kubernetes-csi/csi-driver-nfs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,370 Commits 1 Branch 0 Tags
Commit Graph

14 Commits

Author SHA1 Message Date
andyzhangx
470eeca5b6 fix: GHSA-xr7q-jx4m-x55m 2024-07-11 02:21:17 +00:00
Pierre Prinetti
93be2ff7ac
Bump Go and golang.org/x/... to recent versions 
Mitigations to CVE-2023-44487 were added to golang.org/x/net v0.17
(c4e9120dde92bc2cce99f853d4f1c5afe1cbaa23) and in Go v1.20.10[1]. This PR
bumps Go to v1.20 to benefit from the patches to the standard library.

Aside, this patch also bump the pseudo-standard golang.org/x/...
libraries to their latest available version for good measure.

[1]: https://pkg.go.dev/vuln/GO-2023-2102
 2023-10-19 17:05:04 +02:00
dependabot[bot]
c70d7b6163
chore(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.3 to 1.59.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.3...v1.59.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-17 22:52:33 +00:00
dependabot[bot]
29330cf27e
chore(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.2 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.58.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.57.0...v1.58.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-22 22:21:00 +00:00
dependabot[bot]
6d41f01685
chore(deps): bump google.golang.org/grpc from 1.40.0 to 1.56.2 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.40.0 to 1.56.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.40.0...v1.56.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-18 22:16:59 +00:00
andyzhangx
40e3d56201 fix: CVE-2022-29526 2022-08-04 12:32:20 +00:00
andyzhangx
9cf4719a97 chore: upgrade to k8s 1.23 lib 2021-12-31 07:40:41 +00:00
andyzhangx
f7a1b9aec1 chore: upgrade k8s dependencies 2021-01-02 00:46:27 +00:00
Michelle Au
1238d27bad Update vendor to k8s 1.19 and csi-lib-utils to 0.9.0 
Change-Id: I607c182c09a88a7daf1e4ffb67a28ab16d1f23ae
 2020-11-30 18:23:47 -08:00
Mayank Shah
002b246eb0 Update k8s.io/kubernetes to use v1.18.0 
Signed-off-by: Mayank Shah <mayankshah1614@gmail.com>
 2020-11-02 20:33:59 +05:30
Jan Wozniak
aec3981aee Cleanup indirect dependencies 2020-02-02 16:05:40 +01:00
Jan Wozniak
0e6e8d1926 Update vendor from go modules 
$ go mod tidy
$ go mod vendor
 2020-02-02 15:55:23 +01:00
Mathusan Selvarajah
04b68cc678 update vendor files to kube 1.14 2019-04-23 15:42:44 -04:00
prateekpandey14
9e60b2f3c8 Add vendor dependencies 
Signed-off-by: prateekpandey14 <prateekpandey14@gmail.com>
 2019-02-07 14:49:15 +05:30