Welcome to the v2.3.0-beta.2 release of containerd!
This is a pre-release of containerd

The third minor release of containerd 2.x focuses on continued stability alongside
new features and improvements. This is the third time-based release for containerd.

Starting with containerd 2.3, the project has moved to release cadence aligned with
the Kubernetes release schedule, with new minor releases about every 4 months. The
containerd 2.3 release is also the first annual LTS (Long Term Stable) release under
this new schedule, with support planned for at least two years. Direct upgrades
between sequential LTS releases (e.g., 1.7 to 2.3) will be tested and supported.

This is a beta release and some functionality is still under development.

Highlights

• Add transfer types for container filesystem copy (#13165)
• Introduce shim bootstrap protocol (#12786)
• Add option to inject trace ID to logs (#13117)
• Propagate OpenTelemetry traces in outgoing RPCs from plugin clients (#13113)
• Update plugin config migration to run on load (#12608)
• Detect vendor in cdi specs to generate device IDs for --gpus (#12839)
• Update sandbox API to include spec field (#12840)

Container Runtime Interface (CRI)

• Allow containers to use user namespaces with host networking (#12518)
• Unpack images with per-layer labels for specific runtime (#12835)
• Populate ImageId field in container status (#12787)
• Set annotations parameter in CreateSandbox request (#12566)

Image Distribution

• Support zstd-wrapped EROFS layers (#13185)
• Add EROFS layer media type (#12567)

Image Storage

• Use fsmount API to avoid PAGE_SIZE limit for erofs (#12783)

Node Resource Interface (NRI)

• Pass container user (uid, gids) to plugins (#12769)
• Pass seccomp policy to plugins (#12768)
• Pass any POSIX rlimits to plugins (#12765)
• Pass extended container status to NRI. (#12770)
• Pass injected CDI devices to plugins (#12767)
• Pass linux sysctl to plugins (#12766)

Runtime

• Add configured socket directory to shim bootstrap protocol (#12785)
• Fix binary logging driver not blocking container start on failure (#12595)
• Use new filtered cgroups stats API (#12901)
• Update OOMKilled event handling (#12714)

Snapshotters

• Propagate parent chain ID and diff ID via labels during snapshot preparation (#13071)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Derek McGowan
• Sebastiaan van Stijn
• Krisztian Litkey
• Wei Fu
• Samuel Karp
• Akihiro Suda
• Phil Estes
• Markus Lehtonen
• Mike Brown
• Davanum Srinivas
• Gao Xiang
• ChengyuZhu6
• Akhil Mohan
• Chris Henzie
• Hudson Zhu
• Kazuyoshi Kato
• Sergey Kanzhelev
• ningmingxiao
• Aadhar Agarwal
• Andrew Halaney
• Apurv Barve
• HirazawaUi
• Michael Zappa
• Paweł Gronowski
• Brian Goff
• Fabiano Fidêncio
• Hasan Siddiqui
• Jintao Zhang
• Paulo Oliveira
• Shiv Tyagi
• Austin Vazquez
• Avinesh Singh
• Esteban Ginez
• Henry Wang
• Jin Dong
• Jérôme Poulin
• Luke Hinds
• Sascha Grunert
• majianhan
• markdodgson
• Adrien Delorme
• Albin Kerouanton
• Alex Chernyakhovsky
• Andrey Noskov
• Andrey Smirnov
• Annie Cherkaev
• Anuj Singh
• Champ-Goblem
• Chris Adeniyi-Jones
• Cindia-blue
• CrazyMax
• Danny Canter
• Evan Lezar
• Fletcher Woodruff
• Gaurav Ghildiyal
• Harsh Rawat
• Hayato Kiwata
• Joseph Zhang
• Justin Chadwell
• Kal
• Manuel de Brito Fontes
• Neeraj Krishna Gopalakrishna
• Pierluigi Lenoci
• Ricardo Branco
• Rob Murray
• Rodrigo Campos
• Shachar Tal
• Shaobao Feng
• Shiming Zhang
• Tariq Ibrahim
• Tim Windelschmidt
• Tõnis Tiigi
• Wade Simmons
• Weixie Cui
• Will Jordan
• Yohei Yamamoto
• You Binhao
• Youfu Zhang
• apurv15
• bo.jiang
• chris-henderson-alation
• jinda.ljd
• qiuxue

Changes

Welcome to the api/v1.11.0-beta.2 release of containerd!
This is a pre-release of containerd

The 12th release for the containerd 1.x API aligns with the containerd 2.3 release.

