Bumping packages to latest stable versions

[distroless-bot]

Bumping packages to latest stable version

302d301
< openjdk-17-jdk-headless_17.0.16-p-8-1_deb12u1_amd64 32cdc6b5390bd750d78da33bc42922b06bd873d56a3dafbd614ae60c0746c38b
304,305d302
< openjdk-17-jdk-headless_17.0.16-p-8-1_deb12u1_arm64 0ec508a8264c4d0a16be05c355eb94e92f9e6193e209a3f7352e5367b7a4e58f
< openjdk-17-jdk-headless_17.0.16-p-8-1_deb12u1_ppc64el 9e5bbe5b4d50c38cc7b7d392cd0546d64d21a7f5b795c9ad482fcc699136aaa1
308,309c305,308
< openjdk-17-jdk-headless_17.0.16-p-8-1_deb12u1_s390x b001a5d1de08f093b9679a77791db5d49815f0f97f96ddb362dd72f6729be73f
< openjdk-17-jre-headless_17.0.16-p-8-1_deb12u1_amd64 910291a6e2e24e7ced4413e58f0df9dd4320e8246a6329c5047d0295afe19169
---
> openjdk-17-jdk-headless_17.0.17-p-10-1_deb12u1_amd64 c334a78e503434f58065b5de006d8f9f8c91729afa997a50f1d0b7f79b02a334
> openjdk-17-jdk-headless_17.0.17-p-10-1_deb12u1_arm64 f818a3965d41fe3e3b881a002a60c4ca5e03373d49af0b94e291aca7a8807f73
> openjdk-17-jdk-headless_17.0.17-p-10-1_deb12u1_ppc64el 250499dbf8455ec3c3d37333237d381ed09bf197e7c7854a438acc62245d68bb
> openjdk-17-jdk-headless_17.0.17-p-10-1_deb12u1_s390x a9feb91432926f8d7e572865cdf088bc0989e6d651a9459a7aa8d43fcdef99b5
312,313d310
< openjdk-17-jre-headless_17.0.16-p-8-1_deb12u1_arm64 8583c4053d76adc163ce88842175f1cd8543b63add0b988aa1fd20734bd6d357
< openjdk-17-jre-headless_17.0.16-p-8-1_deb12u1_ppc64el 65b4bd180a69d4716807465f468cda21d435e15a7b334d279d9ed5bfecafc2c4
316c313,316
< openjdk-17-jre-headless_17.0.16-p-8-1_deb12u1_s390x e99742f2e23e67344550f30d56a42b70b0ab73bc751fd122bb29234eb313424b
---
> openjdk-17-jre-headless_17.0.17-p-10-1_deb12u1_amd64 719f1d5a61907c3e4a9891aac172765bf60ee12f180b099d33caed2d9a96df65
> openjdk-17-jre-headless_17.0.17-p-10-1_deb12u1_arm64 eed7375cfdba7bc88247ba618ec5f9312313ab2db12764e83e09304ee9a7dd08
> openjdk-17-jre-headless_17.0.17-p-10-1_deb12u1_ppc64el c14e6fc96e9918c6cab40291e3320960fcc5cd693d5756d8589e5e1a7708493b
> openjdk-17-jre-headless_17.0.17-p-10-1_deb12u1_s390x c5c1855df4ac8642fe9129055289ad4e722a830ee76732e1a84d60fd0305c96b

[gemini-code-assist]

Summary of Changes

Hello @distroless-bot, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request performs a routine maintenance update, bringing several core Debian packages for the Bookworm and Trixie distributions to their most recent stable versions. This includes a significant update to OpenJDK 17, ensuring that the project benefits from the latest security patches and performance improvements available in these packages.

Highlights

• OpenJDK 17 Update: The OpenJDK 17 headless JDK and JRE packages for Debian Bookworm have been updated from version 17.0.16+8-1~deb12u1 to 17.0.17+10-1~deb12u1 across all supported architectures.
• Debian Package Refresh: Numerous Debian packages for both Bookworm and Trixie distributions have been refreshed to their latest stable versions, reflected by updated snapshot archive URLs and corresponding SHA256 hashes in the lock files.
• Dependency Lock File Updates: The MODULE.bazel.lock file and various bookworm.lock.json, bookworm_java.lock.json, bookworm_python.lock.json, and trixie.lock.json files have been updated to reflect the new package versions and their corresponding checksums.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request updates various package dependencies by bumping the Debian snapshot dates and updating OpenJDK to version 17.0.17. The changes are mostly correct, but I found an inconsistency where the trixie_java configuration was updated without regenerating its lock file. My review includes a comment detailing the issue and how to resolve it.

[gemini-code-assist]

The snapshot URLs for trixie_java have been updated in this YAML file, but the corresponding lock file private/repos/deb/trixie_java.lock.json has not been updated. This can lead to inconsistent dependencies or build failures.

It seems trixie_java is missing from the hardcoded list of repositories in the knife lock command. Please add it to the list and then run ./knife lock to regenerate the lock file. The updated trixie_java.lock.json and the resulting changes in MODULE.bazel.lock should be included in this pull request.

[github-actions]

🌳 🔄 Image Check

This pull request has modified the following images:

//java:java17_nonroot_amd64_debian12
//java:java17_root_amd64_debian12
//java:java17_debug_nonroot_ppc64le_debian12
//java:java17_root_ppc64le_debian12
//java:java17_debug_root_amd64_debian12
//java:java17_debug_root_amd64_debian12
//java:java17_debug_nonroot_amd64_debian12
//java:java17_nonroot_ppc64le_debian12
//java:java17_debug_root_ppc64le_debian12
//java:java17_debug_nonroot_arm64_debian12
//java:java17_debug_root_arm64_debian12
//java:java17_nonroot_arm64_debian12
//java:java17_root_amd64_debian12
//java:java17_root_arm64_debian12
//java:java17_debug_nonroot_amd64_debian12
//java:java17_debug_nonroot_s390x_debian12
//java:java17_root_s390x_debian12
//java:java17_nonroot_s390x_debian12
//java:java17_debug_root_s390x_debian12
//java:java17_nonroot_amd64_debian12

You can check the details in the report here