Bump the prod-dependencies group across 1 directory with 3 updates

[dependabot]

Bumps the prod-dependencies group with 3 updates in the / directory: github.com/docker/cli, github.com/google/go-containerregistry and github.com/operator-framework/operator-manifest-tools.

Updates github.com/docker/cli from 29.0.1+incompatible to 29.1.0+incompatible

Commits

• 360952c Merge pull request #6680 from thaJeztah/bump_modules
• 8fc15ea Merge pull request #6579 from dvdksn/doc-daemon-buildc-example
• 1abfbf2 vendor: github.com/moby/moby/client v0.2.1
• e0d30db docs: update buildgc example config to use new buildkit v0.17 options
• 5691ade Merge pull request #6682 from thaJeztah/bump_dct_deps
• 848dcad Merge pull request #6681 from thaJeztah/bump_x_deps2
• 6a0099b cmd/docker-trust: bump golang.org/x/crypto v0.45.0
• c90166f cmd/docker-trust: update dependencies
• ac5e886 vendor: golang.org/x/net v0.47.0
• 3ec4146 vendor: golang.org/x/term v0.37.0
• Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.6 to 0.20.7

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.7

What's Changed

• Fix ArgsEscaped lint directive by @​Subserial in google/go-containerregistry#2137
• transport: Fix broken links to distribution docs by @​guzalv in google/go-containerregistry#2136
• fix(remote): using customized retry predicate func if provided by @​derekhjray in google/go-containerregistry#2135
• Adding docker file by @​HassanJasim in google/go-containerregistry#2138
• crane: Add timestamp to flatten layer by @​Stephanie0829 in google/go-containerregistry#2117
• feat(remote): pass retryBackoff option to transport by @​aslafy-z in google/go-containerregistry#1628
• Expose clobber refusal error by @​pjbgf in google/go-containerregistry#2146
• Build artifacts for riscv64 by @​ffgan in google/go-containerregistry#2159
• Update dependencies and deprecate DockerVersion field by @​Subserial in google/go-containerregistry#2164

New Contributors

• @​guzalv made their first contribution in google/go-containerregistry#2136
• @​derekhjray made their first contribution in google/go-containerregistry#2135
• @​HassanJasim made their first contribution in google/go-containerregistry#2138
• @​Stephanie0829 made their first contribution in google/go-containerregistry#2117
• @​pjbgf made their first contribution in google/go-containerregistry#2146
• @​ffgan made their first contribution in google/go-containerregistry#2159

Full Changelog: google/go-containerregistry@v0.20.6...v0.20.7

Commits

• e075f20 go mod tidy on dependabot update (#2171)
• 45aacf4 Bump the actions group across 1 directory with 3 updates (#2170)
• 073b936 Update dependencies and deprecate DockerVersion field (#2164)
• 390dacd Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (#2163)
• ca44d47 Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (#2162)
• 999cc1f Bump github.com/docker/docker (#2161)
• d1809c8 Build artifacts for riscv64 (#2159)
• 7471efd Bump the auxiliary-deps group across 3 directories with 4 updates (#2156)
• 2bb5bb0 Bump the actions group with 5 updates (#2155)
• 16371c1 Remove manual vendor setting for dependabot (#2151)
• Additional commits viewable in compare view

Updates github.com/operator-framework/operator-manifest-tools from 0.10.0 to 0.11.0

Release notes

Sourced from github.com/operator-framework/operator-manifest-tools's releases.

