Merge pull request #11254 from hectorj2f/fix_cve_tekton_pipelines

tekton-pipelines :: fix: cve GHSA-9763-4f94-gfch
wolfi-dev · Jan 17, 2024 · 7be8efa · 7be8efa
2 parents 114cd96 + bf80dc7
commit 7be8efa
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/tekton-pipelines.yaml b/tekton-pipelines.yaml
@@ -1,7 +1,7 @@
 package:
   name: tekton-pipelines
   version: 0.55.0
-  epoch: 2
+  epoch: 3
   description: A cloud-native Pipeline resource.
   copyright:
     - license: Apache-2.0
@@ -20,7 +20,7 @@ pipeline:
 
   - uses: go/bump
     with:
-      deps: github.com/docker/[email protected] golang.org/x/[email protected] github.com/containerd/[email protected] github.com/go-git/go-git/[email protected]
+      deps: github.com/docker/[email protected] golang.org/x/[email protected] github.com/containerd/[email protected] github.com/go-git/go-git/[email protected] github.com/cloudflare/[email protected]
       go-version: 1.21
       modroot: tekton