Release: v0.3.11 #133

denopink · 2022-11-16T19:05:35Z

What's included:

closes #119
closes #130
closes #131
closes #129

guardrails · 2022-11-16T19:07:41Z

⚠️ We detected 72 security issues in this pull request:

Vulnerable Libraries (72)

Severity	Details
N/A	pkg:golang/go.etcd.io/etcd@v0.0.0-20191023171146-3cf2f69b5738@v0.0.0-20191023171146-3cf2f69b5738 upgrade to: 0.5.0-alpha.5.0.20190108173120-83c051b701d3
Medium	pkg:golang/github.com/gorilla/sessions@v1.2.1@v1.2.1 - no patch available
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20211124211545-fe61309f8881@v0.0.0-20211124211545-fe61309f8881 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/github.com/gorilla/websocket@v0.0.0-20170926233335-4201258b820c@v0.0.0-20170926233335-4201258b820c upgrade to: 1.4.1
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20220227234510-4e6760a101f9@v0.0.0-20220227234510-4e6760a101f9 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/net@v0.0.0-20221014081412-f15817d10f9b@v0.0.0-20221014081412-f15817d10f9b upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20190826190057-c7b8b68b1456@v0.0.0-20190826190057-c7b8b68b1456 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
Critical	pkg:golang/github.com/nats-io/nats-server/v2@v2.1.2@v2.1.2 - no patch available
Critical	pkg:golang/github.com/nats-io/nats-server/v2@v2.1.2@v2.1.2 - no patch available
High	pkg:golang/golang.org/x/net@v0.0.0-20210119194325-5f4716e94777@v0.0.0-20210119194325-5f4716e94777 - no patch available
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210315160823-c6e025ad8005@v0.0.0-20210315160823-c6e025ad8005 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210305230114-8fe3ee5dd75b@v0.0.0-20210305230114-8fe3ee5dd75b upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
High	pkg:golang/github.com/hashicorp/consul/api@v1.15.3@v1.15.3 - no patch available
N/A	pkg:golang/golang.org/x/net@v0.0.0-20221012135044-0b7e1fb9d458@v0.0.0-20221012135044-0b7e1fb9d458 upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220722155237-a158d28d115b@v0.0.0-20220722155237-a158d28d115b upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210908233432-aa78b53d3365@v0.0.0-20210908233432-aa78b53d3365 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
Critical	pkg:golang/github.com/nats-io/jwt@v0.3.2@v0.3.2 - no patch available
High	pkg:golang/golang.org/x/net@v0.0.0-20220412020605-290c469a71a5@v0.0.0-20220412020605-290c469a71a5 - no patch available
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220617184016-355a448f1bc9@v0.0.0-20220617184016-355a448f1bc9 upgrade to: 1.18.6,1.19.1,0.0.0-20220906165146-f3363e06e74c
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20220209214540-3681064d5158@v0.0.0-20220209214540-3681064d5158 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/github.com/aws/aws-sdk-go@v1.44.176@v1.44.176 - no patch available
High	pkg:golang/golang.org/x/net@v0.0.0-20190813141303-74dc4d7220e7@v0.0.0-20190813141303-74dc4d7220e7 - no patch available
High	pkg:golang/golang.org/x/net@v0.0.0-20210503060351-7fd8e65b6420@v0.0.0-20210503060351-7fd8e65b6420 - no patch available
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220725212005-46097bf591d3@v0.0.0-20220725212005-46097bf591d3 upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210823070655-63515b42dcdf@v0.0.0-20210823070655-63515b42dcdf upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220624214902-1bab6f366d9e@v0.0.0-20220624214902-1bab6f366d9e upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20211210111614-af8b64212486@v0.0.0-20211210111614-af8b64212486 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
Medium	pkg:golang/golang.org/x/crypto@v0.0.0-20210920023735-84f357641f63@v0.0.0-20210920023735-84f357641f63 - no patch available
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20181122145206-62eef0e2fa9b@v0.0.0-20181122145206-62eef0e2fa9b upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/net@v0.1.0@v0.1.0 upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/net@v0.0.0-20190125091013-d26f9f9a57f3@v0.0.0-20190125091013-d26f9f9a57f3 upgrade to: 1.18.6,1.19.1,0.0.0-20220906165146-f3363e06e74c
N/A	pkg:golang/golang.org/x/crypto@v0.0.0-20211215153901-e495a2d5b3d3@v0.0.0-20211215153901-e495a2d5b3d3 upgrade to: 0.0.0-20220314234659-1baeb1ce4c0b
