Bump github.com/docker/docker from 27.5.1+incompatible to 28.0.1+incompatible

[dependabot]

Bumps github.com/docker/docker from 27.5.1+incompatible to 28.0.1+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v28.0.1

28.0.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.0.1 milestone
• moby/moby, 28.0.1 milestone

Networking

• Remove dependency on kernel modules ip_set, ip_set_hash_net and netfilter_xt_set.
  • The dependency was introduced in release 28.0.0 but proved too disruptive. The iptables rules using these modules have been replaced. moby/moby#49530
• Allow daemon startup on a host with IPv6 disabled without requiring --ip6tables=false. moby/moby#49525
• Fix a bug that was causing containers with --restart=always and a published port already in use to restart in a tight loop. moby/moby#49507
• Fix an issue with Swarm ingress, caused by incorrect ordering of iptables rules. moby/moby#49538
• Fix creation of a swarm-scoped network from a --config-only network. moby/moby#49521
• Fix docker network inspect reporting an IPv6 gateway with CIDR suffix for a newly created network with no specific IPAM config, until a daemon restart. moby/moby#49520
• Improve the error reported when kernel modules ip_set, ip_set_hash_net and netilter_xt_set are not available. moby/moby#49524
• Move most of Docker's iptables rules out of the filter-FORWARD chain, so that other applications are free to append rules that must follow Docker's rules. moby/moby#49518
• Update --help output and man page lo state which options only apply to the default bridge network. moby/moby#49522

Bug fixes and enhancements

• Fix docker context create always returning an error when using the "skip-tls-verify" option. docker/cli#5850
• Fix shell completion suggesting IDs instead of names for services and nodes. docker/cli#5848
• Fix unintentionally printing exit status to standard error output when docker exec/run returns a non-zero status. docker/cli#5854
• Fix regression protocol "tcp" is not supported by the RootlessKit port driver "slirp4netns". moby/moby#49514
• containerd image store: Fix docker inspect not being able to show multi-platform images with missing layers for all platforms. moby/moby#49533
• containerd image store: Fix docker images --tree reporting wrong content size. moby/moby#49535
• Fix compilation on i386 moby/moby#49526

Packaging updates

• Update github.com/go-jose/go-jose/v4 to v4.0.5 to address. GHSA-c6gw-w398-hv78 / CVE-2025-27144 docker/cli#5867
• Update Buildx to v0.21.1. docker/docker-ce-packaging#1167
• Update Compose to v2.33.1. docker/docker-ce-packaging#1168

API

• containerd image store: Fix GET /images/json?manifests=1 not filling Manifests for index-only images. moby/moby#49533
• containerd image store: Fix GET /images/json and /images/<name>/json Size.Content field including the size of content that's not available locally. moby/moby#49535

v28.0.0

28.0.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.0.0 milestone

... (truncated)

Commits

• bbd0a17 Merge pull request #49538 from robmry/docker_ingress
• 8ae4858 Merge pull request #49545 from robmry/revert_check-config_ipset
• 1814363 Revert "contrib/check-config: add ipset related flags"
• 558da63 Jump to DOCKER-INGRESS from DOCKER-FORWARD
• f92fdfe Merge pull request #49530 from robmry/disable_ip_set
• 88bc9a3 Merge pull request #49535 from vvoland/c8d-fixcontentsize
• 76417bf Don't use ipset
• c35159e c8d/manifests: Fix Content size including missing content
• 0510499 Merge pull request #49533 from vvoland/c8d-inspectlist-indeximg
• 0274c63 Merge pull request #49518 from robmry/docker_forward_chain
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @jtgasper3.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[jtgasper3]

