Skip to content

Update minimal go version to fix stdlib CVEs#868

Closed
bergmannf wants to merge 4 commits intoopenshift:mainfrom
bergmannf:update-deps
Closed

Update minimal go version to fix stdlib CVEs#868
bergmannf wants to merge 4 commits intoopenshift:mainfrom
bergmannf:update-deps

Conversation

@bergmannf
Copy link
Contributor

@bergmannf bergmannf commented Dec 16, 2025

Updating minimal go version to build so fix CVE-2025-61727

What type of PR is this?

  • fix (Bug Fix)
  • feat (New Feature)
  • docs (Documentation)
  • test (Test Coverage)
  • chore (Clean Up / Maintenance Tasks)
  • other (Anything that doesn't fit the above)

What this PR does / Why we need it?

Which Jira/Github issue(s) does this PR fix?

  • Related Issue #
  • Closes #

Special notes for your reviewer

Unit Test Coverage

Guidelines

  • If it's a new sub-command or new function to an existing sub-command, please cover at least 50% of the code
  • If it's a bug fix for an existing sub-command, please cover 70% of the code

Test coverage checks

  • Added unit tests
  • Created jira card to add unit test
  • This PR may not need unit tests

Pre-checks (if applicable)

  • Ran unit tests locally
  • Validated the changes in a cluster
  • Included documentation changes with PR
  • Backward compatible

/label tide/merge-method-squash

@openshift-ci openshift-ci bot added the tide/merge-method-squash Denotes a PR that should be squashed by tide when it merges. label Dec 16, 2025
@openshift-ci openshift-ci bot requested review from MitaliBhalla and bmeng December 16, 2025 08:54
@openshift-ci
Copy link
Contributor

openshift-ci bot commented Dec 16, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: bergmannf
Once this PR has been reviewed and has the lgtm label, please assign wanghaoran1988 for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@bergmannf bergmannf force-pushed the update-deps branch 2 times, most recently from 65eea51 to 05f5c36 Compare December 16, 2025 10:05
@openshift-ci
Copy link
Contributor

openshift-ci bot commented Dec 16, 2025

@bergmannf: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/images 4d089e3 link true /test images
ci/prow/lint 4d089e3 link true /test lint
ci/prow/build 4d089e3 link true /test build
ci/prow/test 4d089e3 link true /test test
ci/prow/coverage 4d089e3 link true /test coverage

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@bergmannf
Copy link
Contributor Author

bergmannf commented Dec 17, 2025

We'll need to wait for RHEL to get either 1.24.11 or 1.25.5 for this to work with the images.

@bergmannf bergmannf closed this Dec 17, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bmeng bmeng Awaiting requested review from bmeng

@MitaliBhalla MitaliBhalla Awaiting requested review from MitaliBhalla

Assignees

No one assigned

Labels

tide/merge-method-squash Denotes a PR that should be squashed by tide when it merges.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@bergmannf