46 opencontainers/cgroups#50)
• libct: close child fds on prepareCgroupFD error. (#4936)
• libct: fix mips compilation. (#4962, #4967)
• When configuring a tmpfs mount, only set the mode= argument if the target path already existed. This fixes a regression introduced in our [CVE-2025-52881][] mitigation patches. (#4971, #4976)
• Fix various file descriptor leaks and add additional tests to detect them as comprehensively as possible. (#5007, #5021, #5034)
• The "hallucination" helpers added as part of the [CVE-2025-52881][] mitigation have been made more generic and now apply to all of our pathrs helper functions, which should ensure we will not regress dangling symlink

... (truncated)

Changelog

Sourced from github.com/opencontainers/runc's changelog.

[1.4.0] - 2025-11-27

路漫漫其修远兮，吾将上下而求索！

Deprecated

• Deprecate cgroup v1. (#4956)
• Deprecate CleanPath, StripRoot, WithProcfd, and WithProcfdFile from libcontainer/utils. (#4985)

Breaking

• The handling of pids.limit has been updated to match the newer guidance from the OCI runtime specification. In particular, now a maximum limit value of 0 will be treated as an actual limit (due to limitations with systemd, it will be treated the same as a limit value of 1). We only expect users that explicitly set pids.limit to 0 will see a behaviour change. opencontainers/cgroups#48#4949)

Fixed

• opencontainers/cgroups#43
• cgroups: retry DBus connection when it fails with EAGAIN. opencontainers/cgroups#45
• cgroups: improve cpuacct.usage_all resilience when parsing data from opencontainers/cgroups#46 opencontainers/cgroups#50)
• libct: close child fds on prepareCgroupFD error. (#4936)
• libct: fix mips compilation. (#4962, #4967)
• When configuring a tmpfs mount, only set the mode= argument if the target path already existed. This fixes a regression introduced in our CVE-2025-52881 mitigation patches. (#4971, #4976)
• Fix various file descriptor leaks and add additional tests to detect them as comprehensively as possible. (#5007, #5021, #5034)
• The "hallucination" helpers added as part of the CVE-2025-52881 mitigation have been made more generic and now apply to all of our pathrs helper functions, which should ensure we will not regress dangling symlink users. (#4985)

Changed

• libct: switch to (*CPUSet).Fill. (#4927)
• docs/spec-conformance.md: update for spec v1.3.0. (#4948)

[1.3.4] - 2025-11-27

Take me to your heart, take me to your soul.

Fixed

• libct: fix mips compilation. (#4962, #4966)
• When configuring a tmpfs mount, only set the mode= argument if the target path already existed. This fixes a regression introduced in our

... (truncated)

Commits

• 8bd78a9 VERSION: release 1.4.0
• 7d84a12 Merge pull request #5005 from cyphar/1.4-hallucinated-paths
• c362d6b Merge pull request #5040 from cyphar/1.4-better-init-errors-4928
• f1d0dd8 runc create/run/exec: show fatal errors from init
• 4615662 libct/nsenter: better read/write errors
• c4a61c0 libct/nsenter: sprinkle missing sane_kill
• 493f1b1 libct/nsenter: add and use bailx
• 7f9fc53 libct/nsenter: save errno in sane_kill
• e18c06b Merge pull request #5041 from lifubang/backport-5014-fd-leaks-flake-1.4
• 5bb8987 libct/int: TestFdLeaks: deflake
• Additional commits viewable in compare view

Updates github.com/opencontainers/runtime-spec from 1.2.1 to 1.3.0

Release notes

Sourced from github.com/opencontainers/runtime-spec's releases.

v1.3.0

This is the fourth minor release of the v1 series of the Open Container Initiative Runtime Specification. This release features the addition of the specification for FreeBSD.

