shuting
shuting
@monotek - can you verify the upgrade process and attach the test result?
> Updated codegen by running "make codegen-helm-all". > > How is the upgrade testet? > > Usualy the ci for helm charts does that by using "--upgrade" in the "ct...
> Ah, ok. I thought you have some dedicated test i'm not aware of :D We should really test the Helm upgrade in our CI pipelines 🤔
/cherry-pick release-1.12
@monotek - the bot doesn't respond, would you like to cherry-pick it to release-1.12 branch?
Hi @NoamGaloz1 - what Kyverno version are you referencing? Or do you mean the latest main branch?
We have bumped to Golang 1.12.11 on release-11 branch, can you confirm if that fixes your issue? We can cut a new 1.11 patch release with this fix.
Kyverno 1.11.x is built on Go 1.21.x, we need to stick to that. Which CVE fix do you want to pick up?
> @NoamGaloz1 > > [CVE-2024-24787](https://github.com/advisories/GHSA-5fq7-4mxc-535h), [CVE-2024-24789](https://github.com/advisories/GHSA-236w-p7wf-5ph8), [CVE-2024-24790](https://github.com/advisories/GHSA-49gw-vxvf-fc2g) were fixed in , or before 1.21.11: > > 1. https://pkg.go.dev/vuln/GO-2024-2825 > 2. https://pkg.go.dev/vuln/GO-2024-2888 > 3. https://pkg.go.dev/vuln/GO-2024-2887 > > [CVE-2024-24788](https://github.com/advisories/GHSA-2jwv-jmq4-4j3r) does not affect...
I agree, there's another label setting label `helm.sh/chart` with the chart version. Any thoughts @chipzoller @eddycharly ?