Fran Mulero
Fran Mulero
### Description of the change With these changes we are trying to keep under control the responsibility of each workflow: * `triage.yml`: Listening for new Issues or pull request. Its...
Signed-off-by: Fran Mulero ### Description of the change Version 3.6.4 was reused by #12562, so the release 3.6.4 does not have those changes ### Benefits Force a new release with...
Signed-off-by: Fran Mulero ### Description of the change Version 18.4.3 was reused by #12510, so the release 18.4.3 has no those changes ### Benefits Force a new release with the...
Signed-off-by: Fran Mulero ### Description of the change Version 2.1.8 was released with changes described in #12582. In the PR #12570 we used the same version, so the release 2.1.8...
There are several CVEs related to `golang.org/x/net`, all of them fixed in recent versions: ``` ┌──────────────────┬────────────────┬──────────┬────────┬───────────────────┬───────────────┬──────────────────────────────────────────────────────────────┐ │ Library │ Vulnerability │ Severity │ Status │ Installed Version │ Fixed Version...
**Describe the bug:** Running a security scan such as Trivy on the latest released version reported several CVEs: ```console $ trivy --version Version: 0.51.1 $ trivy image --vuln-type library zilliz/attu:v2.3.10...
### Description of the change Use `common.secrets.passwords.manage` helper to to lookup for existing passwords. ### Benefits Avoid manual intervention during upgrades. ### Possible drawbacks None ### Additional information Similar solution...
Hello all, Running a Trivy vulnerabilities scan through the schema-registry container image returned some CVEs affecting the latest release 7.6.1: https://nvd.nist.gov/vuln/detail/CVE-2024-21634 Could you confirm whether Schema Registry is affected by...
Hello all, Running a Trivy vulnerabilities scan through the latest release ([v1.0.0](https://github.com/JanusGraph/janusgraph/releases/tag/v1.0.0)) there are several issues related to the elasticsearch client for version 7. Could you confirm whether JanusGraph is...
## Summary Checking the result of Trivy scan, there is a CRITICAL CVE and a dependency should be updated. ## Steps to reproduce When running a trivy scan on latest...