Commit d45ad41
authored
Dependency bumps:
- github.com/go-jose/go-jose/v4: v4.0.5 → v4.1.4 (CVE-2026-34986, JWE decryption panic)
- github.com/tektoncd/pipeline: v1.0.0 → v1.0.1 (CVE-2026-33211, git resolver path traversal)
- github.com/sigstore/cosign/v2: v2.5.0 → v2.6.2 (CVE-2025-66506, excessive memory allocation)
- google.golang.org/grpc: v1.71.1 → v1.80.0 (CVE-2026-33186, authz bypass via missing leading slash)
Signed-off-by: Shubham Bhardwaj <shubbhar@redhat.com>
1 parent 1bf4411 commit d45ad41
4,420 files changed
Lines changed: 365529 additions & 238137 deletions
File tree
- .github/workflows
- pkg/chains/signing/x509
- test
- vendor
- cel.dev/expr
- cloud.google.com/go
- auth
- credentials
- impersonate
- internal/impersonate
- grpctransport
- httptransport
- internal
- retry
- transport
- headers
- trustboundary
- compute/metadata
- iam
- apiv1/iampb
- internal
- kms
- apiv1
- kmspb
- internal
- longrunning
- monitoring/internal
- storage
- experimental
- internal
- apiv2
- storagepb
- github.com
- AzureAD/microsoft-authentication-library-for-go/apps
- confidential
- internal
- base
- storage
- local
- oauth
- ops
- accesstokens
- authority
- managedidentity
- public
- Azure
- azure-sdk-for-go/sdk
- azcore
- arm/internal/resource
- internal
- exported
- policy
- runtime
- azidentity
- internal
- errorinfo
- log
- temporal
- security/keyvault
- azkeys
- internal
- go-ansiterm
- winterm
- GoogleCloudPlatform/opentelemetry-operations-go
- exporter/metric
- internal/resourcemapping
- ProtonMail/go-crypto
- bitcurves
- brainpool
- eax
- internal/byteutil
- ocb
- openpgp
- aes/keywrap
- armor
- ecdh
- ecdsa
- ed25519
- ed448
- eddsa
- elgamal
- errors
- internal
- algorithm
- ecc
- encoding
- packet
- s2k
- x25519
- x448
- antlr4-go/antlr/v4
- awslabs/amazon-ecr-credential-helper/ecr-login
- api
- config
- aws
- aws-sdk-go-v2
- aws
- middleware
- retry
- signer/v4
- transport/http
- config
- credentials
- logincreds
- feature/ec2/imds
- internal
- configsources
- endpoints
- awsrulesfn
- v2
- ini
- service
- ecrpublic
- internal/endpoints
- ecr
- internal/endpoints
- types
- internal
- accept-encoding
- presigned-url
- kms
- internal/endpoints
- types
- signin
- internal/endpoints
- types
- ssooidc
- internal/endpoints
- types
- sso
- internal/endpoints
- sts
- internal/endpoints
- types
- aws-sdk-go
- aws
- auth/bearer
- awserr
- awsutil
- client
- metadata
- corehandlers
- credentials
- crr
- csm
- defaults
- ec2metadata
- endpoints
- request
- session
- signer/v4
- service
- dynamodb
- dynamodbattribute
- expression
- ssooidc
- sso
- sts
- smithy-go
- endpoints
- private/rulesfn
- metrics
- middleware
- transport/http
- buildkite
- agent/v3
- api
- internal/agenthttp
- logger
- version
- go-pipeline
- roko
- cenkalti/backoff/v5
- cloudflare/circl
- dh
- x25519
- x448
- ecc/goldilocks
- internal
- conv
- sha3
- math
- fp25519
- fp448
- mlsbset
- sign
- ed25519
- ed448
- cncf/xds/go
- udpa
- annotations
- type/v1
- xds
- annotations/v3
- core/v3
- data/orca/v3
- service/orca/v3
- type
- matcher/v3
- v3
- containerd/stargz-snapshotter/estargz
- coreos/go-oidc/v3/oidc
- docker
- cli
- cli/config
- configfile
- credentials
- memorystore
- types
- docker-credential-helpers/client
- emicklei/go-restful/v3
- envoyproxy
- go-control-plane/envoy
- admin/v3
- config
- accesslog/v3
- bootstrap/v3
- cluster/v3
- common
- matcher/v3
- mutation_rules/v3
- core/v3
- endpoint/v3
- listener/v3
- metrics/v3
- overload/v3
- rbac/v3
- route/v3
- tap/v3
- trace/v3
- data/accesslog/v3
- extensions
- clusters/aggregate/v3
- filters
- http/router/v3
- network/http_connection_manager/v3
- load_balancing_policies