Highlights

• Add transfer types for container filesystem copy (#13165)
• Introduce shim bootstrap protocol (#12786)
• Update sandbox API to include spec field (#12840)

Runtime

• Add configured socket directory to shim bootstrap protocol (#12785)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Derek McGowan
• Wei Fu
• Akihiro Suda
• Gao Xiang
• Sebastiaan van Stijn

Changes

Dependency Changes

• golang.org/x/net v0.38.0 -> v0.48.0
• golang.org/x/sys v0.31.0 -> v0.39.0
• golang.org/x/text v0.23.0 -> v0.32.0
• google.golang.org/genproto/googleapis/rpc c3f982113cda -> ff82c1b0f217
• google.golang.org/grpc v1.59.0 -> v1.79.3
• google.golang.org/protobuf v1.33.0 -> v1.36.10

Previous release can be found at api/v1.10.0

Welcome to the v2.2.3 release of containerd!

The third patch release for containerd 2.2 contains various fixes
and updates including a security patch.

Security Updates

• spdystream
  • CVE-2026-35469

Highlights

Container Runtime Interface (CRI)

• Preserve cgroup mount options for privileged containers (#13120)
• Ensure UpdatePodSandbox returns Unimplemented instead of a generic error (#13023)

Go client

• Handle absolute symlinks in rootfs user lookup to fix regressions when using Go 1.24 (#13015)

Image Distribution

• Enable mount manager in diff walking to fix layer extraction errors with some snapshotters (e.g., EROFS) (#13198)
• Apply hardening to prevent TOCTOU race during tar extraction (#12971)

Runtime

• Restore support for client-mounted roots in Windows containers using process isolation (#13195)
• Update runc to v1.3.5 (#13061)
• Apply absolute symlink resolution to /etc/group in OCI spec to fix lookups on NixOS-style systems (#13019)
• Handle absolute symlinks in rootfs user lookup to fix regressions when using Go 1.24 (#13015)

Snapshotters

• Fix bug that caused whiteouts to be ignored when parallel unpack was used (#13125)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Samuel Karp
• Sebastiaan van Stijn
• Maksym Pavlenko
• Chris Henzie
• Derek McGowan
• Paulo Oliveira
• Henry Wang
• Phil Estes
• Wei Fu
• Akihiro Suda
• Gao Xiang
• Ricardo Branco
• Shachar Tal

Changes

Dependency Changes

• github.com/Microsoft/hcsshim v0.14.0-rc.1 -> v0.14.1
• github.com/klauspost/compress v1.18.1 -> v1.18.5
• github.com/moby/spdystream v0.5.0 -> v0.5.1

Previous release can be found at v2.2.2

Which file should I download?

• containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.35 (Ubuntu 22.04).
• containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz: Statically linked. Expected to be used on Linux distributions that do not use glibc >= 2.35. Not position-independent.

In addition to containerd, typically you will have to install runc
and CNI plugins from their official sites too.

See also the Getting Started documentation.

Welcome to the v2.1.7 release of containerd!

The seventh patch release for containerd 2.1 contains various fixes
and updates including a security patch.

Security Updates

• spdystream
  • CVE-2026-35469

Highlights

Container Runtime Interface (CRI)

• Preserve host cgroup mount options for privileged containers (#13119)
• Fix image volumes when using user namespaces in CRI (#12894)
• Fix issue where CNI DEL was never executed after a restart (#12930)
• Hardening: sanitize errors before returning via gRPC to prevent possible credential leaks in pod events (#12803)
• Enable options for pulling encrypted images in CRI (#12713)

Image Distribution

• Fix possible panic from WithMediaTypeKeyPrefix (#13135)

Runtime

• Update runc binary to v1.3.5 (#13060)
• Hardening: fix possible TOCTOU race bug in tar extraction (#12969)
• Fix unintended dropping of mount flags for read-only bind-mounts in user namespaces (#12943)
• Explicitly set AppArmor ABI to 3.0 (#12898)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• yashsingh74
• Samuel Karp
• Maksym Pavlenko
• Phil Estes
• Wei Fu
• Akhil Mohan
• Chris Henzie
• Sebastiaan van Stijn
• Akihiro Suda
• Rodrigo Campos
• user.email
• Aadhar Agarwal
• Alex Chernyakhovsky
• Chris Adeniyi-Jones
• Derek McGowan
• Justin Alvarez
• Michael Zappa
• Ricardo Branco
• Shachar Tal
• Tõnis Tiigi
• ningmingxiao

Changes

Welcome to the v2.0.8 release of containerd!

The eighth patch release for containerd 2.0 includes various bug fixes and updates, including a security fix.

Security Updates

• spdystream
  • CVE-2026-35469

Highlights

Container Runtime Interface (CRI)

• Sanitize error before gRPC return to prevent possible credential leak in pod events (#13181)
• Fix CNI issue where DEL is never executed after a restart (#13179)

Runtime

• Update selinux to v1.13.1 (#13193)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Samuel Karp
• Michael Zappa
• Akhil Mohan
• Laura Lorenz
• Phil Estes
• Aadhar Agarwal
• Andrey Noskov
• Chris Henzie
• Davanum Srinivas
• Maksym Pavlenko
• Rodrigo Campos
• Sebastiaan van Stijn
• ningmingxiao
• yashsingh74

Changes

Dependency Changes

• github.com/cyphar/filepath-securejoin v0.5.1 new
• github.com/moby/spdystream v0.4.0 -> v0.5.1
• github.com/opencontainers/selinux v1.11.1 -> v1.13.1

Previous release can be found at v2.0.7

Which file should I download?

• containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04).
• containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent.

In addition to containerd, typically you will have to install runc
and CNI plugins from their official sites too.

See also the Getting Started documentation.

Welcome to the v1.7.31 release of containerd!

The thirty-first patch release for containerd 1.7 contains various fixes
and updates including a security patch.

Security Updates

• spdystream
  • CVE-2026-35469

Highlights

Container Runtime Interface (CRI)

• Fix CNI issue where DEL is never executed after a restart (#12931)
• Sanitize error before gRPC return to prevent possible credential leak in pod events (#12805)
• Improve error message and add warning when concurrent container creation is detected (#12744)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Samuel Karp
• Maksym Pavlenko
• Akhil Mohan
• Phil Estes
• Sebastiaan van Stijn
• Wei Fu
• Akihiro Suda
• Alex Chernyakhovsky
• Chris Henzie
• Michael Zappa
• Ricardo Branco
• Shachar Tal
• ningmingxiao
• yashsingh74

Changes

Dependency Changes

• github.com/moby/spdystream v0.2.0 -> v0.5.1

Previous release can be found at v1.7.30

Welcome to the v2.3.0-beta.1 release of containerd!
This is a pre-release of containerd

The third minor release of containerd 2.x focuses on continued stability alongside
new features and improvements. This is the third time-based release for containerd.

Starting with containerd 2.3, the project has moved to release cadence aligned with
the Kubernetes release schedule, with new minor releases about every 4 months. The
containerd 2.3 release is also the first annual LTS (Long Term Stable) release under
this new schedule, with support planned for at least two years. Direct upgrades
between sequential LTS releases (e.g., 1.7 to 2.3) will be tested and supported.

This is a beta release and some functionality is still under development.

Highlights

• Add transfer types for container filesystem copy (#13165)
• Introduce shim bootstrap protocol (#12786)
• tracing: add option to inject trace ID into logrus fields (#13117)
• Propagate OpenTelemetry traces in outgoing RPCs from plugin clients (#13113)
• Update plugin config migration to run on load (#12608)
• Detect vendor in cdi specs to generate device IDs for --gpus (#12839)
• Update sandbox API to include spec field (#12840)

Container Runtime Interface (CRI)

• feat: Allow containers to use both host network and user namespace (#12518)
• Unpack images with per-layer labels for specific runtime (#12835)
• Populate ImageId field in container status (#12787)
• Set annotations parameter in CreateSandbox request (#12566)

Image Distribution

• Add EROFS layer media type (#12567)

Image Storage

• Use fsmount API to avoid PAGE_SIZE limit for erofs (#12783)

Node Resource Interface (NRI)

• Pass container user (uid, gids) to plugins (#12769)
• Pass seccomp policy to plugins (#12768)
• Pass any POSIX rlimits to plugins (#12765)
• Pass extended container status to NRI. (#12770)
• Pass injected CDI devices to plugins (#12767)
• Pass linux sysctl to plugins (#12766)

Runtime

• Fix binary logging driver not blocking container start on failure (#12595)
• Use new filtered cgroups stats API (#12901)
• Update OOMKilled event handling (#12714)

Snapshotters

• Propagate parent chain ID and diff ID via labels during snapshot preparation (#13071)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Sebastiaan van Stijn
• Derek McGowan
• Krisztian Litkey
• Wei Fu
• Phil Estes
• Akihiro Suda
• Samuel Karp
• Markus Lehtonen
• Mike Brown
• Davanum Srinivas
• Akhil Mohan
• Gao Xiang
• ChengyuZhu6
• Hudson Zhu
• Kazuyoshi Kato
• Chris Henzie
• Sergey Kanzhelev
• ningmingxiao
• Aadhar Agarwal
• Andrew Halaney
• HirazawaUi
• Michael Zappa
• Paweł Gronowski
• Apurv Barve
• Brian Goff
• Fabiano Fidêncio
• Hasan Siddiqui
• Jintao Zhang
• Paulo Oliveira
• Shiv Tyagi
• Austin Vazquez
• Avinesh Singh
• Esteban Ginez
• Henry Wang
• Jin Dong
• Jérôme Poulin
• Luke Hinds
• Sascha Grunert
• majianhan
• Adrien Delorme
• Albin Kerouanton
• Alex Chernyakhovsky
• Andrey Noskov
• Andrey Smirnov
• Annie Cherkaev
• Anuj Singh
• Champ-Goblem
• Chris Adeniyi-Jones
• Cindia-blue
• CrazyMax
• Danny Canter
• Evan Lezar
• Fletcher Woodruff
• Gaurav Ghildiyal
• Harsh Rawat
• Hayato Kiwata
• Joseph Zhang
• Justin Chadwell
• Kal
• Manuel de Brito Fontes
• Neeraj Krishna Gopalakrishna
• Pierluigi Lenoci
• Ricardo Branco
• Rob Murray
• Rodrigo Campos
• Shachar Tal
• Shaobao Feng
• Shiming Zhang
• Tariq Ibrahim
• Tim Windelschmidt
• Tõnis Tiigi
• Wade Simmons
• Weixie Cui
• Will Jordan
• Yohei Yamamoto
• You Binhao
• Youfu Zhang
• bo.jiang
• chris-henderson-alation
• jinda.ljd
• qiuxue

