Skip to content

chore(pulsar): bump github.com/apache/pulsar-client-go from 0.10.0 to 0.14.0 in /modules/pulsar #3100

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 14, 2025
Merged

chore(pulsar): bump github.com/apache/pulsar-client-go from 0.10.0 to 0.14.0 in /modules/pulsar #3100

merged 1 commit into from
Apr 14, 2025

Conversation

@mdelapenya
Copy link
Member

@mdelapenya mdelapenya commented Apr 14, 2025

What does this PR do?

Bumps the pulsar-go client to mitigate the security issue with jwt-go: allows excessive memory allocation during header parsing

Why is it important?

Address security issue

Related issues

@mdelapenya
chore(pulsar): bump pulsar-go client to mitigate "jwt-go allows exces…
ab25609 
…sive memory allocation during header parsing"
@mdelapenya mdelapenya requested a review from a team as a code owner April 14, 2025 08:38
@mdelapenya mdelapenya added dependencies Dependencies or external services security Vulnerabilities in dependencies or in the library itself labels Apr 14, 2025
@mdelapenya mdelapenya self-assigned this Apr 14, 2025
@netlify
Copy link

netlify bot commented Apr 14, 2025
edited
Loading

Deploy Preview for testcontainers-go ready!

Name Link
🔨 Latest commit ab25609
🔍 Latest deploy log https://app.netlify.com/sites/testcontainers-go/deploys/67fcc99c7045c70008bdf7da
😎 Deploy Preview https://deploy-preview-3100--testcontainers-go.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@mdelapenya mdelapenya changed the title chore(pulsar): bump pulsar-go client to mitigate "jwt-go allows excessive memory allocation during header parsing" chore(pulsar): bump github.com/apache/pulsar-client-go from 0.10.0 to 0.14.0 Apr 14, 2025
@mdelapenya mdelapenya merged commit 9713f8f into testcontainers:main Apr 14, 2025
17 checks passed
@mdelapenya mdelapenya deleted the jwt-go-pulsar branch April 14, 2025 09:24
@mdelapenya mdelapenya changed the title chore(pulsar): bump github.com/apache/pulsar-client-go from 0.10.0 to 0.14.0 chore(pulsar): bump github.com/apache/pulsar-client-go in /modules/pulsar from 0.10.0 to 0.14.0 Apr 14, 2025
@mdelapenya mdelapenya changed the title chore(pulsar): bump github.com/apache/pulsar-client-go in /modules/pulsar from 0.10.0 to 0.14.0 chore(pulsar): bump github.com/apache/pulsar-client-go from 0.10.0 to 0.14.0 in /modules/pulsar Apr 14, 2025
mdelapenya added a commit to mdelapenya/testcontainers-go that referenced this pull request Apr 15, 2025
@mdelapenya
Merge branch 'main' into toxyproxy-module
58d47e1 
* main:
  chore(deps): bump golang.org/x/crypto in /modules/aerospike (testcontainers#3105)
  chore(ci): run codeql on the modified modules (testcontainers#3103)
  docs: fix reference to container types in Run function (testcontainers#3102)
  chore(deps): bump github.com/golang-jwt/jwt/v5 in /modules/pulsar (testcontainers#3101)
  chore(pulsar): bump github.com/apache/pulsar-client-go from 0.10.0 to 0.14.0 (testcontainers#3100)
  chore(clickhouse): bump github.com/ClickHouse/clickhouse-go/v2 from 2.20.0 to 2.34.0 in /modules/clickhouse (testcontainers#3099)
  chore(deps): bump github/codeql-action from 3.28.13 to 3.28.15 (testcontainers#3097)
  chore(deps): bump golang.org/x/crypto from 0.31.0 to 0.37.0 (testcontainers#3098)
  feat(aerospike): add Aerospike module (testcontainers#3094)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@mdelapenya mdelapenya

Labels

dependencies Dependencies or external services security Vulnerabilities in dependencies or in the library itself

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mdelapenya