security: fine-tune release scanner and bump coredns (hashicorp#21038)

* security: bump coredns * add changelog * Revert "security: bump coredns" This reverts commit dcca09d. * security: bump coredns * fine-tune security scanner on release * dismiss changelog
dhiaayachi · May 3, 2024 · 8209b3f · 8209b3f
1 parent 1793b50
commit 8209b3f
Show file tree

Hide file tree

Showing 3 changed files with 289 additions and 258 deletions.
diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
@@ -42,6 +42,13 @@ container {
 				"CVE-2023-46219", # [email protected]
 				"CVE-2023-5678",  # [email protected]
 			]
+			paths = [
+				"internal/tools/proto-gen-rpc-glue/e2e/consul/*",
+				"test/integration/connect/envoy/test-sds-server/*",
+				"test/integration/consul-container/*",
+				"testing/deployer/*",
+				"test-integ/*",
+			]
 		}
 	}
 }
@@ -76,6 +83,13 @@ binary {
 			vulnerabilites = [
 				"GO-2024-2631", # go-jose/[email protected] (false positive)
 			]
+			paths = [
+				"internal/tools/proto-gen-rpc-glue/e2e/consul/*",
+				"test/integration/connect/envoy/test-sds-server/*",
+				"test/integration/consul-container/*",
+				"testing/deployer/*",
+				"test-integ/*",
+			]
 		}
 	}
 }
diff --git a/test/integration/connect/envoy/test-sds-server/go.mod b/test/integration/connect/envoy/test-sds-server/go.mod
@@ -4,11 +4,9 @@ go 1.16
 
 require (
 	github.com/envoyproxy/go-control-plane v0.12.0
-	github.com/fatih/color v1.14.1 // indirect
-	github.com/golang/protobuf v1.5.4 // indirect
-	github.com/hashicorp/consul v1.15.2
+	github.com/hashicorp/consul v1.18.1
+	github.com/hashicorp/consul/sdk v0.16.0 // indirect
 	github.com/hashicorp/go-hclog v1.5.0
-	github.com/hashicorp/go-uuid v1.0.3 // indirect
 	golang.org/x/net v0.24.0 // indirect
 	google.golang.org/grpc v1.58.3
 )