Dependency Changes

• cyphar.com/go-pathrs v0.2.1 new
• github.com/Microsoft/go-winio v0.6.2 -> ad3df93bed29
• github.com/Microsoft/hcsshim v0.14.0-rc.1 -> v0.15.0-rc.1
• github.com/cenkalti/backoff/v5 v5.0.3 new
• github.com/checkpoint-restore/checkpointctl v1.4.0 -> v1.5.0
• github.com/containerd/cgroups/v3 v3.1.0 -> v3.1.3
• github.com/containerd/containerd/api v1.10.0 -> v1.11.0-beta.1
• github.com/containerd/go-dmverity e097b6cc4a33 new
• github.com/containerd/imgcrypt/v2 v2.0.1 -> v2.0.2
• github.com/containerd/nri v0.10.0 -> v0.11.0
• github.com/containerd/platforms v1.0.0-rc.2 -> v1.0.0-rc.4
• github.com/containerd/ttrpc v1.2.7 -> v1.2.8
• github.com/containerd/zfs/v2 v2.0.0-rc.0 -> v2.0.0
• github.com/containernetworking/plugins v1.8.0 -> v1.9.1
• github.com/coreos/go-systemd/v22 v22.6.0 -> v22.7.0
• github.com/cyphar/filepath-securejoin v0.6.0 new
• github.com/davecgh/go-spew v1.1.1 -> d8f796af33cc
• github.com/erofs/go-erofs v0.2.0 new
• github.com/go-jose/go-jose/v4 v4.1.2 -> v4.1.3
• github.com/grpc-ecosystem/grpc-gateway/v2 v2.26.1 -> v2.28.0
• github.com/intel/goresctrl v0.10.0 -> v0.12.0
• github.com/klauspost/compress v1.18.1 -> v1.18.5
• github.com/opencontainers/runtime-spec v1.2.1 -> v1.3.0
• github.com/opencontainers/runtime-tools 0ea5ed0382a2 -> edf4cb3d2116
• github.com/opencontainers/selinux v1.12.0 -> v1.13.1
• github.com/pelletier/go-toml/v2 v2.2.4 -> v2.3.0
• github.com/pmezard/go-difflib v1.0.0 -> 5d4384ee4fb2
• github.com/prometheus/procfs v0.16.1 -> v0.17.0
• github.com/sirupsen/logrus v1.9.3 -> v1.9.4
• github.com/tetratelabs/wazero v1.9.0 -> v1.10.1
• go.opentelemetry.io/auto/sdk v1.1.0 -> v1.2.1
• go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.60.0 -> v0.67.0
• go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.60.0 -> v0.67.0
• go.opentelemetry.io/otel v1.37.0 -> v1.43.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.35.0 -> v1.43.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.35.0 -> v1.43.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.35.0 -> v1.43.0
• go.opentelemetry.io/otel/metric v1.37.0 -> v1.43.0
• go.opentelemetry.io/otel/sdk v1.37.0 -> v1.43.0
• go.opentelemetry.io/otel/trace v1.37.0 -> v1.43.0
• go.opentelemetry.io/proto/otlp v1.5.0 -> v1.10.0
• go.yaml.in/yaml/v2 v2.4.2 -> v2.4.3
• golang.org/x/crypto v0.41.0 -> v0.49.0
• golang.org/x/mod v0.29.0 -> v0.34.0
• golang.org/x/net v0.43.0 -> v0.52.0
• golang.org/x/oauth2 v0.30.0 -> v0.35.0
• golang.org/x/sync v0.17.0 -> v0.20.0
• golang.org/x/sys v0.37.0 -> v0.42.0
• golang.org/x/term v0.34.0 -> v0.41.0
• **gola...

Welcome to the api/v1.11.0-beta.1 release of containerd!
This is a pre-release of containerd

The 12th release for the containerd 1.x API aligns with the containerd 2.3 release.

Highlights

• Add transfer types for container filesystem copy (#13165)
• Introduce shim bootstrap protocol (#12786)
• Update sandbox API to include spec field (#12840)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Derek McGowan
• Wei Fu
• Gao Xiang
• Sebastiaan van Stijn

Changes

Dependency Changes

• golang.org/x/net v0.38.0 -> v0.48.0
• golang.org/x/sys v0.31.0 -> v0.39.0
• golang.org/x/text v0.23.0 -> v0.32.0
• google.golang.org/genproto/googleapis/rpc c3f982113cda -> ff82c1b0f217
• google.golang.org/grpc v1.59.0 -> v1.79.3
• google.golang.org/protobuf v1.33.0 -> v1.36.10

Previous release can be found at api/v1.10.0

Welcome to the v2.3.0-beta.0 release of containerd!
This is a pre-release of containerd

The third minor release of containerd 2.x focuses on continued stability alongside
new features and improvements. This is the third time-based release for containerd.

