Closed stoneshi-yunify closed 2 years ago
In this issue , I saw that depending on k8s.io/kubernetes directly as a library, which is not recommend. Should we remove k8s.io/kubernetes
and update other standalone modules at the same time?
sure, go ahead
The new module was found to be incompatible when updated, so this issue will be closed
What would you like to be added: current this csi is using
k8s.io/kubernetes v1.14.1
which reported by github Dependabot has security issues. github recommends upgrade k8s.io/kubernetes to version 1.19.15 or later.I guess packages below will all be upgraded together:
Why is this needed: for security issues.