[Snyk] Security upgrade @kubernetes/client-node from 0.15.1 to 1.1.0 #18
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSONPATHPLUS-8719585
🎉 Snyk checks have passed. No issues have been found so far.✅ security/snyk check is complete. No issues have been found. (View Details) ✅ license/snyk check is complete. No issues have been found. (View Details) ✅ code/snyk check is complete. No issues have been found. (View Details) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
package.jsonpackage-lock.jsonVulnerabilities that will be fixed with an upgrade:
SNYK-JS-JSONPATHPLUS-8719585
Release notes
Package name: @kubernetes/client-node
-
1.1.0 - 2025-03-13
-
1.0.0 - 2024-12-18
-
1.0.0-rc7 - 2024-10-15
-
1.0.0-rc6 - 2024-06-10
-
1.0.0-rc5 - 2024-06-08
-
1.0.0-rc4 - 2023-12-23
-
1.0.0-rc3 - 2023-08-21
-
1.0.0-rc2 - 2023-05-02
-
1.0.0-rc1 - 2023-03-26
-
0.22.3 - 2024-11-24
- Rev to new patch version. by @ brendandburns in #1994
- build(deps-dev): bump mocha from 10.8.1 to 10.8.2 by @ dependabot in #1997
- Update to version 0.22.3 by @ brendandburns in #1998
- build(deps-dev): bump @ types/node from 22.8.4 to 22.8.6 by @ dependabot in #2005
- build(deps): bump tslib from 2.8.0 to 2.8.1 by @ dependabot in #2003
- build(deps-dev): bump mock-fs from 5.4.0 to 5.4.1 by @ dependabot in #2004
- chore: run format as pre-commit hook by @ mstruebing in #2007
- build(deps-dev): bump @ types/ws from 8.5.12 to 8.5.13 by @ dependabot in #2012
- build(deps-dev): bump @ types/node from 22.8.6 to 22.8.7 by @ dependabot in #2011
- build(deps-dev): bump typedoc from 0.26.10 to 0.26.11 by @ dependabot in #2013
- build(deps-dev): bump @ types/node from 22.8.7 to 22.9.0 by @ dependabot in #2016
- build(deps-dev): bump nock from 13.5.5 to 13.5.6 by @ dependabot in #2021
- build(deps): bump JamesIves/github-pages-deploy-action from 4.6.8 to 4.6.9 by @ dependabot in #2022
- Add write permissions to deploy docs by @ clayrosenthal in #2024
- bump jsonpath-plus by @ liviarett in #2025
- build(deps): bump jsonpath-plus from 10.1.0 to 10.2.0 by @ dependabot in #2029
- Update codeql-analysis.yml by @ brendandburns in #2027
- build(deps): bump cross-spawn from 7.0.3 to 7.0.5 by @ dependabot in #2030
- chore: bump jsonpath-plus allowed version range by @ mstruebing in #2031
- build(deps-dev): bump husky from 9.1.6 to 9.1.7 by @ dependabot in #2034
- build(deps-dev): bump @ types/node from 22.9.0 to 22.9.1 by @ dependabot in #2040
- build(deps-dev): bump @ types/mocha from 10.0.9 to 10.0.10 by @ dependabot in #2043
- Add support for the v5 protocol by @ brendandburns in #2037
- @ clayrosenthal made their first contribution in #2024
- @ liviarett made their first contribution in #2025
-
0.22.2 - 2024-10-31
-
0.22.1 - 2024-10-15
- Fix cp promise returns by converting the exec callbacks into promises by @ joeferner in #1880
- test: replace use of deprecated Buffer constructor by @ cjihrig in #1891
- ci: test against node 22 by @ cjihrig in #1890
- chore: update ws by @ mstruebing in #1888
- ci: use node LTS in workflows by @ mstruebing in #1918
- @ joeferner made their first contribution in #1880
-
0.22.0 - 2024-09-13
- Support for Kubernetes 1.30
- Automated Generate from openapi release-1.30 by @ github-actions in #1672
- Fix typos in FETCH_MIGRATION.md by @ lordrip in #1687
- make namespace in Object header optional by @ schrodit in #1694
- Properly parse metadata of custom Kubernetes objects by @ schrodit in #1695
- add examples to generic api (inside object.ts) by @ zfrhv in #1705
- add generic and typed watch to KubernetesObjectApi by @ schrodit in #1831
- @ lordrip made their first contribution in #1687
-
0.21.0 - 2024-05-03
- Support for Kubernetes 1.29.x
- fix: Fix TypeError of topNodes by @ koooge in #1445
- fix: do not overwrite current context by @ carlossg in #1487
- feat: custom path for service account token (supporting TokenVolume projection) by @ omerlh in #1549
- fix: use correct types for websocket by @ mstruebing in #1665
- Lots of dependency verison updates
-
0.20.0 - 2023-11-02
- Add node 20 to our test matrix, remove node 14, fix test for node 20. by @ brendandburns in #1269
- Automated Generate from openapi release-1.28 by @ github-actions in #1278
- Add an additional test for version synchronization by @ brendandburns in #1268
- Update to version 0.20.0 and k8s 1.28 support by @ brendandburns in #1281
- ci: pin node version to 20.7.0 to make unit tests pass by @ mstruebing in #1313
- chore: Some cleanup by @ Ananya2001-an in #1320
- Fix spelling in README.md by @ masonbrothers in #1345
- Fixed typo in topPods command by @ kamadek-sys in #1369
- feat(metrics): add single node metrics and query options by @ 0fatal in #1368
- Update Kubernetes Version in README.md by @ masonbrothers in #1378
- A lot of dependency updates
- @ masonbrothers made their first contribution in #1345
- @ kamadek-sys made their first contribution in #1369
- @ 0fatal made their first contribution in #1368
-
0.19.0 - 2023-09-17
- Support for Kubernetes 1.27 APIs
- Small bug fixes
- Many dependencies updated
-
0.18.1 - 2023-01-21
-
0.18.0 - 2022-12-15
-
0.17.1 - 2022-09-11
-
0.17.0 - 2022-06-27
-
0.16.3 - 2022-02-09
-
0.16.2 - 2022-01-19
-
0.16.1 - 2021-11-19
-
0.16.0 - 2021-11-12
-
0.15.1 - 2021-08-17
from @kubernetes/client-node GitHub release notesRelease 1.0.0 with
node-fetchinstead of the long deprecatedrequest-library.There is no migration guide (yet?). Have a look at the examples to see how to use it.
This module is now ESM only.
rev version for next release
Update push script for pre-release
What's Changed
New Contributors
Full Changelog: 0.22.2...0.22.3
Merge pull request #1997 from kubernetes-client/dependabot/npm_and_ya…
What's Changed
New Contributors
Full Changelog: 0.22.0...0.22.1
What's Changed
client/javascript/pull/1876
New Contributors
Full Changelog: 0.21.0...0.22.0
What's Changed
Full Changelog: 0.20.0...0.21.0
What's Changed
New Contributors
Full Changelog: 0.19.0...0.20.0
Release 0.19.0
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Remote Code Execution (RCE)