search

Azure / application-gateway-kubernetes-ingress

This is an ingress controller that can be run on Azure Kubernetes Service (AKS) to allow an Azure Application Gateway to act as the ingress for an AKS cluster.
https://azure.github.io/application-gateway-kubernetes-ingress
MIT License
677 stars 420 forks source link

Manually updating package versions. #1523

Open malecov opened 1 year ago

malecov commented 1 year ago

Discussed in https://github.com/Azure/application-gateway-kubernetes-ingress/discussions/1522

Originally posted by **malecov** March 22, 2023 Good Day Everyone. Would like to ask if it is possible to update the package versions inside the project to accommodate security alerts? I am new to this stuff (installed the ingress-azure v1.6.0 via helm) and was encountering security alerts for the following: - https://nvd.nist.gov/vuln/detail/CVE-2022-21698 - https://nvd.nist.gov/vuln/detail/CVE-2023-0286 - https://nvd.nist.gov/vuln/detail/CVE-2022-41723 - https://nvd.nist.gov/vuln/detail/CVE-2022-27664
tobiasb-ms commented 8 months ago

For https://nvd.nist.gov/vuln/detail/CVE-2022-21698, please update prometheus/client_golang to version 1.11.1 or greater.