Starting with containerd 2.3, the project has moved to release cadence aligned with
the Kubernetes release schedule, with new minor releases about every 4 months. The
containerd 2.3 release is also the first annual LTS (Long Term Stable) release under
this new schedule, with support planned for at least two years. Direct upgrades
between sequential LTS releases (e.g., 1.7 to 2.3) will be tested and supported.

This is a beta release and some functionality is still under development.

Highlights

• Update plugin config migration to run on load (#12608)
• Detect vendor in cdi specs to generate device IDs for --gpus (#12839)
• Update sandbox API to include spec field (#12840)

Container Runtime Interface (CRI)

• Unpack images with per-layer labels for specific runtime (#12835)
• Populate ImageId field in container status (#12787)
• Set annotations parameter in CreateSandbox request (#12566)

Image Distribution

• Add EROFS layer media type (#12567)

Image Storage

• Use fsmount API to avoid PAGE_SIZE limit for erofs (#12783)

Node Resource Interface (NRI)

• Pass container user (uid, gids) to plugins (#12769)
• Pass seccomp policy to plugins (#12768)
• Pass any POSIX rlimits to plugins (#12765)
• Pass extended container status to NRI. (#12770)
• Pass injected CDI devices to plugins (#12767)
• Pass linux sysctl to plugins (#12766)

Runtime

• Use new filtered cgroups stats API (#12901)
• Update OOMKilled event handling (#12714)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Sebastiaan van Stijn
• Krisztian Litkey
• Wei Fu
• Derek McGowan
• Phil Estes
• Akihiro Suda
• Markus Lehtonen
• Mike Brown
• Samuel Karp
• Akhil Mohan
• Davanum Srinivas
• Kazuyoshi Kato
• ningmingxiao
• Aadhar Agarwal
• Andrew Halaney
• Gao Xiang
• Michael Zappa
• Paweł Gronowski
• Fabiano Fidêncio
• Paulo Oliveira
• Shiv Tyagi
• Austin Vazquez
• Avinesh Singh
• ChengyuZhu6
• Chris Henzie
• Jin Dong
• Jérôme Poulin
• Luke Hinds
• Sascha Grunert
• majianhan
• Adrien Delorme
• Albin Kerouanton
• Alex Chernyakhovsky
• Andrey Noskov
• Anuj Singh
• Apurv Barve
• Brian Goff
• Champ-Goblem
• Chris Adeniyi-Jones
• Cindia-blue
• CrazyMax
• Danny Canter
• Evan Lezar
• Gaurav Ghildiyal
• Harsh Rawat
• Hayato Kiwata
• Kal
• Manuel de Brito Fontes
• Neeraj Krishna Gopalakrishna
• Rodrigo Campos
• Shachar Tal
• Shaobao Feng
• Shiming Zhang
• Tariq Ibrahim
• Tim Windelschmidt
• Tõnis Tiigi
• Wade Simmons
• Yohei Yamamoto
• You Binhao
• Youfu Zhang
• bo.jiang
• chris-henderson-alation
• jinda.ljd
• qiuxue

