Release v21.03.0-99-g4a03c144a-slash: fix(cve): resolve cve's in slash (#8760) · hypermodeinc/dgraph

v21.03.0-99-g4a03c144a-slash
4a03c14
Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode
Compare

Choose a tag to compare

Loading

View all tags

v21.03.0-99-g4a03c144a-slash: fix(cve): resolve cve's in slash (#8760)

v21.03.0-99-g4a03c144a-slash
4a03c14
Compare

Choose a tag to compare

Loading

View all tags
Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode

joshua-goldstein tagged this 17 Mar 18:49

Similar to https://github.com/dgraph-io/dgraph/pull/8743 but two
changes.
- github.com/dgraph-io/graphql-transport-ws did not have any CVE's, see
https://github.com/dgraph-io/dgraph/pull/8624:
- Bumping google.golang.org/[email protected] to v1.52.0 caused issues, but
this was not a CVE fix. See
https://github.com/dgraph-io/dgraph/pull/8655

We now have parity with main branch (i.e. equal number and same CVE's on
main and slash).

---------

Co-authored-by: skrdgraph <[email protected]>

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly