You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@camel.apache.org by "oscerd (via GitHub)" <gi...@apache.org> on 2023/05/31 14:51:43 UTC

[GitHub] [camel-k] oscerd opened a new pull request, #4437: Bump to Runc 1.0.3

oscerd opened a new pull request, #4437:
URL: https://github.com/apache/camel-k/pull/4437

   Upgrade the runc version, because of https://github.com/opencontainers/runc/security/advisories/GHSA-v95c-p5hm-xq8f
   
   **Release Note**
   ```release-note
   NONE
   ```
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] oscerd commented on pull request #4437: Bump to Runc 1.0.3

Posted by "oscerd (via GitHub)" <gi...@apache.org>.

oscerd commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1571511139

   It doesn't seem to be feasible.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] oscerd commented on pull request #4437: Bump to Runc 1.0.3

Posted by "oscerd (via GitHub)" <gi...@apache.org>.

oscerd commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1571567696

   Sure, it's for the next release of 1.10.x, so we'll have time.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] squakez closed pull request #4437: Bump to Runc 1.0.3

Posted by "squakez (via GitHub)" <gi...@apache.org>.

squakez closed pull request #4437: Bump to Runc 1.0.3
URL: https://github.com/apache/camel-k/pull/4437


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] squakez commented on pull request #4437: Bump to Runc 1.0.3

Posted by "squakez (via GitHub)" <gi...@apache.org>.

squakez commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1571489146

   > and on 1.10.x we are at 0.3.10
   
   We can try to bump it to the latest version released. All changes done there should be compatible AFAIK


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] squakez commented on pull request #4437: Bump to Runc 1.0.3

Posted by "squakez (via GitHub)" <gi...@apache.org>.

squakez commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1571563599

   > It doesn't seem to be feasible.
   
   :( - we need to have a deeper look. Also, it seems that updating spectrum would not be enough as `runc` dependency would be moved to `1.0.2` https://github.com/apache/camel-k/pull/4437/files#diff-33ef32bf6c23acb95f5902d7097b7a1d5128ca061167ec0716715b0b9eeaa5f6L126
   
   Do you think we can wait some day for it? I can dedicate some time to see what is required during next week


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] oscerd commented on pull request #4437: Bump to Runc 1.0.3

Posted by "oscerd (via GitHub)" <gi...@apache.org>.

oscerd commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1570491819

   I guess it's docker cli. https://github.com/container-tools/spectrum/commit/325f375cb672e47729b8967658853973b387323f


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] oscerd commented on pull request #4437: Bump to Runc 1.0.3

Posted by "oscerd (via GitHub)" <gi...@apache.org>.

oscerd commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1570493341

   and on 1.10.x we are at 0.3.10


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] oscerd commented on pull request #4437: Bump to Runc 1.0.3

Posted by "oscerd (via GitHub)" <gi...@apache.org>.

oscerd commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1570399631

   Yes, this was an attempt. I'd like to understand what's the original one.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] squakez commented on pull request #4437: Bump to Runc 1.0.3

Posted by "squakez (via GitHub)" <gi...@apache.org>.

squakez commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1571715823

   Closing this in favor of #4444 . We had a pinned version of docker/docker dependency which was the main reason why runc was not bumped properly. Let's see how that goes, I close this, do you mind?


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [camel-k] oscerd commented on pull request #4437: Bump to Runc 1.0.3

Posted by "oscerd (via GitHub)" <gi...@apache.org>.

oscerd commented on PR #4437:
URL: https://github.com/apache/camel-k/pull/4437#issuecomment-1571489952

   Let me try that


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org