This repository has been archived by the owner on Apr 19, 2024. It is now read-only.
Merge upstream conflicts #11
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Erez Rokah <[email protected]>
Signed-off-by: erezrokah <[email protected]>
Signed-off-by: erezrokah <[email protected]>
Signed-off-by: erezrokah <[email protected]>
Co-authored-by: James Hewitt <[email protected]> Signed-off-by: Erez Rokah <[email protected]>
Signed-off-by: Erez Rokah <[email protected]>
Signed-off-by: Eng Zer Jun <[email protected]>
Signed-off-by: erezrokah <[email protected]>
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.1.0 to 4.3.0. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v4.1.0...v4.3.0) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [peter-evans/dockerhub-description](https://github.com/peter-evans/dockerhub-description) from 3 to 4. - [Release notes](https://github.com/peter-evans/dockerhub-description/releases) - [Commits](peter-evans/dockerhub-description@v3...v4) --- updated-dependencies: - dependency-name: peter-evans/dockerhub-description dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3 to 4. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v3...v4) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
In commit 1795292 we updated ServeBlob() to use an io.MultiWriter to write simultaneously to the local store and the HTTP response. However, copyContent was using a type assertion to only add headers if the io.Writer was a http.ResponseWriter. Therefore, this change caused us to stop sending the expected headers (i.e. Content-Length, Etag, etc.) on the first request for a blob. Resolve the issue by explicitly passing in http.Header and setting it unconditionally. Signed-off-by: Mikel Rychliski <[email protected]>
Fixes #4264 Signed-off-by: James Hewitt <[email protected]>
Signed-off-by: oliver-goetz <[email protected]>
…r registry restart Signed-off-by: Dimitar Kostadinov <[email protected]>
_setup_ is a noun , _set up_ is the verb. Signed-off-by: Chad Faragher <[email protected]>
Signed-off-by: Jaime Martinez <[email protected]>
Signed-off-by: Victor Barbu <[email protected]>
This fixes compatibility with alpine 3.21 and file 5.46+ - Fix additional possible `xx-cc`/`xx-cargo` compatibility issue with Alpine 3.21 - Support for Alpine 3.21 - Fix `xx-verify` with `file` 5.46+ - Fix possible error taking lock in `xx-apk` in latest Alpine without `coreutils` full diff: tonistiigi/xx@v1.2.1...v1.6.1 Signed-off-by: Sebastiaan van Stijn <[email protected]>
Signed-off-by: Kyle Squizzato <[email protected]>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.28.0 to 0.31.0. - [Commits](golang/crypto@v0.28.0...v0.31.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>
3.20 had a minor security vulnerability. Let's bump it. Related: * distribution/distribution-library-image#171 * #4527 Bump Go version * CI * go.mod Signed-off-by: Milos Gajdos <[email protected]>
Signed-off-by: Milos Gajdos <[email protected]>
Signed-off-by: vitshev <[email protected]>
Signed-off-by: vitshev <[email protected]>
Co-authored-by: Milos Gajdos <[email protected]> Signed-off-by: Vitshev <[email protected]>
Signed-off-by: vitshev <[email protected]>
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.6 to 4.5.0. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v4.3.6...v4.5.0) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Seems like we havent done AUTHORS update in a while: this commit rectififes that. Signed-off-by: Milos Gajdos <[email protected]>
Fixes: https://nvd.nist.gov/vuln/detail/CVE-2024-45338 Signed-off-by: Milos Gajdos <[email protected]>
We're trying to upload conformance test results from a hidden directory: Version 4.4.0 introduced a breaking change: https://github.com/actions/upload-artifact/releases/tag/v4.4.0 We can either set include-hidden-files: true or ename the directory to e.g., out/ without a leading dot which is what we do in this PR Signed-off-by: Milos Gajdos <[email protected]>
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.5.0 to 4.6.0. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v4.5.0...v4.6.0) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: CrazyMax <[email protected]>
Signed-off-by: CrazyMax <[email protected]>
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.