moby/buildkit v0.28.1
on GitHub

7 hours ago

Welcome to the v0.28.1 release of buildkit!

Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.

Contributors

Tõnis Tiigi
CrazyMax
Sebastiaan van Stijn

Notable Changes

Fix insufficient validation of Git URL #ref:subdir fragments that could allow access to restricted files outside the checked-out repository root. GHSA-4vrq-3vrq-g6gg
Fix a vulnerability where an untrusted custom frontend could cause files to be written outside the BuildKit state directory. GHSA-4c29-8rgm-jvjj
Fix a panic when processing invalid .dockerignore patterns during COPY. #6610 moby/patternmatcher#9

Dependency Changes

github.com/moby/patternmatcher v0.6.0 -> v0.6.1

Previous release can be found at v0.28.0

Check out latest releases or
releases around moby/buildkit v0.28.1

Don't miss a new buildkit release

NewReleases is sending notifications on new releases.

Get notifications