Skip to content

Commit

Permalink
Release v0.43.1
Browse files Browse the repository at this point in the history
Signed-off-by: Stephan Renatus <[email protected]>
  • Loading branch information
srenatus committed Sep 7, 2022
1 parent 3e8c754 commit 196c92d
Show file tree
Hide file tree
Showing 4 changed files with 4,276 additions and 1 deletion.
16 changes: 16 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,22 @@
All notable changes to this project will be documented in this file. This
project adheres to [Semantic Versioning](http://semver.org/).

## 0.43.1

This is a security release fixing the following vulnerabilities:

- CVE-2022-36085: Respect unsafeBuiltinMap for 'with' replacements in the compiler

See https://github.com/open-policy-agent/opa/security/advisories/GHSA-f524-rf33-2jjr for all details.

- CVE-2022-27664 and CVE-2022-32190.

Fixed by updating the Go version used in our builds to 1.18.6,
see https://groups.google.com/g/golang-announce/c/x49AQzIVX-s.
Note that CVE-2022-32190 is most likely not relevant for OPA's usage of net/url.
But since these CVEs tend to come up in security assessment tooling regardless,
it's better to get it out of the way.

## 0.43.0

This release contains a number of fixes, enhancements, and performance improvements.
Expand Down
Loading

0 comments on commit 196c92d

Please sign in to comment.