Skip to content

Commit 2a90950

Browse files
everettraveneverettraven
authored
Update dependencies to address CVE-2023-45142 (#6640)
* update dependencies to address CVE-2023-45142 Signed-off-by: everettraven <[email protected]> * update kube to v0.27.8 Signed-off-by: everettraven <[email protected]> * bump golangci-lint to 1.53.3 and resolve linter errors Signed-off-by: everettraven <[email protected]> * bump golangci-lint to 1.54.0 for compatible go version Signed-off-by: everettraven <[email protected]> * fix broken links Signed-off-by: everettraven <[email protected]> --------- Signed-off-by: everettraven <[email protected]>
1 parent 456562a commit 2a90950

File tree

17 files changed

+214
-211
lines changed

17 files changed

+214
-211
lines changed

Makefile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -58,7 +58,7 @@ fix: ## Fixup files in the repo.
5858

5959
.PHONY: setup-lint
6060
setup-lint: ## Setup the lint
61-
$(SCRIPTS_DIR)/fetch golangci-lint 1.51.2
61+
$(SCRIPTS_DIR)/fetch golangci-lint 1.54.0
6262

6363
.PHONY: lint
6464
lint: setup-lint ## Run the lint check

go.mod

Lines changed: 54 additions & 43 deletions
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@ go 1.21
55
require (
66
github.com/blang/semver/v4 v4.0.0
77
github.com/fatih/structtag v1.1.0
8-
github.com/go-logr/logr v1.2.4
8+
github.com/go-logr/logr v1.3.0
99
github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572
1010
github.com/iancoleman/strcase v0.2.0
1111
github.com/kr/text v0.2.0
@@ -19,7 +19,7 @@ require (
1919
github.com/operator-framework/java-operator-plugins v0.8.1
2020
github.com/operator-framework/operator-lib v0.11.1-0.20231020142438-152ee1fb7f83
2121
github.com/operator-framework/operator-manifest-tools v0.2.3-0.20230525225330-523bad646f89
22-
github.com/operator-framework/operator-registry v1.29.0
22+
github.com/operator-framework/operator-registry v1.33.0
2323
github.com/prometheus/client_golang v1.16.0
2424
github.com/sergi/go-diff v1.2.0
2525
github.com/sirupsen/logrus v1.9.3
@@ -34,12 +34,12 @@ require (
3434
golang.org/x/tools v0.13.0
3535
gomodules.xyz/jsonpatch/v3 v3.0.1
3636
helm.sh/helm/v3 v3.12.1
37-
k8s.io/api v0.27.7
38-
k8s.io/apiextensions-apiserver v0.27.7
39-
k8s.io/apimachinery v0.27.7
40-
k8s.io/cli-runtime v0.27.6
41-
k8s.io/client-go v0.27.7
42-
k8s.io/kubectl v0.27.6
37+
k8s.io/api v0.27.8
38+
k8s.io/apiextensions-apiserver v0.27.8
39+
k8s.io/apimachinery v0.27.8
40+
k8s.io/cli-runtime v0.27.8
41+
k8s.io/client-go v0.27.8
42+
k8s.io/kubectl v0.27.8
4343
k8s.io/utils v0.0.0-20230711102312-30195339c3c7
4444
sigs.k8s.io/controller-runtime v0.15.3
4545
sigs.k8s.io/controller-tools v0.12.1
@@ -49,38 +49,43 @@ require (
4949

