Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Argus package deletion #765

Open
wants to merge 5 commits into
base: feat/caduceus-testing
Choose a base branch
from

Conversation

maurafortino
Copy link
Contributor

@maurafortino maurafortino commented Jul 17, 2024

What's Included:

  1. Deleted model and chrysom packages from argus and added them to ancla
  2. Updated code to reflect the package change
  3. updated bascule dependency to latest version

xmidt-org/ancla#230 must be merged first

dependabot bot added 2 commits July 11, 2024 15:52
Bumps [xmidt-org/shared-go](https://github.com/xmidt-org/shared-go) from 4.4.14 to 4.4.15.
- [Release notes](https://github.com/xmidt-org/shared-go/releases)
- [Commits](xmidt-org/shared-go@c36ac2a...9e2d208)

---
updated-dependencies:
- dependency-name: xmidt-org/shared-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [xmidt-org/shared-go](https://github.com/xmidt-org/shared-go) from 4.4.15 to 4.4.16.
- [Release notes](https://github.com/xmidt-org/shared-go/releases)
- [Commits](xmidt-org/shared-go@9e2d208...2cfcfbb)

---
updated-dependencies:
- dependency-name: xmidt-org/shared-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Copy link

guardrails bot commented Jul 17, 2024

⚠️ We detected 2 security issues in this pull request:

Vulnerable Libraries (2)
Severity Details
High pkg:golang/github.com/xmidt-org/[email protected] upgrade to: > v0.11.6
High pkg:golang/github.com/xmidt-org/[email protected] upgrade to: > v0.0.19

More info on how to fix Vulnerable Libraries in Go.


👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

Copy link

guardrails bot commented Jul 17, 2024

⚠️ We detected 1 security issue in this pull request:

Vulnerable Libraries (1)
Severity Details
Medium pkg:golang/github.com/aws/[email protected] - no patch available

More info on how to fix Vulnerable Libraries in Go.


👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

Copy link
Contributor Author

@maurafortino maurafortino Jul 17, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copy link

guardrails bot commented Jul 18, 2024

⚠️ We detected 6 security issues in this pull request:

Vulnerable Libraries (6)
Severity Details
High pkg:golang/github.com/xmidt-org/[email protected] upgrade to: > v0.3.13-0.20240718193746-a3cd5a39560c
Medium pkg:golang/github.com/aws/[email protected] - no patch available
High pkg:golang/github.com/xmidt-org/[email protected] upgrade to: > v0.11.7
High pkg:golang/go.uber.org/[email protected] upgrade to: > v1.22.0
High pkg:golang/github.com/prometheus/[email protected] upgrade to: > v1.19.1
High pkg:golang/github.com/xmidt-org/[email protected] upgrade to: > v0.0.19

More info on how to fix Vulnerable Libraries in Go.


👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

@maurafortino maurafortino self-assigned this Jul 18, 2024
@maurafortino maurafortino added dependencies Pull requests that update a dependency file feature new functionality proposal/implementation labels Jul 18, 2024
@maurafortino
Copy link
Contributor Author

do we want to merge into main or into a test branch?

@maurafortino maurafortino changed the base branch from main to feat/ancla-chrysom-package July 18, 2024 21:03
@maurafortino maurafortino changed the base branch from feat/ancla-chrysom-package to feat/caduceus-testing July 18, 2024 21:04
Copy link
Contributor

@denopink denopink left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice! lgtm 🍻

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file feature new functionality proposal/implementation
Projects
Status: PRs: Approved
Development

Successfully merging this pull request may close these issues.

2 participants