mirror/catalog
1
0
Fork 0
mirror of https://github.com/tektoncd/catalog.git synced 2024-11-21 05:55:35 +00:00
Code Issues Releases Activity
c76eaf1ecb
catalog/task/git-cli
History
Billy Lynch baf796b714 Update Git based images to patch CVE-2022-41903, CVE-2022-23521. 
See
https://github.blog/2023-01-17-git-security-vulnerabilities-announced-2/
for more details.

Because this effectively bumps the Git version used from v2.26.2 to
v2.39.0, this change also fixes 59 HIGH and 12 CRITICAL vulnerabilities
reported since this image was last updated.

This changes the default base image for git-cli and git-rebase to match the same base image for
[Pipeline
git-init](9d3942176f/.ko.yaml (L5)).

This does not update:

- git-clone | this is dependent on git-init (which is yet to be updated)
- git-version | this is based on dotnet sdk(?) so I have no idea how to
  safely update this.
2023-01-18 15:48:00 +00:00
..
0.1 Add platforms annotation to several tasks 2021-07-26 15:09:08 +01:00
0.2 Add platforms annotation to several tasks 2021-07-26 15:09:08 +01:00
0.3 Sets the user_home default to /root, otherwise ssh-credentials don't work 2021-10-07 07:03:30 +01:00
0.4 Update Git based images to patch CVE-2022-41903, CVE-2022-23521. 2023-01-18 15:48:00 +00:00