v0.11.0

Changelog

• 1bf69e22cd6a02982e0924ac306a1df854d2cbc9 Merge pull request #87 from operator-framework/dependabot/go_modules/k8s.io/apimachinery-0.33.3
• b9503acc7ec87d052d31c000dfbda0ed528cc803 Merge pull request #88 from operator-framework/dependabot/go_modules/github.com/onsi/gomega-1.38.0
• 3351e46b5c9c47c6b978682dd84e8db62c05c97d Merge pull request #89 from operator-framework/dependabot/go_modules/k8s.io/apimachinery-0.33.4
• 90e5ea8bb770b76dc5c27f4f26660ca6c24d6aae Merge pull request #90 from operator-framework/dependabot/go_modules/github.com/stretchr/testify-1.11.0
• 1e9f1f74feff23bfd3afa219424971fc5ee0caa0 Merge pull request #92 from operator-framework/dependabot/go_modules/github.com/onsi/gomega-1.38.2
• ac78f5a14c247b7fa7a1a92ce9ec3c83de2de789 Merge pull request #93 from operator-framework/dependabot/go_modules/github.com/stretchr/testify-1.11.1
• 74721fd2f66a12f1532e1ede2ce417b19daf2dd0 Merge pull request #95 from operator-framework/dependabot/go_modules/github.com/spf13/cobra-1.10.1
• a7e248306a69f0c18df5aa8264dc311cd0e447bb Merge pull request #96 from operator-framework/dependabot/go_modules/k8s.io/apimachinery-0.34.1
• 9687acb8ca36b7ef60a5a261d4874b57187a5d63 Merge pull request #97 from operator-framework/dependabot/go_modules/k8s.io/apimachinery-0.34.2
• 085cee7dc3c82ecfc6eabcb3182fda40ac7c9f68 Merge pull request #98 from acornett21/update_go
• 99f800f03d78f7f379013bd18086e3e146d08b9d Merge pull request #99 from acornett21/fix_go_release
• ce20d9c07bfacce67002aff34813479be75afa30 chore(deps): bump github.com/onsi/gomega from 1.37.0 to 1.38.0
• 729f8ed2f41d6072efb485de5090a53d36a652fe chore(deps): bump github.com/onsi/gomega from 1.38.0 to 1.38.2
• c5797eddbb1add72aad4cc73bae591851b9c4128 chore(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1
• 7e7364c473be4c5ce7caa0a04e742b0dd6566bdd chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0
• 8a672ddbe1c0dd4d8f971c366e836d4e82bd95e1 chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1
• 2dd61a2c15b17cc6306fd8751e095a3aa14be9f9 chore(deps): bump k8s.io/apimachinery from 0.33.2 to 0.33.3
• def9c72e5da8c0a39346f8e9678bdcd2f3262562 chore(deps): bump k8s.io/apimachinery from 0.33.3 to 0.33.4
• 2ad146628d2d92b4118f476df09fe18f8157f81d chore(deps): bump k8s.io/apimachinery from 0.33.4 to 0.34.1
• 8bee066ca9176e2343e8b631679a455ffb5aa8e0 chore(deps): bump k8s.io/apimachinery from 0.34.1 to 0.34.2
• d7feb399d48f17fc4bbc8afcbd1ff1eb58d30619 switching from --rm-dist to --clean for goreleaser arg
• 3ca0d0d0d95c14a2f944921c7cbc46a9f5a6d43b updating go to 1.24.6

Commits

• 99f800f Merge pull request #99 from acornett21/fix_go_release
• d7feb39 switching from --rm-dist to --clean for goreleaser arg
• 085cee7 Merge pull request #98 from acornett21/update_go
• 3ca0d0d updating go to 1.24.6
• 9687acb Merge pull request #97 from operator-framework/dependabot/go_modules/k8s.io/a...
• 8bee066 chore(deps): bump k8s.io/apimachinery from 0.34.1 to 0.34.2
• a7e2483 Merge pull request #96 from operator-framework/dependabot/go_modules/k8s.io/a...
• 2ad1466 chore(deps): bump k8s.io/apimachinery from 0.33.4 to 0.34.1
• 74721fd Merge pull request #95 from operator-framework/dependabot/go_modules/github.c...
• c5797ed chore(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign bcrochet for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a github.com member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[dcibot]

from change #1336:

• SUCCESS https://www.distributed-ci.io/jobs/97802a57-099d-42e5-be7f-d2a9073b4236/jobStates