5050
require (
5151
github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect
52-
github.com/BurntSushi/toml v1.2.1 // indirect
52+
github.com/BurntSushi/toml v1.3.2 // indirect
5353
github.com/MakeNowJust/heredoc v1.0.0 // indirect
5454
github.com/Masterminds/goutils v1.1.1 // indirect
5555
github.com/Masterminds/semver/v3 v3.2.1 // indirect
5656
github.com/Masterminds/sprig/v3 v3.2.3 // indirect
5757
github.com/Masterminds/squirrel v1.5.4 // indirect
5858
github.com/Microsoft/go-winio v0.6.1 // indirect
59-
github.com/Microsoft/hcsshim v0.11.0 // indirect
59+
github.com/Microsoft/hcsshim v0.12.0-rc.0 // indirect
6060
github.com/Shopify/logrus-bugsnag v0.0.0-20171204204709-577dee27f20d // indirect
61-
github.com/adrg/xdg v0.4.0 // indirect
6261
github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df // indirect
6362
github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
6463
github.com/beorn7/perks v1.0.1 // indirect
6564
github.com/bshuster-repo/logrus-logstash-hook v1.0.0 // indirect
6665
github.com/bugsnag/bugsnag-go v1.5.3 // indirect
6766
github.com/bugsnag/panicwrap v1.2.0 // indirect
68-
github.com/cenkalti/backoff/v4 v4.2.0 // indirect
67+
github.com/cenkalti/backoff/v4 v4.2.1 // indirect
6968
github.com/cespare/xxhash/v2 v2.2.0 // indirect
7069
github.com/chai2010/gettext-go v1.0.2 // indirect
71-
github.com/containerd/cgroups v1.1.0 // indirect
70+
github.com/containerd/cgroups/v3 v3.0.2 // indirect
7271
github.com/containerd/containerd v1.7.6 // indirect
73-
github.com/containerd/continuity v0.3.0 // indirect
72+
github.com/containerd/continuity v0.4.2 // indirect
7473
github.com/containerd/stargz-snapshotter/estargz v0.14.3 // indirect
75-
github.com/containerd/ttrpc v1.1.2 // indirect
74+
github.com/containerd/ttrpc v1.2.2 // indirect
75+
github.com/containerd/typeurl v1.0.2 // indirect
76+
github.com/containers/common v0.56.0 // indirect
77+
github.com/containers/image/v5 v5.28.0 // indirect
78+
github.com/containers/libtrust v0.0.0-20230121012942-c1716e8a8d01 // indirect
79+
github.com/containers/ocicrypt v1.1.8 // indirect
80+
github.com/containers/storage v1.50.2 // indirect
7681
github.com/cpuguy83/go-md2man/v2 v2.0.2 // indirect
77-
github.com/cyphar/filepath-securejoin v0.2.3 // indirect
82+
github.com/cyphar/filepath-securejoin v0.2.4 // indirect
7883
github.com/davecgh/go-spew v1.1.1 // indirect
7984
github.com/distribution/distribution/v3 v3.0.0-20230611135314-6a57630cf401 // indirect
8085
github.com/docker/cli v24.0.6+incompatible // indirect
8186
github.com/docker/distribution v2.8.2+incompatible // indirect
8287
github.com/docker/docker v24.0.6+incompatible // indirect
83-
github.com/docker/docker-credential-helpers v0.7.0 // indirect
88+
github.com/docker/docker-credential-helpers v0.8.0 // indirect
8489
github.com/docker/go-connections v0.4.0 // indirect
8590
github.com/docker/go-events v0.0.0-20190806004212-e31b211e4f1c // indirect
8691
github.com/docker/go-metrics v0.0.1 // indirect
@@ -116,17 +121,17 @@ require (
116121
github.com/google/btree v1.1.2 // indirect
117122
github.com/google/cel-go v0.16.1 // indirect
118123
github.com/google/gnostic v0.6.9 // indirect
119-
github.com/google/go-cmp v0.5.9 // indirect
120-
github.com/google/go-containerregistry v0.15.2 // indirect
124+
github.com/google/go-cmp v0.6.0 // indirect
125+
github.com/google/go-containerregistry v0.16.1 // indirect
121126
github.com/google/gofuzz v1.2.0 // indirect
122127
github.com/google/pprof v0.0.0-20230510103437-eeec1cb781c3 // indirect
123128
github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
