artin/sourcegraph
1
0
Fork 0
mirror of https://github.com/sourcegraph/sourcegraph.git synced 2026-02-06 11:01:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore(security) : upgrade src-cli version to address CVE (#63750)

Browse Source 
Docker images executor, executor-kubernetes, bundled-executor has
reported high/critical CVE-2024-24790 , CVE-2023-45288 reported on
golang stdlib. Upon testing, src version 5.3.0 was using `1.20.x` as per
e8e79e0311

This pull request attempts to upgrade src version to 5.4.0

## Test plan

- CI 🟢 
- src version should report 5.4.0 (I built the image locally and tested
it)
`docker run --platform linux/amd64 -it --entrypoint /bin/sh
executor:candidate`

## Changelog

<!-- OPTIONAL; info at
https://www.notion.so/sourcegraph/Writing-a-changelog-entry-dd997f411d524caabf0d8d38a24a878c
-->

Upgrade src-cli version to 5.4.0 to address CVE-2024-24790 ,
CVE-2023-45288
This commit is contained in:
Shivasurya 2024-07-10 09:57:16 -04:00 committed by GitHub
parent d3df71ef98
commit 9e95499625
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
dev/tool_deps.bzl
View File

@ -3,7 +3,7 @@
load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive", "http_file")
DOCSITE_VERSION = "1.9.4"
SRC_CLI_VERSION = "5.3.0"
SRC_CLI_VERSION = "5.4.0"
KUBEBUILDER_ASSETS_VERSION = "1.28.0"
CTAGS_VERSION = "6.0.0.2783f009"
PACKER_VERSION = "1.8.3"
@ -104,21 +104,21 @@ def tool_deps():
http_archive(
name = "src-cli-linux-amd64",
build_file_content = SRC_CLI_BUILDFILE.format("linux-amd64"),
sha256 = "417a4329b0abf557a5fc36eedb626c53aaf886e48a49a594d98c095beaba0d02",
sha256 = "30973bab8258f49fd550e145ae2b398ef4cfbddc22716693d9360cab951dc5eb",
url = "https://github.com/sourcegraph/src-cli/releases/download/{0}/src-cli_{0}_linux_amd64.tar.gz".format(SRC_CLI_VERSION),
)
http_archive(
name = "src-cli-darwin-amd64",
build_file_content = SRC_CLI_BUILDFILE.format("darwin-amd64"),
sha256 = "10c24717d97d54c7380011ce297bbd398242408ba11ad55b0952eb96a08bf84c",
sha256 = "ad5f13fbf63716c895ffc745e6247d7506feed1a8f120ee13742d516838b5474",
url = "https://github.com/sourcegraph/src-cli/releases/download/{0}/src-cli_{0}_darwin_amd64.tar.gz".format(SRC_CLI_VERSION),
)
http_archive(
name = "src-cli-darwin-arm64",
build_file_content = SRC_CLI_BUILDFILE.format("darwin-arm64"),
sha256 = "d2100e9dce86036c405490b89ab0dec40ee427884dead883c4ba69cc474caf45",
sha256 = "b507b490a46243679f9ed0d6711429ceb5995f23fadf23a856b5cbc38adafbbc",
url = "https://github.com/sourcegraph/src-cli/releases/download/{0}/src-cli_{0}_darwin_arm64.tar.gz".format(SRC_CLI_VERSION),
)