Upgraded tidb parser version for vulnerability fixes.#1346
Upgraded tidb parser version for vulnerability fixes.#1346pratickchokhani wants to merge 1 commit into
Conversation
2d82cf5 to
c1fb222
Compare
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## master #1346 +/- ##
=======================================
Coverage 51.19% 51.19%
=======================================
Files 202 202
Lines 22796 22796
Branches 552 552
=======================================
Hits 11671 11671
Misses 10437 10437
Partials 688 688
🚀 New features to boost your workflow:
|
c1fb222 to
4c52aaf
Compare
| github.com/pingcap/tidb v1.1.0-beta.0.20251126154744-e4e814fdc0af | ||
| github.com/pingcap/tidb/pkg/parser v0.0.0-20251126154744-e4e814fdc0af |
There was a problem hiding this comment.
We moved from a newer version to an older version? 202511 -> 202407? How does that fix things?
Can you please update the description with details on what we did and how we have tested that it works?
There was a problem hiding this comment.
The release version with TIDB is non-linear. Earlier I choose a latest release as the CVE note shows that the fix was added in May.
With this, I am choosing the specific release mentioned in the CVE note.
| github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping v0.53.0 // indirect | ||
| github.com/VividCortex/ewma v1.2.0 // indirect | ||
| github.com/cloudfoundry/gosigar v1.3.6 // indirect | ||
| github.com/cockroachdb/errors v1.11.1 // indirect |
There was a problem hiding this comment.
why is there a dependency on cockroach ?
There was a problem hiding this comment.
This is coming form TIDB
No description provided.