Bump the gomod group with 5 updates

[dependabot]

Bumps the gomod group with 5 updates:

Package	From	To
github.com/docker/cli	29.2.1+incompatible	29.3.1+incompatible
github.com/docker/compose/v5	5.1.0	5.1.1
github.com/containerd/containerd/v2	2.2.1	2.2.2
github.com/infisical/go-sdk	0.6.8	0.6.9
github.com/moby/moby/client	0.2.2	0.3.0

Updates github.com/docker/cli from 29.2.1+incompatible to 29.3.1+incompatible

Commits

• c2be9cc Merge pull request #6887 from thaJeztah/29.x_backport_pin_actions
• 0da6a51 ci: pin actions to digests
• 6b3ca8f Merge pull request #6884 from thaJeztah/29.x_backport_missing_buildtags
• f47603c Merge pull request #6885 from thaJeztah/29.x_backport_update_actions
• 9709c8f build(deps): bump docker/metadata-action from 5 to 6
• af45a23 build(deps): bump docker/bake-action from 6 to 7
• bc97f5a Merge pull request #6883 from thaJeztah/29.x_backport_update_go1.25.8
• 6d71967 cli/command: add missing "go:build" comments
• 9b51892 update to go1.25.8
• 5927d80 Merge pull request #6844 from vvoland/update-docker
• Additional commits viewable in compare view

Updates github.com/docker/compose/v5 from 5.1.0 to 5.1.1

Release notes

Sourced from github.com/docker/compose/v5's releases.

v5.1.1

What's Changed

🐛 Fixes

• Only pass ConsoleSize to ExecAttach when TTY is enabled by @​mikesir87 in docker/compose#13616
• Fix deadlock in ttyWriter.Done() by @​maks2134 in docker/compose#13640

⚙️ Dependencies

• update to go1.25.8 by @​thaJeztah in docker/compose#13622
• bump github.com/moby/moby/api from 1.53.0 to 1.54.0 by @​dependabot[bot] in docker/compose#13619
• bump golang.org/x/sys from 0.41.0 to 0.42.0 by @​dependabot[bot] in docker/compose#13626
• bump github.com/containerd/containerd/v2 from 2.2.1 to 2.2.2 by @​dependabot[bot] in docker/compose#13631
• bump golang.org/x/sync from 0.19.0 to 0.20.0 by @​dependabot[bot] in docker/compose#13627
• bump github.com/moby/moby/client from 0.2.2 to 0.3.0 by @​dependabot[bot] in docker/compose#13621

New Contributors

• @​maks2134 made their first contribution in docker/compose#13640

Full Changelog: docker/compose@v5.1.0...v5.1.1

Commits

• b043368 Update docker/github-builder to v1.4.0
• c7e8896 Fix forbidigo linting error
• e3fcdb8 Fix linting issues in tty_test.go
• b7d1c62 exclude .idea from git commit
• 25b29d7 Fix deadlock in ttyWriter.Done()
• e8c2143 build(deps): bump github.com/moby/moby/client from 0.2.2 to 0.3.0
• 0ffb171 build(deps): bump golang.org/x/sync from 0.19.0 to 0.20.0
• eb6afa8 build(deps): bump github.com/containerd/containerd/v2
• 79d4fe3 build(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0
• d7ec1ec update to go1.25.8
• Additional commits viewable in compare view

Updates github.com/containerd/containerd/v2 from 2.2.1 to 2.2.2

Release notes

Sourced from github.com/containerd/containerd/v2's releases.

containerd 2.2.2

Welcome to the v2.2.2 release of containerd!

The second patch release for containerd 2.2 contains various fixes and improvements.

