build(deps): bump github.com/moby/sys/user from 0.4.0 to 0.4.1

[dependabot]

Bumps github.com/moby/sys/user from 0.4.0 to 0.4.1.

Release notes

Sourced from github.com/moby/sys/user's releases.

mountinfo v0.4.1

Fixes and improvements:

• Fix PrefixFilter() being too greedy (#61)
• TestMountedBy*: add missing pre-checks (ce8f425e79a74602c4055fb1776f38043d56827b)
• Documentation improvements (#52)

user/v0.4.1

What's Changed

• user: prevent possible DoS via unbounded parsing of user and group database files in GHSA-mjcv-p78q-w5fw. This fixes a similar issue as CVE-2026-47262 in containerd.
• user: prevent falling back to looking up numeric usernames and improve handling of numeric user/group to prevent looking up numeric values as usernames. This fixes a similar issue as CVE-2026-46680 in containerd. moby/sys#221
• user: prevent falling back to looking up numeric usernames
• user: bump Go to 1.18, modernize moby/sys#198
• user: make code a bit more DRY moby/sys#225
• user: test cleanups moby/sys#226

Full Changelog: moby/sys@user/v0.4.0...user/v0.4.1

Commits

• 85a71bb Merge commit from fork
• 2c56c3d user: limit line length in ParseGroupFilter
• bba2f13 user: limit reads from user database files
• ee79b0e Merge pull request #221 from thaJeztah/limit_uidgid
• 6eb9f15 user: GetAdditionalGroups: treat numeric group arguments as GIDs only
• c66bd2d user: prevent falling back to looking up numeric usernames
• c873359 Merge pull request #226 from thaJeztah/user_test_cleanups
• f41a5ef Merge pull request #225 from thaJeztah/user_dry
• 5c2e8a0 user: add test-cases for maxID (math.MaxInt32)
• e001aea user: use sub-tests
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)