mirror of
https://github.com/argoproj/argo-cd
synced 2026-04-21 17:07:16 +00:00
a761a495f1
* chore: upgrade kubernetes dependencies from 0.26.4 to 0.26.11 Fixes some vulnerabilities trivy is reporting on (not necessarily vulnerabe, trivy tends to have a lot of false positives when it comes to golang projects): * CVE-2023-3676 * CVE-2023-3955 * CVE-2023-5528 * CVE-2023-2431 * CVE-2023-2727 * CVE-2023-2728 Signed-off-by: Zoltán Reegn <zoltan.reegn@gmail.com> * go mod tidy Signed-off-by: Zoltán Reegn <zoltan.reegn@gmail.com> * Add go mod tidy to kubernetes updater script Signed-off-by: Zoltán Reegn <zoltan.reegn@gmail.com> --------- Signed-off-by: Zoltán Reegn <zoltan.reegn@gmail.com>
22 lines
606 B
Bash
Executable file
22 lines
606 B
Bash
Executable file
#!/usr/bin/env bash
|
|
set -euo pipefail
|
|
|
|
if [ -z "${1:-}" ]; then
|
|
echo "Example usage: ./hack/update-kubernetes-version.sh v1.26.11"
|
|
exit 1
|
|
fi
|
|
VERSION=${1#"v"}
|
|
MODS=($(
|
|
curl -sS https://raw.githubusercontent.com/kubernetes/kubernetes/v${VERSION}/go.mod |
|
|
sed -n 's|.*k8s.io/\(.*\) => ./staging/src/k8s.io/.*|k8s.io/\1|p'
|
|
))
|
|
for MOD in "${MODS[@]}"; do
|
|
echo "Updating $MOD..." >&2
|
|
V=$(
|
|
go mod download -json "${MOD}@kubernetes-${VERSION}" |
|
|
sed -n 's|.*"Version": "\(.*\)".*|\1|p'
|
|
)
|
|
go mod edit "-replace=${MOD}=${MOD}@${V}"
|
|
done
|
|
go get "k8s.io/kubernetes@v${VERSION}"
|
|
go mod tidy
|