Dependency Changes

• cyphar.com/go-pathrs v0.2.1 new
• github.com/cenkalti/backoff/v5 v5.0.3 new
• github.com/checkpoint-restore/checkpointctl v1.4.0 -> v1.5.0
• github.com/containerd/cgroups/v3 v3.1.0 -> v3.1.3
• github.com/containerd/containerd/api v1.10.0 -> v1.11.0-beta.0
• github.com/containerd/imgcrypt/v2 v2.0.1 -> v2.0.2
• github.com/containerd/nri v0.10.0 -> v0.11.0
• github.com/containerd/ttrpc v1.2.7 -> v1.2.8
• github.com/containerd/zfs/v2 v2.0.0-rc.0 -> v2.0.0
• github.com/containernetworking/plugins v1.8.0 -> v1.9.1
• github.com/coreos/go-systemd/v22 v22.6.0 -> v22.7.0
• github.com/cyphar/filepath-securejoin v0.6.0 new
• github.com/go-jose/go-jose/v4 v4.1.2 -> v4.1.3
• github.com/grpc-ecosystem/grpc-gateway/v2 v2.26.1 -> v2.28.0
• github.com/intel/goresctrl v0.10.0 -> v0.12.0
• github.com/klauspost/compress v1.18.1 -> v1.18.4
• github.com/opencontainers/runtime-spec v1.2.1 -> v1.3.0
• github.com/opencontainers/runtime-tools 0ea5ed0382a2 -> edf4cb3d2116
• github.com/opencontainers/selinux v1.12.0 -> v1.13.1
• github.com/pmezard/go-difflib v1.0.0 -> 5d4384ee4fb2
• github.com/prometheus/procfs v0.16.1 -> v0.17.0
• github.com/sirupsen/logrus v1.9.3 -> v1.9.4
• github.com/tetratelabs/wazero v1.9.0 -> v1.10.1
• go.opentelemetry.io/auto/sdk v1.1.0 -> v1.2.1
• go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.60.0 -> v0.64.0
• go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.60.0 -> v0.64.0
• go.opentelemetry.io/otel v1.37.0 -> v1.42.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.35.0 -> v1.39.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.35.0 -> v1.39.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.35.0 -> v1.39.0
• go.opentelemetry.io/otel/metric v1.37.0 -> v1.42.0
• go.opentelemetry.io/otel/sdk v1.37.0 -> v1.42.0
• go.opentelemetry.io/otel/trace v1.37.0 -> v1.42.0
• go.opentelemetry.io/proto/otlp v1.5.0 -> v1.9.0
• go.yaml.in/yaml/v2 v2.4.2 -> v2.4.3
• golang.org/x/crypto v0.41.0 -> v0.48.0
• golang.org/x/mod v0.29.0 -> v0.34.0
• golang.org/x/net v0.43.0 -> v0.51.0
• golang.org/x/oauth2 v0.30.0 -> v0.35.0
• golang.org/x/sync v0.17.0 -> v0.20.0
• golang.org/x/sys v0.37.0 -> v0.42.0
• golang.org/x/term v0.34.0 -> v0.40.0
• golang.org/x/text v0.28.0 -> v0.34.0
• golang.org/x/time v0.14.0 -> v0.15.0
• google.golang.org/genproto/googleapis/api a7a43d27e69b -> 4cfbd4190f57
• google.golang.org/genproto/googleapis/rpc a7a43d27e69b -> 4cfbd4190f57
• google.golang.org/grpc v1.76.0 -> v1.79.2
• google.golang.org/protobuf v1.36.10 -> v1.36.11
• k8s.io/api v0.34.1 -> v0.35.2
• k8s.io/apimachinery v0.34.1 -> v0.35.2
• k8s.io/client-go v0.34.1 -> v0.35.2
• k8s.io/cri-api v0.34.1 -> v0.35.2
• k8s.io/klog/v2 v2.130.1 -> v2.140.0
• k8s.io/kube-openapi 589584f1c912 new
• k8s.io/utils 4c0f3b243397 -> bc988d571ff4
• sigs.k8s.io/json cfa47c3a1cc8 -> 2d320260d730
• tags.cncf.io/container-device-interface v1.0.1 -> v1.1.0
• tags.cncf.io/container-device-interface/specs-go v1.0.0 -> v1.1.0

Previous release can be found at v2.2.0

Which file should I download?

• containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.35 (U...

Welcome to the api/v1.11.0-beta.0 release of containerd!
This is a pre-release of containerd

The 12th release for the containerd 1.x API aligns with the containerd 2.3 release.

Highlights

• Update sandbox API to include spec field (#12840)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

• Maksym Pavlenko
• Derek McGowan
• Sebastiaan van Stijn
• Wei Fu

Changes

Dependency Changes

This release has no dependency changes

Previous release can be found at api/v1.10.0