chore(deps): bump the minor-and-patch group across 2 directories with 4 updates

[dependabot]

Bumps the minor-and-patch group with 3 updates in the /runtime directory: github.com/docker/docker, github.com/prometheus/common and google.golang.org/grpc.
Bumps the minor-and-patch group with 1 update in the /sdk/go directory: golang.org/x/tools.

Updates github.com/docker/docker from 27.3.1+incompatible to 27.4.0+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v27.4.0

27.4.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 27.4.0 milestone
• moby/moby, 27.4.0 milestone

API

• GET /images/json with the manifests option enabled now preserves the original order in which manifests appeared in the manifest-index. moby/moby#48712

Bug fixes and enhancements

• When reading logs with the jsonfile or local log drivers, any errors while trying to read or parse underlying log files will cause the rest of the file to be skipped and move to the next log file (if one exists) rather than returning an error to the client and closing the stream. The errors are viewable in the Docker Daemon logs and exported to traces when tracing is configured. moby/moby#48842
• When reading log files, compressed log files are now only decompressed when needed rather than decompressing all files before starting the log stream. moby/moby#48842
• Fix an issue that meant published ports from one container on a bridge network were not accessible from another container on the same network with userland-proxy disabled, if the kernel's br_netfilter module was not loaded and enabled. The daemon will now attempt to load the module and enable bridge-nf-call-iptables or bridge-nf-call-ip6tables when creating a network with the userland proxy disabled. moby/moby#48685
• Fix loading of bridge and br_netfilter kernel modules. moby/moby#48966
• containerd image store: Fix Docker daemon failing to fully start with a "context deadline exceeded error" with containerd snapshotter and many builds/images. moby/moby#48954
• containerd image-store: Fix partially pulled images not being garbage-collected. moby#48910, moby/moby#48957
• containerd image store: Fix docker image inspect outputting duplicate references in RepoDigests. moby/moby#48785
• containerd image store: Fix not being able to connect to some insecure registries in cases where the HTTPS request failed due to a non-TLS related error. moby/moby#48758
• containerd image store: Remove a confusing warning log when tagging a non-dangling image. moby/moby#49010
• dockerd-rootless-setuptool.sh: let --force ignore smoke test errors moby/moby#48695
• Disable IPv6 Duplicate Address Detection (DAD) for addresses assigned to the bridges belonging to bridge networks. moby/moby#48684
• Remove BuildKit init timeout. moby/moby#48963
• Ignore "dataset does not exist" error when removing dataset on ZFS. moby/moby#48968
• Client: Prevent idle connections leaking FDs. moby/moby#48764
• Fix anonymous volumes being created through the --mount option not being marked as anonymous. moby/moby#48755
• After a daemon restart with live-restore, ensure an iptables jump to the DOCKER-USER chain is placed before other rules. moby/moby#48714
• Fix a possible memory leak caused by OTel meters. moby/moby#48693
• Create distinct build history db for each store. moby/moby#48688
• Fix an issue that caused excessive memory usage when DNS resolution was made in a tight loop. moby/moby#48840
• containerd image store: Do not underline names in docker image ls --tree. docker/cli#5519
• containerd image store: Change name of USED column in docker image ls --tree to IN USE. docker/cli#5518
• Fix a bug preventing image pulls from being cancelled during docker run. docker/cli#5654
• Port some completions from the bash completion to the new cobra based completion. docker/cli#5618
• The docker login and docker logout command no longer update the configuration file if the credentials didn't change. docker/cli#5569
• Optimise docker stats to reduce flickering issues. docker/cli#5588, docker/cli#5635
• Fix inaccessible plugins paths preventing plugins from being detected. docker/cli#5652
• Add support for events --filter in cobra generated shell completions. docker/cli#5614
• Fix bash completion for events --filter daemon=. docker/cli#5563
• Improve shell-completion of containers for docker rm. docker/cli#5540
• Add shell-completion for --platform flags. docker/cli#5540
• rootless: Make /etc/cdi and /var/run/cdi accessible by the Container Device Interface (CDI) integration. moby/moby#49027

Removed

• Deprecate Daemon.Exists() and Daemon.IsPaused(). These functions are no longer used and will be removed in the next release. moby/moby#48719
• Deprecate container.ErrNameReserved and container.ErrNameNotReserved. moby/moby#48697

... (truncated)

