mirrors/etcd - etcd - Gitea: Git with a cup of tea

Author	SHA1	Message	Date
Prasad Chandrasekaran	3a8c6d749f	manual dependency bump Signed-off-by: Prasad Chandrasekaran <prasadc@vmware.com>	2023-06-13 23:28:47 +05:30
Chao Chen	b2c39fc8e6	2023-06-06: bump up dependencies update identified by dependabot Signed-off-by: Chao Chen <chaochn@amazon.com>	2023-06-06 20:18:44 -07:00
Bogdan Kanivets	ef91e8ae78	dependency: bump github.com/stretchr/testify from 1.8.2 to 1.8.3 Signed-off-by: Bogdan Kanivets <bkanivets@apple.com>	2023-05-24 23:58:13 -07:00
James Blair	5a5b5a1c5d	dependency: bump github.com/prometheus/client_golang from 1.15.0 to 1.15.1 Signed-off-by: James Blair <mail@jamesblair.net>	2023-05-16 09:26:44 +12:00
James Blair	1798730cd8	dependency: bump golang.org/x/crypto from 0.8.0 to 0.9.0 Signed-off-by: James Blair <mail@jamesblair.net>	2023-05-16 08:39:19 +12:00
Prasad Chandrasekaran	c863f1f8c0	dependency: bump dependabot dependencies Signed-off-by: Prasad Chandrasekaran <prasadc@vmware.com>	2023-05-09 18:38:35 +05:30
James Blair	04f3e9cb9a	dependency: bump golang.org/x/crypto from 0.7.0 to 0.8.0 Signed-off-by: James Blair <mail@jamesblair.net>	2023-04-21 05:34:21 +12:00
James Blair	042e2e9a57	dependency: bump github.com/prometheus/client_golang from 1.14.0 to 1.15.0 Signed-off-by: James Blair <mail@jamesblair.net>	2023-04-21 05:14:40 +12:00
Benjamin Wang	dddd4780c2	dependency: bump github.com/spf13/cobra from 1.6.1 to 1.7.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-04-11 08:51:26 +08:00
Benjamin Wang	eb9b15bf49	dependency: bump golang.org/x/net from 0.8.0 to 0.9.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-04-11 08:44:26 +08:00
Benjamin Wang	8a27dd4db4	dependency: bump github.com/jonboulle/clockwork from 0.3.0 to 0.4.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-04-11 08:36:44 +08:00
Benjamin Wang	072c5cb5da	dependency: bump google.golang.org/protobuf from 1.28.1 to 1.30.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-04-04 15:28:09 +08:00
Benjamin Wang	56284d5dfe	dependency: bump github.com/golang/protobuf from 1.5.2 to 1.5.3 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-04-04 15:21:22 +08:00
Benjamin Wang	0c66fc9f29	dependency: bump go.uber.org/multierr from 1.9.0 to 1.11.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-04-04 15:15:32 +08:00
Marek Siarkowicz	be7be34800	client: Hide v2 client package Signed-off-by: Marek Siarkowicz <siarkowicz@google.com>	2023-03-31 10:26:11 +02:00
Benjamin Wang	8c4bbcc8c7	dependency: bump golang.org/x/ to 0.7.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-03-21 08:36:39 +08:00
Benjamin Wang	7ed1219861	dependency: bump golang.org/x/net to v0.8.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-03-07 06:52:07 +08:00
Benjamin Wang	56423eacd2	dependency: bump go.opentelemetry.io/otel to v1.14.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-03-03 15:44:47 +08:00
Benjamin Wang	6af2c9dbfa	dependency: bump golang.org/x/crypto to v0.6.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-28 06:51:55 +08:00
Benjamin Wang	f333148da9	dependency: bump golang.org/x/time to v0.3.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-28 06:49:39 +08:00
Benjamin Wang	d8b8127084	dependency: bump github.com/stretchr/testify from 1.8.1 to 1.8.2 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-28 06:44:33 +08:00
Benjamin Wang	de9c0f8fea	dependency: bump github.com/golang-jwt/jwt/v4 to v4.5.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-21 05:29:53 +08:00
Benjamin Wang	a7e94c4843	security: bump golang.org/x/net to v0.7.0 to address CVE GO-2023-1571 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-17 11:29:47 +08:00
Benjamin Wang	d0c3112d5a	dependency: bump go.opentelemetry.io/otel from 1.11.2 to 1.13.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-15 18:33:00 +08:00
Benjamin Wang	1d8fe11ad9	dependency: bump golang.org/x/net from 0.5.0 to 0.6.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-14 17:40:47 +08:00
Benjamin Wang	cc47f7bc7c	dependency: bump gopkg.in/natefinch/lumberjack.v2 from 2.0.0 to 2.2.1 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-02-14 17:40:47 +08:00
Benjamin Wang	23e89b98a3	bump bbolt to v1.3.7 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-01-31 07:04:29 +08:00
Benjamin Wang	5b8d7698c8	dependency: bump github.com/coreos/go-semver from 0.3.0 to 0.3.1 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-01-24 16:59:37 +08:00
