chore(deps): update dependency cri-o/cri-o to v1.33.0

[uniget-bot]

This PR contains the following updates:

Package	Update	Change
cri-o/cri-o	minor	1.32.0 -> 1.33.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

cri-o/cri-o (cri-o/cri-o)

v1.33.0

Compare Source

• CRI-O v1.33.0
  • Downloads
  • Changelog since v1.32.0
    • Changes by Kind
      • Bug or Regression
      • Other (Cleanup or Flake)
  • Dependencies
    • Added
    • Changed
    • Removed

CRI-O v1.33.0

The release notes have been generated for the commit range
v1.32.0...v1.33.0 on Thu, 23 Jan 2025 00:21:17 UTC.

Downloads

Download one of our static release bundles via our Google Cloud Bucket:

• cri-o.amd64.v1.33.0.tar.gz
  • cri-o.amd64.v1.33.0.tar.gz.sha256sum
  • cri-o.amd64.v1.33.0.tar.gz.sig
  • cri-o.amd64.v1.33.0.tar.gz.cert
  • cri-o.amd64.v1.33.0.tar.gz.spdx
  • cri-o.amd64.v1.33.0.tar.gz.spdx.sig
  • cri-o.amd64.v1.33.0.tar.gz.spdx.cert
• cri-o.arm64.v1.33.0.tar.gz
  • cri-o.arm64.v1.33.0.tar.gz.sha256sum
  • cri-o.arm64.v1.33.0.tar.gz.sig
  • cri-o.arm64.v1.33.0.tar.gz.cert
  • cri-o.arm64.v1.33.0.tar.gz.spdx
  • cri-o.arm64.v1.33.0.tar.gz.spdx.sig
  • cri-o.arm64.v1.33.0.tar.gz.spdx.cert
• cri-o.ppc64le.v1.33.0.tar.gz
  • cri-o.ppc64le.v1.33.0.tar.gz.sha256sum
  • cri-o.ppc64le.v1.33.0.tar.gz.sig
  • cri-o.ppc64le.v1.33.0.tar.gz.cert
  • cri-o.ppc64le.v1.33.0.tar.gz.spdx
  • cri-o.ppc64le.v1.33.0.tar.gz.spdx.sig
  • cri-o.ppc64le.v1.33.0.tar.gz.spdx.cert
• cri-o.s390x.v1.33.0.tar.gz
  • cri-o.s390x.v1.33.0.tar.gz.sha256sum
  • cri-o.s390x.v1.33.0.tar.gz.sig
  • cri-o.s390x.v1.33.0.tar.gz.cert
  • cri-o.s390x.v1.33.0.tar.gz.spdx
  • cri-o.s390x.v1.33.0.tar.gz.spdx.sig
  • cri-o.s390x.v1.33.0.tar.gz.spdx.cert

To verify the artifact signatures via cosign, run:

> export COSIGN_EXPERIMENTAL=1
> cosign verify-blob cri-o.amd64.v1.33.0.tar.gz \
    --certificate-identity https://github.com/cri-o/cri-o/.github/workflows/test.yml@refs/tags/v1.33.0 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-repository cri-o/cri-o \
    --certificate-github-workflow-ref refs/tags/v1.33.0 \
    --signature cri-o.amd64.v1.33.0.tar.gz.sig \
    --certificate cri-o.amd64.v1.33.0.tar.gz.cert

To verify the bill of materials (SBOM) in SPDX format using the bom tool, run:

> tar xfz cri-o.amd64.v1.33.0.tar.gz
> bom validate -e cri-o.amd64.v1.33.0.tar.gz.spdx -d cri-o

Changelog since v1.32.0

Changes by Kind

Bug or Regression

• Decouple CNI plugin initialization from CRI-O health checks. (#​8911, @​sohankunkerkar)
• Fix a panic when default_annotations are used (#​8867, @​haircommander)
• Fixed log format from klog. (#​8918, @​bitoku)

Other (Cleanup or Flake)

