From bba4ee2be7fa0f16b682aceef3500f608f5bf18e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 8 Feb 2024 10:22:12 -0300
Subject: [PATCH] chore(deps): bump github.com/distribution/distribution/v3
 from 3.0.0-20221021092657-c47a966fded8 to 3.0.0-alpha.1 (#4604)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps
[github.com/distribution/distribution/v3](https://github.com/distribution/distribution)
from 3.0.0-20221021092657-c47a966fded8 to 3.0.0-alpha.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/distribution/distribution/releases">github.com/distribution/distribution/v3's
releases</a>.</em></p>
<blockquote>
<h2>v3.0.0-alpha.1</h2>
<p>This is the first major release in years!</p>
<p>It's an accumulation of effort that's bringing major improvements in
performance, security and general code quality!</p>
<p>See the abridged changelog below and the full release log <a
href="https://github.com/distribution/distribution/blob/576d93fee39c22ef1e4735d932ccef32ee49f7fd/releases/v3.0.0.toml">here</a>.</p>
<h3>Deprecations</h3>
<ul>
<li>Image Manifest v2 Schema v1</li>
<li><code>oss</code> and <code>swift</code> storage drivers</li>
<li><a
href="https://github.com/docker/libtrust"><code>docker/libtrust</code></a>
has been replaced with <a
href="https://github.com/go-jose/go-jose"><code>go-jose/go-jose</code></a></li>
<li><code>reference</code> package has been moved to a dedicated
repository (see <a
href="https://github.com/distribution/reference">here</a>)</li>
<li><code>client</code> is no longer supported as a standalone
package</li>
</ul>
<h3>Notable Changes</h3>
<ul>
<li><code>reference</code> package has been moved to its own dedicated
<a href="https://github.com/distribution/reference">repository</a></li>
<li>Go module has changed from <code>docker/distribution</code> to
<code>distribution/distribution/v3</code></li>
<li>Major performance improvements across all supported storage
drivers</li>
<li>Major dependencies updates (see the full list below)</li>
<li>Online documentation is available at <a
href="https://distribution.github.io/distribution/">https://distribution.github.io/distribution/</a></li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>default autoredirect to false by <a
href="https://github.com/davidswu"><code>@​davidswu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2800">distribution/distribution#2800</a></li>
<li>Add docs for autoredirect config parameter by <a
href="https://github.com/caervs"><code>@​caervs</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2801">distribution/distribution#2801</a></li>
<li>Registry - make minimum TLS version user configurable by <a
href="https://github.com/gregrebholz"><code>@​gregrebholz</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/2808">distribution/distribution#2808</a></li>
<li>Support BYOK for OSS storage driver by <a
href="https://github.com/denverdino"><code>@​denverdino</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2791">distribution/distribution#2791</a></li>
<li>Add reference. ParseDockerRef utility function by <a
href="https://github.com/thaJeztah"><code>@​thaJeztah</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2786">distribution/distribution#2786</a></li>
<li>Fix gometalint errors by <a
href="https://github.com/manishtomar"><code>@​manishtomar</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/2840">distribution/distribution#2840</a></li>
<li>registry: fix binary JSON content-type by <a
href="https://github.com/lucab"><code>@​lucab</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2813">distribution/distribution#2813</a></li>
<li>Log authorized username by <a
