• 38b7060 Merge pull request #6148 from thaJeztah/vendor_rc2
• 2d46d16 vendor: github.com/docker/docker v28.3.0-rc.2
• f03fb6c Merge pull request #6146 from thaJeztah/bump_docker
• 5bb0d7f vendor: github.com/docker/docker 265f70964794 (v28.3.0-rc.2)
• 575d4af vendor: github.com/docker/docker v28.3.0-rc.1
• 4b202b9 Merge pull request #6141 from thaJeztah/login_no_tty
• 80d1959 Merge pull request #6144 from thaJeztah/rm_top_level_remove
• 19a5c5c remove undocumented top-level "docker remove" command
• c882686 prevent login prompt on registry operations with no TTY attached
• 747cb44 Merge pull request #6140 from vvoland/image-tree-used
• Additional commits viewable in compare view

Sourced from github.com/docker/docker's releases.

28.3.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.3.0 milestone
• moby/moby, 28.3.0 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

New

• Add support for AMD GPUs in docker run --gpus. moby/moby#49952
• Use DOCKER_AUTH_CONFIG as a credential store. docker/cli#6008

Bug fixes and enhancements

• Ensure that the state of the container in the daemon database (used by /containers/json API) is up to date when the container is stopped using the /containers/{id}/stop API (before response of API). moby/moby#50136
• Fix docker image inspect inspect omitting empty fields. moby/moby#50135
• Fix docker images --tree not marking images as in-use when the containerd image store is disabled. docker/cli#6140
• Fix docker pull/push hang in non-interactive when authentication is required caused by prompting for login credentials. docker/cli#6141
• Fix a potential resource leak when a node leaves a Swarm. moby/moby#50115
• Fix a regression where a login prompt on docker pull would show Docker Hub-specific hints when logging in on other registries. docker/cli#6135
• Fix an issue where all new tasks in the Swarm could get stuck in the PENDING state forever after scaling up a service with placement preferences. moby/moby#50211
• Remove an undocumented, hidden, top-level docker remove command that was accidentally introduced in Docker 23.0. docker/cli#6144
• Validate registry-mirrors configuration as part of dockerd --validate and improve error messages for invalid mirrors. moby/moby#50240
• dockerd-rootless-setuptool.sh: Fix the script from silently returning with no error message when subuid/subgid system requirements are not satisfied. moby/moby#50059
• containerd image store: Fix docker push not creating a tag on the remote repository. moby/moby#50199
• containerd image store: Improve handling of errors returned by the token server during docker pull/push. moby/moby#50176

Packaging updates

• Allow customizing containerd service name for OpenRC. moby/moby#50156
• Update BuildKit to v0.23.1. moby/moby#50243
• Update Buildx to v0.25.0. docker/docker-ce-packaging#1217
• Update Compose to v2.37.2. docker/docker-ce-packaging#1219
• Update Docker Model CLI plugin to v0.1.30. docker/docker-ce-packaging#1218
• Update Go runtime to 1.24.4. docker/docker-ce-packaging#1213, moby/moby#50153, docker/cli#6124

Networking

• Revert Swarm related changes added in 28.2.x builds, due to a regression reported in moby/moby#50129. moby/moby#50169
  • Revert: Fix an issue where docker network inspect --verbose could sometimes crash the daemon (moby/moby#49937).
  • Revert: Fix an issue where the load-balancer IP address for an overlay network would not be released in certain cases if the Swarm was lacking an ingress network (moby/moby#49948).
  • Revert: Improve the reliability of NetworkDB in busy clusters and lossy networks (moby/moby#49932).
  • Revert: Improvements to the reliability and convergence speed of NetworkDB (moby/moby#49939).
• Fix an issue that could cause container startup to fail, or lead to failed UDP port mappings, when some container ports are mapped to 0.0.0.0 and others are mapped to specific host addresses. moby/moby#50054
• The network inspect response for an overlay network now reports that EnableIPv4 is true. moby/moby#50147
• Windows: Improve daemon startup time in cases where the host has networks of type "Mirrored". moby/moby#50155
• Windows: Make sure docker system prune and docker network prune only remove networks created by Docker. moby/moby#50154

... (truncated)

• 265f709 Merge pull request #50247 from vvoland/50245-28.x
• b2a9318 docs: cut api docs for v1.51
• b3e2e22 Merge pull request #50244 from vvoland/50177-28.x
• c571cd8 Merge pull request #50243 from vvoland/50238-28.x
• 8c713c1 gha: lower timeouts on "build" and "merge" steps
• 539c115 Merge pull request #50240 from thaJeztah/28.x_backport_validate_mirrors
• 8e7ea47 vendor: update buildkit to v0.23.1
• 222baf4 vendor: github.com/moby/buildkit v0.23.0
• 1627e82 Merge pull request #50241 from thaJeztah/28.x_backport_update_cgroups
• 4070ebd Merge pull request #50242 from thaJeztah/28.x_backport_fix_event_ordering
• Additional commits viewable in compare view

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.2

What's Changed

• utils: fix diff so subpaths work for sparse checkouts, fixes 1455 to releases/v5.x by @​kane8n in go-git/go-git#1567

Full Changelog: go-git/go-git@v5.16.1...v5.16.2

v5.16.1

What's Changed

• utils: merkletrie, Fix diff on sparse-checkout index. Fixes #1406 to releases/v5.x by @​kane8n in go-git/go-git#1561

New Contributors

• @​kane8n made their first contribution in go-git/go-git#1561

Full Changelog: go-git/go-git@v5.16.0...v5.16.1

• ed8216c Merge pull request #1567 from kane8n/backport-to-v5-patricsss/fix-1455
• 4f35eba Merge pull request #1484 from patricsss/patricsss/fix-1455
• fd1a836 Merge pull request #1561 from kane8n/backport-to-v5-fix-sparse-checkout-status
• c3c8410 Merge pull request #1492 from onee-only/fix-sparse-checkout-status
• See full diff in compare view

Sourced from go.etcd.io/bbolt's releases.

v1.4.2

See the CHANGELOG/v1.4.2 for more details.

v1.4.1

See the CHANGELOG/v1.4.1 for more details.

• dca4b1d Update version to 1.4.2
• 25e37c0 Merge pull request #1005 from ahrtr/20250626_meta_1.4
• f32b06c Protect meta page when it's being written
• b8ccd81 Merge pull request #1003 from Elbehery/20250625_1.4-use-temmplate-for-cross-b...
• 61713a0 Add template to cross arch build tests
• 992a56a Merge pull request #1000 from Elbehery/20250625_1.4-use-qemu-github-workflow
• 0dcb047 chore(CI): Add QEMU to CI Workflow
• 682819c Merge pull request #990 from ahrtr/20250615_maxMapSize_1.4
• 2d2c8e4 Fix maxMapSize typo in aix, android and solaris
• 2855a18 Merge pull request #985 from hwdef/release14-bump-go-12310
• Additional commits viewable in compare view

• 3bf9d2a ssh/test: skip KEX test if unsupported by system SSH client
• 9bab967 go.mod: update golang.org/x dependencies
• 4f9f0ca x509roots/fallback: add init time benchmark
• eac7cf0 x509roots/fallback: move parsing code to a non-generated file
• 18228cd acme: return err from deprecated TLS-SNI-[01|02] functions
• 73f6362 acme: remove dead code
• ebc8e46 ssh: add server side support for Diffie Hellman Group Exchange
• e944286 ssh: expose negotiated algorithms
• 78a1fd7 ssh: automatically add [email protected] KEX alias
• ac58737 ssh: export supported algorithms
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions