Sebastiaan van Stijn
|
1cd4b54810
|
vendor: github.com/docker/distribution v2.8.2
CI
- Dockerfile: fix filenames of artifacts
Bugfixes
- Fix panic in inmemory driver
- Add code to handle pagination of parts. Fixes max layer size of 10GB bug
- Parse http forbidden as denied
- Revert "registry/client: set Accept: identity header when getting layers
Runtime
- Update to go1.19.9
- Dockerfile: update xx to v1.2.1 ([#3907](https://github.com/distribution/distribution/pull/3907))
Security
- Fix [CVE-2022-28391](https://www.cve.org/CVERecord?id=CVE-2022-28391) by bumping alpine from 3.14 to 3.16
- Fix [CVE-2023-2253](https://www.cve.org/CVERecord?id=CVE-2023-2253) runaway allocation on /v2/_catalog [`521ea3d9`](521ea3d973)
full diff: https://github.com/docker/distribution/compare/v2.8.1...v2.8.2-beta.2
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
|
3 years ago |
|
Sebastiaan van Stijn
|
c0f31349a6
|
vendor: github.com/docker/distribution v2.8.1
no significant changes to code we use, but the v2.8.0 module was borked
full diff: https://github.com/docker/distribution/compare/v2.8.0...v2.8.1
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
|
4 years ago |
|
dependabot[bot]
|
542759ea31
|
build(deps): bump github.com/docker/distribution
Bumps [github.com/docker/distribution](https://github.com/docker/distribution) from 2.7.1+incompatible to 2.8.0+incompatible.
- [Release notes](https://github.com/docker/distribution/releases)
- [Commits](https://github.com/docker/distribution/compare/v2.7.1...v2.8.0)
---
updated-dependencies:
- dependency-name: github.com/docker/distribution
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
4 years ago |
|
Tonis Tiigi
|
fd8fbf21e6
|
vendor: initial vendor
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
|
7 years ago |