public_git
/
kaniko
mirror of https://github.com/GoogleContainerTools/kaniko
1
0
Fork 0
Code Issues Releases Wiki Activity
2,066 Commits 24 Branches 63 Tags 286 MiB
Commit Graph

12 Commits

Author SHA1 Message Date
dependabot[bot] fcc3a3ef94
chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 (#2915) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.16.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-12-19 08:33:23 -08:00
dependabot[bot] b77b858a62
chore(deps): bump github.com/spf13/afero from 1.10.0 to 1.11.0 (#2891) 
Bumps [github.com/spf13/afero](https://github.com/spf13/afero) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/spf13/afero/releases)
- [Commits](https://github.com/spf13/afero/compare/v1.10.0...v1.11.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/afero
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-12-04 10:05:01 -05:00
dependabot[bot] e983eb66d7
chore(deps): bump golang.org/x/net from 0.17.0 to 0.18.0 (#2859) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/net/compare/v0.17.0...v0.18.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-19 19:28:50 -08:00
dependabot[bot] bda9700863
chore(deps): bump golang.org/x/oauth2 from 0.12.0 to 0.13.0 (#2781) 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.12.0 to 0.13.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.12.0...v0.13.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-09 07:14:31 -07:00
dependabot[bot] 7e905499af
chore(deps): bump golang.org/x/net from 0.12.0 to 0.14.0 (#2663) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.12.0 to 0.14.0.
- [Commits](https://github.com/golang/net/compare/v0.12.0...v0.14.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-08 11:14:27 -07:00
dependabot[bot] 4edf751d43
chore(deps): bump github.com/go-git/go-git/v5 from 5.4.2 to 5.7.0 (#2528) 
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.4.2 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](https://github.com/go-git/go-git/compare/v5.4.2...v5.7.0)

---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-29 16:28:53 -07:00
Joël Pepper 0cbb7664de
fix(executor): make pax tar builds reproducible again (#2384) 
In v1.8.0 (commit 7410007) kaniko switched to using the pax tar header
format for compressing image layers, since this format allows for greater
precision in recording timestamps, however this inadvertendly broke the
"--reproducible" functionality, due to an bug in the underlying
go-containerregistry dependency which did not set the additional
timestamps in the pax header when canonicalizing image layers. This
oversight has since been fixed in the dependency.

This commit bumps the google/go-containerregistry dependency to the
first commit which has fixed the bug
(v0.13.1-0.20230201183932-824efc7772b0). It also bumps the version of
cloud.google.com/go/storage to v1.29.0 to be compatible with the higher
transitive dependency.
 2023-03-21 18:08:29 -04:00
Jason Hall 6bbd8a331c
Bump deps (#1885) 
```
* use go 1.17 semantics in go.mod
* pin tonistiigi/fsutil dep to match docker/docker's dep
go get -u ./...
go mod vendor
```
 2022-01-21 13:59:16 -05:00
Tejal Desai 7b51aec5d9 upgrade go container registry to latest master 2020-03-18 15:00:49 -07:00
Ben Einaudi 03b8922ede Upgrade dependency to go-containerregistry third-party library 
By doing so it will fix issues met when mixing source/remote registry

Close #808
 2020-01-26 18:55:52 +01:00
Tejal Desai 6b020a1f97 fix highwayhash 2019-12-21 12:18:09 -08:00
Kartik Verma 8acca11a16
Added go-git 2018-09-03 14:03:12 +05:30