Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update SHA checksum for operator image 5.0.10 to match quay.io #1819

Merged
merged 3 commits into from
Oct 17, 2023
Merged

Update SHA checksum for operator image 5.0.10 to match quay.io #1819

merged 3 commits into from
Oct 17, 2023

Conversation

pjuarezd
Copy link
Member

  • Infer the Operator version from the constants.
  • Update Docker Images SHA from repo

@pjuarezd
Infer the Operator version from the constants.
435241c 
Update Docker Images SHA from repo

Signed-off-by: pjuarezd <pjuarezd@users.noreply.github.com>
@pjuarezd
Copy link
Member Author

PR's to publish in redhat marketplaces
redhat-openshift-ecosystem/certified-operators#2973
redhat-openshift-ecosystem/redhat-marketplace-operators#574

@harshavardhana
Copy link
Member

Uggh

2s
Run yarn audit --groups dependencies
yarn audit v[1](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:1).22.19
warning Lockfile has incorrect entry for "debug@^[4](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:5).1.0". Ignoring it.
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ critical      │ Babel vulnerable to arbitrary code execution when compiling  │
│               │ specifically crafted malicious code                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ @babel/traverse                                              │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=7.23.2                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ mds                                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ mds > styled-components > @babel/traverse                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://www.npmjs.com/advisories/1094349                     │
└───────────────┴──────────────────────────────────────────────────────────────┘
1 vulnerabilities found - Packages audited: 306
Severity: 1 Critical
Done in 1.[5](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:6)7s.
Error: Process completed with exit code 1[6](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:7).

@pjuarezd
Copy link
Member Author

Uggh

2s
Run yarn audit --groups dependencies
yarn audit v[1](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:1).22.19
warning Lockfile has incorrect entry for "debug@^[4](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:5).1.0". Ignoring it.
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ critical      │ Babel vulnerable to arbitrary code execution when compiling  │
│               │ specifically crafted malicious code                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ @babel/traverse                                              │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=7.23.2                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ mds                                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ mds > styled-components > @babel/traverse                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://www.npmjs.com/advisories/1094349                     │
└───────────────┴──────────────────────────────────────────────────────────────┘
1 vulnerabilities found - Packages audited: 306
Severity: 1 Critical
Done in 1.[5](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:6)7s.
Error: Process completed with exit code 1[6](https://github.com/minio/minio/actions/runs/6537378748/job/17751086589?pr=18254#step:4:7).

Yes, I will open other PR to fix it

@pjuarezd
Infer the Operator version from the constants.
5cdc84a 
Update Docker Images SHA from repo

Signed-off-by: pjuarezd <pjuarezd@users.noreply.github.com>
@pjuarezd
Merge remote-tracking branch 'pjuarezd/update-rh-release-5.0.10-sha' …
ef1f64a 
…into update-rh-release-5.0.10-sha
harshavardhana
harshavardhana previously approved these changes Oct 16, 2023
View reviewed changes
@pjuarezd pjuarezd dismissed harshavardhana’s stale review October 16, 2023 20:46

The merge-base changed after approval.

@pjuarezd pjuarezd self-assigned this Oct 16, 2023
@pjuarezd pjuarezd dismissed harshavardhana’s stale review October 17, 2023 05:45

The merge-base changed after approval.

harshavardhana
harshavardhana previously approved these changes Oct 17, 2023
View reviewed changes
jiuker
jiuker previously approved these changes Oct 17, 2023
View reviewed changes
@pjuarezd pjuarezd dismissed jiuker’s stale review October 17, 2023 05:55

The merge-base changed after approval.

@pjuarezd pjuarezd closed this Oct 17, 2023
@pjuarezd pjuarezd reopened this Oct 17, 2023
shtripat
shtripat approved these changes Oct 17, 2023
View reviewed changes
Copy link
Contributor

@shtripat shtripat left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@pjuarezd pjuarezd merged commit 371043d into minio:master Oct 17, 2023
48 checks passed
@pjuarezd pjuarezd deleted the update-rh-release-5.0.10-sha branch October 17, 2023 16:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@harshavardhana harshavardhana harshavardhana approved these changes

@shtripat shtripat shtripat approved these changes

@jiuker jiuker jiuker left review comments

@cniackz cniackz Awaiting requested review from cniackz

@reivaj05 reivaj05 Awaiting requested review from reivaj05

@cesnietor cesnietor Awaiting requested review from cesnietor

@allanrogerr allanrogerr Awaiting requested review from allanrogerr

@dvaldivia dvaldivia Awaiting requested review from dvaldivia

Assignees

@pjuarezd pjuarezd

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@pjuarezd @harshavardhana @shtripat @jiuker