Benjamin Wang	ac98432f0b	dependency: bump github.com/dustin/go-humanize from v1.0.0 to v1.0.1 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2023-01-17 06:37:19 +08:00
dependabot[bot]	d104408036	build(deps): bump golang.org/x/net from 0.4.0 to 0.5.0 in /server Bumps [golang.org/x/net](https://github.com/golang/net) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/golang/net/releases) - [Commits](https://github.com/golang/net/compare/v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-01-10 09:10:07 +08:00
Benjamin Wang	c4f7ac28a2	deps: bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.32.0 to 0.37.0 in /server Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 04:32:18 +08:00
Benjamin Wang	32840bae73	deps: bump go.opentelemetry.io/otel from 1.7.0 to 1.11.2 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 04:27:04 +08:00
Benjamin Wang	8f320bfa00	deps: bump github.com/golang-jwt/jwt/v4 from 4.4.2 to 4.4.3 in /server Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 04:19:10 +08:00
Benjamin Wang	2c192f4205	deps: bump go.uber.org/multierr from 1.8.0 to 1.9.0 in /server Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 04:00:49 +08:00
Benjamin Wang	c2a7a5870d	deps: bump github.com/prometheus/client_golang from 1.12.2 to 1.14.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 03:42:11 +08:00
Benjamin Wang	bc41c0963b	deps: bump github.com/coreos/go-systemd/v22 from 22.3.2 to 22.5.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 03:38:55 +08:00
Benjamin Wang	259a73d67a	deps: bump github.com/spf13/cobra from 1.4.0 to 1.6.1 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 03:33:24 +08:00
Benjamin Wang	1a0af6fee6	deps: bump go.uber.org/zap from 1.21.0 to 1.24.0 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-14 03:33:24 +08:00
Benjamin Wang	1ba246e1d8	bump golang.org/x/ to v0.4.0 Found 1 known vulnerability. Vulnerability #1: GO-2022-1144 An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate approximately 64 MiB per open connection. Call stacks in your code: Error: tools/etcd-dump-metrics/main.go:158:5: go.etcd.io/etcd/v3/tools/etcd-dump-metrics.main calls go.etcd.io/etcd/server/v3/embed.StartEtcd, which eventually calls golang.org/x/net/http2.Server.ServeConn Found in: golang.org/x/net/http2@v0.2.0 Fixed in: golang.org/x/net/http2@v0.4.0 More info: https://pkg.go.dev/vuln/GO-2022-1144 Error: Process completed with exit code 3. Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-09 08:54:48 +08:00
Benjamin Wang	87e1ca2b9a	etcdserver: cleanup go.mod and go.sum files Executed commands below, 1. Removed go.etcd.io/raft/v3 => ../raft; 2. go get go.etcd.io/raft/v3@eaa6808e1f7ab2247c13778250f70520b0527ff1 3. go mod tidy Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-02 12:59:23 +08:00
Benjamin Wang	e9aa275b36	etcdserver: update etcdserver to use the new raft module go.etcd.io/raft/v3 Just replaced all go.etcd.io/etcd/raft/v3 with go.etcd.io/raft/v3 under directory server. Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-12-02 09:33:45 +08:00
Benjamin Wang	3f86db5e53	bump golang.org/x imports to address CVEs Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32149 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-11-30 05:03:43 +08:00
Benjamin Wang	285e44378f	bump github.com/stretchr/testify from v1.7.2 to v1.8.1 Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-11-26 10:51:32 +08:00
Wei Fu	cf285ea3c7	bump grpc to v1.51.0 from v1.47.0 Signed-off-by: Wei Fu <fuweid89@gmail.com>	2022-11-23 22:16:22 +08:00
Benjamin Wang	cd0b1d0c66	Bump go 1.19: upgrade go version to 1.19 in all go.mod files Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-09-22 08:47:46 +08:00
Benjamin Wang	5344085338	Merge pull request #14491 from ahrtr/bump_jwt_4.4.2 etcd: Bump golang-jwt/jwt/ version to 4.4.2	2022-09-20 10:18:44 +08:00
Colleen Murphy	7ea2a3d7cb	*: Update golang.org/x/net to latest Update golang.org/x/net to address CVE-2022-27664. Signed-off-by: Colleen Murphy <colleen.murphy@suse.com>	2022-09-19 16:01:45 -07:00
Benjamin Wang	09db6ec1d7	etcd: Bump golang-jwt/jwt/ version to 4.4.2 github.com/golang-jwt/jwt adds go mod support startig from 4.0.0, and it's backwards-compatible with existing v3.x.y tags. Signed-off-by: Benjamin Wang <wachao@vmware.com>	2022-09-20 04:06:47 +08:00
Piotr Tabor	88cd0fe695	Refresh minor dependencies. Signed-off-by: Piotr Tabor <ptab@google.com>	2022-06-17 10:23:03 +02:00
Piotr Tabor	e7a84b69c8	Update zap to 1.21. Signed-off-by: Piotr Tabor <ptab@google.com>	2022-06-17 10:05:25 +02:00

1 2

96 Commits