github-actions[bot]
commented
5 days ago :mag: Vulnerabilities of ghcr.io/uniget-org/tools/kubebuilder:4.1.0
:package: Image Reference ghcr.io/uniget-org/tools/kubebuilder:4.1.0
| digest | sha256:021a805379cb8878bf766f85c053f688d720e6d752996c7567adb91d0b25290c |
| vulnerabilities |      |
| platform | linux/amd64 |
| size | 7.5 MB |
| packages | 13 |
pkg:golang/stdlib@1.22.4
DescriptionThe net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational (200 or higher) status. This mishandling could leave a client connection in an invalid state, where the next request sent on the connection will fail. An attacker sending a request to a net/http/httputil.ReverseProxy proxy can exploit this mishandling to cause a denial of service by sending "Expect: 100-continue" requests which elicit a non-informational response from the backend. Each such request leaves the proxy with an invalid connection, and causes one subsequent request using that connection to fail. |
stdlib
This PR contains the following updates:
4.0.0->4.1.0Release Notes
kubernetes-sigs/kubebuilder (kubernetes-sigs/kubebuilder)
### [`v4.1.0`](https://togithub.com/kubernetes-sigs/kubebuilder/releases/tag/v4.1.0) [Compare Source](https://togithub.com/kubernetes-sigs/kubebuilder/compare/v4.0.0...v4.1.0) ### v4.1.0 **changes since [v4.0.0](https://togithub.com/kubernetes-sigs/kubebuilder/releases/v4.0.0)** #### :sparkles: New Features - Re-introduces authn/authz protection for the metrics endpoint using [`WithAuthenticationAndAuthorization`](https://togithub.com/kubernetes-sigs/controller-runtime/blob/v0.18.4/pkg/metrics/filters/filters.go#L35) provided by controller-runtime. ([#4003](https://togithub.com/kubernetes-sigs/kubebuilder/issues/4003)) > *This protection is similar to what was previously done via [`kube-rbac-proxy`](https://togithub.com/brancz/kube-rbac-proxy), which usage was [discontinued in the project](https://togithub.com/kubernetes-sigs/kubebuilder/discussions/3907). Please, ensure that you no longer use the image `gcr.io/kubebuilder/kube-rbac-proxy`. β οΈ Images provided under `gcr.io/kubebuilder/` will be unavailable from **March 18, 2025**.* - Upgrade controller-runtime from v0.18.2 to v0.18.4 ([#3957](https://togithub.com/kubernetes-sigs/kubebuilder/issues/3957)) ([#3972](https://togithub.com/kubernetes-sigs/kubebuilder/issues/3972)) - Add revive golangci linter with comment-spacings rule ([#3960](https://togithub.com/kubernetes-sigs/kubebuilder/issues/3960)) - (Only relevant for users of Kubebuilder as a library) Allow usage of custom marker names ([#3993](https://togithub.com/kubernetes-sigs/kubebuilder/issues/3993)) #### :bug: Bug Fixes - Corrected the `generate` command to respect the `--namespaced=false` flag for APIs. ([#3970](https://togithub.com/kubernetes-sigs/kubebuilder/issues/3970)) π *Thanks to all our contributors!* #### What's Changed (Full Changelog) - β¨ Upgrade controller-runtime from v0.18.2 to v0.18.3 - k8s version from 1.30.0 to 1.30.1 by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3957](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3957) - π± Cleanup e2e tests for deploy image by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3959](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3959) - β¨ Add revive golangci linter with comment-spacings rule by [@mateusoliveira43](https://togithub.com/mateusoliveira43) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3960](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3960) - π± cleanup: run-test-e2e-for-project-v4-sample workflow by remove unnecessary steps by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3961](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3961) - π± cleanup e2e tests for go/v4 by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3958](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3958) - π Update CONTRIBUTING.md - Add steps about how to debug e2e tests locally by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3962](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3962) - π± Bump github.com/onsi/ginkgo/v2 from 2.17.3 to 2.19.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3963](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3963) - π± Bump sigs.k8s.io/kubebuilder/v3 from 3.15.0 to 3.15.1 in /docs/book/src/simple-external-plugin-tutorial/testdata/sampleexternalplugin/v1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3965](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3965) - π fix: documentation links by [@mateusoliveira43](https://togithub.com/mateusoliveira43) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3967](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3967) - π fix generate command not respecting --namespaced=false of APIs by [@antonincms](https://togithub.com/antonincms) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3970](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3970) - β¨ Upgrade controller-runtime from v0.18.3 to v0.18.4 by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3972](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3972) - π fix error in documentation Watching Externally Managed Resources by [@Uburro](https://togithub.com/Uburro) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3973](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3973) - π± Bump golang.org/x/tools from 0.21.0 to 0.22.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3975](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3975) - π± Bump goreleaser/goreleaser-action from 5 to 6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3977](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3977) - π fix: book v3 link by [@mateusoliveira43](https://togithub.com/mateusoliveira43) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3978](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3978) - π Adding lost v2 vs v3 page. by [@Tomlmmrs](https://togithub.com/Tomlmmrs) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3983](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3983) - π± ci: fix testdata due golang module changes by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3985](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3985) - π± Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3987](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3987) - π Fix typo in plugins.md by [@dudo](https://togithub.com/dudo) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3994](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3994) - π Update using_an_external_type.md by [@davidxia](https://togithub.com/davidxia) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3997](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3997) - π Update using_an_external_type.md by [@davidxia](https://togithub.com/davidxia) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3998](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3998) - β¨ (Only valid for those who consume Kubebuilder as a lib) - Allow usage of custom marker names by [@beatrausch](https://togithub.com/beatrausch) in [https://github.com/kubernetes-sigs/kubebuilder/pull/3993](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3993) - π docs: clarify English prose in CONTRIBUTING.md by [@davidxia](https://togithub.com/davidxia) in [https://github.com/kubernetes-sigs/kubebuilder/pull/4002](https://togithub.com/kubernetes-sigs/kubebuilder/pull/4002) - π Update quick-start.md by [@Hrugved](https://togithub.com/Hrugved) in [https://github.com/kubernetes-sigs/kubebuilder/pull/4001](https://togithub.com/kubernetes-sigs/kubebuilder/pull/4001) - β¨ Add protection to metrics endpoint using authn/authz via controller-runtime feature by [@camilamacedo86](https://togithub.com/camilamacedo86) in [https://github.com/kubernetes-sigs/kubebuilder/pull/4003](https://togithub.com/kubernetes-sigs/kubebuilder/pull/4003) #### New Contributors - [@Uburro](https://togithub.com/Uburro) made their first contribution in [https://github.com/kubernetes-sigs/kubebuilder/pull/3973](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3973) - [@Tomlmmrs](https://togithub.com/Tomlmmrs) made their first contribution in [https://github.com/kubernetes-sigs/kubebuilder/pull/3983](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3983) - [@dudo](https://togithub.com/dudo) made their first contribution in [https://github.com/kubernetes-sigs/kubebuilder/pull/3994](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3994) - [@beatrausch](https://togithub.com/beatrausch) made their first contribution in [https://github.com/kubernetes-sigs/kubebuilder/pull/3993](https://togithub.com/kubernetes-sigs/kubebuilder/pull/3993) - [@Hrugved](https://togithub.com/Hrugved) made their first contribution in [https://github.com/kubernetes-sigs/kubebuilder/pull/4001](https://togithub.com/kubernetes-sigs/kubebuilder/pull/4001) **Full Changelog**: https://github.com/kubernetes-sigs/kubebuilder/compare/v4.0.0...v4.1.0Configuration
π Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
π¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
β» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
π Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.