Skip to content

Commit 6675f97

Browse files
bluzarragabluzarraga
authored
Update pkgs for security vulnerabilities for 4.6.2 (#311)
* update net pkg for twistlock Signed-off-by: Ben Luzarraga <[email protected]> * update protobuf Signed-off-by: Ben Luzarraga <[email protected]> * update apimachinery for whitesource Signed-off-by: Ben Luzarraga <[email protected]> * update controller runtime to work with apimachinery Signed-off-by: Ben Luzarraga <[email protected]> --------- Signed-off-by: Ben Luzarraga <[email protected]>
1 parent 954b0d1 commit 6675f97

File tree

2 files changed

+268
-68
lines changed

2 files changed

+268
-68
lines changed

go.mod

Lines changed: 30 additions & 29 deletions
Original file line numberDiff line numberDiff line change
@@ -5,27 +5,27 @@ go 1.21
55
require (
66
github.com/IBM/controller-filtered-cache v0.3.4
77
github.com/deckarep/golang-set v1.7.1
8-
github.com/onsi/ginkgo v1.16.4
9-
github.com/onsi/gomega v1.15.0
8+
github.com/onsi/ginkgo v1.16.5
9+
github.com/onsi/gomega v1.17.0
1010
github.com/operator-framework/api v0.6.2
1111
github.com/operator-framework/operator-lifecycle-manager v0.17.0
12-
k8s.io/api v0.22.1
13-
k8s.io/apimachinery v0.22.1
14-
k8s.io/client-go v0.22.1
12+
k8s.io/api v0.23.0
13+
k8s.io/apimachinery v0.23.17
14+
k8s.io/client-go v0.23.0
1515
k8s.io/klog v1.0.0
16-
sigs.k8s.io/controller-runtime v0.10.0
16+
sigs.k8s.io/controller-runtime v0.11.1
1717
)
1818

1919
require (
20-
cloud.google.com/go v0.54.0 // indirect
20+
cloud.google.com/go v0.81.0 // indirect
2121
github.com/beorn7/perks v1.0.1 // indirect
2222
github.com/blang/semver/v4 v4.0.0 // indirect
2323
github.com/cespare/xxhash/v2 v2.1.1 // indirect
2424
github.com/davecgh/go-spew v1.1.1 // indirect
25-
github.com/evanphx/json-patch v4.11.0+incompatible // indirect
26-
github.com/fsnotify/fsnotify v1.4.9 // indirect
27-
github.com/go-logr/logr v0.4.0 // indirect
28-
github.com/go-logr/zapr v0.4.0 // indirect
25+
github.com/evanphx/json-patch v4.12.0+incompatible // indirect
26+
github.com/fsnotify/fsnotify v1.5.1 // indirect
27+
github.com/go-logr/logr v1.2.0 // indirect
28+
github.com/go-logr/zapr v1.2.0 // indirect
2929
github.com/gobuffalo/flect v0.2.0 // indirect
3030
github.com/gogo/protobuf v1.3.2 // indirect
3131
github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
@@ -35,42 +35,43 @@ require (
3535
github.com/google/uuid v1.1.2 // indirect
3636
github.com/googleapis/gnostic v0.5.5 // indirect
3737
github.com/imdario/mergo v0.3.12 // indirect
38-
github.com/json-iterator/go v1.1.11 // indirect
38+
github.com/json-iterator/go v1.1.12 // indirect
3939
github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
4040
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
41-
github.com/modern-go/reflect2 v1.0.1 // indirect
41+
github.com/modern-go/reflect2 v1.0.2 // indirect
4242
github.com/nxadm/tail v1.4.8 // indirect
4343
github.com/pkg/errors v0.9.1 // indirect
4444
github.com/prometheus/client_golang v1.11.1 // indirect
4545
github.com/prometheus/client_model v0.2.0 // indirect
46-
github.com/prometheus/common v0.26.0 // indirect
46+
github.com/prometheus/common v0.28.0 // indirect
4747
github.com/prometheus/procfs v0.6.0 // indirect
4848
github.com/sirupsen/logrus v1.9.3 // indirect
4949
github.com/spf13/pflag v1.0.5 // indirect
5050
go.uber.org/atomic v1.7.0 // indirect
5151
go.uber.org/multierr v1.6.0 // indirect
52-
go.uber.org/zap v1.19.0 // indirect
53-
golang.org/x/net v0.17.0 // indirect
54-
golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
55-
golang.org/x/sys v0.13.0 // indirect
56-
golang.org/x/term v0.13.0 // indirect
57-
golang.org/x/text v0.13.0 // indirect
52+
go.uber.org/zap v1.19.1 // indirect
53+
golang.org/x/net v0.23.0 // indirect
54+
golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f // indirect
55+
golang.org/x/sys v0.18.0 // indirect
56+
golang.org/x/term v0.18.0 // indirect
57+
golang.org/x/text v0.14.0 // indirect
5858
golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
5959
gomodules.xyz/jsonpatch/v2 v2.2.0 // indirect
6060
google.golang.org/appengine v1.6.7 // indirect
61-
google.golang.org/protobuf v1.26.0 // indirect
61+
google.golang.org/protobuf v1.33.0 // indirect
6262
gopkg.in/inf.v0 v0.9.1 // indirect
6363
gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
6464
gopkg.in/yaml.v2 v2.4.0 // indirect
65-
gopkg.in/yaml.v3 v3.0.0-20220521103104-8f96da9f5d5e // indirect
66-
k8s.io/apiextensions-apiserver v0.22.1 // indirect
67-
k8s.io/component-base v0.22.1 // indirect
68-
k8s.io/klog/v2 v2.9.0 // indirect
65+
gopkg.in/yaml.v3 v3.0.1 // indirect
66+
k8s.io/apiextensions-apiserver v0.23.0 // indirect
67+
k8s.io/component-base v0.23.0 // indirect
68+
k8s.io/klog/v2 v2.30.0 // indirect
6969
k8s.io/kube-aggregator v0.18.9 // indirect
70-
k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e // indirect
71-
k8s.io/utils v0.0.0-20210802155522-efc7438f0176 // indirect
72-
sigs.k8s.io/structured-merge-diff/v4 v4.1.2 // indirect
73-
sigs.k8s.io/yaml v1.2.0 // indirect
70+
k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 // indirect
71+
k8s.io/utils v0.0.0-20211116205334-6203023598ed // indirect
72+
sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 // indirect
73+
sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
74+
sigs.k8s.io/yaml v1.3.0 // indirect
7475
)
7576

7677
// fix vulnerability: CVE-2021-3121 in github.com/gogo/protobuf < v1.3.2

0 commit comments

Comments
 (0)