Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Housekeeping] upgrade github.com/mattn/go-sqlite3, golang.org/x/net #6152

Open
2 tasks done
niole opened this issue Jan 8, 2025 · 1 comment
Open
2 tasks done

[Housekeeping] upgrade github.com/mattn/go-sqlite3, golang.org/x/net #6152

niole opened this issue Jan 8, 2025 · 1 comment
Labels
housekeeping Issues that help maintain flyte and keep it tech-debt free

Comments

@niole
Copy link

niole commented Jan 8, 2025

Describe the issue

upgrade github.com/mattn/go-sqlite3 in datacatalog to at least 1.14.24
upgrade golang.org/x/net to at least 0.33.0

What if we do not do this?

You will have unmitigated CVEs in your codebase. For the sqlite3 dep: CVE-2023-7104, for the x/net dep: https://nvd.nist.gov/vuln/detail/CVE-2024-45338

Related component(s)

for x/net I believe it's all components, for sqlite I believe it's just datacatalog

Are you sure this issue hasn't been raised already?

  • Yes

Have you read the Code of Conduct?

  • Yes
@niole niole added the housekeeping Issues that help maintain flyte and keep it tech-debt free label Jan 8, 2025
@welcome Welcome
Copy link

welcome bot commented Jan 8, 2025

Thank you for opening your first issue here! 🛠

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
housekeeping Issues that help maintain flyte and keep it tech-debt free
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@niole