Bump the container_provisioner group across 1 directory with 7 updates

[dependabot]

Bumps the container_provisioner group with 6 updates in the /container_provisioner directory:

Package	From	To
github.com/aws/aws-sdk-go-v2	1.39.3	1.39.6
github.com/aws/aws-sdk-go-v2/config	1.31.13	1.31.20
github.com/aws/aws-sdk-go-v2/service/s3	1.88.5	1.90.2
github.com/docker/docker	28.5.1+incompatible	28.5.2+incompatible
github.com/gofiber/fiber/v2	2.52.9	2.52.10
github.com/redis/go-redis/v9	9.14.1	9.16.0

Updates github.com/aws/aws-sdk-go-v2 from 1.39.3 to 1.39.6

Commits

• aacca0a Release 2025-11-04
• f2f7085 Regenerated Clients
• 98ac357 Update endpoints model
• 545573f Update API model
• 0c4b1ae upgrade to smithy-go v1.23.2 to track allocation improvements (#3222)
• bae1d68 Release 2025-11-03
• 67d7b9c Regenerated Clients
• 74be9b9 Update API model
• 3242971 Release 2025-10-31
• 2db47dc Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.31.13 to 1.31.20

Commits

• b01c60e Release 2025-11-12
• 17946cc Regenerated Clients
• a435b3c Update API model
• 1e4148a collapse changelogs
• 86618e5 track allocation improvements from codegen (#3227)
• ab56437 Release 2025-11-11
• 3dcd1d8 Regenerated Clients
• 51e8881 Update API model
• 1ed4f27 add MAINTAINERS.md
• a5136d5 host label
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.18.17 to 1.18.24

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/credentials's changelog.

Release (2023-05-08)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/glue: v1.46.0
  • Feature: We don't do release notes https://w.amazon.com/bin/view/AWSDocs/common-tasks/release-notes
• github.com/aws/aws-sdk-go-v2/service/guardduty: v1.23.0
  • Feature: Add AccessDeniedException 403 Error message code to support 3 Tagging related APIs
• github.com/aws/aws-sdk-go-v2/service/iotsitewise: v1.29.0
  • Feature: Provide support for 20,000 max results for GetAssetPropertyValueHistory/BatchGetAssetPropertyValueHistory and 15 minute aggregate resolution for GetAssetPropertyAggregates/BatchGetAssetPropertyAggregates
• github.com/aws/aws-sdk-go-v2/service/sts: v1.19.0
  • Feature: Documentation updates for AWS Security Token Service.

Release (2023-05-05)

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/ec2: v1.97.0
  • Feature: This release adds support the inf2 and trn1n instances. inf2 instances are purpose built for deep learning inference while trn1n instances are powered by AWS Trainium accelerators and they build on the capabilities of Trainium-powered trn1 instances.
• github.com/aws/aws-sdk-go-v2/service/inspector2: v1.13.0
  • Feature: Amazon Inspector now allows customers to search its vulnerability intelligence database if any of the Inspector scanning types are activated.
• github.com/aws/aws-sdk-go-v2/service/mediatailor: v1.23.0
  • Feature: This release adds support for AFTER_LIVE_EDGE mode configuration for avail suppression, and adding a fill-policy setting that sets the avail suppression to PARTIAL_AVAIL or FULL_AVAIL_ONLY when AFTER_LIVE_EDGE is enabled.
• github.com/aws/aws-sdk-go-v2/service/sqs: v1.22.0
  • Feature: Revert previous SQS protocol change.

Release (2023-05-04)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/cloudwatch: v1.26.0
  • Feature: Adds support for filtering by metric names in CloudWatch Metric Streams.
• github.com/aws/aws-sdk-go-v2/service/configservice: v1.32.0
  • Feature: Updated ResourceType enum with new resource types onboarded by AWS Config in April 2023.
• github.com/aws/aws-sdk-go-v2/service/connect: v1.54.1
  • Documentation: Remove unused InvalidParameterException from CreateParticipant API
• github.com/aws/aws-sdk-go-v2/service/ecs: v1.27.0
  • Feature: Documentation update for new error type NamespaceNotFoundException for CreateCluster and UpdateCluster
• github.com/aws/aws-sdk-go-v2/service/networkfirewall: v1.28.0
  • Feature: This release adds support for the Suricata REJECT option in midstream exception configurations.
• github.com/aws/aws-sdk-go-v2/service/opensearch: v1.17.0
  • Feature: DescribeDomainNodes: A new API that provides configuration information for nodes part of the domain
• github.com/aws/aws-sdk-go-v2/service/quicksight: v1.35.0
  • Feature: Add support for Topic, Dataset parameters and VPC
• github.com/aws/aws-sdk-go-v2/service/rekognition: v1.27.0
  • Feature: This release adds a new attribute FaceOccluded. Additionally, you can now select attributes individually (e.g. ["DEFAULT", "FACE_OCCLUDED", "AGE_RANGE"] instead of ["ALL"]), which can reduce response time.
• github.com/aws/aws-sdk-go-v2/service/s3: v1.33.1

