Bump to Kubernetes 1.30

kubernetes-csi / livenessprobe

A sidecar container that can be included in a CSI plugin pod to enable integration with Kubernetes Liveness Probe.

Apache License 2.0

72 stars 94 forks source link

Bump to Kubernetes 1.30 #262

Closed jsafrane closed 2 months ago

jsafrane commented 2 months ago

What type of PR is this? /kind feature

What this PR does / why we need it: Update to go 1.22.3, Kubernetes 1.20, csi-lib-utils 0.18 and the latest release-tools.

Fixes CVE-2024-24788.

Does this PR introduce a user-facing change?:

Updated Kubernetes deps to v1.30

k8s-ci-robot commented 2 months ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: jsafrane

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/kubernetes-csi/livenessprobe/blob/master/OWNERS)~~ [jsafrane] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment

bells17 commented 2 months ago

@jsafrane Would you mind reviewing this PR? https://github.com/kubernetes-csi/csi-release-tools/pull/252

This PR bumps the Go version to 1.22.3 due to vulnerabilities in Go 1.22.2 identified by the Trivy vulnerability scanner. https://github.com/kubernetes-csi/livenessprobe/actions/runs/9034677921/job/24827762006?pr=262

bells17 commented 2 months ago

@jsafrane Would you please update the csi-release-tools again, as the PR mentioned below has been merged? This update will resolve the Trivy vulnerability scanner error.

https://github.com/kubernetes-csi/csi-release-tools/pull/252

jsafrane commented 2 months ago

@bells17 Thanks for the go bump in release-tools repo. I included it in this PR.

bells17 commented 2 months ago

/lgtm Thank you!