Closed tianon closed 1 year ago
This builds gosu with an intentionally older version of runc and Go (but still new enough for govulncheck to work).
gosu
govulncheck
The chosen version of runc includes https://github.com/opencontainers/runc/commit/262f294a2a3be96cb98ca2415ddff66e30671606, which is the last change I can find to any of the functions gosu invokes in all released versions of runc (up to v1.1.4).
runc
The chosen version of Go is the oldest supported by govulncheck but that also includes https://github.com/golang/go/commit/4f4542479d27161d70b22557c52f182c0332ac7b (because 32bit builds panic without this fix).
(This also fixes a few other minor version number anomalies.)
This builds
gosuwith an intentionally older version of runc and Go (but still new enough forgovulncheckto work).The chosen version of
runcincludes https://github.com/opencontainers/runc/commit/262f294a2a3be96cb98ca2415ddff66e30671606, which is the last change I can find to any of the functionsgosuinvokes in all released versions of runc (up to v1.1.4).The chosen version of Go is the oldest supported by
govulncheckbut that also includes https://github.com/golang/go/commit/4f4542479d27161d70b22557c52f182c0332ac7b (because 32bit builds panic without this fix).(This also fixes a few other minor version number anomalies.)