chore(deps): bump the security group with 4 updates

[dependabot]

Bumps the security group with 4 updates: github.com/containers/image/v5, github.com/opencontainers/image-spec, github.com/shirou/gopsutil/v4 and github.com/opencontainers/runtime-spec.

Updates github.com/containers/image/v5 from 5.34.0 to 5.34.1

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.34.1

What's Changed

• [release-5.34] policy.json BYOPKI signature verification API by @​mtrmac in containers/image#2725

Full Changelog: containers/image@v5.34.0...v5.34.1

Commits

• b070a2a [release-5.34] Bump to v5.34.1
• 4524721 Merge pull request #2725 from mtrmac/byopki-release-5.34
• 5166838 policy.json BYOPKI signature verification API
• See full diff in compare view

Updates github.com/opencontainers/image-spec from 1.1.0 to 1.1.1

Release notes

Sourced from github.com/opencontainers/image-spec's releases.

v1.1.1

Vote Passed [+5 -0 nv1] - https://groups.google.com/a/opencontainers.org/g/dev/c/T-olx0jdT18 Release PR : opencontainers/image-spec#1247 Full Changelog: opencontainers/image-spec@v1.1.0...v1.1.1

Commits

• 147f9c1 Release v1.1.1
• fbb4662 Merge pull request #1238 from mkenigs/wording-nit
• 81e457e Fix grammar nit
• 92353b0 Merge pull request #1225 from sudo-bmitch/pr-doc-go-version
• 1a0b9f9 Merge pull request #1230 from sudo-bmitch/pr-layout-extensibility
• f272635 Merge pull request #1228 from sudo-bmitch/pr-mixed-digest-algo
• e0462ab Merge pull request #1229 from tianon/setup-go
• cf536e3 Merge pull request #1227 from sudo-bmitch/pr-rm-project-doc
• 60acaac Document extensibility of the image layout
• 4dcf962 Document Go version policy
• Additional commits viewable in compare view

Updates github.com/shirou/gopsutil/v4 from 4.25.1 to 4.25.2

Release notes

Sourced from github.com/shirou/gopsutil/v4's releases.

v4.25.2

What's Changed

cpu

• chore: enable golangci-lint on Windows and MacOS by @​mmorel-35 in shirou/gopsutil#1785
• chore(golangci-lint): GOOS and GOARCH matrix by @​mmorel-35 in shirou/gopsutil#1797

net

• [windows]: fix lint error about use-any by @​shirou in shirou/gopsutil#1795

process

• fix: Process.CmdlineSliceWithContext incorrect on Windows by @​RomainMuller in shirou/gopsutil#1796

Other Changes

• chore: enable use-any from revive by @​mmorel-35 in shirou/gopsutil#1784
• fix(golangci-lint): configuration typo by @​mmorel-35 in shirou/gopsutil#1798

New Contributors

• @​RomainMuller made their first contribution in shirou/gopsutil#1796

Full Changelog: shirou/gopsutil@v4.25.1...v4.25.2

Commits

• bcd0dfa Merge pull request #1794 from shirou/dependabot/github_actions/golangci/golan...
• 77aa6f8 Merge pull request #1801 from shirou/dependabot/go_modules/github.com/google/...
• efe3ff4 chore(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0
• 6dc012f chore(deps): bump golangci/golangci-lint-action from 6.2.0 to 6.5.0
• edcde3a Merge pull request #1797 from mmorel-35/golangci-lint-matrix
• 4f2f472 Merge pull request #1796 from RomainMuller/master
• 30aff03 chore(golangci-lint): GOOS and GOARCH matrix
• b7932a9 Merge pull request #1798 from mmorel-35/patch-1
• df6f9a2 fix(golangci-lint): configuration typo
• 5da36ee fix: CmdlineSlice[WithContext] incorrect on Windows
• Additional commits viewable in compare view

Updates github.com/opencontainers/runtime-spec from 1.2.0 to 1.2.1

Release notes

Sourced from github.com/opencontainers/runtime-spec's releases.

v1.2.1

This is the first patch release of the v1.2.z series of the Open Container Initative Runtime Specification. It primarily includes a series of minor fixes as well as new support for the specification of the CPU affinity of container processes.

