Skip to content

Commit 019eb74

Browse files
jjbustamantedependabot[bot]claude
authored
fix(security): Resolve CVE-GHSA-cgrx-mc8f-2prm by upgrading selinux to v1.13.0 (#2476)
* build(deps): bump @octokit/plugin-paginate-rest, @actions/github and @octokit/rest (#2338) Bumps [@octokit/plugin-paginate-rest](https://github.com/octokit/plugin-paginate-rest.js) to 9.2.2 and updates ancestor dependencies [@octokit/plugin-paginate-rest](https://github.com/octokit/plugin-paginate-rest.js), [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) and [@octokit/rest](https://github.com/octokit/rest.js). These dependencies need to be updated together. Updates `@octokit/plugin-paginate-rest` from 2.2.3 to 9.2.2 - [Release notes](https://github.com/octokit/plugin-paginate-rest.js/releases) - [Commits](octokit/plugin-paginate-rest.js@v2.2.3...v9.2.2) Updates `@actions/github` from 4.0.0 to 6.0.0 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github) Updates `@octokit/rest` from 18.0.0 to 21.1.1 - [Release notes](https://github.com/octokit/rest.js/releases) - [Commits](octokit/rest.js@v18.0.0...v21.1.1) --- updated-dependencies: - dependency-name: "@octokit/plugin-paginate-rest" dependency-type: indirect - dependency-name: "@actions/github" dependency-type: direct:production - dependency-name: "@octokit/rest" dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * build(deps): bump @octokit/request, @actions/github and @octokit/rest (#2370) Bumps [@octokit/request](https://github.com/octokit/request.js) to 8.4.1 and updates ancestor dependencies [@octokit/request](https://github.com/octokit/request.js), [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) and [@octokit/rest](https://github.com/octokit/rest.js). These dependencies need to be updated together. Updates `@octokit/request` from 5.6.3 to 8.4.1 - [Release notes](https://github.com/octokit/request.js/releases) - [Commits](octokit/request.js@v5.6.3...v8.4.1) Updates `@actions/github` from 4.0.0 to 6.0.0 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github) Updates `@octokit/rest` from 18.0.0 to 21.1.1 - [Release notes](https://github.com/octokit/rest.js/releases) - [Commits](octokit/rest.js@v18.0.0...v21.1.1) --- updated-dependencies: - dependency-name: "@octokit/request" dependency-version: 8.4.1 dependency-type: indirect - dependency-name: "@actions/github" dependency-version: 6.0.0 dependency-type: direct:production - dependency-name: "@octokit/rest" dependency-version: 21.1.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * build(deps): bump the go-dependencies group with 8 updates (#2453) Bumps the go-dependencies group with 8 updates: | Package | From | To | | --- | --- | --- | | [github.com/docker/cli](https://github.com/docker/cli) | `28.5.0+incompatible` | `28.5.1+incompatible` | | [github.com/docker/docker](https://github.com/docker/docker) | `28.5.0+incompatible` | `28.5.1+incompatible` | | [golang.org/x/crypto](https://github.com/golang/crypto) | `0.42.0` | `0.43.0` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.28.0` | `0.29.0` | | [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.31.0` | `0.32.0` | | [golang.org/x/sys](https://github.com/golang/sys) | `0.36.0` | `0.37.0` | | [golang.org/x/term](https://github.com/golang/term) | `0.35.0` | `0.36.0` | | [golang.org/x/text](https://github.com/golang/text) | `0.29.0` | `0.30.0` | Updates `github.com/docker/cli` from 28.5.0+incompatible to 28.5.1+incompatible - [Commits](docker/cli@v28.5.0...v28.5.1) Updates `github.com/docker/docker` from 28.5.0+incompatible to 28.5.1+incompatible - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v28.5.0...v28.5.1) Updates `golang.org/x/crypto` from 0.42.0 to 0.43.0 - [Commits](golang/crypto@v0.42.0...v0.43.0) Updates `golang.org/x/mod` from 0.28.0 to 0.29.0 - [Commits](golang/mod@v0.28.0...v0.29.0) Updates `golang.org/x/oauth2` from 0.31.0 to 0.32.0 - [Commits](golang/oauth2@v0.31.0...v0.32.0) Updates `golang.org/x/sys` from 0.36.0 to 0.37.0 - [Commits](golang/sys@v0.36.0...v0.37.0) Updates `golang.org/x/term` from 0.35.0 to 0.36.0 - [Commits](golang/term@v0.35.0...v0.36.0) Updates `golang.org/x/text` from 0.29.0 to 0.30.0 - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.29.0...v0.30.0) --- updated-dependencies: - dependency-name: github.com/docker/cli dependency-version: 28.5.1+incompatible dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-dependencies - dependency-name: github.com/docker/docker dependency-version: 28.5.1+incompatible dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-dependencies - dependency-name: golang.org/x/crypto dependency-version: 0.43.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-dependencies - dependency-name: golang.org/x/mod dependency-version: 0.29.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-dependencies - dependency-name: golang.org/x/oauth2 dependency-version: 0.