• Change log levels and formats for some iptables logs and klog related logs. (#​8883, @​bitoku)
• Update Packit configuration to remove reference to Fedora 39. (#​8898, @​buckaroogeek)

Dependencies

Added

• github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp: v1.24.2
• github.com/smallstep/pkcs7: v0.1.1
• go.opentelemetry.io/auto/sdk: v1.1.0
• go.opentelemetry.io/contrib/detectors/gcp: v1.31.0
• go.opentelemetry.io/otel/sdk/metric: v1.31.0

Changed

• cel.dev/expr: v0.16.1 → v0.18.0
• cloud.google.com/go/compute/metadata: v0.5.0 → v0.5.2
• github.com/Masterminds/semver/v3: v3.2.1 → v3.3.1
• github.com/ProtonMail/go-crypto: v1.0.0 → v1.1.3
• github.com/cncf/udpa/go: c52dc94 → 269d4d4
• github.com/containerd/containerd: v1.7.24 → v1.7.25
• github.com/containerd/continuity: v0.4.2 → v0.4.4
• github.com/containerd/otelttrpc: ea5083f → v0.1.0
• github.com/containerd/ttrpc: b5cd6e4 → v1.2.7
• github.com/containernetworking/plugins: v1.6.1 → v1.6.2
• github.com/containers/common: v0.61.0 → v0.61.1
• github.com/containers/image/v5: v5.33.0 → v5.33.1
• github.com/containers/ocicrypt: v1.2.0 → v1.2.1
• github.com/containers/storage: v1.56.0 → v1.56.1
• github.com/cyphar/filepath-securejoin: v0.3.5 → v0.3.6
• github.com/elazarl/goproxy: 2592e75 → v1.2.3
• github.com/envoyproxy/go-control-plane: v0.13.0 → v0.13.1
• github.com/gliderlabs/ssh: v0.3.7 → v0.3.8
• github.com/go-chi/chi/v5: v5.1.0 → v5.2.0
• github.com/go-git/go-billy/v5: v5.5.0 → v5.6.1
• github.com/go-git/go-git/v5: v5.12.0 → v5.13.1
• github.com/google/cel-go: v0.20.1 → v0.22.0
• github.com/google/pprof: d1b30fe → 40e02aa
• github.com/gregjones/httpcache: 9cad4c3 → 901d907
• github.com/grpc-ecosystem/grpc-gateway/v2: v2.23.0 → v2.24.0
• github.com/jonboulle/clockwork: v0.2.2 → v0.4.0
• github.com/klauspost/cpuid/v2: v2.0.9 → v2.0.4
• github.com/maxbrunsfeld/counterfeiter/v6: v6.8.1 → v6.11.2
• github.com/moby/spdystream: v0.4.0 → v0.5.0
• github.com/onsi/ginkgo/v2: v2.22.0 → v2.22.2
• github.com/onsi/gomega: v1.36.0 → v1.36.2
• github.com/opencontainers/runc: v1.2.1 → v1.2.4
• github.com/stoewer/go-strcase: v1.2.0 → v1.3.0
• github.com/uwu-tools/magex: v0.10.0 → v0.10.1
