-
Notifications
You must be signed in to change notification settings - Fork 96
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Need fix for CVE-2023-45288 #261
Comments
@ggriffiths could you please help to understand how to bump go version? I see https://github.com/kubernetes/kubernetes/blob/master/.go-version#L1 and I see livenessprobe/release-tools/prow.sh Line 89 in f8c3f43
but it's unclear how to bump it correctly. |
I think this repo will get a new go version when it gets updated to Kubernetes 1.30 libraries. I'm waiting for a new github.com/kubernetes-csi/csi-lib-utils tag and then we will update all CSI sidecars. |
@jsafrane thanks! |
@jsafrane Hi it appears that a new tag was released last week: https://github.com/kubernetes-csi/csi-lib-utils/releases/tag/v0.18.0 |
Problem that new release doesn't exist in registry:
cc @jsafrane |
Windows image build fails because of microsoft/Windows-Containers#493 :-( |
@jsafrane it seems related ticket has been resolved microsoft/Windows-Containers#493, Could you please check why I still can't pull an image?
|
I published livenessprobe:v2.13.1 this week, I am not able to re-build and re-publish v2.13.0 :-( |
I think issue was resolved so I close it because image is avaialble. thanks a lot for you help @jsafrane |
If we bump go version from go1.21.5 to go1.21.10 we can solve the issue.
GHSA-4v7x-pqxf-cx7m
Please let me know if you need help, I can try to contribute if you accept the PR.
The text was updated successfully, but these errors were encountered: