mirrors/ceph-csi
1
0
Fork 0
mirror of https://github.com/ceph/ceph-csi.git synced 2024-09-20 07:29:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,760 Commits 25 Branches 38 Tags 164 MiB
0bfb3241ea
Commit Graph

19 Commits

Author SHA1 Message Date
Niels de Vos
a129b1c4ab rebase: update golang.org/x/net to v0.14 
golang.org/x/net/html v0.12 is vulnerable against CVE-2023-3978.
Exploiting it through Ceph-CSI is non-trivial, but rebasing
golang.org/x/net should take away any concerns.

See-also: https://pkg.go.dev/vuln/GO-2023-1988
Signed-off-by: Niels de Vos <ndevos@ibm.com>
 2023-08-07 20:56:44 +00:00
dependabot[bot]
4a263fc13e rebase: Bump golang.org/x/net from 0.11.0 to 0.12.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.11.0 to 0.12.0.
- [Commits](https://github.com/golang/net/compare/v0.11.0...v0.12.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-12 09:24:11 +00:00
dependabot[bot]
db531cb50b rebase: bump golang.org/x/net from 0.9.0 to 0.10.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.9.0 to 0.10.0.
- [Commits](https://github.com/golang/net/compare/v0.9.0...v0.10.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-23 17:58:25 +00:00
dependabot[bot]
6a4f847af6 rebase: bump golang.org/x/crypto from 0.6.0 to 0.8.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.6.0 to 0.8.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.6.0...v0.8.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-03 10:58:52 +00:00
dependabot[bot]
e3ae53f11d rebase: Bump golang.org/x/net from 0.7.0 to 0.8.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.7.0...v0.8.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 14:44:31 +00:00
dependabot[bot]
f654066bfe rebase: bump golang.org/x/net from 0.6.0 to 0.7.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-15 19:01:10 +00:00
dependabot[bot]
17a9451b2e rebase: bump golang.org/x/crypto from 0.5.0 to 0.6.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-15 14:57:21 +00:00
Humble Chirammal
d721ed6c5c build: fix CVEs in the image 
This commit update dependencies which is required to fix below CVEs.

CVE-2022-27664
CVE-2022-27191

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2022-11-16 15:16:16 +00:00
dependabot[bot]
807f776132 rebase: bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0 
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.3.1 to 2.4.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.3.1...v2.4.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-25 12:57:58 +00:00
Humble Chirammal
aa698bc3e1 rebase: update kubernetes and libraries to v1.22.0 version 
Kubernetes v1.22 version has been released and this update
ceph csi dependencies to use the same version.

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2021-08-12 09:55:50 +00:00
Madhu Rajanna
83559144b1 rebase: update kubernetes to v1.20.0 
updated kubernetes packages to latest
release.

Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2020-12-17 16:04:54 +00:00
Humble Chirammal
34fc1d847e Changes to accommodate client-go changes and kube vendor update 
to v1.18.0

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2020-04-14 10:50:12 +00:00
Madhu Rajanna
d5a0606c33 Migrate from dep to go module 
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2020-03-17 10:44:07 +00:00
Humble Chirammal
3af1e26d7c Update to kube v1.17 
Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2020-01-17 12:06:02 +00:00
Madhu Rajanna
d300da19b7 vendor update for E2E framework 
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
 2019-06-04 11:39:42 +05:30
Madhu Rajanna
b10ba188e7 vendor cleanup: remove unused,non-go and test files 2019-01-16 00:19:28 +05:30
gman
8ea659f0d5 vendor update for CSI 0.3.0 2018-07-31 14:53:26 +02:00
Serguei Bezverkhi
e9033989a0 vendor updates 2018-03-07 11:43:06 -05:00
Serguei Bezverkhi
7b24313bd6 vendor files 2018-01-10 13:42:26 -05:00