Skip to content

chore(master): release 2.0.26 #93

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jun 17, 2025
Merged

chore(master): release 2.0.26 #93

merged 1 commit into from
Jun 17, 2025
+8 −1

Conversation

lotyp
Copy link
Member

@lotyp lotyp commented Jun 17, 2025

🤖 I have created a release beep boop

2.0.26 (2025-06-17)

Dependencies

  • deps: update ansible/ansible-lint action to v25.6.0 (#92) (15f983e)

This PR was generated with Release Please. See documentation.

@lotyp lotyp enabled auto-merge June 17, 2025 21:02
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jun 17, 2025
edited
Loading

Outdated

🔍 Vulnerabilities of moby/buildkit:buildx-stable-1

📦 Image Reference moby/buildkit:buildx-stable-1
digestsha256:72a94020693fa94cecaf87505088224ff3246270ea64b291a4aaf63fd4b41f3c
vulnerabilitiescritical: 0 high: 2 medium: 0 low: 0
platformlinux/amd64
size108 MB
packages250
📦 Base Image alpine:3
also known as
  • 3.21
  • 3.21.3
  • latest
digestsha256:1c4eef651f65e2f7daee7ee785882ac164b02b78fb74503052a26dc061c90474
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 1 medium: 0 low: 0 stdlib 1.24.3 (golang)

pkg:golang/[email protected]

high : CVE--2025--22874

Affected range>=1.24.0-0
<1.24.4
Fixed version1.24.4
EPSS Score0.017%
EPSS Percentile2nd percentile
Description

Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon.

critical: 0 high: 1 medium: 0 low: 0 stdlib 1.24.2 (golang)

pkg:golang/[email protected]

high : CVE--2025--22874

Affected range>=1.24.0-0
<1.24.4
Fixed version1.24.4
EPSS Score0.017%
EPSS Percentile2nd percentile
Description

Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon.

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jun 17, 2025
edited
Loading

Outdated

Recommended fixes for image moby/buildkit:buildx-stable-1

Base image is alpine:3

Name3.21.3
Digestsha256:1c4eef651f65e2f7daee7ee785882ac164b02b78fb74503052a26dc061c90474
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed4 months ago
Size3.6 MB
Packages19
OS3.21.3
The base image is also available under the supported tag(s): 3.21, 3.21.3, latest

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
3
Newer image for same tag
Also known as:
  • 3.22.0
  • 3.22
  • latest
 Benefits:
  • Newer image for same tag
  • Minor OS version update
  • Tag was pushed more recently
  • Image has similar size
  • Tag is latest
  • Image has same number of vulnerabilities
  • Image contains similar number of packages
  • 3 was pulled 251K times last month
Image details:
  • Size: 3.8 MB
  • OS: 3.22.0
 2 weeks ago



Change base image

✅ There are no tag recommendations at this time.

@github-actions GitHub Actions
Copy link
Contributor

🔍 Vulnerabilities of moby/buildkit:buildx-stable-1

📦 Image Reference moby/buildkit:buildx-stable-1
digestsha256:72a94020693fa94cecaf87505088224ff3246270ea64b291a4aaf63fd4b41f3c
vulnerabilitiescritical: 0 high: 2 medium: 0 low: 0
platformlinux/amd64
size108 MB
packages250
📦 Base Image alpine:3
also known as
  • 3.21
  • 3.21.3
  • latest
digestsha256:1c4eef651f65e2f7daee7ee785882ac164b02b78fb74503052a26dc061c90474
vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
critical: 0 high: 1 medium: 0 low: 0 stdlib 1.24.3 (golang)

pkg:golang/[email protected]

high : CVE--2025--22874

Affected range>=1.24.0-0
<1.24.4
Fixed version1.24.4
EPSS Score0.017%
EPSS Percentile2nd percentile
Description

Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon.

critical: 0 high: 1 medium: 0 low: 0 stdlib 1.24.2 (golang)

pkg:golang/[email protected]

high : CVE--2025--22874

Affected range>=1.24.0-0
<1.24.4
Fixed version1.24.4
EPSS Score0.017%
EPSS Percentile2nd percentile
Description

Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon.

@github-actions GitHub Actions
Copy link
Contributor

Recommended fixes for image moby/buildkit:buildx-stable-1

Base image is alpine:3

Name3.21.3
Digestsha256:1c4eef651f65e2f7daee7ee785882ac164b02b78fb74503052a26dc061c90474
Vulnerabilitiescritical: 0 high: 0 medium: 0 low: 0
Pushed4 months ago
Size3.6 MB
Packages19
OS3.21.3
The base image is also available under the supported tag(s): 3.21, 3.21.3, latest

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.
TagDetailsPushedVulnerabilities
3
Newer image for same tag
Also known as:
  • 3.22.0
  • 3.22
  • latest
 Benefits:
  • Newer image for same tag
  • Minor OS version update
  • Tag was pushed more recently
  • Image has similar size
  • Tag is latest
  • Image has same number of vulnerabilities
  • Image contains similar number of packages
  • 3 was pulled 251K times last month
Image details:
  • Size: 3.8 MB
  • OS: 3.22.0
 2 weeks ago



Change base image

✅ There are no tag recommendations at this time.

@way-finder-bot way-finder-bot self-requested a review June 17, 2025 21:03
@way-finder-bot way-finder-bot self-assigned this Jun 17, 2025
@lotyp lotyp merged commit d0a80ef into master Jun 17, 2025
9 of 10 checks passed
@lotyp lotyp deleted the release-please--branches--master--components--docker-nginx branch June 17, 2025 21:04
@lotyp
Copy link
Member Author

lotyp commented Jun 17, 2025

🤖 Created releases:

🌻

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@way-finder-bot way-finder-bot way-finder-bot approved these changes

Assignees

@way-finder-bot way-finder-bot

Labels
autorelease: tagged
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@lotyp @way-finder-bot