Open mend-for-github-com[bot] opened 1 year ago
This PR contains the following updates:
v1.11.0
v1.11.1
By merging this PR, the issue #294 will be automatically resolved and closed:
This PR contains the following updates:
v1.11.0->v1.11.1By merging this PR, the issue #294 will be automatically resolved and closed:
Release Notes
prometheus/client_golang (github.com/prometheus/client_golang)
### [`v1.11.1`](https://togithub.com/prometheus/client_golang/releases/tag/v1.11.1): 1.11.1 / 2022-02-15 [Compare Source](https://togithub.com/prometheus/client_golang/compare/v1.11.0...v1.11.1) - \[SECURITY FIX] promhttp: Check validity of method and code label values[https://github.com/prometheus/client_golang/pull/987](https://togithub.com/prometheus/client_golang/pull/987)7 (Addressed [`CVE-2022-21698`](https://togithub.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p)) ##### What's Changed - promhttp: Check validity of method and code label values by [@bwplotka](https://togithub.com/bwplotka) and [@kakkoyun](https://togithub.com/kakkoyun) in [https://github.com/prometheus/client_golang/pull/987](https://togithub.com/prometheus/client_golang/pull/987) **Full Changelog**: https://github.com/prometheus/client_golang/compare/v1.11.0...v1.11.1