Bump github.com/distribution/distribution/v3 from 3.0.0-20221208165359-362910506bc2 to 3.0.0

[dependabot]

Bumps github.com/distribution/distribution/v3 from 3.0.0-20221208165359-362910506bc2 to 3.0.0.

Release notes

Sourced from github.com/distribution/distribution/v3's releases.

v3.0.0

Welcome to the v3.0.0 release of registry!

This is the first v3 stable release since v2.8.3 which is a culmination of years of hard work of the container community and registry maintainers!

If you are upgrading from v2.x and have never used any of the release candidates, please familiarise yourselves with the v2.x deprecations properly.

Deprecations

• oss and swift storage drivers are no longer supported
• docker/libtrust has been replaced with go-jose/go-jose in distribution/distribution#4096
• client is no longer supported as a standalone package in distribution/distribution#4126
• the default configuration path has changed to /etc/distribution/config.yml
• ManifestBuilder interface in 3886
• manifest.Versioned has been deprecated in favor of oci.Versioned in 3887
• reference package has been moved to https://github.com/distribution/distribution/blob/HEAD/github.com/distribution/reference in distribution/distribution#4063

Changes since the last release candidate

Changes

Previous release can be found at v3.0.0-rc.4

v3.0.0-rc.4

Welcome to the v3.0.0-rc.4 release of registry!

This is the fourth stable release candidate!

See the changelog below for a full list of changes.

Notable changes

• Enable MD5 check on GCS driver by @​milosgajdos in distribution/distribution#4586
• Azure driver [retry] fix by @​milosgajdos in distribution/distribution#4576, thanks @​vespian for reporting!

What's Changed

• registry/storage: add an option to silence GC output. by @​r4f4 in distribution/distribution#4560
• Fix broken signing algorithm configuration for token authentication by @​evanebb in distribution/distribution#4578
• build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.2 to 4.0.5 in the go_modules group by @​dependabot in distribution/distribution#4582
• build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @​dependabot in distribution/distribution#4579
• build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 by @​dependabot in distribution/distribution#4580

... (truncated)

Commits

• See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.