kubernetes-csi/csi-driver-nfs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,647 Commits 1 Branch 0 Tags
Commit Graph

2 Commits

Author SHA1 Message Date
dependabot[bot]
5e602c40a2
chore(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.72.2 to 1.73.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.72.2...v1.73.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-version: 1.73.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-05 22:38:30 +00:00
Pierre Prinetti
93be2ff7ac
Bump Go and golang.org/x/... to recent versions 
Mitigations to CVE-2023-44487 were added to golang.org/x/net v0.17
(c4e9120dde92bc2cce99f853d4f1c5afe1cbaa23) and in Go v1.20.10[1]. This PR
bumps Go to v1.20 to benefit from the patches to the standard library.

Aside, this patch also bump the pseudo-standard golang.org/x/...
libraries to their latest available version for good measure.

[1]: https://pkg.go.dev/vuln/GO-2023-2102
 2023-10-19 17:05:04 +02:00