Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): Bump controller image to v1.10.1, release kubewarden-controller 2.0.7 #378

Merged
merged 2 commits into from
Feb 2, 2024
Merged

chore(deps): Bump controller image to v1.10.1, release kubewarden-controller 2.0.7 #378

merged 2 commits into from
Feb 2, 2024

Conversation

viccuad
Copy link
Member

@viccuad viccuad commented Feb 2, 2024

Description

Image kubewarden-controller:v1.10.1 contains a bump of github.com/opencontainers/runc to v1.1.12. runc is a dev dependency used in integration tests, and while we are not affected, previous versions are vulnerable to CVE-2024-21626.

This image bump makes the image scan clean.

Test

CI

Additional Information

Tradeoff

Potential improvement

@viccuad
deps: Bump kubewarden-controller image to v1.10.1
fa601c2 
Signed-off-by: Víctor Cuadrado Juan <vcuadradojuan@suse.de>
@viccuad
build: Bump kubewarden-controller chart version to 2.0.7
3c40e9d 
Signed-off-by: Víctor Cuadrado Juan <vcuadradojuan@suse.de>
@viccuad viccuad requested a review from a team as a code owner February 2, 2024 12:24
@viccuad viccuad self-assigned this Feb 2, 2024
@viccuad viccuad changed the title chore(deps): Bump controller image to v1.10.1 chore(deps): Bump controller image to v1.10.1, release kubewarden-controller 2.0.7 Feb 2, 2024
jvanz
jvanz approved these changes Feb 2, 2024
View reviewed changes
Copy link
Member

@jvanz jvanz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Just take a look in the failing tests. I've just triggered a run in the failed jobs. Just to see if is some timeout problem.

flavio
flavio approved these changes Feb 2, 2024
View reviewed changes
Copy link
Member

@flavio flavio left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the quick fix

@viccuad viccuad merged commit b82a4c8 into kubewarden:main Feb 2, 2024
3 checks passed
@viccuad viccuad deleted the bump-controller-image branch February 2, 2024 13:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@flavio flavio flavio approved these changes

@jvanz jvanz jvanz approved these changes

Assignees

@viccuad viccuad

Labels
None yet
Projects
Kubewarden
Archived in project
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@viccuad @flavio @jvanz