... (truncated)

Commits

• 532cada Release 2023-05-08
• 86a9940 Regenerated Clients
• c77c97a Update endpoints model
• 244572b Update API model
• 961142b Fix attributevalue.UnmarshalListOfMaps example (#2114)
• e72db93 Release 2023-05-05
• 690d683 Regenerated Clients
• 6611348 Update API model
• ae835ec Release 2023-05-04
• ef7f367 Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.5 to 1.90.2

Commits

• b01c60e Release 2025-11-12
• 17946cc Regenerated Clients
• a435b3c Update API model
• 1e4148a collapse changelogs
• 86618e5 track allocation improvements from codegen (#3227)
• ab56437 Release 2025-11-11
• 3dcd1d8 Regenerated Clients
• 51e8881 Update API model
• 1ed4f27 add MAINTAINERS.md
• a5136d5 host label
• Additional commits viewable in compare view

Updates github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v28.5.2

28.5.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.5.2 milestone
• moby/moby, 28.5.2 milestone

[!CAUTION] This release contains fixes for three high-severity security vulnerabilities in runc:

• CVE-2025-31133
• CVE-2025-52565
• CVE-2025-52881

All three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files.

Packaging updates

• Update runc to v1.3.3. moby/moby#51394

Bug fixes and enhancements

• dockerd-rootless.sh: if slirp4netns is not installed, try using pasta (passt). moby/moby#51162
• Update Go runtime to 1.24.9. moby/moby#51387, docker/cli#6613

Deprecations

• Go-SDK: cli/command/image/build: deprecate DefaultDockerfileName, DetectArchiveReader, WriteTempDockerfile, ResolveAndValidateContextPath. These utilities were only used internally and will be removed in the next release. docker/cli#6610
• Go-SDK: cli/command/image/build: deprecate IsArchive utility. docker/cli#6560
• Go-SDK: opts: deprecate ValidateMACAddress. docker/cli#6560
• Go-SDK: opts: deprecate ListOpts.Delete(). docker/cli#6560

Commits

• 89c5e8f Merge pull request #51396 from thaJeztah/28.x_backport_api_docs
• 9b93878 Merge pull request #51395 from thaJeztah/28.x_backport_rootless_reject
• 6178456 Merge pull request #51398 from vvoland/51397-28.x
• 0cae4e5 vendor: github.com/moby/buildkit v0.25.2
• 33cc06f Merge pull request #51394 from vvoland/51393-28.x
• d525277 api/docs: remove BuildCache.Parent field for API v1.42 and up
• 2fbc51b dockerd-rootless.sh: reject DOCKERD_ROOTLESS_ROOTLESSKIT_NET=host
• bd98008 integration-cli: Adjust nofile limits
• 1967515 Dockerfile: update runc binary to v1.3.3
• 4489660 Merge pull request #51387 from thaJeztah/28.x_bump_go
• Additional commits viewable in compare view

Updates github.com/gofiber/fiber/v2 from 2.52.9 to 2.52.10

Release notes

Sourced from github.com/gofiber/fiber/v2's releases.

v2.52.10

🐛 Bug Fixes

• Handle invalid path in filesystem by @​rokostik in gofiber/fiber#3688
• Fix recover middleware panic output formatting by @​ReneWerner87 in gofiber/fiber#3818
• Fix enforcement of Immutable config for some edge cases by @​gaby in gofiber/fiber#3835

📚 Documentation

• Document RoutePatternMatch by @​ReneWerner87 in gofiber/fiber#3723

New Contributors

• @​rokostik made their first contribution in gofiber/fiber#3688

Full Changelog: gofiber/fiber@v2.52.9...v2.52.10

Commits

• e334f54 Update version to 2.52.10
• aa2f7c5 🐛 bug: Fix enforcement of Immutable config for some edge cases (#3835)
• fa098a7 Fix recover middleware panic output formatting (#3818)
• 8141d09 Merge remote-tracking branch 'origin/v2' into v2
• b01c425 add note for deprecated etag setting
• a0c4f89 docs: document RoutePatternMatch (#3723)
• ea9ba1d 🐛 bug: Handle invalid path in filesystem (#3688)
• 81feed9 Update faq.md
• See full diff in compare view

Updates github.com/redis/go-redis/v9 from 9.14.1 to 9.16.0

Release notes

Sourced from github.com/redis/go-redis/v9's releases.

