Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix CVE-2022-41723 #1516

Merged
merged 1 commit into from
Feb 24, 2023
Merged

fix CVE-2022-41723 #1516

merged 1 commit into from
Feb 24, 2023

Conversation

manfontan
Copy link
Collaborator

@manfontan manfontan commented Feb 24, 2023
edited
Loading

Description

Upgrade dependency to fix CVE-2022-41723

Type of change

Please select one of the options below.

  • Security Fix

Discussion

Are there any design details that you would like to discuss further? No

Testing

Please describe the tests that you ran to verify your changes. Unit tests?
Manual testing? Unit tests

Do we need to perform additional testing once this is merged, or perform in a larger testing environment?
No

Documentation

Did you update relevant documentation within this repository? N/A

If this change is adding new functionality, do we need to describe it in our user manual? N/A

If this change is adding or removing subreconcilers, have we updated the core technical design doc to reflect that? N/A

If this change is adding new safety checks or new potential failure modes, have we documented and how to debug potential issues? N/A

Follow-up

Are there any follow-up issues that we should pursue in the future? N/A

Does this introduce new defaults that we should re-evaluate in the future? N/A

@manfontan
fix CVE-2022-41723
4bf63d0 
Signed-off-by: Manuel Fontan <manuel.fontan@cognite.com>
@manfontan manfontan added the dependencies Pull requests that update a dependency file label Feb 24, 2023
@johscheuer johscheuer self-requested a review February 24, 2023 11:04
johscheuer
johscheuer approved these changes Feb 24, 2023
View reviewed changes
Copy link
Member

@johscheuer johscheuer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍 Let's wait for the CI.

@foundationdb-ci
Copy link

Result of fdb-kubernetes-operator-pr on Linux CentOS 7

  • Commit ID: 4bf63d0
  • Duration 3:09:03
  • Result: ❌ FAILED
  • Error: Error while executing command: if $fail_test; then exit 1; fi. Reason: exit status 1
  • Build Log terminal output (available for 30 days)
  • Build Workspace zip file of the working directory (available for 30 days)

johscheuer
johscheuer reviewed Feb 24, 2023
View reviewed changes
Copy link
Member

@johscheuer johscheuer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Test failures are unrelated.

@johscheuer johscheuer merged commit c7b9abf into FoundationDB:main Feb 24, 2023
@manfontan manfontan deleted the CDF-17988-fdb-k8s-operator-fix-cve-2022-41723 branch April 24, 2023 22:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@johscheuer johscheuer johscheuer approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@manfontan @foundationdb-ci @johscheuer