Additions

• zos updates (#1273)
• Add support for windows CPU affinity (#1258)
• specs-go: sync SCMP_ARCH_* constants with libseccomp main (#1229)
• Add CPU affinity to executed processes (#1253, #1261)
• config-linux: describe the format of cpus and mems (#1253)

Minor fixes

• Fix description of errnoRet in Seccomp (#1277)
• config-linux: update for libseccomp v2.6.0 (#1276)
• Correct prestart hook description in summary (#1275)

Documentation, CI & Governance

• ci: Add a github actions workflow for lint (#1257)
• update http links to https (#1269)
• doc: fix the invalid hyperlink naming-a-volume (#1268)
• ci: remove redundunt actions (#1256)
• chore: format JSON file make -C schema fmt (#1255)
• CODEOWNERS: remove vbatts (#1248)
• MAINTAINERS: move vbatts to EMERITUS (#1248)
• Update golangci-lint to v1.56.1 in CI (#1245)
• Add Go v1.21 and v1.22 to GitHub Actions CI matrix (#1245)
• Update GitHub Actions packages to resolve warnings in CI (#1244)

Thanks to the following contributors for making this release possible:

• Akihiro Suda [email protected]
• Austin Vazquez [email protected]
• Kaita Nakamura [email protected]
• Kershaw Mehta [email protected]
• Kijima Daigo [email protected]
• Kir Kolyshkin [email protected]
• Kirtana Ashok [email protected]
• Lei Wang [email protected]
• Neil Johnson [email protected]
• Patrickuuuu [email protected]
• Sebastiaan van Stijn [email protected]
• Tianon Gravi [email protected]
• Toru Komatsu [email protected]
• Vincent Batts [email protected]

... (truncated)

Changelog

Sourced from github.com/opencontainers/runtime-spec's changelog.

OpenContainers Specifications

Changes with v1.2.1:

Additions:

• zos updates (#1273)
• Add support for windows CPU affinity (#1258)
• specs-go: sync SCMP_ARCH_* constants with libseccomp main (#1229)
• Add CPU affinity to executed processes (#1253, #1261)
• config-linux: describe the format of cpus and mems (#1253)

Minor fixes:

• Fix description of errnoRet in Seccomp (#1277)
• config-linux: update for libseccomp v2.6.0 (#1276)
• Correct prestart hook description in summary (#1275)

Documentation, CI & Governance:

• ci: Add a github actions workflow for lint (#1257)
• update http links to https (#1269)
• doc: fix the invalid hyperlink naming-a-volume (#1268)
• ci: remove redundunt actions (#1256)
• chore: format JSON file make -C schema fmt (#1255)
• CODEOWNERS: remove vbatts (#1248)
• MAINTAINERS: move vbatts to EMERITUS (#1248)
• Update golangci-lint to v1.56.1 in CI (#1245)
• Add Go v1.21 and v1.22 to GitHub Actions CI matrix (#1245)
• Update GitHub Actions packages to resolve warnings in CI (#1244)

Changes with v1.2.0:

Additions:

• config: add idmap and ridmap mount options (#1222)
• config.md: allow empty mappings for [r]idmap (#1224)
• features-linux: Expose idmap information (#1219)
• mount: Allow relative mount destinations on Linux (#1225)
• features: add potentiallyUnsafeConfigAnnotations (#1205)
• config: add support for org.opencontainers.image annotations #1197

Minor fixes:

• config: improve bind mount and propagation doc (#1228)

Documentation, CI & Governance:

• fix link to hooks in features (#1226)
• specs-go: add missing deprecation comment for Hooks.Prestart (#1232)

... (truncated)

Commits

• 524fc0e Release v1.2.1
• 2f2d37e Merge pull request #1277 from z63d/fix/seccomp-errnoret-descripton
• 221c198 Fix description of errnoRet in Seccomp
• a5b0116 Merge pull request #1273 from kershawmehta/zos
• c09dda1 Merge pull request #1276 from AkihiroSuda/libseccomp-2.6.0
• 9de64c0 config-linux: update for libseccomp v2.6.0
• 1df9fa9 zos updates - add zos namespaces, remove zos devices
• 131ae4c Correct prestart hook description in summary (#1275)
• d61dee6 Merge pull request #1258 from kiashok/cpuAffinity-oci
• b9e8fdb Add support for windows CPU affinity
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[replicated-ci]

LGTM 👍

This PR was automatically approved and merged by the automated-prs-manager GitHub action