• github.com/xiang90/probing: 43a291a → a49e3df
• go.etcd.io/etcd/api/v3: v3.5.14 → v3.5.16
• go.etcd.io/etcd/client/pkg/v3: v3.5.14 → v3.5.16
• go.etcd.io/etcd/client/v2: v2.305.13 → v2.305.16
• go.etcd.io/etcd/client/v3: v3.5.14 → v3.5.16
• go.etcd.io/etcd/pkg/v3: v3.5.13 → v3.5.16
• go.etcd.io/etcd/raft/v3: v3.5.13 → v3.5.16
• go.etcd.io/etcd/server/v3: v3.5.13 → v3.5.16
• go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc: v0.57.0 → v0.58.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc: v1.32.0 → v1.33.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace: v1.32.0 → v1.33.0
• go.opentelemetry.io/otel/metric: v1.32.0 → v1.33.0
• go.opentelemetry.io/otel/sdk: v1.32.0 → v1.33.0
• go.opentelemetry.io/otel/trace: v1.32.0 → v1.33.0
• go.opentelemetry.io/otel: v1.32.0 → v1.33.0
• go.opentelemetry.io/proto/otlp: v1.3.1 → v1.4.0
• golang.org/x/crypto: v0.29.0 → v0.32.0
• golang.org/x/lint: 6edffad → 1621716
• golang.org/x/mod: v0.21.0 → v0.22.0
• golang.org/x/net: v0.30.0 → v0.34.0
• golang.org/x/oauth2: v0.23.0 → v0.24.0
• golang.org/x/sync: v0.9.0 → v0.10.0
• golang.org/x/sys: v0.28.0 → v0.29.0
• golang.org/x/term: v0.26.0 → v0.28.0
• golang.org/x/text: v0.20.0 → v0.21.0
• golang.org/x/time: v0.6.0 → v0.7.0
• golang.org/x/tools: v0.26.0 → v0.28.0
• google.golang.org/genproto/googleapis/api: dd2ea8e → e6fa225
• google.golang.org/genproto/googleapis/rpc: dd2ea8e → e6fa225
• google.golang.org/grpc: v1.68.0 → v1.69.4
• google.golang.org/protobuf: v1.35.1 → v1.36.3
• honnef.co/go/tools: v0.1.3 → ea95bdf
• k8s.io/api: v0.31.4 → v0.32.1
• k8s.io/apimachinery: v0.31.4 → v0.32.1
• k8s.io/apiserver: v0.31.4 → v0.32.1
• k8s.io/client-go: v0.31.4 → v0.32.1
• k8s.io/component-base: v0.31.4 → v0.32.1
• k8s.io/cri-api: v0.31.4 → v0.32.1
• k8s.io/cri-client: v0.31.4 → v0.32.1
• k8s.io/gengo/v2: 51d4e06 → a7b603a
• k8s.io/kms: v0.31.4 → v0.32.1
• k8s.io/kube-openapi: 70dd376 → 32ad38e
• k8s.io/kubelet: v0.31.4 → v0.32.1
• k8s.io/utils: 18e509b → 3ea5e8c
• sigs.k8s.io/apiserver-network-proxy/konnectivity-client: v0.30.3 → v0.31.0
• sigs.k8s.io/json: bc3834c → 9aa6b5e
• sigs.k8s.io/release-utils: v0.8.5 → v0.9.0
• sigs.k8s.io/structured-merge-diff/v4: v4.4.1 → v4.4.2

