1.11.1 / 2025-04-09 #746
Replies: 3 comments 1 reply
-
|
Hello, when is the next release planned? If I build docker image from current master, Trivy image vulnerability scanner seems much happier... v1.11.1 image findings (HIGH): CVE-2025-47907, CVE-2025-22868, CVE-2025-22874 |
Beta Was this translation helpful? Give feedback.
-
|
If these CVEs are affecting the PGW, I will cut a new release immediately. |
Beta Was this translation helpful? Give feedback.
-
|
Hello,
"If these CVEs are affecting the PGW, ..."
I don't think so (I haven't found any usage of it), it would just silence the scanner 🙂
Regards
J. Zemánek
…________________________________
Od: Björn Rabenstein ***@***.***>
Odesláno: úterý 14. října 2025 11:47
Komu: prometheus/pushgateway ***@***.***>
Kopie: Jiří Zemánek ***@***.***>; Comment ***@***.***>
Předmět: Re: [prometheus/pushgateway] 1.11.1 / 2025-04-09 (Discussion #746)
If these CVEs are affecting the PGW, I will cut a new release immediately.
But those scanners usually flag stuff that isn't ever executed.
—
Reply to this email directly, view it on GitHub<#746 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/BQ4BRKLVFEKTYEXWVK2T3X33XTBDBAVCNFSM6AAAAACJD225IWVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTINRXGQYTMNY>.
You are receiving this because you commented.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
|
And it would introduce new, yet unexplored security issues… |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
This discussion was created from the release 1.11.1 / 2025-04-09.
Beta Was this translation helpful? Give feedback.
All reactions