v0.22.1
What's Changed
This is a patch release with the following commits cherry-picked from main. The release mainly addresses some dependency vulnerability findings.
- enhance(pipeline/exec): incorporate privileged image handling in runtime config by @ecrupper in #503
- fix(ci): add timeout to golangci-lint reviewdog job by @ecrupper in #505
- fix(pipeline): include starlark exec limit to compiler flags in exec + validate by @ecrupper in #504
- fix(deps): update all non-major dependencies by @renovate in #498
- fix(exec): set tag prefix if user does not provide one by @ecrupper in #512
- chore(deps): update all non-major dependencies by @renovate in #506 (edited version because it contained some necessary fixes for current main)
- chore(deps): update actions/setup-go action to v5 by @renovate in #507
- chore(deps): update github/codeql-action action to v3 by @renovate in #510
- chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 by @dependabot in #511
- chore(deps): bump github.com/containerd/containerd from 1.7.8 to 1.7.11 by @dependabot in #513
- fix(deps): update module github.com/go-git/go-git/v5 to v5.11.0 [security] by @renovate in #515
- chore(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #516
Full Changelog: v0.22.0...v0.22.1
Contributors
renovate, dependabot, and ecrupper