chore: bump https://github.com/hadolint/hadolint from v2.12.0 to 2.14.0

[dependabot]

Bumps https://github.com/hadolint/hadolint from v2.12.0 to 2.14.0.

Release notes

Sourced from https://github.com/hadolint/hadolint's releases.

v2.14.0

What's Changed

• Enhance INTEGRATION.md with a toc and ordering by @​jammsen in hadolint/hadolint#1118
• DL3041, DL3033: Handle RPM package epoch by @​m-ildefons in hadolint/hadolint#1121
• DL3009: Allow either cache or tmpfs mounts by @​m-ildefons in hadolint/hadolint#1123
• added new rule DL3062 to check go install by @​Danil42Russia in hadolint/hadolint#1111
• DL3041, DL3033: Handle RPM package with plus sign by @​samcranford in hadolint/hadolint#1125
• relax dependencies by @​m-ildefons in hadolint/hadolint#1128
• fixup release workflow by @​m-ildefons in hadolint/hadolint#1129

New Contributors

• @​jammsen made their first contribution in hadolint/hadolint#1118
• @​Danil42Russia made their first contribution in hadolint/hadolint#1111
• @​samcranford made their first contribution in hadolint/hadolint#1125

Full Changelog: hadolint/hadolint@v2.13.1...v2.14.0

v2.13.1

What's Changed

• build(deps): bump actions/cache from 3.0.4 to 3.0.11 by @​dependabot[bot] in hadolint/hadolint#888
• build(deps): bump cachix/install-nix-action from 17 to 18 by @​dependabot[bot] in hadolint/hadolint#890
• build(deps): bump cachix/cachix-action from 10 to 12 by @​dependabot[bot] in hadolint/hadolint#894
• docs: use cabal instead of stack in readme by @​m-ildefons in hadolint/hadolint#903
• DL3011: fixup changes in AST by @​m-ildefons in hadolint/hadolint#902
• fix: false positive in DL3022 by @​swarnimarun in hadolint/hadolint#900
• Correct documentation example for failure-threshold by @​ericcornelissen in hadolint/hadolint#901
• update hadolint's config json schema to support latest properties by @​omissis in hadolint/hadolint#910
• Update INTEGRATION.md steps for pre-commit by @​tangyfruits in hadolint/hadolint#908
• chore: fix typos in rule descriptions by @​AndreyBozhko in hadolint/hadolint#912
• Add LABEL org.opencontainers.image.source="https://github.com/hadolin… by @​marwin1991 in hadolint/hadolint#927
• DL3014: Fix false positive on double quiet by @​m-ildefons in hadolint/hadolint#913
• Update README.md by @​ding-ma in hadolint/hadolint#918
• Spelling by @​jsoref in hadolint/hadolint#936
• fix: misidentification of pipenv (#366) by @​kthy in hadolint/hadolint#940
• build(deps): bump cachix/install-nix-action from 18 to 20 by @​dependabot[bot] in hadolint/hadolint#944
• build(deps): bump actions/cache from 3.0.11 to 3.3.1 by @​dependabot[bot] in hadolint/hadolint#946
• build(deps): bump docker/build-push-action from 3 to 4 by @​dependabot[bot] in hadolint/hadolint#931
• build(deps): bump svenstaro/upx-action from 2.0.1 to 2.2.0 by @​dependabot[bot] in hadolint/hadolint#922
• delete rule DL3005 by @​deronnax in hadolint/hadolint#964
• docs: Add new section for Ignoring Rules in README by @​tanmay-pnaik in hadolint/hadolint#1008
• docs: Add Table of Contents for README by @​tanmay-pnaik in hadolint/hadolint#1007
• DL3060 should be suppressed if cache mounts are used by @​slimslenderslacks in hadolint/hadolint#1003
• Improve parsing of gem install flag patterns to reduce false positives by @​mkusaka in hadolint/hadolint#954
• fix: fp in DL3006 by @​swarnimarun in hadolint/hadolint#942
• docs: Update TOC with Ignoring Rules section by @​tanmay-pnaik in hadolint/hadolint#1013
• build(deps): bump svenstaro/upx-action from 2.2.0 to 2.3.0 by @​dependabot[bot] in hadolint/hadolint#959
• Pragma: Allow comments following inline by @​m-ildefons in hadolint/hadolint#1059
• build(deps): bump actions/cache from 3.3.1 to 4.2.0 by @​dependabot[bot] in hadolint/hadolint#1063
• Ignore unsatisfiable shellcheck error 1091 by @​ghoneycutt in hadolint/hadolint#1020
• build(deps): bump cachix/install-nix-action from 26 to 30 by @​dependabot[bot] in hadolint/hadolint#1045

... (truncated)

Commits

• 57e1618 Release v2.14.0
• ff31571 Merge pull request #1129 from m-ildefons/gh-1126
• 15b69f8 fixup release workflow
• 5f15320 Merge pull request #1128 from m-ildefons/gh-1127
• 9fcf018 fix warning about type variable
• b30661d relax dependencies
• aa6bb0c Merge pull request #1125 from samcranford/fix/package_with_plus_sign
• b2420c4 DL3041, DL3033: Handle RPM package with plus sign
• 92374f5 Merge pull request #1111 from Danil42Russia/danil42russia/go_install_rules
• 9c9d3f8 Merge pull request #1123 from m-ildefons/gh-1095
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[greptile-apps]

PR author is in the excluded authors list.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Scanned Files

None

[Aureliolo]

Changelog reviewed (v2.13.1 + v2.14.0) — bugfixes for DL3022, DL3006, DL3060 (all relevant to our Dockerfiles), new DL3062 rule (go install, not relevant to us), RPM improvements (not relevant). No breaking changes. Safe to merge.