Previously, we'd only seen compressed layers have LayerSources. As of
v25, docker puts all laye...

Signed-off-by: Carlos Alexandro Becker <[email protected]>

* feat: implement prune flag

* address changes

* revert

* boilerplate

* rename

* ...

* tag: add command explanation to the long help

* Update crane_tag.md

The heuristic only works well if the upstream keychain doesn't do any
caching. This is usually ...

Sometimes we know it, sometimes we don't. When we do, set it.

Now crane validate will validate the entire remote index, including that
there are not any mism...

Signed-off-by: Jason Hall <[email protected]>

Signed-off-by: Josh Dolitsky <[email protected]>

Signed-off-by: Matt Moore <[email protected]>

* Don't try cross-origin mounting against dockerhub

* Don't try to mount at all if we hit an ...

Signed-off-by: Matt Moore <[email protected]>

Signed-off-by: Matt Moore <[email protected]>

Signed-off-by: Matt Moore <[email protected]>

* add --blobs-to-disk to 'crane registry serve'

Signed-off-by: Jason Hall <[email protected]...

Signed-off-by: Laitron <[email protected]>

When calling Crane programmatically, it's difficult to capture the
output as it's written direc...

If we're trying to do things to a non-index, we should fail earlier.

Dropped this while refactoring. Not passing scopes can fail for some
registries.

Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.3 to 3.1.4.
...

(This makes it easier to just use curl.)

In order to do this, we expose some functionality in...

Signed-off-by: AdamKorcz <[email protected]>

Signed-off-by: Jason Hall <[email protected]>

Signed-off-by: Jason Hall <[email protected]>

This causes issues with broken registry implementations that 403 if you
have requested push sco...

Pusher currently HEADs manifests to see if they already exist in the
destination repository. Un...

goreleaser failed with:

archive has different count of binaries for each platform,
which may...

This will copy every tag in the src repo to dst.

This adds a --no-clobber flag that crane cp ...

DockerHub fails to auth if you ask for an invalid repository. Docs say
this should not happen, ...

The PowerPC (ppc64le) architecture was not included (in the container image it is).

This is ...

This makes the images non-reproducible which defeats the purpose of setting the random source.

* allow pkg/v1/random to accept a RNG source

* added a unit test for the new options

* code organization: split fetcher from descriptor

* Refactor everything to go through Puller...

Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.2 to 3.1.3.
...

This PR adds a Puller implementation and uses it in `crane ls` and
`crane catalog` to stream re...

* feat(daemon): generate config file from Docker API

* refactor: fix lint issues

* test: a...

Signed-off-by: Batuhan Apaydın <[email protected]>

This reverts commit 1cb7e133961581d6e0f5564e187b8f4dbf33f9d5.

* deprecate estargz

* also deprecate crane optimize

* just delete 'crane optimize' and cra...

* authn: Add NewConfigKeychain to load a config from explicit path

* more better godocs

* ...

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from...

We dropped down to 1000 for the sake of ECR, but that doesn't make much
sense, really.

Per h...

Bumps [slsa-framework/slsa-verifier](https://github.com/slsa-framework/slsa-verifier) from 2.1.0...

Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.1 to 3.1.2.
...

* Change return type of remote.Referrers

Actually using this was cumbersome because it just r...

* Add a test that tries to get the referrers for the image that does not have a referrer

* Fi...

This reverts commit 2ccd41c448369ef98d1cd785f75ebfa51bc8ac94.

:broom: This doesn't have `glibc` (like `base`) and just has the `busybox` necessities.

/kind...

* Implement remote.Pusher

The Pusher handles multiplexing across multiple repositories and
d...

The partial.ConfigLayer implementation needs to fetch the config blob,
but we don't always need...

This allows us to manipulate an index that contains an image that
contains a streaming layer.

This will allow just passing a remote.Descriptor to remote.Pusher and
also gives an escape hatc...

This will allow reuse across a repository.

One major difference is that keychains are no long...

Sometimes Authenticators stick around for a while and eventually expire.
This changes modifies ...

Bumps [slsa-framework/slsa-verifier](https://github.com/slsa-framework/slsa-verifier) from 2.0.1...

I'm not sure the backoff needs changing, but the posted quotas have changed.

TODO: ARBackoff()

* Adding mutate --workdir option to set the working directory

* Regenerating the Markdown doc...

Bumps [actions/stale](https://github.com/actions/stale) from 7 to 8.
- [Release notes](https://...

* Support Warning header aggregation and reporting in crane

* write to stderr

* revert man...

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4.
- [Release notes](ht...

Because of how omitempty works, an empty Layers and a nil Layers will
both be omitted. We don't...

Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-crede...

Signed-off-by: Batuhan Apaydın <[email protected]>

Signed-off-by: Tianon Gravi <[email protected]>

Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-gener...

* crane: add --flatten for index append

While it's possible that folks might want to append a...