chore(deps): bump the all-dependencies group across 1 directory with 14 updates

[dependabot]

Bumps the all-dependencies group with 7 updates in the / directory:

Package	From	To
github.com/docker/cli	28.5.1+incompatible	29.3.1+incompatible
github.com/docker/docker	28.5.1+incompatible	28.5.2+incompatible
github.com/hashicorp/go-getter	1.8.3	1.8.5
github.com/moby/buildkit	0.25.1	0.29.0
github.com/olekukonko/tablewriter	1.1.0	1.1.4
github.com/onsi/ginkgo/v2	2.27.2	2.28.1
github.com/schollz/progressbar/v3	3.18.0	3.19.0

Updates github.com/docker/cli from 28.5.1+incompatible to 29.3.1+incompatible

Commits

• c2be9cc Merge pull request #6887 from thaJeztah/29.x_backport_pin_actions
• 0da6a51 ci: pin actions to digests
• 6b3ca8f Merge pull request #6884 from thaJeztah/29.x_backport_missing_buildtags
• f47603c Merge pull request #6885 from thaJeztah/29.x_backport_update_actions
• 9709c8f build(deps): bump docker/metadata-action from 5 to 6
• af45a23 build(deps): bump docker/bake-action from 6 to 7
• bc97f5a Merge pull request #6883 from thaJeztah/29.x_backport_update_go1.25.8
• 6d71967 cli/command: add missing "go:build" comments
• 9b51892 update to go1.25.8
• 5927d80 Merge pull request #6844 from vvoland/update-docker
• Additional commits viewable in compare view

Updates github.com/docker/docker from 28.5.1+incompatible to 28.5.2+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v28.5.2

28.5.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.5.2 milestone
• moby/moby, 28.5.2 milestone

[!CAUTION] This release contains fixes for three high-severity security vulnerabilities in runc:

• CVE-2025-31133
• CVE-2025-52565
• CVE-2025-52881

All three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files.

Packaging updates

• Update runc to v1.3.3. moby/moby#51394

Bug fixes and enhancements

• dockerd-rootless.sh: if slirp4netns is not installed, try using pasta (passt). moby/moby#51162
• Update Go runtime to 1.24.9. moby/moby#51387, docker/cli#6613

Deprecations

• Go-SDK: cli/command/image/build: deprecate DefaultDockerfileName, DetectArchiveReader, WriteTempDockerfile, ResolveAndValidateContextPath. These utilities were only used internally and will be removed in the next release. docker/cli#6610
• Go-SDK: cli/command/image/build: deprecate IsArchive utility. docker/cli#6560
• Go-SDK: opts: deprecate ValidateMACAddress. docker/cli#6560
• Go-SDK: opts: deprecate ListOpts.Delete(). docker/cli#6560

Commits

• 89c5e8f Merge pull request #51396 from thaJeztah/28.x_backport_api_docs
• 9b93878 Merge pull request #51395 from thaJeztah/28.x_backport_rootless_reject
• 6178456 Merge pull request #51398 from vvoland/51397-28.x
• 0cae4e5 vendor: github.com/moby/buildkit v0.25.2
• 33cc06f Merge pull request #51394 from vvoland/51393-28.x
• d525277 api/docs: remove BuildCache.Parent field for API v1.42 and up
• 2fbc51b dockerd-rootless.sh: reject DOCKERD_ROOTLESS_ROOTLESSKIT_NET=host
• bd98008 integration-cli: Adjust nofile limits
• 1967515 Dockerfile: update runc binary to v1.3.3
• 4489660 Merge pull request #51387 from thaJeztah/28.x_bump_go
• Additional commits viewable in compare view

