Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cherry Pick Security Updates #1814

Merged
merged 5 commits into from
Feb 4, 2025
Merged

Cherry Pick Security Updates #1814

merged 5 commits into from
Feb 4, 2025

Conversation

tiagolobocastro
Copy link
Contributor 

chore: update auto-assign

Remove Dmitry from auto-assign since he's no longer actively reviewing.

security(GHSA-wwq9-3cpr-mm53): update hashbrown crate

security(GHSA-h97m-ww89-6jmq): update url and idna crate

Signed-off-by: Tiago Castro <tiagolobocastro@gmail.com>

security(test/GHSA-mwcw-c2x4-8c55): update test grpc mocha and nanoid

Mocha was depending on nanoid with vulnerability GHSA-mwcw-c2x4-8c55 and
so I've updated mocha as recommeded by npm audit fix.

security(test/GHSA-cvv5-9h9w-qp2m): update grpc test dependency

This is only used by test and not the product.

@tiagolobocastro
security(test/GHSA-cvv5-9h9w-qp2m): update grpc test dependency
e032c34 
This is only used by test and not the product.

Signed-off-by: Tiago Castro <tiagolobocastro@gmail.com>
@tiagolobocastro
security(test/GHSA-mwcw-c2x4-8c55): update test grpc mocha and nanoid
ce4b6d6 
Mocha was depending on nanoid with vulnerability GHSA-mwcw-c2x4-8c55 and
so I've updated mocha as recommeded by npm audit fix.

Signed-off-by: Tiago Castro <tiagolobocastro@gmail.com>
@tiagolobocastro
security(GHSA-h97m-ww89-6jmq): update url and idna crate
1f0c6e2 
Signed-off-by: Tiago Castro <tiagolobocastro@gmail.com>
@tiagolobocastro
security(GHSA-wwq9-3cpr-mm53): update hashbrown crate
649284b 
Signed-off-by: Tiago Castro <tiagolobocastro@gmail.com>
@tiagolobocastro
chore: update auto-assign
3c8b03a 
Remove Dmitry from auto-assign since he's no longer actively reviewing.

Signed-off-by: Tiago Castro <tiagolobocastro@gmail.com>
@tiagolobocastro
Copy link
Contributor Author

bors merge

@bors-openebs-mayastor
Copy link

Build succeeded:

@bors-openebs-mayastor bors-openebs-mayastor bot merged commit cb622b5 into release/2.8 Feb 4, 2025
4 checks passed
@bors-openebs-mayastor bors-openebs-mayastor bot deleted the security-rel branch February 4, 2025 13:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sinhaashish sinhaashish sinhaashish approved these changes

@Abhinandan-Purkait Abhinandan-Purkait Abhinandan-Purkait approved these changes

@avishnu avishnu Awaiting requested review from avishnu

@niladrih niladrih Awaiting requested review from niladrih

@abhilashshetty04 abhilashshetty04 Awaiting requested review from abhilashshetty04

@dsavitskiy dsavitskiy Awaiting requested review from dsavitskiy

@dsharma-dc dsharma-dc Awaiting requested review from dsharma-dc

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@tiagolobocastro @sinhaashish @Abhinandan-Purkait