Bump github.com/buildpacks/pack from 0.40.2 to 0.40.3

[dependabot]

Bumps github.com/buildpacks/pack from 0.40.2 to 0.40.3.

Release notes

Sourced from github.com/buildpacks/pack's releases.

pack v0.40.3

Prerequisites

• A container runtime such as Docker or podman must be available to execute builds.

Install

For instructions on installing pack, see our installation docs.

Run

Run the command pack.

You should see the following output

CLI for building apps using Cloud Native Buildpacks
Usage:
pack [command]
Available Commands:
build                 Generate app image from source code
builder               Interact with builders
buildpack             Interact with buildpacks
extension             Interact with extensions
config                Interact with your local pack config file
inspect               Show information about a built app image
stack                 (deprecated) Interact with stacks
rebase                Rebase app image with latest run image
sbom                  Interact with SBoM
completion            Outputs completion script location
report                Display useful information for reporting an issue
version               Show current 'pack' version
help                  Help about any command
Flags:
--force-color   Force color output
-h, --help          Help for 'pack'
--no-color      Disable color output
-q, --quiet         Show less output
--timestamps    Enable timestamps in output
-v, --verbose       Show more output
--version       Show current 'pack' version
Use "pack [command] --help" for more information about a command.

Info

... (truncated)

Commits

• 7a70737 chore: add .grype.yaml to ignore unreachable docker daemon CVEs (#2582)
• cf418c2 chore: upgrade Go to 1.25.9 to fix stdlib CVEs (#2581)
• d92a7ca build(deps): bump the go-dependencies group across 1 directory with 11 update...
• 69d36c8 build(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.18.0 (#2577)
• e667ae0 build(deps): bump the go-dependencies group across 1 directory with 5 updates...
• 01b469e build(deps): bump github.com/moby/buildkit from 0.26.3 to 0.28.1 (#2553)
• 0d1bb33 build(deps): bump the go-dependencies group with 2 updates (#2552)
• 4d231c9 build(deps): bump the go-dependencies group with 4 updates (#2549)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)