Additions

• config-vm: add hwConfig object (#1209)
• config-linux: add intelRdt.schemata field (#1230)
• config-linux: add netDevices object (#1271)
• config-linux: add memoryPolicy object (#1282)
• config-freebsd: add the spec for FreeBSD (#1286)
• config-linux: add intelRdt.enableMonitoring field (#1287)

Minor fixes

• config-linux: clarify intelRdt configuration (#1196)
• runtime: fail when a poststart hook fails (#1262)
• config-linux: clarify pids cgroup settings (#1279)
• config-linux: define default clos for intelRdt (#1289)
• features-linux: add intelRdt.enableMonitoring field (#1290)
• features-linux: add intelRdt.schemata field (#1291)
• config-linux: fix and elaborate memoryPolicy.nodes field (#1294)
• config-linux, schema: fix FileMode description (#1298)

Documentation, CI & Governance

• add systemd-nspawn to implementations.md (#1272)
• CI: add codespell, bump golangci-lint (#1281)
• docs: add missing backticks for code formatting (#1284)
• docs: fix typo (#1285)
• principles: fix typo (#1288)
• schema: fix json (#1297)
• ci: use supported Go versions (#1300)
• Add minimum supported Go version to CI (#1303)
• Mention FreeBSD platform (#1304)

Thanks to the following contributors for making this release possible: @​Artoria2e5 @​Sharmaann @​aojea @​ariel-anieli @​askervin @​cyphar @​dfr @​gogolok @​ipuustin @​kolyshkin @​marquiz @​oleksiimoisieiev @​tianon

Vote-Results: +9 -0 *2 (#1302) Signed-off-by: Akihiro Suda (@​AkihiroSuda)

Changelog

Sourced from github.com/opencontainers/runtime-spec's changelog.

OpenContainers Specifications

Changes with v1.3.0:

Additions:

• config-vm: add hwConfig object (#1209)
• config-linux: add intelRdt.schemata field (#1230)
• config-linux: add netDevices object (#1271)
• config-linux: add memoryPolicy object (#1282)
• config-freebsd: add the spec for FreeBSD (#1286)
• config-linux: add intelRdt.enableMonitoring field (#1287)

Minor fixes:

• config-linux: clarify intelRdt configuration (#1196)
• runtime: fail when a poststart hook fails (#1262)
• config-linux: clarify pids cgroup settings (#1279)
• config-linux: define default clos for intelRdt (#1289)
• features-linux: add intelRdt.enableMonitoring field (#1290)
• features-linux: add intelRdt.schemata field (#1291)
• config-linux: fix and elaborate memoryPolicy.nodes field (#1294)
• config-linux, schema: fix FileMode description (#1298)

Documentation, CI & Governance:

• add systemd-nspawn to implementations.md (#1272)
• CI: add codespell, bump golangci-lint (#1281)
• docs: add missing backticks for code formatting (#1284)
• docs: fix typo (#1285)
• principles: fix typo (#1288)
• schema: fix json (#1297)
• ci: use supported Go versions (#1300)
• Add minimum supported Go version to CI (#1303)
• Mention FreeBSD platform (#1304)

Changes with v1.2.1:

Additions:

• zos updates (#1273)
• Add support for windows CPU affinity (#1258)
• specs-go: sync SCMP_ARCH_* constants with libseccomp main (#1229)
• Add CPU affinity to executed processes (#1253, #1261)
• config-linux: describe the format of cpus and mems (#1253)

Minor fixes:

• Fix description of errnoRet in Seccomp (#1277)
• config-linux: update for libseccomp v2.6.0 (#1276)

... (truncated)

Commits

• 9224913 version: release v1.3.0
• 6acd32d Merge pull request #1304 from gogolok/add_freebsd_spec_links
• 4df3d11 Mention FreeBSD platform
• dbf183c Merge pull request #1286 from dfr/freebsd-spec
• a257beb Add minimum supported Go version to CI (#1303)
• afdbcb8 Add FreeBSD as a platform
• 5caf304 merge #1300 into opencontainers/runtime-spec:main
• 75d79ee ci: use oldstable and stable Go versions
• 5610abd Merge pull request #1298 from kolyshkin/fix-file-mode
• 3b11014 Merge pull request #1281 from kolyshkin/codespell
• Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.10.1 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

• chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

• Fix linter and allow CI to pass by @​marckhouzam in spf13/cobra#2327
• fix: actions/setup-go v6 by @​jpmcb in spf13/cobra#2337

🔥✍🏼 Docs

• Add documentation for repeated flags functionality by @​rvergis in spf13/cobra#2316

