Bump github.com/moby/buildkit from 0.8.0 to 0.10.1

[dependabot]

Bumps github.com/moby/buildkit from 0.8.0 to 0.10.1.

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.10.1

https://hub.docker.com/r/moby/buildkit

Notable changes

• Builtin Dockerfile frontend updated to 1.4.1
• Fix buildinfo still including attributes for passed named contexts even if no opt-in #2716
• Fix possible panic on printing progress groups #2763
• Fix exporting/extracting certain multi-platform images to Containerd image store #2755
• Fix sending correct User-Agent #2776
• Update Continuity and Containerd to v1.6.2. Fixes regression on pulling certain images with native snapshotter and possible deadlocks on error handling. #2764
• Update Stargz snapshotter to v0.11.3. Fixes possible missing file issue #2732

v0.10.0

Welcome to the v0.10.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Notable changes:

• New LLB operation MergeOp allows efficiently chaining groups of layers together without the need to access the individual files. This allows to build layers separately and merge them together later without making them depend on each other. MergeOp can work with remote references, for example, it can be used to rebase an image on top of a newer base image without ever pulling or pushing any layers. #2335 #2614

• New LLB operation DiffOp allows computing a difference between two points in LLB graph containing the files that have been added and whiteouts for files that have been removed. When DiffOp inputs are based on the same layer chain DiffOp can work directly with remote layer references and doesn't need to pull layers to access individual files. Files of the DiffOp result can be accessed directly or used as input to a MergeOp. #2517 #2434 #2563

• New build information structures are generated with build metadata that allows you to see all the sources (images, git repositories) that were used by the build with their exact versions and also the configuration that was passed to the build. This information can also be embedded into the image configuration if one is generated. Build sources are added to the image config by default. The build configuration is not currently embedded by default to avoid credential leaks in poorly written Dockerfiles but the intention is to enable it in the future. #2311 #2476 #2654 #2657 #2645 #2684

• Empty layer removal feature on exporting images has been removed because it caused history to change after remote cache import #2651

• When possible, blobs are now created with native OverlayFS differ with increased performance. This Differ can directly use files in OverlayFS upper directory instead of scanning for differences between snapshots. #2181 #2491 #2480 #2388 #2390 #2662

• Frontends can now send warning messages that are shown on the progressbar. Warnings can be associated with specific LLB vertex and contain additional information like URL to documentation or location in original source code. #2482 #2498

• Layer blobs can now be exported in Zstd compression format with -o compression=zstd. Zstd provides smaller files and faster decompression than gzip. #2344

• Layers can now be exported with eStargz compression type -o compression=estargz #2246 #2603 #2352 #2674

• A compression level can be set with -o compression-level=N to configure the compressor when new layer blobs are created. This can be used to create smaller blobs by spending more time on the compression step. #2591

• Remote cache inlined in image configuration now supports arbitrary configuration of image layers as cache sources #2501

• Enable eStargz-based lazy pulling on registry cache importer #2648

• Support exporting non-distributable blob descriptors. -o prefer-nondist-layers=true exports layer with a non-distributable mediatype and external URL if such URL was provided when blob was pulled from the remote registry. Descriptors with non-distributable mediatypes are skipped on push. #2561

• Build metadata now provides access to OCI descriptor of the result if one was generated. Previously only digest of the descriptor could be accessed. #2610

... (truncated)

Commits

• 5bc9c7b Merge pull request #2790 from tonistiigi/k8s-examples-update-v0.10
• 58b5892 examples/kubernetes: replace deprecated seccomp annotations with securityContext
• 939c71d Merge pull request #2780 from tonistiigi/cherry-picks-v0.10.1
• 42f892f vendor: update containerd and continuity
• 6ee29df vendor: github.com/containerd/containerd v1.6.2
• 6221947 Dockerfile: update containerd to v1.6.2, v1.5.11
• 91dcf6e version: fix parsing user-agent version
• beaba19 vendor: update go-actions-cache to 0bdeb6e
• 40e5290 llb: use oci type for image config unmarshal
• 05cae1d dockerfile: fix named context input platform resolution
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #56.