Comparing changes
Open a pull request
- 15 commits
- 37 files changed
- 5 contributors
Commits on Nov 21, 2025
-
build(deps): bump actions/checkout from 5 to 6
Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Commits on Nov 27, 2025
-
Merge pull request #6671 from docker/dependabot/github_actions/action…
…s/checkout-6 build(deps): bump actions/checkout from 5 to 6
-
vendor: golang.org/x/sys v0.38.0
- cpu: add HPDS, LOR, PAN detection for arm64 - cpu: also use MRS instruction in getmmfr1 - cpu: use MRS instruction to read arm64 system registers - unix: add consts for ELF handling - unix: add SetMemPolicy and its mode/flag values - unix: add SizeofNhmsg and SizeofNexthopGrp - windows: add iphlpapi routing functions full diff: golang/sys@v0.37.0...v0.38.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
vendor: golang.org/x/sync v0.18.0
full diff: golang/sync@v0.17.0...v0.18.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
vendor: golang.org/x/text v0.31.0
full diff: golang/text@v0.30.0...v0.31.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
vendor: golang.org/x/term v0.37.0
full diff: golang/term@v0.36.0...v0.37.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
vendor: golang.org/x/net v0.47.0
full diff: golang/net@v0.46.0...v0.47.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
cmd/docker-trust: update dependencies
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
cmd/docker-trust: bump golang.org/x/crypto v0.45.0
Hello gophers, We have tagged version v0.45.0 of golang.org/x/crypto in order to address two security issues. This version fixes a vulnerability in the golang.org/x/crypto/ssh package and a vulnerability in the golang.org/x/crypto/ssh/agent package which could cause programs to consume unbounded memory or panic respectively. SSH servers parsing GSSAPI authentication requests don't validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption. Thanks to Jakub Ciolek for reporting this issue. This is CVE-2025-58181 and Go issue https://go.dev/issue/76363. SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. Thanks to Jakub Ciolek for reporting this issue. This is CVE-2025-47914 and Go issue https://go.dev/issue/76364. Cheers, Go Security team Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
Merge pull request #6681 from thaJeztah/bump_x_deps2
vendor: update various golang.org/x/xxx dependencies
-
Merge pull request #6682 from thaJeztah/bump_dct_deps
cmd/docker-trust: update dependencies
-
docs: update buildgc example config to use new buildkit v0.17 options
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
-
vendor: github.com/moby/moby/client v0.2.1
full diff: moby/moby@client/v0.1.0...v0.2.1 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
-
Merge pull request #6579 from dvdksn/doc-daemon-buildc-example
docs: update buildgc example config to use new buildkit v0.17 options
-
Merge pull request #6680 from thaJeztah/bump_modules
vendor: github.com/moby/moby/client v0.2.1
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff v29.0.4...v29.1.0