Update runc to v1.3.3

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>

Author: saschagrunert

dependencies.yaml

@@ -138,7 +138,7 @@ dependencies:
       match: CRUN_VERSION
 
   - name: runc
-    version: v1.3.2
+    version: v1.3.3
     refPaths:
     - path: examples/baseprofile-runc.yaml
       match: name

examples/baseprofile-runc.yaml

@@ -2,7 +2,7 @@
 apiVersion: security-profiles-operator.x-k8s.io/v1beta1
 kind: SeccompProfile
 metadata:
-  name: runc-v1.3.2
+  name: runc-v1.3.3
 spec:
   defaultAction: SCMP_ACT_ERRNO
   architectures:

installation-usage.md

@@ -1595,7 +1595,7 @@ metadata:
   name: profile1
 spec:
   defaultAction: SCMP_ACT_ERRNO
-  baseProfileName: runc-v1.3.2
+  baseProfileName: runc-v1.3.3
   syscalls:
     - action: SCMP_ACT_ALLOW
       names:
@@ -1661,7 +1661,7 @@ metadata:
   name: profile1
 spec:
   defaultAction: SCMP_ACT_ERRNO
-  baseProfileName: oci://ghcr.io/security-profiles/runc:v1.3.2
+  baseProfileName: oci://ghcr.io/security-profiles/runc:v1.3.3
 ```
 
 The resulting profile `profile1` will then contain all base syscalls from the
@@ -2023,24 +2023,24 @@ The `spoc` client is able to pull security profiles from OCI artifact compatible
 registries. To do that, just run `spoc pull`:
 
 ```console
-> spoc pull ghcr.io/security-profiles/runc:v1.3.2
-16:32:29.795597 Pulling profile from: ghcr.io/security-profiles/runc:v1.3.2
+> spoc pull ghcr.io/security-profiles/runc:v1.3.3
+16:32:29.795597 Pulling profile from: ghcr.io/security-profiles/runc:v1.3.3
 16:32:29.795610 Verifying signature
 
-Verification for ghcr.io/security-profiles/runc:v1.3.2 --
+Verification for ghcr.io/security-profiles/runc:v1.3.3 --
 The following checks were performed on each of these signatures:
   - Existence of the claims in the transparency log was verified offline
   - The code-signing certificate was verified using trusted certificate authority certificates
 
 [{"critical":{"identity":{"docker-reference":"ghcr.io/security-profiles/runc"},…}}]
 16:32:33.208695 Creating file store in: /tmp/pull-3199397214
-16:32:33.208713 Verifying reference: ghcr.io/security-profiles/runc:v1.3.2
+16:32:33.208713 Verifying reference: ghcr.io/security-profiles/runc:v1.3.3
 16:32:33.208718 Creating repository for ghcr.io/security-profiles/runc
-16:32:33.208742 Using tag: v1.3.2
+16:32:33.208742 Using tag: v1.3.3
 16:32:33.208743 Copying profile from repository
 16:32:34.119652 Reading profile
 16:32:34.119677 Trying to unmarshal seccomp profile
-16:32:34.120114 Got SeccompProfile: runc-v1.3.2
+16:32:34.120114 Got SeccompProfile: runc-v1.3.3
 16:32:34.120119 Saving profile in: /tmp/profile.yaml
 ```
 
@@ -2168,15 +2168,15 @@ The Security Profiles Operator will try to pull the correct profile by using
 way, for example if a profile does not support any platform:
 
 ```
-> spoc pull ghcr.io/security-profiles/runc:v1.3.2
-11:07:14.788840 Pulling profile from: ghcr.io/security-profiles/runc:v1.3.2
+> spoc pull ghcr.io/security-profiles/runc:v1.3.3
+11:07:14.788840 Pulling profile from: ghcr.io/security-profiles/runc:v1.3.3
 11:07:14.788852 Verifying signature
 …
 11:07:17.559037 Copying profile from repository
 11:07:18.359152 Trying to read profile: profile-linux-amd64.yaml
 11:07:18.359209 Trying to read profile: profile.yaml
 11:07:18.359224 Trying to unmarshal seccomp profile
-11:07:18.359728 Got SeccompProfile: runc-v1.3.2
+11:07:18.359728 Got SeccompProfile: runc-v1.3.3
 11:07:18.359732 Saving profile in: /tmp/profile.yaml
 ```
 

test/tc_base_profiles_test.go

@@ -24,7 +24,7 @@ import (
 )
 
 const (
-	baseProfileNameRunc = "runc-v1.3.2"
+	baseProfileNameRunc = "runc-v1.3.3"
 	baseProfileNameCrun = "crun-v1.24"
 )