Highlights

Container Runtime Interface (CRI)

• Fix migrated CRI image config when using legacy registry mirrors (#12987)
• Unpack images with per-layer labels for runtime-specific snapshotters (#12936)
• Fix CNI issue where DEL is never executed after a restart (#12926)
• Harden error handling to strip potentially-sensitive registry parameters (#12804)
• Fix nil pointer dereference in container spec memory metrics when memory constraints are not fully configured (#12731)
• Use the specified runtime handler when pulling images (#12721)
• Reduce noisy CDI logs (#12717)
• Fix regression for pulling encrypted images (#12712)

Runtime

• Fix unintended dropping of mount flags for read-only bind-mounts in user namespaces (#12944)
• Fix AppArmor bug disallowing unix domain sockets on newer kernels (#12897)

ctr development tool

• Fix ctr image mount failing with "no such device" (#12831)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Akhil Mohan
• Samuel Karp
• Wei Fu
• Michael Zappa
• Phil Estes
• Fabiano Fidêncio
• Jérôme Poulin
• Luke Hinds
• Aadhar Agarwal
• Akihiro Suda
• Alex Chernyakhovsky
• Chris Adeniyi-Jones
• Kazuyoshi Kato
• Rodrigo Campos
• Sebastiaan van Stijn
• You Binhao
• ningmingxiao

... (truncated)

Commits

• 301b2da Merge pull request #12998 from samuelkarp/prepare-release-2.2.2
• 7e6ecf4 Prepare release notes for v2.2.2
• 5dc7bb2 Merge pull request #12987 from k8s-infra-cherrypick-robot/cherry-pick-12617-t...
• a20dead set default config_path in plugin init
• 8b085dd Merge pull request #12936 from fidencio/release-2.2/backport-12835
• 7022bea Merge pull request #12957 from k8s-infra-cherrypick-robot/cherry-pick-12950-t...
• 68855cb ci: modprobe xt_comment on almalinux
• 46fabcc Merge pull request #12944 from k8s-infra-cherrypick-robot/cherry-pick-12941-t...
• ef7a8be core/mount: add test for getUnprivilegedMountFlags
• 07b2cc0 core/mount: fix getUnprivilegedMountFlags iterating over indices instead of v...
• Additional commits viewable in compare view

Updates github.com/infisical/go-sdk from 0.6.8 to 0.6.9

Release notes

Sourced from github.com/infisical/go-sdk's releases.

v0.6.9

What's Changed

• improvement: update list secrets to explicitly accept etag hash and 304 response by @​PrestigePvP in Infisical/go-sdk#68

New Contributors

• @​PrestigePvP made their first contribution in Infisical/go-sdk#68

Full Changelog: Infisical/go-sdk@v0.6.8...v0.6.9

Commits

• 38fb119 Merge pull request #68 from Infisical/tre/eng-4741-etag
• 167e1dd prevent breaking API change, deprecate List function
• bcf7138 improvement: update list secrets to explicitly accept etag hash and 304 response
• See full diff in compare view

Updates github.com/moby/moby/client from 0.2.2 to 0.3.0

Release notes

Sourced from github.com/moby/moby/client's releases.

client/v0.3.0

0.3.0

New

• client: ImageListOptions now supports Identity field. When set, the response includes manifest summaries and may include an Identity field for each manifest with trusted identity and origin information. moby/moby#52030

Bug fixes and enhancements

• Lower minimum API version from v1.44. to v1.40 (Docker 19.03). moby/moby#52067
• client/pkg/jsonmessage.DisplayJSONMessages now accepts an iter.Seq2[jsonstream.Message, error] instead of only a JSONMessagesStream,. moby/moby#52062

Changelog

Sourced from github.com/moby/moby/client's changelog.

0.3.0 (2013-05-06)

• Registry: Implement the new registry
• Documentation: new example: sharing data between 2 couchdb databases

• Runtime: Fix the command existance check
• Runtime: strings.Split may return an empty string on no match
• Runtime: Fix an index out of range crash if cgroup memory is not

• Documentation: Various improvments
• Vagrant: Use only one deb line in /etc/apt

Commits

• 4f202cd Bumped version to 0.3.0
• da01dd3 Merge remote-tracking branch 'origin/registry-update'
• 09f1cba Fixed imports
• c9994ed Moved the Debugf message in a registry to a more useful place
• b0e076f Add output to checksums, code cleaning
• 00266df Fixed public pull + Added some verbosity about what is happening
• 3febeb9 Added help message to invite to login when getting a 401
• bcdf030 Fixed pulling repositories from library
• a372f98 Switching to prod index server
• d985050 gofmt pass
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[veerendra2]

Superseded by #12 which includes these dependency bumps along with the fix for the deprecated Infisical Secrets().List() API that was causing the lint failure.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml