chore(deps): update dependency valyentdev/ravel to v0.6.1

[uniget-bot]

This PR contains the following updates:

Package	Update	Change
valyentdev/ravel	minor	0.5.0 -> 0.6.1

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

valyentdev/ravel (valyentdev/ravel)

v0.6.1

Compare Source

Changelog

• c2c5d0c fix: allow to destroy "created" instance

v0.6.0

Compare Source

Changelog

• b7c7260 fix: initd exec endpoint
• 80ffba0 feat: implement machine auto destroy
• 333cdff fix: ctrd snapshots garbage collections
• db2554d chore: upgrade deps
• 986972f feat: add corro migrate command
• 6b7a4f6 chore: upgrade corroclient to v0.2.1
• 3336b66 refactor: do not rely on corrosion for wait machine status
• f57b80e chore: remove useless logging
• fca90f2 fix: improve httpclient error handling
• de75285 fix: create gateway endpoint path
• 998829b chore: move back gateways to fleet endpoint
• 4bc2db8 chore: move errdefs to api module

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[nicholasdille-bot]

Auto-approved because label type/renovate is present.

[github-actions]

🔍 Vulnerabilities of ghcr.io/uniget-org/tools/ravel:0.6.1

📦 Image Reference ghcr.io/uniget-org/tools/ravel:0.6.1

digest	sha256:057e2af82887efbd043d54a6e15bb8db474610d72e459b3e2d8f7476cf1358fa
vulnerabilities
platform	linux/amd64
size	21 MB
packages	109

github.com/u-root/u-root 0.14.0 (golang) pkg:golang/github.com/u-root/[email protected] OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities Affected range <=v7.0.0 Fixed version Not Fixed CVSS Score 7.5 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Description This affects all versions of package github.com/u-root/u-root/pkg/tarutil. It is vulnerable to both leading and non-leading relative path traversal attacks in tar file extraction. OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities Affected range <=7.0.0 Fixed version Not Fixed CVSS Score 7.5 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Description This affects all versions of package github.com/u-root/u-root/pkg/uzip. It is vulnerable to both leading and non-leading relative path traversal attacks in zip file extraction.

[github-actions]

Attempting automerge. See https://github.com/uniget-org/tools/actions/runs/12792875389.

[github-actions]

PR is clean and can be merged. See https://github.com/uniget-org/tools/actions/runs/12792875389.