Skip to content

v1.11.2
Compare
Choose a tag to compare
@phisco phisco released this 09 Mar 16:00
v1.11.2
d3b2b65
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

v1.11.2 bumps the crossplane-runtime version, in order to address a Crossplane vulnerability, caused by GHSA-vfvj-3m3g-m532.
These vulnerabilities were discovered thanks to the fuzz tests added to the Crossplane project by Ada Logics as part of a security audit sponsored by the CNCF.

What's Changed

  • Update gcr.io/distroless/static Docker digest to 3c57678 (release-1.11) by @renovate in #3811
  • [Backport release-1.11] chore: bump crossplane-runtime to v0.19.2 by @phisco in #3838

Full Changelog: v1.11.1...v1.11.2

Contributors

renovate and phisco
Assets 2
Loading