Closed HeavyWombat closed 5 months ago
thanks. What about https://github.com/shipwright-io/build/pull/1589 ? seems it tries to address the same.
thanks. What about #1589 ? seems it tries to address the same.
This was only addressing the github.com/docker/cli
dependency, but there seems to be another finding. At least this what the vulnerability scanner told me, so I figured it makes sense to bump all github.com/docker
repositories, including the one that is only an indirect dependency.
[APPROVALNOTIFIER] This PR is APPROVED
This pull-request has been approved by: qu1queee
The full list of commands accepted by this bot can be found here.
The pull request process is described here
Changes
Ref: https://github.com/moby/moby/security/advisories/GHSA-x84c-p2g9-rqv9
Update to address vulnerability finding.
Submitter Checklist
See the contributor guide for details on coding conventions, github and prow interactions, and the code review process.
Release Notes