Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency lima-vm/sshocker to v0.3.6 #10762

Merged
merged 1 commit into from
Mar 9, 2025
Merged

chore(deps): update dependency lima-vm/sshocker to v0.3.6 #10762

merged 1 commit into from
Mar 9, 2025

Conversation

uniget-bot
Copy link

This PR contains the following updates:

Package Update Change
lima-vm/sshocker patch 0.3.5 -> 0.3.6

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

lima-vm/sshocker (lima-vm/sshocker)

v0.3.6

Compare Source

What's Changed

Full Changelog: lima-vm/sshocker@v0.3.5...v0.3.6

Install
curl -o sshocker --fail -L https://github.com/lima-vm/sshocker/releases/download//sshocker-$(uname -s)-$(uname -m)
chmod +x sshocker
About the binaries

The binaries were built automatically on GitHub Actions.
See the log to verify SHA256SUMS.
https://github.com/lima-vm/sshocker/actions/runs/13741206044

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

nicholasdille-bot
nicholasdille-bot approved these changes Mar 9, 2025
View reviewed changes
Copy link

@nicholasdille-bot nicholasdille-bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Auto-approved because label type/renovate is present.

@github-actions GitHub Actions
Copy link

github-actions bot commented Mar 9, 2025

🔍 Vulnerabilities of ghcr.io/uniget-org/tools/sshocker:0.3.6

📦 Image Reference ghcr.io/uniget-org/tools/sshocker:0.3.6
digestsha256:470374548d8e064475983d876f93cc55051cad090ee95c970199ba1fb091f6cd
vulnerabilitiescritical: 0 high: 1 medium: 0 low: 0
platformlinux/amd64
size2.4 MB
packages11
critical: 0 high: 1 medium: 0 low: 0 golang.org/x/crypto 0.31.0 (golang)

pkg:golang/golang.org/x/crypto@0.31.0

high : CVE--2025--22869

Affected range<0.35.0
Fixed version0.35.0
Description

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

@github-actions GitHub Actions
Copy link

github-actions bot commented Mar 9, 2025

Attempting automerge. See https://github.com/uniget-org/tools/actions/runs/13743613795.

@github-actions GitHub Actions
Copy link

github-actions bot commented Mar 9, 2025

PR is clean and can be merged. See https://github.com/uniget-org/tools/actions/runs/13743613795.

@github-actions github-actions bot merged commit f68a1cb into main Mar 9, 2025
10 checks passed
@github-actions github-actions bot deleted the renovate/lima-vm-sshocker-0.3.x branch March 9, 2025 01:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nicholasdille-bot nicholasdille-bot nicholasdille-bot approved these changes

Assignees
No one assigned
Labels
bump/patch type/renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@uniget-bot @nicholasdille-bot @renovate-bot