Skip to content

Commit b615d07

Browse files
pengzhoumlPeng Zhou
pengzhouml
and
Peng Zhou
authored
MLE-17986 update go library version for security (#295)
* MLE-17986: update go lib version to fix security vulnerabilities * update the notice with latest library --------- Co-authored-by: Peng Zhou <[email protected]>
1 parent 674801d commit b615d07

File tree

3 files changed

+74
-92
lines changed

3 files changed

+74
-92
lines changed

NOTICE.txt

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ Third Party Components
2222
haproxy helm charts vhaproxy-1.18.0 (Apache-2.0)
2323
K8s.io/api v0.29.1 (Apache-2.0)
2424
MarkLogic® Docker Container Image v2.0 (Apache-2.0)
25-
req v3.42.0 (MIT)
25+
req v3.48.0 (MIT)
2626
terratest v0.46.11 (Apache-2.0)
2727
testify v1.8.4 (MIT)
2828

@@ -89,7 +89,7 @@ MarkLogic® Docker Container Image v2.0 (Apache-2.0)
8989
See its NOTICE.txt file here https://github.com/marklogic/marklogic-docker/blob/master/NOTICE.txt
9090

9191

92-
req v3.42.0 (MIT)
92+
req v3.48.0 (MIT)
9393

9494
https://pkg.go.dev/github.com/imroc/req/v3
9595

go.mod

Lines changed: 24 additions & 27 deletions
Original file line numberDiff line numberDiff line change
@@ -1,42 +1,39 @@
11
module github.com/marklogic/marklogic-kubernetes
22

3-
go 1.21
3+
go 1.22.9
44

55
require (
66
github.com/docker/docker v24.0.7+incompatible
77
github.com/gruntwork-io/terratest v0.46.11
8-
github.com/stretchr/testify v1.8.4
8+
github.com/imroc/req/v3 v3.48.0
9+
github.com/stretchr/testify v1.9.0
910
github.com/tidwall/gjson v1.14.3
10-
github.com/xinsnake/go-http-digest-auth-client v0.6.0
1111
k8s.io/api v0.29.1
1212
)
1313

1414
require (
1515
github.com/BurntSushi/toml v1.3.2 // indirect
1616
github.com/Microsoft/go-winio v0.4.14 // indirect
17-
github.com/andybalholm/brotli v1.0.5 // indirect
18-
github.com/cloudflare/circl v1.3.3 // indirect
17+
github.com/andybalholm/brotli v1.1.0 // indirect
18+
github.com/cloudflare/circl v1.4.0 // indirect
1919
github.com/docker/distribution v2.8.2+incompatible // indirect
2020
github.com/docker/go-connections v0.5.0 // indirect
2121
github.com/docker/go-units v0.5.0 // indirect
2222
github.com/emicklei/go-restful/v3 v3.11.2 // indirect
23-
github.com/gaukas/godicttls v0.0.4 // indirect
2423
github.com/go-openapi/jsonpointer v0.20.2 // indirect
2524
github.com/go-openapi/jsonreference v0.20.4 // indirect
2625
github.com/go-openapi/swag v0.22.9 // indirect
27-
github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
28-
github.com/golang/mock v1.6.0 // indirect
2926
github.com/gonvenience/bunt v1.3.5 // indirect
3027
github.com/gonvenience/neat v1.3.12 // indirect
3128
github.com/gonvenience/term v1.0.2 // indirect
3229
github.com/gonvenience/text v1.0.7 // indirect
3330
github.com/gonvenience/wrap v1.2.0 // indirect
3431
github.com/gonvenience/ytbx v1.4.4 // indirect
3532
github.com/google/gnostic-models v0.6.9-0.20230804172637-c7be7c783f49 // indirect
36-
github.com/google/pprof v0.0.0-20230901174712-0191c66da455 // indirect
33+
github.com/google/pprof v0.0.0-20240910150728-a0b0bb1d4134 // indirect
3734
github.com/homeport/dyff v1.6.0 // indirect
3835
github.com/josharian/intern v1.0.0 // indirect
39-
github.com/klauspost/compress v1.16.7 // indirect
36+
github.com/klauspost/compress v1.17.9 // indirect
4037
github.com/lucasb-eyer/go-colorful v1.2.0 // indirect
4138
github.com/mailru/easyjson v0.7.7 // indirect
4239
github.com/mattn/go-ciede2000 v0.0.0-20170301095244-782e8c62fec3 // indirect
@@ -47,23 +44,22 @@ require (
4744
github.com/morikuni/aec v1.0.0 // indirect
4845
github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
4946
github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f // indirect
50-
github.com/onsi/ginkgo/v2 v2.13.0 // indirect
47+
github.com/onsi/ginkgo/v2 v2.20.2 // indirect
5148
github.com/opencontainers/go-digest v1.0.0 // indirect
5249
github.com/opencontainers/image-spec v1.0.2 // indirect
5350
github.com/pkg/errors v0.9.1 // indirect
54-
github.com/quic-go/qpack v0.4.0 // indirect
55-
github.com/quic-go/qtls-go1-20 v0.3.3 // indirect
56-
github.com/quic-go/quic-go v0.38.1 // indirect
57-
github.com/refraction-networking/utls v1.5.3 // indirect
51+
github.com/quic-go/qpack v0.5.1 // indirect
52+
github.com/quic-go/quic-go v0.47.0 // indirect
53+
github.com/refraction-networking/utls v1.6.7 // indirect
5854
github.com/sergi/go-diff v1.3.1 // indirect
5955
github.com/texttheater/golang-levenshtein v1.0.1 // indirect
6056
github.com/urfave/cli/v2 v2.27.1 // indirect
6157
github.com/virtuald/go-ordered-json v0.0.0-20170621173500-b18e6e673d74 // indirect
6258
github.com/xrash/smetrics v0.0.0-20231213231151-1d8dd44e695e // indirect
63-
golang.org/x/exp v0.0.0-20240119083558-1b970713d09a // indirect
64-
golang.org/x/mod v0.14.0 // indirect
65-
golang.org/x/sync v0.6.0 // indirect
66-
golang.org/x/tools v0.17.0 // indirect
59+
golang.org/x/exp v0.0.0-20240909161429-701f63a606c0 // indirect
60+
golang.org/x/mod v0.21.0 // indirect
61+
golang.org/x/sync v0.8.0 // indirect
62+
golang.org/x/tools v0.25.0 // indirect
6763
)
6864