- client_side_weighted_round_robin/v3
- common/v3
- transport_sockets/tls/v3
- service/discovery/v3
- type
- http/v3
- matcher/v3
- metadata/v3
- protoc-gen-validate/validate
- fxamacker/cbor/v2
- go-chi/chi
- middleware
- v5
- middleware
- go-jose/go-jose
- v3
- cipher
- json
- jwt
- v4
- cipher
- go-logr/logr
- funcr
- go-openapi
- analysis
- internal
- debug
- flatten
- normalize
- operations
- replace
- schutils
- sortref
- errors
- jsonpointer
- jsonreference
- internal
- loads
- runtime
- client
- logger
- middleware
- denco
- header
- untyped
- security
- yamlpc
- spec
- strfmt
- swag
- cmdutils
- conv
- fileutils
- jsonname
- jsonutils
- adapters
- ifaces
- stdlib/json
- loading
- mangling
- netutils
- stringutils
- typeutils
- yamlutils
- validate
- go-viper/mapstructure/v2
- golang-jwt/jwt/v5
- golang/protobuf/proto
- googleapis/gax-go/v2
- apierror
- internal
- google
- cel-go
- cel
- templates
- checker
- decls
- common
- decls
- env
- stdlib
- types
- pb
- interpreter
- parser
- certificate-transparency-go
- client
- jsonclient
- loglist3
- x509util
- x509
- pkix
- gnostic-models
- compiler
- jsonschema
- openapiv2
- openapiv3
- go-containerregistry/pkg
- name
- v1
- google
- layout
- mutate
- remote
- transport
- go-github
- v55
- github
- v73
- github
- gofuzz
- grpc-ecosystem/grpc-gateway/v2
- protoc-gen-openapiv2/options
- runtime
- hashicorp
- go-retryablehttp
- go-secure-stdlib/parseutil
- go-sockaddr
- hcl
- hcl/parser
- vault/api
- cliconfig
- tokenhelper
- in-toto/attestation/go
- predicates/provenance/v1
- v1
- jellydator/ttlcache/v3
- josharian/intern
- klauspost/compress
- flate
- fse
- huff0
- internal
- le
- snapref
- zstd
- letsencrypt/boulder
- core
- proto
- goodkey
- identifier
- probs
- revocation
- strictyaml
- mailru/easyjson
- buffer
- jlexer
- jwriter
- moby/term
- windows
- modern-go/reflect2
- natefinch/atomic
- olekukonko
- errors
- ll
- lh
- lx
- tablewriter
- pkg
- twwarp
- twwidth
- renderer
- tw
- opencontainers/image-spec/specs-go
- opentracing/opentracing-go
- ext
- log
- pelletier/go-toml/v2
- prometheus
- client_golang/prometheus
- internal
- promhttp
- internal
- common
- expfmt
- model
- procfs
- internal
- fs
- util
- sagikazarmark/locafero
- secure-systems-lab/go-securesystemslib/signerverifier
- segmentio/ksuid
- sigstore
- cosign/v2
- cmd/cosign/cli
- fulcio
- options
- internal
- auth
- pkg/cosign
- ui
- pkg
- cosign
- bundle
- env
- git/github
- oci/remote
- providers/github
- signature
- types
- protobuf-specs/gen/pb-go
- bundle/v1
- common/v1
- dsse
- rekor/v1
- trustroot/v1
- rekor-tiles/v2
- internal/safeint
- pkg
- client
- write
- generated/protobuf
- note
- types/verifier
- verify
- rekor/pkg
- generated
- client
- entries
- index
- pubkey
- tlog
- models
- internal/log
- log
- pki
- pkitypes
- x509
- types
- dsse/v0.0.1
- hashedrekord/v0.0.1
- intoto
- v0.0.1
- v0.0.2
- rekord/v0.0.1
- util
- verify
- sigstore-go/pkg
- bundle
- root
- sign
- tlog
- tuf
- repository
- util
- verify
- sigstore/pkg
- cryptoutils
- goodkey
- oauthflow
- signature
- kms
- azure
- gcp
- hashivault
- timestamp-authority
- pkg/verification
- v2
- pkg/verification
- skratchdot/open-golang
- open
- sourcegraph/conc
- internal/multierror
- iter
- pool
- spf13
- afero
- mem
- cast
- internal
- cobra
- pflag
- viper
- internal/encoding/yaml
- spiffe/go-spiffe/v2
- bundle
- jwtbundle
- spiffebundle
- x509bundle
- proto/spiffe/workload
- svid
- jwtsvid
- x509svid
- workloadapi
- stoewer/go-strcase
- stretchr/testify
- assert
- yaml
- mock
- tektoncd/pipeline
- pkg/apis
- config
- pipeline
- v1beta1
- v1
- test
- theupdateframework/go-tuf/v2/metadata
- config
