⬆️ Bump github.com/docker/docker from 25.0.6+incompatible to 27.2.1+incompatible in /core

[dependabot]

Bumps github.com/docker/docker from 25.0.6+incompatible to 27.2.1+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v27.2.1

27.2.1

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.2.1 milestone
• moby/moby, 27.2.1 milestone

Bug fixes and enhancements

• containerd image store: Fix non-container images being hidden in the docker image ls output. moby/moby#48402
• containerd image store: Improve docker pull error message when the image platform doesn't match. moby/moby#48415
• CLI: Fix issue causing docker login to not remove repository names from passed in registry addresses, resulting in credentials being stored under the wrong key. docker/cli#5385
• CLI: Fix issue that will sometimes cause the browser-login flow to fail if the CLI process is suspended and then resumed while waiting for the user to authenticate. docker/cli#5376
• CLI: docker login now returns an error instead of hanging if called non-interactively with --password or --password-stdin but without --user. docker/cli#5402

Packaging updates

• Update runc to v1.1.14, which contains a fix for CVE-2024-45310. moby/moby#48426
• Update Go runtime to 1.22.7. moby/moby#48433, docker/cli#5411, docker/docker-ce-packaging#1068

v27.2.0

27.2.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.2.0 milestone
• moby/moby, 27.2.0 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

New

• CLI: Add support for device-code flow login when authenticating to the official registry. docker/cli#5349
• containerd image store: docker image ls now supports --tree flag that shows a multiplatform-aware image list. This is experimental and may change at any time without any backwards compatibility. docker/cli#5353

API

• GET /images/json response now includes Manifests field, which contains information about the sub-manifests included in the image index. This includes things like platform-specific manifests and build attestations. The new field will only be populated if the request also sets the manifests query parameter to true.

[!WARNING]

This is experimental and may change at any time without any backward compatibility.

Bug fixes and enhancements

• CLI: Fix issue with remote contexts over SSH where the CLI would allocate a pseudoterminal when connecting to the remote host, which causes issues in rare situations. docker/cli#5351
• Fix an issue that prevented network creation with a --ip-range ending on a 64-bit boundary. moby/moby#48326

... (truncated)

Commits

• 8b539b8 Merge pull request #48433 from vvoland/48432-27.x
• 37bf6e8 update to go1.22.7
• fefdb1b Merge pull request #48430 from vvoland/48425-27.x
• 3a4c589 vendor: github.com/opencontainers/runc v1.1.14
• 6eeb414 Merge pull request #48426 from thaJeztah/27.x_backport_bump_runc_1.1.14
• 54af846 Merge pull request #48416 from thaJeztah/27.x_backport_update_go_1.22
• 10cf2d6 update runc binary to 1.1.14
• 7b86f40 Merge pull request #48423 from vvoland/48422-27.x
• 84cfcb0 docs/api: add documentation for API v1.47
• edeb6ba golangci-lint: temporarily disable G115: integer overflow conversion
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Qodana for Go

It seems all right 👌

No new problems were found according to the checks applied

☁️ View the detailed Qodana report

Contact Qodana team

Contact us at qodana-support@jetbrains.com

• Or via our issue tracker: https://jb.gg/qodana-issue
• Or share your feedback: https://jb.gg/qodana-discussions

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.