search

kubernetes-sigs / descheduler

Descheduler for Kubernetes
https://sigs.k8s.io/descheduler
Apache License 2.0
4.23k stars 645 forks source link

bump go to 1.22.4 for CVE-2024-24790 and CVE-2024-24789 #1433

Closed a7i closed 3 weeks ago

a7i commented 3 weeks ago

rebased on top of #1432

bump go to 1.22.4 for https://github.com/advisories/GHSA-49gw-vxvf-fc2g and https://github.com/advisories/GHSA-236w-p7wf-5ph8

a7i commented 3 weeks ago

/hold until https://github.com/kubernetes/test-infra/pull/32721 and #1432 have been merged

ingvagabund commented 3 weeks ago

/retest-required

a7i commented 3 weeks ago

/remove-hold

a7i commented 3 weeks ago

/retest-required

ingvagabund commented 3 weeks ago

/approve /lgtm

k8s-ci-robot commented 3 weeks ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: ingvagabund

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/kubernetes-sigs/descheduler/blob/master/OWNERS)~~ [ingvagabund] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment