chore(deps): update module github.com/cyphar/filepath-securejoin to v0.6.1 (8.19)#6019
Merged
elastic-renovate-prod[bot] merged 1 commit intoMay 7, 2026
Conversation
elastic-renovate-prod
Bot
added
backport-skip
dependencies
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
elastic-renovate-prod
Bot
deleted the
renovate/8.19-github.com-cyphar-filepath-securejoin-0.x
branch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.6.0->v0.6.1Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
cyphar/filepath-securejoin (github.com/cyphar/filepath-securejoin)
v0.6.1: -- "At last up jumped the cunning spider, and fiercely held her fast."Compare Source
This release includes a few more minor improvements to pathrs-lite,
mainly involving the fallback logic in tools which configure seccomp
profiles during execution (like runc) and to fix a file descriptor leak.
Fixed
openat2(2)or fallback to anO_PATHresolver would cache the result to avoid doing needless test runs of
openat2(2). However, this causes issues whenpathrs-liteis being used bya program that applies new seccomp-bpf filters onto itself -- if the filter
denies
openat2(2)then we would return that error rather than falling backto the
O_PATHresolver. To resolve this issue, we no longer cache theresult if
openat2(2)was successful, only if there was an error.openat2wrapper (when doing the necessarydupforRESOLVE_IN_ROOT) has been removed.Thanks to the following contributors for making this release possible:
Signed-off-by: Aleksa Sarai cyphar@cyphar.com
Configuration
📅 Schedule: Branch creation - "* 1 * * 1-5" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.