From ea0c761b17f2d5e2578666c05a71cb5fd01c97cf Mon Sep 17 00:00:00 2001 From: codybuell Date: Mon, 24 Jun 2024 14:55:35 -0400 Subject: [PATCH 1/2] Patch jose2go --- go.mod | 2 +- go.sum | 2 ++ 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/go.mod b/go.mod index ea35ef1..b91d58a 100644 --- a/go.mod +++ b/go.mod @@ -18,7 +18,7 @@ require ( github.com/beevik/etree v1.1.0 // indirect github.com/cpuguy83/go-md2man/v2 v2.0.2 // indirect github.com/danieljoos/wincred v1.1.2 // indirect - github.com/dvsekhvalnov/jose2go v1.5.0 // indirect + github.com/dvsekhvalnov/jose2go v1.6.0 // indirect github.com/godbus/dbus v0.0.0-20190726142602-4481cbc300e2 // indirect github.com/gsterjov/go-libsecret v0.0.0-20161001094733-a6f4afe4910c // indirect github.com/jonboulle/clockwork v0.3.0 // indirect diff --git a/go.sum b/go.sum index 1de30e3..ac08f5d 100644 --- a/go.sum +++ b/go.sum @@ -20,6 +20,8 @@ github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/dvsekhvalnov/jose2go v1.5.0 h1:3j8ya4Z4kMCwT5nXIKFSV84YS+HdqSSO0VsTQxaLAeM= github.com/dvsekhvalnov/jose2go v1.5.0/go.mod h1:QsHjhyTlD/lAVqn/NSbVZmSCGeDehTB/mPZadG+mhXU= +github.com/dvsekhvalnov/jose2go v1.6.0 h1:Y9gnSnP4qEI0+/uQkHvFXeD2PLPJeXEL+ySMEA2EjTY= +github.com/dvsekhvalnov/jose2go v1.6.0/go.mod h1:QsHjhyTlD/lAVqn/NSbVZmSCGeDehTB/mPZadG+mhXU= github.com/fatih/color v1.15.0 h1:kOqh6YHBtK8aywxGerMG2Eq3H6Qgoqeo13Bk2Mv/nBs= github.com/fatih/color v1.15.0/go.mod h1:0h5ZqXfHYED7Bhv2ZJamyIOUej9KtShiJESRwBDUSsw= github.com/godbus/dbus v0.0.0-20190726142602-4481cbc300e2 h1:ZpnhV/YsD2/4cESfV5+Hoeu/iUR3ruzNvZ+yQfO03a0= From 282625950f0d5646932a40aacaa0d0cea5ea2722 Mon Sep 17 00:00:00 2001 From: codybuell Date: Mon, 24 Jun 2024 15:00:15 -0400 Subject: [PATCH 2/2] Bump version and prepare for next release --- CHANGELOG.md | 15 ++++++++++++--- VERSION.md | 2 +- 2 files changed, 13 insertions(+), 4 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index f9605f5..668cfaf 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -20,13 +20,22 @@ Notes for upgrading... ### Fixed +[0.4.1] - 2024-06-24 +-------------------- + +### Fixed + +- Patched the package `github.com/dvsekhvalnov/jose2go` to version 1.6.0 to address Dependabot security findings [kionsoftware/kion-cli/pull/48] + + [0.4.0] - 2024-06-18 -------------------------- +-------------------- -SAML Authentication is now supported for Kion versions < `3.8.0`. No additional configuration is required for use, see `README.md` for details on SAML authentication with the CLI. +SAML Authentication is now supported for Kion versions `< 3.8.0`. No additional configuration is required for use, see `README.md` for details on SAML authentication with the CLI. ### Added -- A new version constraint will switch between SAML authentication behaviors based on the target Kion version. + +- A new version constraint will switch between SAML authentication behaviors based on the target Kion version. [kionsoftware/kion-cli/pull/46] [0.3.0] - 2024-06-03 -------------------- diff --git a/VERSION.md b/VERSION.md index fb7a04c..5aff472 100644 --- a/VERSION.md +++ b/VERSION.md @@ -1 +1 @@ -v0.4.0 +v0.4.1