chore(deps): bump the go-modules-root group with 7 updates

[dependabot]

Bumps the go-modules-root group with 7 updates:

Package	From	To
github.com/docker/cli	29.2.1+incompatible	29.3.0+incompatible
github.com/mattn/go-runewidth	0.0.20	0.0.21
github.com/moby/moby/api	1.53.0	1.54.0
github.com/moby/moby/client	0.2.2	0.3.0
go.opentelemetry.io/otel	1.40.0	1.42.0
golang.org/x/sync	0.19.0	0.20.0
golang.org/x/sys	0.41.0	0.42.0

Updates github.com/docker/cli from 29.2.1+incompatible to 29.3.0+incompatible

Commits

• 5927d80 Merge pull request #6844 from vvoland/update-docker
• 206fc8c vendor: github.com/moby/moby/client v0.3.0
• 874a8df vendor: github.com/moby/moby/api v1.54.0
• 964a6d2 Merge pull request #6792 from vvoland/bind-create
• 210147d Merge pull request #6843 from docker/dependabot/github_actions/docker/setup-b...
• 847f547 Merge pull request #6842 from docker/dependabot/github_actions/docker/login-a...
• 668b367 build(deps): bump docker/setup-buildx-action from 3 to 4
• 30a2ace build(deps): bump docker/login-action from 3 to 4
• 32aa575 docs/service: Document bind-create-src
• c747cff container/opts: Add bind-create-src mount option
• Additional commits viewable in compare view

Updates github.com/mattn/go-runewidth from 0.0.20 to 0.0.21

Commits

• b7b94fb Merge pull request #91 from mattn/add-is-combining-width
• 2c33cbf Update CI: bump actions and Go versions
• c6c0a14 Add IsCombiningWidth function
• 6399b33 Merge pull request #90 from bugwhisperer418/76-zero-width-variation-selections
• dadc062 fix benchmark test checksums
• 75db52f update test checksums
• fb9c1d1 Treat Mn variation selections with EA width "A" as combining with 0 width
• See full diff in compare view

Updates github.com/moby/moby/api from 1.53.0 to 1.54.0

Release notes

Sourced from github.com/moby/moby/api's releases.

api/v1.54.0

1.54.0

New

• GET /images/json now supports an identity query parameter. When set, the response includes manifest summaries and may include an Identity field for each manifest with trusted identity and origin information. moby/moby#52030

Bug fixes and enhancements

• api/types/swarm: PortConfig: add Compare method. moby/moby#52047
• api: swagger: document "platform" param for GET /image/{name}/json. moby/moby#52082
• Fix swagger/OpenAPI return value specification for /system/df endpoint. moby/moby#52124
• Add a MediaType pseudo-type to help discoverability of available mediatypes. moby/moby#52089
• api/types/jsonstream: Add sanity-check for Message marshaling. moby/moby#52059
• api/types/jsonstream: Prevent panic on nil-Error. moby/moby#52059

Commits

• 7f1a670 Merge pull request #52140 from vvoland/drop-replace
• 4569055 Drop replace rules
• 37cc25c Merge pull request #52040 from vvoland/network-connect-macaddres
• 2fa6029 network/connect: Support MacAddress
• c0625f2 Merge pull request #52124 from chemodax/patch-1
• 4c19a01 Merge pull request #52048 from shiv-tyagi/vendor-detection
• 018cdea Merge pull request #52119 from ricardobranco777/saveload
• 6d771cc Merge pull request #52137 from vvoland/label-notesting
• 71c4815 gha/labeler: Remove *_test.go from area/testing label
• 13a8626 daemon/devices: Turn RegisterGPUDeviceDrivers into func
• Additional commits viewable in compare view

Updates github.com/moby/moby/client from 0.2.2 to 0.3.0

Release notes

Sourced from github.com/moby/moby/client's releases.

client/v0.3.0

0.3.0

New

• client: ImageListOptions now supports Identity field. When set, the response includes manifest summaries and may include an Identity field for each manifest with trusted identity and origin information. moby/moby#52030

Bug fixes and enhancements

• Lower minimum API version from v1.44. to v1.40 (Docker 19.03). moby/moby#52067
• client/pkg/jsonmessage.DisplayJSONMessages now accepts an iter.Seq2[jsonstream.Message, error] instead of only a JSONMessagesStream,. moby/moby#52062

Changelog

Sourced from github.com/moby/moby/client's changelog.

