milvus icon indicating copy to clipboard operation
milvus copied to clipboard

Published 20 hours ago verified publisher icon milvus-io

enhance: Fix CVE-2025-63811

Open liliu-z opened this issue 2 weeks ago • 6 comments

Fix CVE-2025-63811 pr: #45659

liliu-z avatar Nov 18 '25 14:11 liliu-z

[ci-v2-notice] Notice: We are gradually rolling out the new ci-v2 system.

  • Legacy CI jobs remain unaffected, you can just ignore ci-v2 if you don't want to run it.
  • Additional "ci-v2/*" checkers will run for this PR to ensure the new ci-v2 system is working as expected.
  • For tests that exist in both v1 and v2, passing in either system is considered PASS.

To rerun ci-v2 checks, comment with:

  • /ci-rerun-code-check // for ci-v2/code-check
  • /ci-rerun-build // for ci-v2/build
  • /ci-rerun-ut-integration // for ci-v2/ut-integration
  • /ci-rerun-ut-go // for ci-v2/ut-go
  • /ci-rerun-ut-cpp // for ci-v2/ut-cpp
  • /ci-rerun-ut // for all ci-v2/ut-integration, ci-v2/ut-go, ci-v2/ut-cpp
  • /ci-rerun-e2e-arm // for ci-v2/e2e-arm

If you have any questions or requests, please contact @zhikunyao.

sre-ci-robot avatar Nov 18 '25 14:11 sre-ci-robot

[INFO] PR Label Summary by Default [WARNING] No dependent PR reference found

  • Target branch '2.6' requires a PR merged to master first
  • Please add reference in format 'pr: #number'

[WARNING] Milestone not set

  • PR: #45658
  • Title: enhance: Fix CVE-2025-63811 Please set a milestone for better release tracking

You can set milestone by commenting: /set-milestone Example: /set-milestone 2.5.0

Use /refresh-label to update related check and label manually

sre-ci-robot avatar Nov 18 '25 14:11 sre-ci-robot

Codecov Report

:white_check_mark: All modified and coverable lines are covered by tests. :white_check_mark: Project coverage is 76.63%. Comparing base (cb08db0) to head (81c2de7). :warning: Report is 263 commits behind head on 2.6.

Additional details and impacted files

Impacted file tree graph

@@            Coverage Diff             @@
##              2.6   #45658      +/-   ##
==========================================
- Coverage   76.99%   76.63%   -0.37%     
==========================================
  Files        1700     1856     +156     
  Lines      262533   287652   +25119     
==========================================
+ Hits       202142   220441   +18299     
- Misses      53550    59863    +6313     
- Partials     6841     7348     +507
Components Coverage Δ
Client 78.03% <65.76%> (-0.11%) :arrow_down:
Core 83.66% <79.17%> (+1.44%) :arrow_up:
Go 74.66% <52.39%> (-0.73%) :arrow_down:
see 635 files with indirect coverage changes
:rocket: New features to boost your workflow:
  • :snowflake: Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

codecov[bot] avatar Nov 18 '25 15:11 codecov[bot]

/ci-rerun-ut-integration

liliu-z avatar Nov 19 '25 08:11 liliu-z

/rerun-go-sdk

yanliang567 avatar Nov 20 '25 01:11 yanliang567

rerun go-sdk

yanliang567 avatar Nov 20 '25 02:11 yanliang567

[ci-v2-notice] Notice: We are gradually rolling out the new ci-v2 system.

  • Legacy CI jobs remain unaffected, you can just ignore ci-v2 if you don't want to run it.
  • Additional "ci-v2/*" checkers will run for this PR to ensure the new ci-v2 system is working as expected.
  • For tests that exist in both v1 and v2, passing in either system is considered PASS.

To rerun ci-v2 checks, comment with:

  • /ci-rerun-code-check // for ci-v2/code-check
  • /ci-rerun-build // for ci-v2/build
  • /ci-rerun-ut-integration // for ci-v2/ut-integration
  • /ci-rerun-ut-go // for ci-v2/ut-go
  • /ci-rerun-ut-cpp // for ci-v2/ut-cpp
  • /ci-rerun-ut // for all ci-v2/ut-integration, ci-v2/ut-go, ci-v2/ut-cpp
  • /ci-rerun-e2e-arm // for ci-v2/e2e-arm

If you have any questions or requests, please contact @zhikunyao.

sre-ci-robot avatar Nov 20 '25 05:11 sre-ci-robot

/refresh-label

yanliang567 avatar Nov 20 '25 08:11 yanliang567

/lgtm /approve

yanliang567 avatar Nov 20 '25 08:11 yanliang567

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: liliu-z, yanliang567

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:
  • ~~OWNERS~~ [liliu-z,yanliang567]

Approvers can indicate their approval by writing /approve in a comment Approvers can cancel approval by writing /approve cancel in a comment

sre-ci-robot avatar Nov 20 '25 08:11 sre-ci-robot

@liliu-z Thanks for your contribution. Please submit with DCO, see the contributing guide https://github.com/milvus-io/milvus/blob/master/CONTRIBUTING.md#developer-certificate-of-origin-dco.

mergify[bot] avatar Nov 20 '25 08:11 mergify[bot]

[INFO] PR Label Summary by Default [INFO] Dependent PR check skipped - branch feature PR (kind/branch-feature)

Use /refresh-label to update related check and label manually

sre-ci-robot avatar Nov 20 '25 08:11 sre-ci-robot

[INFO] PR Label Summary by Default [INFO] Dependent PR check skipped - branch feature PR (kind/branch-feature)

Use /refresh-label to update related check and label manually

sre-ci-robot avatar Nov 20 '25 09:11 sre-ci-robot