-
Notifications
You must be signed in to change notification settings - Fork 671
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgx/v5 v5.4.3 -> v5.5.5 / pgproto3 v2.3.2 -> v2.3.3 #5155
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dosubot
bot
added
size:XS
This PR changes 0-9 lines, ignoring generated files.
security
Issues related to Security improvements
labels
Mar 30, 2024
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #5155 +/- ##
=======================================
Coverage 59.11% 59.11%
=======================================
Files 645 645
Lines 55576 55576
=======================================
Hits 32854 32854
Misses 20129 20129
Partials 2593 2593
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
ddl-ebrown
force-pushed
the
update-pgproto3
branch
from
March 30, 2024 08:51
780c3d1
to
dfb7a64
Compare
dosubot
bot
added
size:M
This PR changes 30-99 lines, ignoring generated files.
and removed
size:XS
This PR changes 0-9 lines, ignoring generated files.
labels
Mar 30, 2024
ddl-ebrown
changed the title
Upgrade jackc/pgproto3 v2.3.2 -> v2.3.3
Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgproto3 v2.3.2 -> v2.3.3
Mar 30, 2024
ddl-ebrown
force-pushed
the
update-pgproto3
branch
from
March 30, 2024 16:02
dfb7a64
to
a26a4de
Compare
dosubot
bot
added
size:L
This PR changes 100-499 lines, ignoring generated files.
and removed
size:M
This PR changes 30-99 lines, ignoring generated files.
labels
Mar 30, 2024
ddl-ebrown
changed the title
Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgproto3 v2.3.2 -> v2.3.3
Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgx/v5 v5.4.3 -> v5.5.5 / pgproto3 v2.3.2 -> v2.3.3
Mar 30, 2024
ddl-ebrown
force-pushed
the
update-pgproto3
branch
from
April 1, 2024 19:42
a26a4de
to
fac96e7
Compare
dosubot
bot
added
size:M
This PR changes 30-99 lines, ignoring generated files.
and removed
size:L
This PR changes 100-499 lines, ignoring generated files.
labels
Apr 1, 2024
ddl-ebrown
force-pushed
the
update-pgproto3
branch
from
April 1, 2024 19:43
fac96e7
to
881eaea
Compare
pingsutw
previously approved these changes
Apr 1, 2024
ddl-ebrown
force-pushed
the
update-pgproto3
branch
from
April 3, 2024 01:55
881eaea
to
71c8761
Compare
- pgconn v1.14.1 -> v1.14.3 - pgx v5.4.3 -> v5.5.5 - pgproto3 v2.3.2 -> v2.3.3 - Resolves vuln CVE-2024-27304 Signed-off-by: ddl-ebrown <[email protected]>
ddl-ebrown
force-pushed
the
update-pgproto3
branch
from
April 3, 2024 23:10
71c8761
to
407df61
Compare
eapolinario
approved these changes
Apr 4, 2024
Jeinhaus
pushed a commit
to Jeinhaus/flyte
that referenced
this pull request
Apr 8, 2024
- pgconn v1.14.1 -> v1.14.3 - pgx v5.4.3 -> v5.5.5 - pgproto3 v2.3.2 -> v2.3.3 - Resolves vuln CVE-2024-27304 Signed-off-by: ddl-ebrown <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Tracking issue
https://github.com/flyteorg/flyte/issues/
Why are the changes needed?
pgconn v1.14.1 -> v1.14.3
pgx v5.4.3 -> v5.5.5
pgproto3 v2.3.2 -> v2.3.3
Resolves vuln CVE-2024-27304
What changes were proposed in this pull request?
How was this patch tested?
Setup process
Screenshots
Check all the applicable boxes
Related PRs
Docs link