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-dependencies - dependency-name: golang.org/x/sys dependency-version: 0.37.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-dependencies - dependency-name: golang.org/x/term dependency-version: 0.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-dependencies - dependency-name: golang.org/x/text dependency-version: 0.30.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * fix(security): resolve CVE-GHSA-cgrx-mc8f-2prm by upgrading selinux to v1.13.0 Migrated from unmaintained GoogleContainerTools/kaniko to the actively maintained Chainguard fork (v1.25.4), updated lifecycle to v0.20.19, and upgraded opencontainers/selinux from v1.12.0 to v1.13.0 to fix GHSA-cgrx-mc8f-2prm. This also upgraded golang.org/x/crypto from v0.43.0 to v0.45.0, resolving additional CVEs. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * Use Docker API version negotiation instead of hardcoded version Fixes #2464 This change replaces all hardcoded Docker API version 1.38 references with WithAPIVersionNegotiation(), allowing pack to automatically adapt to the Docker daemon's supported API version. Changes: - Updated main client initialization to use API version negotiation - Updated SSH Docker client to use API version negotiation - Updated all test files to use API version negotiation - Upgraded fake-lifecycle test dependencies from Docker client v1.4.2 (2019) to v28.5.1 - Fixed fake-lifecycle imports and API calls for compatibility with modern Docker client Benefits: - Works with modern Docker daemons requiring API 1.44+ (Docker 27+) - Backward compatible with older Docker versions - Future-proof - no need to update hardcoded versions - Solves Windows runner issue without requiring Docker 27 upgrade 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * Update Example_build test to use newer builder with modern lifecycle The cnbs/sample-builder:noble builder includes a recent lifecycle version that supports Docker API 1.44+, fixing the test failure on systems with modern Docker daemons (Docker 27+). 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * Downgrade fake-lifecycle dependencies for Go 1.23 compatibility Updated fake-lifecycle test module to support Go 1.23.4 (Windows runner): - Downgraded lifecycle from v0.20.11 to v0.19.3 - Downgraded go-containerregistry from v0.20.6 to v0.19.2 - Set Go requirement to 1.23 (compatible with Go 1.23.4) - Updated Dockerfile to use golang:1.23 base image The older versions still support Docker API 1.44+ and work correctly with modern Docker daemons requiring minimum API version 1.44. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * updating fake-lifecycle go version Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * Use Docker API version negotiation instead of hardcoded version (#2474) * Use Docker API version negotiation instead of hardcoded version Fixes #2464 This change replaces all hardcoded Docker API version 1.38 references with WithAPIVersionNegotiation(), allowing pack to automatically adapt to the Docker daemon's supported API version. Changes: - Updated main client initialization to use API version negotiation - Updated SSH Docker client to use API version negotiation - Updated all test files to use API version negotiation - Upgraded fake-lifecycle test dependencies from Docker client v1.4.2 (2019) to v28.5.1 - Fixed fake-lifecycle imports and API calls for compatibility with modern Docker client Benefits: - Works with modern Docker daemons requiring API 1.44+ (Docker 27+) - Backward compatible with older Docker versions - Future-proof - no need to update hardcoded versions - Solves Windows runner issue without requiring Docker 27 upgrade 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * Update Example_build test to use newer builder with modern lifecycle The cnbs/sample-builder:noble builder includes a recent lifecycle version that supports Docker API 1.44+, fixing the test failure on systems with modern Docker daemons (Docker 27+). 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> * Downgrade fake-lifecycle dependencies for Go 1.23 compatibility Updated fake-lifecycle test module to support Go 1.23.4 (Windows runner): - Downgraded lifecycle from v0.20.11 to v0.19.3 - Downgraded go-containerregistry from v0.20.6 to v0.19.2 - Set Go requirement to 1.23 (compatible with Go 1.23.4) - Updated Dockerfile to use golang:1.23 base image The older versions still support Docker API 1.44+ and work correctly with modern Docker daemons requiring minimum API version 1.44. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> --------- Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> Co-authored-by: Claude <noreply@anthropic.com> * fix code format Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Juan Bustamante <bustamantejj@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Claude <noreply@anthropic.com>
1 parent 6735aac commit 019eb74

