-
Notifications
You must be signed in to change notification settings - Fork 18.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
vendor: github.com/docker/distribution v2.8.2 #45516
vendor: github.com/docker/distribution v2.8.2 #45516
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do you expect this to be merged right now, or shall we wait for v2.8.2 GA?
Wasn't sure TBH 😂 the plan was to have done the v2.8.2 release Yesterday, but GitHub's outages prevented that from happening. This one already contains the fix for the CVE (which doesn't affect us, but might still cause scanners to trigger). |
Ok; looks like release is happening today; I'll add a quick commit to bump it to latest in the branch, and move this to draft until it's released |
3a28d73
to
13f840e
Compare
CI - Dockerfile: fix filenames of artifacts Bugfixes - Fix panic in inmemory driver - Add code to handle pagination of parts. Fixes max layer size of 10GB bug - Parse http forbidden as denied - Revert "registry/client: set Accept: identity header when getting layers Runtime - Update to go1.19.9 - Dockerfile: update xx to v1.2.1 ([moby#3907](distribution/distribution#3907)) Security - Fix [CVE-2022-28391](https://www.cve.org/CVERecord?id=CVE-2022-28391) by bumping alpine from 3.14 to 3.16 - Fix [CVE-2023-2253](https://www.cve.org/CVERecord?id=CVE-2023-2253) runaway allocation on /v2/_catalog [`521ea3d9`](distribution/distribution@521ea3d) full diff: distribution/distribution@v2.8.1...v2.8.2 Signed-off-by: Sebastiaan van Stijn <github@gone.nl> bump to release/2.8 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
13f840e
to
7821d2d
Compare
CI
Bugfixes
Runtime
Security
521ea3d9
full diff: distribution/distribution@v2.8.1...v2.8.2-beta.2
- What I did
- How I did it
- How to verify it
- Description for the changelog
- A picture of a cute animal (not mandatory but encouraged)