@dependabot squash and merge

…

On Sat, Mar 8, 2025 at 10:41 AM dependabot[bot] ***@***.***> wrote: Bumps github.com/docker/docker from 27.5.1+incompatible to 28.0.1+incompatible. Release notes *Sourced from github.com/docker/docker's releases <https://github.com/docker/docker/releases>.* v28.0.1 28.0.1 For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones: - docker/cli, 28.0.1 milestone <https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.0.1> - moby/moby, 28.0.1 milestone <https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.0.1> Networking - Remove dependency on kernel modules ip_set, ip_set_hash_net and netfilter_xt_set. - The dependency was introduced in release 28.0.0 but proved too disruptive. The iptables rules using these modules have been replaced. moby/moby#49530 <https://redirect.github.com/moby/moby/pull/49530> - Allow daemon startup on a host with IPv6 disabled without requiring --ip6tables=false. moby/moby#49525 <https://redirect.github.com/moby/moby/pull/49525> - Fix a bug that was causing containers with --restart=always and a published port already in use to restart in a tight loop. moby/moby#49507 <https://redirect.github.com/moby/moby/pull/49507> - Fix an issue with Swarm ingress, caused by incorrect ordering of iptables rules. moby/moby#49538 <https://redirect.github.com/moby/moby/pull/49538> - Fix creation of a swarm-scoped network from a --config-only network. moby/moby#49521 <https://redirect.github.com/moby/moby/pull/49521> - Fix docker network inspect reporting an IPv6 gateway with CIDR suffix for a newly created network with no specific IPAM config, until a daemon restart. moby/moby#49520 <https://redirect.github.com/moby/moby/pull/49520> - Improve the error reported when kernel modules ip_set, ip_set_hash_net and netilter_xt_set are not available. moby/moby#49524 <https://redirect.github.com/moby/moby/pull/49524> - Move most of Docker's iptables rules out of the filter-FORWARD chain, so that other applications are free to append rules that must follow Docker's rules. moby/moby#49518 <https://redirect.github.com/moby/moby/pull/49518> - Update --help output and man page lo state which options only apply to the default bridge network. moby/moby#49522 <https://redirect.github.com/moby/moby/pull/49522> Bug fixes and enhancements - Fix docker context create always returning an error when using the "skip-tls-verify" option. docker/cli#5850 <https://redirect.github.com/docker/cli/pull/5850> - Fix shell completion suggesting IDs instead of names for services and nodes. docker/cli#5848 <https://redirect.github.com/docker/cli/pull/5848> - Fix unintentionally printing exit status to standard error output when docker exec/run returns a non-zero status. docker/cli#5854 <https://redirect.github.com/docker/cli/pull/5854> - Fix regression protocol "tcp" is not supported by the RootlessKit port driver "slirp4netns". moby/moby#49514 <https://redirect.github.com/moby/moby/pull/49514> - containerd image store: Fix docker inspect not being able to show multi-platform images with missing layers for all platforms. moby/moby#49533 <https://redirect.github.com/moby/moby/pull/49533> - containerd image store: Fix docker images --tree reporting wrong content size. moby/moby#49535 <https://redirect.github.com/moby/moby/pull/49535> - Fix compilation on i386 moby/moby#49526 <https://redirect.github.com/moby/moby/pull/49526> Packaging updates - Update github.com/go-jose/go-jose/v4 to v4.0.5 to address. GHSA-c6gw-w398-hv78 <https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78> / CVE-2025-27144 <https://www.cve.org/CVERecord?id=CVE-2025-27144> docker/cli#5867 <https://redirect.github.com/docker/cli/pull/5867> - Update Buildx to v0.21.1 <https://github.com/docker/buildx/releases/tag/v0.21.1>. docker/docker-ce-packaging#1167 <https://redirect.github.com/docker/docker-ce-packaging/pull/1167> - Update Compose to v2.33.1 <https://github.com/docker/compose/releases/tag/v2.33.1>. docker/docker-ce-packaging#1168 <https://redirect.github.com/docker/docker-ce-packaging/pull/1168> API - containerd image store: Fix GET /images/json?manifests=1 not filling Manifests for index-only images. moby/moby#49533 <https://redirect.github.com/moby/moby/pull/49533> - containerd image store: Fix GET /images/json and /images/<name>/json Size.Content field including the size of content that's not available locally. moby/moby#49535 <https://redirect.github.com/moby/moby/pull/49535> v28.0.0 28.0.0 For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones: - docker/cli, 28.0.0 milestone <https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.0.0> ... (truncated) Commits - bbd0a17 <moby/moby@bbd0a17> Merge pull request #49538 <https://redirect.github.com/docker/docker/issues/49538> from robmry/docker_ingress - 8ae4858 <moby/moby@8ae4858> Merge pull request #49545 <https://redirect.github.com/docker/docker/issues/49545> from robmry/revert_check-config_ipset - 1814363 <moby/moby@1814363> Revert "contrib/check-config: add ipset related flags" - 558da63 <moby/moby@558da63> Jump to DOCKER-INGRESS from DOCKER-FORWARD - f92fdfe <moby/moby@f92fdfe> Merge pull request #49530 <https://redirect.github.com/docker/docker/issues/49530> from robmry/disable_ip_set - 88bc9a3 <moby/moby@88bc9a3> Merge pull request #49535 <https://redirect.github.com/docker/docker/issues/49535> from vvoland/c8d-fixcontentsize - 76417bf <moby/moby@76417bf> Don't use ipset - c35159e <moby/moby@c35159e> c8d/manifests: Fix Content size including missing content - 0510499 <moby/moby@0510499> Merge pull request #49533 <https://redirect.github.com/docker/docker/issues/49533> from vvoland/c8d-inspectlist-indeximg - 0274c63 <moby/moby@0274c63> Merge pull request #49518 <https://redirect.github.com/docker/docker/issues/49518> from robmry/docker_forward_chain - Additional commits viewable in compare view <moby/moby@v27.5.1...v28.0.1> [image: Dependabot compatibility score] <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. ------------------------------ Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - @dependabot rebase will rebase this PR - @dependabot recreate will recreate this PR, overwriting any edits that have been made to it - @dependabot merge will merge this PR after your CI passes on it - @dependabot squash and merge will squash and merge this PR after your CI passes on it - @dependabot cancel merge will cancel a previously requested merge and block automerging - @dependabot reopen will reopen this PR if it is closed - @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency - @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) ------------------------------ You can view, comment on, or merge this pull request online at: #9 Commit Summary - 1ba405f <1ba405f> Bump github.com/docker/docker File Changes (2 files <https://github.com/jtgasper3/swarm-visualizer/pull/9/files>) - *M* go.mod <https://github.com/jtgasper3/swarm-visualizer/pull/9/files#diff-33ef32bf6c23acb95f5902d7097b7a1d5128ca061167ec0716715b0b9eeaa5f6> (5) - *M* go.sum <https://github.com/jtgasper3/swarm-visualizer/pull/9/files#diff-3295df7234525439d778f1b282d146a4f1ff6b415248aaac074e8042d9f42d63> (4) Patch Links: - https://github.com/jtgasper3/swarm-visualizer/pull/9.patch - https://github.com/jtgasper3/swarm-visualizer/pull/9.diff — Reply to this email directly, view it on GitHub <#9>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAHZULGAVFOI5M2CSY3ACX32TM2WRAVCNFSM6AAAAABYTJ4RYWVHI2DSMVQWIX3LMV43ASLTON2WKOZSHEYDIOJVGY4TIMA> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>