File tree

4 files changed

+153
-144
lines changed

4 files changed

+153
-144
lines changed

go.mod

Lines changed: 40 additions & 38 deletions
Original file line numberDiff line numberDiff line change
@@ -2,15 +2,15 @@ module github.com/buildpacks/pack
22

33
require (
44
github.com/BurntSushi/toml v1.5.0
5-
github.com/GoogleContainerTools/kaniko v1.24.0
65
github.com/Masterminds/semver v1.5.0
76
github.com/Microsoft/go-winio v0.6.2
87
github.com/apex/log v1.9.0
98
github.com/buildpacks/imgutil v0.0.0-20250814164739-4b1c8875ba7e
10-
github.com/buildpacks/lifecycle v0.20.11
9+
github.com/buildpacks/lifecycle v0.20.19
10+
github.com/chainguard-dev/kaniko v1.25.4
1111
github.com/containerd/errdefs v1.0.0
1212
github.com/docker/cli v28.5.1+incompatible
13-
github.com/docker/docker v28.5.1+incompatible
13+
github.com/docker/docker v28.5.2+incompatible
1414
github.com/docker/go-connections v0.6.0
1515
github.com/dustin/go-humanize v1.0.1
1616
github.com/gdamore/tcell/v2 v2.9.0
@@ -34,7 +34,7 @@ require (
3434
github.com/spf13/cobra v1.10.1
3535
golang.org/x/crypto v0.45.0
3636
golang.org/x/mod v0.29.0
37-
golang.org/x/oauth2 v0.32.0
37+
golang.org/x/oauth2 v0.33.0
3838
golang.org/x/sync v0.18.0
3939
golang.org/x/sys v0.38.0
4040
golang.org/x/term v0.37.0
@@ -43,6 +43,7 @@ require (
4343
)
4444

