github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
117,439 Commits 1 Branch 31 Tags
c7e7eee554a6f81f97f148df83c4526f747abe84
Commit Graph

148 Commits

Author SHA1 Message Date
Jordan Liggitt
ecef45df84 [go1.16] bump golang.org/x/... dependencies 
hack/pin-dependency.sh golang.org/x/crypto latest
hack/pin-dependency.sh golang.org/x/net latest
hack/pin-dependency.sh golang.org/x/exp latest
hack/pin-dependency.sh golang.org/x/sys latest
hack/pin-dependency.sh golang.org/x/time latest
hack/pin-dependency.sh golang.org/x/tools latest

hack/lint-dependencies.sh
hack/pin-dependency.sh dmitri.shuralyov.com/gpu/mtl v0.0.0-20201218220906-28db891af037
hack/pin-dependency.sh golang.org/x/mobile v0.0.0-20201217150744-e6ae53a27f4f
hack/pin-dependency.sh golang.org/x/mod v0.3.1-0.20200828183125-ce943fd02449

hack/lint-dependencies.sh

hack/update-internal-modules.sh
hack/update-vendor.sh

Co-authored-by: Stephen Augustus <foo@auggie.dev>
 2021-03-02 00:38:01 -05:00
Benjamin Elder
56e092e382 hack/update-bazel.sh 2021-02-28 15:17:29 -08:00
Nabarun Pal
9cada2ec3b update gogo/protobuf to v1.3.2 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: https://github.com/kubernetes/client-go/issues/927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
 2021-01-27 22:07:32 +05:30
David Porter
8af7405f17 vendor: cadvisor v0.38.4 2020-11-13 19:52:57 +00:00
Chao Xu
7b26cff174 update golang.org/x/net and golang.org/x/sys 2020-11-13 05:29:54 +00:00
Jordan Liggitt
4012fb0052 Revert "Updated golang/x/net. Also updated golang.org/x/sys" 2020-11-02 08:29:50 -05:00
Chao Xu
ec6e232126 Updated golang/x/net. Also updated golang.org/x/sys, as required by 
hack/lint-dependencies.sh.
 2020-10-31 16:21:08 -07:00
Markus Thömmes
34b9d11505 Fix dependency linting 2020-10-19 11:33:30 +02:00
Jordan Liggitt
6c2d18369f generated: hack/update-vendor.sh 2020-07-26 01:33:28 -04:00
Jordan Liggitt
f33dc28094 generated: hack/update-hack-tools.sh && hack/update-vendor.sh 2020-07-25 16:45:02 -04:00
Giuseppe Scrivano
a6a3bf2eb4 vendor: update google/cadvisor and opencontainers/runc 
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2020-06-24 18:39:50 +02:00
Jordan Liggitt
d9bb0b8ee1 go1.14: run hack/update-vendor.sh 2020-06-23 19:04:43 -04:00
Robert Van Voorhees
3cef97e8b5 [security] Vulnerability in golang.org/x/text/encoding/unicode v0.3.2 
Hello gophers,

Version v0.3.3 of golang.org/x/text fixes a vulnerability in the golang.org/x/text/encoding/unicode package which could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory.

An attacker could provide a single byte to a UTF16 decoder instantiated with UseBOM or ExpectBOM to trigger an infinite loop if the String function on the Decoder is called, or the Decoder is passed to golang.org/x/text/transform.String.

transform.String has also been hardened not to enter an infinite loop if a Transformer keeps returning ErrShortSrc even if atEOF is true.

This issue was first filed as Issue 39491 by GitHub user abacabadabacaba and reported to the security team by Anton Gyllenberg. It is tracked as CVE-2020-14040.

Cheers,

Katie for the Go team
 2020-06-17 07:57:05 -04:00
Davanum Srinivas
15fa9902e9 Updating dependency golang.org/x/oauth2 to version v0.0.0-20191202225959-858c2ad4c8b6 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-16 07:53:01 -04:00
Davanum Srinivas
f981628ce8 move linting dependencies to hack/tools/tools.go 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-04-20 13:45:38 -04:00
Davanum Srinivas
12146cb4df Do not include bazel related deps in root go.mod 
- add ./hack/tools/go.mod, this makes ./hack/tools a distinct module
- hack/tools/tools.go undescore imports bazel related tools, over time we
can add others.
- hack/*.sh scripts will cd to hack/tools and go install tools from there

Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-04-19 22:01:50 -04:00
Jordan Liggitt
93c7b24562 github.com/googleapis/gnostic v0.4.1 2020-03-31 23:07:50 -04:00
Davanum Srinivas
d275539551 Updating dependency golang.org/x/xerrors to version v0.0.0-20191204190536-9bdfabe68543 2020-03-25 12:09:41 -04:00
Davanum Srinivas
2b8b3b4008 Updating dependency golang.org/x/time to version v0.0.0-20191024005414-555d28b269f0 2020-03-25 12:09:41 -04:00
Davanum Srinivas
75ceb7baa8 Updating dependency golang.org/x/net to version v0.0.0-20200202094626-16171245cfb2 2020-03-25 12:09:41 -04:00
Davanum Srinivas
0dd6bf6258 Updating dependency github.com/google/go-cmp to version v0.4.0 2020-03-25 12:09:32 -04:00
Benjamin Elder
86ead63158 update golang.org/x/crypto 2020-02-20 13:17:51 -08:00
Mike Danese
009c731a88 vendor golang.org/x/sync/singleflight 2019-12-10 13:12:04 -08:00
Jordan Liggitt
297570e06a hack/update-vendor.sh 2019-11-06 17:42:34 -05:00
Mike Danese
380f42727d remove dependency on cfssl 2019-11-04 08:37:10 -08:00
Tim Allclair
9a02ef7fe5 Bump golang.org/x/tools version for staticcheck compat 2019-08-19 17:16:24 -07:00
Tim Allclair
7e5a64e011 Vendor staticcheck 2019-08-19 17:16:24 -07:00
Christoph Blecker
5f971d6d88 Update vendor 2019-08-13 17:51:45 -07:00
Jordan Liggitt
bd2dc5e5a2 vendor gotest.tools/gotestsum 2019-07-31 17:43:02 -04:00
Davanum Srinivas
b508986304 updating github.com/miekg/dns to v1.1.4 2019-06-19 06:38:33 -04:00
Davanum Srinivas
7858719b4c updating gopkg.in/square/go-jose.v2 to v2.2.2 2019-06-19 06:38:33 -04:00
Kalya Subramanian
e0fec1dc28 Include golang.org/x/sys/windows/svc/mgr to manage Windows services 2019-05-20 23:28:56 +00:00
Benoit Sigoure
ef492e2d70 vendor: update golang.org/x/oauth2 and cloud.google.com/go 
Pick up the bug fix for golang/oauth2#237
Bump up cloud.google.com/go as a result of updating the OAuth2 code.

This commit was generated by:
./hack/pin-dependency.sh golang.org/x/oauth2 9f3314589c9a
./hack/pin-dependency.sh cloud.google.com/go v0.34.0
./hack/update-vendor.sh
git add vendor
git add -u
 2019-04-23 14:00:51 -07:00
Jordan Liggitt
389f76235c golang.org/x/tools v0.0.0-20190313210603-aa82965741a9 (release-branch.go1.12) 2019-04-08 15:20:46 -04:00
Jordan Liggitt
97c130b056 golang.org/x/crypto v0.0.0-20181025213731-e84da0312774 (release-branch.go1.12) 2019-04-08 15:20:46 -04:00
Jordan Liggitt
921f3ea8da golang.org/x/sys v0.0.0-20190209173611-3b5209105503 (release-branch.go1.12) 2019-04-08 15:20:45 -04:00
Jordan Liggitt
55d52fd5c3 golang.org/x/text v0.3.1-0.20181227161524-e6919f6577db (release-branch.go1.12) 2019-04-08 15:20:45 -04:00
Jordan Liggitt
5627034673 github.com/PuerkitoBio/purell v1.1.0 
Used only by github.com/go-openapi/..., all expecting v1.1.0
 2019-04-08 15:20:43 -04:00
Jordan Liggitt
d0261b1077 generated: hack/update-vendor.sh 2019-04-03 10:19:40 -04:00
Davanum Srinivas
2aa1348e6c Update to go 1.12 version of golang.org/x/net 
Change-Id: I3f2fa5d7b6811c9eca58992318d19e44ec9131fd
 2019-03-12 11:30:24 -04:00
Prasad Ghangal
317ecf58cc Update golang.org/x/net/... dependencies to release-branch.go1.11 
- latest grpc-ecosystem/go-grpc-middleware

Change-Id: Ida7d01e4606f6e0313e1355db6e85be0c0ef1dd1
 2019-03-12 09:48:52 -04:00
David Ashpole
fec22bbb25 update gomega godep 2019-02-19 13:22:45 -08:00
Benjamin Elder
91ddb093b8 run hack/update-bazel.sh 2019-02-12 18:38:36 -08:00
Krzysztof Siedlecki
6c1a842248 adding prettybench and go-junit-report to vendor 2019-02-05 14:54:01 +01:00
Sen Lu
242ce12de7 vendor golint 2018-12-26 10:42:24 -08:00
Yann Hodique
4d9c01d747 replace golang.org/x/exp/inotify with standalone library 
The inotify code was removed from golang.org/x/exp several years ago. Therefore
importing it from that path prevents downstream consumers from using any module
that makes use of more recent features of golang.org/x/exp.

This change is a followup to google/cadvisor#2060 which was merged with #70889

This fixes #68478
 2018-11-13 14:51:40 -08:00
Wenjia Zhang
b540527df0 update code change for golang.org/x/net/... to release-branch.go1.10 2018-11-06 16:04:02 -08:00
Wenjia Zhang
7ce2c6f4f0 update godeps for golang.org/x/net/... to release-branch.go1.10 2018-11-06 15:40:23 -08:00
Jeff Grafton
6034bf68d0 Update to gazelle 0.14.0 and run hack/update-bazel.sh 2018-09-05 15:27:15 -07:00
Jess Frazelle
31ffd9f881 vendor: update docker cadvisor winterm 
This vendor change was purely for the changes in docker to allow for
setting the Masked and Read-only paths.

See: moby/moby#36644

But because of the docker dep update it also needed cadvisor to be
updated and winterm due to changes in pkg/tlsconfig in docker

See: google/cadvisor#1967

Signed-off-by: Jess Frazelle <acidburn@microsoft.com>
 2018-08-30 11:40:05 -04:00