Removed

• cloud.google.com/go/apikeys: v0.6.0
• cloud.google.com/go/dataproc: v1.12.0
• cloud.google.com/go/gaming: v1.9.0
• cloud.google.com/go/grafeas: v0.2.0
• cloud.google.com/go/recaptchaenterprise: v1.3.1
• cloud.google.com/go/servicecontrol: v1.11.1
• cloud.google.com/go/servicemanagement: v1.8.0
• cloud.google.com/go/serviceusage: v1.6.0
• cloud.google.com/go/vision: v1.2.0
• dmitri.shuralyov.com/gpu/mtl: 666a987
• gioui.org: 57750fc
• git.sr.ht/~sbinet/gg: v0.3.1
• github.com/BurntSushi/xgb: 27f1227
• github.com/JohnCGriffin/overflow: 46fa312
• github.com/ajstarks/deck/generate: c3f852c
• github.com/ajstarks/deck: 30c9fc6
• github.com/ajstarks/svgo: 1546f12
• github.com/apache/arrow/go/v10: v10.0.1
• github.com/apache/arrow/go/v11: v11.0.0
• github.com/apache/thrift: v0.16.0
• github.com/boombuler/barcode: v1.0.1
• github.com/cespare/xxhash: v1.1.0
• github.com/docopt/docopt-go: ee0de3b
• github.com/fogleman/gg: v1.3.0
• github.com/ghodss/yaml: v1.0.0
• github.com/go-fonts/dejavu: v0.1.0
• github.com/go-fonts/latin-modern: v0.2.0
• github.com/go-fonts/liberation: v0.2.0
• github.com/go-fonts/stix: v0.1.0
• github.com/go-gl/glfw/v3.3/glfw: 6f7a984
• github.com/go-gl/glfw: e6da0ac
• github.com/go-latex/latex: c0d11ff
• github.com/go-pdf/fpdf: v0.6.0
• github.com/golang/freetype: e2365df
• github.com/google/flatbuffers: v2.0.8+incompatible
• github.com/google/martian/v3: v3.3.2
• github.com/google/martian: v2.1.0+incompatible
• github.com/googleapis/go-type-adapters: v1.0.0
• github.com/googleapis/google-cloud-go-testing: bcd43fb
• github.com/iancoleman/strcase: v0.2.0
• github.com/jstemmer/go-junit-report: v0.9.1
• github.com/jung-kurt/gofpdf: 24315ac
• github.com/kballard/go-shellquote: 95032a8
• github.com/klauspost/asmfmt: v1.3.2
• github.com/lyft/protoc-gen-star/v2: v2.0.1
• github.com/lyft/protoc-gen-star: v0.6.1
• github.com/minio/asm2plan9s: cdd7644
• github.com/minio/c2goasm: 36a3d3b
• github.com/phpdave11/gofpdf: v1.4.2
• github.com/phpdave11/gofpdi: v1.0.13
• github.com/pkg/diff: 20ebb0f
• github.com/remyoudompheng/bigfft: eec4a21
• github.com/ruudk/golang-pdf417: a7e3863
• github.com/spaolacci/murmur3: f09979e
• github.com/zeebo/assert: v1.3.0
• github.com/zeebo/xxh3: v1.0.2
• golang.org/x/image: 723b81c
• golang.org/x/mobile: d2bd2a2
• gonum.org/v1/gonum: v0.11.0
• gonum.org/v1/netlib: 8cb4219
• gonum.org/v1/plot: v0.10.1
• gopkg.in/errgo.v2: v2.1.0
• lukechampine.com/uint128: v1.2.0
• modernc.org/cc/v3: v3.36.3
• modernc.org/ccgo/v3: v3.16.9
• modernc.org/ccorpus: v1.11.6
• modernc.org/httpfs: v1.0.6
• modernc.org/libc: v1.17.1
• modernc.org/mathutil: v1.5.0
• modernc.org/memory: v1.2.1
• modernc.org/opt: v0.1.3
• modernc.org/sqlite: v1.18.1
• modernc.org/strutil: v1.1.3
• modernc.org/tcl: v1.13.1
• modernc.org/token: v1.0.0
• modernc.org/z: v1.5.1
• rsc.io/binaryregexp: v0.2.0
• rsc.io/pdf: v0.1.1
• rsc.io/quote/v3: v3.1.0
• rsc.io/sampler: v1.3.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[nicholasdille-bot]

Auto-approved because label type/renovate is present.

[github-actions]

🔍 Vulnerabilities of ghcr.io/uniget-org/tools/cri-o:1.33.0

📦 Image Reference ghcr.io/uniget-org/tools/cri-o:1.33.0

digest	sha256:8dcb4f83844efa1736f7e38c7ca33528bc4fce7adc356af4d5646e8b316e725f
vulnerabilities
platform	linux/amd64
size	20 MB
packages	198

k8s.io/apiserver 0.32.1 (golang) pkg:golang/k8s.io/apiserver@0.32.1 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities Affected range <1.15.10 Fixed version 1.15.10, 1.16.7, 1.17.3 CVSS Score 4.3 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Description The Kubernetes API server component has been found to be vulnerable to a denial of service attack via successful API requests.

[github-actions]

Attempting automerge. See https://github.com/uniget-org/tools/actions/runs/12920709113.

[github-actions]

PR is clean and can be merged. See https://github.com/uniget-org/tools/actions/runs/12920709113.