Bump github.com/shipwright-io/build from 0.13.0 to 0.14.0

[dependabot]

Bumps github.com/shipwright-io/build from 0.13.0 to 0.14.0.

Release notes

Sourced from github.com/shipwright-io/build's releases.

Shipwright Build release v0.14.0

Draft Release changes since v0.13.0

Features

#1723 by @​SaschaSchwarze0: The sample build strategy for BuildKit now uses the latest BuildKit release instead of its nightly build

#1702 by @​HeavyWombat: Added flag to bundle-step and git-step command to print a file listing when pull and unpack of the source bundle, or Git clone is complete.

#1683 by @​dorzel: Added NodeSelector on Build and BuildRun objects, which enables specifying the scheduling behavior of TaskRuns.

#1646 by @​karanibm6: You can now run a post-installation step to migrate the storage version of the custom resources

#1600 by @​SaschaSchwarze0: The sample build strategies now uses imagePullPolicy=Always for the BuildAh steps to ensure the latest available image version is always used

#1588 by @​SaschaSchwarze0: You can now easily determine that your BuildRun failed because a step went out of memory as the reason is now set to StepOutOfMemory

#1489 by @​karanibm6: Vulnerability Scanning Implementation

Fixes

#1700 by @​SaschaSchwarze0: The image-processing step now retries the vulnerability scan using Trivy if that failed to download the vulnerability database due to rate-limiting

#1699 by @​HeavyWombat: Fixed an issue when unpacking a code bundle that contains a non-writable sub-directory.

#1634 by @​aleskandro: Add sample build strategy to orchestrate multi-arch container image builds. The service account executing this build strategy must have the ability to manage Jobs and Pods, as well as have the ability to exec into Pods.

#1628 by @​HeavyWombat: The bundle prune option now also supports the legacy registry endpoints for both DockerHub and IBM Container Registry in its registry detection routine.

#1623 by @​SaschaSchwarze0: The controller now does not panic when no vulnerabilities are found, also severity is correctly parsed

#1569 by @​SaschaSchwarze0: An Alpha Build where spec.dockerfile is set to \"\", is now transformed to a Beta Build without the dockerfile parameter to behave like in Alpha

#1566 by @​SaschaSchwarze0: The usage of different secrets or secret keys as values inside one array parameter is now possible

API Changes

#1683 by @​dorzel: Added NodeSelector on Build and BuildRun objects, which enables specifying the scheduling behavior of TaskRuns.

#1489 by @​karanibm6: Vulnerability Scanning Implementation

Docs

Misc

#1727 by @​SaschaSchwarze0: The supported Kubernetes versions are now v1.29 to v1.31

#1710 by @​SaschaSchwarze0: The new minimum Tekton version is v0.56

#1704 by @​shipwright-ci-bot: Update to the new latest Tekton LTS release v0.65.0

... (truncated)

Commits

• bee9608 Merge pull request #1727 from SaschaSchwarze0/sascha-kube-updates
• c0585cc Update Kubernetes dependency
• 13f4422 Merge pull request #1722 from shipwright-io/tweak/file-listing-dot-git
• 8fb1e54 Tweak file listing to omit .git directory
• 3e712a0 Merge pull request #1723 from SaschaSchwarze0/sascha-buildkit
• 4038570 Use specific tag for BuildKit
• 9bbbae5 Merge pull request #1710 from SaschaSchwarze0/sascha-update-minimum-tekton-lts
• d1c2a0f Merge pull request #1718 from shipwright-io/dependabot/go_modules/github.com/...
• c91dafd Merge pull request #1719 from SaschaSchwarze0/sascha-install-crane
• ee4dca8 Merge pull request #1720 from SaschaSchwarze0/sascha-fix-npe
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)