124-
github.com/google/uuid v1.3.0 // indirect
129+
github.com/google/uuid v1.3.1 // indirect
125130
github.com/gorilla/handlers v1.5.1 // indirect
126131
github.com/gorilla/mux v1.8.0 // indirect
127132
github.com/gosuri/uitable v0.0.4 // indirect
128133
github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
129-
github.com/grpc-ecosystem/grpc-gateway/v2 v2.7.0 // indirect
134+
github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0 // indirect
130135
github.com/h2non/filetype v1.1.1 // indirect
131136
github.com/h2non/go-is-svg v0.0.0-20160927212452-35e8c4b0612c // indirect
132137
github.com/hashicorp/errwrap v1.1.0 // indirect
@@ -143,7 +148,8 @@ require (
143148
github.com/josharian/intern v1.0.0 // indirect
144149
github.com/json-iterator/go v1.1.12 // indirect
145150
github.com/kardianos/osext v0.0.0-20190222173326-2bc1f35cddc0 // indirect
146-
github.com/klauspost/compress v1.16.5 // indirect
151+
github.com/klauspost/compress v1.16.7 // indirect
152+
github.com/klauspost/pgzip v1.2.6 // indirect
147153
github.com/lann/builder v0.0.0-20180802200727-47ae307949d0 // indirect
148154
github.com/lann/ps v0.0.0-20150810152359-62de8c46ede0 // indirect
149155
github.com/lib/pq v1.10.9 // indirect
@@ -152,15 +158,16 @@ require (
152158
github.com/mailru/easyjson v0.7.7 // indirect
153159
github.com/mattn/go-colorable v0.1.13 // indirect
154160
github.com/mattn/go-isatty v0.0.17 // indirect
155-
github.com/mattn/go-runewidth v0.0.14 // indirect
156-
github.com/mattn/go-sqlite3 v1.14.16 // indirect
161+
github.com/mattn/go-runewidth v0.0.15 // indirect
162+
github.com/mattn/go-sqlite3 v1.14.17 // indirect
157163
github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
158164
github.com/mitchellh/copystructure v1.2.0 // indirect
159165
github.com/mitchellh/go-homedir v1.1.0 // indirect
160166
github.com/mitchellh/go-wordwrap v1.0.1 // indirect
161167
github.com/mitchellh/mapstructure v1.5.0 // indirect
162168
github.com/mitchellh/reflectwalk v1.0.2 // indirect
163169
github.com/moby/spdystream v0.2.0 // indirect
170+
github.com/moby/sys/mountinfo v0.6.2 // indirect
164171
github.com/moby/term v0.5.0 // indirect
165172
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
166173
github.com/modern-go/reflect2 v1.0.2 // indirect
@@ -169,6 +176,8 @@ require (
169176
github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
170177
github.com/opencontainers/go-digest v1.0.0 // indirect
171178
github.com/opencontainers/image-spec v1.1.0-rc5 // indirect
179+
github.com/opencontainers/runc v1.1.9 // indirect
180+
github.com/opencontainers/runtime-spec v1.1.0 // indirect
172181
github.com/otiai10/copy v1.2.0 // indirect
173182
github.com/pelletier/go-toml v1.9.5 // indirect
174183
github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
@@ -178,15 +187,17 @@ require (
178187
github.com/prometheus/client_model v0.4.0 // indirect
179188
github.com/prometheus/common v0.44.0 // indirect
180189
github.com/prometheus/procfs v0.10.1 // indirect
181-
github.com/rivo/uniseg v0.4.2 // indirect
190+
github.com/rivo/uniseg v0.4.4 // indirect
182191
github.com/rubenv/sql-migrate v1.3.1 // indirect
183192
github.com/russross/blackfriday/v2 v2.1.0 // indirect
184193
github.com/shopspring/decimal v1.3.1 // indirect
185194
github.com/spf13/cast v1.5.0 // indirect
186195
github.com/spf13/jwalterweatherman v1.1.0 // indirect
187196
github.com/stoewer/go-strcase v1.2.0 // indirect
188197
github.com/subosito/gotenv v1.2.0 // indirect
189-
github.com/vbatts/tar-split v0.11.3 // indirect
198+
github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635 // indirect
199+
github.com/ulikunitz/xz v0.5.11 // indirect
200+
github.com/vbatts/tar-split v0.11.5 // indirect
190201
github.com/xeipuuv/gojsonpointer v0.0.0-20190905194746-02993c407bfb // indirect
191202
github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
192203
github.com/xeipuuv/gojsonschema v1.2.0 // indirect
@@ -196,39 +207,39 @@ require (
196207
github.com/yvasiyarov/newrelic_platform_go v0.0.0-20160601141957-9c099fbc30e9 // indirect
197208
go.etcd.io/bbolt v1.3.7 // indirect
198209
go.opencensus.io v0.24.0 // indirect
199-
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.35.1 // indirect
200-
go.opentelemetry.io/otel v1.14.0 // indirect
201-
go.opentelemetry.io/otel/exporters/otlp/internal/retry v1.14.0 // indirect
202-
go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.14.0 // indirect
203-
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.14.0 // indirect
204-
go.opentelemetry.io/otel/metric v0.31.0 // indirect
205-
go.opentelemetry.io/otel/sdk v1.14.0 // indirect
206-
go.opentelemetry.io/otel/trace v1.14.0 // indirect
207-
go.opentelemetry.io/proto/otlp v0.19.0 // indirect
210+
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0 // indirect
211+
go.opentelemetry.io/otel v1.20.0 // indirect
212+
go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.20.0 // indirect
213+
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.20.0 // indirect
214+
go.opentelemetry.io/otel/metric v1.20.0 // indirect
215+
go.opentelemetry.io/otel/sdk v1.20.0 // indirect
216+
go.opentelemetry.io/otel/trace v1.20.0 // indirect
217+
go.opentelemetry.io/proto/otlp v1.0.0 // indirect
208218
go.starlark.net v0.0.0-20230612165344-9532f5667272 // indirect
209219
go.uber.org/multierr v1.11.0 // indirect
210220
go.uber.org/zap v1.25.0 // indirect
211221
golang.org/x/crypto v0.14.0 // indirect
212-
golang.org/x/exp v0.0.0-20230315142452-642cacee5cc0 // indirect
222+
golang.org/x/exp v0.0.0-20230817173708-d852ddb80c63 // indirect
213223
golang.org/x/net v0.17.0 // indirect
214-
golang.org/x/oauth2 v0.9.0 // indirect
224+
golang.org/x/oauth2 v0.12.0 // indirect
215225
golang.org/x/sync v0.3.0 // indirect
216-
golang.org/x/sys v0.13.0 // indirect
226+
golang.org/x/sys v0.14.0 // indirect
217227
golang.org/x/term v0.13.0 // indirect
218228
golang.org/x/time v0.3.0 // indirect
219229
gomodules.xyz/jsonpatch/v2 v2.4.0 // indirect
220230
gomodules.xyz/orderedmap v0.1.0 // indirect
221231
google.golang.org/appengine v1.6.7 // indirect
222-
google.golang.org/genproto v0.0.0-20230525154841-bd750badd5c6 // indirect
223-
google.golang.org/grpc v1.54.0 // indirect
224-
google.golang.org/protobuf v1.30.0 // indirect
232+
google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d // indirect
233+
google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d // indirect
234+
google.golang.org/grpc v1.59.0 // indirect
235+
google.golang.org/protobuf v1.31.0 // indirect
225236
gopkg.in/inf.v0 v0.9.1 // indirect
226237
gopkg.in/ini.v1 v1.66.2 // indirect
227238
gopkg.in/warnings.v0 v0.1.2 // indirect
228239
gopkg.in/yaml.v2 v2.4.0 // indirect
229240
gopkg.in/yaml.v3 v3.0.1 // indirect
230-
k8s.io/apiserver v0.27.7 // indirect
231-
k8s.io/component-base v0.27.7 // indirect
241+
k8s.io/apiserver v0.27.8 // indirect
242+
k8s.io/component-base v0.27.8 // indirect
232243
k8s.io/klog/v2 v2.100.1 // indirect
233244
k8s.io/kube-openapi v0.0.0-20230515121852-a1ae96baeb76 // indirect
234245
oras.land/oras-go v1.2.4 // indirect

0 commit comments

Comments
 (0)