Updates github.com/hashicorp/go-getter from 1.8.3 to 1.8.5

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.8.5

What's Changed

• [chore] : Bump the go group with 2 updates by @​dependabot[bot] in hashicorp/go-getter#576
• use %w to wrap error by @​Ericwww in hashicorp/go-getter#475
• fix: #538 http file download skipped if headResp.ContentLength is 0 by @​martijnvdp in hashicorp/go-getter#539
• chore: fix error message capitalization in checksum function by @​ssagarverma in hashicorp/go-getter#578
• [chore] : Bump the go group with 8 updates by @​dependabot[bot] in hashicorp/go-getter#577
• Fix git url with ambiguous ref by @​nimasamii in hashicorp/go-getter#382
• fix: resolve compilation errors in get_git_test.go by @​CreatorHead in hashicorp/go-getter#579
• [chore] : Bump the actions group with 2 updates by @​dependabot[bot] in hashicorp/go-getter#582
• [chore] : Bump the go group with 3 updates by @​dependabot[bot] in hashicorp/go-getter#583
• test that arbitrary files cannot be checksummed by @​schmichael in hashicorp/go-getter#250
• [chore] : Bump google.golang.org/api from 0.260.0 to 0.262.0 in the go group by @​dependabot[bot] in hashicorp/go-getter#585
• [chore] : Bump actions/checkout from 6.0.1 to 6.0.2 in the actions group by @​dependabot[bot] in hashicorp/go-getter#586
• [chore] : Bump the go group with 3 updates by @​dependabot[bot] in hashicorp/go-getter#588
• [chore] : Bump actions/cache from 5.0.2 to 5.0.3 in the actions group by @​dependabot[bot] in hashicorp/go-getter#589
• [chore] : Bump aws-actions/configure-aws-credentials from 5.1.1 to 6.0.0 in the actions group by @​dependabot[bot] in hashicorp/go-getter#592
• [chore] : Bump google.golang.org/api from 0.264.0 to 0.265.0 in the go group by @​dependabot[bot] in hashicorp/go-getter#591
• [chore] : Bump the go group with 5 updates by @​dependabot[bot] in hashicorp/go-getter#593
• IND-6310 - CRT Onboarding by @​nasareeny in hashicorp/go-getter#584
• Fix crt build path by @​ssagarverma in hashicorp/go-getter#594
• [chore] : Bump the go group with 3 updates by @​dependabot[bot] in hashicorp/go-getter#596
• fix: remove checkout action from set-product-version job by @​ssagarverma in hashicorp/go-getter#598
• [chore] : Bump the actions group with 4 updates by @​dependabot[bot] in hashicorp/go-getter#595
• fix(deps): upgrade go.opentelemetry.io/otel/sdk to v1.40.0 (GO-2026-4394) by @​ssagarverma in hashicorp/go-getter#599
• Prepare go-getter for v1.8.5 release by @​nasareeny in hashicorp/go-getter#597
• [chore] : Bump the actions group with 2 updates by @​dependabot[bot] in hashicorp/go-getter#600
• sec: bump go and xrepos + redact aws tokens in url by @​dduzgun-security in hashicorp/go-getter#604

NOTES:

Binary Distribution Update: To streamline our release process and align with other HashiCorp tools, all release binaries will now be published exclusively to the official HashiCorp release site. We will no longer attach release assets to GitHub Releases.

New Contributors

• @​Ericwww made their first contribution in hashicorp/go-getter#475
• @​martijnvdp made their first contribution in hashicorp/go-getter#539
• @​nimasamii made their first contribution in hashicorp/go-getter#382
• @​nasareeny made their first contribution in hashicorp/go-getter#584

Full Changelog: hashicorp/go-getter@v1.8.4...v1.8.5

v1.8.4

What's Changed

• [IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by @​ssagarverma in hashicorp/go-getter#568
• [IND-4227] [COMPLIANCE] Update Copyright Headers by @​oss-core-libraries-dashboard[bot] in hashicorp/go-getter#566
• [COMPLIANCE] Update Copyright Headers by @​oss-core-libraries-dashboard[bot] in hashicorp/go-getter#571
• [chore] : Bump the actions group across 1 directory with 3 updates by @​dependabot[bot] in hashicorp/go-getter#567
• fix: allow downloading S3 files from MinIO over http by @​vsarunas in hashicorp/go-getter#570
• [chore] : Bump the actions group across 1 directory with 6 updates by @​dependabot[bot] in hashicorp/go-getter#574
• [chore] : Bump the go group across 1 directory with 12 updates by @​dependabot[bot] in hashicorp/go-getter#575

... (truncated)

Commits

• c56e01f sec: bump go and xrepos + redact aws tokens in url (#604)
• b83a3c7 [chore] : Bump the actions group with 2 updates (#600)
• 90c7d9c Prepare go-getter for v1.8.5 release (#597)
• 09c58f4 Merge pull request #599 from hashicorp/chore/upgrade-otel
• 93c75aa chore: upgrade OpenTelemetry dependencies to v1.40.0
• d567899 Merge pull request #595 from hashicorp/dependabot/github_actions/actions-be91...
• 4d3358c fix: remove checkout action from set-product-version job (#598)
• b9c8eab [chore] : Bump the go group with 3 updates (#596)
• 2ec0046 [chore] : Bump the actions group with 4 updates
• 8fa22a6 Merge pull request #594 from hashicorp/fix-crt-build-path
• Additional commits viewable in compare view