4545
require (
46+
cyphar.com/go-pathrs v0.2.1 // indirect
4647
dario.cat/mergo v1.0.2 // indirect
4748
github.com/Azure/azure-sdk-for-go v68.0.0+incompatible // indirect
4849
github.com/Azure/go-ansiterm v0.0.0-20250102033503-faa5f7b0171c // indirect
@@ -54,37 +55,37 @@ require (
5455
github.com/Azure/go-autorest/autorest/date v0.3.1 // indirect
5556
github.com/Azure/go-autorest/logger v0.2.2 // indirect
5657
github.com/Azure/go-autorest/tracing v0.6.1 // indirect
57-
github.com/ProtonMail/go-crypto v1.2.0 // indirect
58+
github.com/ProtonMail/go-crypto v1.3.0 // indirect
5859
github.com/agext/levenshtein v1.2.3 // indirect
59-
github.com/aws/aws-sdk-go-v2 v1.36.3 // indirect
60-
github.com/aws/aws-sdk-go-v2/config v1.29.14 // indirect
61-
github.com/aws/aws-sdk-go-v2/credentials v1.17.67 // indirect
62-
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.30 // indirect
63-
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.34 // indirect
64-
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.34 // indirect
65-
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.3 // indirect
66-
github.com/aws/aws-sdk-go-v2/service/ecr v1.44.0 // indirect
67-
github.com/aws/aws-sdk-go-v2/service/ecrpublic v1.33.0 // indirect
68-
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.12.3 // indirect
69-
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.12.15 // indirect
70-
github.com/aws/aws-sdk-go-v2/service/sso v1.25.3 // indirect
71-
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.30.1 // indirect
72-
github.com/aws/aws-sdk-go-v2/service/sts v1.33.19 // indirect
73-
github.com/aws/smithy-go v1.22.3 // indirect
74-
github.com/awslabs/amazon-ecr-credential-helper/ecr-login v0.9.1 // indirect
60+
github.com/aws/aws-sdk-go-v2 v1.39.6 // indirect
61+
github.com/aws/aws-sdk-go-v2/config v1.31.18 // indirect
62+
github.com/aws/aws-sdk-go-v2/credentials v1.18.22 // indirect
63+
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.13 // indirect
64+
github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.13 // indirect
65+
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.13 // indirect
66+
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4 // indirect
67+
github.com/aws/aws-sdk-go-v2/service/ecr v1.51.2 // indirect
68+
github.com/aws/aws-sdk-go-v2/service/ecrpublic v1.38.2 // indirect
69+
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.3 // indirect
70+
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.13 // indirect
71+
github.com/aws/aws-sdk-go-v2/service/sso v1.30.1 // indirect
72+
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.5 // indirect
73+
github.com/aws/aws-sdk-go-v2/service/sts v1.40.0 // indirect
74+
github.com/aws/smithy-go v1.23.2 // indirect
75+
github.com/awslabs/amazon-ecr-credential-helper/ecr-login v0.11.0 // indirect
7576
github.com/beorn7/perks v1.0.1 // indirect
7677
github.com/cespare/xxhash/v2 v2.3.0 // indirect
7778
github.com/chrismellard/docker-credential-acr-env v0.0.0-20230304212654-82a0ddb27589 // indirect
7879
github.com/cloudflare/circl v1.6.1 // indirect
7980
github.com/containerd/errdefs/pkg v0.3.0 // indirect
8081
github.com/containerd/log v0.1.0 // indirect
81-
github.com/containerd/stargz-snapshotter/estargz v0.16.3 // indirect
82+
github.com/containerd/stargz-snapshotter/estargz v0.17.0 // indirect
8283
github.com/containerd/typeurl/v2 v2.2.3 // indirect
83-
github.com/cyphar/filepath-securejoin v0.4.1 // indirect
84+
github.com/cyphar/filepath-securejoin v0.6.0 // indirect
8485
github.com/dimchansky/utfbom v1.1.1 // indirect
8586
github.com/distribution/reference v0.6.0 // indirect
8687
github.com/docker/distribution v2.8.3+incompatible // indirect
87-
github.com/docker/docker-credential-helpers v0.9.3 // indirect
