Skip to content

Commit 3216956

Browse files
piyush-gargpiyush-garg
committed
Bump tektoncd/pipeline and grpc
This will bump tektoncd/pipeline to v0.50.3 and grpc to v1.57.2 to fix CVE GHSA-qppj-fm5r-hxr3
1 parent e098779 commit 3216956

File tree

9 files changed

+73
-41
lines changed

9 files changed

+73
-41
lines changed

go.mod

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ require (
2525
github.com/pkg/errors v0.9.1
2626
github.com/spf13/cobra v1.7.0
2727
github.com/stretchr/testify v1.8.4
28-
github.com/tektoncd/pipeline v0.50.0
28+
github.com/tektoncd/pipeline v0.50.3
2929
github.com/xanzy/go-gitlab v0.90.0
3030
go.opencensus.io v0.24.0
3131
go.uber.org/zap v1.25.0
@@ -40,7 +40,7 @@ require (
4040
k8s.io/client-go v1.5.2
4141
k8s.io/utils v0.0.0-20230726121419-3b25d923346b
4242
knative.dev/eventing v0.38.0
43-
knative.dev/pkg v0.0.0-20230718152110-aef227e72ead
43+
knative.dev/pkg v0.0.0-20231011201526-df28feae6d34
4444
sigs.k8s.io/yaml v1.3.0
4545
)
4646

@@ -58,6 +58,7 @@ require (
5858
go.uber.org/atomic v1.10.0 // indirect
5959
google.golang.org/genproto/googleapis/api v0.0.0-20230803162519-f966b187b2e5 // indirect
6060
google.golang.org/genproto/googleapis/rpc v0.0.0-20230803162519-f966b187b2e5 // indirect
61+
google.golang.org/grpc v1.57.2 // indirect
6162
k8s.io/kube-openapi v0.0.0-20230718181711-3c0fae5ee9fd // indirect
6263
)
6364

@@ -143,7 +144,6 @@ require (
143144
google.golang.org/api v0.134.0 // indirect
144145
google.golang.org/appengine v1.6.7 // indirect
145146
google.golang.org/genproto v0.0.0-20230803162519-f966b187b2e5 // indirect
146-
google.golang.org/grpc v1.57.0 // indirect
147147
google.golang.org/protobuf v1.31.0 // indirect
148148
gopkg.in/inf.v0 v0.9.1 // indirect
149149
gopkg.in/yaml.v3 v3.0.1

go.sum

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1145,8 +1145,8 @@ github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o
11451145
github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
11461146
github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
11471147
github.com/stvp/go-udp-testing v0.0.0-20201019212854-469649b16807/go.mod h1:7jxmlfBCDBXRzr0eAQJ48XC1hBu1np4CS5+cHEYfwpc=
1148-
github.com/tektoncd/pipeline v0.50.0 h1:bH04XChFOYCwr7Gm6f2NiDkieHUiGohKCGsLe0fxYf0=
1149-
github.com/tektoncd/pipeline v0.50.0/go.mod h1:OjhCfhPQbVvK6GUmIseL2ipjaQ8ILcUerMk4P4sCcHA=
1148+
github.com/tektoncd/pipeline v0.50.3 h1:4QQza8hewF+4wdBLbRw26CDQx0/y58WYfZwQ/xAsvOQ=
1149+
github.com/tektoncd/pipeline v0.50.3/go.mod h1:33ZU30CR8Pbr6Pb4l7+Tz1oPGsJBY5yxyG8Z+ejGO0w=
11501150
github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
11511151
github.com/xanzy/go-gitlab v0.90.0 h1:j8ZUHfLfXdnC+B8njeNaW/kM44c1zw8fiuNj7D+qQN8=
11521152
github.com/xanzy/go-gitlab v0.90.0/go.mod h1:5ryv+MnpZStBH8I/77HuQBsMbBGANtVpLWC15qOjWAw=
@@ -1876,8 +1876,8 @@ google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5v
18761876
google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
18771877
google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
18781878
google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
1879-
google.golang.org/grpc v1.57.0 h1:kfzNeI/klCGD2YPMUlaGNT3pxvYfga7smW3Vth8Zsiw=
1880-
google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
1879+
google.golang.org/grpc v1.57.2 h1:uw37EN34aMFFXB2QPW7Tq6tdTbind1GpRxw5aOX3a5k=
1880+
google.golang.org/grpc v1.57.2/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
18811881
google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
18821882
google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
18831883
google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

vendor/github.com/tektoncd/pipeline/pkg/apis/pipeline/constant.go

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/github.com/tektoncd/pipeline/pkg/apis/pipeline/v1/pipelinerun_validation.go

Lines changed: 5 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/github.com/tektoncd/pipeline/pkg/apis/pipeline/v1/taskrun_validation.go

Lines changed: 5 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/google.golang.org/grpc/internal/transport/http2_server.go

Lines changed: 3 additions & 8 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/google.golang.org/grpc/server.go

Lines changed: 48 additions & 21 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/google.golang.org/grpc/version.go

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

vendor/modules.txt

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -381,7 +381,7 @@ github.com/stoewer/go-strcase
381381
# github.com/stretchr/testify v1.8.4
382382
## explicit; go 1.20
383383
github.com/stretchr/testify/assert
384-
# github.com/tektoncd/pipeline v0.50.0
384+
# github.com/tektoncd/pipeline v0.50.3
385385
## explicit; go 1.19
386386
github.com/tektoncd/pipeline/pkg/apis/config
387387
github.com/tektoncd/pipeline/pkg/apis/pipeline
@@ -572,7 +572,7 @@ google.golang.org/genproto/googleapis/api/httpbody
572572
# google.golang.org/genproto/googleapis/rpc v0.0.0-20230803162519-f966b187b2e5
573573
## explicit; go 1.19
574574
google.golang.org/genproto/googleapis/rpc/status
575-
# google.golang.org/grpc v1.57.0
575+
# google.golang.org/grpc v1.57.2
576576
## explicit; go 1.17
577577
google.golang.org/grpc
578578
google.golang.org/grpc/attributes
@@ -1113,7 +1113,7 @@ knative.dev/eventing/pkg/metrics
11131113
knative.dev/eventing/pkg/metrics/source
11141114
knative.dev/eventing/pkg/observability
11151115
knative.dev/eventing/pkg/observability/client
1116-
# knative.dev/pkg v0.0.0-20230718152110-aef227e72ead => knative.dev/pkg v0.0.0-20230418073056-dfad48eaa5d0
1116+
# knative.dev/pkg v0.0.0-20231011201526-df28feae6d34 => knative.dev/pkg v0.0.0-20230418073056-dfad48eaa5d0
11171117
## explicit; go 1.18
11181118
knative.dev/pkg/apis
11191119
knative.dev/pkg/apis/duck

0 commit comments

Comments
 (0)