search

kubernetes-sigs / descheduler

Descheduler for Kubernetes
https://sigs.k8s.io/descheduler
Apache License 2.0
4.24k stars 645 forks source link

[1.26] CVE-2023-44487 fixes #1273

Closed ingvagabund closed 8 months ago

ingvagabund commented 8 months ago

Pin k8s to 1.26.10 and disable http/2 by default.

Porting https://github.com/kubernetes-sigs/descheduler/pull/1264 to 1.26

knelasevero commented 8 months ago

we have to cherry pick the new image here as well, maybe in every release branch?

knelasevero commented 8 months ago

/approve

ingvagabund commented 8 months ago

https://github.com/kubernetes-sigs/descheduler/pull/1274

ingvagabund commented 8 months ago

/retest-required

k8s-ci-robot commented 8 months ago

[APPROVALNOTIFIER] This PR is APPROVED

Approval requirements bypassed by manually added approval.

This pull-request has been approved by: knelasevero

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - **[OWNERS](https://github.com/kubernetes-sigs/descheduler/blob/release-1.26/OWNERS)** Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment
ingvagabund commented 8 months ago

Approving per @knelasevero 's comment

knelasevero commented 8 months ago

/lgtm