This patch release only contains dependency updates, which should make your CVE checker happy again.
Build and Testing
- update golang.org/x/net dep
- drop unnecessary replacement for go-restful CVE
- build(deps): bump actions/stale from 6 to 7
- build(deps): bump nick-invision/retry from 2.8.2 to 2.8.3
- build(deps): bump alpine from 3.17.0 to 3.17.1 (#714)
- build(deps): bump docker/metadata-action from 4.1.1 to 4.3.0
- build(deps): bump github.com/spf13/viper from 1.14.0 to 1.15.0
- build(deps): bump github.com/containrrr/shoutrrr from 0.6.1 to 0.7.1
- build(deps): bump docker/build-push-action from 3 to 4
Kubernetes Version Compatibility
The daemon image contains a 1.25.x k8s.io/{client-go,kubectl} for the purposes of maintaining the lock and draining worker nodes. Kubernetes aims to provide forwards & backwards compatibility of one minor version between client and server, so this should work on 1.24.x, 1.25.x and 1.26.x
Thanks a lot to everyone who contributed to kured since 1.12.0.