🌱 Bump github.com/containers/image/v5 from 5.33.1 to 5.34.0

[dependabot]

Bumps github.com/containers/image/v5 from 5.33.1 to 5.34.0.

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.34.0

What's Changed

• Bump c/storage to v1.56.0, c/image to v5.33.0 by @​TomSweeneyRedHat in containers/image#2625
• Update stubs to match signature of actual methods by @​SpangleLabs in containers/image#2541
• docker: add check for too many parts by @​giuseppe in containers/image#2619
• fix(deps): update module golang.org/x/crypto to v0.29.0 by @​renovate in containers/image#2624
• fix(deps): update module golang.org/x/oauth2 to v0.24.0 by @​renovate in containers/image#2626
• chore(deps): update dependency golangci/golangci-lint to v1.62.0 by @​renovate in containers/image#2630
• chore(deps): update dependency containers/automation_images to v20241107 by @​renovate in containers/image#2631
• fix(deps): update module github.com/sigstore/sigstore to v1.8.10 by @​renovate in containers/image#2601
• fix(deps): update module github.com/sylabs/sif/v2 to v2.20.0 by @​renovate in containers/image#2611
• docker: drop use of external distribution challenge pkg by @​flavianmissi in containers/image#2629
• Merge tag 'v5.33.0' into main by @​mtrmac in containers/image#2634
• Improve an error message by @​mtrmac in containers/image#2595
• Propagate CompressedDigest/CompressedSize when reusing data from another layer by @​mtrmac in containers/image#2583
• chore(deps): update dependency golangci/golangci-lint to v1.62.2 by @​renovate in containers/image#2640
• fix(deps): update module github.com/proglottis/gpgme to v0.1.4 by @​renovate in containers/image#2638
• fix(deps): update module github.com/stretchr/testify to v1.10.0 by @​renovate in containers/image#2639
• Two small lint updates by @​mtrmac in containers/image#2642
• Use testify's ErrorAs to simplify tests a bit by @​mtrmac in containers/image#2641
• Fix excessive memory and disk usage when sharing layers by @​mtrmac in containers/image#2636
• Fix a missing s.lock.Unlock() on an error path by @​mtrmac in containers/image#2643
• In pulls, compute DiffIDs earlier, and also for v2s2 by @​mtrmac in containers/image#2635
• Update module golang.org/x/sync to v0.10.0 by @​renovate in containers/image#2650
• Update golang.org/x/exp digest to 2d47ceb by @​renovate in containers/image#2648
• Update module golang.org/x/term to v0.27.0 by @​renovate in containers/image#2651
• Update module golang.org/x/crypto to v0.30.0 by @​renovate in containers/image#2652
• Update module github.com/docker/docker to v27.4.0+incompatible by @​renovate in containers/image#2654
• Update module github.com/docker/cli to v27.4.0+incompatible by @​renovate in containers/image#2653
• Update module golang.org/x/crypto to v0.31.0 by @​renovate in containers/image#2655
• Update module github.com/sylabs/sif/v2 to v2.20.1 by @​renovate in containers/image#2656
• Update module github.com/sigstore/sigstore to v1.8.11 by @​renovate in containers/image#2657
• Update module github.com/secure-systems-lab/go-securesystemslib to v0.9.0 by @​renovate in containers/image#2658
• Update module github.com/containers/ocicrypt to v1.2.1 by @​renovate in containers/image#2659
• Update module github.com/docker/docker to v27.4.1+incompatible by @​renovate in containers/image#2662
• Update module github.com/sylabs/sif/v2 to v2.20.2 by @​renovate in containers/image#2660
• Update module github.com/docker/cli to v27.4.1+incompatible by @​renovate in containers/image#2661
• Fix docker daemon on Windows trying to use https instead of http for named pipes by @​brbayes-msft in containers/image#2666
• Update dependency golangci/golangci-lint to v1.63.2 by @​renovate in containers/image#2667
• Update dependency golangci/golangci-lint to v1.63.3 by @​renovate in containers/image#2668
• Update dependency golangci/golangci-lint to v1.63.4 by @​renovate in containers/image#2669
• OCI layout extensions by @​vrothberg in containers/image#2633
• Update module golang.org/x/term to v0.28.0 by @​renovate in containers/image#2671
• Update module golang.org/x/oauth2 to v0.25.0 by @​renovate in containers/image#2670
• Update module golang.org/x/crypto to v0.32.0 by @​renovate in containers/image#2674
• Update module github.com/vbauerster/mpb/v8 to v8.9.1 by @​renovate in containers/image#2675
• Add a comment justifying lack of unit test coverage by @​mtrmac in containers/image#2673
• Move JSONFormatToInvalidSignatureError to an unconditionally-included file by @​mtrmac in containers/image#2632
• Update dependency containers/automation_images to v20250107 by @​renovate in containers/image#2677
• Update module github.com/sigstore/sigstore to v1.8.12 by @​renovate in containers/image#2678

... (truncated)

Commits

• 51a5d96 Bump to c/image v5.34.0
• 771660e Bump c/storage to v1.57.1
• 7f0e59d Merge pull request #2696 from Luap99/ENOENT
• 3f17e2e ignore ENOENT errors when parsing .crt files
• c9771a8 ignore ENOENT errors when parsing registries.conf.d files
• 1294122 ignore ENOENT errors when parsing registries.d files
• b5c6aff Merge pull request #2693 from containers/renovate/github.com-docker-docker-27.x
• 1683fc2 Update module github.com/docker/docker to v27.5.1+incompatible
• 16f7e1e Merge pull request #2692 from containers/renovate/github.com-docker-cli-27.x
• 30f0d87 Update module github.com/docker/cli to v27.5.1+incompatible
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[netlify]

✅ Deploy Preview for olmv1 ready!

Name	Link
🔨 Latest commit	ee0adae
🔍 Latest deploy log	https://app.netlify.com/sites/olmv1/deploys/67c60bf33bafde0008b2aeec
😎 Deploy Preview	https://deploy-preview-1692--olmv1.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[camilamacedo86]

/lgtm cancel

Mistake.

we need to make it pass in the tests

[camilamacedo86]

@dependabot rebase

[joelanford]

This looks like an issue with containers/image and its pgp dependency. We should make sure to use -tags=containers_image_openpgp wherever necessary to avoid this.

The Makefile already has GO_BUILD_TAGS variable with this setup, so we just need to plumb that variable into whatever other commands need it to avoid pulling in github.com/proglottis/gpgme (which requires CGO_ENABLED=1).

[LalatenduMohanty]

Right we already have https://github.com/operator-framework/operator-controller/blob/main/Makefile#L323 so trying to figureout how we can pass it so that it wont be an issue.

[camilamacedo86]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[tmshort]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[camilamacedo86]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[camilamacedo86]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[camilamacedo86]

@joelanford the problem seems to be that controller-gen does not accept that.

[dependabot]

A newer version of github.com/containers/image/v5 exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 68.44%. Comparing base (97b1337) to head (ee0adae).

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1692      +/-   ##
==========================================
- Coverage   68.50%   68.44%   -0.06%     
==========================================
  Files          63       63              
  Lines        5134     5134              
==========================================
- Hits         3517     3514       -3     
- Misses       1388     1390       +2     
- Partials      229      230       +1     

Flag	Coverage Δ
e2e	51.65% <ø> (-0.08%)	⬇️
unit	56.03% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.