Actions
Bug #21933
closedUpgrade dependencies with security reports in GitHub
Status:
Resolved
Priority:
Normal
Assigned To:
Category:
API
Target version:
Story points:
-
Release:
Release relationship:
Auto
Updated by Lucas Di Pentima 6 months ago
Updates at 1f1cbc1 - branch 21933-deps-upgrade
Test run: developer-run-tests: #4315
- Upgrades
github.com/hashicorp/go-retryablehttp
to address CVE-2024-6104 - Upgrades
rails
to 7.0.8.4 to address CVE-2024-28103 - Replaces
gopkg.in/square/go-jose.v2
withgopkg.in/go-jose/go-jose.v2
v2.6.3 to address CVE-2024-28180
Updated by Lucas Di Pentima 6 months ago
- Status changed from In Progress to Resolved
Applied in changeset arvados|6d78d0d1784001c1b9d18229dce47aa6e15f9ab5.
Actions