Skip to content

Commit

Permalink
Merge pull request #4264 from omordyk/issue_4263
Browse files Browse the repository at this point in the history 
Issue #4263 - Fix CVE-2025-22869 vulnerability
  • Loading branch information
@LiilyZhang
LiilyZhang authored Feb 28, 2025
2 parents f6ffbff + 1045bdf commit 1080f74
Show file tree
Hide file tree
Showing 4 changed files with 20 additions and 18 deletions.
4 changes: 2 additions & 2 deletions .github/workflows/E2E-test.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,10 +33,10 @@ jobs:
path: go/src/github.com/${{github.repository}}

# Prepares the environment by setting up golang
- name: Set up golang 1.21
- name: Set up golang 1.23
uses: actions/setup-go@v2
with:
go-version: '1.21'
go-version: '1.23'
check-latest: true

# Build anax binaries
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/build-push.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -145,10 +145,10 @@ jobs:
path: go/src/github.com/${{ github.repository }}

# Prepare the environment
- name: Set up golang 1.21
- name: Set up golang 1.23
uses: actions/setup-go@v3
with:
go-version: '1.21'
go-version: '1.23'
check-latest: true

# The go version will change, so we must get which one we are using for when we build the ppc64el images in the docker env.
Expand Down Expand Up @@ -383,10 +383,10 @@ jobs:
path: go/src/github.com/${{ github.repository }}

# Prepare the environment
- name: Set up golang 1.21
- name: Set up golang 1.23
uses: actions/setup-go@v3
with:
go-version: '1.21'
go-version: '1.23'
check-latest: true

# Configure version variables for later steps, stored in our workflow env. variables
Expand Down
14 changes: 8 additions & 6 deletions go.mod
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
module github.com/open-horizon/anax

go 1.21
go 1.23.0

toolchain go1.23.4

require (
github.com/adams-sarah/test2doc v0.0.0-20211124171229-79cd42e7411d
Expand All @@ -22,9 +24,9 @@ require (
github.com/operator-framework/operator-lifecycle-manager v0.27.0
github.com/satori/go.uuid v1.2.0
github.com/stretchr/testify v1.8.4
golang.org/x/crypto v0.31.0
golang.org/x/sys v0.28.0
golang.org/x/text v0.21.0
golang.org/x/crypto v0.35.0
golang.org/x/sys v0.30.0
golang.org/x/text v0.22.0
gopkg.in/alecthomas/kingpin.v2 v2.2.6
gopkg.in/yaml.v2 v2.4.0
k8s.io/api v0.28.5
Expand Down Expand Up @@ -125,7 +127,7 @@ require (
golang.org/x/net v0.33.0 // indirect
golang.org/x/oauth2 v0.14.0 // indirect
golang.org/x/sync v0.10.0 // indirect
golang.org/x/term v0.27.0 // indirect
golang.org/x/term v0.29.0 // indirect
golang.org/x/time v0.3.0 // indirect
golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
google.golang.org/appengine v1.6.8 // indirect
Expand All @@ -146,6 +148,6 @@ replace (
github.com/containerd/containerd => github.com/containerd/containerd v1.7.11
github.com/docker/docker => github.com/docker/docker v27.1.1+incompatible
github.com/opencontainers/runc => github.com/opencontainers/runc v1.1.5
golang.org/x/crypto => golang.org/x/crypto v0.31.0
golang.org/x/crypto => golang.org/x/crypto v0.35.0
golang.org/x/text => golang.org/x/text v0.21.0
)
12 changes: 6 additions & 6 deletions go.sum
View file
Original file line number Diff line number Diff line change
Expand Up @@ -281,8 +281,8 @@ go.etcd.io/bbolt v1.3.10 h1:+BqfJTcCzTItrop8mq/lbzL8wSGtj94UO/3U31shqG0=
go.etcd.io/bbolt v1.3.10/go.mod h1:bK3UQLPJZly7IlNmV7uVHJDxfe5aK9Ll93e/74Y9oEQ=
go.mongodb.org/mongo-driver v1.15.0 h1:rJCKC8eEliewXjZGf0ddURtl7tTVy1TK3bfl0gkUSLc=
go.mongodb.org/mongo-driver v1.15.0/go.mod h1:Vzb0Mk/pa7e6cWw85R4F/endUC3u0U9jGcNU603k65c=
golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U=
golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
golang.org/x/crypto v0.35.0 h1:b15kiHdrGCHrP6LvwaQ3c03kgNhhiMgvlhxHQhmg2Xs=
golang.org/x/crypto v0.35.0/go.mod h1:dy7dXNW32cAb/6/PRuTNsix8T+vJAqvuIy5Bli/x0YQ=
golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
Expand Down Expand Up @@ -323,15 +323,15 @@ golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64/go.mod h1:oPkhp1MJrh7nUepCBc
golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
golang.org/x/sys v0.30.0 h1:QjkSwP/36a20jFYWkSue1YwXzLmsV5Gfq7Eiy72C1uc=
golang.org/x/sys v0.30.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY=
golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
golang.org/x/term v0.29.0 h1:L6pJp37ocefwRRtYPKSWOWzOtWSxVajvz2ldH/xi3iU=
golang.org/x/term v0.29.0/go.mod h1:6bl4lRlvVuDgSf3179VpIxBF0o10JUpXWOnI7nErv7s=
golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
Expand Down

0 comments on commit 1080f74

Please sign in to comment.