Updates github.com/moby/buildkit from 0.25.1 to 0.29.0

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.29.0

Welcome to the v0.29.0 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

• Tõnis Tiigi
• CrazyMax
• David Karlsson
• Akihiro Suda
• Sebastiaan van Stijn
• Brian Ristuccia
• Jonathan A. Sternberg
• Mateusz Gozdek
• Natnael Gebremariam

Notable Changes

• Builtin Dockerfile frontend has been updated to v1.23.0 changelog
• Git sources can now initialize all files from a Git checkout with commit time in the LLB API for better reproducibility. See Dockerfile changelog for how to enable this in the Dockerfile frontend #6600
• Various file access operations in Git and HTTP sources have been hardened for improved security #6613
• Frontends can now report updated SOURCE_DATE_EPOCH with result metadata that can be used by exporters #6601
• Fix possible panic when listing build history after recent deletions #6614
• Fix possible issue where builds from Git repositories could start to fail after submodule rename #6563
• Fix possible process lifecycle event ordering issue in interactive container API that could cause deadlocks in the client #6531
• Fix regression where build progress skipped the message about layers being pushed to the registry #6587
• Fix possible cgroup initialization failure in BuildKit container image entrypoint on some environments #6585
• Fix issue with resolving symlinks via file access methods of the Gateway API #6559
• Fix possible "parent snapshot does not exist" error when exporting images in parallel #6558
• Fix possible panic from zstd compression #6599
• Fix issue where cache imports from an uninitialized local cache tag could fail the build #6554
• Included CNI plugins have been updated to v1.9.1 #6583
• Included QEMU emulator support has been updated to v10.2.1 #6580
• Runc container runtime has been updated to v1.3.5 #6625

Dependency Changes

• github.com/aws/aws-sdk-go-v2 v1.41.1 -> v1.41.4
• github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.7.4 -> v1.7.5
• github.com/aws/aws-sdk-go-v2/config v1.32.7 -> v1.32.12
• github.com/aws/aws-sdk-go-v2/credentials v1.19.7 -> v1.19.12
• github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.17 -> v1.18.20
• github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.17 -> v1.4.20
• github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.17 -> v2.7.20
• github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4 -> v1.8.6
• github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.4 -> v1.13.7

... (truncated)

Commits

• 8543ce4 Merge pull request #6634 from moby/dependabot/github_actions/crazy-max-dot-gi...
• 1154c7e Merge pull request #6635 from moby/dependabot/github_actions/codecov/codecov-...
• 326e4d1 Merge pull request #6637 from moby/dependabot/github_actions/github/codeql-ac...
• 676cdfa Merge pull request #6636 from moby/dependabot/github_actions/actions/setup-go...
• 1dd2e50 build(deps): bump github/codeql-action from 4.34.1 to 4.35.1
• 21fb771 build(deps): bump actions/setup-go from 6.3.0 to 6.4.0
• 06b36e5 build(deps): bump codecov/codecov-action from 5.5.4 to 6.0.0
• 969f5e4 build(deps): bump the crazy-max-dot-github group with 2 updates
• f8fd302 Merge pull request #6623 from crazy-max/zizmor
• a103fb6 Merge pull request #6625 from thaJeztah/bump_runc_1.3
• Additional commits viewable in compare view

Updates github.com/morikuni/aec from 1.0.0 to 1.1.0

Release notes

Sourced from github.com/morikuni/aec's releases.

v1.1.0

What's Changed

• send both SCO and DEC proprietary sequence for terminal compatibility by @​ndeloof in morikuni/aec#5
• Add go.mod by @​morikuni in morikuni/aec#6

New Contributors

• @​ndeloof made their first contribution in morikuni/aec#5

Full Changelog: morikuni/aec@v1.0.0...v1.1.0

Commits

• ea8ec34 Merge pull request #6 from morikuni/add-go-mod
• 8c1fc2a Add go.mod
• b7ec452 Merge pull request #5 from ndeloof/sco_dec
• ef8a0ba send both SCO and DEC proprietary sequence for terminal compatibility
• See full diff in compare view

Updates github.com/olekukonko/tablewriter from 1.1.0 to 1.1.4

Commits

• a0dea8a no need to disable twice
• a4fb40a Merge pull request #314 from sducamp/fix/rendition-debug-leak
• 6bc4cb4 fix: prevent debug output leak from renderer during Options() reconfiguration
• 54408fe update ll to v0.1.6
• 5ea5f3c add mote tab test ans update go mod
• 1455dd8 Merge pull request #311 from olekukonko/tabber
• d7b0a55 improve tab and make test more predictable
• 62117a2 add space default #312 for colorized renderer
• 4958831 ll v0.1.5 update enables logging by default hence disable
• 1c68e06 use space for padding as default #312
• Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.27.2 to 2.28.1

