[Snyk] Security upgrade @kubernetes/client-node from 0.15.1 to 0.22.3 #16
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSONPATHPLUS-7945884
🎉 Snyk checks have passed. No issues have been found so far.✅ security/snyk check is complete. No issues have been found. (View Details) ✅ license/snyk check is complete. No issues have been found. (View Details) ✅ code/snyk check is complete. No issues have been found. (View Details) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
package.jsonpackage-lock.jsonVulnerabilities that will be fixed with an upgrade:
SNYK-JS-JSONPATHPLUS-7945884
Release notes
Package name: @kubernetes/client-node
-
0.22.3 - 2024-11-24
-
0.22.2 - 2024-10-31
-
0.22.1 - 2024-10-15
- Fix cp promise returns by converting the exec callbacks into promises by @ joeferner in #1880
- test: replace use of deprecated Buffer constructor by @ cjihrig in #1891
- ci: test against node 22 by @ cjihrig in #1890
- chore: update ws by @ mstruebing in #1888
- ci: use node LTS in workflows by @ mstruebing in #1918
- @ joeferner made their first contribution in #1880
-
0.22.0 - 2024-09-13
- Support for Kubernetes 1.30
- Automated Generate from openapi release-1.30 by @ github-actions in #1672
- Fix typos in FETCH_MIGRATION.md by @ lordrip in #1687
- make namespace in Object header optional by @ schrodit in #1694
- Properly parse metadata of custom Kubernetes objects by @ schrodit in #1695
- add examples to generic api (inside object.ts) by @ zfrhv in #1705
- add generic and typed watch to KubernetesObjectApi by @ schrodit in #1831
- @ lordrip made their first contribution in #1687
-
0.21.0 - 2024-05-03
- Support for Kubernetes 1.29.x
- fix: Fix TypeError of topNodes by @ koooge in #1445
- fix: do not overwrite current context by @ carlossg in #1487
- feat: custom path for service account token (supporting TokenVolume projection) by @ omerlh in #1549
- fix: use correct types for websocket by @ mstruebing in #1665
- Lots of dependency verison updates
-
0.20.0 - 2023-11-02
- Add node 20 to our test matrix, remove node 14, fix test for node 20. by @ brendandburns in #1269
- Automated Generate from openapi release-1.28 by @ github-actions in #1278
- Add an additional test for version synchronization by @ brendandburns in #1268
- Update to version 0.20.0 and k8s 1.28 support by @ brendandburns in #1281
- ci: pin node version to 20.7.0 to make unit tests pass by @ mstruebing in #1313
- chore: Some cleanup by @ Ananya2001-an in #1320
- Fix spelling in README.md by @ masonbrothers in #1345
- Fixed typo in topPods command by @ kamadek-sys in #1369
- feat(metrics): add single node metrics and query options by @ 0fatal in #1368
- Update Kubernetes Version in README.md by @ masonbrothers in #1378
- A lot of dependency updates
- @ masonbrothers made their first contribution in #1345
- @ kamadek-sys made their first contribution in #1369
- @ 0fatal made their first contribution in #1368
-
0.19.0 - 2023-09-17
- Support for Kubernetes 1.27 APIs
- Small bug fixes
- Many dependencies updated
-
0.18.1 - 2023-01-21
-
0.18.0 - 2022-12-15
- Release notes
- Changelog
- Commits
- Release notes
- Commits
- dependency-name: mocha
- dependency-name: "@ types/mocha"
-
0.17.1 - 2022-09-11
-
0.17.0 - 2022-06-27
-
0.16.3 - 2022-02-09
-
0.16.2 - 2022-01-19
-
0.16.1 - 2021-11-19
-
0.16.0 - 2021-11-12
-
0.15.1 - 2021-08-17
from @kubernetes/client-node GitHub release notesMerge pull request #1997 from kubernetes-client/dependabot/npm_and_ya…
What's Changed
New Contributors
Full Changelog: 0.22.0...0.22.1
What's Changed
client/javascript/pull/1876
New Contributors
Full Changelog: 0.21.0...0.22.0
What's Changed
Full Changelog: 0.20.0...0.21.0
What's Changed
New Contributors
Full Changelog: 0.19.0...0.20.0
Release 0.19.0
Updates to Kubernetes 1.25
Bumps mocha and @ types/mocha. These dependencies needed to be updated together.
Updates
mochafrom 10.1.0 to 10.2.0Updates
@ types/mochafrom 5.2.7 to 10.0.1updated-dependencies:
dependency-type: direct:development
update-type: version-update:semver-minor
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] [email protected]
Signed-off-by: dependabot[bot] [email protected]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@ users.noreply.github.com>
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Remote Code Execution (RCE)