build(deps): bump github.com/google/go-containerregistry from 0.21.3 to 0.21.4

[dependabot]

Bumps github.com/google/go-containerregistry from 0.21.3 to 0.21.4.

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.21.4

What's Changed

• go.mod: do not make a viral minimum go version by @​howardjohn in google/go-containerregistry#2237
• Avoid pruning absolute links from extracted and flattened images by @​Subserial in google/go-containerregistry#2241
• Bump the go-deps group across 3 directories with 5 updates by @​dependabot[bot] in google/go-containerregistry#2245
• fix: update to go1.25.8, and use separate .go-version file by @​thaJeztah in google/go-containerregistry#2246
• Bump CI go version to 1.26.1 by @​Subserial in google/go-containerregistry#2242
• Bump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group by @​dependabot[bot] in google/go-containerregistry#2240
• fork distribution client v3 auth-challenge as an internal package (squashed) by @​thaJeztah in google/go-containerregistry#2248
• transport: validate Bearer realm URL to prevent SSRF by @​evilgensec in google/go-containerregistry#2243
• revert path traversal and symlink escape from #2227 by @​Subserial in google/go-containerregistry#2250
• Fix pkg/v1/google/auth tests for arm64 by @​Subserial in google/go-containerregistry#2085
• goreleaser: Update goreleaser config and GH action by @​Subserial in google/go-containerregistry#2253

New Contributors

• @​evilgensec made their first contribution in google/go-containerregistry#2243

Full Changelog: google/go-containerregistry@v0.21.3...v0.21.4

Commits

• e8813dd goreleaser: Update goreleaser config and GH action for releases (#2253)
• e90447d replace gcloud in binary calls in pkg/v1/google tests (#2085)
• 0d0368c revert path traversal and symlink escape changes (#2250)
• a2f47d4 transport: validate Bearer realm URL to prevent SSRF (#2243)
• 19a36cd fork distribution client v3 auth-challenge as an internal package (squashed) ...
• c612a9b Bump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group (#2240)
• 8f92f59 Bump CI go version to 1.26.1 (#2242)
• c99e7cf fix: update to go1.25.8, and use separate .go-version file (#2246)
• 0794660 Bump the go-deps group across 3 directories with 5 updates (#2245)
• 4cb93ae Undo pruning absolute links from extracted and flattened images (#2241)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)