9.16.0

🚀 Highlights

Maintenance Notifications Support

This release introduces comprehensive support for Redis maintenance notifications, enabling applications to handle server maintenance events gracefully. The new maintnotifications package provides:

• RESP3 Push Notifications: Full support for Redis RESP3 protocol push notifications
• Connection Handoff: Automatic connection migration during server maintenance with configurable retry policies and circuit breakers
• Graceful Degradation: Configurable timeout relaxation during maintenance windows to prevent false failures
• Event-Driven Architecture: Background workers with on-demand scaling for efficient handoff processing

For detailed usage examples and configuration options, see the maintenance notifications documentation.

✨ New Features

• Trace Filtering: Add support for filtering traces for specific commands, including pipeline operations and dial operations (#3519, #3550)
  • New TraceCmdFilter option to selectively trace commands
  • Reduces overhead by excluding high-frequency or low-value commands from traces

🐛 Bug Fixes

• Pipeline Error Handling: Fix issue where pipeline repeatedly sets the same error (#3525)
• Connection Pool: Ensure re-authentication does not interfere with connection handoff operations (#3547)

🔧 Improvements

• Hash Commands: Update hash command implementations (#3523)
• OpenTelemetry: Use metric.WithAttributeSet to avoid unnecessary attribute copying in redisotel (#3552)

📚 Documentation

• Cluster Client: Add explanation for why MaxRetries is disabled for ClusterClient (#3551)

🧪 Testing & Infrastructure

• E2E Testing: Upgrade E2E testing framework with improved reliability and coverage (#3541)
• Release Process: Improved resiliency of the release process (#3530)

📦 Dependencies

• Bump rojopolis/spellcheck-github-actions from 0.51.0 to 0.52.0 (#3520)
• Bump github/codeql-action from 3 to 4 (#3544)

👥 Contributors

We'd like to thank all the contributors who worked on this release!

@​ndyakov, @​htemelski-redis, @​Sovietaced, @​Udhayarajan, @​boekkooi-impossiblecloud, @​Pika-Gopher, @​cxljs, @​huiyifyj, @​omid-h70

... (truncated)

Changelog

Sourced from github.com/redis/go-redis/v9's changelog.

9.16.0 (2025-10-23)

🚀 Highlights

Maintenance Notifications Support

This release introduces comprehensive support for Redis maintenance notifications, enabling applications to handle server maintenance events gracefully. The new maintnotifications package provides:

• RESP3 Push Notifications: Full support for Redis RESP3 protocol push notifications
• Connection Handoff: Automatic connection migration during server maintenance with configurable retry policies and circuit breakers
• Graceful Degradation: Configurable timeout relaxation during maintenance windows to prevent false failures
• Event-Driven Architecture: Background workers with on-demand scaling for efficient handoff processing
• Production-Ready: Comprehensive E2E testing framework and monitoring capabilities

For detailed usage examples and configuration options, see the maintenance notifications documentation.

✨ New Features

• Trace Filtering: Add support for filtering traces for specific commands, including pipeline operations and dial operations (#3519, #3550)
  • New TraceCmdFilter option to selectively trace commands
  • Reduces overhead by excluding high-frequency or low-value commands from traces

🐛 Bug Fixes

• Pipeline Error Handling: Fix issue where pipeline repeatedly sets the same error (#3525)
• Connection Pool: Ensure re-authentication does not interfere with connection handoff operations (#3547)

🔧 Improvements

• Hash Commands: Update hash command implementations (#3523)
• OpenTelemetry: Use metric.WithAttributeSet to avoid unnecessary attribute copying in redisotel (#3552)

📚 Documentation

• Cluster Client: Add explanation for why MaxRetries is disabled for ClusterClient (#3551)

🧪 Testing & Infrastructure

• E2E Testing: Upgrade E2E testing framework with improved reliability and coverage (#3541)
• Release Process: Improved resiliency of the release process (#3530)

📦 Dependencies

• Bump rojopolis/spellcheck-github-actions from 0.51.0 to 0.52.0 (#3520)
• Bump github/codeql-action from 3 to 4 (#3544)

👥 Contributors

We'd like to thank all the contributors who worked on this release!

... (truncated)

Commits

• f195656 chore(release): 9.16.0 (#3557)
• 70dfa38 feat(otel): add trace filter for process pipeline and dial operation (#3550)
• a15e763 fix(pool): Pool ReAuth should not interfere with handoff (#3547)
• 14a8814 chore(docs): explain why MaxRetries is disabled for ClusterClient (#3551)
• 8ca21d2 chore(redisotel): use metric.WithAttributeSet to avoid copy (#3552)
• 7aa4a60 update gomods to align them with the latest beta (#3539)
• 1e6ee06 test(e2e): testing framework upgrade (#3541)
• f7eed76 Add support for filtering traces for certain commands (#3519)
• 3d68c7e chore(deps): bump github/codeql-action from 3 to 4 (#3544)
• 3ad9f9c fix: add missing error variable for non-unix build constraints (#3538)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions