Skip to content

chore: bump github.com/docker/buildx from 0.32.1 to 0.35.0#1643

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/docker/buildx-0.35.0
Open

chore: bump github.com/docker/buildx from 0.32.1 to 0.35.0#1643
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/docker/buildx-0.35.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps github.com/docker/buildx from 0.32.1 to 0.35.0.

Release notes

Sourced from github.com/docker/buildx's releases.

v0.35.0

buildx 0.35.0

Welcome to the v0.35.0 release of buildx!

Please try out the release binaries and report any issues at https://github.com/docker/buildx/issues.

Contributors

  • CrazyMax
  • Tõnis Tiigi
  • Sebastiaan van Stijn
  • Areeb Ahmed
  • Jiří Moravčík
  • Sopho Merkviladze
  • Akihiro Suda
  • Jonathan A. Sternberg

Notable Changes

  • Local output now supports a mode=delete attribute for build and bake commands. This mode replaces the destination directory with the build result instead of merging it. Similar to the --delete flag in rsync. For safety, this mode is only allowed if the destination directory is a subdirectory of the working directory. To export to other destinations, --allow=buildx.local.delete needs to be provided or the action confirmed by the user in the TUI. When exporting multi-platform results, this mode requires BuildKit v0.31.0+. #3883
  • Source policies now support the new exec proxy feature of BuildKit v0.31.0+ that captures the network traffic of your build steps. To opt in to network proxy, your Dockerfile.rego source policy needs to return caps: { "exec.proxy": true } in the evaluation decision. After opting in, you can control what network requests are allowed to be made by the run steps with policy rules for regular input.http sources, similar to how this was done for direct HTTP build sources before. You can also opt in your whole builder with --buildkitd-flags '--proxy-network' in buildx create. #3895
  • Resource limits can now be set for CPU and memory using the --resource flag in build and the resource key in bake commands. This feature requires BuildKit v0.31.0+ and Dockerfile v1.25.0+. #3876 #3900
  • Fix possible "closed channel" panic. #3886

Dependency Changes

  • github.com/aws/aws-sdk-go-v2 v1.41.7 -> v1.42.0
  • github.com/aws/aws-sdk-go-v2/config v1.32.17 -> v1.32.24
  • github.com/aws/aws-sdk-go-v2/credentials v1.19.16 -> v1.19.23
  • github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.23 -> v1.18.29
  • github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.23 -> v1.4.29
  • github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.23 -> v2.7.29
  • github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.24 -> v1.4.30
  • github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.9 -> v1.13.12
  • github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.23 -> v1.13.29
  • github.com/aws/aws-sdk-go-v2/service/signin v1.0.11 -> v1.1.5
  • github.com/aws/aws-sdk-go-v2/service/sso v1.30.17 -> v1.31.3
  • github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.21 -> v1.36.6
  • github.com/aws/aws-sdk-go-v2/service/sts v1.42.1 -> v1.43.3
  • github.com/aws/smithy-go v1.25.1 -> v1.27.2
  • github.com/containerd/containerd/v2 v2.2.3 -> v2.2.4
  • github.com/containerd/continuity v0.4.5 -> v0.5.0
  • github.com/containerd/platforms v1.0.0-rc.2 -> v1.0.0-rc.4
  • github.com/containerd/typeurl/v2 v2.2.3 -> v2.3.0
  • github.com/docker/cli v29.4.3 -> v29.5.3
  • github.com/docker/distribution v2.8.3 new
  • github.com/docker/docker-credential-helpers v0.9.5 -> v0.9.8
  • github.com/go-openapi/analysis v0.24.3 -> v0.25.2

... (truncated)

Commits
  • a319e5b Merge pull request #3916 from tonistiigi/v0.35.0-picks
  • b54db7c vendor: update buildkit to v0.31.0
  • 577cf12 vendor: go.opentelemetry.io/otel/exporters v1.44.0
  • 73e5659 Merge pull request #3903 from crazy-max/buildkit-0.31.0-rc2
  • 268dcf5 vendor: update buildkit to v0.31.0-rc2
  • d1c298c Merge pull request #3899 from crazy-max/remove-bake-path-shim
  • edb063c Merge pull request #3900 from jirimoravcik/fix/minor-resource-limits-adjustments
  • 4149c24 Merge pull request #3902 from crazy-max/github-builder-1.12.0
  • 548e583 ci: update docker/github-builder to v1.12.0
  • 8e59d65 Merge pull request #3896 from docker/dependabot/github_actions/codecov/codeco...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/docker/buildx](https://github.com/docker/buildx) from 0.32.1 to 0.35.0.
- [Release notes](https://github.com/docker/buildx/releases)
- [Commits](docker/buildx@v0.32.1...v0.35.0)

---
updated-dependencies:
- dependency-name: github.com/docker/buildx
  dependency-version: 0.35.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 6, 2026
Copilot AI review requested due to automatic review settings July 6, 2026 12:04
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 6, 2026
@dependabot dependabot Bot requested a review from omercnet as a code owner July 6, 2026 12:04
@dependabot dependabot Bot added the go Pull requests that update Go code label Jul 6, 2026

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot can't review bot-authored pull requests automatically. A user with Copilot access can request a review manually.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

Status: 🆕 New

Development

Successfully merging this pull request may close these issues.

1 participant