Skip to content
This repository was archived by the owner on Sep 30, 2024. It is now read-only.

chore(security): update dependencies#63197

Merged
evict merged 7 commits into
mainfrom
vincent/update-deps
Jun 11, 2024
Merged

chore(security): update dependencies#63197
evict merged 7 commits into
mainfrom
vincent/update-deps

Conversation

@evict

@evict evict commented Jun 11, 2024
edited
Loading

Copy link
Copy Markdown
Contributor

This PR upgrades a bunch of Golang dependencies that have known security issues.

Test plan

CI tests, ran sg start.

@evict evict added the SSDLC label Jun 11, 2024
@evict evict requested review from a team June 11, 2024 10:31
@evict evict self-assigned this Jun 11, 2024
@cla-bot cla-bot Bot added the cla-signed label Jun 11, 2024
burmudar
burmudar suggested changes Jun 11, 2024
View reviewed changes

@burmudar burmudar left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think you're going to need to run sg bazle configure godeps

@evict evict force-pushed the vincent/update-deps branch from 448f663 to 5a7824e Compare June 11, 2024 10:34
@github-actions

github-actions Bot commented Jun 11, 2024

Copy link
Copy Markdown
Contributor

Caution

License checking failed, please read: how to deal with third parties licensing.

1 similar comment
@github-actions

github-actions Bot commented Jun 11, 2024

Copy link
Copy Markdown
Contributor

Caution

License checking failed, please read: how to deal with third parties licensing.

@evict evict force-pushed the vincent/update-deps branch from 9d3de5f to 3e7ffc6 Compare June 11, 2024 11:06
@github-actions

github-actions Bot commented Jun 11, 2024

Copy link
Copy Markdown
Contributor

Caution

License checking failed, please read: how to deal with third parties licensing.

@evict evict force-pushed the vincent/update-deps branch from 3e7ffc6 to caed089 Compare June 11, 2024 14:08
@evict evict force-pushed the vincent/update-deps branch from caed089 to e857b6f Compare June 11, 2024 14:47
github-advanced-security[bot]
github-advanced-security AI found potential problems Jun 11, 2024
View reviewed changes
Comment thread go.mod Outdated
Comment on lines 28 to 29

Check notice

Code scanning / Semgrep OSS

Semgrep Finding: security-semgrep-rules.semgrep-rules.generic.comment-tagging-rule

Code that highlight SECURITY in comment has changed. Please review the code for changes. The changes might be sensitive.
@evict evict force-pushed the vincent/update-deps branch from 58f2736 to cdb9897 Compare June 11, 2024 14:57
@evict evict requested a review from burmudar June 11, 2024 15:05
@evict evict merged commit add4baa into main Jun 11, 2024
@evict evict deleted the vincent/update-deps branch June 11, 2024 15:14
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

2 more reviewers

@burmudar burmudar burmudar approved these changes

@andreeleuterio andreeleuterio andreeleuterio approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@evict evict

Labels

cla-signed SSDLC

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@evict @burmudar @andreeleuterio @github-advanced-security