Release ClickHouse v1.1.2 (#47)

* Release ClickHouse v1.1.2

- Pin Docker base image to ubuntu:24.04 to address CVE-2025-68973

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* Update cargo audit

---------

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Co-authored-by: Brandon Martin <brandon@codedmart.com>

Author: 3 people

.cargo/audit.toml

@@ -0,0 +1,5 @@
+[advisories]
+ignore = ["RUSTSEC-2025-0134"]
+
+[output]
+quiet = true

.github/workflows/deploy-stage.yaml

@@ -45,9 +45,18 @@ jobs:
         uses: docker/build-push-action@v5
         with:
           context: .
+          load: true
           push: ${{ startsWith(github.ref, 'refs/tags/v') }}
           tags: ${{ steps.meta.outputs.tags }}
           labels: ${{ steps.meta.outputs.labels }}
+      - name: Run Trivy vulnerability scanner
+        uses: aquasecurity/trivy-action@0.32.0
+        with:
+          image-ref: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ steps.meta.outputs.version }}
+          format: json
+          output: trivy-results.json
+          severity: CRITICAL,HIGH
+          scanners: vuln
 
   build-cli-binaries:
     name: build the CLI binaries

CHANGELOG.md

@@ -7,6 +7,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [1.1.2] - 2026-01-22
+- Pin Docker base image to ubuntu:24.04 to address CVE-2025-68973
+
 ## [1.1.1] - 2025-08-25
 - Improve error reporting of malformed column data types in configuration and introspection