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.28.1

2.28.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

v2.28.0

2.28.0

Ginkgo's SemVer filter now supports filtering multiple components by SemVer version:

It("should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)", SemVerConstraint(">= 3.2.0"), ComponentSemVerConstraint("redis", ">= 8.0.0") func() {
    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is >= 8.0.0
})

can be filtered in or out with an invocation like:

ginkgo --sem-ver-filter="2.1.1, redis=8.2.0"

Huge thanks to @​Icarus9913 for working on this!

v2.27.5

2.27.5

Fixes

Don't make a new formatter for each GinkgoT(); that's just silly and uses precious memory

v2.27.4

2.27.4

Fixes

• CurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]

v2.27.3

2.27.3

Fixes

report exit result in case of failure [1c9f356] fix data race [ece19c8]

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.28.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

2.28.0

Ginkgo's SemVer filter now supports filtering multiple components by SemVer version:

It("should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)", SemVerConstraint(">= 3.2.0"), ComponentSemVerConstraint("redis", ">= 8.0.0") func() {
    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is >= 8.0.0
})

can be filtered in or out with an invocation like:

ginkgo --sem-ver-filter="2.1.1, redis=8.2.0"

Huge thanks to @​Icarus9913 for working on this!

2.27.5

Fixes

Don't make a new formatter for each GinkgoT(); that's just silly and uses precious memory

2.27.4

Fixes

• CurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]

2.27.3

Fixes

report exit result in case of failure [1c9f356] fix data race [ece19c8]

Commits

• 5d1d628 v2.28.1
• 676f985 update test mu language
• 8032100 appease go vet
• 41ca807 bump dependencies
• 2b2305b v2.28.0
• 71d2d89 feat: support component semantic version filtering
• 8cbbcb4 Fix doclink for ginkgo run
• a928307 v2.27.5
• 0d0e96d don't make a new formatter for each GinkgoT(); that's just silly and uses pre...
• 867ce95 v2.27.4
• Additional commits viewable in compare view

Updates github.com/onsi/gomega from 1.38.2 to 1.39.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.39.0

1.39.0

Features

Add MatchErrorStrictly which only passes if errors.Is(actual, expected) returns true. MatchError, by contrast, will fallback to string comparison.

v1.38.3

1.38.3

Fixes

make string formatitng more consistent for users who use format.Object directly

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.39.0

Features

Add MatchErrorStrictly which only passes if errors.Is(actual, expected) returns true. MatchError, by contrast, will fallback to string comparison.

1.38.3

Fixes

make string formatitng more consistent for users who use format.Object directly

Commits

• 49561ad v1.39.0
• 8f7f425 document MatchErrorStrictly
• bae643d add matcher relecting errors.Is behavior
• a3ca2ca v1.38.3
• 4dada36 fix failing have http tests
• d40c691 make string formatitng more consistent for users who use format.Object directly
• 2a37b46 doc: fix typos
• ee26170 docs: fix HaveValue example
• cc85c05 Bump actions/setup-go from 5 to 6 (#866)
• 8905788 Bump github.com/onsi/ginkgo/v2 from 2.25.1 to 2.25.3 (#865)
• Additional commits viewable in compare view

Updates github.com/schollz/progressbar/v3 from 3.18.0 to 3.19.0

Release notes

Sourced from github.com/schollz/progressbar/v3's releases.

v3.19.0

What's Changed

• add simple spinner/counter example by @​OkieOth in schollz/progressbar#211
• feat: allow user to safely run and manage multiple progressbar http servers by @​cmsax in schollz/progressbar#213
• fix: when setMaxDetailRow() but not use AddDetail(), cause index out of range. by @​chengxilo in schollz/progressbar#214
• Fix terminal width when stdout is redirected by @​WGH- in schollz/progressbar#215
• fix: describe after by @​schollz in schollz/progressbar#225
• fix: flickering on powershell by @​mengshengwu in schollz/progressbar#220
• fix: trailing residual characters in ANSI mode by @​yevk in schollz/progressbar#221
• Always call bar.Finish() in Reader by @​mrkbac in schollz/progressbar#218
• Remove unused argument by @​bitlux in schollz/progressbar#223
• Added OptionSetCustomColorCodes to pass in custom color codes. by @​polymorcodeus in schollz/progressbar#226
• Remove hardcoded choice by @​goncalogdomingo in schollz/progressbar#216

