Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[release-4.7] Bug 2076250: Mitigate multiple CVEs #1436

Merged
merged 1 commit into from
May 18, 2022
Merged

[release-4.7] Bug 2076250: Mitigate multiple CVEs #1436

merged 1 commit into from
May 18, 2022

Conversation

coreydaley
Copy link
Member

@openshift-ci openshift-ci bot added bugzilla/severity-high Referenced Bugzilla bug's severity is high for the branch this PR is targeting. bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. labels Apr 23, 2022
@openshift-ci
Copy link
Contributor

openshift-ci bot commented Apr 23, 2022

@coreydaley: This pull request references Bugzilla bug 2076250, which is invalid:

  • expected Bugzilla bug 2076250 to depend on a bug targeting a release in 4.8.0, 4.8.z and in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), CLOSED (CURRENTRELEASE), but no dependents were found

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

In response to this:

[release-4.7] Bug 2076250: Mitigate multiple CVEs

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@openshift-ci openshift-ci bot requested review from otaviof and sbose78 April 23, 2022 00:58
@coreydaley
Copy link
Member Author

/bugzilla refresh

@openshift-ci
Copy link
Contributor

openshift-ci bot commented Apr 23, 2022

@coreydaley: This pull request references Bugzilla bug 2076250, which is invalid:

  • expected dependent Bugzilla bug 2076251 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), CLOSED (CURRENTRELEASE), but it is POST instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@openshift-ci
Copy link
Contributor

openshift-ci bot commented Apr 23, 2022

@coreydaley: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@coreydaley
Copy link
Member Author

/label backport-risk-assessed

@openshift-ci openshift-ci bot added the backport-risk-assessed Indicates a PR to a release branch has been evaluated and considered safe to accept. label Apr 23, 2022
@coreydaley
Copy link
Member Author

/bugzilla refresh

@openshift-ci openshift-ci bot added bugzilla/valid-bug Indicates that a referenced Bugzilla bug is valid for the branch this PR is targeting. and removed bugzilla/invalid-bug Indicates that a referenced Bugzilla bug is invalid for the branch this PR is targeting. labels May 17, 2022
@openshift-ci
Copy link
Contributor

openshift-ci bot commented May 17, 2022

@coreydaley: This pull request references Bugzilla bug 2076250, which is valid. The bug has been updated to refer to the pull request using the external bug tracker.

6 validation(s) were run on this bug
  • bug is open, matching expected state (open)
  • bug target release (4.7.z) matches configured target release for branch (4.7.z)
  • bug is in the state POST, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)
  • dependent bug Bugzilla bug 2076251 is in the state VERIFIED, which is one of the valid states (VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), CLOSED (CURRENTRELEASE))
  • dependent Bugzilla bug 2076251 targets the "4.8.z" release, which is one of the valid target releases: 4.8.0, 4.8.z
  • bug has dependents

Requesting review from QA contact:
/cc @jitendar-singh

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@coreydaley
Copy link
Member Author

/assign @jitendar-singh
for cherry pick approval

@coreydaley
Copy link
Member Author

/assign @akram @jkhelil
for approval

@jitendar-singh
Copy link
Contributor

/label cherry-pick-approved

@openshift-ci openshift-ci bot added the cherry-pick-approved Indicates a cherry-pick PR into a release branch has been approved by the release branch manager. label May 18, 2022
@InJenn
Copy link

InJenn commented May 18, 2022

/approve

@InJenn
Copy link

InJenn commented May 18, 2022

/lgtm

@openshift-ci
Copy link
Contributor

openshift-ci bot commented May 18, 2022

@InJenn: changing LGTM is restricted to collaborators

In response to this:

/lgtm

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@jkhelil
Copy link
Contributor

jkhelil commented May 18, 2022

/approve

@jkhelil
Copy link
Contributor

jkhelil commented May 18, 2022

/lgtm

@openshift-ci
Copy link
Contributor

openshift-ci bot commented May 18, 2022

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: coreydaley, InJenn, jkhelil

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label May 18, 2022
@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label May 18, 2022
@openshift-merge-robot openshift-merge-robot merged commit a05b753 into openshift:release-4.7 May 18, 2022
@openshift-ci
Copy link
Contributor

openshift-ci bot commented May 18, 2022

@coreydaley: All pull requests linked via external trackers have merged:

Bugzilla bug 2076250 has been moved to the MODIFIED state.

In response to this:

[release-4.7] Bug 2076250: Mitigate multiple CVEs

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@coreydaley
Copy link
Member Author

