buildkit icon indicating copy to clipboard operation
buildkit copied to clipboard
verified publisher icon moby

Fix code scanning alert - CVE-2024-35255 / GO-2024-2918

Open crazy-max opened this issue 1 year ago • 0 comments

Tracking issue for:

  • [ ] https://github.com/moby/buildkit/security/code-scanning/4
  • [ ] https://github.com/moby/buildkit/security/code-scanning/1

Relates to azblob remote cache dependencies: https://github.com/moby/buildkit/blob/148c80ba931d0bf02a0cdb7c56a58363a475daff/go.mod#L6-L7

Try to bump in https://github.com/moby/buildkit/pull/4715 but got some issues.

@vangarp @amrmahdi If you can take a look :pray:

crazy-max avatar Aug 08 '24 17:08 crazy-max