-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Release v1.9.0 #2115
Comments
Will v1.9.0 update golang to v1.18.1 or newer? The current release is affected by the following vulnerability CVE-2022-24675. If so, is there any estimate for when v.1.9.0 will be release? If not, any idea when this vulnerability might be addressed? It looks like you already have a pull request to do this. #2121 |
I've sent #2141 to build Kaniko with Go 1.18. I'm pretty confident the vulnerability doesn't affect Kaniko, unless I'm misunderstanding, but we should be on the latest Go anyway. I don't have an estimate for when the next Kaniko release might happen. |
I still don't know exactly what's wrong in #1669 -- if someone can test the latest commit-tagged image and let me know if it's been fixed since 1.8.0 that would be great. There have been some snapshotting improvements from @gabyx especially that might have fixed this. In any case, I don't think we need to block the release on that fix, there have been plenty of improvements worth releasing even if that long-standing issue isn't included. |
Closing, v1.9.0 is released |
v1.8.1 was cut on April 5, about 2 months ago.
Diff since then: v1.8.1...main
Some notable changes / fixes:
LayersMap
to correct old strange code behavior #2066ref: #2049 (comment) asking for a timeline on a new release
We might also want to wait for #2106 to land.
The text was updated successfully, but these errors were encountered: