Sourced fromgithub.com/docker/docker's releases.

v28.4.0

28.4.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.4.0 milestone
• moby/moby, 28.4.0 milestone
• Deprecated and removed features, seeDeprecated Features.
• Changes to the Engine API, seeAPI version history.

New

• Allow Docker CLI to set theGODEBUG environment variable when the key-value pair ("GODEBUG":"...") exists inside the docker context metadata.docker/cli#6399

Bug fixes and enhancements

• Add shell completion fordocker pull anddocker image pull.docker/cli#6420
• Fix a regression in v28.3.3 that could cause a panic ondocker push if the client did not send anX-Registry-Auth header.moby/moby#50738
• Windows: Potentially fix an issue with "access denied" error when pulling images.moby/moby#50871
• containerd image store: Fixdocker history failing withsnapshot X does not exist when calling on a non-native image that was built locally.moby/moby#50875
• containerd image store: Fixdocker image prune to emit correctuntag anddelete events and list only the deleted images root digests instead of every blob.moby/moby#50837
• Remove interactive login prompt fromdocker push anddocker pull after a failure caused by missing authentication.docker/cli#6256

Packaging updates

• Update BuildKit tov0.24.0.moby#50888
• Update Go runtime to1.24.7.moby/moby#50889,docker/cli#6422
• Updaterunc tov1.3.0.moby/moby#50699
• Update containerd (static binaries only) tov1.7.28.moby/moby#50700

Networking

• Fix an issue that could cause slow container restart on live-restore.moby/moby#50829

API

• Update deprecation message forAuthConfig.Email field.moby/moby#50797

Go SDK

• Deprecate profiles package which got migrated togithub.com/moby/profiles.moby/moby#50513

Deprecations

• Deprecate special handling for quoted values for the--tlscacert,--tlscert, and--tlskey command-line flags.docker/cli#6291
• Mark legacy links env vars (DOCKER_KEEP_DEPRECATED_LEGACY_LINKS_ENV_VARS) as deprecated in v28.4 and set for removal in v30.0.docker/cli#6309
• Go-SDK: Deprecate fieldNetworkSettingsBase.Bridge, structNetworkSettingsBase, all the fields ofDefaultNetworkSettings, and structDefaultNetworkSettings.moby/moby#50839
• Go-SDK: api/types:build.CacheDiskUsage,container.DiskUsage,images.DiskUsage andvolumes.DiskUsage are now deprecated and will be removed in the next major release.moby/moby#50768
• Go-SDK: cli-plugins/manager: deprecateReexecEnvvar.docker/cli#6411
• Go-SDK: cli-plugins/manager: deprecate annotation aliases (CommandAnnotationPlugin,CommandAnnotationPluginVendor,CommandAnnotationPluginVersion,CommandAnnotationPluginInvalid,CommandAnnotationPluginCommandPath) in favor of their equivalent incli-plugins/manager/metadata.docker/cli#6298

... (truncated)

• 249d679 Merge pull request#50890 from vvoland/50889-28.x
• d664cfe update to go1.24.7
• b384cd2 Merge pull request#50888 from vvoland/50885-28.x
• c1ce88e vendor: update buildkit to v0.24.0
• 4a34e8e Merge pull request#50875 from vvoland/50867-28.x
• cfa70d0 gha/arm64: Setup qemu
• d70382e integration/internal: Print Buildkit logs
• 687b206 c8d/history: Fix non-native platforms
• e4224f8 integration/internal: Handle Buildkit in GetImageIDFromBody
• 5d5332b Merge pull request#50871 from vvoland/50870-28.x
• Additional commits viewable incompare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)