Skip to content

chore(deps): bump github.com/containerd/containerd from 1.7.30 to 1.7.32 in /src/jetstream#5359

Closed
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/go_modules/src/jetstream/github.com/containerd/containerd-1.7.32
Closed

chore(deps): bump github.com/containerd/containerd from 1.7.30 to 1.7.32 in /src/jetstream#5359
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/go_modules/src/jetstream/github.com/containerd/containerd-1.7.32

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 21, 2026
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps github.com/containerd/containerd from 1.7.30 to 1.7.32.

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.32

Welcome to the v1.7.32 release of containerd!


The thirty-second patch release for containerd 1.7 contains various fixes and updates including a security patch.

  • containerd

  • Allow hosts.toml to contain only root-level fields without an explicit [host] section (#10028)

  • Fix handling of out-of-range USER values in OCI spec to avoid unexpected username/group lookups (#13450)

  • Apply hardening to block AF_ALG in default socket policy (#13406)

  • Support both "volatile" and "fsync=volatile" mount options for volatile snapshotter (#13299)

  • Set AppArmor abi conditionally to support versions < 3.0 (#13273)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

  • Maksym Pavlenko
  • Chris Henzie
  • Derek McGowan
  • Paweł Gronowski
  • Samuel Karp
  • Wei Fu
  • Brad Davidson
  • Brian Goff
  • LEI WANG
  • Phil Estes
  • bc87d865c Prepare release notes for v1.7.32
  • oci: return explicit error for out-of-range USER values (#13450)
    • 503f47946 oci: return explicit error for out-of-range USER values
  • seccomp: Block AF_ALG in default socket policy (#13406)
    • e55b747d3 seccomp: Block AF_ALG in default socket policy
    • 4627a65f8 seccomp: Document socket rule scope and socketcall limitation
  • Fix issue with empty host tree in hosts.toml (#10028)
    • 24007441d Fix error parsing hosts.toml without any host tree
  • Support both styles of volatile mount option (#13299)
    • 940733149 Support both styles of volatile mount option
  • apparmor: Set abi conditionally (#13273)
  • Add GitHub Action for k8s node e2e tests (#13258)
    • 0db1e143a Add GitHub Action for k8s node e2e tests
  • Update release process after 1.7 (#13236)
    • 3223a75c2 Update for latest updates to release tool

... (truncated)

Commits
  • 180a7b7 Merge pull request #13452 from samuelkarp/prepare-1.7.32
  • bc87d86 Prepare release notes for v1.7.32
  • 6a05ddd Merge pull request #13450 from samuelkarp/oci-withuser-errrange-1.7
  • 9c3d01b Merge pull request #13406 from k8s-infra-cherrypick-robot/cherry-pick-13327-t...
  • e55b747 seccomp: Block AF_ALG in default socket policy
  • 4627a65 seccomp: Document socket rule scope and socketcall limitation
  • 33d9e24 Merge pull request #10028 from brandond/fix-hosts-toml
  • 503f479 oci: return explicit error for out-of-range USER values
  • 4393e22 Merge pull request #13299 from chrishenzie/release/1.7-volatile
  • 9407331 Support both styles of volatile mount option
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels May 21, 2026
@dependabot dependabot Bot changed the title Bump github.com/containerd/containerd from 1.7.30 to 1.7.32 in /src/jetstream chore(deps): bump github.com/containerd/containerd from 1.7.30 to 1.7.32 in /src/jetstream May 23, 2026
@dependabot dependabot Bot force-pushed the dependabot/go_modules/src/jetstream/github.com/containerd/containerd-1.7.32 branch from 45ec10b to 6bf1b52 Compare May 23, 2026 07:08
norman-abramovitz
norman-abramovitz reviewed May 24, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@norman-abramovitz norman-abramovitz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dependabot rebase

@dependabot
chore(deps): bump github.com/containerd/containerd in /src/jetstream
74304fa 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.7.30 to 1.7.32.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](containerd/containerd@v1.7.30...v1.7.32)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-version: 1.7.32
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/src/jetstream/github.com/containerd/containerd-1.7.32 branch from 6bf1b52 to 74304fa Compare May 24, 2026 03:10
@nabramovitz nabramovitz mentioned this pull request May 24, 2026
Merged
2 tasks
@nabramovitz
Copy link
Copy Markdown
Contributor

nabramovitz commented May 24, 2026

This PR's Backend Tests failure is caused by the bot's commit stripping github.com/containerd/containerd from go.mod/go.sum without adding v1.7.32, plus it incorrectly removed four in-repo replace-managed require entries (plugins/cfapppush, plugins/kubernetes, plugins/monocular, plugins/kubernetes/auth). CI fails with go.mod needs tidy.

I've opened #5369 with a clean replay branched off current develop — surgical 3-line diff doing what the title claims. Maintainer can close this in favour of #5369 once that lands.

norman-abramovitz pushed a commit that referenced this pull request May 24, 2026
@nabramovitz @norman-abramovitz
chore(deps): bump github.com/containerd/containerd from 1.7.30 to 1.7…
bbebd87 
….32 in /src/jetstream

Re-do of PR #5359 — the original dependabot commit stripped
github.com/containerd/containerd from go.mod / go.sum without
adding v1.7.32, leaving CI failing with "go.mod needs tidy".

This is a clean replay: `go get github.com/containerd/containerd@v1.7.32`
plus `go mod tidy` against the current develop tip. Updates one
indirect dependency line in go.mod and the matching pair of hashes
in go.sum. No transitive deps moved. `go build ./...` passes.
@norman-abramovitz
Copy link
Copy Markdown
Contributor

norman-abramovitz commented May 24, 2026

closing without applying because PR #5369 replaces this PR

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 24, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/go_modules/src/jetstream/github.com/containerd/containerd-1.7.32 branch May 24, 2026 09:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@norman-abramovitz norman-abramovitz norman-abramovitz approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nabramovitz @norman-abramovitz