🍂 Refactors

• refactor: replace several vars with consts by @​htoyoda18 in spf13/cobra#2328
• refactor: change minUsagePadding from var to const by @​ssam18 in spf13/cobra#2325

🤗 New Contributors

• @​rvergis made their first contribution in spf13/cobra#2316
• @​htoyoda18 made their first contribution in spf13/cobra#2328
• @​ssam18 made their first contribution in spf13/cobra#2325
• @​dims made their first contribution in spf13/cobra#2336

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

Commits

• 88b30ab chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (#2336)
• 346d408 fix: actions/setup-go v6 (#2337)
• fc81d20 refactor: change minUsagePadding from var to const (#2325)
• 117698a refactor: replace several vars with consts (#2328)
• e2dd29d Add documentation for repeated flags functionality (#2316)
• 0629892 Fix linter (#2327)
• See full diff in compare view

Updates golang.org/x/mod from 0.30.0 to 0.31.0

Commits

• d271cf3 go.mod: update golang.org/x dependencies
• 269c237 sumdb/note: delete chop
• 3f03020 x/mod: apply go fix and go vet
• See full diff in compare view

Updates golang.org/x/oauth2 from 0.33.0 to 0.34.0

Commits

• acc3815 endpoints: fix %q verb use with wrong type
• See full diff in compare view

Updates golang.org/x/sync from 0.17.0 to 0.18.0

Commits

• 1966f53 errgroup: fix some typos in comment
• See full diff in compare view

Updates golang.org/x/sys from 0.38.0 to 0.39.0

Commits

• 08e5482 unix: fix out of bounds memory access in tests
• 4f4f1c6 Revert "cpu: add HPDS, LOR, PAN detection for arm64"
• ca63116 unix: add IOCTL_MEI_* constants
• a4199c0 unix: fix definition of Statvfs_t for netbsd-arm.
• See full diff in compare view

Updates golang.org/x/term from 0.36.0 to 0.37.0

Commits

• 1231d54 go.mod: update golang.org/x dependencies
• 3475bc8 term: fix some comments
• See full diff in compare view

Updates k8s.io/api from 0.33.4 to 0.34.1

Commits

• 77c9e29 Update dependencies to v0.34.1 tag
• 133a39c Merge remote-tracking branch 'origin/master' into release-1.34
• fd087be clarify that staging repos are automatically published
• ff163ef add pointer to CONTRIBUTING.md for more details on contributing, clarify read...
• 5ec86fc link to what a staging repository is
• 08c5dee docs: clarify that this is a staging repository and not for direct contributions
• ba64d0b Update prerelease lifecycle to v1.34
• 25f849c Merge pull request #132522 from sunya-ch/KEP-5075-PR
• baa1eb1 KEP-5075: generated codes from make update
• 740b2c9 KEP-5075: API updates
• Additional commits viewable in compare view

Updates k8s.io/apimachinery from 0.34.1 to 0.34.2

Commits

• See full diff in compare view

Updates k8s.io/apiserver from 0.32.3 to 0.34.2

Commits

• 92c4c2c Update dependencies to v0.34.2 tag
• d24fa2b Merge pull request #134500vikasbolla/automated-cherry-pick-of-#133310
• 67ad9b5 authz tests: delay response in context cancelled scenario
• 3cd3d02 Merge pull request #133879serathius/automated-cherry-pick-of-#133873
• cb753d5 Disable estimating resource size for resources with watch cache disabled
• 72857c3 Merge pull request #133866serathius/automated-cherry-pick-of-#133817
• 5e12dff Disable collecting stats for resources not setting prefix to prevent error logs
• e6849cd Merge remote-tracking branch 'origin/master' into release-1.34
• ec0177d Fix storage counting all objects instead just objects for resource
• 04f597a Merge remote-tracking branch 'origin/master' into release-1.34
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[jedevc]

Can't bump runtime-spec/runc because of containerd/containerd#12493.

Can't bump k8s.io/apiserver easily because of https://github.com/api-zip/api-zip? Not sure about the context of this.

[craciunoiuc]

All good here. Thanks!

Reviewed-by: Cezar Craciunoiu [email protected]
Approved-by: Cezar Craciunoiu [email protected]