New Contributors

• @​OkieOth made their first contribution in schollz/progressbar#211
• @​WGH- made their first contribution in schollz/progressbar#215
• @​mengshengwu made their first contribution in schollz/progressbar#220
• @​yevk made their first contribution in schollz/progressbar#221
• @​mrkbac made their first contribution in schollz/progressbar#218
• @​bitlux made their first contribution in schollz/progressbar#223
• @​polymorcodeus made their first contribution in schollz/progressbar#226
• @​goncalogdomingo made their first contribution in schollz/progressbar#216

Full Changelog: schollz/progressbar@v3.18.0...v3.19.0

Commits

• 56ad4a7 Merge pull request #216 from goncalogdomingo/main
• dae95ef Merge pull request #226 from polymorcodeus/mart1082/optsetcustomcolor
• 0ec6061 Merge pull request #223 from bitlux/bitlux/unused
• f13fb15 Merge pull request #218 from mrkbac/fix-reader-close
• 472b188 Merge pull request #221 from yevk/main
• 57f6968 Added OptionSetCustomColorCodes to pass in custom color codes.
• 655d41e Merge pull request #220 from mengshengwu/fix-windows-progressbar-flickering
• 533e284 Merge pull request #225 from schollz/fix/describe
• 914e511 fix: add describe solution
• 5692e00 fix: allow progressbar to be updated afterwards
• Additional commits viewable in compare view

Updates github.com/sirupsen/logrus from 1.9.3 to 1.9.4

Release notes

Sourced from github.com/sirupsen/logrus's releases.

v1.9.4

Notable changes

• go.mod: update minimum supported go version to v1.17 sirupsen/logrus#1460
• go.mod: bump up dependencies sirupsen/logrus#1460
• Touch-up godoc and add "doc" links.
• README: fix links, grammar, and update examples.
• Add GNU/Hurd support sirupsen/logrus#1364
• Add WASI wasip1 support sirupsen/logrus#1388
• Remove uses of deprecated ioutil package sirupsen/logrus#1472
• CI: update actions and golangci-lint sirupsen/logrus#1459
• CI: remove appveyor, add macOS sirupsen/logrus#1460

Full Changelog: sirupsen/logrus@v1.9.3...v1.9.4

Changelog

Sourced from github.com/sirupsen/logrus's changelog.

1.9.4

Fixes:

• Remove uses of deprecated ioutil package

Features:

• Add GNU/Hurd support
• Add WASI wasip1 support

Code quality:

• Update minimum supported Go version to 1.17
• Documentation updates

Commits

• b61f268 Merge pull request #1472 from goldlinker/master
• 15c29db refactor: replace the deprecated function in the ioutil package
• cb253f3 Merge pull request #1464 from thaJeztah/touchup_godoc
• 29b2337 Merge pull request #1468 from thaJeztah/touchup_readme
• d916819 Merge pull request #1427 from dolmen/fix-testify-usage
• 135e482 README: small touch-ups
• 2c5fa36 Merge pull request #1467 from thaJeztah/rm_old_badge
• 877ecec README: remove travis badge
• 55cf256 Merge pull request #1393 from jsoref/grammar
• 21bae50 Merge pull request #1426 from dolmen/testing-fix-use-of-math-rand
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.46.0 to 0.48.0

Commits

• e08b067 go.mod: update golang.org/x dependencies
• 7d0074c scrypt: fix panic on parameters <= 0
• 506e022 go.mod: update golang.org/x dependencies
• 7dacc38 chacha20poly1305: error out in fips140=only mode
• See full diff in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits

• ec11c4a errgroup: fix a typo in the documentation
• 1a58307 all: modernize interface{} -> any
• 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
• See full diff in compare view

Updates golang.org/x/term from 0.38.0 to 0.41.0

Commits

• 9d2dc07 go.mod: update golang.org/x dependencies
• d954e03 all: upgrade go directive to at least 1.25.0 [generated]
• 3aff304 go.mod: update golang.org/x dependencies
• a7e5b04 go.mod: update golang.org/x dependencies
• 943f25d x/term: handle transpose
• 9b991dd x/term: handle delete key
• See full diff in compare view

Updates golang.org/x/time from 0.14.0 to 0.15.0

Commits

• 812b343 all: upgrade go directive to at least 1.25.0 [generated]
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.