fix(deps): update containers/bubblewrap to v0.11.2

[renovate]

This PR contains the following updates:

Package	Update	Change
containers/bubblewrap	patch	v0.11.1 → v0.11.2

---

Release Notes

containers/bubblewrap (containers/bubblewrap)

v0.11.2: Release 0.11.2

Compare Source

This is a security update for CVE-2026-41163, which affects any system using bubblewrap 0.11.x using a setuid bubblewrap. Anyone using this should update to this release (or stop using setuid mode).

This release deprecates the support for setuid bubblewrap, and later versions of bubblewrap will no longer support it.

Bug fixes:

• In setuid mode, don't run the low-privileged parts parts of the setup
  as dumpable, as that allows it to be ptraced which can lead to problems.
  This is CVE-2026-41163, and was reported by François Diakhate.

Enhancements:

• New build option -Dsupport_setuid, which if set to false (which
  is the default) disables the support for setuid. Binaries built
  with this will refuse to run if made setuid. We recommend building
  normal bubblewrap binaries like this, which allows you to safely
  ignore any security issues that only affect setuid mode.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.