build(deps): bump github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1 #12857

dependabot · 2025-05-21T09:41:55Z

Bumps github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1.

Release notes

Sourced from github.com/containerd/containerd/v2's releases.

containerd 2.1.1

Welcome to the v2.1.1 release of containerd!

The first patch release for containerd 2.1 fixes a critical vulnernability (CVE-2025-47290) which was first introduced in 2.1.0. See the Github Advisory for more details. This release also contains a few smaller updates and bux fixes.

Highlights

Image Storage

Fix erofs media type handling (#11855)

Runtime

Reduce shim cleanup log level and add more context (#11831)

Deprecations

Update removal version for deprecated registry config fields (#11835)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

Akihiro Suda

Samuel Karp

Derek McGowan

Gao Xiang

Akhil Mohan

Chris Henzie

Phil Estes

Sebastiaan van Stijn

ningmingxiao

Changes

cb1076646 Merge commit from fork

216667ba0 Prepare release notes for 2.1.1

ac00b8e61 Revert "perf(applyNaive): avoid walking the tree for each file in the same directory"

build(deps): bump github.com/Microsoft/hcsshim (#11847)

444ca17cd update runhcs version to v0.13.0

0684f1c44 build(deps): bump github.com/Microsoft/hcsshim

Fix erofs media type handling (#11855)

e1817a401 docs/snapshotters/erofs.md: a tip for improved performance

2168cb92c erofs-differ: fix EROFS native image support

Reduce shim cleanup log level and add more context (#11831)

... (truncated)

Commits

cb10766 Merge commit from fork
216667b Prepare release notes for 2.1.1
c6f9835 Merge pull request #11847 from akhilerm/2.1-hcsshim-update
837aef0 Merge pull request #11855 from k8s-infra-cherrypick-robot/cherry-pick-11851-t...
e1817a4 docs/snapshotters/erofs.md: a tip for improved performance
2168cb9 erofs-differ: fix EROFS native image support
444ca17 update runhcs version to v0.13.0
0684f1c build(deps): bump github.com/Microsoft/hcsshim
ac00b8e Revert "perf(applyNaive): avoid walking the tree for each file in the same di...
dc795bf Merge pull request #11831 from k8s-infra-cherrypick-robot/cherry-pick-11815-t...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) from 2.1.0 to 2.1.1. - [Release notes](https://github.com/containerd/containerd/releases) - [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md) - [Commits](containerd/containerd@v2.1.0...v2.1.1) --- updated-dependencies: - dependency-name: github.com/containerd/containerd/v2 dependency-version: 2.1.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

This MR contains the following updates: | Package | Update | Change | |---|---|---| | [docker/compose](https://github.com/docker/compose) | patch | `v2.36.1` -> `v2.36.2` | MR created with the help of [el-capitano/tools/renovate-bot](https://gitlab.com/el-capitano/tools/renovate-bot). **Proposed changes to behavior should be submitted there as MRs.** --- ### Release Notes <details> <summary>docker/compose (docker/compose)</summary> ### [`v2.36.2`](https://github.com/docker/compose/releases/tag/v2.36.2) [Compare Source](docker/compose@v2.36.1...v2.36.2) #### What's Changed ##### 🐛 Fixes - Run ContainerStart sequentially by [@ndeloof](https://github.com/ndeloof) in docker/compose#12851 - Only use attestation when building image outside the development inner loop by [@glours](https://github.com/glours) in docker/compose#12853 - Report error (re)creating container by [@ndeloof](https://github.com/ndeloof) in docker/compose#12859 - Fix `up --build` with additional_context dependency by [@ndeloof](https://github.com/ndeloof) in docker/compose#12863 ##### 🔧 Internal - Add example provider implementation by [@ndeloof](https://github.com/ndeloof) in docker/compose#12848 - Add `up --build` e2e test by [@ndeloof](https://github.com/ndeloof) in docker/compose#12864 ##### ⚙️ Dependencies - Build(deps): bump github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1 by [@dependabot](https://github.com/dependabot) in docker/compose#12857 - Bump compose-go to v2.6.4 by [@glours](https://github.com/glours) in docker/compose#12867 - Bump buildkit v0.22.0 and buildx v0.24.0 by [@glours](https://github.com/glours) in docker/compose#12868 **Full Changelog**: docker/compose@v2.36.1...v2.36.2 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever MR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this MR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this MR, check this box --- This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels May 21, 2025

dependabot bot requested a review from a team as a code owner May 21, 2025 09:41

dependabot bot requested review from ndeloof and glours May 21, 2025 09:41

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels May 21, 2025

glours approved these changes May 21, 2025

View reviewed changes

glours merged commit 5c74f07 into main May 21, 2025
27 checks passed

glours deleted the dependabot/go_modules/github.com/containerd/containerd/v2-2.1.1 branch May 21, 2025 10:04

BrewTestBot mentioned this pull request May 23, 2025

docker-compose 2.36.2 Homebrew/homebrew-core#224524

Merged

rancherbot mentioned this pull request May 23, 2025

rddepman: bump dockerCompose from 2.36.1 to 2.36.2 rancher-sandbox/rancher-desktop#8668

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1 #12857

build(deps): bump github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1 #12857

Uh oh!

dependabot bot commented on behalf of github May 21, 2025

Uh oh!

Uh oh!

Uh oh!

build(deps): bump github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1 #12857

build(deps): bump github.com/containerd/containerd/v2 from 2.1.0 to 2.1.1 #12857

Uh oh!

Conversation

dependabot bot commented on behalf of github May 21, 2025

containerd 2.1.1

Highlights

Image Storage

Runtime

Deprecations

Contributors

Changes

Uh oh!

Uh oh!

Uh oh!