Skip to content

chore(deps): bump github.com/containerd/containerd/v2 from 2.2.5 to 2.2.6 in the containerd group#4217

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/main/containerd-1b91a3d232
Open

chore(deps): bump github.com/containerd/containerd/v2 from 2.2.5 to 2.2.6 in the containerd group#4217
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/main/containerd-1b91a3d232

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor

Bumps the containerd group with 1 update: github.com/containerd/containerd/v2.

Updates github.com/containerd/containerd/v2 from 2.2.5 to 2.2.6

Release notes

Sourced from github.com/containerd/containerd/v2's releases.

containerd 2.2.6

Welcome to the v2.2.6 release of containerd!

The sixth patch release for containerd 2.2 contains various fixes and updates.

Highlights

Container Runtime Interface (CRI)

  • Fix nil pointer dereference in NRI GetIPs during pod sandbox teardown or container exit (#13696)
  • Reject CreateContainer calls when the target sandbox is not running (#13669)
  • Ensure sandbox shutdown on RunPodSandbox hook failures to avoid mount leaks (#13644)

Image Distribution

  • Limit fallback to /blobs endpoint during ref resolution to prevent content store pollution (#13620)

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Samuel Karp
  • Chris Henzie
  • Phil Estes
  • Akihiro Suda
  • Joseph Zhang
  • Maksym Pavlenko
  • crawfordxx
  • lauralorenz

Changes

  • Prepare release notes for v2.2.6 (#13751)
  • CI: migrate Vagrant to Lima (#13745)
  • Update go to 1.26.5/1.25.12 (#13726)
  • ci: pin fog-json to resolve gem conflict (#13714)
    • 8f123e4f7 ci: pin fog-json to resolve gem conflict
  • Fix nil pointer dereference in NRI GetIPs (#13696)
    • d3e1a2be9 Fix nil pointer dereference in NRI GetIPs
  • cri: reject CreateContainer when sandbox is not running (#13669)
    • 872a9502e cri: reject CreateContainer when sandbox is not running
  • Add defer in event of mid-function failures in RunPodSandbox to avoid mount leaks (#13644)
    • ba7605ee7 Add deferred call to ShutdownSandbox to avoid leaks
  • fix: avoid content storage pollution by limiting the fallback on ref resolution (#13620)

... (truncated)

Commits
  • 11ce9d5 Merge pull request #13751 from chrishenzie/prepare-v2.2.6
  • 701734d Prepare release notes for v2.2.6
  • fdad8f4 Merge pull request #13745 from AkihiroSuda/cherrypick-13728-2.2
  • 672ea35 CI: migrate Vagrant to Lima
  • af3cccc Merge pull request #13726 from chrishenzie/2.2-go1.25.12
  • d7eba3f Update go to 1.26.5/1.25.12
  • 666bec1 Merge pull request #13714 from k8s-infra-cherrypick-robot/cherry-pick-13707-t...
  • 8f123e4 ci: pin fog-json to resolve gem conflict
  • 70e5cd0 Merge pull request #13696 from k8s-infra-cherrypick-robot/cherry-pick-13683-t...
  • d3e1a2b Fix nil pointer dereference in NRI GetIPs
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
github.com/containerd/containerd/v2 [>= 2.3.a, < 2.4]

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the containerd group with 1 update: [github.com/containerd/containerd/v2](https://github.com/containerd/containerd).


Updates `github.com/containerd/containerd/v2` from 2.2.5 to 2.2.6
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](containerd/containerd@v2.2.5...v2.2.6)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd/v2
  dependency-version: 2.2.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: containerd
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants