Bump github.com/containerd/containerd/v2 from 2.0.0-rc.4 to 2.0.0-rc.5

[dependabot]

Bumps github.com/containerd/containerd/v2 from 2.0.0-rc.4 to 2.0.0-rc.5.

Release notes

Sourced from github.com/containerd/containerd/v2's releases.

containerd 2.0.0-rc.5

Welcome to the v2.0.0-rc.5 release of containerd! This is a pre-release of containerd

The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases.

Highlights

• Add Update API for sandbox controller (#9903)
• Configure otel from env instead of config.toml (#8970)
• Enable NRI by default (#9744)
• Add PluginInfo to introspection API (#9442)
• Remove overlayfs volatile option on temp mounts (#9555)
• Expose usage of deprecated features (#9258)
• Use Intel ISA-L's igzip if available (#9200)
• Introduce top level config migration (#9223)
• Add image delete target (#8989)
• Remove LimitNOFILE from containerd.service (#8924)
• Add support for image expiration during garbage collection (#9022)
• Reduce the contention between ref lock and boltdb lock in content store (#8792)
• Remove "containerd.io/restart.logpath" label (#8264)
• Remove aufs snapshotter (#8263)
• Fix deadlock during NRI plugin registration (containerd/nri#79)
• Fix deadlock when writing to pipe blocks (containerd/ttrpc#168)

Build and Release Toolchain

• Generate attestation for artifacts during release (#10543)

Container Runtime Interface (CRI)

• Use 'UserSpecifiedImage' from CRI to set the image-name annotation (#10747)
• Add support to set loopback to up (#10238)
• Add support for multiple subscribers to CRI container events (#9661)
• Enable CDI by default (#9621)
• Remove non-sandboxed CRI implementation (#9228)
• Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) (#8287)
• Use sandboxed CRI by default (#8994)
• Implement RuntimeConfig CRI call (#8722)
• Add support for user namespaces (KEP-127) (#8803)
• Remove CRI v1alpha2 (#8276)

Go client

• Add api Go module and move all protos under api (#10151)

... (truncated)

Commits

• 05ee43a Merge pull request #10752 from dmcgowan/prepare-v2.0.0-rc.5
• 03e0e4c Merge pull request #10186 from cpuguy83/propagate_traces_to_shim
• 17d4a13 Propagate trace contexts to shims
• 03db11c Merge pull request #10744 from sameersaeed/sandbox-cni-plugins
• bc46460 Prepare release notes for v2.0.0-rc.5
• 363e50b Merge pull request #10747 from lujinda/anno-image-user-specified
• ccb2a8d [cri] use 'UserSpecifiedImage' to set the image-name annotation
• 86e0f52 Merge pull request #10740 from zouyee/event
• b7b6b32 Add check for CNI plugins before tearing down pod network
• db97449 Merge pull request #10730 from mxpv/features
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #98.