docker: bump charmbracelet/vhs from v0.10.0 to v0.11.0 in /docker in the docker-minor-and-patch group

[dependabot]

Bumps the docker-minor-and-patch group in /docker with 1 update: charmbracelet/vhs.

Updates charmbracelet/vhs from v0.10.0 to v0.11.0

Release notes

Sourced from charmbracelet/vhs's releases.

v0.11.0

Scroll? More keys?

This release includes two nice features that include scrolling the viewport and supporting Ctrl+<arrow> keys. You can now use the ScrollUp and ScrollDown commands to scroll the viewport. VHS will also now recognize Ctrl+Left/Up/Right/Down keys.

Thanks to @​joshka-oai and @​sectore for their gracious contributions and support 🙂

Changelog

New!

• bae3eb0b10c1adde7532d58e4e3cbc838cd11be7: feat: add viewport scroll commands to tapes (#707) (@​joshka-oai)
• 9e2797694769694ab9971bab0e615d445ffc6786: feat: support ctrl + arrow keys (#673) (@​sectore)

Fixed

• 55f824abd4a73db1aec1c1569ae77485c355004b: fix(docker): remove ubuntu font which is no longer available in alpine (@​aymanbagabas)
• b8a1d8603178adf3aa8d8df26db6e74efbbf9a04: fix(docker): update env variables to use '=' (@​aymanbagabas)
• 9c80359a6ddfe5f54b7f92b9e981876263b04ae9: fix: lint issues (@​aymanbagabas)

Other stuff

• 9efc235e9f862d3c95e9b01e9b513bd56addfe14: Fix lexer regex escaping (#678) (@​raphamorim)
• 0a14d2caab29ed20584752e1f5d0e3ae781406a0: ci: sync dependabot config (#660) (@​charmcli)
• 0bb22516def6b1c364c4fb557d45ad6b53e00b6f: ci: sync dependabot config (#668) (@​charmcli)
• a94d7259419539c552186eb7893afc2166d66ff9: ci: sync golangci-lint config (@​caarlos0)
• be4921999fba580003bcef2f18db28ce6318c787: ci: sync golangci-lint config (#650) (@​github-actions[bot])

---

First, download the checksums.txt file and the checksums.txt.sigstore.json file files, for example, with wget:

wget 'https://github.com/charmbracelet/vhs/releases/download/v0.11.0/checksums.txt'
wget 'https://github.com/charmbracelet/vhs/releases/download/v0.11.0/checksums.txt.sigstore.json'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --bundle 'checksums.txt.sigstore.json' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

... (truncated)

Commits

• c6af91a chore(deps): bump the all group across 1 directory with 2 updates (#720)
• 9e27976 feat: support ctrl + arrow keys (#673)
• bae3eb0 feat: add viewport scroll commands to tapes (#707)
• 9c80359 fix: lint issues
• 55f824a fix(docker): remove ubuntu font which is no longer available in alpine
• b8a1d86 fix(docker): update env variables to use '='
• 7d38877 chore: fix lint issues
• a94d725 ci: sync golangci-lint config
• d95e606 chore: bump minimum Go version to 1.25.8 to fix vulns
• 9fcf0fa chore: bump minimum Go version to 1.24.13
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: ci, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.