mirrors/ceph-csi
1
0
Fork 0
mirror of https://github.com/ceph/ceph-csi.git synced 2025-03-08 16:39:29 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,539 Commits 29 Branches 41 Tags 148 MiB
08805a08f3
Commit Graph

16 Commits

Author SHA1 Message Date
Niels de Vos
f87d06ed85 build: move e2e dependencies into e2e/go.mod 
Several packages are only used while running the e2e suite. These
packages are less important to update, as the they can not influence the
final executable that is part of the Ceph-CSI container-image.

By moving these dependencies out of the main Ceph-CSI go.mod, it is
easier to identify if a reported CVE affects Ceph-CSI, or only the
testing (like most of the Kubernetes CVEs).

Signed-off-by: Niels de Vos <ndevos@ibm.com>
 2025-03-04 17:43:49 +01:00
dependabot[bot]
5a65f9e615 rebase: bump the golang-dependencies group with 3 updates 
Bumps the golang-dependencies group with 3 updates: [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/net](https://github.com/golang/net) and [golang.org/x/sys](https://github.com/golang/sys).


Updates `golang.org/x/crypto` from 0.27.0 to 0.28.0
- [Commits](https://github.com/golang/crypto/compare/v0.27.0...v0.28.0)

Updates `golang.org/x/net` from 0.29.0 to 0.30.0
- [Commits](https://github.com/golang/net/compare/v0.29.0...v0.30.0)

Updates `golang.org/x/sys` from 0.25.0 to 0.26.0
- [Commits](https://github.com/golang/sys/compare/v0.25.0...v0.26.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-08 21:48:04 +00:00
Madhu Rajanna
ff3e84ad67 rebase: update kubernetes to 1.28.0 in main 
updating kubernetes to 1.28.0
in the main repo.

Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2023-08-17 13:43:15 +00:00
dependabot[bot]
a8c5ebbeff rebase: Bump golang.org/x/crypto from 0.10.0 to 0.11.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.10.0 to 0.11.0.
- [Commits](https://github.com/golang/crypto/compare/v0.10.0...v0.11.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-11 16:18:34 +00:00
dependabot[bot]
17a9451b2e rebase: bump golang.org/x/crypto from 0.5.0 to 0.6.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-15 14:57:21 +00:00
dependabot[bot]
807f776132 rebase: bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0 
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.3.1 to 2.4.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.3.1...v2.4.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-25 12:57:58 +00:00
Niels de Vos
e08005f402 rebase: ParseAcceptLanguage takes a long time to parse complex tags 
A vulnerability was found in golang.org/x/text/language package which
could cause a denial of service. An attacker can craft an
Accept-Language header which ParseAcceptLanguage will take significant
time to parse.
Version v0.3.8 of golang.org/x/text fixes a vulnerability.

See-also: https://go.dev/issue/56152
See-also: https://bugzilla.redhat.com/CVE-2022-32149
Signed-off-by: Niels de Vos <ndevos@redhat.com>
 2022-10-18 11:58:37 +00:00
Rakshith R
e72ed593be rebase: vendor files required for kmip 
Signed-off-by: Rakshith R <rar@redhat.com>
 2022-08-18 07:41:42 +00:00
Madhu Rajanna
5762da3e91 rebase: update kubernetes to v1.23.0 
updating go dependency to latest kubernetes
released version i.e v1.23.0

Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2021-12-13 07:32:54 +00:00
Madhu Rajanna
fb7dc13dfe rebase: update packages in go.mod to latest releases 
updated few packages in go.mod to latest
available release.

Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2021-06-04 11:52:22 +00:00
Madhu Rajanna
83559144b1 rebase: update kubernetes to v1.20.0 
updated kubernetes packages to latest
release.

Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2020-12-17 16:04:54 +00:00
Madhu Rajanna
d5a0606c33 Migrate from dep to go module 
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2020-03-17 10:44:07 +00:00
Madhu Rajanna
d300da19b7 vendor update for E2E framework 
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2019-06-04 11:39:42 +05:30
Madhu Rajanna
b10ba188e7 vendor cleanup: remove unused,non-go and test files 2019-01-16 00:19:28 +05:30
Serguei Bezverkhi
e9033989a0 vendor updates 2018-03-07 11:43:06 -05:00
Serguei Bezverkhi
7b24313bd6 vendor files 2018-01-10 13:42:26 -05:00