Commits

• 92a8393 Merge pull request #49027 from thaJeztah/27.x_backport_cdi-rootless
• 9163aa3 Merge pull request #49026 from thaJeztah/27.x_update_go_1.22.10
• 4775621 Dockerd rootless: make {/etc,/var/run}/cdi available
• 0176f4a Merge pull request #49024 from thaJeztah/27.x_vendor_buildkit_0.17.3
• 0e34b39 update to go1.22.10
• 7919b80 [27.x] vendor: github.com/moby/buildkit v0.17.3
• a92d4c5 Merge pull request #49013 from vvoland/49006-27.x
• 1cc1274 Merge pull request #49010 from vvoland/49009-27.x
• 525b929 registry: deprecate RepositoryInfo.Class
• d6d43b2 c8d/tag: Don't log a warning if the source image is not dangling
• Additional commits viewable in compare view

Updates github.com/prometheus/common from 0.60.1 to 0.61.0

Release notes

Sourced from github.com/prometheus/common's releases.

v0.61.0

What's Changed

• Mark sigv4 deprecated by @​SuperQ in prometheus/common#715
• Provide a way to get UserAgent by @​mmorel-35 in prometheus/common#716
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#714
• Bump golang.org/x/net from 0.29.0 to 0.30.0 by @​dependabot in prometheus/common#712
• chore: enable perfsprint linter by @​mmorel-35 in prometheus/common#717
• chore: use testify instead of testing.Fatal by @​mmorel-35 in prometheus/common#718
• Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 by @​dependabot in prometheus/common#711
• setup dependabot for github.com/prometheus/common/assets by @​mmorel-35 in prometheus/common#719
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#721
• Mark promlog deprecated by @​SuperQ in prometheus/common#720
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#722
• Allow custom user-agent definition by @​mmorel-35 in prometheus/common#725
• fix: values escaping bugs by @​ywwg in prometheus/common#727
• fix(promslog): always use UTC for time by @​tjhop in prometheus/common#735
• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /assets by @​dependabot in prometheus/common#729
• Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 by @​dependabot in prometheus/common#730
• promslog: always lowercase log level from CLI by @​jkroepke in prometheus/common#728
• Synchronize common files from prometheus/prometheus by @​prombot in prometheus/common#726
• Bump golang.org/x/net from 0.30.0 to 0.32.0 by @​dependabot in prometheus/common#736
• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by @​dependabot in prometheus/common#731
• Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 by @​dependabot in prometheus/common#732

Full Changelog: prometheus/common@v0.60.1...v0.61.0

Commits

• 7b484e9 Bump google.golang.org/protobuf from 1.35.1 to 1.35.2 (#732)
• 05e3c40 Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#731)
• a0ef737 Bump golang.org/x/net from 0.30.0 to 0.32.0 (#736)
• f99f029 Update common Prometheus files (#726)
• b88f24c promslog: always lowercase log level from CLI (#728)
• 2c3c048 Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 (#730)
• ec7291f Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 in /assets (#729)
• 145b50a fix(promslog): always use UTC for time (#735)
• 39a62f7 fix: values escaping bugs (#727)
• 7ed4523 Allow custom user-agent definition (#725)
• Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.68.0 to 1.68.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.68.1

Bug Fixes

• credentials/alts: avoid SRV and TXT lookups for handshaker service to work around hangs caused by buggy versions of systemd-resolved. (#7861)

Dependencies

• Relax minimum Go version requirement from go1.22.7 to go1.22. (#7831)

Commits

• d6a777f Change version to 1.68.1 (#7894)
• 9c54bbb deps: Remove go patch version from go.mod (#7831) (#7877)
• dc26fee credentials/alts: avoid SRV and TXT lookups for handshaker service (#7861) (#...
• eff4b16 Change version to 1.68.1-dev (#7745)
• See full diff in compare view

Updates golang.org/x/tools from 0.27.0 to 0.28.0

Commits

• 44670c7 go.mod: update golang.org/x dependencies
• 7eebab3 gopls/internal/golang: support extract variable at top level
• e334696 gopls/internal/golang: ignore effects for change signature refactoring
• 3901733 internal/refactor/inline: substitute groups of dependent arguments
• 61b2408 gopls/internal/golang: add "Extract constant" counterpart
• c01eead internal/gcimporter: require binary export data header
• 9a04136 gopls/internal/golang/stubmethods: refine crash into bug report
• 01e0b05 internal/refactor/inline: fix condition for splice assignment strategy
• 557f540 gopls/internal/golang: don't offer to move variadic parameters
• 399ee16 internal/gcimporter: update FindExportData to return a non-negative size
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions