Skip to content
This repository was archived by the owner on Mar 3, 2025. It is now read-only.

🐛 [CVE-2024-45337 - CVE-2024-45337 - CVE-2024-45337] - Upgrade golang.org/x/net v0.30.0 => v0.34.0#502

Merged
camilamacedo86 merged 1 commit into
operator-framework:mainfrom
camilamacedo86:fix-cve-golang
Jan 7, 2025
Merged

🐛 [CVE-2024-45337 - CVE-2024-45337 - CVE-2024-45337] - Upgrade golang.org/x/net v0.30.0 => v0.34.0#502
camilamacedo86 merged 1 commit into
operator-framework:mainfrom
camilamacedo86:fix-cve-golang

Conversation

@camilamacedo86

@camilamacedo86 camilamacedo86 commented Jan 7, 2025

Copy link
Copy Markdown
Contributor

Description - Upgrade

go: upgraded golang.org/x/crypto v0.31.0 => v0.32.0
go: upgraded golang.org/x/net v0.30.0 => v0.34.0
go: upgraded golang.org/x/sys v0.28.0 => v0.29.0
go: upgraded golang.org/x/term v0.27.0 => v0.28.0

Motivation

@camilamacedo86 camilamacedo86 requested a review from a team as a code owner January 7, 2025 19:23
@tmshort

tmshort commented Jan 7, 2025

Copy link
Copy Markdown
Contributor

It appears as though some go get or go mod commands are needed to fulfill some dependencies. And then there's lint...

@codecov

codecov Bot commented Jan 7, 2025
edited
Loading

Copy link
Copy Markdown

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 37.20%. Comparing base (ca3a146) to head (3ababdc).
Report is 1 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #502   +/-   ##
=======================================
  Coverage   37.20%   37.20%           
=======================================
  Files          15       15           
  Lines        1258     1258           
=======================================
  Hits          468      468           
  Misses        740      740           
  Partials       50       50

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

tmshort
tmshort previously approved these changes Jan 7, 2025
View reviewed changes

@tmshort tmshort left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@openshift-ci openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Jan 7, 2025
@camilamacedo86 camilamacedo86 added this pull request to the merge queue Jan 7, 2025
@openshift-ci openshift-ci Bot removed the lgtm Indicates that a PR is ready to be merged. label Jan 7, 2025
auto-merge was automatically disabled January 7, 2025 20:32

Pull Request is not mergeable

auto-merge was automatically disabled January 7, 2025 20:32

Pull Request is not mergeable

auto-merge was automatically disabled January 7, 2025 20:32

Pull Request is not mergeable

auto-merge was automatically disabled January 7, 2025 20:32

Pull Request is not mergeable

@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to a conflict with the base branch Jan 7, 2025
@camilamacedo86
Upgrade golang.org/x/net
3ababdc 
go: upgraded golang.org/x/crypto v0.31.0 => v0.32.0
go: upgraded golang.org/x/net v0.30.0 => v0.34.0
go: upgraded golang.org/x/sys v0.28.0 => v0.29.0
go: upgraded golang.org/x/term v0.27.0 => v0.28.0
@camilamacedo86 camilamacedo86 requested a review from tmshort January 7, 2025 20:46
tmshort
tmshort approved these changes Jan 7, 2025
View reviewed changes

@tmshort tmshort left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@openshift-ci openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Jan 7, 2025
@camilamacedo86 camilamacedo86 added this pull request to the merge queue Jan 7, 2025
Merged via the queue into operator-framework:main with commit efcba0d Jan 7, 2025
@camilamacedo86 camilamacedo86 deleted the fix-cve-golang branch January 7, 2025 22:57
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@tmshort tmshort tmshort approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@tmshort tmshort

Labels

lgtm Indicates that a PR is ready to be merged.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@camilamacedo86 @tmshort