Skip to content

chore(core): cve mitigation and bump golang version in CSE#2146

Merged
LopatinDmitr merged 3 commits intorelease-1.0-csefrom
fix/cve
Mar 27, 2026
Merged

chore(core): cve mitigation and bump golang version in CSE#2146
LopatinDmitr merged 3 commits intorelease-1.0-csefrom
fix/cve

Conversation

@LopatinDmitr
Copy link
Copy Markdown
Contributor

@LopatinDmitr LopatinDmitr commented Mar 24, 2026
edited
Loading

Description

Mitigate CVE:

Also:

  • bump golang version to 1.25.8
  • bump golintci to 2.11.1

Checklist

  • The code is covered by unit tests.
  • e2e tests passed.
  • Documentation updated according to the changes.
  • Changes were tested in the Kubernetes cluster manually.
section: core
type: chore
summary: mitigation CVE-2026-24051, CVE-2025-15558, CVE-2026-25679, CVE-2026-33186, CVE-2026-27142, CVE-2026-27139

@LopatinDmitr LopatinDmitr self-assigned this Mar 24, 2026
@LopatinDmitr LopatinDmitr changed the title chore(core): bump go dependencies for cve fixes chore(core): bump go dependencies for cve fixes in CSE Mar 24, 2026
@LopatinDmitr LopatinDmitr force-pushed the fix/cve branch 10 times, most recently from 8978188 to e69c737 Compare March 26, 2026 12:26
@LopatinDmitr LopatinDmitr changed the title chore(core): bump go dependencies for cve fixes in CSE chore(core): bump go dependencies and go version for cve fixes in CSE Mar 26, 2026
@LopatinDmitr LopatinDmitr force-pushed the fix/cve branch 4 times, most recently from d530a10 to 5cb75aa Compare March 26, 2026 19:58
@LopatinDmitr LopatinDmitr changed the title chore(core): bump go dependencies and go version for cve fixes in CSE chore(core): cve mitigation in CSE Mar 27, 2026
@LopatinDmitr LopatinDmitr marked this pull request as ready for review March 27, 2026 11:26
@LopatinDmitr LopatinDmitr changed the title chore(core): cve mitigation in CSE chore(core): cve mitigation and bump go version in CSE Mar 27, 2026
@LopatinDmitr LopatinDmitr changed the title chore(core): cve mitigation and bump go version in CSE chore(core): cve mitigation and bump golang version in CSE Mar 27, 2026
@LopatinDmitr LopatinDmitr force-pushed the fix/cve branch 2 times, most recently from d84da8d to 613a285 Compare March 27, 2026 13:29
@LopatinDmitr
chore(core): cve mitigation in CSE
fac7261 
Signed-off-by: Dmitry Lopatin <dmitry.lopatin@flant.com>
@LopatinDmitr
chore(core): cve mitigation in CSE
37eb087 
Signed-off-by: Dmitry Lopatin <dmitry.lopatin@flant.com>
@LopatinDmitr
chore(core): cve mitigation in CSE
dc5944c 
Signed-off-by: Dmitry Lopatin <dmitry.lopatin@flant.com>
@LopatinDmitr LopatinDmitr merged commit 5d8c216 into release-1.0-cse Mar 27, 2026
26 of 28 checks passed
@LopatinDmitr LopatinDmitr deleted the fix/cve branch March 27, 2026 16:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@universal-itengineer universal-itengineer universal-itengineer approved these changes

@nevermarine nevermarine Awaiting requested review from nevermarine nevermarine is a code owner

@Isteb4k Isteb4k Awaiting requested review from Isteb4k Isteb4k is a code owner

@yaroslavborbat yaroslavborbat Awaiting requested review from yaroslavborbat yaroslavborbat is a code owner

@diafour diafour Awaiting requested review from diafour diafour is a code owner

@hardcoretime hardcoretime Awaiting requested review from hardcoretime hardcoretime is a code owner

@danilrwx danilrwx Awaiting requested review from danilrwx danilrwx is a code owner

@fl64 fl64 Awaiting requested review from fl64 fl64 is a code owner

Assignees

@LopatinDmitr LopatinDmitr

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@LopatinDmitr @universal-itengineer