search

envoyproxy / java-control-plane

Java implementation of an Envoy gRPC control plane
Apache License 2.0
291 stars 136 forks source link

Update dependencies #333

Closed minwoox closed 5 months ago

minwoox commented 6 months ago

Motivation There is a CVE in the Java Protobuf java-protobuf that we are currently using. https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2

Modifications

codecov-commenter commented 6 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 86.16%. Comparing base (4577722) to head (983047d).

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #333 +/- ## ========================================= Coverage 86.16% 86.16% Complexity 361 361 ========================================= Files 42 42 Lines 1178 1178 Branches 97 97 ========================================= Hits 1015 1015 Misses 116 116 Partials 47 47 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

inssein commented 5 months ago

@rulex123 not sure if this is the appropriate place to ask, but can we cut a new release to get these updates?

rulex123 commented 5 months ago

@rulex123 not sure if this is the appropriate place to ask, but can we cut a new release to get these updates?

Yep, I've cut a new release now (1.0.44).