Bump charmbracelet/vhs from v0.10.0 to v0.11.0 in /.docker

[dependabot]

Bumps charmbracelet/vhs from v0.10.0 to v0.11.0.

Release notes

Sourced from charmbracelet/vhs's releases.

v0.11.0

Scroll? More keys?

This release includes two nice features that include scrolling the viewport and supporting Ctrl+<arrow> keys. You can now use the ScrollUp and ScrollDown commands to scroll the viewport. VHS will also now recognize Ctrl+Left/Up/Right/Down keys.

Thanks to @​joshka-oai and @​sectore for their gracious contributions and support 🙂

Changelog

New!

• bae3eb0b10c1adde7532d58e4e3cbc838cd11be7: feat: add viewport scroll commands to tapes (#707) (@​joshka-oai)
• 9e2797694769694ab9971bab0e615d445ffc6786: feat: support ctrl + arrow keys (#673) (@​sectore)

Fixed

• 55f824abd4a73db1aec1c1569ae77485c355004b: fix(docker): remove ubuntu font which is no longer available in alpine (@​aymanbagabas)
• b8a1d8603178adf3aa8d8df26db6e74efbbf9a04: fix(docker): update env variables to use '=' (@​aymanbagabas)
• 9c80359a6ddfe5f54b7f92b9e981876263b04ae9: fix: lint issues (@​aymanbagabas)

Other stuff

• 9efc235e9f862d3c95e9b01e9b513bd56addfe14: Fix lexer regex escaping (#678) (@​raphamorim)
• 0a14d2caab29ed20584752e1f5d0e3ae781406a0: ci: sync dependabot config (#660) (@​charmcli)
• 0bb22516def6b1c364c4fb557d45ad6b53e00b6f: ci: sync dependabot config (#668) (@​charmcli)
• a94d7259419539c552186eb7893afc2166d66ff9: ci: sync golangci-lint config (@​caarlos0)
• be4921999fba580003bcef2f18db28ce6318c787: ci: sync golangci-lint config (#650) (@​github-actions[bot])

---

First, download the checksums.txt file and the checksums.txt.sigstore.json file files, for example, with wget:

wget 'https://github.com/charmbracelet/vhs/releases/download/v0.11.0/checksums.txt'
wget 'https://github.com/charmbracelet/vhs/releases/download/v0.11.0/checksums.txt.sigstore.json'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --bundle 'checksums.txt.sigstore.json' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

... (truncated)

Commits

• c6af91a chore(deps): bump the all group across 1 directory with 2 updates (#720)
• 9e27976 feat: support ctrl + arrow keys (#673)
• bae3eb0 feat: add viewport scroll commands to tapes (#707)
• 9c80359 fix: lint issues
• 55f824a fix(docker): remove ubuntu font which is no longer available in alpine
• b8a1d86 fix(docker): update env variables to use '='
• 7d38877 chore: fix lint issues
• a94d725 ci: sync golangci-lint config
• d95e606 chore: bump minimum Go version to 1.25.8 to fix vulns
• 9fcf0fa chore: bump minimum Go version to 1.24.13
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[tx3stn]

@dependabot rebase