0.3.0 (2013-05-06)

• Registry: Implement the new registry
• Documentation: new example: sharing data between 2 couchdb databases

• Runtime: Fix the command existance check
• Runtime: strings.Split may return an empty string on no match
• Runtime: Fix an index out of range crash if cgroup memory is not

• Documentation: Various improvments
• Vagrant: Use only one deb line in /etc/apt

Commits

• 4f202cd Bumped version to 0.3.0
• da01dd3 Merge remote-tracking branch 'origin/registry-update'
• 09f1cba Fixed imports
• c9994ed Moved the Debugf message in a registry to a more useful place
• b0e076f Add output to checksums, code cleaning
• 00266df Fixed public pull + Added some verbosity about what is happening
• 3febeb9 Added help message to invite to login when getting a 401
• bcdf030 Fixed pulling repositories from library
• a372f98 Switching to prod index server
• d985050 gofmt pass
• Additional commits viewable in compare view

Updates go.opentelemetry.io/otel from 1.40.0 to 1.42.0

Changelog

Sourced from go.opentelemetry.io/otel's changelog.

[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06

Added

• Add go.opentelemetry.io/otel/semconv/v1.40.0 package. The package contains semantic conventions from the v1.40.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.39.0. (#7985)
• Add Err and SetErr on Record in go.opentelemetry.io/otel/log to attach an error and set record exception attributes in go.opentelemetry.io/otel/log/sdk. (#7924)

Changed

• TracerProvider.ForceFlush in go.opentelemetry.io/otel/sdk/trace joins errors together and continues iteration through SpanProcessors as opposed to returning the first encountered error without attempting exports on subsequent SpanProcessors. (#7856)

Fixed

• Fix missing request.GetBody in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp to correctly handle HTTP2 GOAWAY frame. (#7931)
• Fix semconv v1.39.0 generated metric helpers skipping required attributes when extra attributes were empty. (#7964)
• Preserve W3C TraceFlags bitmask (including the random Trace ID flag) during trace context extraction and injection in go.opentelemetry.io/otel/propagation. (#7834)

Removed

• Drop support for [Go 1.24]. (#7984)

[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02

This release is the last to support [Go 1.24]. The next release will require at least [Go 1.25].

Added

• Support testing of [Go 1.26]. (#7902)

Fixed

• Update Baggage in go.opentelemetry.io/otel/propagation and Parse and New in go.opentelemetry.io/otel/baggage to comply with W3C Baggage specification limits. New and Parse now return partial baggage along with an error when limits are exceeded. Errors from baggage extraction are reported to the global error handler. (#7880)
• Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7914)
• Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp. (#7914)
• Return an error when the endpoint is configured as insecure and with TLS configuration in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7914)

Commits

• a3941ff Release v1.42.0/v0.64.0/v0.18.0/v0.0.16 (#8006)
• 6059c47 chore(deps): update golang.org/x/telemetry digest to e526e8a (#8010)
• 44c7edf chore(deps): update module github.com/mgechev/revive to v1.15.0 (#8009)
• de5fb3a fix(deps): update module google.golang.org/grpc to v1.79.2 (#8007)
• 0b82ded chore(deps): update codspeedhq/action action to v4.11.1 (#8001)
• aa3660f chore(deps): update github/codeql-action action to v4.32.6 (#8004)
• 9be8c92 chore(deps): update dependency codespell to v2.4.2 (#8003)
• c9d2015 log: add error field to Record and make SDK to emit exception attributes (#7924)
• fdd1320 TracerProvider ForceFlush() Error Fix (#7856)
• 78f9904 chore(deps): update golang.org/x/telemetry digest to 18da590 (#8000)
• Additional commits viewable in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits

• ec11c4a errgroup: fix a typo in the documentation
• 1a58307 all: modernize interface{} -> any
• 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
• See full diff in compare view

Updates golang.org/x/sys from 0.41.0 to 0.42.0

Commits

• eaaaaee windows/registry: correct KeyInfo.ModTime calculation
• 942780b cpu: darwin/arm64 feature detection
• acef388 unix/linux: Prefixmsg and PrefixCacheinfo structs
• 3687fbd cpu: better defaults on darwin ARM64
• 48062e9 plan9: change Note to alias syscall.Note
• 4f23f80 windows: change Signal to alias syscall.Signal
• 7548802 all: upgrade go directive to at least 1.25.0 [generated]
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions