Closed lachieggg closed 7 months ago
linux-foundation-easycla[bot]
commented
7 months ago 
The committers listed above are authorized under a signed CLA.
k8s-ci-robot
commented
7 months ago Welcome @lachieggg!
It looks like this is your first PR to kubernetes/apiserver 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.
You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.
You can also check if kubernetes/apiserver has its own contribution guidelines.
You may want to refer to our testing guide if you run into trouble with your tests not passing.
If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!
Thank you, and welcome to Kubernetes. :smiley:
k8s-ci-robot
commented
7 months ago [APPROVALNOTIFIER] This PR is NOT APPROVED
This pull-request has been approved by: lachieggg Once this PR has been reviewed and has the lgtm label, please assign liggitt for approval. For more information see the Kubernetes Code Review Process.
The full list of commands accepted by this bot can be found here.
nilekhc
commented
7 months ago @lachieggg Could you please provide a link for Fixes security advisory BDSA-2023-3257
Also please open an issue in kubernetes/kubernetes repo.
/close
k8s-ci-robot
commented
7 months ago @nilekhc: Closed this PR.
enj
commented
7 months ago From the read me:
Dependency version change for square/go-jose v2
Modify go mod to fix dependencies on go-jose v2 which has a CVE and is archived. It is recommended to use https://github.com/go-jose/go-jose now.
Fixes security advisory BDSA-2023-3257