Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgx/v5 v5.4.3 -> v5.5.5 / pgproto3 v2.3.2 -> v2.3.3 #5155

Merged
merged 1 commit into from
Apr 4, 2024
Merged

Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgx/v5 v5.4.3 -> v5.5.5 / pgproto3 v2.3.2 -> v2.3.3 #5155

merged 1 commit into from
Apr 4, 2024

Conversation

ddl-ebrown
Copy link
Contributor

@ddl-ebrown ddl-ebrown commented Mar 30, 2024
edited
Loading

Tracking issue

https://github.com/flyteorg/flyte/issues/

Why are the changes needed?

  • pgconn v1.14.1 -> v1.14.3

  • pgx v5.4.3 -> v5.5.5

  • pgproto3 v2.3.2 -> v2.3.3

  • Resolves vuln CVE-2024-27304

What changes were proposed in this pull request?

How was this patch tested?

Setup process

Screenshots

Check all the applicable boxes

  • I updated the documentation accordingly.
  • All new and existing tests passed.
  • All commits are signed-off.

Related PRs

Docs link

@dosubot dosubot bot added size:XS This PR changes 0-9 lines, ignoring generated files. security Issues related to Security improvements labels Mar 30, 2024
@codecov Codecov
Copy link

codecov bot commented Mar 30, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 59.11%. Comparing base (94f4343) to head (407df61).
Report is 1 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master    #5155   +/-   ##
=======================================
  Coverage   59.11%   59.11%           
=======================================
  Files         645      645           
  Lines       55576    55576           
=======================================
  Hits        32854    32854           
  Misses      20129    20129           
  Partials     2593     2593
Flag Coverage Δ
unittests 59.11% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@dosubot dosubot bot added size:M This PR changes 30-99 lines, ignoring generated files. and removed size:XS This PR changes 0-9 lines, ignoring generated files. labels Mar 30, 2024
@ddl-ebrown ddl-ebrown changed the title Upgrade jackc/pgproto3 v2.3.2 -> v2.3.3 Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgproto3 v2.3.2 -> v2.3.3 Mar 30, 2024
@dosubot dosubot bot added size:L This PR changes 100-499 lines, ignoring generated files. and removed size:M This PR changes 30-99 lines, ignoring generated files. labels Mar 30, 2024
@ddl-ebrown ddl-ebrown changed the title Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgproto3 v2.3.2 -> v2.3.3 Upgrade jackc/pgconn v1.14.1 -> v1.14.3 / pgx/v5 v5.4.3 -> v5.5.5 / pgproto3 v2.3.2 -> v2.3.3 Mar 30, 2024
@dosubot dosubot bot added size:M This PR changes 30-99 lines, ignoring generated files. and removed size:L This PR changes 100-499 lines, ignoring generated files. labels Apr 1, 2024
pingsutw
pingsutw previously approved these changes Apr 1, 2024
View reviewed changes
@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Apr 1, 2024
@ddl-ebrown
Upgrade jackc postgres libraries
407df61 
 - pgconn v1.14.1 -> v1.14.3
 - pgx v5.4.3 -> v5.5.5
 - pgproto3 v2.3.2 -> v2.3.3

 - Resolves vuln CVE-2024-27304

Signed-off-by: ddl-ebrown <ethan.brown@dominodatalab.com>
@ddl-ebrown ddl-ebrown mentioned this pull request Apr 3, 2024
Closed
@eapolinario eapolinario merged commit 5b5c238 into flyteorg:master Apr 4, 2024
48 checks passed
@ddl-ebrown ddl-ebrown deleted the update-pgproto3 branch April 4, 2024 00:06
Jeinhaus pushed a commit to Jeinhaus/flyte that referenced this pull request Apr 8, 2024
@ddl-ebrown @Jeinhaus
Upgrade jackc postgres libraries (flyteorg#5155)
8701437 
- pgconn v1.14.1 -> v1.14.3
 - pgx v5.4.3 -> v5.5.5
 - pgproto3 v2.3.2 -> v2.3.3

 - Resolves vuln CVE-2024-27304

Signed-off-by: ddl-ebrown <ethan.brown@dominodatalab.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@eapolinario eapolinario eapolinario approved these changes

@pingsutw pingsutw pingsutw left review comments

Assignees
No one assigned
Labels
lgtm This PR has been approved by a maintainer security Issues related to Security improvements size:M This PR changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ddl-ebrown @eapolinario @pingsutw