Bump docker/build-push-action from 6.10.0 to 6.11.0

[dependabot]

Bumps docker/build-push-action from 6.10.0 to 6.11.0.

Release notes

Sourced from docker/build-push-action's releases.

v6.11.0

• Handlebar defaultContext support for build-contexts input by @​crazy-max in docker/build-push-action#1283
• Bump @​docker/actions-toolkit from 0.46.0 to 0.49.0 in docker/build-push-action#1281

Full Changelog: docker/build-push-action@v6.10.0...v6.11.0

Commits

• b32b51a Merge pull request #1281 from docker/dependabot/npm_and_yarn/docker/actions-t...
• 594bf46 Merge pull request #1294 from crazy-max/fix-e2e
• fd37bd5 ci(e2e): fix setup docker config
• e6478a2 chore: update generated content
• 78785bd chore(deps): Bump @​docker/actions-toolkit from 0.46.0 to 0.49.0
• 128779f Merge pull request #1283 from crazy-max/named-context-handlebars
• 7e09459 Merge pull request #1282 from crazy-max/remove-buildkit-5561
• 32ee877 Revert "init buildkit-5561 workflow"
• d1a4129 chore: update generated content
• 49c623e handlebar defaultContext support for build-contexts input
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (1e97b59) to head (3712a61).
Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##              main      #678   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            8         8           
  Lines          151       151           
  Branches        15        15           
=========================================
  Hits           151       151           

Flag	Coverage Δ
python-3.10	100.00% <ø> (ø)
python-3.11	100.00% <ø> (ø)
python-3.12	100.00% <ø> (ø)
python-3.13	100.00% <ø> (ø)
python-3.9	100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Test Results

  5 files  ±0    5 suites  ±0   21s ⏱️ -1s
 36 tests ±0   36 ✅ ±0  0 💤 ±0  0 ❌ ±0 
180 runs  ±0  180 ✅ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit 3712a61. ± Comparison against base commit 1e97b59.

♻️ This comment has been updated with latest results.

[github-actions]

🔍 Vulnerabilities of jkreileder/cf-ips-to-hcloud-fw:pr-678

📦 Image Reference jkreileder/cf-ips-to-hcloud-fw:pr-678

digest	sha256:406e85e00aae617796251a1dc79bbe195cc8871be48521e1977c26ba4acfc775
vulnerabilities
platform	linux/amd64
size	26 MB
packages	62

📦 Base Image python:3-alpine3.20

also known as	3.13-alpine3.20 3.13.1-alpine3.20 alpine3.20
digest	sha256:85dcfa1f8890d92ce84a5bcf1e571e9ab00e84c414d8998ac49bd6c6183188d9
vulnerabilities

[github-actions]

Recommended fixes for image jkreileder/cf-ips-to-hcloud-fw:pr-678

Base image is python:3-alpine3.20

Name	3.13.1-alpine3.20
Digest	sha256:85dcfa1f8890d92ce84a5bcf1e571e9ab00e84c414d8998ac49bd6c6183188d9
Vulnerabilities
Pushed	1 month ago
Size	16 MB
Packages	41
Flavor	alpine
OS	3.20
Runtime	3.13.1

The base image is also available under the supported tag(s): 3.13-alpine3.20, 3.13.1-alpine3.20, alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

Tag	Details	Pushed	Vulnerabilities
3-alpine Tag is preferred tag Also known as: alpine alpine3.21 3.13.1-alpine 3.13.1-alpine3.21 3.13-alpine 3.13-alpine3.21 3-alpine3.21	Benefits: Same OS detected Minor runtime version update Minor OS version update Tag is preferred tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains similar number of packages 3-alpine was pulled 51K times last month Image details: Size: 17 MB Flavor: alpine OS: 3.21 Runtime: 3.13.1	1 month ago

[github-actions]

Overview

Image reference	jkreileder/cf-ips-to-hcloud-fw:1	quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-678
- digest	dd18d18ca96b	406e85e00aae
- tag	1	pr-678
- provenance	5387efd	da3a44f
- vulnerabilities
- platform	linux/amd64	linux/amd64
- size	24 MB	26 MB (+909 kB)
- packages	62	62
Base Image	python:3-alpine also known as: • 3-alpine3.20 • 3.13-alpine • 3.13-alpine3.20 • 3.13.1-alpine • 3.13.1-alpine3.20 • alpine • alpine3.20	python:3-alpine3.20 also known as: • 3.13-alpine3.20 • 3.13.1-alpine3.20 • alpine3.20
- vulnerabilities

Labels (3 changes)

• ± 3 changed
• 5 unchanged

-org.opencontainers.image.created=2024-12-22T13:10:48.667Z
+org.opencontainers.image.created=2025-01-10T08:42:56.544Z
 org.opencontainers.image.description=Update Hetzner Cloud firewall rules with current Cloudflare IP ranges
 org.opencontainers.image.licenses=MIT
-org.opencontainers.image.revision=5387efdaf829ded112cb2acdde1ab4916839a5ee
+org.opencontainers.image.revision=da3a44fda8edcb2a3e1b70afd2153af6ff6faa14
 org.opencontainers.image.source=https://github.com/jkreileder/cf-ips-to-hcloud-fw
 org.opencontainers.image.title=cf-ips-to-hcloud-fw
 org.opencontainers.image.url=https://github.com/jkreileder/cf-ips-to-hcloud-fw
-org.opencontainers.image.version=1.0.15
+org.opencontainers.image.version=pr-678

Policies (0 improved, 1 worsened, 2 missing data)

Policy Name	jkreileder/cf-ips-to-hcloud-fw:1	quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-678	Change	Standing
Default non-root user	✅	✅		No Change
No AGPL v3 licenses	✅	✅		No Change
No fixable critical or high vulnerabilities	✅	✅		No Change
No high-profile vulnerabilities	✅	✅		No Change
No outdated base images	✅	❓ No data
No unapproved base images	✅	❓ No data
Supply chain attestations	✅	⚠️ 2	+2	Worsened

Packages and Vulnerabilities (6 package changes and 0 vulnerability changes)

• ♾️ 6 packages changed
• 56 packages unchanged

Changes for packages of type apk (4 changes)

	Package	Version jkreileder/cf-ips-to-hcloud-fw:1	Version quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-678
♾️	.python-rundeps	20241205.142133	20250110.083055
♾️	apk-tools	2.14.4-r0	2.14.4-r1
♾️	ca-certificates	20240705-r0	20241121-r1
♾️	ca-certificates-bundle	20240705-r0	20241121-r1

Changes for packages of type pypi (2 changes)

	Package	Version jkreileder/cf-ips-to-hcloud-fw:1	Version quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-678
♾️	cf-ips-to-hcloud-fw	1.0.15	1.0.16.dev0
♾️	charset-normalizer	3.4.0	3.4.1