href="https://github.com/manishtomar"><code>@​manishtomar</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/2854">distribution/distribution#2854</a></li>
<li>Fix cloudfront middleware by <a
href="https://github.com/vishesh92"><code>@​vishesh92</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2837">distribution/distribution#2837</a></li>
<li>support Alibaba Cloud CDN storage middleware by <a
href="https://github.com/Shawnpku"><code>@​Shawnpku</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2849">distribution/distribution#2849</a></li>
<li>replace rsc.io/letsencrypt in favour of golang.org/x/crypto by <a
href="https://github.com/tariq1890"><code>@​tariq1890</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2926">distribution/distribution#2926</a></li>
<li>migrate to go modules from vndr by <a
href="https://github.com/tariq1890"><code>@​tariq1890</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2941">distribution/distribution#2941</a></li>
<li>Fix typo: offest -&gt; offset by <a
href="https://github.com/jabrown85"><code>@​jabrown85</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2894">distribution/distribution#2894</a></li>
<li>Fix s3 driver for supporting ceph radosgw by <a
href="https://github.com/tbe"><code>@​tbe</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2879">distribution/distribution#2879</a></li>
<li>Fixes <a
href="https://redirect.github.com/distribution/distribution/issues/2835">#2835</a>
Process Accept header MIME types in case-insensitive way by <a
href="https://github.com/yuwaMSFT2"><code>@​yuwaMSFT2</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2861">distribution/distribution#2861</a></li>
<li>change default Dockerfile to install ssl utils by <a
href="https://github.com/andyzhangx"><code>@​andyzhangx</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2809">distribution/distribution#2809</a></li>
<li>Append the written bytes to the blob writer's size by <a
href="https://github.com/dmathieu"><code>@​dmathieu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2920">distribution/distribution#2920</a></li>
<li>fix no error returned in fetchTokenWithOAuth by <a
href="https://github.com/sevki"><code>@​sevki</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2900">distribution/distribution#2900</a></li>
<li>use latest version of alpine when building the Docker container by
<a href="https://github.com/tariq1890"><code>@​tariq1890</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/2946">distribution/distribution#2946</a></li>
<li>Extract blob upload resume into its own method by <a
href="https://github.com/dmathieu"><code>@​dmathieu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2930">distribution/distribution#2930</a></li>
<li>Handle Blob Create when the underlying registry doesn't provide
'Docker-Upload-UUID' by <a
href="https://github.com/dmathieu"><code>@​dmathieu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2927">distribution/distribution#2927</a></li>
<li>Implement Repository ServeBlob by <a
href="https://github.com/dmathieu"><code>@​dmathieu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2921">distribution/distribution#2921</a></li>
<li>Add notification metrics by <a
href="https://github.com/tifayuki"><code>@​tifayuki</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2522">distribution/distribution#2522</a></li>
<li>Update the versions of several dependencies by <a
href="https://github.com/tariq1890"><code>@​tariq1890</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2947">distribution/distribution#2947</a></li>
<li>Implement Repository Blobs upload resuming by <a
href="https://github.com/dmathieu"><code>@​dmathieu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/2917">distribution/distribution#2917</a></li>
<li>allow for VERSION and REVISION to be passed in during docker builds
by <a
href="https://github.com/alex-laties"><code>@​alex-laties</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/2955">distribution/distribution#2955</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/distribution/distribution/commits/v3.0.0-alpha.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/distribution/distribution/v3&package-manager=go_modules&previous-version=3.0.0-20221021092657-c47a966fded8&new-version=3.0.0-alpha.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 9b336c8f4..2bd7171bf 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/chrismellard/docker-credential-acr-env v0.0.0-20230304212654-82a0ddb27589
 	github.com/dghubble/go-twitter v0.0.0-20211115160449-93a8679adecb
 	github.com/dghubble/oauth1 v0.7.2
-	github.com/distribution/distribution/v3 v3.0.0-20221021092657-c47a966fded8
+	github.com/distribution/distribution/v3 v3.0.0-alpha.1
 	github.com/go-telegram-bot-api/telegram-bot-api v4.6.4+incompatible
 	github.com/google/go-containerregistry v0.19.0
 	github.com/google/go-github/v57 v57.0.0
@@ -179,7 +179,7 @@ require (
 	github.com/googleapis/enterprise-certificate-proxy v0.3.2 // indirect
 	github.com/googleapis/gax-go/v2 v2.12.0 // indirect
 	github.com/goreleaser/chglog v0.5.0 // indirect
-	github.com/gorilla/mux v1.8.0 // indirect
+	github.com/gorilla/mux v1.8.1 // indirect
 	github.com/gorilla/websocket v1.5.1 // indirect
 	github.com/hashicorp/errwrap v1.1.0 // indirect
 	github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
diff --git a/go.sum b/go.sum
index 637614aa2..341ceb6d4 100644
--- a/go.sum
+++ b/go.sum
@@ -270,8 +270,8 @@ github.com/dghubble/sling v1.4.0 h1:/n8MRosVTthvMbwlNZgLx579OGVjUOy3GNEv5BIqAWY=
 github.com/dghubble/sling v1.4.0/go.mod h1:0r40aNsU9EdDUVBNhfCstAtFgutjgJGYbO1oNzkMoM8=
 github.com/dimchansky/utfbom v1.1.1 h1:vV6w1AhK4VMnhBno/TPVCoK9U/LP0PkLCS9tbxHdi/U=
 github.com/dimchansky/utfbom v1.1.1/go.mod h1:SxdoEBH5qIqFocHMyGOXVAybYJdr71b1Q/j0mACtrfE=
-github.com/distribution/distribution/v3 v3.0.0-20221021092657-c47a966fded8 h1:zuxvqNfQKyGNH3a1yFh1ofD4Y7ycgdwQhHX6QRH+Cwo=
-github.com/distribution/distribution/v3 v3.0.0-20221021092657-c47a966fded8/go.mod h1:6rIc5NMSjXjjnwzWWy3HAm9gDBu+X7aCzL8VrHIKgxM=
+github.com/distribution/distribution/v3 v3.0.0-alpha.1 h1:jn7I1gvjOvmLztH1+1cLiUFud7aeJCIQcgzugtwjyJo=
+github.com/distribution/distribution/v3 v3.0.0-alpha.1/go.mod h1:LCp4JZp1ZalYg0W/TN05jarCQu+h4w7xc7ZfQF4Y/cY=
 github.com/distribution/reference v0.5.0 h1:/FUIFXtfc/x2gpa5/VGfiGLuOIdYa1t65IKK2OFGvA0=
 github.com/distribution/reference v0.5.0/go.mod h1:BbU0aIcezP1/5jX/8MP0YiH4SdvB5Y4f/wlDRiLyi3E=
 github.com/dnaeon/go-vcr v1.2.0 h1:zHCHvJYTMh1N7xnV7zf1m1GPBF9Ad0Jk/whtQ1663qI=
@@ -520,8 +520,8 @@ github.com/goreleaser/fileglob v1.3.0 h1:/X6J7U8lbDpQtBvGcwwPS6OpzkNVlVEsFUVRx9+
 github.com/goreleaser/fileglob v1.3.0/go.mod h1:Jx6BoXv3mbYkEzwm9THo7xbr5egkAraxkGorbJb4RxU=
 github.com/goreleaser/nfpm/v2 v2.35.3 h1:YGEygriY8hbsNdCBUif6RLb5xPISDHc+d22rRGXV4Zk=
 github.com/goreleaser/nfpm/v2 v2.35.3/go.mod h1:eyKRLSdXPCV1GgJ0tDNe4SqcZD0Fr5cezRwcuLjpxyM=
-github.com/gorilla/mux v1.8.0 h1:i40aqfkR1h2SlN9hojwV5ZA91wcXFOvkdNIeFDP5koI=
-github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
+github.com/gorilla/mux v1.8.1 h1:TuBL49tXwgrFYWhqrNgrUNEY92u81SPhu7sTdzQEiWY=
+github.com/gorilla/mux v1.8.1/go.mod h1:AKf9I4AEqPTmMytcMc0KkNouC66V3BtZ4qD5fmWSiMQ=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gorilla/websocket v1.5.1 h1:gmztn0JnHVt9JZquRuzLw3g4wouNVzKL15iLr/zn/QY=