Skip to content

Commit b3e8b3b

Browse files
vitalii-codefreshvitalii-codefresh
authored
chore(CR-29164): updated node.js, debian, jsonpath-plus, tar-fs, kubectl, brace-expansion (#883)
## What CVE-2025-1302 - fixed by updating jsonpath-plus CVE-2022-33987 , CVE-2022-33987 - fixed by updating openid-client CVE-2025-48387 , CVE-2024-12905 - fixed by updating tar-fs CVE-2025-48060 , CVE-2024-23337 , CVE-2025-26519 , CVE-2024-9143 , CVE-2024-13176 , CVE-2024-12797- fixed by updating alpine/debian CVE-2024-45338 , CVE-2025-22870 , CVE-2025-22872 - fixed by updating kubectl CVE-2025-5889 - fixed by updating brace-expansion ## Why ## Notes
1 parent 822dd03 commit b3e8b3b

File tree

7 files changed

+144
-210
lines changed

7 files changed

+144
-210
lines changed

.nvmrc

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1 @@
1-
v22.11.0
1+
v22.16.0

Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,10 +11,10 @@ RUN pip install yq==${YQ_VERSION}
1111
RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/ $(which yq)
1212

1313
# kubectl binary
14-
FROM bitnami/kubectl:1.30.6 AS kubectl
14+
FROM bitnami/kubectl:1.33.1 AS kubectl
1515

1616
# Main
17-
FROM node:22.11.0-alpine3.20
17+
FROM node:22.16.0-alpine3.22
1818
RUN apk --update add --no-cache \
1919
bash \
2020
ca-certificates \

Dockerfile-debian

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,10 +11,10 @@ RUN pip install yq==${YQ_VERSION}
1111
RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/ $(which yq)
1212

1313
# kubectl binary
14-
FROM bitnami/kubectl:1.30.6 as kubectl
14+
FROM bitnami/kubectl:1.33.1 as kubectl
1515

1616
# Main
17-
FROM node:22.11.0-bullseye-slim
17+
FROM node:22.16.0-bookworm-slim
1818
RUN apt update \
1919
&& apt -y install \
2020
apt-transport-https \

Dockerfile-debian-rootless

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,10 +11,10 @@ RUN pip install yq==${YQ_VERSION}
1111
RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/ $(which yq)
1212

1313
# kubectl binary
14-
FROM bitnami/kubectl:1.30.6 as kubectl
14+
FROM bitnami/kubectl:1.33.1 as kubectl
1515

1616
# Main
17-
FROM node:22.11.0-bullseye-slim
17+
FROM node:22.16.0-bookworm-slim
1818
RUN apt update \
1919
&& apt -y install \
2020
bash \

Dockerfile-rootless

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,10 +11,10 @@ RUN pip install yq==${YQ_VERSION}
1111
RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/ $(which yq)
1212

1313
# kubectl binary
14-
FROM bitnami/kubectl:1.30.6 as kubectl
14+
FROM bitnami/kubectl:1.33.1 as kubectl
1515

1616
# Main
17-
FROM node:22.11.0-alpine3.20
17+
FROM node:22.16.0-alpine3.22
1818
RUN apk --update add --no-cache \
1919
bash \
2020
ca-certificates \

package.json

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "codefresh",
3-
"version": "0.89.1",
3+
"version": "0.89.2",
44
"description": "Codefresh command line utility",
55
"main": "index.js",
66
"preferGlobal": true,
@@ -42,7 +42,8 @@
4242
"json-schema": "^0.4.0",
4343
"ansi-regex": "^5.0.1",
4444
"kubernetes-client/@kubernetes/client-node": ">=0.22.2",
45-
"tough-cookie": "^4.1.3"
45+
"tough-cookie": "^4.1.3",
46+
"openid-client": "^4.9.0"
4647
},
4748
"dependencies": {
4849
"@codefresh-io/docker-reference": "^0.0.5",

0 commit comments

Comments
 (0)