Skip to content

Commit

Permalink
ci(security): filter out kuma from security update (#8098)
Browse files Browse the repository at this point in the history 
Signed-off-by: slonka <slonka@users.noreply.github.com>
  • Loading branch information
@slonka @kumahq
slonka authored and kumahq[bot] committed Oct 23, 2023
1 parent c306d52 commit 3d17290
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion tools/ci/update-vulnerable-dependencies.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ for dep in $(osv-scanner --lockfile=go.mod --json | jq -c '.results[].packages[]
name: $vulnerablePackage,
current: .package.version,
fixedVersions: [.vulnerabilities[].affected[] | select(.package.name == $vulnerablePackage) | .ranges[].events[] | select(.fixed != null) | .fixed] | unique
} | select(.fixedVersions | length > 0)'); do
} | select(.fixedVersions | length > 0) | select(.name != "github.com/kumahq/kuma")'); do
IFS=. read -r currentMajor currentMinor currentPatch <<< "$(jq -r .current <<< "$dep")"
# Update to the first version that's greater than our current version
for version in $(jq -cr .fixedVersions[] <<< "$dep" | sort -V); do # sort supports semver sort
Expand Down

0 comments on commit 3d17290

Please sign in to comment.