build(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.3+incompatible

[dependabot]

Bumps github.com/docker/distribution from 2.8.1+incompatible to 2.8.3+incompatible.

Release notes

Sourced from github.com/docker/distribution's releases.

v2.8.3

What's Changed

• Pass BUILDTAGS argument to go build by @​marcusirgens in distribution/distribution#3926
• Enable Go build tags by @​thaJeztah in distribution/distribution#4009
• reference: replace deprecated function SplitHostname by @​thaJeztah in distribution/distribution#4032
• Dont parse errors as JSON unless Content-Type is set to JSON by @​thaJeztah in distribution/distribution#4054
• update to go 1.20.8 by @​thaJeztah in distribution/distribution#4056
• Set Content-Type header in registry client ReadFrom by @​thaJeztah in distribution/distribution#4053
• deprecate reference package, migrate to github.com/distribution/reference by @​thaJeztah in distribution/distribution#4063
• digestset: deprecate package in favor of go-digest/digestset by @​thaJeztah in distribution/distribution#4064
• Do not close HTTP request body in HTTP handler by @​milosgajdos in distribution/distribution#4068
• Add v2.8.3 release notes by @​milosgajdos in distribution/distribution#4088

New Contributors

• @​marcusirgens made their first contribution in distribution/distribution#3926

Full Changelog: distribution/distribution@v2.8.2...v2.8.3

v2.8.2

What's Changed

• Revert registry/client: set Accept: identity header when getting layers by @​ndeloof in distribution/distribution#3783
• Parse http forbidden as denied by @​vvoland in distribution/distribution#3914
• Fix CVE-2022-28391 by bumping alpine from 3.14 to 3.16 by @​thaJeztah (#3650)
• Fix CVE-2023-2253 runaway allocation on /v2/_catalog by @​josegomezr 521ea3d9
• Fix panic in inmemory driver by @​wy65701436 in distribution/distribution#3815
• bump up golang version (alternative) by @​thaJeztah in distribution/distribution#3903
• Dockerfile: update xx to v1.2.1 by @​thaJeztah in distribution/distribution#3907
• update to go1.19.9 by @​thaJeztah in distribution/distribution#3908
• Add code to handle pagination of parts. Fixes max layer size of 10GB bug by @​DavidSpek in distribution/distribution#3893
• Dockerfile: fix filenames of artifacts by @​thaJeztah in distribution/distribution#3911

Full Changelog: distribution/distribution@v2.8.1...v2.8.2

v2.8.2-beta.2

What's Changed

• Fix CVE-2022-28391 by bumping alpine from 3.14 to 3.16 by @​thaJeztah (#3650)
• Fix CVE-2023-2253 runaway allocation on /v2/_catalog by @​josegomezr 521ea3d9
• Fix panic in inmemory driver by @​wy65701436 in distribution/distribution#3815
• bump up golang version (alternative) by @​thaJeztah in distribution/distribution#3903
• Dockerfile: update xx to v1.2.1 by @​thaJeztah in distribution/distribution#3907
• update to go1.19.9 by @​thaJeztah in distribution/distribution#3908
• Add code to handle pagination of parts. Fixes max layer size of 10GB bug by @​DavidSpek in distribution/distribution#3893
• Dockerfile: fix filenames of artifacts by @​thaJeztah in distribution/distribution#3911

Full Changelog: distribution/distribution@v2.8.1...v2.8.2-beta.2

v2.8.2-beta.1

... (truncated)

Commits

• 4772604 Merge pull request #4088 from distribution/2.8.3-release-notes
• a4fa699 Add v2.8.3 release notes
• 1eb2c30 Merge pull request #4068 from milosgajdos/2_8-dont-close-request-body
• 5e6b1b5 Do not close HTTP request body in HTTP handler
• 2b76378 Merge pull request #4064 from thaJeztah/2.8_backport_nodigestset
• 29b00e8 digestset: deprecate package in favor of go-digest/digestset
• d1ab243 [release/2.8] vendor: github.com/opencontainers/go-digest v1.0.0
• 11eb419 Merge pull request #4063 from thaJeztah/2.8_backport_switch_reference
• 3dda067 deprecate reference package, migrate to github.com/distribution/reference
• da05539 Merge pull request #4053 from thaJeztah/2.8_backport_set-content-type-client-...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)