Skip to content

Bump github.com/containerd/containerd from 1.6.6 to 1.6.12 #1264

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 13 commits into from
Closed

Bump github.com/containerd/containerd from 1.6.6 to 1.6.12 #1264

dependabot wants to merge 13 commits into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 3, 2023
edited
Loading

Bumps github.com/containerd/containerd from 1.6.6 to 1.6.12.

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.6.12

Welcome to the v1.6.12 release of containerd!

The twelfth patch release for containerd 1.6 contains a fix for CVE-2022-23471.

Notable Updates

See the changelog for complete list of changes

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Danny Canter
  • Phil Estes
  • Sebastiaan van Stijn

Changes

  • Github Security Advisory GHSA-2qjp-425j-52j9
    • Prepare release notes for v1.6.12
    • CRI stream server: Fix goroutine leak in Exec
  • [release/1.6] update to go1.18.9 (#7766)
    • [release/1.6] update to go1.18.9

Dependency Changes

This release has no dependency changes

Previous release can be found at v1.6.11

containerd 1.6.11

Welcome to the v1.6.11 release of containerd!

The eleventh patch release for containerd 1.6 contains a various fixes and updates.

Notable Updates

  • Add pod UID annotation in CRI plugin (#7735)
  • Fix nil pointer deference for Windows containers in CRI plugin (#7737)
  • Fix lease labels unexpectedly overwriting expiration (#7745)
  • Fix for simultaneous diff creation using the same parent snapshot (#7756)

See the changelog for complete list of changes

... (truncated)

Commits
  • a05d175 Merge pull request from GHSA-2qjp-425j-52j9
  • 1899ebc Prepare release notes for v1.6.12
  • ec5acd4 CRI stream server: Fix goroutine leak in Exec
  • 52a4492 Merge pull request #7766 from thaJeztah/1.6_update_go_1.18.9
  • 9743dba [release/1.6] update to go1.18.9
  • d986545 Merge pull request #7760 from dmcgowan/prepare-1.6.11
  • 3d24d97 Prepare release notes for v1.6.11
  • 864cce9 Merge pull request #7756 from vvoland/rootfs-diff-multiple
  • bb96b21 fix: support simultaneous create diff for same parent snapshot
  • 92ee926 Merge pull request #7745 from austinvazquez/cherry-pick-c4dee237f57a7f7895aaa...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

sgajawada-px and others added 5 commits January 31, 2023 18:19
@sgajawada-px
PB-3397: Backed Nameapecs based on namespace label selector (#1258)
11c1b67 
* PB-3397: Add Logic to support namespace label selector in the application backup controller
	- These feature is supported with manual and schedule backups
	- Currently Namespaces come along the application backup spec consider to be backed up,
	  Now these namespaces are selected using the namespace selectors provided as part of the same spec at execution time.
	- Filtered namespaces that to be backed up are also updated to the data-store object while reconciling.
@diptiranjanpx
Vendoring in k8s api 1.25 changes.
b5f980d
@diptiranjanpx
PWX-28448: Changes for supporting k8s 1.25 apis.
de97178
@diptiranjanpx
PWX-28440: stork resourcecollector to handle the cases where cache is…
489ed48 
… not present.
@diptiranjanpx
make file changes required for k8s 1.25 support in stork
559698a 
Signed-off-by: Rohit-PX <rkulkarni@purestorage.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 3, 2023
@cnbu-jenkins
Copy link
Collaborator

cnbu-jenkins commented Feb 3, 2023

Can one of the admins verify this patch?

@px-kesavan
vendor changes
ef1455b 
Signed-off-by: Kesavan Thiruvenkadasamy <kthiruvenkadasamy@purestorage.com>
@px-kesavan
Added rancher client to access projects
5db72d5 
Signed-off-by: Kesavan Thiruvenkadasamy <kthiruvenkadasamy@purestorage.com>
@px-kesavan
Added platform credential to hold rancher api secrets
eac7991 
Signed-off-by: Kesavan Thiruvenkadasamy <kthiruvenkadasamy@purestorage.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/containerd/containerd-1.6.12 branch from 821d182 to 036d1ce Compare February 6, 2023 12:33
gejain and others added 2 commits February 6, 2023 10:41
@gejain @Rohit-PX
Added test for Clone PVCs after DR on destination cluster (#1248)
d7ebc9d 
* Added test for Clone PVCs after DR on destination cluster

* Added test for Clone PVCs after DR on dest cluster

* modified test to chec pvc bound

* modified test to check pvc bound

* Addressed review comments

* Added changes to use storageclassName instead of storage class in annotations for clone pvc test

---------

Co-authored-by: root <root@geet-test-source-1.cluster.local>
Co-authored-by: GEET JAIN <getjain@purestorage.com>
Co-authored-by: geet <geet@DevBox.myguest.virtualbox.org>
Co-authored-by: root <root@crdtest-4.cluster.local>
Co-authored-by: Rohit-PX <32072909+Rohit-PX@users.noreply.github.com>
@siva-portworx
pb-3474: vendoring torpedo master branch
a31284f
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/containerd/containerd-1.6.12 branch from 036d1ce to c379f24 Compare February 7, 2023 01:33
pp511 and others added 3 commits February 7, 2023 10:40
@pp511
PWX-28818: Update libxml for vulnerability fixes (#1270)
e56fd92 
Signed-off-by: Priyanshu Pandey <ppandey@purestorage.com>
@prashanthpx @siva-portworx
vendor udpate for torpedo, sched-ops from master and kdmp(1.2.4)
ea80ebc
@dependabot
Bump github.com/containerd/containerd from 1.6.6 to 1.6.12
aa2ac34 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.6.6 to 1.6.12.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](containerd/containerd@v1.6.6...v1.6.12)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/containerd/containerd-1.6.12 branch from c379f24 to aa2ac34 Compare February 8, 2023 01:38
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Feb 16, 2023

Superseded by #1292.

@dependabot dependabot bot closed this Feb 16, 2023
@dependabot dependabot bot deleted the dependabot/go_modules/github.com/containerd/containerd-1.6.12 branch February 16, 2023 14:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@cnbu-jenkins @sgajawada-px @px-kesavan @gejain @pp511 @prashanthpx