build(deps): bump github.com/containers/podman/v5 from 5.8.1 to 5.8.2

[dependabot]

Bumps github.com/containers/podman/v5 from 5.8.1 to 5.8.2.

Release notes

Sourced from github.com/containers/podman/v5's releases.

v5.8.2

Security

• This release addresses CVE-2026-33414, where the podman machine init --image command when run on Windows using the Hyper-V backend can run Powershell-escaped commands from the user-specified image path on in a Powershell session on the host (GHSA-hc8w-h2mf-hp59).

Bugfixes

• Fixed a bug where containers with the unless-stopped restart policy would not restart after a reboot when podman-restart.service was enabled (#28152).
• Fixed a bug where setting Entrypoint="" in a Quadlet .container file did not clear the container's entrypoint (#28213).
• Fixed a bug where setting a HealthCmd in a Quadlet .container file to a command that included double-quotes (") would result in a nonfunctional healthcheck due to a parsing issue (#28409).
• Fixed a bug where FreeBSD systems could panic when inspecting containers created with the host network mode (#28289).

API

• Fixed a bug where the Libpod System Check endpoint could perform operations with bad data after returning a 400 error (#28350).
• Fixed a bug where the remote attach API for containers (Libpod & Compat) could panic due to a rare race condition (#28277).
• Fixed a bug where the Secret Create API could not create functional secrets using the shell driver due to options from the default driver being improperly added.

Misc

• Updated Buildah to v1.43.1
• Updated the containers/common library to v0.67.1
• Updated the containers/image library to v5.39.2

Changelog

Sourced from github.com/containers/podman/v5's changelog.

5.8.2

Security

• This release addresses CVE-2026-33414, where the podman machine init --image command when run on Windows using the Hyper-V backend can run Powershell-escaped commands from the user-specified image path on in a Powershell session on the host (GHSA-hc8w-h2mf-hp59).

Bugfixes

• Fixed a bug where containers with the unless-stopped restart policy would not restart after a reboot when podman-restart.service was enabled (#28152).
• Fixed a bug where setting Entrypoint="" in a Quadlet .container file did not clear the container's entrypoint (#28213).
• Fixed a bug where setting a HealthCmd in a Quadlet .container file to a command that included double-quotes (") would result in a nonfunctional healthcheck due to a parsing issue (#28409).
• Fixed a bug where FreeBSD systems could panic when inspecting containers created with the host network mode (#28289).

API

• Fixed a bug where the Libpod System Check endpoint could perform operations with bad data after returning a 400 error (#28350).
• Fixed a bug where the remote attach API for containers (Libpod & Compat) could panic due to a rare race condition (#28277).
• Fixed a bug where the Secret Create API could not create functional secrets using the shell driver due to options from the default driver being improperly added.

Misc

• Updated Buildah to v1.43.1
• Updated the containers/common library to v0.67.1
• Updated the containers/image library to v5.39.2

Commits

• 5b263b5 Bump to v5.8.2
• 884cd28 Release notes for v5.8.2
• eeb4c6b Merge commit from fork
• 6cffe93 hyperV: fix powershell path escape
• 825eed6 Merge pull request #28475 from Luap99/v5.8-backports
• f13de01 cirrus: bump linux machine aarch64 test timeout
• d1cf366 Remove iptables references in upgrade tests
• add385e bindings: artifact extract reject invalid names
• a49ad4b use chrootarchive over plain archive package
• 92cd249 fix symlink handling in checkpoint restore
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