- fetcher
- updater
- transparency-dev/formats
- log
- vbatts/tar-split/archive/tar
- zeebo/errs
- gitlab.com/gitlab-org/api/client-go
- go.mongodb.org/mongo-driver
- bson/bsonrw
- mongo
- version
- x/mongo/driver/topology
- go.opentelemetry.io
- auto/sdk
- internal/telemetry
- contrib
- detectors/gcp
- instrumentation
- google.golang.org/grpc/otelgrpc
- internal
- net/http/otelhttp
- internal
- request
- semconvutil
- semconv
- otel
- attribute
- internal
- xxhash
- baggage
- codes
- internal
- global
- metric
- noop
- propagation
- sdk
- internal/x
- metric
- exemplar
- internal
- aggregate
- observ
- reservoir
- x
- metricdata
- resource
- semconv
- internal/v2
- v1.17.0
- httpconv
- v1.20.0
- v1.24.0
- v1.26.0
- v1.37.0
- httpconv
- otelconv
- rpcconv
- trace
- internal/telemetry
- noop
- go.uber.org/zap
- zapcore
- go.yaml.in/yaml
- v2
- v3
- golang.org/x
- crypto
- argon2
- blake2b
- chacha20poly1305
- chacha20
- curve25519
- ed25519
- openpgp/s2k
- pkcs12
- salsa20/salsa
- sha3
- ssh
- agent
- knownhosts
- exp
- maps
- slices
- mod
- modfile
- module
- semver
- sumdb
- dirhash
- note
- net
- context
- http2
- internal
- httpcommon
- socks
- trace
- oauth2
- authhandler
- google
- externalaccount
- internal
- impersonate
- stsexchange
- internal
- jws
- jwt
- sync/errgroup
- sys
- cpu
- plan9
- unix
- windows
- registry
- term
- text
- encoding/unicode
- unicode/bidi
- time/rate
- tools
- go
- analysis
- passes
- appends
- asmdecl
- assign
- atomicalign
- atomic
- bools
- buildssa
- buildtag
- cgocall
- composite
- copylock
- ctrlflow
- deepequalerrors
- defers
- directive
- errorsas
- fieldalignment
- framepointer
- httpresponse
- ifaceassert
- inspect
- internal
- analysisutil
- ctrlflowinternal
- loopclosure
- lostcancel
- nilfunc
- nilness
- pkgfact
- printf
- reflectvaluecompare
- shadow
- shift
- sigchanyzer
- slog
- sortslice
- stdmethods
- stdversion
- stringintconv
- structtag
- testinggoroutine
- tests
- timeformat
- unmarshal
- unreachable
- unsafeptr
- unusedresult
- unusedwrite
- waitgroup
- ast
- astutil
- edge
- inspector
- buildutil
- cfg
- loader
- packages
- ssa
- ssautil
- types
- objectpath
- typeutil
- imports
- internal
- analysisinternal
- analysis
- analyzerutil
- typeindex
- astutil
- cursor
- cfginternal
- event
- core
- label
- gcimporter
- imports
- modindex
- moreiters
- packagepath
- packagesinternal
- refactor
- ssainternal
- stdlib
- typeparams
- typesinternal
- typeindex
- versions
- refactor/satisfy
- google.golang.org
- api
- iamcredentials/v1
- idtoken
- internal
- gensupport
- option/internaloption
- storage/v1
- grpc
- attributes
- balancer
- base
- endpointsharding
- grpclb
- grpc_lb_v1
- lazy
- leastrequest
- pickfirst/internal
Some content is hidden
Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
42 | 42 | | |
43 | 43 | | |
44 | 44 | | |
45 | | - | |
46 | | - | |
| 45 | + | |
| 46 | + | |
47 | 47 | | |
48 | 48 | | |
49 | 49 | | |
| |||
Large diffs are not rendered by default.
Large diffs are not rendered by default.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
202 | 202 | | |
203 | 203 | | |
204 | 204 | | |
205 | | - | |
| 205 | + | |
206 | 206 | | |
207 | 207 | | |
208 | 208 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
49 | 49 | | |
50 | 50 | | |
51 | 51 | | |
52 | | - | |
53 | | - | |
| 52 | + | |
| 53 | + | |
| 54 | + | |
| 55 | + | |
54 | 56 | | |
55 | 57 | | |
56 | 58 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
237 | 237 | | |
238 | 238 | | |
239 | 239 | | |
240 | | - | |
| 240 | + | |
241 | 241 | | |
242 | 242 | | |
243 | 243 | | |
| |||
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
0 commit comments