Skip to content

Update packages #40

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mikebonnet merged 3 commits into from
Mar 4, 2025
Merged

Update packages #40

mikebonnet merged 3 commits into from
Mar 4, 2025

Conversation

@TominoFTW
Copy link
Collaborator

@TominoFTW TominoFTW commented Feb 17, 2025
edited
Loading

Jira: PVO11Y-4643

Updating skopeo version not to have critical vulnerability and to stop pings from vulnerability scanner.
https://packages.fedoraproject.org/pkgs/skopeo/skopeo/

@TominoFTW
update python dependencies
d58b6be
@TominoFTW
update skopeo
4f2056c 
This update is due to go/crypto package - introduced by skopeo - being flagged as critical vulnerability, once this update is in stable version, this change can be reverted
@TominoFTW
Copy link
Collaborator Author

TominoFTW commented Feb 17, 2025

@mikebonnet @kubasikus Do you guys think that this change is necessary, or should we just wait with this until skopeo is in stable repository?

@TominoFTW TominoFTW requested a review from mikebonnet March 4, 2025 14:18
@TominoFTW TominoFTW self-assigned this Mar 4, 2025
mikebonnet
mikebonnet requested changes Mar 4, 2025
View reviewed changes
Copy link
Member

@mikebonnet mikebonnet left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would suggest waiting until skopeo is in the updates repos. Everything else looks good!

@TominoFTW
Copy link
Collaborator Author

TominoFTW commented Mar 4, 2025

Reverted Dockerfilechanges, kept updates for python packages.

@TominoFTW
Revert "update skopeo"
7d39e3f 
This reverts commit 4f2056c.
mikebonnet
mikebonnet approved these changes Mar 4, 2025
View reviewed changes
Copy link
Member

@mikebonnet mikebonnet left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good!

@mikebonnet mikebonnet merged commit beeccdf into master Mar 4, 2025
5 checks passed
@mikebonnet mikebonnet deleted the update-packages branch March 4, 2025 16:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mikebonnet mikebonnet mikebonnet approved these changes

Assignees

@TominoFTW TominoFTW

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@TominoFTW @mikebonnet