88+
github.com/docker/docker-credential-helpers v0.9.4 // indirect
8889
github.com/docker/go-metrics v0.0.1 // indirect
8990
github.com/docker/go-units v0.5.0 // indirect
9091
github.com/emirpasic/gods v1.18.1 // indirect
@@ -105,13 +106,13 @@ require (
105106
github.com/inconshreveable/mousetrap v1.1.0 // indirect
106107
github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 // indirect
107108
github.com/kevinburke/ssh_config v1.2.0 // indirect
108-
github.com/klauspost/compress v1.18.0 // indirect
109+
github.com/klauspost/compress v1.18.1 // indirect
109110
github.com/lucasb-eyer/go-colorful v1.2.0 // indirect
110-
github.com/mattn/go-colorable v0.1.13 // indirect
111+
github.com/mattn/go-colorable v0.1.14 // indirect
111112
github.com/mattn/go-isatty v0.0.20 // indirect
112113
github.com/mattn/go-runewidth v0.0.16 // indirect
113114
github.com/mitchellh/go-homedir v1.1.0 // indirect
114-
github.com/moby/buildkit v0.22.0 // indirect
115+
github.com/moby/buildkit v0.26.1 // indirect
115116
github.com/moby/docker-image-spec v1.3.1 // indirect
116117
github.com/moby/patternmatcher v0.6.0 // indirect
117118
github.com/moby/sys/atomicwriter v0.1.0 // indirect
@@ -121,35 +122,36 @@ require (
121122
github.com/moby/term v0.5.2 // indirect
122123
github.com/morikuni/aec v1.0.0 // indirect
123124
github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
124-
github.com/opencontainers/selinux v1.12.0 // indirect
125+
github.com/opencontainers/selinux v1.13.0 // indirect
125126
github.com/pjbgf/sha1cd v0.3.2 // indirect
126127
github.com/planetscale/vtprotobuf v0.6.1-0.20240319094008-0393e58bdf10 // indirect
127-
github.com/prometheus/client_golang v1.22.0 // indirect
128+
github.com/prometheus/client_golang v1.23.2 // indirect
128129
github.com/prometheus/client_model v0.6.2 // indirect
129-
github.com/prometheus/common v0.64.0 // indirect
130+
github.com/prometheus/common v0.66.1 // indirect
130131
github.com/prometheus/procfs v0.16.1 // indirect
131132
github.com/rivo/uniseg v0.4.7 // indirect
132133
github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3 // indirect
133134
github.com/sirupsen/logrus v1.9.3 // indirect
134135
github.com/skeema/knownhosts v1.3.1 // indirect
135-
github.com/spf13/pflag v1.0.9 // indirect
136+
github.com/spf13/pflag v1.0.10 // indirect
136137
github.com/tonistiigi/go-csvvalue v0.0.0-20240814133006-030d3b2625d0 // indirect
137-
github.com/vbatts/tar-split v0.12.1 // indirect
138+
github.com/vbatts/tar-split v0.12.2 // indirect
138139
github.com/xanzy/ssh-agent v0.3.3 // indirect
139140
github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
140141
github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
141142
github.com/xeipuuv/gojsonschema v1.2.0 // indirect
142-
go.opentelemetry.io/auto/sdk v1.1.0 // indirect
143+
go.opentelemetry.io/auto/sdk v1.2.1 // indirect
143144
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.61.0 // indirect
144-
go.opentelemetry.io/otel v1.36.0 // indirect
145-
go.opentelemetry.io/otel/metric v1.36.0 // indirect
146-
go.opentelemetry.io/otel/trace v1.36.0 // indirect
145+
go.opentelemetry.io/otel v1.38.0 // indirect
146+
go.opentelemetry.io/otel/metric v1.38.0 // indirect
147+
go.opentelemetry.io/otel/trace v1.38.0 // indirect
148+
go.yaml.in/yaml/v2 v2.4.2 // indirect
147149
go.yaml.in/yaml/v3 v3.0.4 // indirect
148150
golang.org/x/net v0.47.0 // indirect
149-
google.golang.org/protobuf v1.36.7 // indirect
151+
google.golang.org/protobuf v1.36.10 // indirect
150152
gopkg.in/warnings.v0 v0.1.2 // indirect
151153
)
152154

153155
replace github.com/BurntSushi/toml => github.com/BurntSushi/toml v1.3.2
154156

155-
go 1.24.4
157+
go 1.25.3

0 commit comments

Comments
 (0)