6965
require (
@@ -73,8 +69,9 @@ require (
7369
github.com/davecgh/go-spew v1.1.1 // indirect
7470
github.com/ghodss/yaml v1.0.0 // indirect
7571
github.com/go-errors/errors v1.5.1 // indirect
76-
github.com/go-logr/logr v1.4.1 // indirect
72+
github.com/go-logr/logr v1.4.2 // indirect
7773
github.com/go-sql-driver/mysql v1.7.1 // indirect
74+
github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
7875
github.com/gogo/protobuf v1.3.2 // indirect
7976
github.com/golang/protobuf v1.5.3 // indirect
8077
github.com/google/gofuzz v1.2.0 // indirect
@@ -83,7 +80,6 @@ require (
8380
github.com/hashicorp/errwrap v1.1.0 // indirect
8481
github.com/hashicorp/go-multierror v1.1.1 // indirect
8582
github.com/imdario/mergo v0.3.16 // indirect
86-
github.com/imroc/req/v3 v3.42.0
8783
github.com/jmespath/go-jmespath v0.4.0 // indirect
8884
github.com/json-iterator/go v1.1.12 // indirect
8985
github.com/mattn/go-zglob v0.0.4 // indirect
@@ -97,15 +93,16 @@ require (
9793
github.com/spf13/pflag v1.0.5 // indirect
9894
github.com/tidwall/match v1.1.1 // indirect
9995
github.com/tidwall/pretty v1.2.0 // indirect
100-
golang.org/x/crypto v0.18.0 // indirect
101-
golang.org/x/net v0.20.0 // indirect
96+
go.uber.org/mock v0.4.0 // indirect
97+
golang.org/x/crypto v0.27.0 // indirect
98+
golang.org/x/net v0.29.0 // indirect
10299
golang.org/x/oauth2 v0.16.0 // indirect
103-
golang.org/x/sys v0.16.0 // indirect
104-
golang.org/x/term v0.16.0 // indirect
105-
golang.org/x/text v0.14.0 // indirect
100+
golang.org/x/sys v0.25.0 // indirect
101+
golang.org/x/term v0.24.0 // indirect
102+
golang.org/x/text v0.18.0 // indirect
106103
golang.org/x/time v0.5.0 // indirect
107104
google.golang.org/appengine v1.6.8 // indirect
108-
google.golang.org/protobuf v1.32.0 // indirect
105+
google.golang.org/protobuf v1.34.1 // indirect
109106
gopkg.in/inf.v0 v0.9.1 // indirect
110107
gopkg.in/yaml.v2 v2.4.0 // indirect
111108
gopkg.in/yaml.v3 v3.0.1 // indirect

0 commit comments

Comments
 (0)