Skip to content

fix: update dependencies to address security vulnerabilities#951

Merged
yxxhero merged 1 commit intomasterfrom
fix/security-vulnerabilities-950
Mar 2, 2026
Merged

fix: update dependencies to address security vulnerabilities#951
yxxhero merged 1 commit intomasterfrom
fix/security-vulnerabilities-950

Conversation

@yxxhero
Copy link
Collaborator

@yxxhero yxxhero commented Mar 2, 2026

Update Go dependencies to fix CVEs reported in issue #950:

  • Kubernetes packages: v0.35.1 -> v0.35.2
  • golang.org/x/net: v0.50.0 -> v0.51.0
  • golang.org/x/oauth2: v0.30.0 -> v0.35.0
  • golang.org/x/time: v0.12.0 -> v0.14.0
  • google.golang.org/protobuf: v1.36.8 -> v1.36.11
  • sigs.k8s.io/controller-runtime: v0.22.4 -> v0.23.1
  • And related transitive dependencies

Fixes #950

@yxxhero
fix: update dependencies to address security vulnerabilities
94eb2af 
Update Go dependencies to fix CVEs reported in issue #950:
- Kubernetes packages: v0.35.1 -> v0.35.2
- golang.org/x/net: v0.50.0 -> v0.51.0
- golang.org/x/oauth2: v0.30.0 -> v0.35.0
- golang.org/x/time: v0.12.0 -> v0.14.0
- google.golang.org/protobuf: v1.36.8 -> v1.36.11
- sigs.k8s.io/controller-runtime: v0.22.4 -> v0.23.1
- And related transitive dependencies

Fixes #950

Signed-off-by: yxxhero <aiopsclub@163.com>
@yxxhero yxxhero merged commit 4789657 into master Mar 2, 2026
24 checks passed
@yxxhero yxxhero mentioned this pull request Mar 3, 2026
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3.15.0 Vulnerabilities

1 participant

@yxxhero