2024-04-05 21:14:14 by Benny Siegert | Files touched by this commit (161) | |
Log message:
Revbump all Go packages after go121 update
|
2024-02-07 15:51:04 by Benny Siegert | Files touched by this commit (156) | |
Log message:
Revbump all Go packages after go121 update
|
2024-01-10 20:14:43 by Benny Siegert | Files touched by this commit (152) | |
Log message:
Revbump all Go packages after go121 update
|
2023-12-24 13:36:18 by Benny Siegert | Files touched by this commit (5) | |
Log message:
packer: update to 1.9.5 and add security fix
This is the last version before the change to a non-free license.
This fixes the following vulnerability:
Vulnerability #1: GO-2023-2402
Man-in-the-middle attacker can compromise integrity of secure channel in
golang.org/x/crypto
More info: https://pkg.go.dev/vuln/GO-2023-2402
Module: golang.org/x/crypto
Found in: golang.org/x/crypto@v0.0.0-20220622213112-05595931fe9d
Fixed in: golang.org/x/crypto@v0.17.0
1.9.3
core/docs: Clarify the expected usage of the packer init command for HCL2
template builds.
core/hcp: Add support for project-level service principals. A user connecting
with a project level service principals must provide a valid HCP_PROJECT_ID
in order to connect.
core: A new Docker image packer:release-full has been added for all
supported architectures. The release-full image includes Packer and all the
official plugins pre-installed in its environment.
core: Add enhanced support to Packer telemetry for bundle plugins usage.
1.9.4
Bug fix: When invoking Packer with the CHECKPOINT_DISABLE environment variable
the telemetry reporter is left uninitialized in order to disable telemetry
reporting. Any method calls on the nil reporter is expected to check if the
reporter is active or in NOOP mode. The SetBundledUsage function, introduced in
Packer 1.9.2, failed to perform a nil check before attempting to modify an
attribute, causing Packer to fail when telemetry is disabled. This release
fixes this issue by introducing such a check.
1.9.5
Bump github.com/go-jose/go-jose/v3 to address GO-2023-2334.
Add VirtualBox as known plugin prefix to prevent endless bundled plugin
warning.
|
2023-12-05 20:46:19 by Benny Siegert | Files touched by this commit (146) | |
Log message:
Revbump all Go packages after go121 update
|
2023-11-10 16:45:25 by Benny Siegert | Files touched by this commit (152) | |
Log message:
Revbump all Go packages after go121 update
|
2023-10-29 15:48:24 by Benny Siegert | Files touched by this commit (152) |
Log message:
Revbump all Go packages because go121 is now the default
|
2023-10-15 14:04:35 by Benny Siegert | Files touched by this commit (155) | |
Log message:
Revbump all Go packages after go120 security update
|
2023-09-08 21:06:15 by Benny Siegert | Files touched by this commit (154) | |
Log message:
Revbump all Go packages after go120 update
|
2023-08-26 18:31:41 by Benny Siegert | Files touched by this commit (149) | |
Log message:
Revbump all Go packages after go120 update
|