Niels de Vos
a129b1c4ab
rebase: update golang.org/x/net to v0.14
...
golang.org/x/net/html v0.12 is vulnerable against CVE-2023-3978.
Exploiting it through Ceph-CSI is non-trivial, but rebasing
golang.org/x/net should take away any concerns.
See-also: https://pkg.go.dev/vuln/GO-2023-1988
Signed-off-by: Niels de Vos <ndevos@ibm.com>
2023-08-07 20:56:44 +00:00
dependabot[bot]
a8c5ebbeff
rebase: Bump golang.org/x/crypto from 0.10.0 to 0.11.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.10.0 to 0.11.0.
- [Commits](https://github.com/golang/crypto/compare/v0.10.0...v0.11.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-11 16:18:34 +00:00
dependabot[bot]
07b05616a0
rebase: bump k8s.io/kubernetes from 1.26.2 to 1.27.2
...
Bumps [k8s.io/kubernetes](https://github.com/kubernetes/kubernetes ) from 1.26.2 to 1.27.2.
- [Release notes](https://github.com/kubernetes/kubernetes/releases )
- [Commits](https://github.com/kubernetes/kubernetes/compare/v1.26.2...v1.27.2 )
---
updated-dependencies:
- dependency-name: k8s.io/kubernetes
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-06 12:21:43 +00:00
dependabot[bot]
e3ae53f11d
rebase: Bump golang.org/x/net from 0.7.0 to 0.8.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.7.0...v0.8.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-07 14:44:31 +00:00
dependabot[bot]
17a9451b2e
rebase: bump golang.org/x/crypto from 0.5.0 to 0.6.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-15 14:57:21 +00:00
dependabot[bot]
855a3fa193
rebase: bump golang.org/x/crypto from 0.3.0 to 0.4.0
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-13 10:04:00 +00:00
Humble Chirammal
c9ccbf29bb
rebase: update to latest snapshotter
...
this commit update the snapshotter client to v6.1.0
Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2022-11-11 09:25:57 +00:00
dependabot[bot]
807f776132
rebase: bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.3.1 to 2.4.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.3.1...v2.4.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-25 12:57:58 +00:00
Niels de Vos
e08005f402
rebase: ParseAcceptLanguage takes a long time to parse complex tags
...
A vulnerability was found in golang.org/x/text/language package which
could cause a denial of service. An attacker can craft an
Accept-Language header which ParseAcceptLanguage will take significant
time to parse.
Version v0.3.8 of golang.org/x/text fixes a vulnerability.
See-also: https://go.dev/issue/56152
See-also: https://bugzilla.redhat.com/CVE-2022-32149
Signed-off-by: Niels de Vos <ndevos@redhat.com>
2022-10-18 11:58:37 +00:00
Rakshith R
e72ed593be
rebase: vendor files required for kmip
...
Signed-off-by: Rakshith R <rar@redhat.com>
2022-08-18 07:41:42 +00:00
Madhu Rajanna
c4f79d455f
rebase: update kubernetes dep to 1.24.0
...
As kubernetes 1.24.0 is released, updating
kubernetes dependencies to 1.24.0
updates: #3086
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
2022-05-09 09:16:12 +00:00
Madhu Rajanna
5762da3e91
rebase: update kubernetes to v1.23.0
...
updating go dependency to latest kubernetes
released version i.e v1.23.0
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
2021-12-13 07:32:54 +00:00
Madhu Rajanna
fb7dc13dfe
rebase: update packages in go.mod to latest releases
...
updated few packages in go.mod to latest
available release.
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
2021-06-04 11:52:22 +00:00
Madhu Rajanna
83559144b1
rebase: update kubernetes to v1.20.0
...
updated kubernetes packages to latest
release.
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
2020-12-17 16:04:54 +00:00
Niels de Vos
91774fc936
rebase: vendor dependencies for Vault API
...
Uses github.com/libopenstorage/secrets to communicate with Vault. This
removes the need for maintaining our own limited Vault APIs.
By adding the new dependency, several other packages got updated in the
process. Unused indirect dependencies have been removed from go.mod.
Signed-off-by: Niels de Vos <ndevos@redhat.com>
2020-11-29 04:03:59 +00:00
Mudit Agarwal
8e434bb3ee
build: update vendor with latest version
...
Updating the version of golang.org/x/text to version v0.3.3.
It fixes the vulnerability in http://golang.org/x/text/encoding/unicode
which leads UTF-16 decoder entering an infinite loop causing
the program to crash or run out of memory.
Signed-off-by: Mudit Agarwal <muagarwa@redhat.com>
2020-09-21 10:49:28 +00:00
Madhu Rajanna
d5a0606c33
Migrate from dep to go module
...
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
2020-03-17 10:44:07 +00:00
Humble Chirammal
3af1e26d7c
Update to kube v1.17
...
Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
2020-01-17 12:06:02 +00:00
Madhu Rajanna
d300da19b7
vendor update for E2E framework
...
Signed-off-by: Madhu Rajanna <madhupr007@gmail.com>
2019-06-04 11:39:42 +05:30
Madhu Rajanna
b10ba188e7
vendor cleanup: remove unused,non-go and test files
2019-01-16 00:19:28 +05:30
Serguei Bezverkhi
e9033989a0
vendor updates
2018-03-07 11:43:06 -05:00
Serguei Bezverkhi
7b24313bd6
vendor files
2018-01-10 13:42:26 -05:00