┌──────────────────────────────────────────────────────────────────────────────────────────────────────────┐
│ Diff between sablier and sablier                                                                         │
├──────────┬───────────────────────────────────────────────────────────────┬──────────┬──────────┬─────────┤
│ PERCENT  │ NAME                                                          │ OLD SIZE │ NEW SIZE │ DIFF    │
├──────────┼───────────────────────────────────────────────────────────────┼──────────┼──────────┼─────────┤
│ +1.76%   │ go.opentelemetry.io/otel                                      │ 336 kB   │ 342 kB   │ +5.9 kB │
│ +175.07% │ golang.org/x/sync                                             │ 2.2 kB   │ 6.0 kB   │ +3.8 kB │
│ +0.73%   │ github.com/klauspost/compress                                 │ 491 kB   │ 495 kB   │ +3.6 kB │
│ +0.17%   │ go.podman.io/image/v5                                         │ 1.3 MB   │ 1.3 MB   │ +2.2 kB │
│ +0.06%   │ <autogenerated>                                               │ 746 kB   │ 746 kB   │ +420 B  │
│ +0.02%   │ github.com/quic-go/quic-go                                    │ 1.2 MB   │ 1.2 MB   │ +279 B  │
│ +0.11%   │ golang.org/x/sys                                              │ 76 kB    │ 76 kB    │ +81 B   │
│ +0.04%   │ sync                                                          │ 79 kB    │ 79 kB    │ +31 B   │
│ +0.00%   │ github.com/google/gnostic-models                              │ 1.5 MB   │ 1.5 MB   │ +13 B   │
│ +0.01%   │ google.golang.org/genproto/googleapis/api                     │ 110 kB   │ 110 kB   │ +10 B   │
│ +0.00%   │ golang.org/x/text                                             │ 150 kB   │ 150 kB   │ +4 B    │
│ +0.09%   │ google.golang.org/genproto/googleapis/rpc                     │ 4.2 kB   │ 4.3 kB   │ +4 B    │
│ +0.00%   │ k8s.io/apimachinery                                           │ 1.6 MB   │ 1.6 MB   │ +3 B    │
│ +0.00%   │ github.com/godbus/dbus/v5                                     │ 325 kB   │ 325 kB   │ +2 B    │
│ -0.00%   │ github.com/vbatts/tar-split                                   │ 76 kB    │ 76 kB    │ -1 B    │
│ -0.00%   │ github.com/docker/docker                                      │ 390 kB   │ 390 kB   │ -1 B    │
│ -0.00%   │ google.golang.org/grpc                                        │ 1.1 MB   │ 1.1 MB   │ -1 B    │
│ -0.00%   │ github.com/spf13/cast                                         │ 107 kB   │ 107 kB   │ -1 B    │
│ -0.00%   │ k8s.io/utils                                                  │ 28 kB    │ 28 kB    │ -1 B    │
│ -0.00%   │ archive/tar                                                   │ 80 kB    │ 80 kB    │ -3 B    │
│ -0.00%   │ google.golang.org/protobuf                                    │ 1.7 MB   │ 1.7 MB   │ -3 B    │
│ -0.01%   │ github.com/spf13/viper                                        │ 64 kB    │ 64 kB    │ -4 B    │
│ -0.01%   │ go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp │ 70 kB    │ 70 kB    │ -5 B    │
│ -0.00%   │ github.com/json-iterator/go                                   │ 412 kB   │ 412 kB   │ -6 B    │
│ -0.00%   │ crypto                                                        │ 1.8 MB   │ 1.8 MB   │ -8 B    │
│ -0.00%   │ github.com/pelletier/go-toml/v2                               │ 207 kB   │ 207 kB   │ -10 B   │
│ -0.00%   │ k8s.io/api                                                    │ 16 MB    │ 16 MB    │ -11 B   │
│ -0.07%   │ github.com/google/go-intervals                                │ 21 kB    │ 21 kB    │ -15 B   │
│ -0.05%   │ github.com/klauspost/pgzip                                    │ 30 kB    │ 30 kB    │ -15 B   │
│ -0.01%   │ github.com/BurntSushi/toml                                    │ 156 kB   │ 156 kB   │ -17 B   │
│ -0.00%   │ net                                                           │ 1.6 MB   │ 1.6 MB   │ -23 B   │
├──────────┼───────────────────────────────────────────────────────────────┼──────────┼──────────┼─────────┤
│ +0.03%   │ .rodata                                                       │ 9.3 MB   │ 9.3 MB   │ +2.4 kB │
│ +0.10%   │ .data                                                         │ 262 kB   │ 262 kB   │ +256 B  │
│ +0.22%   │ .go.buildinfo                                                 │ 14 kB    │ 14 kB    │ +32 B   │
│ +0.01%   │ .typelink                                                     │ 110 kB   │ 110 kB   │ +16 B   │
├──────────┼───────────────────────────────────────────────────────────────┼──────────┼──────────┼─────────┤
│ +0.04%   │ sablier                                                       │ 66 MB    │ 66 MB    │ +25 kB  │
│          │ sablier                                                       │          │          │         │
└──────────┴───────────────────────────────────────────────────────────────┴──────────┴──────────┴─────────┘

[codecov]

❌ 1 Tests Failed:

Tests completed	Failed	Passed	Skipped
183	1	182	0

View the top 1 failed test(s) by shortest run time

github.com/sablierapp/sablier/pkg/tinykv::Test11

Stack Traces | 0.14s run time

Failed

To view more test analytics, go to the Test Analytics Dashboard
_{📋 Got 3 mins? Take this short survey to help us improve Test Analytics.}

[github-actions]

✅ All tests successful. No failed tests were found.

📣 Thoughts on this report? Let Codecov know! | Powered by Codecov