-
Notifications
You must be signed in to change notification settings - Fork 3.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Facing vulnerability issues with golang 1.19.7 versions in argocli #11023
Labels
go
Pull requests that update Go dependencies
P2
Important. All bugs with >=3 thumbs up that aren’t P0 or P1, plus: Any other bugs deemed important
type/dependencies
PRs and issues specific to updating dependencies
type/feature
Feature request
type/security
Security related
Comments
We can bump to 1.20 for next release. |
I wonder why Snyk didn't catch this earlier. |
terrytangyuan
added a commit
to terrytangyuan/argo-workflows
that referenced
this issue
May 3, 2023
Signed-off-by: Yuan Tang <[email protected]>
44 tasks
terrytangyuan
added a commit
that referenced
this issue
May 25, 2023
Signed-off-by: Yuan Tang <[email protected]>
JPZ13
pushed a commit
to pipekit/argo-workflows
that referenced
this issue
Jul 4, 2023
Signed-off-by: Yuan Tang <[email protected]>
dpadhiar
pushed a commit
to dpadhiar/argo-workflows
that referenced
this issue
May 9, 2024
Signed-off-by: Yuan Tang <[email protected]> Signed-off-by: Dillen Padhiar <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
go
Pull requests that update Go dependencies
P2
Important. All bugs with >=3 thumbs up that aren’t P0 or P1, plus: Any other bugs deemed important
type/dependencies
PRs and issues specific to updating dependencies
type/feature
Feature request
type/security
Security related
Summary
Facing vulnerability issues with golang 1.19.7 version in argocli since they are older/outdated versions.
Argo cli version used - https://github.com/argoproj/argo-workflows/releases/tag/v3.4.7
Is there any latest release that will cover below vulnerabilities?
CVE-2023-24538
CVE-2023-24537
CVE-2023-24536
CVE-2023-24534
The text was updated successfully, but these errors were encountered: