Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[4.5.x] chore(deps): update module golang.org/x/net to v0.33.0 [security] #968

Open
wants to merge 1 commit into
base: 4.5.x
Choose a base branch
from
Open

[4.5.x] chore(deps): update module golang.org/x/net to v0.33.0 [security] #968

wants to merge 1 commit into from

Conversation

mergify[bot]
Copy link

@mergify mergify bot commented Dec 19, 2024

This is an automatic copy of pull request #964 done by Mergify.

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
golang.org/x/net v0.30.0 -> v0.33.0 age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2024-45338

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Cherry-pick of cb4226b has failed:

On branch mergify/bp/4.5.x/pr-964
Your branch is up to date with 'origin/4.5.x'.

You are currently cherry-picking commit cb4226b.
  (fix conflicts and run "git cherry-pick --continue")
  (use "git cherry-pick --skip" to skip this patch)
  (use "git cherry-pick --abort" to cancel the cherry-pick operation)

Unmerged paths:
  (use "git add <file>..." to mark resolution)
	both modified:   go.mod
	both modified:   go.sum

no changes added to commit (use "git add" and/or "git commit -a")

To fix up this pull request, you can check it out locally. See documentation: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/checking-out-pull-requests-locally

@renovate @mergify
chore(deps): update module golang.org/x/net to v0.33.0 [security]
d75049d 
(cherry picked from commit cb4226b)

# Conflicts:
#	go.mod
#	go.sum
@mergify mergify bot added the conflicts label Dec 19, 2024
@mergify mergify bot requested a review from a team as a code owner December 19, 2024 16:53
@mergify Mergify
Copy link
Author

mergify bot commented Dec 19, 2024

Cherry-pick of cb4226b has failed:

On branch mergify/bp/4.5.x/pr-964
Your branch is up to date with 'origin/4.5.x'.

You are currently cherry-picking commit cb4226b.
  (fix conflicts and run "git cherry-pick --continue")
  (use "git cherry-pick --skip" to skip this patch)
  (use "git cherry-pick --abort" to cancel the cherry-pick operation)

Unmerged paths:
  (use "git add <file>..." to mark resolution)
	both modified:   go.mod
	both modified:   go.sum

no changes added to commit (use "git add" and/or "git commit -a")

To fix up this pull request, you can check it out locally. See documentation: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/checking-out-pull-requests-locally

@mergify mergify bot requested a review from a team as a code owner December 19, 2024 16:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
conflicts
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants