From 86fa4b85dbc07bee4dd39bae914faa72acd28d79 Mon Sep 17 00:00:00 2001 From: Wei Weng Date: Wed, 4 Feb 2026 16:29:08 +0000 Subject: [PATCH 1/2] bump go version to latest 1.24.13 for CVEs Signed-off-by: Wei Weng --- .github/workflows/build-publish-mcr.yml | 2 +- .github/workflows/e2e-tests.yml | 2 +- .github/workflows/go.yml | 2 +- .github/workflows/publish-image.yml | 2 +- .github/workflows/trivy.yml | 2 +- .github/workflows/unit-integration-tests.yml | 2 +- docker/hub-net-controller-manager.Dockerfile | 2 +- docker/mcs-controller-manager.Dockerfile | 2 +- docker/member-net-controller-manager.Dockerfile | 2 +- docker/net-crd-installer.Dockerfile | 2 +- go.mod | 2 +- 11 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/build-publish-mcr.yml b/.github/workflows/build-publish-mcr.yml index dfcfeae0..ee54c6f0 100644 --- a/.github/workflows/build-publish-mcr.yml +++ b/.github/workflows/build-publish-mcr.yml @@ -17,7 +17,7 @@ env: # `public` indicates images to MCR wil be publicly available, and will be removed in the final MCR images REGISTRY_REPO: public/aks/fleet - GO_VERSION: '1.24.9' + GO_VERSION: '1.24.13' jobs: prepare-variables: diff --git a/.github/workflows/e2e-tests.yml b/.github/workflows/e2e-tests.yml index d488f760..5c4e8488 100644 --- a/.github/workflows/e2e-tests.yml +++ b/.github/workflows/e2e-tests.yml @@ -13,7 +13,7 @@ permissions: contents: read env: - GO_VERSION: '1.24.9' + GO_VERSION: '1.24.13' jobs: detect-noop: diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml index 1faf36ba..6682db08 100644 --- a/.github/workflows/go.yml +++ b/.github/workflows/go.yml @@ -14,7 +14,7 @@ on: env: # Common versions - GO_VERSION: '1.24.9' + GO_VERSION: '1.24.13' jobs: diff --git a/.github/workflows/publish-image.yml b/.github/workflows/publish-image.yml index ce9478fe..105176df 100644 --- a/.github/workflows/publish-image.yml +++ b/.github/workflows/publish-image.yml @@ -19,7 +19,7 @@ env: REGISTRY: ghcr.io IMAGE_VERSION: latest - GO_VERSION: '1.24.9' + GO_VERSION: '1.24.13' jobs: export-registry: diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index 2159e155..4f4846c9 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -18,7 +18,7 @@ env: MEMBER_NET_CONTROLLER_MANAGER_IMAGE_NAME: member-net-controller-manager MCS_CONTROLLER_MANAGER_IMAGE_NAME: mcs-controller-manager - GO_VERSION: '1.24.9' + GO_VERSION: '1.24.13' jobs: export-registry: diff --git a/.github/workflows/unit-integration-tests.yml b/.github/workflows/unit-integration-tests.yml index ea06ad12..d220e50f 100644 --- a/.github/workflows/unit-integration-tests.yml +++ b/.github/workflows/unit-integration-tests.yml @@ -16,7 +16,7 @@ permissions: contents: read env: - GO_VERSION: '1.24.9' + GO_VERSION: '1.24.13' jobs: detect-noop: diff --git a/docker/hub-net-controller-manager.Dockerfile b/docker/hub-net-controller-manager.Dockerfile index eeca06ed..40c19943 100644 --- a/docker/hub-net-controller-manager.Dockerfile +++ b/docker/hub-net-controller-manager.Dockerfile @@ -1,5 +1,5 @@ # Build the hub-net-controller-manager binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.9 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/docker/mcs-controller-manager.Dockerfile b/docker/mcs-controller-manager.Dockerfile index 94c375bb..5196b5f1 100644 --- a/docker/mcs-controller-manager.Dockerfile +++ b/docker/mcs-controller-manager.Dockerfile @@ -1,5 +1,5 @@ # Build the mcs-controller-manager binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.9 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/docker/member-net-controller-manager.Dockerfile b/docker/member-net-controller-manager.Dockerfile index 4c7565f4..1a12026c 100644 --- a/docker/member-net-controller-manager.Dockerfile +++ b/docker/member-net-controller-manager.Dockerfile @@ -1,5 +1,5 @@ # Build the member-net-controller-manager binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.9 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/docker/net-crd-installer.Dockerfile b/docker/net-crd-installer.Dockerfile index f5366d83..da28c132 100644 --- a/docker/net-crd-installer.Dockerfile +++ b/docker/net-crd-installer.Dockerfile @@ -1,5 +1,5 @@ # Build the net-crd-installer binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.9 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/go.mod b/go.mod index 4bce55e1..e74ac301 100644 --- a/go.mod +++ b/go.mod @@ -1,6 +1,6 @@ module go.goms.io/fleet-networking -go 1.24.9 +go 1.24.13 require go.goms.io/fleet v0.14.0 From df26408709185a009c9749cbc16ca419c897661a