Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump golang.org/x/crypto to latest rel-1.19 #2941

Merged
merged 1 commit into from
Jan 27, 2021
Merged

Bump golang.org/x/crypto to latest rel-1.19 #2941

merged 1 commit into from
Jan 27, 2021

Conversation

TomSweeneyRedHat
Copy link
Member

Signed-off-by: TomSweeneyRedHat [email protected]
Bump golang.org.x/cyrpto to the latest in release-1.19 branch.

Partially addresses: https://bugzilla.redhat.com/show_bug.cgi?id=1910255, follow on to #2939
This is to close up a low level CVE. Code in the crypto library has a vulnerability, but we don't call that code. So this is just to be ultra-safe.

What type of PR is this?

/kind api-change
/kind bug
/kind cleanup
/kind deprecation
/kind design
/kind documentation
/kind failing-test
/kind feature
/kind flake
/kind other

What this PR does / why we need it:

How to verify it

Which issue(s) this PR fixes:

Special notes for your reviewer:

Does this PR introduce a user-facing change?

@openshift-ci-robot
Copy link
Collaborator

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: TomSweeneyRedHat

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

vrothberg
vrothberg reviewed Jan 27, 2021
View reviewed changes
Copy link
Member

@vrothberg vrothberg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@rhatdan
Copy link
Member

rhatdan commented Jan 27, 2021

/lgtm

@openshift-merge-robot openshift-merge-robot merged commit 99cbd35 into release-1.19 Jan 27, 2021
@nalind nalind deleted the bump_crypto_rel1.19 branch March 3, 2021 14:20
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 23, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@vrothberg vrothberg vrothberg left review comments

Assignees

@rhatdan rhatdan

Labels
approved lgtm locked - please file new issue/PR
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@TomSweeneyRedHat @openshift-ci-robot @rhatdan @vrothberg @openshift-merge-robot