openshift-ci-robot
commented
3 weeks ago @paul-maidment: This pull request references Jira Issue OCPBUGS-43026, which is invalid:
- release note text must be set and not match the template OR release note type must be set to "Release Note Not Required". For more information you can reference the OpenShift Bug Process.
- expected Jira Issue OCPBUGS-43026 to depend on a bug targeting a version in 4.16.0, 4.16.z and in one of the following states: VERIFIED, RELEASE PENDING, CLOSED (ERRATA), CLOSED (CURRENT RELEASE), CLOSED (DONE), CLOSED (DONE-ERRATA), but no dependents were found
Comment /jira refresh to re-evaluate validity if changes to the Jira bug are made, or edit the title of this pull request to link to a different bug.
The bug has been updated to refer to the pull request using the external bug tracker.
In response to [this](https://github.com/openshift/assisted-installer/pull/921):
>There have been several CVE's synced recently
>This PR is to ensure we pick those up
>
>Specifically
>CVE-2024-27289 - Added a replace statement to ensure jackc version is compliant. CVE-2024-28180 - Bump to latest service to pick up go-jose changes
Instructions for interacting with me using PR comments are available [here](https://prow.ci.openshift.org/command-help?repo=openshift%2Fassisted-installer). If you have questions or suggestions related to my behavior, please file an issue against the [openshift-eng/jira-lifecycle-plugin](https://github.com/openshift-eng/jira-lifecycle-plugin/issues/new) repository.
openshift-ci[bot]
paul-maidment
zaneb
pamoedom
openshift-bot
openshift-merge-robot
There have been several CVE's synced recently This PR is to ensure we pick those up
Specifically CVE-2024-27289 - Added a replace statement to ensure jackc version is compliant. CVE-2024-28180 - Bump to latest service to pick up go-jose changes