Mon Sep 17 00:00:00 2001 From: Wei Weng Date: Wed, 4 Feb 2026 16:38:19 +0000 Subject: [PATCH 2/2] use 1.24.12 instead Signed-off-by: Wei Weng --- .github/workflows/build-publish-mcr.yml | 2 +- .github/workflows/e2e-tests.yml | 2 +- .github/workflows/go.yml | 2 +- .github/workflows/publish-image.yml | 2 +- .github/workflows/trivy.yml | 2 +- .github/workflows/unit-integration-tests.yml | 2 +- docker/hub-net-controller-manager.Dockerfile | 2 +- docker/mcs-controller-manager.Dockerfile | 2 +- docker/member-net-controller-manager.Dockerfile | 2 +- docker/net-crd-installer.Dockerfile | 2 +- go.mod | 2 +- 11 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/build-publish-mcr.yml b/.github/workflows/build-publish-mcr.yml index ee54c6f0..cfe16815 100644 --- a/.github/workflows/build-publish-mcr.yml +++ b/.github/workflows/build-publish-mcr.yml @@ -17,7 +17,7 @@ env: # `public` indicates images to MCR wil be publicly available, and will be removed in the final MCR images REGISTRY_REPO: public/aks/fleet - GO_VERSION: '1.24.13' + GO_VERSION: '1.24.12' jobs: prepare-variables: diff --git a/.github/workflows/e2e-tests.yml b/.github/workflows/e2e-tests.yml index 5c4e8488..40b0abd8 100644 --- a/.github/workflows/e2e-tests.yml +++ b/.github/workflows/e2e-tests.yml @@ -13,7 +13,7 @@ permissions: contents: read env: - GO_VERSION: '1.24.13' + GO_VERSION: '1.24.12' jobs: detect-noop: diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml index 6682db08..d7713e8d 100644 --- a/.github/workflows/go.yml +++ b/.github/workflows/go.yml @@ -14,7 +14,7 @@ on: env: # Common versions - GO_VERSION: '1.24.13' + GO_VERSION: '1.24.12' jobs: diff --git a/.github/workflows/publish-image.yml b/.github/workflows/publish-image.yml index 105176df..dbf4e2e2 100644 --- a/.github/workflows/publish-image.yml +++ b/.github/workflows/publish-image.yml @@ -19,7 +19,7 @@ env: REGISTRY: ghcr.io IMAGE_VERSION: latest - GO_VERSION: '1.24.13' + GO_VERSION: '1.24.12' jobs: export-registry: diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index 4f4846c9..abb38802 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -18,7 +18,7 @@ env: MEMBER_NET_CONTROLLER_MANAGER_IMAGE_NAME: member-net-controller-manager MCS_CONTROLLER_MANAGER_IMAGE_NAME: mcs-controller-manager - GO_VERSION: '1.24.13' + GO_VERSION: '1.24.12' jobs: export-registry: diff --git a/.github/workflows/unit-integration-tests.yml b/.github/workflows/unit-integration-tests.yml index d220e50f..307d8106 100644 --- a/.github/workflows/unit-integration-tests.yml +++ b/.github/workflows/unit-integration-tests.yml @@ -16,7 +16,7 @@ permissions: contents: read env: - GO_VERSION: '1.24.13' + GO_VERSION: '1.24.12' jobs: detect-noop: diff --git a/docker/hub-net-controller-manager.Dockerfile b/docker/hub-net-controller-manager.Dockerfile index 40c19943..9225e94b 100644 --- a/docker/hub-net-controller-manager.Dockerfile +++ b/docker/hub-net-controller-manager.Dockerfile @@ -1,5 +1,5 @@ # Build the hub-net-controller-manager binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.12 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/docker/mcs-controller-manager.Dockerfile b/docker/mcs-controller-manager.Dockerfile index 5196b5f1..243ce41d 100644 --- a/docker/mcs-controller-manager.Dockerfile +++ b/docker/mcs-controller-manager.Dockerfile @@ -1,5 +1,5 @@ # Build the mcs-controller-manager binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.12 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/docker/member-net-controller-manager.Dockerfile b/docker/member-net-controller-manager.Dockerfile index 1a12026c..525d9be8 100644 --- a/docker/member-net-controller-manager.Dockerfile +++ b/docker/member-net-controller-manager.Dockerfile @@ -1,5 +1,5 @@ # Build the member-net-controller-manager binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.12 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/docker/net-crd-installer.Dockerfile b/docker/net-crd-installer.Dockerfile index da28c132..5cd8af30 100644 --- a/docker/net-crd-installer.Dockerfile +++ b/docker/net-crd-installer.Dockerfile @@ -1,5 +1,5 @@ # Build the net-crd-installer binary -FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.13 AS builder +FROM mcr.microsoft.com/oss/go/microsoft/golang:1.24.12 AS builder ARG GOOS=linux ARG GOARCH=amd64 diff --git a/go.mod b/go.mod index e74ac301..212b65a0 100644 --- a/go.mod +++ b/go.mod @@ -1,6 +1,6 @@ module go.goms.io/fleet-networking -go 1.24.13 +go 1.24.12 require go.goms.io/fleet v0.14.0