ART Request: https://issues.redhat.com/browse/ART-4073

Installed plugins:
ace-editor:1.1
ant:1.11
apache-httpcomponents-client-4-api:4.5.13-1.0
authentication-tokens:1.4
blueocean-autofavorite:1.2.3
blueocean-bitbucket-pipeline:1.24.4
blueocean-commons:1.24.4
blueocean-config:1.24.4
blueocean-core-js:1.24.4
blueocean-dashboard:1.24.4
blueocean-display-url:2.2.0
blueocean-events:1.24.4
blueocean-github-pipeline:1.24.4
blueocean-git-pipeline:1.24.4
blueocean-i18n:1.24.4
blueocean:1.24.4
blueocean-jwt:1.24.4
blueocean-personalization:1.24.4
blueocean-pipeline-api-impl:1.24.4
blueocean-pipeline-editor:1.24.4
blueocean-pipeline-scm-api:1.24.4
blueocean-rest-impl:1.24.4
blueocean-rest:1.24.4
blueocean-web:1.24.4
bouncycastle-api:2.18
branch-api:2.7.0
caffeine-api:2.9.2-29.v717aac953ff3
cloudbees-bitbucket-branch-source:2.4.4
cloudbees-folder:6.16
conditional-buildstep:1.4.1
config-file-provider:3.7.1
configuration-as-code-groovy:1.1
configuration-as-code:1.51
credentials-binding:1.23
credentials:2.6.1.1
display-url-api:2.3.4
docker-commons:1.18
docker-workflow:1.23
durable-task:1.35
echarts-api:4.7.0-4
favorite:2.3.1
git-client:3.5.1
github-api:1.114.2
github-branch-source:2.6.0
github:1.33.0
git:4.5.2
git-server:1.10
google-oauth-plugin:1.0.0
groovy:2.2
handlebars:1.1
handy-uri-templates-2-api:2.1.6-1.0
htmlpublisher:1.21
jackson2-api:2.13.0-230.v59243c64b0a5
javadoc:1.0
jenkins-design-language:1.24.4
jira:3.7.1
job-dsl:1.77
jquery3-api:3.5.1-1
jquery-detached:1.2.1
jsch:0.1.55.2
junit:1.30
kubernetes-client-api:4.13.2-1
kubernetes-credentials:0.7.0
kubernetes:1.29.0
lockable-resources:2.10
mailer:1.32.1
mapdb-api:1.0.9.0
matrix-auth:2.6.2
matrix-project:1.18
maven-plugin:3.7
mercurial:2.12
metrics:4.0.2.7
momentjs:1.1
oauth-credentials:0.3
okhttp-api:3.12.12.2
openshift-client:1.0.34
openshift-login:1.0.26
openshift-sync:1.0.46
pam-auth:1.6
parameterized-trigger:2.43.1
pipeline-build-step:2.16
pipeline-github-lib:1.0
pipeline-graph-analysis:1.10
pipeline-input-step:2.11
pipeline-milestone-step:1.3.1
pipeline-model-api:1.7.2
pipeline-model-declarative-agent:1.1.1
pipeline-model-definition:1.6.0
pipeline-model-extensions:1.7.2
pipeline-rest-api:2.15
pipeline-stage-step:2.3
pipeline-stage-tags-metadata:1.6.0
pipeline-stage-view:2.10
pipeline-utility-steps:2.12.0
plain-credentials:1.7
plugin-util-api:1.2.2
prometheus:2.0.10
pubsub-light:1.13
run-condition:1.3
scm-api:2.6.5
script-security:1.78
snakeyaml-api:1.29.1
sse-gateway:1.24
ssh-credentials:1.19
sshd:3.0.4
structs:308.v852b473a2b8c
subversion:2.15.4
token-macro:267.vcdaea6462991
trilead-api:1.0.13
variant:1.4
workflow-aggregator:2.6
workflow-api:2.47
workflow-basic-steps:2.18
workflow-cps-global-lib:566.vd0a_a_3334a_555
workflow-cps:2660.vb_c0412dc4e6d
workflow-durable-task-step:2.35
workflow-job:2.41
workflow-multibranch:711.vdfef37cda_816
workflow-remote-loader:1.5
workflow-scm-step:2.13
workflow-step-api:622.vb_8e7c15b_c95a_
workflow-support:3.8

@openshift-bot
Copy link
Contributor

[ART PR BUILD NOTIFIER]

This PR has been included in build ose-jenkins-agent-base-container-v4.7.0-202304290014.p0.ga05b753.assembly.stream for distgit ose-jenkins-agent-base.
All builds following this will include this PR.

@openshift-bot
Copy link
Contributor

[ART PR BUILD NOTIFIER]

This PR has been included in build openshift-jenkins-2-container-v4.7.0-202304290014.p0.ga05b753.assembly.stream for distgit openshift-jenkins-2.
All builds following this will include this PR.

@openshift-bot
Copy link
Contributor

[ART PR BUILD NOTIFIER]

This PR has been included in build ose-jenkins-agent-nodejs-12-container-v4.7.0-202304290014.p0.ga05b753.assembly.stream for distgit ose-jenkins-agent-nodejs-12.
All builds following this will include this PR.

@openshift-bot
Copy link
Contributor

[ART PR BUILD NOTIFIER]

This PR has been included in build ose-jenkins-agent-nodejs-10-container-v4.7.0-202304290014.p0.ga05b753.assembly.stream for distgit ose-jenkins-agent-nodejs-10.
All builds following this will include this PR.

@openshift-bot
Copy link
Contributor

[ART PR BUILD NOTIFIER]

This PR has been included in build ose-jenkins-agent-maven-container-v4.7.0-202304290014.p0.ga05b753.assembly.stream for distgit ose-jenkins-agent-maven.
All builds following this will include this PR.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@otaviof otaviof Awaiting requested review from otaviof

@sbose78 sbose78 Awaiting requested review from sbose78

@jitendar-singh jitendar-singh Awaiting requested review from jitendar-singh

Assignees

@akram akram

@jkhelil jkhelil

@jitendar-singh jitendar-singh

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. backport-risk-assessed Indicates a PR to a release branch has been evaluated and considered safe to accept. bugzilla/severity-high Referenced Bugzilla bug's severity is high for the branch this PR is targeting. bugzilla/valid-bug Indicates that a referenced Bugzilla bug is valid for the branch this PR is targeting. cherry-pick-approved Indicates a cherry-pick PR into a release branch has been approved by the release branch manager. lgtm Indicates that a PR is ready to be merged.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@coreydaley @jitendar-singh @InJenn @jkhelil @openshift-bot @akram @openshift-merge-robot