Update dependencies for v1.24.8 #406
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Clears the following from static code analysis scans: CVE-2022-1996 CVE-2022-21698 CVE-2022-27191 CVE-2022-27664 CVE-2022-29526 CVE-2022-32149 CVE-2020-8554 Signed-off-by: Naadir Jeewa <[email protected]>
|
Thank you for your pull request and welcome to our community! To contribute, please sign the Oracle Contributor Agreement (OCA).
To sign the OCA, please create an Oracle account and sign the OCA in Oracle's Contributor Agreement Application. When signing the OCA, please provide your GitHub username. After signing the OCA and getting an OCA approval from Oracle, this PR will be automatically updated. If you are an Oracle employee, please make sure that you are a member of the main Oracle GitHub organization, and your membership in this organization is public. |
oracle-contributor-agreement
bot
added
the
OCA Required
oracle-contributor-agreement
bot
added
OCA Verified
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Clears the following from static code analysis scans (in this case using https://github.com/aquasecurity/trivy, which is the default scanner in Harbor registry):
CVE-2022-1996
CVE-2022-21698
CVE-2022-27191
CVE-2022-27664
CVE-2022-29526
CVE-2022-32149
CVE-2020-8554
Impact of these is fairly low in the context of the CPI/CSI, but is open to misinterpretation by end users.
Signed-off-by: Naadir Jeewa [email protected]