Bump github.com/google/go-containerregistry from 0.12.1 to 0.15.2

[dependabot]

Bumps github.com/google/go-containerregistry from 0.12.1 to 0.15.2.

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.15.2

What's Changed

• Make 403 non-fatal for manifest existence checks by @​jonjohnsonjr in google/go-containerregistry#1691
• Do not reuse pushers for pullers by @​jonjohnsonjr in google/go-containerregistry#1701

Full Changelog: google/go-containerregistry@v0.15.1...v0.15.2

v0.15.1

Changelog

• e2620e56 Actually retry retryable status codes (#1618)
• afd15f14 Add --all-tags flag to crane cp (#1682)
• 69d1a197 Add mutate --ports option to set the exposed ports (#1677)
• 65e78dc8 Add partial.Manifests for lazy index access (#1631)
• 3228a601 Add ppc64le to .goreleaser.yml (#1680)
• 0b12f56b Add ppc64le to all binaries (#1688)
• d9584448 Add remote.Descriptor.Schema1() (#1626)
• 07c767c7 Add remote.Puller (#1644)
• 005bb719 Add remote.Reuse for Pusher/Puller (#1672)
• 21ac1b24 Adding mutate --workdir option to set the working directory (#1615)
• 0962e296 Allow remote config layers to be lazy fetched (#1634)
• 53189d33 Bump actions/setup-go from 3 to 4 (#1602)
• 54e3f49e Bump actions/stale from 7 to 8 (#1616)
• 07eb440c Bump codecov/codecov-action from 3.1.1 to 3.1.2 (#1650)
• 58bd35bc Bump codecov/codecov-action from 3.1.2 to 3.1.3 (#1668)
• e055961a Bump peter-evans/create-pull-request from 4 to 5 (#1642)
• b8d1c0a1 Bump slsa-framework/slsa-verifier from 2.0.1 to 2.1.0 (#1621)
• 375fb61c Bump slsa-framework/slsa-verifier from 2.1.0 to 2.2.0 (#1649)
• 9aa45a1a Change return type of remote.Referrers (#1652)
• 2ccd41c4 Cleanup: Switch the debug image to cgr.dev/chainguard/busybox (#1638)
• 93be9c42 Don't export whiteouts for single layers (#1629)
• b7c6e9dc Fall back to puller if reusing pusher fails (#1676)
• 370e8a5f Fix a few lint issues (#1684)
• bc990d6b Fix fetching referrers error handling (#1648)
• aee00b15 Fix race in mutate (#1627)
• 4a79e94b Fix race in stream (#1632)
• 6743ec96 Implement remote.Pusher (#1633)
• 3120ba58 Keep order of env in crane mutate (#1683)
• 6ac92e8a Refactor fetcher, writer, and progress (#1625)
• 249d7e1f Refresh authn.DefaultKeychain creds every 5 min (#1624)
• ad695c04 Replace deprecated command with environment file (#1667)
• ed5c185d Retry net.ErrClosed (#1637)
• 43710a91 Retry without mount if auth fails (#1681)
• 24353209 Revert "Cleanup: Switch the debug image to cgr.dev/chainguard/busybox (#1638)" (#1641)
• 27a6ad62 Revert "authn: Add NewConfigKeychain to load a config from explicit path (#1603)" (#1664)
• a34235c8 Support Warning header aggregation and reporting in crane (#1604)
• 01bbd539 Update release.yml (#1601)
• df518f95 add crane auth logout (#1589)
• 54389485 add registry.Repo("foo") (#1671)
• 3706061a allow pkg/v1/random to accept a RNG source (#1675)

... (truncated)

Commits

• dbecb1d Do not reuse pushers for pullers (#1701)
• a927d7c Make 403 non-fatal for manifest existence checks (#1691)
• 0b12f56 Add ppc64le to all binaries (#1688)
• 69d1a19 Add mutate --ports option to set the exposed ports (#1677)
• 691004b bump deps using ./hack/bump-deps.sh (#1685)
• 370e8a5 Fix a few lint issues (#1684)
• 3120ba5 Keep order of env in crane mutate (#1683)
• afd15f1 Add --all-tags flag to crane cp (#1682)
• 5438948 add registry.Repo("foo") (#1671)
• 43710a9 Retry without mount if auth fails (#1681)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coveralls]

Pull Request Test Coverage Report for Build 5050758103

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 51.111%

---

Totals
Change from base Build 3858564865:	0.0%
Covered Lines:	184
Relevant Lines:	360

---

💛 - Coveralls