Bump github.com/docker/docker from 1.13.1 to 20.10.19+incompatible

[dependabot]

Bumps github.com/docker/docker from 1.13.1 to 20.10.19+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v20.10.19

This release of Docker Engine comes with some bug-fixes, and an updated version of Docker Compose.

Builder

• Fix an issue that could result in a panic during docker builder prune or docker system prune moby/moby#44122.

Daemon

• Fix an bug where using docker volume prune would remove volumes that were still in use if the daemon was running with "live restore" and was restarted moby/moby#44238.

Packaging

• Update Docker Compose to v2.11.2.
• Update Go runtime to 1.18.7, which contains fixes for CVE-2022-2879, CVE-2022-2880, and CVE-2022-41715.

v20.10.18

This release of Docker Engine comes with a fix for a low-severity security issue, some minor bug fixes, and updated versions of Docker Compose, Docker Buildx, containerd, and runc.

Client

• Add Bash completion for Docker Compose docker/cli#3752.

Builder

• Fix an issue where file-capabilities were not preserved during build moby/moby#43876.
• Fix an issue that could result in a panic caused by a concurrent map read and map write moby/moby#44067

Daemon

• Fix a security vulnerability relating to supplementary group permissions, which could allow a container process to bypass primary group restrictions within the container CVE-2022-36109, GHSA-rc4r-wh2q-q6c4.
• seccomp: add support for Landlock syscalls in default policy moby/moby#43991.
• seccomp: update default policy to support new syscalls introduced in kernel 5.12 - 5.16 moby/moby#43991.
• Fix an issue where cache lookup for image manifests would fail, resulting in a redundant round-trip to the image registry moby/moby#44109.
• Fix an issue where exec processes and healthchecks were not terminated when they timed out moby/moby#44018.

Packaging

• Update Docker Buildx to v0.9.1.

... (truncated)

Changelog

Sourced from github.com/docker/docker's changelog.

Changelog

Items starting with DEPRECATE are important deprecation notices. For more information on the list of deprecated flags and APIs please have a look at https://docs.docker.com/engine/deprecated/ where target removal dates can also be found.

17.03.2-ce (2017-05-29)

Networking

• Fix a concurrency issue preventing network creation #33273

Runtime

• Relabel secrets path to avoid a Permission Denied on selinux enabled systems #33236 (ref #32529
• Fix cases where local volume were not properly relabeled if needed #33236 (ref #29428)
• Fix an issue while upgrading if a plugin rootfs was still mounted #33236 (ref #32525)
• Fix an issue where volume wouldn't default to the rprivate propagation mode #33236 (ref #32851)
• Fix a panic that could occur when a volume driver could not be retrieved #33236 (ref #32347)

• Add a warning in docker info when the overlay or overlay2 graphdriver is used on a filesystem without d_type support #33236 (ref #31290)

• Fix an issue with backporting mount spec to older volumes #33207
• Fix issue where a failed unmount can lead to data loss on local volume remove #33120

Swarm Mode

• Fix a case where tasks could get killed unexpectedly #33118
• Fix an issue preventing to deploy services if the registry cannot be reached despite the needed images being locally present #33117

17.05.0-ce (2017-05-04)

Builder

• Add multi-stage build support #31257 #32063
• Allow using build-time args (ARG) in FROM #31352
• Add an option for specifying build target #32496

• Accept -f - to read Dockerfile from stdin, but use local context for building #31236
• The values of default build time arguments (e.g HTTP_PROXY) are no longer displayed in docker image history unless a corresponding ARG instruction is written in the Dockerfile. #31584

• Fix setting command if a custom shell is used in a parent image #32236
• Fix docker build --label when the label includes single quotes and a space #31750

Client

• Add --mount flag to docker run and docker create #32251
• Add --type=secret to docker inspect #32124
• Add --format option to docker secret ls #31552
• Add --filter option to docker secret ls #30810
• Add --filter scope=<swarm|local> to docker network ls #31529
• Add --cpus support to docker update #31148
• Add label filter to docker system prune and other prune commands #30740

... (truncated)

Commits

• c964641 Merge pull request #44122 from thaJeztah/20.10_bump_buildkit
• 3bb9973 Merge pull request #44127 from thaJeztah/20.10_backport_image_spec_no_literal
• 435c40c Merge pull request #44247 from thaJeztah/20.10_bump_go_1.18.7
• 11bdbf4 [20.10] Update to go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022...
• 35eaf7e Merge pull request #44238 from cpuguy83/20.10_fix_restore_volumerefs
• 66ddb7f Fix live-restore w/ restart policies + volume refs
• f219cb5 Merge pull request #44218 from thaJeztah/20.10_backport_more_robust_rootless
• c003392 contrib: make dockerd-rootless-setuptool.sh more robust
• 53313be docker-rootless-setuptools.sh: use context after install
• 4163c55 Merge pull request #44202 from crazy-max/20.10_backport_api-fix-logo
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Dependabot tried to add @senorprogrammer as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/sourcegraph-testing/wtf/pulls/28/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the sourcegraph-testing/wtf repository. // See: https://docs.github.com/rest/reference/pulls#request-reviewers-for-a-pull-request

[dependabot]

Superseded by #35.