Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade profile/p20200901 requirements #23898

Open
chlowell opened this issue Dec 30, 2024 · 0 comments
Open

Upgrade profile/p20200901 requirements #23898

chlowell opened this issue Dec 30, 2024 · 0 comments
Assignees
@chlowell
Labels
Mgmt This issue is related to a management-plane library.
Milestone
2025-01

Comments

@chlowell
Copy link
Member

profile/p20200901 has a couple transitive dependencies on an x/crypto CVE:

github.com/Azure/azure-sdk-for-go/profile/p20200901/go.mod
└─┬ github.com/Azure/azure-sdk-for-go/sdk/azcore v1.13.0
  ├─┬ github.com/Azure/azure-sdk-for-go/sdk/internal v1.10.0
  │ └── golang.org/x/crypto v0.25.0
  └─┬ golang.org/x/net v0.27.0
    └── golang.org/x/crypto v0.25.0

azcore is already upgraded on main, so the simplest fix is to publish that, then upgrade profile/p20200901
@chlowell chlowell added the Mgmt This issue is related to a management-plane library. label Dec 30, 2024
@chlowell chlowell added this to the 2025-01 milestone Dec 30, 2024
@chlowell chlowell self-assigned this Dec 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@chlowell chlowell

Labels
Mgmt This issue is related to a management-plane library.
Projects
None yet
Milestone
2025-01
Development

No branches or pull requests
1 participant
@chlowell