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210806184541-e5e7981a1069@v0.0.0-20210806184541-e5e7981a1069 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210320140829-1e4c9ba3b0c4@v0.0.0-20210320140829-1e4c9ba3b0c4 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
High	pkg:golang/github.com/hashicorp/consul/sdk@v0.11.0@v0.11.0 - no patch available
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210616094352-59db8d763f22@v0.0.0-20210616094352-59db8d763f22 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
Medium	pkg:golang/golang.org/x/crypto@v0.0.0-20190701094942-4def268fd1a4@v0.0.0-20190701094942-4def268fd1a4 - no patch available
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210927094055-39ccf1dd6fa6@v0.0.0-20210927094055-39ccf1dd6fa6 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/github.com/apache/thrift@v0.12.0@v0.12.0 upgrade to: 0.13.0
N/A	pkg:golang/golang.org/x/net@v0.0.0-20211216030914-fe4d6282115f@v0.0.0-20211216030914-fe4d6282115f upgrade to: 1.18.9,1.19.4,0.4.0
High	pkg:golang/golang.org/x/crypto@v0.0.0-20201112155050-0c6587e931a9@v0.0.0-20201112155050-0c6587e931a9 - no patch available
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210514084401-e8d321eab015@v0.0.0-20210514084401-e8d321eab015 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
High	pkg:golang/golang.org/x/net@v0.0.0-20210316092652-d523dce5a7f4@v0.0.0-20210316092652-d523dce5a7f4 - no patch available
Medium	pkg:golang/golang.org/x/crypto@v0.0.0-20210921155107-089bfa567519@v0.0.0-20210921155107-089bfa567519 - no patch available
High	pkg:golang/golang.org/x/net@v0.0.0-20220425223048-2871e0cb64e4@v0.0.0-20220425223048-2871e0cb64e4 - no patch available
High	pkg:golang/github.com/aws/aws-sdk-go@v1.27.0@v1.27.0 - no patch available
High	pkg:golang/github.com/hashicorp/consul/api@v1.3.0@v1.3.0 - no patch available
High	pkg:golang/github.com/hashicorp/consul/api@v1.3.0@v1.3.0 - no patch available
High	pkg:golang/github.com/hashicorp/consul/api@v1.3.0@v1.3.0 - no patch available
High	pkg:golang/github.com/prometheus/client_golang@v0.9.3@v0.9.3 - no patch available
High	pkg:golang/golang.org/x/net@v0.0.0-20210410081132-afb366fc7cd1@v0.0.0-20210410081132-afb366fc7cd1 - no patch available
N/A	pkg:golang/golang.org/x/net@v0.2.0@v0.2.0 upgrade to: 1.18.9,1.19.4,0.4.0
High	pkg:golang/github.com/prometheus/client_golang@v1.3.0@v1.3.0 upgrade to: 1.11.1
N/A	pkg:golang/golang.org/x/net@v0.3.0@v0.3.0 upgrade to: 1.18.9,1.19.4,0.4.0
High	pkg:golang/github.com/nats-io/nats-server/v2@v2.5.0@v2.5.0 - no patch available
High	pkg:golang/github.com/nats-io/nats-server/v2@v2.5.0@v2.5.0 - no patch available
High	pkg:golang/github.com/nats-io/nats-server/v2@v2.5.0@v2.5.0 - no patch available
High	pkg:golang/github.com/hashicorp/consul/sdk@v0.3.0@v0.3.0 - no patch available
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220607020251-c690dde0001d@v0.0.0-20220607020251-c690dde0001d upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/net@v0.0.0-20221004154528-8021a29435af@v0.0.0-20221004154528-8021a29435af upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20220128215802-99c3d69c2c27@v0.0.0-20220128215802-99c3d69c2c27 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210603125802-9665404d3644@v0.0.0-20210603125802-9665404d3644 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20191220142924-d4481acd189f@v0.0.0-20191220142924-d4481acd189f upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20210220050731-9a76102bfb43@v0.0.0-20210220050731-9a76102bfb43 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
N/A	pkg:golang/golang.org/x/sys@v0.0.0-20220328115105-d36c6a25d886@v0.0.0-20220328115105-d36c6a25d886 upgrade to: 1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad
Critical	pkg:golang/github.com/gogo/protobuf@v1.2.0@v1.2.0 - no patch available
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220909164309-bea034e7d591@v0.0.0-20220909164309-bea034e7d591 upgrade to: 1.18.9,1.19.4,0.4.0
N/A	pkg:golang/golang.org/x/net@v0.0.0-20220927171203-f486391704dc@v0.0.0-20220927171203-f486391704dc upgrade to: 1.18.9,1.19.4,0.4.0
High	pkg:golang/golang.org/x/net@v0.0.0-20220325170049-de3da57026de@v0.0.0-20220325170049-de3da57026de - no patch available
High	pkg:golang/github.com/hashicorp/consul/api@v1.1.0@v1.1.0 - no patch available
High	pkg:golang/github.com/miekg/dns@v1.1.41@v1.1.41 - no patch available
Medium	pkg:golang/github.com/nats-io/jwt@v0.3.0@v0.3.0 upgrade to: 1.1.0

More info on how to fix Vulnerable Libraries in Go.

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

handler.go

…rg/ancla into denopink/release/v0.3.11

codecov · 2023-01-10T16:47:47Z

Codecov Report

Merging #133 (f1762a1) into main (67bb97b) will not change coverage.
The diff coverage is n/a.

❗ Current head f1762a1 differs from pull request most recent head 4a8e8fb. Consider uploading reports for the commit 4a8e8fb to get more accurate results

@@           Coverage Diff           @@
##             main     #133   +/-   ##
=======================================
  Coverage   84.36%   84.36%           
=======================================
  Files          13       13           
  Lines         646      646           
=======================================
  Hits          545      545           
  Misses         88       88           
  Partials       13       13

Flag	Coverage Δ
unittests	`84.36% <ø> (ø)`

Flags with carried forward coverage won't be shown. Click here to find out more.

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

Update CHANGELOG.md

f42de85

denopink added the webpa-common archival/deprecation work related to the archival & deprecation of webpa-common label Nov 16, 2022

denopink requested review from johnabass and renaz6 November 16, 2022 19:05

denopink self-assigned this Nov 16, 2022

denopink marked this pull request as draft November 16, 2022 19:05

Update CHANGELOG.md

e1ff499

johnabass requested changes Jan 9, 2023

View reviewed changes

handler.go Outdated Show resolved Hide resolved

denopink added 3 commits January 10, 2023 11:44

Merge branch 'main' into denopink/release/v0.3.11

3ee7fba

Merge branch 'main' into denopink/release/v0.3.11

f1762a1

update dependencies

8ba2fda

denopink marked this pull request as ready for review January 10, 2023 16:45

Merge branch 'denopink/release/v0.3.11' of https://github.com/xmidt-o…

4a8e8fb

…rg/ancla into denopink/release/v0.3.11

denopink merged commit 8794379 into main Jan 10, 2023

denopink deleted the denopink/release/v0.3.11 branch January 10, 2023 16:48

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Release: v0.3.11 #133

Release: v0.3.11 #133

denopink commented Nov 16, 2022

guardrails bot commented Nov 16, 2022 •

edited

codecov bot commented Jan 10, 2023

Release: v0.3.11 #133

Release: v0.3.11 #133

Conversation

denopink commented Nov 16, 2022

guardrails bot commented Nov 16, 2022 • edited

codecov bot commented Jan 10, 2023

Codecov Report

guardrails bot commented Nov 16, 2022 •

edited