From 1005a7718e497f689d17e4c9e7c29d35df7ac153 Mon Sep 17 00:00:00 2001 From: Samir Shetty Date: Thu, 25 Jul 2024 13:58:06 -0700 Subject: [PATCH 1/2] Update CHANGELOG --- CHANGELOG.md | 15 +++++++++------ 1 file changed, 9 insertions(+), 6 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index c14cf6952..fdef06ff4 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -6,13 +6,15 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0. ## [Unreleased] -### Security -- Update golang.org/x/net to v0.24.0 - ### Changed - Nothing should go in this section, please add to the latest unreleased version (and update the corresponding date), or add a new version. +## [1.7.24] - 2024-07-25 + +### Security +- Update golang.org/x/net to v0.24.0 + ## [1.7.23] - 2024-03-21 ### Security @@ -33,7 +35,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0. ### Security - Upgrade to go 1.21 (CNJR-3417) -- Updated golang.org/x/net to v0.19.0, github.com/go-sql-driver/mysql to v1.7.1, +- Updated golang.org/x/net to v0.19.0, github.com/go-sql-driver/mysql to v1.7.1, golang:1.19-buster to golang:1.21.3-bullseye, golang:1.19 to golang:1.20.10, and ruby:3.0.5-slim-bullseye to ruby:3.0.6-bullseye - Updated golang.org/x/net to v0.17.0 to remove CVE-2023-39325 and CVE-2023-44487 (CNJR-3020) @@ -84,7 +86,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0. ## [1.7.14] - 2022-08-17 ### Security -- Added replace & exclude statements to go.mod to remove dependency on +- Added replace & exclude statements to go.mod to remove dependency on github.com/emicklei/go-restful v2.8.5 to resolve CVE-2022-1996 [cyberark/secretless-broker#1473](https://github.com/cyberark/secretless-broker/pull/1473) @@ -735,7 +737,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0. ### Added - The first tagged version. -[Unreleased]: https://github.com/cyberark/secretless-broker/compare/v1.7.23...HEAD +[Unreleased]: https://github.com/cyberark/secretless-broker/compare/v1.7.24...HEAD [0.2.0]: https://github.com/cyberark/secretless-broker/compare/v0.1.0...v0.2.0 [0.3.0]: https://github.com/cyberark/secretless-broker/compare/v0.2.0...v0.3.0 [0.4.0]: https://github.com/cyberark/secretless-broker/compare/v0.3.0...v0.4.0 @@ -784,3 +786,4 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0. [1.7.21]: https://github.com/cyberark/secretless-broker/compare/v1.7.20...v1.7.21 [1.7.22]: https://github.com/cyberark/secretless-broker/compare/v1.7.21...v1.7.22 [1.7.23]: https://github.com/cyberark/secretless-broker/compare/v1.7.22...v1.7.23 +[1.7.24]: https://github.com/cyberark/secretless-broker/compare/v1.7.23...v1.7.24 From 322f526f521d6125c445d019eb074a272e0b33b0 Mon Sep 17 00:00:00 2001 From: Samir Shetty Date: Thu, 25 Jul 2024 14:02:34 -0700 Subject: [PATCH 2/2] Run go mod tidy --- go.sum | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/go.sum b/go.sum index 8933c1962..9766c4f34 100644 --- a/go.sum +++ b/go.sum @@ -123,10 +123,10 @@ github.com/cpuguy83/go-md2man/v2 v2.0.1 h1:r/myEWzV9lfsM1tFLgDyu0atFtJ1fXn261LKY github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o= github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E= github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E= -github.com/cyberark/conjur-api-go v0.11.4 h1:s2bbeJhb+Szosqjr4DX3BaQiZEsKKAFhn35TRqZeLIY= -github.com/cyberark/conjur-api-go v0.11.4/go.mod h1:WjXCREpdXyU69k5ZwYQMA3k+VkPwMznr22fKSMD5OUE= -github.com/cyberark/conjur-authn-k8s-client v0.26.1 h1:eod150C7iBDXu1AdFF6si7RH93M0NKpt97qbgEKYWCA= -github.com/cyberark/conjur-authn-k8s-client v0.26.1/go.mod h1:Jqbs1zWeaG2MY0jFNlmpGRKg3m5XqXBYVR2Kw88oXDk= +github.com/cyberark/conjur-api-go v0.12.3 h1:LzSXJBKO36WJEcFceXYyb3y9lxHwx5WMhx/YH+RW88M= +github.com/cyberark/conjur-api-go v0.12.3/go.mod h1:FnzNn6mPwTOyBueSDnu1J4K47J0sYHXTMehaqIV/GxY= +github.com/cyberark/conjur-authn-k8s-client v0.26.2 h1:HEjS7f6wpItnPbse6CQ/Dp3aHGeXTgnKjpl1RPdE2sA= +github.com/cyberark/conjur-authn-k8s-client v0.26.2/go.mod h1:C57WW0NZyinwsVuRFSKEHkrxw0L3kXZ5Lb7BAosOxdA= github.com/cyberark/conjur-opentelemetry-tracer v0.0.2 h1:HMC5fDg6tyIlNJq4jMdMs0nGt0Ml23U+KUIyld4f+tY= github.com/cyberark/conjur-opentelemetry-tracer v0.0.2/go.mod h1:hn2e6WYNnB6lPKbnLg1jHZkBNT4mgH3/u7kH1hK60A0= github.com/cyberark/summon v0.9.6 h1:5QwicMbYK+JY383qoV9EfcZWwsiZFtf6zZa3pyp7Odg=