• e6534b4 Merge pull request #6116 from vvoland/vendor-docker
• 5c3128e vendor: github.com/docker/docker v28.2.2-dev (45873be4ae3f)
• 879ac3f Merge pull request #6110 from thaJeztah/bump_engine
• 92fa1e1 vendor: github.com/docker/docker 0e2cc22d36ae (v28.2-dev)
• 4bec3a6 Merge pull request #6114 from thaJeztah/deprecate_non_compliant_registries
• a007d1a Merge pull request #6113 from thaJeztah/config_suppress_err
• bbfbd54 docs: deprecated: fallback for non-OCI-compliant registries is removed
• 2d21e1f cli/config/configfile: explicitly ignore error
• bc9be0b Merge pull request #6112 from thaJeztah/bump_tools
• 3fe7dc5 Dockerfile: update compose to v2.36.2
• Additional commits viewable in compare view

Sourced from github.com/docker/docker's releases.

28.2.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.2.2 milestone
• moby/moby, 28.2.2 milestone

Bug fixes and enhancements

• containerd image store: Fix a regression causing docker build --push to fail. This reverts the fix for docker build not persisting overridden images as dangling. moby/moby#50105

Networking

• When creating the iptables DOCKER-USER chain, do not add an explicit RETURN rule, allowing users to append as well as insert their own rules. Existing rules are not removed on upgrade, but it won't be replaced after a reboot. moby/moby#50098

28.2.1

Packaging updates

• Fix packaging regression in v28.2.0 which broke creating the docker group/user on fresh installations. docker-ce-packaging#1209

28.2.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.2.0 milestone
• moby/moby, 28.2.0 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

[!NOTE] RHEL packages are currently not available and will be released later.

New

• Add {{.Platform}} as formatting option for docker ps to show the platform of the image the container is running. docker/cli#6042
• Add support for relative parent paths (../) on bind mount sources when using docker run/create with -v/--volume or --mount type=bind options. docker/cli#4966
• CDI is now enabled by default. moby/moby#49963
• Show discovered CDI devices in docker info. docker/cli#6078
• docker image rm: add --platform option to remove a variant from multi-platform images. docker/cli#6109
• containerd image store: Initial BuildKit support for building Windows container images on Windows (requires an opt-in with DOCKER_BUILDKIT=1). moby/moby#49740

Bug fixes and enhancements

• Add a new log option for fluentd log driver (fluentd-write-timeout), which enables specifying write timeouts for fluentd connections. moby/moby#49911
• Add support for DOCKER_AUTH_CONFIG for the experimental --use-api-socket option. docker/cli#6019
• Fix docker exec waiting for 10 seconds if a non-existing user or group was specified. moby/moby#49868
• Fix docker swarm init ignoring cacert option of --external-ca. docker/cli#5995
• Fix an issue where the CLI would not correctly save the configuration file (~/.docker/config.json) if it was a relative symbolic link. docker/cli#5282
• Fix containers with --restart always policy using CDI devices failing to start on daemon restart. moby/moby#49990

... (truncated)

• 45873be Merge pull request #50105 from jsternberg/revert-build-dangling
• 7994426 Revert "containerd: images overridden by a build are kept dangling"
• f144264 Merge pull request #50090 from corhere/libn/overlay-netip
• 768cfae Merge pull request #50050 from robmry/nftables_internal_dns
• d3289dd Add nftables NAT rules for internal DNS resolver
• 7a0bf74 Merge pull request #50038 from ctalledo/fix-for-50037
• b43afbf Merge pull request #50098 from robmry/remove_docker-user_return_rule
• c299ba3 Update worker.Platforms() in builder-next worker.
• 0e2cc22 Merge pull request #50049 from robmry/nftables_env_var_enable
• e37efd4 Merge pull request #50068 from mmorel-35/github.com/containerd/errdefs
• Additional commits viewable in compare view

• 2ec7864 go.mod: update golang.org/x dependencies
• a809085 term: support pluggable history
• See full diff in compare view

Sourced from dario.cat/mergo's releases.

v1.0.2

What's Changed

• Drops gopkg.in/yaml.v3, only used for loading fixtures. Thanks @​trim21 for bringing to my attention (#262) that this library is no longer maintained.

Full Changelog: darccio/mergo@v1.0.1...v1.0.2

• 7b33b2b refactor: migrate from YAML to JSON for test data and update related functions
• 229a214 chore(.well-known): add funding manifest URLs file
• 6be20c6 chore(SECURITY.md): update supported versions to reflect current versioning
• 9007623 chore(README) : remove kubernetes from the list of users
• 2b1eb9c Update FUNDING.yml
• 2ceb994 Create FUNDING.json
• See full diff in compare view

• aae6e61 go.mod: update golang.org/x dependencies
• 9c1aa6a ssh/test: reset the random source before capturing a recording
• 8819902 ssh/test: enable Diffie-Hellman key exchange algorithms
• 3f311e4 acme: return error from pre-authorization when unsupported
• 1f7c62c ssh/test: skip unsupported tests on js/wasm
• a5f8048 acme/autocert: use standard functions to pick the cache directory
• 958cde8 Revert "chacha20: add loong64 SIMD implementation"
• 51f005c Revert "salsa20: add loong64 SIMD implementation"
• 7c35866 Revert "argon2: add loong64 SIMD implementation"
• 0091fc8 Revert "blake2s: add loong64 SIMD implementation"
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions