Fix for CVE-2024-45338 and CVE-2024-45337 #39
Conversation
Signed-off-by: Joel Smith <[email protected]>
Signed-off-by: Joel Smith <[email protected]>
openshift-ci
bot
added
the
approved
|
/lgtm Thanks! |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: joelsmith, maxcao13 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
It seems doubtful that the Prometheus metrics test would be affected by this change. I hate to think our tests have gotten flaky.... /retest |
|
/retest |
|
AFAIK the test that failed was the OVN, not prometheus. |
|
Maybe it's failing cause of some change in openshift 4.19? I also find it hard to believe that these changes would affect the keda tests. https://prow.ci.openshift.org/job-history/gs/test-platform-results/pr-logs/directory/pull-ci-openshift-kedacore-keda-main-keda-e2e-aws-ovn |
I think you are probably correct. Across the 6 runs of keda-e2e-aws-ovn, I counted 3 failures in TestPrometheusMetrics, 2 failures in the Kafka tests (TestScaler) and 1 failure in the cache_metrics_scaler (TestScaler). Each run had only one failure. So it seems likely that some change in 4.19 is causing the cluster to be less responsive, or for the CI environment to be overloaded, or something similar which would cause flakiness without being related to our specific test cases. /retest |
|
The installer failed on the last one. Maybe we need to ask for a test bypass. /retest |
|
@joelsmith: The following test failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
This is an downstream cherry-pick of part of kedacore#6434 and all of kedacore#6422