Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

rancher-sandbox/luet-mtree has potential security vulnerabilities in its dependencies. #1223

Closed
Itxaka opened this issue Apr 8, 2022 · 3 comments
Closed

rancher-sandbox/luet-mtree has potential security vulnerabilities in its dependencies. #1223

Itxaka opened this issue Apr 8, 2022 · 3 comments
Labels
kind/bug Something isn't working kind/chore

Comments

@Itxaka
Copy link
Contributor

Itxaka commented Apr 8, 2022

No description provided.

@Itxaka
Copy link
Contributor Author

Itxaka commented Apr 8, 2022

not sure if this is real @kkaempf

See dependabot/dependabot-core#4740 this is wrongly reporting entries in go.sum as dependencies, which is not correct.

@mudler mudler added kind/bug Something isn't working kind/chore labels Apr 12, 2022
@Itxaka
Copy link
Contributor Author

Itxaka commented Apr 12, 2022

Updated deps and seems like all alerts have been auto closed: https://github.com/rancher-sandbox/luet-mtree/security/dependabot?q=is%3Aopen

rancher-sandbox/luet-mtree#10

@Itxaka Itxaka closed this as completed Apr 12, 2022
@jeffwidman
Copy link

BTW, GitHub fixed it so go.sum is no longer used as a source of dependencies: https://github.blog/changelog/2023-03-07-dependency-graph-removes-go-sum-support/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/bug Something isn't working kind/chore
Projects
Elemental
Archived in project
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jeffwidman @Itxaka @mudler