build(deps): bump the dependencies group with 5 updates

[dependabot]

Bumps the dependencies group with 5 updates:

Package	From	To
github.com/docker/cli	28.0.4+incompatible	28.1.1+incompatible
github.com/docker/docker	28.0.4+incompatible	28.1.1+incompatible
github.com/go-git/go-git/v5	5.14.0	5.16.0
golang.org/x/term	0.30.0	0.31.0
golang.org/x/crypto	0.36.0	0.37.0

Updates github.com/docker/cli from 28.0.4+incompatible to 28.1.1+incompatible

Commits

• 4eba377 Merge pull request #6025 from thaJeztah/bump_compose
• 9cd3557 Dockerfile: update compose to v2.35.1
• cf87480 Merge pull request #6020 from thaJeztah/bump_engine_28.1
• adb0d29 vendor: github.com/docker/docker v28.1.0
• 4d8c241 Merge pull request #6018 from thaJeztah/use_api_socket_no_empty
• 711fcae cli/command/container: --use-api-socket: don't write empty credentials
• ed694db Merge pull request #5868 from thaJeztah/bump_go_version
• 79ab3cb Merge pull request #6017 from thaJeztah/bump_engine_28.1
• 1d768f8 update go:build tags to go1.23 to align with vendor.mod
• 0e75283 Merge pull request #6016 from thaJeztah/context_completion
• Additional commits viewable in compare view

Updates github.com/docker/docker from 28.0.4+incompatible to 28.1.1+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v28.1.1

28.1.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.1.1 milestone
• moby/moby, 28.1.1 milestone

Bug fixes and enhancements

• Fix dockerd-rootless-setuptool.sh incorrectly reporting missing iptables. moby/moby#49833
• containerd image store: Fix a potential daemon crash when using docker load with archives containing zero-size tar headers. moby/moby#49837

Packaging updates

• Update Buildx to v0.23.0. docker/docker-ce-packaging#1185
• Update Compose to v2.35.1. docker/docker-ce-packaging#1188

Networking

• Add a warning to a container's /etc/resolv.conf when no upstream DNS servers were found. moby/moby#49827

v28.1.0

28.1.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.1.0 milestone
• moby/moby, 28.1.0 milestone
• Changes to the Engine API, see API version history.

New

• Add docker bake sub-command as alias for docker buildx bake. docker/cli#5947
• Experimental: add a new --use-api-socket flag on docker run and docker create to enable access to Docker socket from inside a container and to share credentials from the host with the container. docker/cli#5858
• docker image inspect now supports a --platform flag to inspect a specific platform of a multi-platform image. docker/cli#5934

Bug fixes and enhancements

• Add CLI shell-completion for context names. docker/cli#6016
• Fix docker images --tree not including non-container images content size in the total image content size. docker/cli#6000
• Fix docker load not preserving replaced images. moby/moby#49650
• Fix docker login hints when logging in to a custom registry. docker/cli#6015
• Fix docker stats not working properly on machines with high CPU core count. moby/moby#49734
• Fix a regression causing docker pull/push to fail when interacting with a private repository. docker/cli#5964
• Fix an issue preventing rootless Docker setup on a host with no ip_tables kernel module. moby/moby#49727
• Fix an issue that could lead to unwanted iptables rules being restored and never deleted following a firewalld reload. moby/moby#49728
• Improve CLI completion of docker service scale. docker/cli#5968
• docker images --tree now hides both untagged and dangling images by default. docker/cli#5924
• docker system info will provide an exit code if a connection cannot be established to the Docker daemon. docker/cli#5918

... (truncated)

Commits

• 01f442b Merge pull request #49588 from thaJeztah/bump_go_build_tags
• e03c0f0 Merge pull request #49834 from thaJeztah/cleanup_ignore
• 8dde918 Merge pull request #49837 from thaJeztah/bump_containerd_2.0.5
• e70ce7a Merge pull request #49833 from vvoland/rootless-iptables-check
• fc8361c vendor: github.com/containerd/containerd v2.0.5
• 62f51e4 vendor: golang.org/x/oauth2 v0.29.0
• bbbb003 cleanup ignore files
• ead379a contrib/rootless-setuptool: Fix iptables detection
• 7c52c4d update go:build tags to go1.23 to align with vendor.mod
• 6573a13 Merge pull request #49827 from robmry/warn_no_ext_nameservers
• Additional commits viewable in compare view

Updates github.com/go-git/go-git/v5 from 5.14.0 to 5.16.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.0

What's Changed

• [v5] plumbing: support mTLS for HTTPS protocol by @​hiddeco in go-git/go-git#1510
• v5: plumbing: transport, Reintroduce SetHostKeyCallback. Fix #1514 by @​pjbgf in go-git/go-git#1515

Full Changelog: go-git/go-git@v5.15.0...v5.16.0

v5.15.0

What's Changed

• plumbing: add cert auth support to releases/v5.x by @​Javier-varez in go-git/go-git#1482
• v5: Bump dependencies by @​pjbgf in go-git/go-git#1505

Full Changelog: go-git/go-git@v5.14.0...v5.15.0

Commits

• 6d4a5c6 Merge pull request #1515 from pjbgf/regre
• beedd6b plumbing: transport, Reintroduce SetHostKeyCallback. Fix #1514
• 763ce2e Merge pull request #1510 from hiddeco/mtls-support
• 5320e1b plumbing: surface transport configuration errors
• 9bbc93b plumbing: fix unintended pointer mutation in test
• f3783f4 plumbing: support mTLS for HTTPS protocol
• 6f444d3 Merge pull request #1505 from pjbgf/bump
• 9996069 v5: Bump dependencies
• 768fda7 Merge pull request #1482 from Javier-varez/add-cert-auth-support-v5.x
• ba9d693 plumbing: support setting custom host key algorithms along with host key call...
• Additional commits viewable in compare view

Updates golang.org/x/term from 0.30.0 to 0.31.0

Commits

• 5d2308b go.mod: update golang.org/x dependencies
• e770ddd x/term: disabling auto-completion around GetPassword()
• See full diff in compare view

Updates golang.org/x/crypto from 0.36.0 to 0.37.0

Commits

• 959f8f3 go.mod: update golang.org/x dependencies
• 769bcd6 ssh: use the configured rand in kex init
• d0a798f cryptobyte: fix typo 'octects' into 'octets' for asn1.go
• acbcbef acme: remove unnecessary []byte conversion
• 376eb14 x509roots: support constrained roots
• b369b72 crypto/internal/poly1305: implement function update in assembly on loong64
• 6b853fb ssh/knownhosts: check more than one key
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

see 15 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.