Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade trust-dns to fix RUSTSEC-2020-0014 #2464

Closed
LucioFranco opened this issue Apr 27, 2020 · 2 comments
Closed

Upgrade trust-dns to fix RUSTSEC-2020-0014 #2464

LucioFranco opened this issue Apr 27, 2020 · 2 comments
Assignees
@fanatid
Labels
domain: deps Anything related to Vector's dependencies domain: security Anything related to security have: must We must have this feature, it is critical to the project's success. It is high priority. type: task Generic non-code related tasks

Comments

@LucioFranco
Copy link
Contributor

We should upgrade trust-dns to allow us to upgrade our version of rusqulite to avoid this vuln.
@LucioFranco LucioFranco self-assigned this Apr 27, 2020
LucioFranco added a commit that referenced this issue Apr 27, 2020
@LucioFranco
chore(security): Ignore RUSTSEC-2020-0014
3c5dc9a 
This depdencny is only used in a test for our dns server which should
get swapped out very shortly via #2464. This is to unblock CI from
failing.

Signed-off-by: Lucio Franco <[email protected]>
@LucioFranco LucioFranco mentioned this issue Apr 27, 2020
Merged
@LucioFranco LucioFranco mentioned this issue May 5, 2020
Closed
@fanatid fanatid mentioned this issue May 10, 2020
Closed
@LucioFranco LucioFranco mentioned this issue May 19, 2020
Closed
@binarylogic
Copy link
Contributor

Noting, this is blocked by the decision on #2635

@binarylogic binarylogic added domain: deps Anything related to Vector's dependencies domain: security Anything related to security have: must We must have this feature, it is critical to the project's success. It is high priority. type: task Generic non-code related tasks labels Jul 10, 2020
@fanatid fanatid mentioned this issue Jul 10, 2020
Merged
@fanatid
Copy link
Contributor

fanatid commented Jul 10, 2020

trust-dns removed in #2884
Security advisories will be removed in #3009

@fanatid fanatid closed this as completed Jul 10, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@fanatid fanatid

Labels
domain: deps Anything related to Vector's dependencies domain: security Anything related to security have: must We must have this feature, it is critical to the project's success. It is high priority. type: task Generic non-code related tasks
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

chore(networking): Upgrade trust-dns vectordotdev/vector
3 participants
@binarylogic @fanatid @LucioFranco